r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 82788b8b26eeba7f492106ea47729bbb
823b2d3c336d11064a6b809057bed46bb65a7969
7671d088ba1420ffa01dbd63c5f7ab28d52d3591bc04c4cc182d1f9e64a7f2f8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7671D088BA1420FFA01DBD63C5F7AB28D52D3591BC04C4CC182D1F9E64A7F2F8"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11668
Expires: Mon, 31 Oct 2022 11:05:22 GMT
Date: Mon, 31 Oct 2022 07:50:54 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2c936a37c0ab225115a83277467091ec
d357ab9189990d3718036f67c12f467efe43552d
747c8165e4d62420f0c769d2e91ca9e7a04cfc02bd29f35ca3f74c106964c04f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5637
Cache-Control: max-age=98048
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:54 GMT
Etag: "635e4459-1d7"
Expires: Tue, 01 Nov 2022 11:05:02 GMT
Last-Modified: Sun, 30 Oct 2022 09:31:05 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2c936a37c0ab225115a83277467091ec
d357ab9189990d3718036f67c12f467efe43552d
747c8165e4d62420f0c769d2e91ca9e7a04cfc02bd29f35ca3f74c106964c04f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5637
Cache-Control: max-age=98048
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:54 GMT
Etag: "635e4459-1d7"
Expires: Tue, 01 Nov 2022 11:05:02 GMT
Last-Modified: Sun, 30 Oct 2022 09:31:05 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de47d7f9f8d5035d5490f0386442d813
fe86a705a7540c619fddd835ba720bccd2f17cfc
1b3bb62c83f8117b31f021c532a77dfea594a33ea40b5ed62dc67a29f6d15115
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1B3BB62C83F8117B31F021C532A77DFEA594A33EA40B5ED62DC67A29F6D15115"
Last-Modified: Sun, 30 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9815
Expires: Mon, 31 Oct 2022 10:34:29 GMT
Date: Mon, 31 Oct 2022 07:50:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: L+BmtcWUus+qWqyeOC1+BKsjB67E0EBb69JiJSuzaSq6nxkIW2Se9mm1pwIfk/MlVlgcjfZP7fk=
x-amz-request-id: ZJ12B905892KHSZ8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 31 Oct 2022 07:11:28 GMT
age: 2366
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 31 Oct 2022 07:50:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
gifts-now.com/
154.221.158.75301 Moved Permanently 0 B IP 154.221.158.75:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: gifts-now.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 31 Oct 2022 07:50:54 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.gifts-now.com/index.php
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9764c875002c224f81bd966db2995460
dd384811c207f54188bd097e286b2880bfcbc28b
13d0f25b1d045a816fe13b56d04af6ae00a5e2862412c781e53e069c2d33a3a1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4134
Cache-Control: max-age=91486
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:55 GMT
Etag: "635e3097-1d7"
Expires: Tue, 01 Nov 2022 09:15:41 GMT
Last-Modified: Sun, 30 Oct 2022 08:06:47 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
www.gifts-now.com/index.php
154.221.158.75200 OK 579 B URL HTTP/1.1 www.gifts-now.com/index.php
IP 154.221.158.75:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (723), with CRLF line terminators
Hash 8250c2a8478dd0c83e02b44231fc0714
bc8c2ce71cf1d7581bf71d30a098744e33678ae3
f790fb9fbdae12a35129c07635cb9c36c6d5c2602466619665af6321a5b7b7e4
GET /index.php HTTP/1.1
Host: www.gifts-now.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
35.160.97.225101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.97.225:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4OSGtkasqSpQZw/ZgT7sMA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GzzQNBlDIx4Qx49xapGNAVB6FFE=
www.gifts-now.com/common.js
154.221.158.75200 OK 816 B URL HTTP/1.1 www.gifts-now.com/common.js
IP 154.221.158.75:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Hash 1d1c08f9f0bba12a2f5c740fcd256087
aebf2bd59fbebf06a79618347426c2fe88b17a58
8fedc9ea3c046da9960343f3999fded2dd42ca994d3f0e28dbefeb8824589249
GET /common.js HTTP/1.1
Host: www.gifts-now.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gifts-now.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:55 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.gifts-now.com/tj.js
154.221.158.75200 OK 262 B IP 154.221.158.75:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type ASCII text, with CRLF line terminators
Hash ce71868892e6c5db85a7fb0a3ae8ea75
ac135dffcef7c78216c53f91bc24bcfef925d2ce
e74af6d63d0cb6363fa11c201be422667856cf9cb864d1df5901adf2f45e756c
GET /tj.js HTTP/1.1
Host: www.gifts-now.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gifts-now.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:55 GMT
Content-Type: application/x-javascript
Content-Length: 262
Connection: keep-alive
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 25b87bbf108c9ffc7bcdb424ba28b173
6eaaafa09c0f486ef9a6d18c6dc4a300b1208854
96f044343fbc4bbc4f644b8ff6cedc05bd9eb6dd5aa06883efa9d8dc8c138a1f
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 04 Nov 2022 06:51:59 GMT
ETag: "6eaaafa09c0f486ef9a6d18c6dc4a300b1208854"
Last-Modified: Mon, 31 Oct 2022 06:52:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2723
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 762acd78cac4b50b-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 25b87bbf108c9ffc7bcdb424ba28b173
6eaaafa09c0f486ef9a6d18c6dc4a300b1208854
96f044343fbc4bbc4f644b8ff6cedc05bd9eb6dd5aa06883efa9d8dc8c138a1f
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 04 Nov 2022 06:51:59 GMT
ETag: "6eaaafa09c0f486ef9a6d18c6dc4a300b1208854"
Last-Modified: Mon, 31 Oct 2022 06:52:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2723
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 762acd78caa4b51b-OSL
www.gifts-now.com/favicon.ico
154.221.158.75200 OK 1.2 kB URL HTTP/1.1 www.gifts-now.com/favicon.ico
IP 154.221.158.75:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.gifts-now.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gifts-now.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:55 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sat, 05 Nov 2022 07:50:55 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
httv6.top/
154.219.167.85200 OK 12 kB IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1881), with CRLF, LF line terminators
Hash 4d9d2962a7070de2c3637b724db9e95e
0aa3afa6555792584f5194b11b30ffb00d6fe84a
90d49ae4fa0131609b3cb98f0aa6515ac43245e01fc149fcde0e82605e2f9d01
GET / HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gifts-now.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b32402ec9b88916f38da681c4a8dcf5
13a1c5e157a6d03f453349e361e2125b149eae85
d43b4094553d81cbe4d094187820e3ad32b94b1ee65bbfb755d9d7ab48b10fb5
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "D43B4094553D81CBE4D094187820E3AD32B94B1EE65BBFB755D9D7AB48B10FB5"
Last-Modified: Sun, 30 Oct 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10738
Expires: Mon, 31 Oct 2022 10:49:54 GMT
Date: Mon, 31 Oct 2022 07:50:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 10bb93a98239b802cfec26cfddeccc4d
c4f43ee05234b55bd797f96d1659b2411b44af75
be5d3d66888797f522e871f4cfccccadcf2e6a215e73a8b58d1fffc9945a69d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE5D3D66888797F522E871F4CFCCCCADCF2E6A215E73A8B58D1FFFC9945A69D3"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8051
Expires: Mon, 31 Oct 2022 10:05:07 GMT
Date: Mon, 31 Oct 2022 07:50:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 10bb93a98239b802cfec26cfddeccc4d
c4f43ee05234b55bd797f96d1659b2411b44af75
be5d3d66888797f522e871f4cfccccadcf2e6a215e73a8b58d1fffc9945a69d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE5D3D66888797F522E871F4CFCCCCADCF2E6A215E73A8B58D1FFFC9945A69D3"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8051
Expires: Mon, 31 Oct 2022 10:05:07 GMT
Date: Mon, 31 Oct 2022 07:50:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 10bb93a98239b802cfec26cfddeccc4d
c4f43ee05234b55bd797f96d1659b2411b44af75
be5d3d66888797f522e871f4cfccccadcf2e6a215e73a8b58d1fffc9945a69d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE5D3D66888797F522E871F4CFCCCCADCF2E6A215E73A8B58D1FFFC9945A69D3"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8051
Expires: Mon, 31 Oct 2022 10:05:07 GMT
Date: Mon, 31 Oct 2022 07:50:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 10bb93a98239b802cfec26cfddeccc4d
c4f43ee05234b55bd797f96d1659b2411b44af75
be5d3d66888797f522e871f4cfccccadcf2e6a215e73a8b58d1fffc9945a69d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE5D3D66888797F522E871F4CFCCCCADCF2E6A215E73A8B58D1FFFC9945A69D3"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8051
Expires: Mon, 31 Oct 2022 10:05:07 GMT
Date: Mon, 31 Oct 2022 07:50:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3e75022-9a58-446c-bbb7-df36e9707d50.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3e75022-9a58-446c-bbb7-df36e9707d50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98f84a15204f33281179b8ab0a601819
ec9992a868e06dd7a0dd91b93028f5c868ef68e2
718da0e7a62e3ee152affeb79d9f2a4adad7ac2c036fc0e931f743c24ffec293
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3e75022-9a58-446c-bbb7-df36e9707d50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10432
x-amzn-requestid: 549a1ce4-6b2f-4be9-b243-2b1cb03314e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aYvSjHd-oAMFiwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63535f43-71f9cf1104ec76a55b51ffa4;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 03:10:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qOOsnF9mmTO7Db1aeSK78B17zGMlg7hdvLsoi7SyFL1suP_n_pej1A==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 21:47:04 GMT
age: 36232
etag: "ec9992a868e06dd7a0dd91b93028f5c868ef68e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda9e9d05-60e1-4306-8343-0c7528ff720b.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda9e9d05-60e1-4306-8343-0c7528ff720b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edcea499342cb4ca7e3c89244dc8d849
819d9d46a49d75af68dc0cc06b3f5e9f86ec2a23
b62cd13dbfc77ef5eed5e0325d5502b2de6e24dcbe038d05a5611b00ea6105be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda9e9d05-60e1-4306-8343-0c7528ff720b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4604
x-amzn-requestid: 0c493247-ae7e-4f88-b1e5-4edb7dbed418
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ajLO1Gu7IAMFWHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63578bf8-282d95bb13a0e224024608bd;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 07:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: iMDP-thn7HuLaQvocbtVTk2slo-zKJ3fqL-EVtuFhxV1fisNq5cBew==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 13:09:15 GMT
age: 67301
etag: "819d9d46a49d75af68dc0cc06b3f5e9f86ec2a23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8cfc555-4048-4e14-86b3-cc69eee56121.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8cfc555-4048-4e14-86b3-cc69eee56121.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75fc75d83e2c8db4b32c5a9fb53b31db
ff724242913f99f4d8d0d68a92b231b490072eab
fae871d41be568efd749a7b76d7d975020231053a0052df967a20b63589715ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8cfc555-4048-4e14-86b3-cc69eee56121.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10057
x-amzn-requestid: 11e904c9-7f64-460b-ac84-52fac380750b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a1py7G2_oAMF12Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635ef012-1bbd672d35611b964e43a108;Sampled=0
x-amzn-remapped-date: Sun, 30 Oct 2022 21:43:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zxxZaQ_QoqAkE_zda-o2dfdqdbjeXdXDznweZ_pbEEHSgNvlfIw1lA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 22:10:49 GMT
etag: "ff724242913f99f4d8d0d68a92b231b490072eab"
content-type: image/jpeg
age: 34807
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb04edd3a-e1ec-40dd-a1a8-5ad9411a9313.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb04edd3a-e1ec-40dd-a1a8-5ad9411a9313.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 054c288aad0b910f70853e3920649d61
94a087d7f06f861387c93130944bd9c734b052c6
a04c4a9223abdc33116d3e9010ce483769e93a658188ee7069de3fa1dfde6160
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb04edd3a-e1ec-40dd-a1a8-5ad9411a9313.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6834
x-amzn-requestid: 0390ab0e-e6fa-4a6d-8d09-5a36285cb400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a1oX-EtNoAMFpsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635eedcc-7acdb8467bef19370baabde4;Sampled=0
x-amzn-remapped-date: Sun, 30 Oct 2022 21:34:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sicpRFzG7mFuwLpX4e2mMMArx8UhqxXHsI6S0yr_OzTUTtT6cARavw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 22:13:12 GMT
age: 34664
etag: "94a087d7f06f861387c93130944bd9c734b052c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43a2ca39-70e2-4cc7-b378-65317cca7969.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43a2ca39-70e2-4cc7-b378-65317cca7969.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55f392ea73e9746f7edb30e319646c4b
09b052e39f5493c2c2b79d92e81e510aeffbfcb4
9a5b1575ed3a943be74e212f41f122178dcf4c89ef0d78eb8cc761508cd453d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43a2ca39-70e2-4cc7-b378-65317cca7969.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9023
x-amzn-requestid: 599a15c5-bd47-4c30-91e5-b445da7e66f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apwvQHCsIAMFWlg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635a2e61-1d36740311e6b1e531d44767;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 07:08:17 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uchqnCPglDy6DsLjM-7A1Df4hvJ_XeKZJOyqFs7hIb27ZyP14qz-Ew==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 21:55:39 GMT
age: 35717
etag: "09b052e39f5493c2c2b79d92e81e510aeffbfcb4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23c27174-26b8-4527-8bea-cad88bdc0d34.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23c27174-26b8-4527-8bea-cad88bdc0d34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4a5598b5025c779903462274690bb7e3
0f8f5bacc06a4ee8e3be25c1dc642d22b91bca5c
9b862b8885ab187323aa8f7fdd7cd712959fd7a0b02f5b74c98896be2c5eccd1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23c27174-26b8-4527-8bea-cad88bdc0d34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9749
x-amzn-requestid: ec256f33-dd6c-42dc-976e-970755bcb610
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a1oYkGpmoAMFtQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635eedd0-6758a6d921b2dca27986636f;Sampled=0
x-amzn-remapped-date: Sun, 30 Oct 2022 21:34:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FuyyaxZh6Eayqcr0LtISy45sor5qV8EaJle4q8Jcbl4K1ZTKTZakkQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 21:57:36 GMT
age: 35600
etag: "0f8f5bacc06a4ee8e3be25c1dc642d22b91bca5c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
httv6.top/template/m1938pc/static/js/jquery.min.js
154.219.167.85200 OK 38 kB URL HTTP/1.1 httv6.top/template/m1938pc/static/js/jquery.min.js
IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with very long lines (32077)
Hash c0750a85ce0399accd8ded17e2564d6b
ba767d35271e9b39305f156814495650f269ddb6
9de8ff805e6807598c4c2987a8368ff4b2240606f6285902c844baf5a04655ac
GET /template/m1938pc/static/js/jquery.min.js HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-17b8b"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
httv6.top/template/m1938pc/static/js/bootstrap.min.js
154.219.167.85200 OK 13 kB URL HTTP/1.1 httv6.top/template/m1938pc/static/js/bootstrap.min.js
IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with very long lines (39553)
Hash 89cfee4061db2dd37f5e2668f1c7ebfb
1ecc979a3bc78d4987cb642f3f64e80d56d57d39
dcff2dfb3ebcdba16ed0e4b9024fa681edc77ace8a686d9bd5aea6dc282e8168
GET /template/m1938pc/static/js/bootstrap.min.js HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-9b00"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
httv6.top/template/m1938pc/static/js/jquery.lazyload.min.js
154.219.167.85200 OK 1.3 kB URL HTTP/1.1 httv6.top/template/m1938pc/static/js/jquery.lazyload.min.js
IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with very long lines (3309)
Hash 8e5f2c601d9dc5b0d53cb406774e99c9
562d3c568f650e9cc977328d440fc94c46fe9f8e
0f18d8d9a5b33df370579bebc38911b2f344a8fb99bcdd66e83a6fa48c25e01a
GET /template/m1938pc/static/js/jquery.lazyload.min.js HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-d35"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
httv6.top/template/m1938pc/static/css/swiper.min.css
154.219.167.85200 OK 3.3 kB URL HTTP/1.1 httv6.top/template/m1938pc/static/css/swiper.min.css
IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with very long lines (17459)
Hash e73a49e6a4e9772b6add191cf694bd34
00038fe32a6e97fbbeb281939adfb363cdd5f54f
5a1a24bd85867233f36de37f59b96bfeeb4290619781494713b8216902b30988
GET /template/m1938pc/static/css/swiper.min.css HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-455f"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
hm.baidu.com/hm.js?c58a79351d4016ac0a3fa89e0face4a9
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?c58a79351d4016ac0a3fa89e0face4a9
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 471f5b9bc3cf4d6b30874e5be1da636d
aeb80fe0f804d74288b907dce24db4aa93da272c
4f6521ce1dbdcaca94d9728e99bd07cd8af114033f5eac1b69480b4632da05e1
GET /hm.js?c58a79351d4016ac0a3fa89e0face4a9 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11334
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:56 GMT
Etag: 880836001cc8f9ab46971c3ed4b4c273
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=73DCAB5D3C070C57; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?c7a86de7b493b415dc0df800703b18be
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?c7a86de7b493b415dc0df800703b18be
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 83a7b6d17e35c0408794264cf8482682
25e94ced215f35684d6c12a141bec0da52140a7a
efd3a491324ddf2db2e9fe4ec286b437f28443072d0ec0fa290c0966132ca021
GET /hm.js?c7a86de7b493b415dc0df800703b18be HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:56 GMT
Etag: 214d77d7de05538b760a33d0780677ba
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9F15E02DF0AC9105; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdaf3e51d8854dcf7a76d35b894db673
4047f2ddeb12e946870e0683fa0a42255bce0c38
0d6fe1ba11da4a94a25eaf21feb32da63a8b0bd9cc5ea5d12a31a6c8869a5bd6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D6FE1BA11DA4A94A25EAF21FEB32DA63A8B0BD9CC5EA5D12A31A6C8869A5BD6"
Last-Modified: Sat, 29 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2707
Expires: Mon, 31 Oct 2022 08:36:04 GMT
Date: Mon, 31 Oct 2022 07:50:57 GMT
Connection: keep-alive
httv6.top/template/m1938pc/static/css/common.css
154.219.167.85200 OK 1.7 kB URL HTTP/1.1 httv6.top/template/m1938pc/static/css/common.css
IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
Hash 1bfc16865e4e7621e5c91f2a4505e7fe
7b556b6e7f13fc6e86ab74b1e8b539fc30d7af89
dd1cca1a3a887f0bf1af7b0c06fe6ef5f0cdfa720d9f3c7230843830ba709c26
GET /template/m1938pc/static/css/common.css HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-19c0"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
httv6.top/template/m1938pc/static/js/swiper.min.js
154.219.167.85200 OK 28 kB URL HTTP/1.1 httv6.top/template/m1938pc/static/js/swiper.min.js
IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with very long lines (31999)
Hash 3694d961c3b4a420105cf9563c4cafe7
f75e4b2319d4bc0ea3af5ad3b8cf2e0679575767
3e5b269624b5703cb234c5217a66e9e77b5ffe6f70e2dd0425f3a8951dcba27c
GET /template/m1938pc/static/js/swiper.min.js HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-178a3"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
httv6.top/template/m1938pc/static/js/global.js
154.219.167.85200 OK 767 B URL HTTP/1.1 httv6.top/template/m1938pc/static/js/global.js
IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with very long lines (542)
Hash 8795117d18afac921a5fc724c7b7cf53
3c21f6100162b2f7940175a1b9790c6161b04a02
fa0ae5b9ae65389a58cf363f40a8c9ddf5a26b5945f511756f1270f5d2d38fe4
GET /template/m1938pc/static/js/global.js HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/javascript
Content-Length: 767
Last-Modified: Sat, 30 Jul 2022 23:27:51 GMT
Connection: keep-alive
ETag: "62e5be77-2ff"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
httv6.top/template/m1938pc/static/css/style.css
154.219.167.85200 OK 9.6 kB URL HTTP/1.1 httv6.top/template/m1938pc/static/css/style.css
IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
File type assembler source, Unicode text, UTF-8 text, with very long lines (367)
Hash 76c3cfbf09c2924d1324d18e71e4086c
e2955681a2b3e4806b34e4953517088ae3875059
48e3528c19a5f4f1dbd10bf600f3232f614369099eabb26a55b2baada479de09
GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: text/css
Last-Modified: Thu, 03 Jun 2021 01:54:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b83650-bf0e"
Expires: Mon, 31 Oct 2022 19:50:57 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
httv6.top/template/m1938pc/static/css/bootstrap.min.css
154.219.167.85200 OK 24 kB URL HTTP/1.1 httv6.top/template/m1938pc/static/css/bootstrap.min.css
IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with very long lines (65369)
Hash fa8eee12898882e0b97ca29c7920c483
427b362e999391c7ad6d1c37e0178a4fc906fa10
239818d1da6510c291bb39dfa0b5f5873a81a4d63ae877fe97a9053842b58cf2
GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-1da6a"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 31 Oct 2022 07:50:57 GMT
content-type: text/html
content-length: 162
location: https://kvkddd.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=387151698&si=c58a79351d4016ac0a3fa89e0face4a9&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=387151698&si=c58a79351d4016ac0a3fa89e0face4a9&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=387151698&si=c58a79351d4016ac0a3fa89e0face4a9&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 31 Oct 2022 07:50:57 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=4DAFA6C241321157; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ads-6686.top/600X300.gif
104.18.28.127200 OK 198 kB IP 104.18.28.127:0
File type GIF image data, version 89a, 600 x 300\012- data
Size 198 kB (198208 bytes)
Hash c67e13b07b80cf38b10f1ded8fa10ec1
78c7cb9f85fb0143beb42b74084564b3909568a8
08a27c164d5b71ff89db0c6d692ffe9f595c623d35bdf6c91239be82cee3be0d
GET /600X300.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 31 Oct 2022 07:50:57 GMT
content-type: image/gif
content-length: 198208
cache-control: public, max-age=259200
cf-bgj: imgq:100,h2pri
cf-polished: origSize=207680
etag: "635ab5a8-32b40"
expires: Thu, 03 Nov 2022 07:50:56 GMT
last-modified: Thu, 27 Oct 2022 16:45:28 GMT
pragma: public
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 762acd7b8c2a0afa-OSL
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=517964362&si=c7a86de7b493b415dc0df800703b18be&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=517964362&si=c7a86de7b493b415dc0df800703b18be&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=517964362&si=c7a86de7b493b415dc0df800703b18be&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 31 Oct 2022 07:50:57 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=CC66D777BD65DED6; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
httv6.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff
154.219.167.85404 Not Found 146 B URL HTTP/1.1 httv6.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff
IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://httv6.top/template/m1938pc/static/css/style.css
HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
ads-6686.top/960X240.gif
104.18.28.127200 OK 289 kB IP 104.18.28.127:0
File type GIF image data, version 89a, 960 x 240\012- data
Size 289 kB (288915 bytes)
Hash 4b0f5b24f468a37a52f2e35257914ceb
313c41e3db724ad393c2a44416592fbfee25246b
6e3728989c4faa9d862fa2b67e0f2c1aae763ae0c97de6a4047c6b7e03cdbdb7
GET /960X240.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 31 Oct 2022 07:50:57 GMT
content-type: image/gif
content-length: 288915
cache-control: public, max-age=259200
cf-bgj: imgq:100,h2pri
cf-polished: origSize=304343
etag: "635ab5b2-4a4d7"
expires: Thu, 03 Nov 2022 07:50:56 GMT
last-modified: Thu, 27 Oct 2022 16:45:38 GMT
pragma: public
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 762acd7b8c260afa-OSL
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 1aee43df6928e1049bd40bdbf5fcf282
b07d99c57d0f1e6babd7c5b5cb0c46a421bf97b3
7c8a0ec169b939f1db92b6a27067bcd870028ff47e4ca0f1acabeaa69c296b46
GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:56 GMT
Etag: a2168c2e1473f4715f2e7b832f38e364
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=461BD446443201C2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 2dac562f6ddc7336b47d248296360855
a6bffce25276434b6583fcc44624b86dc074f1ff
b8f3dc513527611d6ada7a1ae251ec70127b55013c5555f5be4ad3c0add9179a
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 31 Oct 2022 07:50:14 GMT
last-modified: Sat, 29 Oct 2022 11:26:21 GMT
expires: Sat, 05 Nov 2022 11:26:20 GMT
etag: "a6bffce25276434b6583fcc44624b86dc074f1ff"
cache-control: max-age=596452,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb2
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 762acc7209b0bb3d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1667202614
via: cache19.l2de2[0,0,304-0,H], cache12.l2de2[1,0], cache5.se1[82,81,200-0,H], cache1.se1[83,0], cache5.se1[86,0]
age: 43
x-cache: HIT TCP_REFRESH_HIT dirn:4:408558741
x-swift-savetime: Mon, 31 Oct 2022 07:50:57 GMT
x-swift-cachetime: 1757
timing-allow-origin: *, *
eagleid: 2ff62c9916672026574816906e, 2ff62c9916672026574816906e
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 2dac562f6ddc7336b47d248296360855
a6bffce25276434b6583fcc44624b86dc074f1ff
b8f3dc513527611d6ada7a1ae251ec70127b55013c5555f5be4ad3c0add9179a
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 31 Oct 2022 07:50:14 GMT
last-modified: Sat, 29 Oct 2022 11:26:21 GMT
expires: Sat, 05 Nov 2022 11:26:20 GMT
etag: "a6bffce25276434b6583fcc44624b86dc074f1ff"
cache-control: max-age=596452,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb2
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 762acc7209b0bb3d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1667202614
via: cache19.l2de2[0,0,304-0,H], cache3.l2de2[1,0], cache1.se1[83,76,200-0,C], cache1.se1[77,0], cache2.se1[80,0]
age: 43
x-cache: HIT TCP_MEM_HIT dirn:2:391273414
x-swift-savetime: Mon, 31 Oct 2022 07:50:57 GMT
x-swift-cachetime: 1757
timing-allow-origin: *, *
eagleid: 2ff62c9616672026574928857e, 2ff62c9616672026574928857e
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 2dac562f6ddc7336b47d248296360855
a6bffce25276434b6583fcc44624b86dc074f1ff
b8f3dc513527611d6ada7a1ae251ec70127b55013c5555f5be4ad3c0add9179a
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 31 Oct 2022 07:50:14 GMT
last-modified: Sat, 29 Oct 2022 11:26:21 GMT
expires: Sat, 05 Nov 2022 11:26:20 GMT
etag: "a6bffce25276434b6583fcc44624b86dc074f1ff"
cache-control: max-age=596452,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb2
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 762acc7209b0bb3d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1667202614
via: cache19.l2de2[0,0,304-0,H], cache3.l2de2[1,0], cache1.se1[83,80,200-0,C], cache1.se1[83,0], cache4.se1[84,0]
age: 43
x-cache: HIT TCP_MEM_HIT dirn:2:391273414
x-swift-savetime: Mon, 31 Oct 2022 07:50:57 GMT
x-swift-cachetime: 1757
timing-allow-origin: *, *
eagleid: 2ff62c9816672026574884453e, 2ff62c9816672026574884453e
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 2dac562f6ddc7336b47d248296360855
a6bffce25276434b6583fcc44624b86dc074f1ff
b8f3dc513527611d6ada7a1ae251ec70127b55013c5555f5be4ad3c0add9179a
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 31 Oct 2022 07:50:14 GMT
last-modified: Sat, 29 Oct 2022 11:26:21 GMT
expires: Sat, 05 Nov 2022 11:26:20 GMT
etag: "a6bffce25276434b6583fcc44624b86dc074f1ff"
cache-control: max-age=596452,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb2
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 762acc7209b0bb3d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1667202614
via: cache19.l2de2[0,0,304-0,H], cache3.l2de2[1,0], cache1.se1[83,82,200-0,H], cache1.se1[85,0], cache2.se1[89,0]
age: 43
x-cache: HIT TCP_REFRESH_HIT dirn:2:391273414
x-swift-savetime: Mon, 31 Oct 2022 07:50:57 GMT
x-swift-cachetime: 1757
timing-allow-origin: *, *
eagleid: 2ff62c9616672026574838839e, 2ff62c9616672026574838839e
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bf068b07cf2f375b572b13d7b57592c9
b8c390fb362495b359d0598e4150257e5e18f9a3
ad347afac4434b26b203ba1fdcf7ceaaa1ada56aaede92aa57281ab8726b2c7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD347AFAC4434B26B203BA1FDCF7CEAAA1ADA56AAEDE92AA57281AB8726B2C7F"
Last-Modified: Sat, 29 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18232
Expires: Mon, 31 Oct 2022 12:54:49 GMT
Date: Mon, 31 Oct 2022 07:50:57 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash b063d6c85ed75e48fe90a8a4db7cce6a
d66e8891c99971c9526beb9792cb62ff07088b63
42ef7f04fea73adf7becfac5cc15577e23a7214b86987039b3f6f2ffe3c7bd77
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159007
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:57 GMT
Etag: "635f4880-116"
Expires: Wed, 02 Nov 2022 04:01:04 GMT
Last-Modified: Mon, 31 Oct 2022 04:01:04 GMT
Server: nginx
Content-Length: 278
httv6.top/template/m1938pc/static/fonts/iconfont.woff
154.219.167.85200 OK 2.9 kB URL HTTP/1.1 httv6.top/template/m1938pc/static/fonts/iconfont.woff
IP 154.219.167.85:0
ASN #134548 DXTL Tseung Kwan O Service
File type Web Open Font Format, TrueType, length 2924, version 1.0\012- data
Hash 1b05b2b67ca6e3fe976ed8d2d1aa31d5
c7055832382daf713a911d67501e26873db045f8
ac1718a88630db8d2fd67997ad9796acdc8a6a88361b2b7058832caeec4fb22d
GET /template/m1938pc/static/fonts/iconfont.woff HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://httv6.top/template/m1938pc/static/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: font/woff
Content-Length: 2924
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Connection: keep-alive
ETag: "60b765dc-b6c"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d7c196026c4d3fadc587c9276bba71d6
31fce646ab55f2f4f2b9e1bf14cd0a851e19dbd7
fa5260bcf8d246d05ce9e8013b3970c52b3b3e3cf4d44a6722e27f9ea213e986
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FA5260BCF8D246D05CE9E8013B3970C52B3B3E3CF4D44A6722E27F9EA213E986"
Last-Modified: Sat, 29 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6177
Expires: Mon, 31 Oct 2022 09:33:54 GMT
Date: Mon, 31 Oct 2022 07:50:57 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash b063d6c85ed75e48fe90a8a4db7cce6a
d66e8891c99971c9526beb9792cb62ff07088b63
42ef7f04fea73adf7becfac5cc15577e23a7214b86987039b3f6f2ffe3c7bd77
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=159007
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:57 GMT
Etag: "635f4880-116"
Expires: Wed, 02 Nov 2022 04:01:04 GMT
Last-Modified: Mon, 31 Oct 2022 04:01:04 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 560b4e7409ea02b2452fbc134dcb6dbe
ce9cc0352d6adbbfed631776ba4ae78aca2f11fb
0244f84174b659fd3714a6b925cb2684cbd9890863c9c27c5ad7a3fb8ea15cf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0244F84174B659FD3714A6B925CB2684CBD9890863C9C27C5AD7A3FB8EA15CF8"
Last-Modified: Sat, 29 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21588
Expires: Mon, 31 Oct 2022 13:50:45 GMT
Date: Mon, 31 Oct 2022 07:50:57 GMT
Connection: keep-alive
kvkddd.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
104.21.233.184200 OK 967 kB URL HTTP/2 kvkddd.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
IP 104.21.233.184:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 967 kB (966741 bytes)
Hash e6e170a45f5089c336f21c4453d4e00f
20fcfbe9d22eb6868add8b1782234d1b888c0337
a37eaf9f04a634f3e85dcd7353eb1fa224ddefa8d1e04b65a946b3cebf97ea75
GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1
Host: kvkddd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://httv6.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 31 Oct 2022 07:50:57 GMT
content-type: image/gif
content-length: 966741
last-modified: Sat, 12 Mar 2022 15:18:45 GMT
etag: "622cb9d5-ec055"
expires: Sat, 19 Nov 2022 22:41:40 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 896957
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jIW4rMZlIK3rkQ8o0o44mgAtCxNxo4BbFHSJZOMt7r11vSQ%2FN1lW%2F8JobOMxzWY2mOnpZvLePoXFIy9PXX3UB9GslhbifUFKnSVJW9LJbX4jj2%2F0XGvM6SrUdSRZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 762acd8278f07774-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.6v6.work/v/?uid=387913
23.225.199.165200 OK 23 B IP 23.225.199.165:0
File type Unicode text, UTF-8 text, with no line terminators
Hash 7ef3933d0347a8eb9b3dbf6f4b035b78
772121927ca42ae6345bcfc9eea8a0a3dcefc369
1645ef4e05613302e213e91b4ef584695a22391778e12d0dff49b0fdbd0208da
GET /v/?uid=387913 HTTP/1.1
Host: i.6v6.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1532459328&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1532459328&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1532459328&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 31 Oct 2022 07:50:57 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=9022575B5DCA6DEE; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
523zyw.com/upload/vod/2022-04-27/165103222712.jpg
137.175.59.81200 OK 58 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-27/165103222712.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 638x428, components 3\012- data
Hash 852364a47d1b917dc4d57f158c3a404e
50d2bb0e8d9cea663bba6d820b2a8e147400ffe6
59f7d868fb8238cad96aeef0f16883148d9b87618f89d688f947df320502cc36
GET /upload/vod/2022-04-27/165103222712.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 58523
Last-Modified: Mon, 05 Sep 2022 20:18:12 GMT
Connection: keep-alive
ETag: "63165984-e49b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash aa19e033741c3aa56f43d850dd0c9ef0
abb07bea942b5b2a3c6f8d5f5d5b3712927c2ef2
5a409df19dbc46ffc308d29569a88757eff7f1f58c54e715767dd219852ed99e
GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:57 GMT
Etag: f7b1616831fbb7fd0b01ff9165b92cf0
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D34AEA8436EBD05F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 02d91b1b4e74ba75cad1a60e08cbbe8c
8641ddd70c72de3f4a669184163e5d9a47653c20
bd705143bc3f79f7b153118d616ff5d4cc6a42ba901bb52319274c54c4410031
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 29 Oct 2022 04:53:32 GMT
Expires: Sat, 05 Nov 2022 04:53:31 GMT
Etag: "8641ddd70c72de3f4a669184163e5d9a47653c20"
Cache-Control: max-age=420752,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd847c4ab50f-OSL
523zyw.com/upload/vod/2022-04-26/16509470434.jpg
137.175.59.81200 OK 91 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-26/16509470434.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Hash 9de92e63b245c8dcf6f72b56964b4755
3dce6386a57e803cb1b745ccec458aca253eb4c7
f808ec21d31910b19151248142d5f29691effd90a805c7b2abe6b6132bc0aacc
GET /upload/vod/2022-04-26/16509470434.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 90821
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-162c5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash b7b83454f318611fb7e7c0d55cf4bff7
cd7ceb83cc77f805d4377f91870e06f22a5372d8
54abcb72771c21fa059199b08fc39d152bd68c076a1ea9b90b6b3828e0f4a7e6
GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: a2168c2e1473f4715f2e7b832f38e364
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:57 GMT
Etag: 935c384fd6b3fc4df4144fd30dea91ae
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9A8CDFE4DD6685A9; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash d0731b83d6f5ead4d429272fa813e7e0
6a578f9cdbdba3317fcfaa85d554893cfeb03ada
e1d5e19b73cee3810d41995d732a268ece1af305753c311ace99f242c807d272
GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: a2168c2e1473f4715f2e7b832f38e364
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:57 GMT
Etag: 52cebf915db07bed1f4245675f8cc133
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=1793886ED829A1A3; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
523zyw.com/upload/vod/2021-12-12/163928244412.jpg
137.175.59.81200 OK 99 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/163928244412.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 511x356, components 3\012- data
Hash 85ba9823524cefc88cdcea9d4116a585
be2b0673011a76984ca913fb3a0db41ec693748b
0152d506af162e87bd953652dbcbfe074c0c09f297584726b60a5f023088fe07
GET /upload/vod/2021-12-12/163928244412.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 99257
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:14:04 GMT
Accept-Ranges: bytes
ETag: "93e318b3eefd71:0"
523zyw.com/upload/vod/2021-12-12/16392818798.jpg
137.175.59.81200 OK 111 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/16392818798.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 793x562, components 3\012- data
Size 111 kB (110550 bytes)
Hash 910fce95ebf2d8859172907460898c34
339d377df907740580aa7842a2848cfe132d849f
1d4be13c3a9743a2bb59841ef0ba62fdd51586950f974f1822634791ddaf432e
GET /upload/vod/2021-12-12/16392818798.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 110550
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:39 GMT
Accept-Ranges: bytes
ETag: "98329462defd71:0"
523zyw.com/upload/vod/2022-04-26/165094704413.jpg
137.175.59.81200 OK 52 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-26/165094704413.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Hash 9df79a1039a265e3aede2519a4dd1346
9a5ccf2fb7dafe2b3c9b23cccd2ee6541ccaf96e
4cc5901da342e358186c844766394bf6b3468f332cc7b962367324482f81ca91
GET /upload/vod/2022-04-26/165094704413.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 52296
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-cc48"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
523zyw.com/upload/vod/2022-04-26/16509470435.jpg
137.175.59.81200 OK 165 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-26/16509470435.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 689x480, components 3\012- data
Size 165 kB (164598 bytes)
Hash 0dabf5dcf6e8e0f4b37173b128f0f141
c642e42f22f08bccbeba70ccee2458cf1366b613
bfe810c4bbb2917345fdddff9e3141e7dec72ae0996d86e814b96e19ed38aa47
GET /upload/vod/2022-04-26/16509470435.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 164598
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-282f6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
523zyw.com/upload/vod/2022-04-26/16509470436.jpg
137.175.59.81200 OK 174 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-26/16509470436.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.00, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x404, components 3\012- data
Size 174 kB (173574 bytes)
Hash df8962c3d72dec73d454d09db25abc43
007a628c477ad19a6673e09f247e0154a287e0bd
4fcdc49fd13e9039eb7a9587f99f7834ebd7ab78329ecc49db87f2106d86e029
GET /upload/vod/2022-04-26/16509470436.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 173574
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-2a606"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
523zyw.com/upload/vod/2022-04-28/165111874213.jpg
137.175.59.81200 OK 5.9 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-28/165111874213.jpg
IP 137.175.59.81:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash fb650bbc7f5a0e5cec7c737329ef4442
f25a08b9831ec14f293d3b7dbd45e899b537c952
05e9a0bf267be2312730ba7f0ca4b8ed881e3d961a57f401ce2f747dda0d594c
GET /upload/vod/2022-04-28/165111874213.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 5926
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-1726"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 02d91b1b4e74ba75cad1a60e08cbbe8c
8641ddd70c72de3f4a669184163e5d9a47653c20
bd705143bc3f79f7b153118d616ff5d4cc6a42ba901bb52319274c54c4410031
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 29 Oct 2022 04:53:32 GMT
Expires: Sat, 05 Nov 2022 04:53:31 GMT
Etag: "8641ddd70c72de3f4a669184163e5d9a47653c20"
Cache-Control: max-age=420752,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd844802b4fd-OSL
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=971258534&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=971258534&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=971258534&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 31 Oct 2022 07:50:58 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=731ED34BD39EDB51; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
523zyw.com/upload/vod/2022-04-26/165094704412.jpg
137.175.59.81200 OK 102 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-26/165094704412.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 543x372, components 3\012- data
Size 102 kB (102433 bytes)
Hash 417833e4145519c7404e5ed081f285f7
58c116260504f972c805859f95065eeeccaf4b8b
fa786d18376ed32f3ef1b094625ed13a7efeebdaa036f29385de16e64286aed4
GET /upload/vod/2022-04-26/165094704412.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 102433
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-19021"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
523zyw.com/upload/vod/2022-04-26/165094704411.jpg
137.175.59.81200 OK 73 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-26/165094704411.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Hash 15adf81b551232bb695c0c9460363555
ac39b1dbbd758a2faac745b837a1f59a8df5b508
c036d9e95b26e9c49663d4b5c122282ad271896a9bc34ff9905c0dcfd8776101
GET /upload/vod/2022-04-26/165094704411.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 72887
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-11cb7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
523zyw.com/upload/vod/2022-04-26/16509470449.jpg
137.175.59.81200 OK 58 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-26/16509470449.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Hash 0c9ef180b5dd7d1488ce96eef2aae800
916bee93c74a0cb97885cee46400958a2f727506
f4a1414a4393bf8b1105b335d64255678a279e062712be15cc7f2c78d56cfb81
GET /upload/vod/2022-04-26/16509470449.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 57627
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-e11b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pkff85.xyz/template/web/GG/d7.gif
104.223.155.206200 OK 69 kB URL HTTP/2 pkff85.xyz/template/web/GG/d7.gif
IP 104.223.155.206:0
File type GIF image data, version 89a, 500 x 280\012- data
Hash 1bcc24508393a5ab53d332d2b93e25f7
99dde070cdca51d44f1b34f8931d4508866d5ede
701d325b515ff965196f3f63d5ecec89a8b72461ebe106eeaf1e81eb8b5f2e4c
GET /template/web/GG/d7.gif HTTP/1.1
Host: pkff85.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 31 Oct 2022 07:50:57 GMT
content-type: image/gif
content-length: 68856
last-modified: Wed, 11 May 2022 04:36:45 GMT
etag: "627b3d5d-10cf8"
expires: Wed, 30 Nov 2022 07:50:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=597100050&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=597100050&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=597100050&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 31 Oct 2022 07:50:58 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=75190344AA2F2CAE; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
523zyw.com/upload/vod/2022-04-26/165094704410.jpg
137.175.59.81200 OK 176 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-26/165094704410.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 673x465, components 3\012- data
Size 176 kB (175806 bytes)
Hash 09b9c0ff84c75c1fe96e79a43c950e8d
dbcef7fec000e6f31ab3509af3346f662681c284
dd2926e3b3d1429f892b0454b05caab3492fe63b31c4aef925806afd30519525
GET /upload/vod/2022-04-26/165094704410.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 175806
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-2aebe"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 7975e4399fd0dd31eb269405dc6234c8
99d2c0b8ff0052386596ec1493be71f9b0b1b293
e1bcb27b72cdedb5ac50318b11b8d42a20701f18f0e7209355eb8e9f0cf50f64
GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: f7b1616831fbb7fd0b01ff9165b92cf0
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:58 GMT
Etag: a052770ae401ba7cedd70a771607b242
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9F2E165F9684302C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
523zyw.com/upload/vod/2022-04-27/165103222713.jpg
137.175.59.81200 OK 84 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-27/165103222713.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Hash 1662b4fad0e47ecdfde4b0c84a747f45
78a07a40341e8476702d519b69f0591ad83fd1cc
45c7b74cce630014850010c4bacbe6aa8cb175bcdd7202b04406d0e7db4780fc
GET /upload/vod/2022-04-27/165103222713.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 83780
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-14744"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 95e357750d4cb257b307034d852cb19c
288555c3c7f2fa75b0284e89a2f226a058cfb5f3
d69c697cd3ebef2b990d893ba3c86d73f20a72127fcb40138e38b8903c733b93
GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: f7b1616831fbb7fd0b01ff9165b92cf0
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:58 GMT
Etag: 9c696a2f9057988367e5a26d7ab08d30
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=758BD2AE63627893; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
523zyw.com/upload/vod/2022-04-26/16509470437.jpg
137.175.59.81200 OK 125 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-26/16509470437.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 591x406, components 3\012- data
Size 125 kB (125144 bytes)
Hash 501b9be7b2a49130c4f11591a55c1603
4bbe92b6eac3f7470f4fcf6103311fc483ef0e87
c72e0d43f222c5b6c2071ee29479fe62b9d0d2b30d25abe41e1a929fef18c220
GET /upload/vod/2022-04-26/16509470437.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 125144
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-1e8d8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
523zyw.com/upload/vod/2022-04-26/16509470438.jpg
137.175.59.81200 OK 129 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-26/16509470438.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 661x439, components 3\012- data
Size 129 kB (128850 bytes)
Hash 28a86f472fd6453c3b1b7d8d859dce88
b61582d7d5d98a2b69954c93ed64034232e52010
5c6113edbadf10c5af08688a7a5a52c2864deb42dd949dc7cf39b0b359880798
GET /upload/vod/2022-04-26/16509470438.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 128850
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-1f752"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
kmf.janvoq.cn/j/155176
203.107.60.95200 OK 6.0 kB IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type ASCII text, with very long lines (1107)
Hash e4638c80600c4b1a73fda9f2791fd115
c63c82b0bdc9c307e4f52392707dd0e54771241d
970a7ba501a2e5fdfee39eb8c163d3fcce088b930ac58337a4466e7662e4575f
GET /j/155176 HTTP/1.1
Host: kmf.janvoq.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=f2b81ccff7bd71bd1934320471c49f5300574657e2ac900adb4a3346e962e895; Path=/; HttpOnly
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Content-Encoding: gzip
Vary: Accept-Encoding
523zyw.com/upload/vod/2022-04-27/165103222714.jpg
137.175.59.81200 OK 362 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-27/165103222714.jpg
IP 137.175.59.81:0
File type GIF image data, version 89a, 450 x 298\012- data
Size 362 kB (362009 bytes)
Hash 803a80fe38d4c795aa70790869936593
23a9295651ea318f5eb7f825d3669fc66e17fe8e
0a02ef4cd2040d34301c0cb561560a5c395e499cdee445507ad494e2ed3f74d8
GET /upload/vod/2022-04-27/165103222714.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 362009
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-58619"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif
20.255.19.235200 OK 248 kB URL HTTP/1.1 u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif
IP 20.255.19.235:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 650 x 350\012- data
Size 248 kB (247851 bytes)
Hash a9bf695dc5e2ed4a1d5e17818bb895f6
5018e0b9d477d7a536586297fbd2404fc407e295
6cd4ba0841e74acee6bcbc0933c03a0932d5e267a3a2b2af1b8f1abd6a7c0010
GET /a13ccf8571ea4a7ab6b41a306a625f57.gif HTTP/1.1
Host: u0062.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 29 May 2022 12:25:12 GMT
ETag: W/"62936628-3c8da"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
523zyw.com/upload/vod/2022-02-18/164515708412.jpg
137.175.59.81200 OK 113 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-02-18/164515708412.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 519x390, components 3\012- data
Size 113 kB (112642 bytes)
Hash 6a7a5076d7f7547e02bfeef0777f9449
88fc7770651a95098bfa1dece839c05fd92222ac
06d5b4a490068a0f951ffcf6108a7cf3fe4caca141886734ac99da2b5d1f1ff1
GET /upload/vod/2022-02-18/164515708412.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 112642
Last-Modified: Fri, 24 Jun 2022 22:00:56 GMT
Connection: keep-alive
ETag: "62b63418-1b802"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
523zyw.com/upload/vod/2022-08-23/16612599473.jpg
137.175.59.81200 OK 62 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-08-23/16612599473.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Hash 9df83c82c127ba1d02076f5094bdd83d
d432e42a756b60086953c4bf40276511991a3997
c2cee38f2ce673ecdac94c780169da4af7c50b2b6b6424cd4853f40c95eddb83
GET /upload/vod/2022-08-23/16612599473.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 62094
Connection: keep-alive
Last-Modified: Tue, 23 Aug 2022 13:05:47 GMT
Accept-Ranges: bytes
ETag: "3af3c2ff1b6d81:0"
kmf.janvoq.cn/j/155175
203.107.60.95200 OK 6.1 kB IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type ASCII text, with very long lines (1107)
Hash b1d63039f91e66d31aff15412080d0c8
3b2a12b14c4d7ff4fdfc4407cde5beee01ef2d03
374640d15adac3738b73ad872fef0de14f6c14ab2ed8d4ad6241a21021e1ea34
GET /j/155175 HTTP/1.1
Host: kmf.janvoq.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=43bef31bd2018cb5096b1e96aa6584ff1435290ffcc8647b5d349a3eee967b5e; Path=/; HttpOnly
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Content-Encoding: gzip
Vary: Accept-Encoding
523zyw.com/upload/vod/2022-03-08/164671236411.jpg
137.175.59.81200 OK 63 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-03-08/164671236411.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x420, components 3\012- data
Hash 1b0092fedfe94eec5a80894fd8b25fe7
8dfc3995b5453d73d0dd99d830ed7d70da39a645
18f0db29a80435c6db6b4473a6bec6be4f5cecfc2a309cd8d48ac775986bd30c
GET /upload/vod/2022-03-08/164671236411.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 62883
Connection: keep-alive
Last-Modified: Tue, 08 Mar 2022 04:06:05 GMT
Accept-Ranges: bytes
ETag: "3b29e0d4a132d81:0"
523zyw.com/upload/vod/2021-12-14/16394779675.jpg
137.175.59.81200 OK 133 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-14/16394779675.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x400, components 3\012- data
Size 133 kB (132953 bytes)
Hash 555034244f1b0da4af778a48d033257a
6934657701906f56f7633b4b0937dd4e2ca3835f
2a0a89bcbb1ac43181f53296d8206528f51538a8f42505a7f2b4897989742a95
GET /upload/vod/2021-12-14/16394779675.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 132953
Connection: keep-alive
Last-Modified: Tue, 14 Dec 2021 10:32:47 GMT
Accept-Ranges: bytes
ETag: "2d2c4efd5f0d71:0"
523zyw.com/upload/vod/2021-12-12/163928246212.jpg
137.175.59.81200 OK 139 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/163928246212.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x400, components 3\012- data
Size 139 kB (138612 bytes)
Hash 27330222b06525751920fd1ff484ce55
bf010bbc6d84c903ad2f34928ea2f1e974e487b7
de9dd0affff2081ed218a0db8e240791adfb2e3d41ed3c1125226abadd5900e4
GET /upload/vod/2021-12-12/163928246212.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 138612
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:14:22 GMT
Accept-Ranges: bytes
ETag: "d68bf2bdeefd71:0"
523zyw.com/upload/vod/2021-12-12/16392823428.jpg
137.175.59.81200 OK 175 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/16392823428.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 704x480, components 3\012- data
Size 175 kB (175117 bytes)
Hash 3b81a27a4e93f2cbb3031ceb2370a91f
2872b204a686cb63f579a1c69c047bb9a72ea790
000b8dba64cc2a24b12b45d2f2466b6e8dcdd7d3c0ee6ccb70ad7ebfb7910d25
GET /upload/vod/2021-12-12/16392823428.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 175117
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:12:22 GMT
Accept-Ranges: bytes
ETag: "03c6476eefd71:0"
523zyw.com/upload/vod/2021-12-15/16395506494.jpg
137.175.59.81200 OK 132 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-15/16395506494.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x400, components 3\012- data
Size 132 kB (131972 bytes)
Hash b715e976ad8a00b629f8e1e7f68c1408
354b35577dd185518aeba6a5ca3fb5ca0453778c
3eed02ad338eea03bb3ca36788232036e87216ac4894df317482bebf117a8043
GET /upload/vod/2021-12-15/16395506494.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 131972
Connection: keep-alive
Last-Modified: Wed, 15 Dec 2021 06:44:10 GMT
Accept-Ranges: bytes
ETag: "9376622a7ff1d71:0"
523zyw.com/upload/vod/2021-12-19/16398863504.jpg
137.175.59.81200 OK 148 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-19/16398863504.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x400, components 3\012- data
Size 148 kB (148042 bytes)
Hash 6a3a7099a42c3540feaf474dd538b77a
3e86f2dee7f72a0a997d9166c7288e194135fdc5
10de0dad0c832ea1c2811a9ad3ccee3eb7d48f0f6994ffbfd1388e622e8c5fdd
GET /upload/vod/2021-12-19/16398863504.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 148042
Connection: keep-alive
Last-Modified: Sun, 19 Dec 2021 03:59:10 GMT
Accept-Ranges: bytes
ETag: "905e20c78cf4d71:0"
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash bd1d2862bccd03fa25deaf009a680af0
0a683f293bb9aa65d0bd5d69b3c52e2a88acad2d
33ad9069f1e1d6004b974c0edff374cd5e8bd2cb553717da38714c34acc8ba36
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 28 Oct 2022 16:07:45 GMT
Expires: Fri, 04 Nov 2022 16:07:44 GMT
Etag: "0a683f293bb9aa65d0bd5d69b3c52e2a88acad2d"
Cache-Control: max-age=374804,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd8bad88b50f-OSL
523zyw.com/upload/vod/2021-12-12/163928217214.jpg
137.175.59.81200 OK 69 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/163928217214.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 728x403, components 3\012- data
Hash 37cab5f150ecf17647b8756ec0a31f4e
f9f0677e10d96aabcd5e1ba64438dc607cea7815
db17bb59bec0b53bd4fe69dfe19fbdf9ac7539b0e6212ea41adf0d1fe5790ca8
GET /upload/vod/2021-12-12/163928217214.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 69209
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:09:34 GMT
Accept-Ranges: bytes
ETag: "6afc2412eefd71:0"
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 74dee30515760f060b1933a4c6f92988
5ba4395ba3dec93b2aa0a35f77c95027b5235d1a
bbf8b4cda2bc44364de5fee48a5b2acc539f366df0c2d8ba777e250e077e8b6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=101753
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:59 GMT
Etag: "635e68dc-2d7"
Expires: Tue, 01 Nov 2022 12:06:52 GMT
Last-Modified: Sun, 30 Oct 2022 12:06:52 GMT
Server: nginx
Content-Length: 727
523zyw.com/upload/vod/2021-12-12/163928188711.jpg
137.175.59.81200 OK 8.0 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/163928188711.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash edddef503d4f0645a2917e228a96c15c
d524eab2715bea7d1667cffc9cf0d1105ae73ae0
a07bcd7573d163c984c28747d18a8af6b214a08789b6186307c2e81e8953e21a
GET /upload/vod/2021-12-12/163928188711.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 7994
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:47 GMT
Accept-Ranges: bytes
ETag: "e1c55167defd71:0"
523zyw.com/upload/vod/2021-12-12/163928217517.jpg
137.175.59.81200 OK 120 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/163928217517.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 928x519, components 3\012- data
Size 120 kB (120259 bytes)
Hash 1bc84f957d30a26ae7e72398edc3c731
160c6f5535b65a1f8a779ce3323e652ab3ee2088
91e1d53b2356efa907f86da9f15d792e3e0dab42f5cd02e2a650f9e33acf6797
GET /upload/vod/2021-12-12/163928217517.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 120259
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:09:37 GMT
Accept-Ranges: bytes
ETag: "f4ed913eefd71:0"
523zyw.com/upload/vod/2021-12-12/16392819441.jpg
137.175.59.81200 OK 96 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/16392819441.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x450, components 3\012- data
Hash 5869e1c25b0fc7186ce9ad30bd9ddbc5
8067df54706066f7b114aa48e30f25955fdc522d
a09b92dfda2858241ea736afac3b1bab1745558af68b8620f09db4b2cc593bbe
GET /upload/vod/2021-12-12/16392819441.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 96418
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:05:44 GMT
Accept-Ranges: bytes
ETag: "8886c89defd71:0"
523zyw.com/upload/vod/2021-12-12/16392818785.jpg
137.175.59.81200 OK 60 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/16392818785.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 775x467, components 3\012- data
Hash 513d6f7c1748d8b565dc64c6bd4b7cba
5b5d4b33a33d10218b5f793654bf737662bb8c1e
2ecc9a695c38453e149d807a74e9fdac685fe496d42624e9691ab6f4da0afe0e
GET /upload/vod/2021-12-12/16392818785.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 59944
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:39 GMT
Accept-Ranges: bytes
ETag: "b9341862defd71:0"
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash f25c05896d5cbd43ef2de8b1c471133a
9b8340281356d1ed45b8ec412db72b4a826193be
fabca88615aaac1d46d59c3871985b97097b7504f8300348a1cc3f15b2262e93
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 30 Oct 2022 07:58:51 GMT
Expires: Sun, 06 Nov 2022 07:58:50 GMT
Etag: "9b8340281356d1ed45b8ec412db72b4a826193be"
Cache-Control: max-age=518270,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd8be8a7b4fd-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash f25c05896d5cbd43ef2de8b1c471133a
9b8340281356d1ed45b8ec412db72b4a826193be
fabca88615aaac1d46d59c3871985b97097b7504f8300348a1cc3f15b2262e93
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 30 Oct 2022 07:58:51 GMT
Expires: Sun, 06 Nov 2022 07:58:50 GMT
Etag: "9b8340281356d1ed45b8ec412db72b4a826193be"
Cache-Control: max-age=518270,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd8c1e65b50f-OSL
taiwtp1.com/xin/960240.gif
220.128.218.220200 OK 436 kB URL HTTP/2 taiwtp1.com/xin/960240.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 960 x 240\012- data
Size 436 kB (436473 bytes)
Hash 732bd86d0a1c250c8ee8f6ebf30d358e
9f8ec516e191af6504caead933e550627ed80af9
8f3edf67a76ef4c9b72fe1dc842ec813009e0fd7bb1945c96d564eb385d068ee
GET /xin/960240.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 31 Oct 2022 07:48:50 GMT
content-type: image/gif
content-length: 436473
last-modified: Thu, 20 Oct 2022 07:11:15 GMT
etag: "6350f493-6a8f9"
expires: Wed, 30 Nov 2022 07:48:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
523zyw.com/upload/vod/2021-12-12/16392818773.jpg
137.175.59.81200 OK 26 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/16392818773.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 512x288, components 3\012- data
Hash 93f7729564922532163cf37cfc4c6c88
3d9f39669d91df84117462e4cdc7a44b9f216c52
1e69b39a30aea3e3812c3e0c0e64fe0c52ad21984a3c801c651ac243606c8bdd
GET /upload/vod/2021-12-12/16392818773.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 25815
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:37 GMT
Accept-Ranges: bytes
ETag: "61ec6e61defd71:0"
523zyw.com/upload/vod/2021-12-12/163928187015.jpg
137.175.59.81200 OK 17 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/163928187015.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 512x288, components 3\012- data
Hash d734ed0eda2219cec79ec0f6843518c2
72cfb95e4850c464837d43200877f226d03073a1
65b53b0900754cca0d26d6a59fe9c205d27a72bf042032cf498eae01a3ad497c
GET /upload/vod/2021-12-12/163928187015.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 16665
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:31 GMT
Accept-Ranges: bytes
ETag: "87647e5ddefd71:0"
523zyw.com/upload/vod/2021-12-12/16392818772.jpg
137.175.59.81200 OK 98 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/16392818772.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 963x541, components 3\012- data
Hash db7affd73378abb93ad4b1d80da4c819
37b4035bec5619c978b897f36177191edf18eaab
ecd6e293c5e7479fc3eaab5a34a1d97cf781579d4b7a7399a884babb05f69615
GET /upload/vod/2021-12-12/16392818772.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 97476
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:37 GMT
Accept-Ranges: bytes
ETag: "204661defd71:0"
523zyw.com/upload/vod/2021-12-20/16399938364.jpg
137.175.59.81200 OK 148 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-20/16399938364.jpg
IP 137.175.59.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 595x437, components 3\012- data
Size 148 kB (147704 bytes)
Hash 1282fd84ef7a9ccf464bc5cff32c9417
69d8524382c2ac47a92c47bdbe29c6921dd242a9
739014fa52d402f69fb9ebaf9c5cef724b38f15cbea083e93b178b7196c0751b
GET /upload/vod/2021-12-20/16399938364.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 147704
Connection: keep-alive
Last-Modified: Mon, 20 Dec 2021 09:50:36 GMT
Accept-Ranges: bytes
ETag: "91395987f5d71:0"
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash f5ecb2dc6d548ea989a21ea3fd4dcc73
ea3ca4ef6a76214d0e85f1decfd9b2e422cf7aa9
d444a9c2e7b087e829cc39dc95544ac6472f5878fb9afd3c99635f6f67b22502
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 31 Oct 2022 07:42:47 GMT
Expires: Mon, 07 Nov 2022 07:42:46 GMT
Etag: "ea3ca4ef6a76214d0e85f1decfd9b2e422cf7aa9"
Cache-Control: max-age=603706,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd8f6d90b4fd-OSL
haitangtv2.top/template/img/1717.gif
122.10.49.87200 OK 2.8 MB URL HTTP/1.1 haitangtv2.top/template/img/1717.gif
IP 122.10.49.87:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 960 x 120\012- data
Size 2.8 MB (2812930 bytes)
Hash b84dd689257112c2eeb9ff11c1eb1de7
125c585e21293764e1e52ca97dc256af76a67fc5
bd957c468bded0806e0a7ab33334f11f4a8952467f2fa13c2c606cf0bfc0ce83
GET /template/img/1717.gif HTTP/1.1
Host: haitangtv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/gif
Content-Length: 2812930
Last-Modified: Wed, 26 Oct 2022 10:39:02 GMT
Connection: keep-alive
ETag: "63590e46-2aec02"
Expires: Wed, 30 Nov 2022 07:50:57 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 43081c15a2f0f6922a55bd21d03ea86e
2e5913c20f211bb7bf58cbd16451992c8491648c
f09ad0c1df3638c8fd36ae75cb78e949163e946d82ebf39345827fa14553f135
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 31 Oct 2022 07:34:21 GMT
Expires: Mon, 07 Nov 2022 07:34:20 GMT
Etag: "2e5913c20f211bb7bf58cbd16451992c8491648c"
Cache-Control: max-age=603199,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd8ffbe8b50f-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 43081c15a2f0f6922a55bd21d03ea86e
2e5913c20f211bb7bf58cbd16451992c8491648c
f09ad0c1df3638c8fd36ae75cb78e949163e946d82ebf39345827fa14553f135
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 31 Oct 2022 07:34:21 GMT
Expires: Mon, 07 Nov 2022 07:34:20 GMT
Etag: "2e5913c20f211bb7bf58cbd16451992c8491648c"
Cache-Control: max-age=603200,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd900e1fb4fd-OSL
gnrty.kmjkwe.xyz/kmnbhevhfjrtetd/c.gif
23.224.92.246200 OK 84 kB URL HTTP/1.1 gnrty.kmjkwe.xyz/kmnbhevhfjrtetd/c.gif
IP 23.224.92.246:0
File type GIF image data, version 89a, 600 x 200\012- data
Hash 9921b46e46364692e3907209e1ac751d
f471461e26bf90297b4fb9c15a44b33becf7a5b7
d626c8cb11a97739ab83d2cb8d27332f3d3d3294d3a48f5036614646a59adddf
GET /kmnbhevhfjrtetd/c.gif HTTP/1.1
Host: gnrty.kmjkwe.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/gif
Content-Length: 84426
Last-Modified: Thu, 20 Oct 2022 08:39:59 GMT
Connection: keep-alive
ETag: "6351095f-149ca"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172
203.107.60.95200 OK 727 B URL HTTP/1.1 kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172
IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 783cc119a0f7a9011e903e7fe6832f22
2d7ec6bd4a5d9dc19a935048a5624a6357df5842
39ff2d9297f05eb036275ee306204390da33c110e973e39da10cdc588f49d505
GET /tj.html?type=cnzz&id=1279999172 HTTP/1.1
Host: kmr.wdjptto.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=9fd64100fb6181bba0b80ed81f8cfff262ebdd31689d2c238356bba56ba2c376; Path=/; HttpOnly
Last-Modified: Wed, 25 Nov 2020 10:32:42 GMT
Vary: Accept-Encoding
ETag: W/"5fbe32ca-694"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip
ket.kdcxhr.cn/effect.php?type=ecv&planid=30267&adsid=5964403&zoneid=155175&uid=11321&adtplid=1001&plantype=cpv
203.107.60.95200 OK 20 B URL HTTP/1.1 ket.kdcxhr.cn/effect.php?type=ecv&planid=30267&adsid=5964403&zoneid=155175&uid=11321&adtplid=1001&plantype=cpv
IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /effect.php?type=ecv&planid=30267&adsid=5964403&zoneid=155175&uid=11321&adtplid=1001&plantype=cpv HTTP/1.1
Host: ket.kdcxhr.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=4a3b35e51fc037e336c6be167d07895ff91849d1562b6b750fb18e9208660e69; Path=/; HttpOnly
Server: nginx
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
ket.kdcxhr.cn/c.php?s=JnpvbmVpZD0xNTUxNzUmc2l0ZWlkPSZ1aWQ9MTEzMjEmYWRzaWQ9NTk2NDQwMyZwbGFuaWQ9MzAyNjcmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRjZjNng2LmNvbSUyRjEuaHRtbCUzRmNoYW5uZWxDb2RlJTNEZmsyOSZ2dGltZT0yMDIyLTEwLTMxIDE1OjUwOjU4JmlwPTkxLjkwLjQyLjE1NA==;bf1c5844caeaa46edcfb69eac52ce8a9;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj1odHRwJTNBJTJGJTJGd3d3LmdpZnRzLW5vdy5jb20lMkYmeD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGaHR0djYudG9wJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD0lRTYlQjUlQjclRTYlQTMlQTAlMkMlRTYlQjUlQjclRTYlQTMlQTBUViUyQyVFNiVCNSVCNyVFNiVBMyVBMCVFNSVCRCVCMSVFOCVBNyU4NiUyQyVFNiVCNSVCNyVFNiVBMyVBMEFWJTJDJUU2JUI1JUI3JUU2JUEzJUEwJUU3JUJEJTkxJmw9ZW4tVVMmYz0wJmg9OTI3
203.107.60.95200 OK 20 B URL HTTP/1.1 ket.kdcxhr.cn/c.php?s=JnpvbmVpZD0xNTUxNzUmc2l0ZWlkPSZ1aWQ9MTEzMjEmYWRzaWQ9NTk2NDQwMyZwbGFuaWQ9MzAyNjcmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRjZjNng2LmNvbSUyRjEuaHRtbCUzRmNoYW5uZWxDb2RlJTNEZmsyOSZ2dGltZT0yMDIyLTEwLTMxIDE1OjUwOjU4JmlwPTkxLjkwLjQyLjE1NA==;bf1c5844caeaa46edcfb69eac52ce8a9;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj1odHRwJTNBJTJGJTJGd3d3LmdpZnRzLW5vdy5jb20lMkYmeD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGaHR0djYudG9wJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD0lRTYlQjUlQjclRTYlQTMlQTAlMkMlRTYlQjUlQjclRTYlQTMlQTBUViUyQyVFNiVCNSVCNyVFNiVBMyVBMCVFNSVCRCVCMSVFOCVBNyU4NiUyQyVFNiVCNSVCNyVFNiVBMyVBMEFWJTJDJUU2JUI1JUI3JUU2JUEzJUEwJUU3JUJEJTkxJmw9ZW4tVVMmYz0wJmg9OTI3
IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /c.php?s=JnpvbmVpZD0xNTUxNzUmc2l0ZWlkPSZ1aWQ9MTEzMjEmYWRzaWQ9NTk2NDQwMyZwbGFuaWQ9MzAyNjcmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRjZjNng2LmNvbSUyRjEuaHRtbCUzRmNoYW5uZWxDb2RlJTNEZmsyOSZ2dGltZT0yMDIyLTEwLTMxIDE1OjUwOjU4JmlwPTkxLjkwLjQyLjE1NA==;bf1c5844caeaa46edcfb69eac52ce8a9;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj1odHRwJTNBJTJGJTJGd3d3LmdpZnRzLW5vdy5jb20lMkYmeD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGaHR0djYudG9wJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD0lRTYlQjUlQjclRTYlQTMlQTAlMkMlRTYlQjUlQjclRTYlQTMlQTBUViUyQyVFNiVCNSVCNyVFNiVBMyVBMCVFNSVCRCVCMSVFOCVBNyU4NiUyQyVFNiVCNSVCNyVFNiVBMyVBMEFWJTJDJUU2JUI1JUI3JUU2JUEzJUEwJUU3JUJEJTkxJmw9ZW4tVVMmYz0wJmg9OTI3 HTTP/1.1
Host: ket.kdcxhr.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST,GET,OPTIONS
Set-Cookie: aliyungf_tc=b96adf6d0c83f2a5171365ea5838b4f9f0c36b82ddd98a367ccf8db1d36b109a; Path=/; HttpOnly
region=%E6%8C%AA%E5%A8%81%2F%2F%E5%85%B6%E5%AE%83; expires=Sat, 29-Apr-2023 07:51:00 GMT; Max-Age=15552000; path=/
visitnum=1; expires=Mon, 07-Nov-2022 07:51:00 GMT; Max-Age=604800; path=/
11321_30267=re; expires=Mon, 31-Oct-2022 12:51:00 GMT; Max-Age=18000; path=/
do2click_30267=5964403%7C30267%7C11321%7C155175%7C; expires=Mon, 31-Oct-2022 10:51:00 GMT; Max-Age=10800; path=/
doEffect_30267=5964403%7C30267%7C11321%7C155175%7C; expires=Mon, 07-Nov-2022 07:51:00 GMT; Max-Age=604800; path=/
P3P: CP="Powered by Www.Zyiis.Com 2005-2016"
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
182.118.39.165200 OK 678 kB URL HTTP/2 p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
IP 182.118.39.165:0
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 270 x 160\012- data
Size 678 kB (677521 bytes)
Hash 94051cb1d1b77200b4462281a864b96e
e5b468a1b2f4bbdda1b6a3a0df2dcce6b3de7e06
d44d0d2dd188024b60ec38cb3f3ea10c080690175e923f90c9c2a2e862670c84
GET /img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image HTTP/1.1
Host: p26.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 31 Oct 2022 07:50:59 GMT
content-type: image/gif
content-length: 677521
server: openresty
age: 8123345
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 30 Dec 2021 00:07:35 GMT
nw-session-id: 2021123008073501015013614530ADE9B0dprsv01tt
nw-session-trace: 2021-12-30T08:07:35.194015393+08:00 68
x-bdcdn-cache-status: TCP_HIT
x-ccdn-cachettl: 31536000
x-length: 677521
x-powered-by: ImageX
x-response-date: Thu, 30 Dec 2021 08:07:35 GMT
x-response-lb: image
x-tt-logid: 2021123008073501015013614530ADE9B0
nginx-hit: 1
server-timing: cdn-cache;desc=HIT, edge;dur=3
via: CHN-HAzhengzhou-AREACUCC1-CACHE40[3],CHN-HAzhengzhou-AREACUCC1-CACHE35[0,TCP_HIT,1],CHN-TJ-GLOBAL1-CACHE117[7],CHN-TJ-GLOBAL1-CACHE35[0,TCP_HIT,6]
x-hcs-proxy-type: 1
x-tt-trace-host: 016a2077e03b2041825c42669e9a23cec5ee04519515486308eb42b81315658df6aa5ed29ad219c7d25626d5b022cced5274c18183adcd43889f65e87a17fde2315b0226a7e5f07d4c19094125051b3e74699be800dd629619bc2141d5fb81fc89ccc76230d7d3e4f731a9d881f3cb16c4
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
accept-ranges: bytes
access-control-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2
kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172
203.107.60.95200 OK 727 B URL HTTP/1.1 kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172
IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 783cc119a0f7a9011e903e7fe6832f22
2d7ec6bd4a5d9dc19a935048a5624a6357df5842
39ff2d9297f05eb036275ee306204390da33c110e973e39da10cdc588f49d505
GET /tj.html?type=cnzz&id=1279999172 HTTP/1.1
Host: kmr.wdjptto.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=80a494cc942de839b2874dd4c251a352a3d6328020e6ca2f13ba895ef96158b1; Path=/; HttpOnly
Last-Modified: Wed, 25 Nov 2020 10:32:42 GMT
Vary: Accept-Encoding
ETag: W/"5fbe32ca-694"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip
kmr.mjnbrt.xyz/mnrt/kmrr.png
23.224.92.243200 OK 85 kB URL HTTP/1.1 kmr.mjnbrt.xyz/mnrt/kmrr.png
IP 23.224.92.243:0
File type PNG image data, 2084 x 2084, 8-bit/color RGBA, non-interlaced\012- data
Hash 3c80359bedd35432aea1539a1edcd122
62b0eb9a7eef9b048ab55e3e8d8486a43d5ef8db
74df8ccb6d42d5ee40aaffccd0246978eca881c260c8505afb9f71f85fe17ee2
Analyzer Verdict Alert quad9 Sinkholed
GET /mnrt/kmrr.png HTTP/1.1
Host: kmr.mjnbrt.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/png
Content-Length: 84560
Last-Modified: Thu, 20 Oct 2022 08:39:59 GMT
Connection: keep-alive
ETag: "6351095f-14a50"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 3d17bc406e10bab281ae8e975abaeae9
c308f129a627af641bd381ab24e9cf98f75dff3a
959b331d113d7911251dc6b68143d116f31aefa141efb2b60d10202b5d177672
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 04 Nov 2022 06:08:50 GMT
ETag: "c308f129a627af641bd381ab24e9cf98f75dff3a"
Last-Modified: Mon, 31 Oct 2022 06:08:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1075
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 762acd974803b4fd-OSL
haitangtv2.top/template/img/17172.gif
122.10.49.87200 OK 3.2 MB URL HTTP/1.1 haitangtv2.top/template/img/17172.gif
IP 122.10.49.87:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 600 x 240\012- data
Size 3.2 MB (3197145 bytes)
Hash 4dff729097677e6c8875d87ecb1cc40a
b2a83ac93f0177346ba2a2ba69280db169a89d0e
fdade7b3735760517f548e086b27db22b3701015daf7d94dd94a4a284373a154
GET /template/img/17172.gif HTTP/1.1
Host: haitangtv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/gif
Content-Length: 3197145
Last-Modified: Thu, 27 Oct 2022 07:06:28 GMT
Connection: keep-alive
ETag: "635a2df4-30c8d9"
Expires: Wed, 30 Nov 2022 07:50:57 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
gnrty.kmjkwe.xyz/hyjoilbsegcv/g.gif
23.224.92.246200 OK 85 kB URL HTTP/1.1 gnrty.kmjkwe.xyz/hyjoilbsegcv/g.gif
IP 23.224.92.246:0
File type GIF image data, version 89a, 600 x 200\012- data
Hash 0cb399000c6ab6a24427f7f3988c0d67
28a3f6e6010d3bbfe920fc49e37654d6a26d5df0
801a92ac0b391e96d44f5ca8d85663870e08a6ccace9abaed47364e88fad2d50
GET /hyjoilbsegcv/g.gif HTTP/1.1
Host: gnrty.kmjkwe.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/gif
Content-Length: 84902
Last-Modified: Thu, 20 Oct 2022 08:39:58 GMT
Connection: keep-alive
ETag: "6351095e-14ba6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
s9.cnzz.com/z_stat.php?id=1279999172&web_id=1279999172
220.185.164.250200 OK 20 B URL HTTP/2 s9.cnzz.com/z_stat.php?id=1279999172&web_id=1279999172
IP 220.185.164.250:0
ASN #136190 JINHUA, ZHEJIANG Province, P.R.China.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /z_stat.php?id=1279999172&web_id=1279999172 HTTP/1.1
Host: s9.cnzz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kmr.wdjptto.cn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 20
date: Mon, 31 Oct 2022 07:19:05 GMT
vary: Accept-Encoding
x-powered-by: PHP/5.5.25
last-modified: Mon, 31 Oct 2022 07:19:05 GMT
cache-control: max-age=1800,s-maxage=3600
content-encoding: gzip
ali-swift-global-savetime: 1667200745
via: cache31.l2ea120-8[63,62,200-0,M], cache15.l2ea120-8[64,0], cache16.cn4100[0,0,200-0,H], cache3.cn4100[1,0]
age: 1916
x-cache: HIT TCP_MEM_HIT dirn:15:340832518
x-swift-savetime: Mon, 31 Oct 2022 07:19:05 GMT
x-swift-cachetime: 3600
timing-allow-origin: *
eagleid: dcb9a49716672026614956336e
X-Firefox-Spdy: h2
s9.cnzz.com/z_stat.php?id=1279999172&web_id=1279999172
220.185.164.250304 Not Modified 0 B URL HTTP/2 s9.cnzz.com/z_stat.php?id=1279999172&web_id=1279999172
IP 220.185.164.250:0
ASN #136190 JINHUA, ZHEJIANG Province, P.R.China.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /z_stat.php?id=1279999172&web_id=1279999172 HTTP/1.1
Host: s9.cnzz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kmr.wdjptto.cn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Mon, 31 Oct 2022 07:19:05 GMT
TE: trailers
HTTP/2 304 Not Modified
server: Tengine
content-type: application/javascript
date: Mon, 31 Oct 2022 07:19:05 GMT
vary: Accept-Encoding
x-powered-by: PHP/5.5.25
last-modified: Mon, 31 Oct 2022 07:19:05 GMT
cache-control: max-age=1800,s-maxage=3600
content-encoding: gzip
ali-swift-global-savetime: 1667200745
via: cache31.l2ea120-8[63,62,200-0,M], cache15.l2ea120-8[64,0], cache16.cn4100[0,0,304-0,H], cache3.cn4100[2,0]
age: 1916
x-cache: HIT TCP_IMS_HIT dirn:15:340832518
timing-allow-origin: *
eagleid: dcb9a49716672026617677373e
X-Firefox-Spdy: h2
523zyw.com/upload/vod/2021-12-12/16392821827.jpg
137.175.59.81200 OK 3.6 MB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/16392821827.jpg
IP 137.175.59.81:0
File type GIF image data, version 89a, 286 x 180\012- data
Size 3.6 MB (3625076 bytes)
Hash d310607aba67aa996b3bc62292effdfd
d9f9c45611fd314a4354c24b942212eab746161e
411ebdc49e623e638e02d1b55cde9cd0689bfaf6c7f3362310137c5edbf08eb4
GET /upload/vod/2021-12-12/16392821827.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 3625076
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:09:42 GMT
Accept-Ranges: bytes
ETag: "3ef22217eefd71:0"
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d972a51-952c-4ec4-a0eb-3b423e69284a.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d972a51-952c-4ec4-a0eb-3b423e69284a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7f47b41eb5c37ceb8d8959fafbe7943
e4ea3edfd3db651f07d289bfbbb5249352203e8e
bec09797f1db0ea75cfa0b8393ef8dbabb0b1adc7f75802a5d04d0c139cfec8b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d972a51-952c-4ec4-a0eb-3b423e69284a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8245
x-amzn-requestid: 23e32f7a-391e-4cca-b207-f91917ede0b5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apNEyF-woAMFryw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359f551-252286456e4e95440c02d166;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wSXeLVj5j_7D1GFhyS4LT6IBwpZEsykNTd8D6VIDq3tULvwjghogmA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 11:53:18 GMT
age: 71865
etag: "e4ea3edfd3db651f07d289bfbbb5249352203e8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2