r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5c6a87f6d6b5c54dcb1b630ae6001c73
e0315c9936d6f2f58ff7d078e74a8ec7802265a8
d88ef07b9fcfb42d27a490cb57df4adaf3261efc7d0b38246db387da3ca32a8d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D88EF07B9FCFB42D27A490CB57DF4ADAF3261EFC7D0B38246DB387DA3CA32A8D"
Last-Modified: Fri, 30 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3072
Expires: Sun, 01 Jan 2023 04:18:27 GMT
Date: Sun, 01 Jan 2023 03:27:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ab3625faa748b97df39d95f3265ccd14
3930df2e3cb45a1abe47de735002fba535de4f08
0b0a1eb64c4a23598884f08be0a9694c8fcaeffc4b0df790a678104f44fe1c14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0B0A1EB64C4A23598884F08BE0A9694C8FCAEFFC4B0DF790A678104F44FE1C14"
Last-Modified: Fri, 30 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9608
Expires: Sun, 01 Jan 2023 06:07:23 GMT
Date: Sun, 01 Jan 2023 03:27:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d6d99cd1201f65eeb7d437b62bad1f3
6d5e41d7a2786ccaad7c7276ecdd9411f8cbd6ba
db2b42007fc4ad126c8af8d7cce27af88947231d09ded56da33cfee3d2594e23
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB2B42007FC4AD126C8AF8D7CCE27AF88947231D09DED56DA33CFEE3D2594E23"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19815
Expires: Sun, 01 Jan 2023 08:57:30 GMT
Date: Sun, 01 Jan 2023 03:27:15 GMT
Connection: keep-alive
hbyjpipe.com/renshengganwu/2016/0817/1628.html
156.251.129.54301 Moved Permanently 0 B URL HTTP/1.1 hbyjpipe.com/renshengganwu/2016/0817/1628.html
IP 156.251.129.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /renshengganwu/2016/0817/1628.html HTTP/1.1
Host: hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 01 Jan 2023 03:26:47 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.hbyjpipe.com/
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 01 Jan 2023 02:47:15 GMT
content-type: application/json
age: 2400
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DfHeuE1G9BBL0t4MO2dVOaDgbm5x1536oxgug/1XVf8EAchKa/6qL90AlsOl0OeW/o9BpKbH+RgJqotAODweRQ==
x-amz-request-id: 6RZ1GRHRA6GZPPFC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 01 Jan 2023 02:57:40 GMT
age: 1775
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 01 Jan 2023 03:27:15 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Last-Modified, Retry-After, Content-Type, Alert, Pragma, ETag, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 01 Jan 2023 03:08:11 GMT
age: 1145
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash afc798d7819a9c19437d20a92eb6f6ec
badde0ed90ac423d5796dc35808a3cd6cec09820
f101fbf84795c278d89aafdadf23cca6c5010b372a48d39a5354555bfb961e61
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2608
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 03:27:16 GMT
Last-Modified: Sun, 01 Jan 2023 02:43:48 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
www.hbyjpipe.com/
156.251.129.54200 OK 36 kB IP 156.251.129.54:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 5ae6dd3045661046daf6e9ccab209f27
dfcd36a9242708a482780deabe6827ccd70196cd
6650decbe5b38d4db319134947ed71c70f18766a540bfd82d7784a1d3a400d2d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: text/html
Content-Length: 36090
Connection: keep-alive
Content-Encoding: gzip
Vary: Accept-Encoding
push.services.mozilla.com/
44.228.207.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.228.207.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: niMi2S5LRRDykCLe4N7Big==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vcSaC48VxwsXVheIseO4iqiEe8M=
www.hbyjpipe.com/yyhstatic/js/tj.js
156.251.129.54200 OK 252 B URL HTTP/1.1 www.hbyjpipe.com/yyhstatic/js/tj.js
IP 156.251.129.54:0
Hash 25d3bcaf056460e24df88515cbde22a4
1b7671242dd786642d80153cdf0b90502c6a6146
dc2eed1c2acc3b3285d0491983ff89fd8c1536aeddd496cfe8fe9407fcc0a850
Analyzer Verdict Alert fortinet Malware
GET /yyhstatic/js/tj.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: application/javascript
Content-Length: 252
Last-Modified: Sat, 23 Jul 2022 07:15:44 GMT
Connection: keep-alive
ETag: "62dba020-fc"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.hbyjpipe.com/static223/css/mytheme-site.css
156.251.129.54200 OK 2.7 kB URL HTTP/1.1 www.hbyjpipe.com/static223/css/mytheme-site.css
IP 156.251.129.54:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 75b7bb98b77f11f3e22506e3af4abaed
3cec7a24ed6f714b165de61b35bf0e0eef7c7684
586083e8bef0f4ccdc12d0c0018b552ac205f797def3c3d2a25c4ab3b722409e
GET /static223/css/mytheme-site.css HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: text/css
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327f8-2994"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/static223/css/mytheme-share.css
156.251.129.54200 OK 481 B URL HTTP/1.1 www.hbyjpipe.com/static223/css/mytheme-share.css
IP 156.251.129.54:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 641d3cbc6404014427a96b6d2e1e1acc
a2dc82616ed075fb60f4a8da6ddc4c49e288d741
fc016694b6e74e3807df5c912996226db2ff84415f76ed361490d3f93a89c7b4
GET /static223/css/mytheme-share.css HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: text/css
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327f8-694"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/static223/css/mytheme-color2.css
156.251.129.54200 OK 1.7 kB URL HTTP/1.1 www.hbyjpipe.com/static223/css/mytheme-color2.css
IP 156.251.129.54:0
File type assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash f63d13f8ae76be3fed83b8782f92aba2
62462df76249a2c545b9215358d11e7d8ec8897b
a7bcb81dbbc8cfa43d3b665d8c65a06850fb200f09eb528efd9cba1cd96e219f
GET /static223/css/mytheme-color2.css HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: text/css
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327f8-157d"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/static223/js/layer.js
156.251.129.54200 OK 8.4 kB URL HTTP/1.1 www.hbyjpipe.com/static223/js/layer.js
IP 156.251.129.54:0
File type Unicode text, UTF-8 text, with very long lines (22024), with CRLF line terminators
Hash 86d55e1fbcf2cea4c9d8ca6d2ad34eed
b9c315892eda2d3a1579294be6c4fde6be95ff40
c92dc419d550842a89b2746b0c2fff1e57b9eab451e27c7baf7ffb06f5b71d3f
Analyzer Verdict Alert fortinet Malware
GET /static223/js/layer.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fa-565d"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/static223/js/mytheme-site.js
156.251.129.54200 OK 41 kB URL HTTP/1.1 www.hbyjpipe.com/static223/js/mytheme-site.js
IP 156.251.129.54:0
File type ASCII text, with very long lines (8746), with CRLF line terminators
Hash e63b32dbb5bfef02e41ee6b632a5b51b
8c7d5b8de3215e6efedfc71eac45d20827c56668
311f6131e7ca0d5f389c0851ee05527326edf7a52ac7576b03212cfb79884196
Analyzer Verdict Alert fortinet Malware
GET /static223/js/mytheme-site.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fa-1f90d"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/static223/js/mytheme-ui.js
156.251.129.54200 OK 5.8 kB URL HTTP/1.1 www.hbyjpipe.com/static223/js/mytheme-ui.js
IP 156.251.129.54:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 3ff92a3ac12a98901c70e48b2fac3260
8ed8c21ef049cf41a17fc1ae6bcc11ae957f0093
83401d012a317f7f2682ec0644f283e628ef7c208d46074f1b154815dbab3d25
Analyzer Verdict Alert fortinet Malware
GET /static223/js/mytheme-ui.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fa-46c2"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/static223/js/mytheme-cms.js
156.251.129.54200 OK 2.5 kB URL HTTP/1.1 www.hbyjpipe.com/static223/js/mytheme-cms.js
IP 156.251.129.54:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 3515bc5c7c4701dedabd9d7f999b0679
80ece1534665aa95703eec9fab4c93df44e7e121
395bef6828dc97712c30f29133fda9a3c2220d5d57ca7677cbea796e4a0d2460
Analyzer Verdict Alert fortinet Malware
GET /static223/js/mytheme-cms.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fc-1e32"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/yyhstatic/js/pcdaohang.js
156.251.129.54200 OK 465 B URL HTTP/1.1 www.hbyjpipe.com/yyhstatic/js/pcdaohang.js
IP 156.251.129.54:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 7a2fa78d5c63142990435194dc2fccc8
91379245a830b070b4d18bf84f9ecbe53dd08e1d
a45b27e4ca694fc0104d4c38c493a058ff91efdc952ef68173bcce423618680b
Analyzer Verdict Alert fortinet Malware
GET /yyhstatic/js/pcdaohang.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: application/javascript
Last-Modified: Fri, 28 Oct 2022 08:34:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"635b9421-dcd"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/static223/js/jquery.min.js
156.251.129.54200 OK 34 kB URL HTTP/1.1 www.hbyjpipe.com/static223/js/jquery.min.js
IP 156.251.129.54:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 8b20c2183693be60f63566d710f39254
be463aa7b7916b9290b21f669ec5f9ca0320d225
614935fec2b27841e3a065883ab56229318c2fafcc6b08aff701c2549b7c9fe6
Analyzer Verdict Alert fortinet Malware
GET /static223/js/jquery.min.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fc-15391"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/yyhstatic/js/webdaohang.js
156.251.129.54200 OK 747 B URL HTTP/1.1 www.hbyjpipe.com/yyhstatic/js/webdaohang.js
IP 156.251.129.54:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 3e988b8406c4307c5de31e61656ccffe
0301ef69c3e427bd0aaf72f1c92dad1f746da57f
340f4684f1bbf26aa15b9ca36048a681424676f58718776e9a5693082a97e6c6
Analyzer Verdict Alert fortinet Malware
GET /yyhstatic/js/webdaohang.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: application/javascript
Last-Modified: Mon, 17 Oct 2022 09:00:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"634d19c1-1987"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/yyhstatic/js/ss.js
156.251.129.54200 OK 520 B URL HTTP/1.1 www.hbyjpipe.com/yyhstatic/js/ss.js
IP 156.251.129.54:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 8639b7582d7c6741f5c2496123f872f4
9439b3c5e37bf6c66bfae7f71d77451d3faf2454
b5e0cedf1fd5383a616fcdd0054a67ee00075a0302fd992c3ad519cb5a210812
Analyzer Verdict Alert fortinet Malware
GET /yyhstatic/js/ss.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:48 GMT
Content-Type: application/javascript
Content-Length: 520
Last-Modified: Fri, 25 Nov 2022 10:24:11 GMT
Connection: keep-alive
ETag: "638097cb-208"
Expires: Sun, 01 Jan 2023 15:26:48 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.hbyjpipe.com/yyhstatic/js/rmss.js
156.251.129.54200 OK 790 B URL HTTP/1.1 www.hbyjpipe.com/yyhstatic/js/rmss.js
IP 156.251.129.54:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 1f2282ec66c686e1911fd95bb2eb5336
ef9a586d97b2f686549e771b064ac8ecddee5ea4
51a3d1794c70fa408b9700aa9abf6ff9951ff9aff4d66a76986fdd400090a156
Analyzer Verdict Alert fortinet Malware
GET /yyhstatic/js/rmss.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: application/javascript
Content-Length: 790
Last-Modified: Fri, 17 Jun 2022 06:40:44 GMT
Connection: keep-alive
ETag: "62ac21ec-316"
Expires: Sun, 01 Jan 2023 15:26:49 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.hbyjpipe.com/yyhgg/dbgg.php
156.251.129.54200 OK 142 B URL HTTP/1.1 www.hbyjpipe.com/yyhgg/dbgg.php
IP 156.251.129.54:0
File type ASCII text, with no line terminators
Hash 042de2a8fa63bdcca8dd3964fa32e54b
fe06916e05f08b9a049d2268875328c164e5dc55
1e3b063ab90ad83208189d058e981122659907c0bf01953a8bc2afbf8c57c12f
Analyzer Verdict Alert fortinet Malware
GET /yyhgg/dbgg.php HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.hbyjpipe.com/yyhgg/sxgdpfgg.js
156.251.129.54200 OK 1.0 kB URL HTTP/1.1 www.hbyjpipe.com/yyhgg/sxgdpfgg.js
IP 156.251.129.54:0
File type HTML document text\012- HTML document, ISO-8859 text, with very long lines (509), with CRLF line terminators
Hash 48a03e785bca106f5491a5c4ca5c93f8
2a1714f9ef253e1026ff1ae3b9e52c8af152149d
e886c22440b00772ab3d3094bc15ad5f063ffebd7fd62347c662f18ada3c1baf
Analyzer Verdict Alert fortinet Malware
GET /yyhgg/sxgdpfgg.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2022 13:49:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63aeec50-df5"
Expires: Sun, 01 Jan 2023 15:26:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/yyhgg/shipinqiangg.js
156.251.129.54200 OK 581 B URL HTTP/1.1 www.hbyjpipe.com/yyhgg/shipinqiangg.js
IP 156.251.129.54:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 64d107c31e6e46d61b4c7b2aa3e9768a
d3fbe536561bb47aaf9cfd9100a258dfe03bef75
f35b2f56dc6395976872bf308a202550efcea0c2ba9d5a3994322d131fa87eaa
Analyzer Verdict Alert fortinet Malware
GET /yyhgg/shipinqiangg.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: application/javascript
Last-Modified: Thu, 29 Dec 2022 11:03:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63ad73ff-800"
Expires: Sun, 01 Jan 2023 15:26:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/static223/js/tj.js
156.251.129.54404 Not Found 62 B URL HTTP/1.1 www.hbyjpipe.com/static223/js/tj.js
IP 156.251.129.54:0
File type ASCII text, with no line terminators
Hash 21945f57deaf3f3f9b991498eea47c0a
8f17a4f3e661d2d05123efb1c0debaf4feb50921
f408b9c52c95e1a25e51a6cdd32032b52953cfd665d253c3ba3e395336a5087f
Analyzer Verdict Alert fortinet Malware
GET /static223/js/tj.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.hbyjpipe.com/static223/css/mytheme-font.css
156.251.129.54200 OK 7.8 kB URL HTTP/1.1 www.hbyjpipe.com/static223/css/mytheme-font.css
IP 156.251.129.54:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (30763), with CRLF line terminators
Hash 346a153baf425d5c625acbc7a1636b0f
2b79e9c580b8d4803938ae084e23563880cc34ef
89f0adcce7da72b11a25b101e19da0fa259c8eea8a83ea3a0f7902dd13264748
GET /static223/css/mytheme-font.css HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: text/css
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327f8-78d5"
Expires: Sun, 01 Jan 2023 15:26:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/static223/js/user.js
156.251.129.54200 OK 16 kB URL HTTP/1.1 www.hbyjpipe.com/static223/js/user.js
IP 156.251.129.54:0
File type Unicode text, UTF-8 text, with very long lines (1156), with CRLF line terminators
Hash eebda990e6d8ce6d2c7567c969a7f058
defc2266bc5b6346053b9a35072f9c85814d338c
a3099d83eb2acc7be49961d0fe5a9c5055e4e20fa7bf9bc3d1505c47a1352aae
Analyzer Verdict Alert fortinet Malware
GET /static223/js/user.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fc-113c6"
Expires: Sun, 01 Jan 2023 15:26:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.hbyjpipe.com/static223/css/mytheme-ui.css
156.251.129.54200 OK 8.8 kB URL HTTP/1.1 www.hbyjpipe.com/static223/css/mytheme-ui.css
IP 156.251.129.54:0
File type assembler source, Unicode text, UTF-8 (with BOM) text, with very long lines (1893), with CRLF line terminators
Hash e75f896a0b98215bc7509a6ab036e4d6
3c3cf6e00e5477664a9aa21349cdec45d80bde12
8efe653341c20fb3ce886e8c6d18b000cbe9468468860390d5f0a67b8064b51c
GET /static223/css/mytheme-ui.css HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: text/css
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327f8-8b04"
Expires: Sun, 01 Jan 2023 15:26:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 8ed12462bf69028b531da2e3964d1d70
e5b24ab0b93b009f2b35491b019903ac75227f10
f530d2e38b56d2e9ee126209e9a4ede3e8cad993a3edb8fa814c2521295c6c67
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=96668
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 03:27:17 GMT
Etag: "63afd431-118"
Expires: Mon, 02 Jan 2023 06:18:25 GMT
Last-Modified: Sat, 31 Dec 2022 06:18:25 GMT
Server: nginx
Content-Length: 280
www.hbyjpipe.com/static223/picture/b3569e7ff05e95227d6436f10b777913.gif
156.251.129.54200 OK 9.1 kB URL HTTP/1.1 www.hbyjpipe.com/static223/picture/b3569e7ff05e95227d6436f10b777913.gif
IP 156.251.129.54:0
File type GIF image data, version 89a, 125 x 45\012- data
Hash 48b66bbc2fca4f7f40af4fd8335abee2
5297d6f769b51e63f5c44c2056a7cbd6534a380c
a47011805154c0589e690e70f963cac8f0f2fd937f3362f45196d0c89fb4fe49
GET /static223/picture/b3569e7ff05e95227d6436f10b777913.gif HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: image/gif
Content-Length: 9115
Last-Modified: Thu, 17 Mar 2022 12:22:18 GMT
Connection: keep-alive
ETag: "623327fa-239b"
Expires: Tue, 31 Jan 2023 03:26:49 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.hbyjpipe.com/yyhgg/shouyeshang.html
156.251.129.54200 OK 4.2 kB URL HTTP/1.1 www.hbyjpipe.com/yyhgg/shouyeshang.html
IP 156.251.129.54:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 7919453cdc7153c39dae75a938157667
70ffe257c29a57d96cc9321bcf80c97ed3056d94
c0edebfeedb9df8165ffb757014185493f5dbd4fe4ac1f458883fdefff3508dd
Analyzer Verdict Alert fortinet Malware
GET /yyhgg/shouyeshang.html HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: text/html
Last-Modified: Fri, 30 Dec 2022 11:51:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63aed0be-4187"
Content-Encoding: gzip
www.hbyjpipe.com/static223/js/tj.js
156.251.129.54404 Not Found 62 B URL HTTP/1.1 www.hbyjpipe.com/static223/js/tj.js
IP 156.251.129.54:0
File type ASCII text, with no line terminators
Hash 21945f57deaf3f3f9b991498eea47c0a
8f17a4f3e661d2d05123efb1c0debaf4feb50921
f408b9c52c95e1a25e51a6cdd32032b52953cfd665d253c3ba3e395336a5087f
Analyzer Verdict Alert fortinet Malware
GET /static223/js/tj.js HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.hbyjpipe.com/static223/js/theme/layer.css?v=3.1.1
156.251.129.54200 OK 37 kB URL HTTP/1.1 www.hbyjpipe.com/static223/js/theme/layer.css?v=3.1.1
IP 156.251.129.54:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash ac64d8ba14d58fb4c29379158b2a2b6b
9da5e5edc2fbd791761f32694ad914d6816a361d
2a2099eea2e00c1fe62d602228f82bdb6485f026ec8222a6416a1016843f4229
Analyzer Verdict Alert fortinet Malware
GET /static223/js/theme/layer.css?v=3.1.1 HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: text/html
Content-Length: 37133
Connection: keep-alive
Content-Encoding: gzip
Vary: Accept-Encoding
www.hbyjpipe.com/static223/images/play.png
156.251.129.54200 OK 2.5 kB URL HTTP/1.1 www.hbyjpipe.com/static223/images/play.png
IP 156.251.129.54:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 10a11cc31a1fe5126ae5f1e359679cbb
7d30dcc97bb4aed52948a5b040b4fa63149a405e
82b4aac50bdda11a5069442a4a6f593f4f3debbc2a4499b919d61691301c5537
GET /static223/images/play.png HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/static223/css/mytheme-ui.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: image/png
Content-Length: 2457
Last-Modified: Thu, 17 Mar 2022 12:22:20 GMT
Connection: keep-alive
ETag: "623327fc-999"
Expires: Tue, 31 Jan 2023 03:26:49 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
s2.loli.net/2022/05/21/zAxwCKkLnFjlaQ8.jpg
104.26.0.190200 OK 9.2 kB URL HTTP/2 s2.loli.net/2022/05/21/zAxwCKkLnFjlaQ8.jpg
IP 104.26.0.190:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /2022/05/21/zAxwCKkLnFjlaQ8.jpg HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 01 Jan 2023 03:27:18 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Sat, 21 May 2022 11:42:12 GMT
etag: "6288d014-23ce"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mwBYadS29FyS9qTCIVXUrSBzcgF02jz7%2FehXV2ZqRo%2BBxcESJAQ0BiQNhlUYoi2x7B%2BlnBtM7WCJLHXCDaTcVK0Uj7quW60%2BYJpTGqZlH8rR5PlM4hlr2JOozC6n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78282886f90b0b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.hbyjpipe.com/static223/fonts/fontawesome-webfont.woff2
156.251.129.54200 OK 77 kB URL HTTP/1.1 www.hbyjpipe.com/static223/fonts/fontawesome-webfont.woff2
IP 156.251.129.54:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /static223/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: www.hbyjpipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.hbyjpipe.com/static223/css/mytheme-font.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:26:49 GMT
Content-Type: font/woff2
Content-Length: 77160
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Connection: keep-alive
ETag: "623327f8-12d68"
Accept-Ranges: bytes
kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
13.227.254.85200 OK 396 kB URL HTTP/2 kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
IP 13.227.254.85:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 396 kB (395600 bytes)
Hash 5155d4f34bc2f7e77b9fe8e854d9e96f
408ed373dd26d934ee70f30b0e47a9dc8049983f
db9f393331e2d56fe7da37b7822590b82524e2dde508848299877daeae1df3be
GET /f7fd72d8ade7e262c4b4f656dd460724.gif HTTP/1.1
Host: kzehh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 395600
date: Tue, 20 Dec 2022 23:20:07 GMT
last-modified: Sat, 17 Dec 2022 11:55:02 GMT
etag: "5155d4f34bc2f7e77b9fe8e854d9e96f"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 af3aeac549bb09cd481e4e32ea3fcf16.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: D767cpKpD-3oteiZGfXfqDi7tBTTxBmIznSIJopbG85x16vtb4U8AA==
age: 965231
X-Firefox-Spdy: h2
de88deggtp.com/xinpujingtp/%E4%B8%8A%E9%97%A8.gif
23.224.145.233200 OK 75 kB URL HTTP/1.1 de88deggtp.com/xinpujingtp/%E4%B8%8A%E9%97%A8.gif
IP 23.224.145.233:0
File type GIF image data, version 89a, 200 x 200\012- data
Hash 03c13356e00c2033df2c88cb919251eb
f3a334a0366ddda6a87034f7d6c889c4d159dc8d
0c184e206259e8d0c54d3fc12d3d5332e9f6ff5f0404630fcb2daefe65fe1bfe
GET /xinpujingtp/%E4%B8%8A%E9%97%A8.gif HTTP/1.1
Host: de88deggtp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:18 GMT
Content-Type: image/gif
Content-Length: 75259
Connection: keep-alive
Last-Modified: Sat, 24 Dec 2022 11:03:11 GMT
ETag: "63a6dc6f-125fb"
Expires: Mon, 30 Jan 2023 11:06:11 GMT
Cache-Control: max-age=2592000
Server: qq.com
X-Cache-Status: HIT
Accept-Ranges: bytes
kzehh.com/5b446fa07565d9dfcc1cc0ea5ee2c785.gif
13.227.254.85200 OK 393 kB URL HTTP/2 kzehh.com/5b446fa07565d9dfcc1cc0ea5ee2c785.gif
IP 13.227.254.85:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 393 kB (392629 bytes)
Hash 43dfaf26684a336a06f42a82c0fa0116
2ddf7452742361f303a35f0f3cef639aaa036bd0
450269ea249cb1aa54c78f9a6e4548022337737ea874bf9f3d89879510cc40aa
GET /5b446fa07565d9dfcc1cc0ea5ee2c785.gif HTTP/1.1
Host: kzehh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 392629
date: Wed, 21 Dec 2022 06:03:50 GMT
last-modified: Sat, 17 Dec 2022 11:51:38 GMT
etag: "43dfaf26684a336a06f42a82c0fa0116"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 af3aeac549bb09cd481e4e32ea3fcf16.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: -ldywOWuO3DgQzjzU3Lgb1bD5TCAB_Pa11PFZ1iPgTOuYUUq-xT5HA==
age: 941009
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a96b797aa89a9acfb18d75577066ae4a
ea85bc5442e4214798820c5bc60577ff5ae569e4
d57b2d502526b3af08a55b9ec4ccaf30399807a7d01ba6590a0223072db12ee1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 31 Dec 2022 15:19:40 GMT
Expires: Sat, 07 Jan 2023 15:19:39 GMT
Etag: "ea85bc5442e4214798820c5bc60577ff5ae569e4"
Cache-Control: max-age=560539,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78282891befeb51b-OSL
kveww.com/99462c01e85acc1311bebac224df6cce.gif
13.227.254.57200 OK 845 kB URL HTTP/2 kveww.com/99462c01e85acc1311bebac224df6cce.gif
IP 13.227.254.57:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 845 kB (845326 bytes)
Hash c3e13dfb200737af2e68b42c07f28465
4d8262aecd8d789494afca5d63b5dd50600870dc
3e962d14b678808967d50df163581b65c6052144cb6239d72da58cceb7bf04ac
GET /99462c01e85acc1311bebac224df6cce.gif HTTP/1.1
Host: kveww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 845326
last-modified: Thu, 15 Dec 2022 01:49:18 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 31 Dec 2022 08:38:57 GMT
etag: "c3e13dfb200737af2e68b42c07f28465"
x-cache: Hit from cloudfront
via: 1.1 aba148aded8f2a574ac37012d8a4aeee.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: Dcz3spmhDSAh5oG8o9GsIbrjPinEhfGntugIBxQitBkagr97Sm3B7Q==
age: 73516
X-Firefox-Spdy: h2
de88deggtp.com/100tp/960x60.gif
23.224.145.233200 OK 456 kB URL HTTP/1.1 de88deggtp.com/100tp/960x60.gif
IP 23.224.145.233:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 456 kB (456396 bytes)
Hash 202f7e8882789aecd824a5d11a3d2550
0434fa09acb7451eaaf06fffe622e8f793a3d18e
a26f264cadabddc2fd0714f8c963ffe2b0ec2674dafe8cc7f759045eee907a71
GET /100tp/960x60.gif HTTP/1.1
Host: de88deggtp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:18 GMT
Content-Type: image/gif
Content-Length: 456396
Connection: keep-alive
Last-Modified: Tue, 21 Jun 2022 09:29:40 GMT
ETag: "62b18f84-6f6cc"
Expires: Tue, 31 Jan 2023 03:21:31 GMT
Cache-Control: max-age=2592000
Server: qq.com
X-Cache-Status: HIT
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a42af12f5cda78cb489673e754f325c0
29f0473ee2c664c2577dbe243fb0d13f352cfccb
61ff2c987b0bf53bd6e396c410f7dc1b138e68e9bd30cfbd9698241b3487024d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 29 Dec 2022 13:54:31 GMT
Expires: Thu, 05 Jan 2023 13:54:30 GMT
Etag: "29f0473ee2c664c2577dbe243fb0d13f352cfccb"
Cache-Control: max-age=382630,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78282892cf57b51b-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 0c79565b50fb3ec52c4ec125c38b5a33
dbeaef9c8e7df5cf5470bf58e67fccf8c4b7c809
4a7e065c4a421aa42a4b64e5c3f900930dc2f480f7f9fe3755636e144e9dc9a0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 30 Dec 2022 17:33:17 GMT
Expires: Fri, 06 Jan 2023 17:33:16 GMT
Etag: "dbeaef9c8e7df5cf5470bf58e67fccf8c4b7c809"
Cache-Control: max-age=482156,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78282893f9a1b4f7-OSL
ljcdn.comtucdncom.com/upload/vod/20190902-1/a0fe7093f5d348eb075d00c13496195e.jpg
45.89.208.114200 OK 5.6 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190902-1/a0fe7093f5d348eb075d00c13496195e.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 276b84cac3a89c3a87ba9ba903a932ea
c83f6ea90887e47b58cd62e093e7adefd0a05988
39eb85b0c83af796fde54448af528eb9b99dbe5204bce1ec0c86971f24f9465c
GET /upload/vod/20190902-1/a0fe7093f5d348eb075d00c13496195e.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: image/jpeg
Content-Length: 5570
Last-Modified: Thu, 11 Aug 2022 04:55:26 GMT
Connection: keep-alive
ETag: "62f48bbe-15c2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190524-1/c6f770fed097a64eb436cfa7270d958a.jpg
45.89.208.114200 OK 5.3 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190524-1/c6f770fed097a64eb436cfa7270d958a.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f209e6497ff4dd126d3525a84f483038
82c63091258a4497875f215c87399e3f0cf094e4
12c80b5ebd76b26afc244f4c3edff74729fd48913420f3f93a06bfc76451bebb
GET /upload/vod/20190524-1/c6f770fed097a64eb436cfa7270d958a.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: image/jpeg
Content-Length: 5261
Last-Modified: Thu, 11 Aug 2022 04:57:57 GMT
Connection: keep-alive
ETag: "62f48c55-148d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20200514-1/ae8de9f1b2e4db8e4694340e5c75e31b.jpg
45.89.208.114200 OK 7.4 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20200514-1/ae8de9f1b2e4db8e4694340e5c75e31b.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density -15237x32532, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e99ba43ec58792ad7dfb5bdf6fdeaaaa
656b3d749181b5a57cfe63ad8c4f90614f5db818
429c7241eb4e2220b9547e066be90a21af73090bb5aa77d615ec06acfa4fea91
GET /upload/vod/20200514-1/ae8de9f1b2e4db8e4694340e5c75e31b.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: image/jpeg
Content-Length: 7397
Last-Modified: Thu, 11 Aug 2022 04:57:43 GMT
Connection: keep-alive
ETag: "62f48c47-1ce5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
z4a.net/images/2022/12/17/960x60.gif
104.21.234.235200 OK 320 kB URL HTTP/2 z4a.net/images/2022/12/17/960x60.gif
IP 104.21.234.235:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 320 kB (319606 bytes)
Hash 443ba779af0bf3944718aa7e4e2038a5
7054a327b7d5a805a510fab7bb2b35d5cd2ec9ca
1461a63340b84e5c64f250e3ca4d3153df4cf60a1226eb2107bf37c5cfcdd8ee
GET /images/2022/12/17/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 03:27:19 GMT
content-type: image/gif
content-length: 319606
expires: Sun, 17 Dec 2023 08:03:28 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 1279431
last-modified: Sat, 17 Dec 2022 08:03:28 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y4IVX6v6q84l86IBHW89W37BEoffDoISovkHfvxTVbsNvH7MG0joOw7K1jYEvPOb9zTK0fXAntsO0DQp%2BKPXdZeOrt8eAgqCXed9dcljf4gMTJcYsaW7xAM6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 782828948d1771e6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvexx.com/03c3cb047014f05117117e4a924df90d.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kvexx.com/03c3cb047014f05117117e4a924df90d.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /03c3cb047014f05117117e4a924df90d.gif HTTP/1.1
Host: kvexx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 01 Jan 2023 03:27:19 GMT
content-type: text/html
content-length: 162
location: https://kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 4022a6959ab3b80127628a2021620084
26f81a43d1d66b65ab57cdc9a008de048fd2ccd5
f524b1a4fbd99511c8c7b857fb8afb4de35c8e12f8e915d214e5494453e5e172
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 31 Dec 2022 06:05:09 GMT
Expires: Sun, 01 Jan 2023 06:05:09 GMT
ETag: "26f81a43d1d66b65ab57cdc9a008de048fd2ccd5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
dimg04.c-ctrip.com/images/0105j12000a16nl1n59E7.gif?proc=autoorient
104.110.17.24200 OK 477 kB URL HTTP/2 dimg04.c-ctrip.com/images/0105j12000a16nl1n59E7.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 477 kB (477289 bytes)
Hash 760cc21f91ee02e848650627ffa47ae2
22df8e62d12977ffd032aba17e5fd7632032633f
2b36a60cb734e5ebcaa9ad4d93f914157e563da89c4e08231bd02b72678875bd
GET /images/0105j12000a16nl1n59E7.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 477289
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=4877718
expires: Sun, 26 Feb 2023 14:22:37 GMT
date: Sun, 01 Jan 2023 03:27:19 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
ljcdn.comtucdncom.com/upload/vod/20190524-1/0cf81eea995608ce6f55ae4ba2304be4.jpg
45.89.208.114200 OK 11 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190524-1/0cf81eea995608ce6f55ae4ba2304be4.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 531b77fc3a0ccff6952c64c16b19a9cb
47d1a7dc2da5951cf974d5639591b3c1ae77a2da
dd33f31b6e3773b41f5d2dc7e5536fc4caf361acf1f71a66b4ca07306624d0b8
GET /upload/vod/20190524-1/0cf81eea995608ce6f55ae4ba2304be4.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: image/jpeg
Content-Length: 10658
Last-Modified: Thu, 11 Aug 2022 04:59:57 GMT
Connection: keep-alive
ETag: "62f48ccd-29a2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
3p8801.co/11-960x120.gif
107.148.202.17200 OK 460 kB IP 107.148.202.17:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 460 kB (460489 bytes)
Hash 59cc2ca85a282cdc16c294784e450880
198b0243127403bec169260ce6108483524607f1
f0c70d66d984a77b4cecd740a6bfd8f8a8ce25983dccb06953d547b68fd4d741
GET /11-960x120.gif HTTP/1.1
Host: 3p8801.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 01 Jan 2023 03:27:19 GMT
content-type: image/gif
content-length: 460489
last-modified: Sat, 19 Nov 2022 11:23:12 GMT
etag: "6378bca0-706c9"
expires: Tue, 31 Jan 2023 03:27:19 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a10b26ce5be01a9ba854a561bf283467
c77f52c3fcf9636a2c60a6c6f2d9e8e0e46664c7
a20139ae83e7c3b22a97a1a425af34c77ab4d6226f1cc1fb42c22e99d8249b24
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A20139AE83E7C3B22A97A1A425AF34C77AB4D6226F1CC1FB42C22E99D8249B24"
Last-Modified: Fri, 30 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13688
Expires: Sun, 01 Jan 2023 07:15:28 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
ljcdn.comtucdncom.com/upload/vod/20190506-1/8b36d5a5db5e89881e882c42254e3ff6.jpg
45.89.208.114200 OK 15 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190506-1/8b36d5a5db5e89881e882c42254e3ff6.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 213x160, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 034f32f4fa0b211b290c8ea465b6d394
af19d01615386155c3db2d3e1ec314f95594f06c
2835aa02279a0bbd0a7839c2565f224a84128f374b6f1fa15b4ee0faa615816b
GET /upload/vod/20190506-1/8b36d5a5db5e89881e882c42254e3ff6.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:20 GMT
Content-Type: image/jpeg
Content-Length: 15288
Last-Modified: Thu, 11 Aug 2022 05:00:47 GMT
Connection: keep-alive
ETag: "62f48cff-3bb8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/20210912/RHGxZ7WH/1.jpg
172.247.77.90301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/20210912/RHGxZ7WH/1.jpg
IP 172.247.77.90:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /20210912/RHGxZ7WH/1.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:41 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/20210912/RHGxZ7WH/1.jpg
223969ufy.com/1c8f6ace873c45fd92730a2016b71a0c..gif
45.61.212.59200 OK 423 kB URL HTTP/1.1 223969ufy.com/1c8f6ace873c45fd92730a2016b71a0c..gif
IP 45.61.212.59:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 423 kB (422791 bytes)
Hash bdeb53a7d3c2f219a7ae903a7346cd91
e5349fa31f22ce3605b9256c0a6e37def92b13b6
316319f597bb6dd3d686c46a51e67693243868108b798fa8174f8a124b6422b4
GET /1c8f6ace873c45fd92730a2016b71a0c..gif HTTP/1.1
Host: 223969ufy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "635b9155-67387"
Date: Sat, 31 Dec 2022 14:06:59 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 28 Oct 2022 08:22:45 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-29
Content-Length: 422791
ljcdn.comtucdncom.com/upload/vod/20190508-1/d112c3492f418e271965c18d679f6588.jpg
45.89.208.114200 OK 106 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190508-1/d112c3492f418e271965c18d679f6588.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 805x804, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 480x322, components 3\012- data
Size 106 kB (106299 bytes)
Hash 4118f1630a1775b32763c8c3efcaeb18
4ff4a90ec26fed76c477101a65b7149692fff9b7
c89894cb70b1a090e4d909f719ba4372a21beba6446a011ebe2b1b1f73d3ad08
GET /upload/vod/20190508-1/d112c3492f418e271965c18d679f6588.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: image/jpeg
Content-Length: 106299
Last-Modified: Thu, 11 Aug 2022 04:58:51 GMT
Connection: keep-alive
ETag: "62f48c8b-19f3b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
kzemm.com/bb7f858c0dad171784517c02e7bff891.gif
13.227.254.5200 OK 391 kB URL HTTP/2 kzemm.com/bb7f858c0dad171784517c02e7bff891.gif
IP 13.227.254.5:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 391 kB (390953 bytes)
Hash f849b3b0e9c6fdb31c56074c38c5123c
78200f076e1512a0f4b6f56f37d9f7ad355f0ad7
f9d4b673a595159370aa060f5d8b025842504116efc5b85269129a6c02110f6c
GET /bb7f858c0dad171784517c02e7bff891.gif HTTP/1.1
Host: kzemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 390953
last-modified: Sat, 17 Dec 2022 12:33:46 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 31 Dec 2022 15:38:19 GMT
etag: "f849b3b0e9c6fdb31c56074c38c5123c"
x-cache: Hit from cloudfront
via: 1.1 8c73194b247676a80d86714cba2447a4.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: dmiwmDYVKIhvA3gagrdDo_2iS_JENZIFOsRaw8bCvuLIjkVJjqgGFg==
age: 42541
X-Firefox-Spdy: h2
n0544.com/7f8a418171974bfebf5c03e36e2cef09.gif
20.222.36.191200 OK 72 kB URL HTTP/1.1 n0544.com/7f8a418171974bfebf5c03e36e2cef09.gif
IP 20.222.36.191:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Hash bbb56efbde6dbc5daf61d3394eb0fd9d
103c1a217e500ea80e006ee8f559b280bc2de81a
f833540a2bbd9579b054246bf3df4c0c1eee9efc54d35838850ef70030f3ae7f
GET /7f8a418171974bfebf5c03e36e2cef09.gif HTTP/1.1
Host: n0544.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 19 Dec 2022 10:22:51 GMT
ETag: W/"63a03b7b-3ef12"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash f7de2059ccda6fa548bfe4c033fbc581
ec73a5eedc5a8790fb338c37078cb6adedb6b07f
7a0b8e1824e4fe13e4350de64a7dfd066adea7aebfd153b59ec7d3684b6000a8
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 05 Jan 2023 01:39:23 GMT
ETag: "ec73a5eedc5a8790fb338c37078cb6adedb6b07f"
Last-Modified: Sun, 01 Jan 2023 01:39:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 952
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 782828997b1fb50b-OSL
ads-6686.top/960-60.gif
123.253.107.62200 OK 381 kB IP 123.253.107.62:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 381 kB (380774 bytes)
Hash d5b19fab300b34d93648b77ba1e87205
eabcc33b82a978d851b9af1337fc656a70f23c2f
e7cce7f77395b75187261e079f448c4b9de06f62f42ca0d2b87662efe80ea69b
GET /960-60.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: load-edge/2.1.1
date: Sun, 01 Jan 2023 03:27:19 GMT
content-type: image/gif
content-length: 380774
last-modified: Tue, 20 Dec 2022 08:28:12 GMT
etag: "63a1721c-5cf66"
strict-transport-security: max-age=31536000
lp-geo: edge-n0cc
lp-addr: 91.90.42.154
lp-request: e70fe55d-7e60-4b82-8bc7-758ae670db22
lp-id: 42fb9f917a48419191aa4ea35d6daf26
expires: Sun, 01 Jan 2023 03:32:19 GMT
cache-control: max-age=300
lp-cache: HIT
lp-cache-hit: 1
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 23e0723cc3af8cb98750c7f6f2e5ec0f
0d99bf37ddf249ab1bd03f166161bd48c3cef377
be1d838ad5a4baba7bf34e3ee63dbc52cd0173ae912ba9603423b37316d89cf6
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 05 Jan 2023 02:22:56 GMT
ETag: "0d99bf37ddf249ab1bd03f166161bd48c3cef377"
Last-Modified: Sun, 01 Jan 2023 02:22:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2109
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 782828998960fab4-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash f7de2059ccda6fa548bfe4c033fbc581
ec73a5eedc5a8790fb338c37078cb6adedb6b07f
7a0b8e1824e4fe13e4350de64a7dfd066adea7aebfd153b59ec7d3684b6000a8
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 05 Jan 2023 01:39:23 GMT
ETag: "ec73a5eedc5a8790fb338c37078cb6adedb6b07f"
Last-Modified: Sun, 01 Jan 2023 01:39:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 952
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78282899ab39b50b-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 23e0723cc3af8cb98750c7f6f2e5ec0f
0d99bf37ddf249ab1bd03f166161bd48c3cef377
be1d838ad5a4baba7bf34e3ee63dbc52cd0173ae912ba9603423b37316d89cf6
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 05 Jan 2023 02:22:56 GMT
ETag: "0d99bf37ddf249ab1bd03f166161bd48c3cef377"
Last-Modified: Sun, 01 Jan 2023 02:22:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2109
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78282899c96afab4-OSL
kvevv.com/4bf88adf466b90cef3686374a27fc0e2.gif
13.227.254.94200 OK 507 kB URL HTTP/1.1 kvevv.com/4bf88adf466b90cef3686374a27fc0e2.gif
IP 13.227.254.94:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 507 kB (506851 bytes)
Hash 720e80d2a7ff4cf1bbf0b1608c2f35de
bf0a987ac8d4c7728171fe41e5c45b61b45a2f73
e177aeb64efe8103f8af0afc0a768394d970bbe60edcf103a083d56b915c18b1
GET /4bf88adf466b90cef3686374a27fc0e2.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 506851
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:08:10 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 31 Dec 2022 04:07:03 GMT
ETag: "720e80d2a7ff4cf1bbf0b1608c2f35de"
X-Cache: Hit from cloudfront
Via: 1.1 4107eb96660e4932c95658bc4727dd6c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SIN52-C3
X-Amz-Cf-Id: IuuB_UOJmnzlQXCkCnjTVeKl76jZv22q1my3g3HAKyJxV95DRwOU5w==
Age: 84016
ljcdn.comtucdncom.com/upload/vod/20190508-1/9212b89172c2e52171ad4e771fbc7c31.jpg
45.89.208.114200 OK 105 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190508-1/9212b89172c2e52171ad4e771fbc7c31.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1615x1617, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 480x323, components 3\012- data
Size 105 kB (104715 bytes)
Hash e4acdc44a8fb3b18f5182ec51624328f
226cf7d9173539cbc833303191e5b6cdea10e541
1e35ed900edde87480ad2cf5d65d2ca8981f40cb3e9cd72fe5e4277e3b76bfbc
GET /upload/vod/20190508-1/9212b89172c2e52171ad4e771fbc7c31.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:20 GMT
Content-Type: image/jpeg
Content-Length: 104715
Last-Modified: Thu, 11 Aug 2022 04:58:23 GMT
Connection: keep-alive
ETag: "62f48c6f-1990b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
kzeii.com/8d62ac139591ff0c5f17d4c5f1ff3cf6.gif
13.227.254.104200 OK 566 kB URL HTTP/2 kzeii.com/8d62ac139591ff0c5f17d4c5f1ff3cf6.gif
IP 13.227.254.104:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 566 kB (565615 bytes)
Hash 6a2c609ad0c46bb1b8d9cd39eacde625
45de0f50f86b45dd6fd4a1c764d47e2640126bf3
8eb8f61188f2555f5f7f0a934ebbae9e9ab703a3dc0b23191bdc7c147eb12140
GET /8d62ac139591ff0c5f17d4c5f1ff3cf6.gif HTTP/1.1
Host: kzeii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 565615
last-modified: Mon, 19 Dec 2022 09:06:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 31 Dec 2022 15:57:21 GMT
etag: "6a2c609ad0c46bb1b8d9cd39eacde625"
x-cache: Hit from cloudfront
via: 1.1 e458de70cfe2237c659d4e5f2ae84564.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: 8ZSdF2c0F8CnIHFrW5UijsZKv8I0c0W0xwVIly1y-_1dz3dDJy0nIw==
age: 73856
X-Firefox-Spdy: h2
kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
13.227.254.13200 OK 864 kB URL HTTP/2 kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 13.227.254.13:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 864 kB (864004 bytes)
Hash d2c820747a9b9b8c3abaab0775436ab7
99651afd10bd3874fb84d7973845482cd2c81f23
8aa3c7b05ba9bb5176a7155ead2a0ea562b07fb0dd7b27a9cf91c38e95ed43ed
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: kzecc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 864004
last-modified: Mon, 19 Dec 2022 09:06:34 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 31 Dec 2022 23:06:11 GMT
etag: "d2c820747a9b9b8c3abaab0775436ab7"
x-cache: Hit from cloudfront
via: 1.1 ce37b125bad795f4918cd50b3f95260a.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: 8VV4q2yJGCOjp9meeFMWcCvYn1VVJkwej6ZzIXw4ERdKebp7vTIilA==
age: 15669
X-Firefox-Spdy: h2
9366qq.com/3be4171f45964b3795b8b02e1da84c25.gif
103.170.15.89200 OK 584 kB URL HTTP/1.1 9366qq.com/3be4171f45964b3795b8b02e1da84c25.gif
IP 103.170.15.89:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 584 kB (584025 bytes)
Hash ebf4ee75bbd43b703e1b1b861ba166e2
c241029604f77ad6b4f56894bc51decfededfde7
d6655adbfa7089435d168e9b1432e524f0bf11be8b80ddc499bef69bd5a376ea
Analyzer Verdict Alert quad9 Sinkholed
GET /3be4171f45964b3795b8b02e1da84c25.gif HTTP/1.1
Host: 9366qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "631ee6a4-8e959"
Date: Tue, 27 Dec 2022 18:39:27 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 12 Sep 2022 07:58:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-19
Content-Length: 584025
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 4022a6959ab3b80127628a2021620084
26f81a43d1d66b65ab57cdc9a008de048fd2ccd5
f524b1a4fbd99511c8c7b857fb8afb4de35c8e12f8e915d214e5494453e5e172
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 01 Jan 2023 03:27:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 31 Dec 2022 06:05:09 GMT
Expires: Sun, 01 Jan 2023 06:05:09 GMT
ETag: "26f81a43d1d66b65ab57cdc9a008de048fd2ccd5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 33fe854a1c7a37ba947f0bde88dda21e
cd15b564836437237d2c43ad98952d0e0ab98f54
3ecd33e6829278f5aa07c62d4e71488a85ed8d31cd8c573294b52209d5c67229
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3ECD33E6829278F5AA07C62D4E71488A85ED8D31CD8C573294B52209D5C67229"
Last-Modified: Sat, 31 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21556
Expires: Sun, 01 Jan 2023 09:26:36 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1d12ae75d91419fcc2e53c2b8b5a937e
66d9dd383c61a4f4df245efd7ef382979dd55495
d10081fbb9d2b1a2067b61b35a5758b0a7a5a0e9bf50d9a03b7704f2061b6f32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D10081FBB9D2B1A2067B61B35A5758B0A7A5A0E9BF50D9A03B7704F2061B6F32"
Last-Modified: Fri, 30 Dec 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15750
Expires: Sun, 01 Jan 2023 07:49:50 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash c4f92db00f5e030fa02cb1395a6b749d
8c7306fd3663c292700930e0b931bbc9f4ddc750
7d32f2be93b2dab85c18ac76fd37704811dc51cf43d41a46329d35b51345fbad
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:20 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 29 Dec 2022 13:55:32 GMT
Expires: Thu, 05 Jan 2023 13:55:31 GMT
Etag: "8c7306fd3663c292700930e0b931bbc9f4ddc750"
Cache-Control: max-age=382690,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78282899babbb51b-OSL
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6b5a55b00905500f27c271f0ce059a5f
a04501205ec24e0cb4bf3c8008a1528f2473557b
ce9a7cbd3551b1c34c9ab9dca9ed00de391220e8ba5aaab1199e9599f9c1f0b2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CE9A7CBD3551B1C34C9AB9DCA9ED00DE391220E8BA5AAAB1199E9599F9C1F0B2"
Last-Modified: Sat, 31 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13734
Expires: Sun, 01 Jan 2023 07:16:14 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6b5a55b00905500f27c271f0ce059a5f
a04501205ec24e0cb4bf3c8008a1528f2473557b
ce9a7cbd3551b1c34c9ab9dca9ed00de391220e8ba5aaab1199e9599f9c1f0b2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CE9A7CBD3551B1C34C9AB9DCA9ED00DE391220E8BA5AAAB1199E9599F9C1F0B2"
Last-Modified: Sat, 31 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21587
Expires: Sun, 01 Jan 2023 09:27:07 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6512bddf1f40073ddccfe5ce43432653
29417890b871d7a72d0716cf1ff4db4cb8673b68
c2d0bc1e8a511beb03ac806ce54a182c058d0fef17d4f701363a122efb4b7892
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "C2D0BC1E8A511BEB03AC806CE54A182C058D0FEF17D4F701363A122EFB4B7892"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21543
Expires: Sun, 01 Jan 2023 09:26:23 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6512bddf1f40073ddccfe5ce43432653
29417890b871d7a72d0716cf1ff4db4cb8673b68
c2d0bc1e8a511beb03ac806ce54a182c058d0fef17d4f701363a122efb4b7892
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "C2D0BC1E8A511BEB03AC806CE54A182C058D0FEF17D4F701363A122EFB4B7892"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21582
Expires: Sun, 01 Jan 2023 09:27:02 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 5093c69b5b29e7549125ee99b687e55a
1c57acb234124062b3e59ae785e73d767111a6f9
37f790c9a0c1a3f91b992e6aea89c4f43ad695d94cd91108e860690d5b427469
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 05 Jan 2023 01:48:59 GMT
ETag: "1c57acb234124062b3e59ae785e73d767111a6f9"
Last-Modified: Sun, 01 Jan 2023 01:49:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2037
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7828289b8c19b50b-OSL
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 6e964c2082106a351875c39afd28c395
57ea0bf8e9d52ee8ebfb340091723cf2ada8782d
3c04f3d0512a80b58d898ae723b020919bc66f601dd9c153f4353ea4722b165a
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=324
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 34857fe0736320da747fd842ec13981b
792d5ad1f17f7b69f22c4d2d43477a409a7adbd9
cd979cd5a5fcbe1afe493b9af49dcaea8a1c49b2a89d94adbdca6286608a45d5
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=246
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
X-N: S
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e7a11884a68c93a9c4be8631b1e029b6
da79c775d107f91744a266893e65d747027cb0ba
1db3e80cded69d2ca9e2079c01c481f1330aa76e1b10bf93ac62fd4e742c0c9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB3E80CDED69D2CA9E2079C01C481F1330AA76E1B10BF93AC62FD4E742C0C9F"
Last-Modified: Fri, 30 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19125
Expires: Sun, 01 Jan 2023 08:46:05 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
tpkj3333.com/img/k80m/oUfCSgVqE.gif
66.203.156.151200 OK 91 kB URL HTTP/1.1 tpkj3333.com/img/k80m/oUfCSgVqE.gif
IP 66.203.156.151:0
ASN #59371 Dimension Network & Communication Limited
File type GIF image data, version 89a, 960 x 80\012- data
Hash 4946489a6b4b9e0b10f0f27ca4e6abc2
02f0695bb9fd6890f6e22b200ca3532dc1b86200
89918818e7f2717b00d29025873a9ccf2ddc097ab8920ca4348e73c2791d528f
GET /img/k80m/oUfCSgVqE.gif HTTP/1.1
Host: tpkj3333.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"250183-1671358133000"
Last-Modified: Sun, 18 Dec 2022 10:08:53 GMT
Expires: Mon, 16 Jan 2023 03:27:19 GMT
Cache-Control: max-age=1296000
Content-Encoding: gzip
Nginx-Cache: HIT, HIT
kzeqq.com/17a571f5114b7fe07f3a8a84c49731c3.gif
88.99.102.224200 OK 570 kB URL HTTP/2 kzeqq.com/17a571f5114b7fe07f3a8a84c49731c3.gif
IP 88.99.102.224:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 960 x 60\012- data
Size 570 kB (570411 bytes)
Hash b4ba386b410ed3c8e88edc7863378408
e231d90073dfead323dcc5c92d63a5d3df81e2c5
b92eb16a1b399b10c529bb71aecf0d1cf458cc5544469ffa75c47c5f422f86da
GET /17a571f5114b7fe07f3a8a84c49731c3.gif HTTP/1.1
Host: kzeqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 01 Jan 2023 03:27:20 GMT
content-type: image/gif
content-length: 570411
last-modified: Fri, 30 Dec 2022 02:48:10 GMT
etag: "63ae516a-8b42b"
expires: Sun, 01 Jan 2023 15:27:20 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 55401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ryY%2FdrZWEW%2Bh7DfokLPloMZXZtetV5w19FsXaACHQpSC07m6b%2BLU4SDAIbLIgbB56FNz7MLCfLE9zhcv6c9c54FPjr%2B%2F4K5ZqvN7qeGNFpGBITyBNxqW5ZhTV3xs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 781cbd5e4a7dc217-VIE
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6b5a55b00905500f27c271f0ce059a5f
a04501205ec24e0cb4bf3c8008a1528f2473557b
ce9a7cbd3551b1c34c9ab9dca9ed00de391220e8ba5aaab1199e9599f9c1f0b2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CE9A7CBD3551B1C34C9AB9DCA9ED00DE391220E8BA5AAAB1199E9599F9C1F0B2"
Last-Modified: Sat, 31 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 01 Jan 2023 09:27:20 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d9c53cd94146a42a91ed6f2e4d20e070
ae2baac09ee0b3bc154aa202ed0871d19b8b6e1b
cfe8fec3fe2280df135433fefc9c746fe67a278ed50f4ecd8a420946b21e84ab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE8FEC3FE2280DF135433FEFC9C746FE67A278ED50F4ECD8A420946B21E84AB"
Last-Modified: Fri, 30 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9379
Expires: Sun, 01 Jan 2023 06:03:39 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 4a275edb700962fb38bcca290423dc5c
ae7b47629d9214855f998db11638668fc39fa02b
3e1b02764c03e79d79e4a1a7bd35990c706f7deda04953cda46988a842113676
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=190
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
X-N: S
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e7a11884a68c93a9c4be8631b1e029b6
da79c775d107f91744a266893e65d747027cb0ba
1db3e80cded69d2ca9e2079c01c481f1330aa76e1b10bf93ac62fd4e742c0c9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB3E80CDED69D2CA9E2079C01C481F1330AA76E1B10BF93AC62FD4E742C0C9F"
Last-Modified: Fri, 30 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19212
Expires: Sun, 01 Jan 2023 08:47:32 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 66f5e52929e04e20213a9724bcf14fb5
13f08a9ec74139a377a7bf095acf7f6042308db2
d4f0bdc5b1d503d41974dac0370173a10bf2465821e69536bfb602332b507b7d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D4F0BDC5B1D503D41974DAC0370173A10BF2465821E69536BFB602332B507B7D"
Last-Modified: Fri, 30 Dec 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8130
Expires: Sun, 01 Jan 2023 05:42:50 GMT
Date: Sun, 01 Jan 2023 03:27:20 GMT
Connection: keep-alive
sz88.oss-cn-shenzhen.aliyuncs.com/960x80x.gif
120.77.166.72200 OK 617 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/960x80x.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 617 kB (616551 bytes)
Hash c7d5af41a71e7915dd3c695f4d92cb8b
63f42eb3bce47701db934e60bc0dad360bb1b57b
a6b8233eceb265b139102f0f885627e3c7294ac640c2b83b80467e879d1f5679
GET /960x80x.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: image/gif
Content-Length: 616551
Connection: keep-alive
x-oss-request-id: 63B0FD97D17D343736557CEE
Accept-Ranges: bytes
ETag: "C7D5AF41A71E7915DD3C695F4D92CB8B"
Last-Modified: Wed, 01 Jun 2022 07:49:09 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2846388596987969293
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: x9WvQaceeRXdPGlfTZLLiw==
x-oss-server-time: 1
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 1708a9c6e339c5e9c572d38bbf4b237f
a3a4c98873855a0697c51792f63f9af269c970b8
80b08d8282d89ef3d94f86cee2d0a9d958d1725f9aa3ed78b1c24cb9f4b4c5bf
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=199
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 1708a9c6e339c5e9c572d38bbf4b237f
a3a4c98873855a0697c51792f63f9af269c970b8
80b08d8282d89ef3d94f86cee2d0a9d958d1725f9aa3ed78b1c24cb9f4b4c5bf
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=199
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 1708a9c6e339c5e9c572d38bbf4b237f
a3a4c98873855a0697c51792f63f9af269c970b8
80b08d8282d89ef3d94f86cee2d0a9d958d1725f9aa3ed78b1c24cb9f4b4c5bf
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=199
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
X-N: S
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 054fdd540d2637aaae1fd27d902bb6eb
3f3cf691ddfd8aeaf740406138c1b84ae51f6425
66499c0b85bd7e09e2688f228ef0fe04bba5710550add3e9dcfb7e2829796eac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66499C0B85BD7E09E2688F228EF0FE04BBA5710550ADD3E9DCFB7E2829796EAC"
Last-Modified: Fri, 30 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7567
Expires: Sun, 01 Jan 2023 05:33:28 GMT
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7f6c46cb0a6abbbeb7cadbea87b6422f
40653c94393ff699fe7e0945053d632c6f64ddf6
0aa3f53f4933f6db4113814b8b8ce3db6b204d448b42ff56723c81a8d0ae19fb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0AA3F53F4933F6DB4113814B8B8CE3DB6B204D448B42FF56723C81A8D0AE19FB"
Last-Modified: Fri, 30 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1213
Expires: Sun, 01 Jan 2023 03:47:34 GMT
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7f6c46cb0a6abbbeb7cadbea87b6422f
40653c94393ff699fe7e0945053d632c6f64ddf6
0aa3f53f4933f6db4113814b8b8ce3db6b204d448b42ff56723c81a8d0ae19fb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0AA3F53F4933F6DB4113814B8B8CE3DB6B204D448B42FF56723C81A8D0AE19FB"
Last-Modified: Fri, 30 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1213
Expires: Sun, 01 Jan 2023 03:47:34 GMT
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
ddcdn.comtucdncom.com/upload/vod/2020-08-23/159815049410.jpg
45.89.209.74200 OK 11 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2020-08-23/159815049410.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 158d031179bf98c01da18d0fcac38fa9
c7a12659be1aed7ddf2a58121e1df986e06f1912
d50b45068cf6c475f9857ca96993b5dac7e463259777a24099c4db5ab08eab24
GET /upload/vod/2020-08-23/159815049410.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 10825
Last-Modified: Sat, 03 Dec 2022 14:44:14 GMT
Connection: keep-alive
ETag: "638b60be-2a49"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-03-16/155274010912.jpg
45.89.209.74200 OK 8.5 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-03-16/155274010912.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 320x240, components 3\012- data
Hash 497a6a9091b02f2629e728515c395ea1
93c74a1eaca8a92fc086cc4b0963d0670bb06c1d
72a3df05ffcd2e42d0524be1b3b8f3911188a502f30c9afb2ca4800ba566a8e5
GET /upload/vod/2019-03-16/155274010912.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 8483
Last-Modified: Sun, 04 Dec 2022 15:02:18 GMT
Connection: keep-alive
ETag: "638cb67a-2123"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220629/F6503E750C1A7AB3/F6503E750C1A7AB3.jpg
5.180.83.41200 OK 10 kB URL HTTP/1.1 pic1.semaobf1.com/20220629/F6503E750C1A7AB3/F6503E750C1A7AB3.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 6c4e2cd45d709e76ac905ee550b31cb5
20798a238157b226dbc50a6a443298d5d8814c77
3261c133dccc62056d329f929c49fefb338f8a76058d91dca3f827e8ceab6ff1
GET /20220629/F6503E750C1A7AB3/F6503E750C1A7AB3.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:36 GMT
Content-Type: image/jpeg
Content-Length: 10026
Last-Modified: Tue, 06 Sep 2022 14:30:58 GMT
Connection: keep-alive
ETag: "631759a2-272a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 66f5e52929e04e20213a9724bcf14fb5
13f08a9ec74139a377a7bf095acf7f6042308db2
d4f0bdc5b1d503d41974dac0370173a10bf2465821e69536bfb602332b507b7d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D4F0BDC5B1D503D41974DAC0370173A10BF2465821E69536BFB602332B507B7D"
Last-Modified: Fri, 30 Dec 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 01 Jan 2023 09:27:21 GMT
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
sycdn.comtucdncom.com/pic/reregc-pic/WmBZW6wR.jpg
172.247.77.90200 OK 5.4 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/reregc-pic/WmBZW6wR.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 60543cb0433552a815e3549087b2d968
0b3ce4edd999d2f499496b6797ada582e3beed16
b2d1842e824d31bbb1dd75197f6a7164b625b8ec991ce78468a4291b6574b1fb
GET /pic/reregc-pic/WmBZW6wR.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:42 GMT
Content-Type: image/jpeg
Content-Length: 5387
Last-Modified: Wed, 10 Aug 2022 11:35:19 GMT
Connection: keep-alive
ETag: "62f397f7-150b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/pic/20200412-HIP91/OQ3Aq0Gu.jpg
172.247.77.90200 OK 9.9 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/20200412-HIP91/OQ3Aq0Gu.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 6f00884cb95878601a634cab970e52c4
a5c89cae1c11cad901c492658fb738078582d308
ad337448ab32fa4307149ec968600f3bbfb54fe80ee0de706d7feb958863b2ad
GET /pic/20200412-HIP91/OQ3Aq0Gu.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:42 GMT
Content-Type: image/jpeg
Content-Length: 9884
Last-Modified: Wed, 10 Aug 2022 12:11:46 GMT
Connection: keep-alive
ETag: "62f3a082-269c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 2ee64232ce9ff3af5e155551fee35c34
8e0962444ba61d1f444ba715fd7ea972e5a2d978
cd549a415754d682aa0a830f43e76c5abbf31a1ef86d608e234be4c384e72e04
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 05 Jan 2023 02:17:30 GMT
ETag: "8e0962444ba61d1f444ba715fd7ea972e5a2d978"
Last-Modified: Sun, 01 Jan 2023 02:17:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2517
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7828289d2fbc1c0a-OSL
ddcdn.comtucdncom.com/upload/vod/20211231-1/f8cf44dbd75fa9aad975143831e766dc.jpg
45.89.209.74503 Service Temporarily Unavailable 190 B URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20211231-1/f8cf44dbd75fa9aad975143831e766dc.jpg
IP 45.89.209.74:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3267dd8f0e96711dd54dbb1f5676b447
202602c4ec4a5e2498e3d24a3ed025ce70bf749c
b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
GET /upload/vod/20211231-1/f8cf44dbd75fa9aad975143831e766dc.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Temporarily Unavailable
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 190
Connection: keep-alive
ddcdn.comtucdncom.com/upload/vod/2019-12-22/157694618518.jpg
45.89.209.74200 OK 6.2 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-12-22/157694618518.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 44cec16e2aefb2ffb028de4ce92eb4cf
7e9e58e0642e339589cedc755e4b777afe3982fe
9a690034764c2a4ff9fc01cf35d70f52ce3354d507bd0ad04eba6dd462e82d2b
GET /upload/vod/2019-12-22/157694618518.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 6152
Last-Modified: Mon, 28 Nov 2022 04:26:45 GMT
Connection: keep-alive
ETag: "63843885-1808"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20211125-1/f9d3ff393c5b62b0f02c9b433a5d48dc.jpg
45.89.209.74503 Service Temporarily Unavailable 190 B URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20211125-1/f9d3ff393c5b62b0f02c9b433a5d48dc.jpg
IP 45.89.209.74:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3267dd8f0e96711dd54dbb1f5676b447
202602c4ec4a5e2498e3d24a3ed025ce70bf749c
b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
GET /upload/vod/20211125-1/f9d3ff393c5b62b0f02c9b433a5d48dc.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Temporarily Unavailable
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 190
Connection: keep-alive
pic1.semaobf1.com/20211012/11F008D2CAE75AC2/11F008D2CAE75AC2.jpg
5.180.83.41200 OK 9.7 kB URL HTTP/1.1 pic1.semaobf1.com/20211012/11F008D2CAE75AC2/11F008D2CAE75AC2.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 647829f1d4b76a08b2dd9a89edb362cc
06fa2d467766ad79704942cd295211b9f7280645
44bdba78adafe1cef19e07a2a1cc0b0b28dd1eb95508dfc7f7ab71563f34fc79
GET /20211012/11F008D2CAE75AC2/11F008D2CAE75AC2.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:36 GMT
Content-Type: image/jpeg
Content-Length: 9651
Last-Modified: Tue, 06 Sep 2022 14:30:44 GMT
Connection: keep-alive
ETag: "63175994-25b3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 06980fb2ac89f52599b3778cbfa074be
fd0aa4ddeeaf1786518376495ba9e32de4a0d6eb
db15b55b30fd47f345ba034d01b57867be2d7c834e9cf01481d61f371c410d68
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 05 Jan 2023 01:29:36 GMT
ETag: "fd0aa4ddeeaf1786518376495ba9e32de4a0d6eb"
Last-Modified: Sun, 01 Jan 2023 01:29:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1347
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7828289d5a15fab4-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 18fddff9e0f6f57b8fd11748cbe184a7
34b9382e713d2b70a12649dd250b1c27077f6c2f
0ab1fcd93f8e9bb58f57503b0d85c31306c6349864ccdee3affe7f9286558ee8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0AB1FCD93F8E9BB58F57503B0D85C31306C6349864CCDEE3AFFE7F9286558EE8"
Last-Modified: Fri, 30 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5963
Expires: Sun, 01 Jan 2023 05:06:44 GMT
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
pic1.semaobf1.com/20211008/7159B92D898B2C8F/7159B92D898B2C8F.jpg
5.180.83.41200 OK 8.9 kB URL HTTP/1.1 pic1.semaobf1.com/20211008/7159B92D898B2C8F/7159B92D898B2C8F.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 0836cc5891cd705d5500c1c69157b826
975dabb3d9ba4885ad0a11d7874cddd9bad86a8a
79b3dfbb9ddec3fd2b981be87a9f8d8b45600b1bff03ccb416f3121cafc65f52
GET /20211008/7159B92D898B2C8F/7159B92D898B2C8F.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:36 GMT
Content-Type: image/jpeg
Content-Length: 8938
Last-Modified: Tue, 06 Sep 2022 14:27:49 GMT
Connection: keep-alive
ETag: "631758e5-22ea"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220506/D1F8765F1C40CA57/D1F8765F1C40CA57.jpg
5.180.83.41404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220506/D1F8765F1C40CA57/D1F8765F1C40CA57.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220506/D1F8765F1C40CA57/D1F8765F1C40CA57.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
pic1.semaobf1.com/20210905/5D70627B2B417582/5D70627B2B417582.jpg
5.180.83.41200 OK 13 kB URL HTTP/1.1 pic1.semaobf1.com/20210905/5D70627B2B417582/5D70627B2B417582.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e3270a701649acbd628192fb09c6bd22
e41fb56144af1e41d38b02e465b1aff357f8e5ab
6ab78d02d4c181e1d17335c50cddbcfc08b55056d6884e0d84062f11dbb0e782
GET /20210905/5D70627B2B417582/5D70627B2B417582.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:36 GMT
Content-Type: image/jpeg
Content-Length: 12640
Last-Modified: Tue, 06 Sep 2022 14:31:51 GMT
Connection: keep-alive
ETag: "631759d7-3160"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 597239aaa0c15fea0c123b58f442769c
518c5ff977cc27b59554fe0dd40182395a623cef
d67f8891ac95e884ecd10c0fd9294725676571d3379b6776e413c4bb8b75feb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D67F8891AC95E884ECD10C0FD9294725676571D3379B6776E413C4BB8B75FEB8"
Last-Modified: Thu, 29 Dec 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13947
Expires: Sun, 01 Jan 2023 07:19:48 GMT
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
ocsp.buypass.com/
23.36.76.200200 OK 1.7 kB IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
Hash fa379579a031e52752845f0ec4fff33f
d617c8b5266a56f673cb482c9efdec11fefe4054
cd1a8628e46380d6afd9f1fbeb2bbb1a463f1655656b01897f42eb9e58b433ea
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: e5877ab6-40b8-4d70-92e4-c1963ed508f4
Content-Length: 1701
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
ocsp.buypass.com/
23.36.76.200200 OK 1.7 kB IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
Hash f06b5bb5a3159c76b7082b1ef10f9862
713e3093a9f7a7f0729f67c79b61c85456433db2
ca82824bece1d60e75a10f24177a8f354600df4e1de64fceb2746576069b42a0
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 8a14b979-8ce0-4106-8f53-fa4f109d934f
Content-Length: 1701
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
ocsp.buypass.com/
23.36.76.200200 OK 1.7 kB IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
Hash ec465839c4d382641bbdc66334a4e778
ae88dc7f4f04a5db82c21f458c07107f9e6e6e47
bc025daa81c2e64af8a85b24a7bf1932fd732c05a3675d7fa5f0bf06deec4ecf
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 78bf28b4-60ba-41da-a153-f1a1f341ced4
Content-Length: 1701
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
ddcdn.comtucdncom.com/upload/vod/2018-12-14/154477457817.jpg
45.89.209.74200 OK 4.9 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-14/154477457817.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash cfa0c9f84d8ff853215535d7f4005424
217efc002d0df728ed4bbbb4995aa54ca5bf65ef
a1aaf60b6dd3a077d4250adb2d84c526dc79453ebc165700ffb19733fa6ebfb6
GET /upload/vod/2018-12-14/154477457817.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 4908
Last-Modified: Sat, 03 Dec 2022 18:15:14 GMT
Connection: keep-alive
ETag: "638b9232-132c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20220113-1/479b65e401651cd5aa17e08c456a3cd0.jpg
45.89.209.74503 Service Temporarily Unavailable 190 B URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20220113-1/479b65e401651cd5aa17e08c456a3cd0.jpg
IP 45.89.209.74:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3267dd8f0e96711dd54dbb1f5676b447
202602c4ec4a5e2498e3d24a3ed025ce70bf749c
b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
GET /upload/vod/20220113-1/479b65e401651cd5aa17e08c456a3cd0.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Temporarily Unavailable
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 190
Connection: keep-alive
pic1.semaobf1.com/20220502/268066E3595007A7/268066E3595007A7.jpg
5.180.83.41200 OK 9.7 kB URL HTTP/1.1 pic1.semaobf1.com/20220502/268066E3595007A7/268066E3595007A7.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2024c6d74bab1d473e44b54898e9ce6b
1735cd16b390c69da4450332c9823884f17f06cf
53bc01b701c2e113601dd1cdd53229bb3c170da5b9593d19ed54ab9e430042ac
GET /20220502/268066E3595007A7/268066E3595007A7.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:37 GMT
Content-Type: image/jpeg
Content-Length: 9732
Last-Modified: Tue, 06 Sep 2022 14:27:37 GMT
Connection: keep-alive
ETag: "631758d9-2604"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220602/7972FE55E619344E/7972FE55E619344E.jpg
5.180.83.41404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220602/7972FE55E619344E/7972FE55E619344E.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220602/7972FE55E619344E/7972FE55E619344E.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2022/05-05/09/fng1mxd0ln50928fng1mxd0ln559601.jpg
172.247.77.90200 OK 10 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2022/05-05/09/fng1mxd0ln50928fng1mxd0ln559601.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6715a4941be55158467c5fdc4228f148
a8217a97f2d2450ee3d3002180492692572dde66
6f46a6069d97af1636c25115a2e514c1b06c437cd1cdb7ce547f871bba71eac7
GET /upload/vod/2022/05-05/09/fng1mxd0ln50928fng1mxd0ln559601.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:42 GMT
Content-Type: image/jpeg
Content-Length: 9970
Last-Modified: Wed, 09 Nov 2022 11:43:26 GMT
Connection: keep-alive
ETag: "636b925e-26f2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/05-22/00/tdmmhyocdez0002tdmmhyocdez474319.jpg
172.247.77.90200 OK 12 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/05-22/00/tdmmhyocdez0002tdmmhyocdez474319.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 562dcbad75e9de558036accd9fa406d5
854e30c92cbabdd38c2a60e526b9b1b47de89ac0
a30480394c3f9def5f14c4918931f8d6625167d41344f339f767e1f9296d3ed4
GET /upload/vod/2020/05-22/00/tdmmhyocdez0002tdmmhyocdez474319.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:42 GMT
Content-Type: image/jpeg
Content-Length: 12055
Last-Modified: Wed, 09 Nov 2022 11:56:18 GMT
Connection: keep-alive
ETag: "636b9562-2f17"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2022/07-17/11/i5ltguixlvu1127i5ltguixlvu216007.jpg
172.247.77.90200 OK 8.4 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2022/07-17/11/i5ltguixlvu1127i5ltguixlvu216007.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 0021772bb0ccf0130ded160a78b2d9ec
38d9f1257f4f36590e8104c632ae2cfe3603670a
efaacfa42778d1a539458cffbd97c1d4a7d54e5d7cd0f20578ccaca44dd09fee
GET /upload/vod/2022/07-17/11/i5ltguixlvu1127i5ltguixlvu216007.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:42 GMT
Content-Type: image/jpeg
Content-Length: 8390
Last-Modified: Wed, 09 Nov 2022 11:43:52 GMT
Connection: keep-alive
ETag: "636b9278-20c6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.buypass.com/
23.36.76.129200 OK 1.7 kB IP 23.36.76.129:0
ASN #20940 Akamai International B.V.
Hash fa379579a031e52752845f0ec4fff33f
d617c8b5266a56f673cb482c9efdec11fefe4054
cd1a8628e46380d6afd9f1fbeb2bbb1a463f1655656b01897f42eb9e58b433ea
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: bc096179-a11c-4973-a8fd-56bee7feff4a
Content-Length: 1701
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
sycdn.comtucdncom.com/upload/vod/20210511-1/e7f960ad547f3e8eb824e9b2dac30052.jpg
172.247.77.90200 OK 26 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210511-1/e7f960ad547f3e8eb824e9b2dac30052.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.92.100", baseline, precision 8, 638x368, components 3\012- data
Hash a9a42a5ceb25be8b3d66254dc98851bc
af84791716665a2cda605788281944d4e2edf8c4
ee33896466fecec41b8c5a047d6729fc9f67e997c1b9e41025fa698ab9f79c7e
GET /upload/vod/20210511-1/e7f960ad547f3e8eb824e9b2dac30052.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:42 GMT
Content-Type: image/jpeg
Content-Length: 25586
Last-Modified: Wed, 10 Aug 2022 12:11:08 GMT
Connection: keep-alive
ETag: "62f3a05c-63f2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20210901/F99D745B14B9E3C7/F99D745B14B9E3C7.jpg
5.180.83.41200 OK 9.1 kB URL HTTP/1.1 pic1.semaobf1.com/20210901/F99D745B14B9E3C7/F99D745B14B9E3C7.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8f93b725b1dd55de76e0438d9cc9d524
95a46a256c36bd0b4dee78371bca0ffd327502cd
4466172260c0ada322f0ca89d9752e07e90d37900adefb20726b49bf8cff27d4
GET /20210901/F99D745B14B9E3C7/F99D745B14B9E3C7.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:37 GMT
Content-Type: image/jpeg
Content-Length: 9135
Last-Modified: Tue, 06 Sep 2022 14:27:34 GMT
Connection: keep-alive
ETag: "631758d6-23af"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
6617398ccc.com/95128b772cae4720abf92e497051ddab.gif
103.170.15.94200 OK 604 kB URL HTTP/1.1 6617398ccc.com/95128b772cae4720abf92e497051ddab.gif
IP 103.170.15.94:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 604 kB (603987 bytes)
Hash 23949104e338cb795b2e13fa2f5a2247
466467d793d47e13999b5a3b0d8f3ff5fd980d93
871b665b13f515dec19211e8f88f5b03d1bca8ae5fd317d67c72630a748605a3
Analyzer Verdict Alert quad9 Sinkholed
GET /95128b772cae4720abf92e497051ddab.gif HTTP/1.1
Host: 6617398ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63aad950-93753"
Date: Tue, 27 Dec 2022 18:51:29 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 27 Dec 2022 11:38:56 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-24
Content-Length: 603987
ddcdn.comtucdncom.com/upload/vod/2021-01-02/16095187140.jpg
45.89.209.74200 OK 8.5 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2021-01-02/16095187140.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash e366c35635739a7d1740f5dc93bee979
d720d71aa59e7e55ffdc2112dbc3b76b7e47f8b2
3db39eb954d4c65f88f29cd8a874a7c7759ee2d3bbf9d23100a3ddbf6ebd4c84
GET /upload/vod/2021-01-02/16095187140.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 8509
Last-Modified: Sun, 04 Dec 2022 14:47:17 GMT
Connection: keep-alive
ETag: "638cb2f5-213d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-02-21/155073193710.jpg
45.89.209.74200 OK 5.9 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-02-21/155073193710.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 320x240, components 3\012- data
Hash b867587bcfd19930b6573e8dc09d1316
8b055925fdd06b5af4750ed52951b3a535fecb21
b25bda4e08bd667b0ecfb39447daa965e6108920b3b3d8e94623bd62ab441e5a
GET /upload/vod/2019-02-21/155073193710.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 5877
Last-Modified: Sun, 04 Dec 2022 03:13:16 GMT
Connection: keep-alive
ETag: "638c104c-16f5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 8fbdd0315c54cf105fbab132238b401e
4d6893b02480ddc516068460346b6fe77e2b57dd
d7deb2ed127adacfb502923be433a30023a67537a7d23e02a459207b6299b186
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 05 Jan 2023 00:34:12 GMT
ETag: "4d6893b02480ddc516068460346b6fe77e2b57dd"
Last-Modified: Sun, 01 Jan 2023 00:34:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1977
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7828289e38021c0a-OSL
pt1.putaozy.info/20220305/AEB1675B83A9EB2B/AEB1675B83A9EB2B.jpg
5.180.83.11200 OK 14 kB URL HTTP/1.1 pt1.putaozy.info/20220305/AEB1675B83A9EB2B/AEB1675B83A9EB2B.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 0318193ca3cf4d7e150d66b2fe9dff8c
139dd5cb80793017d48a473498c6157af0c95c3e
06f02d24d93714f5e05e9eb765af8b342d0eb1d5af084e022d00ba0f9aa8bfa7
GET /20220305/AEB1675B83A9EB2B/AEB1675B83A9EB2B.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 13694
Last-Modified: Wed, 07 Sep 2022 13:02:49 GMT
Connection: keep-alive
ETag: "63189679-357e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220627/7C789B154EBDCA42/7C789B154EBDCA42.jpg
5.180.83.41200 OK 10 kB URL HTTP/1.1 pic1.semaobf1.com/20220627/7C789B154EBDCA42/7C789B154EBDCA42.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d08e150be1fe69e71569eed57e9cbda5
68be15e67c2eb9595b3a41a64ce3ec001fac07c5
86f400f6970bf4635b222dea266487de71996ac34daab401d1d08768b917b9f3
GET /20220627/7C789B154EBDCA42/7C789B154EBDCA42.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:37 GMT
Content-Type: image/jpeg
Content-Length: 9987
Last-Modified: Tue, 06 Sep 2022 14:31:12 GMT
Connection: keep-alive
ETag: "631759b0-2703"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220312/F964195F0E96B132/F964195F0E96B132.jpg
5.180.83.11200 OK 8.4 kB URL HTTP/1.1 pt1.putaozy.info/20220312/F964195F0E96B132/F964195F0E96B132.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d186d1dad5766ed30748285c81c56c19
3d7563b64190f6dad61cac9080c4bf2e85e7e567
b4ca27662e6934772db30e5e06e81016a8117ac4fa8e73de6382eb172e5f1d16
GET /20220312/F964195F0E96B132/F964195F0E96B132.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 8372
Last-Modified: Wed, 07 Sep 2022 13:04:56 GMT
Connection: keep-alive
ETag: "631896f8-20b4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220309/A7C8F4778B94BB48/A7C8F4778B94BB48.jpg
5.180.83.11200 OK 6.7 kB URL HTTP/1.1 pt1.putaozy.info/20220309/A7C8F4778B94BB48/A7C8F4778B94BB48.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d94395dbcf6291dcf2f94eae24c64e4d
ff40210d73df02bec07b27170e16507af2b59790
bc32057cea28ab15696689edf813a1b965b5bfafda892926f7766eeb2643d880
GET /20220309/A7C8F4778B94BB48/A7C8F4778B94BB48.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 6668
Last-Modified: Wed, 07 Sep 2022 13:05:49 GMT
Connection: keep-alive
ETag: "6318972d-1a0c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220310/2B2DE85F93915197/2B2DE85F93915197.jpg
5.180.83.11200 OK 8.8 kB URL HTTP/1.1 pt1.putaozy.info/20220310/2B2DE85F93915197/2B2DE85F93915197.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 6eb085bd70185e7b58efb05f0b8f943f
7b1429b50bc63ebe9ca61b09dc60d7a35c4d5e1d
8310548ed17134f55b6035db0bc9847bf2bf62e83b07f38de1e5b18b5930f13c
GET /20220310/2B2DE85F93915197/2B2DE85F93915197.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 8787
Last-Modified: Wed, 07 Sep 2022 13:04:18 GMT
Connection: keep-alive
ETag: "631896d2-2253"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2156f5045eb474b5c02d0c6f64f02c4e
5cc884658ca6b9b357478137cb431f694e773bd8
3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6885
Expires: Sun, 01 Jan 2023 05:22:06 GMT
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
ddcdn.comtucdncom.com/upload/vod/2019-02-03/154917558617.jpg
45.89.209.74200 OK 8.9 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-02-03/154917558617.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 68393a00d8ebb344cf39f38748f483b3
431bd7f8b1478a4eaa0462c9528bff6a6f3fe3ab
88e7d4779ba05c160ff13d468a2adb000d8495826f3ca2cef918380a67339187
GET /upload/vod/2019-02-03/154917558617.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 8918
Last-Modified: Fri, 02 Dec 2022 09:02:39 GMT
Connection: keep-alive
ETag: "6389bf2f-22d6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220519/D748F1712B92AB6A/D748F1712B92AB6A.jpg
5.180.83.41200 OK 7.0 kB URL HTTP/1.1 pic1.semaobf1.com/20220519/D748F1712B92AB6A/D748F1712B92AB6A.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 239x240, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4d0cb26da50d6d331467bbc2089776b3
ef706efd5f83db23ecdb414c5d1dceb37e49c963
6377a26fc7eca39200987c6356134d79be4e001dc419382021f4f9cd2414beb5
GET /20220519/D748F1712B92AB6A/D748F1712B92AB6A.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:37 GMT
Content-Type: image/jpeg
Content-Length: 7029
Last-Modified: Tue, 06 Sep 2022 14:28:12 GMT
Connection: keep-alive
ETag: "631758fc-1b75"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211019/BBE97C804EA8EAB6/BBE97C804EA8EAB6.jpg
5.180.83.41200 OK 8.4 kB URL HTTP/1.1 pic1.semaobf1.com/20211019/BBE97C804EA8EAB6/BBE97C804EA8EAB6.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 925f26b2825caf1b535c70ab143b1ac8
73d54f992f4db0e19a4d2460941b7ca277b9bb68
73566e934d4055a6b8c2c6e9ef52a79271d71115c83a6a51a83bc43294bfb4ed
GET /20211019/BBE97C804EA8EAB6/BBE97C804EA8EAB6.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:37 GMT
Content-Type: image/jpeg
Content-Length: 8426
Last-Modified: Tue, 06 Sep 2022 14:28:43 GMT
Connection: keep-alive
ETag: "6317591b-20ea"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 8fbdd0315c54cf105fbab132238b401e
4d6893b02480ddc516068460346b6fe77e2b57dd
d7deb2ed127adacfb502923be433a30023a67537a7d23e02a459207b6299b186
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 05 Jan 2023 00:34:12 GMT
ETag: "4d6893b02480ddc516068460346b6fe77e2b57dd"
Last-Modified: Sun, 01 Jan 2023 00:34:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1977
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7828289e78141c0a-OSL
pt1.putaozy.info/20220310/4A22EE34E1886D4D/4A22EE34E1886D4D.jpg
5.180.83.11200 OK 7.0 kB URL HTTP/1.1 pt1.putaozy.info/20220310/4A22EE34E1886D4D/4A22EE34E1886D4D.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 1f98cee49b12cb763424795d419b1af9
570e538849d362c5145d1cbbea048a11d2bb35c9
b51ae9d5d9bf291e1939d95f0ae9ee2a6c4408ec85593e9ea8d2711f129a5614
GET /20220310/4A22EE34E1886D4D/4A22EE34E1886D4D.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 6983
Last-Modified: Wed, 07 Sep 2022 13:08:46 GMT
Connection: keep-alive
ETag: "631897de-1b47"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20220711-1/a21926e307461959bf71c86985b674a4.jpg
45.89.208.114200 OK 9.8 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20220711-1/a21926e307461959bf71c86985b674a4.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 90x113, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 40704959c663af2dce3d58ebb0268821
0bb6fd934c858a924a355a03ceb2492e0f3ab6ff
cb671d4ebf361ca40ad8ccf044267d078807fe589e693a82207f0cade9495c62
GET /upload/vod/20220711-1/a21926e307461959bf71c86985b674a4.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 9843
Last-Modified: Thu, 11 Aug 2022 04:55:15 GMT
Connection: keep-alive
ETag: "62f48bb3-2673"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20211008-1/6fb8bbf4b48bb38ad88caaaf59721694.jpg
45.89.208.114200 OK 10 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20211008-1/6fb8bbf4b48bb38ad88caaaf59721694.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 83fe32181d171f0a31fce6cdbca771c3
dac0e1ffcae68fca4f58972a276b42fc00b2afd9
81faf1af39229ee0afa77156084e4ee68bf4a6615218338811c1cbad52f916ff
GET /upload/vod/20211008-1/6fb8bbf4b48bb38ad88caaaf59721694.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 10264
Last-Modified: Thu, 11 Aug 2022 04:56:54 GMT
Connection: keep-alive
ETag: "62f48c16-2818"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210605-1/565e7df09de6eaf61e52b6d911be4f1c.jpg
45.89.208.114200 OK 7.8 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210605-1/565e7df09de6eaf61e52b6d911be4f1c.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 917be97c51e6f9f9c80753b2eadb97ec
b788fac61766ac52492534d31ddd5a11fa33f5c9
80563be6a7af328b1af306c58b43431960c1af1262207c3fe6cc8caaf4dcf18e
GET /upload/vod/20210605-1/565e7df09de6eaf61e52b6d911be4f1c.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 7827
Last-Modified: Thu, 11 Aug 2022 04:56:57 GMT
Connection: keep-alive
ETag: "62f48c19-1e93"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F625ac435-5ac8-46ca-9178-7aa9cb621f60.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F625ac435-5ac8-46ca-9178-7aa9cb621f60.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c820340d5ed98c9573754e3a749bf40c
09d31b45d4cc16c4d321e616e5445d9ba921a1ba
2a69c58358ae763ddef6603f783d7d25c465ff4d3777e6bd540c1b673381813a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F625ac435-5ac8-46ca-9178-7aa9cb621f60.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8307
x-amzn-requestid: 978a4b33-aded-49d7-a4a8-2ff5ee894b02
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0Oh0EhpIAMFyYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab2ad8-485bd7767c2ad3756ae98e7d;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 17:26:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bcdvyTj9Ys4hBF3rNrUfgzes7CLPom3b4l5S2NLa_8VM__qQdg9Vkw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 21:57:00 GMT
age: 19821
etag: "09d31b45d4cc16c4d321e616e5445d9ba921a1ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6443a10-1e35-4576-9471-56fc40767f0c.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6443a10-1e35-4576-9471-56fc40767f0c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23035a1b5389046dbc9821cd92244215
2deec757f1833f6ae0956a5e0876bc31029e8722
564db87897cfa6df3920203687b33c0315a58e804b22fed2e1dbaddb3c3832b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6443a10-1e35-4576-9471-56fc40767f0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13981
x-amzn-requestid: d73b4be8-3a1b-4ed8-9487-43d540ff93e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d4u5fEhiIAMFkgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63acf83c-38067c0820fd6f7e4771345b;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 02:15:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ie_MDBnENQW3b3yeuQbJc8MDqHt5mYLo2Hv_h4bAYtsrlQ1CJOBzAA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 21:57:04 GMT
age: 19817
etag: "2deec757f1833f6ae0956a5e0876bc31029e8722"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ljcdn.comtucdncom.com/upload/vod/20200819-1/035dc24d3152ed03f869c69d5003acdf.jpg
45.89.208.114200 OK 15 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20200819-1/035dc24d3152ed03f869c69d5003acdf.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 800x540, components 3\012- data
Hash 40f1886e6adf3afdc1229b4418da05c1
55b0346511c2f059b3308ca356e7621ac0de3bd3
b210b1852bf9ad7461b8bee5394cc35b56106a3ed0b4c004341d970adab69786
GET /upload/vod/20200819-1/035dc24d3152ed03f869c69d5003acdf.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 14845
Last-Modified: Thu, 11 Aug 2022 04:54:52 GMT
Connection: keep-alive
ETag: "62f48b9c-39fd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57f8a525-23f7-4bb9-a254-5e123247f1cc.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57f8a525-23f7-4bb9-a254-5e123247f1cc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d5c6e086c24a24d9ae8179b10d12be0
f7a1cd9d20352e369f02aa3e60e4dbc522b43058
7136c5734cc97eb90c37ef7b295809a3886cc06a0a9a9842d128922733437df2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57f8a525-23f7-4bb9-a254-5e123247f1cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8343
x-amzn-requestid: 29cf02cf-45c4-47ec-9ae4-50974ddec378
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d2GooHEyIAMFg4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63abeb03-126ff69b798dad2e229fed1c;Sampled=0
x-amzn-remapped-date: Wed, 28 Dec 2022 07:06:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3v14x84wqsu13XqJXNuP-G1Ba7zpfVAxAXlAidONryM6H_M35GnR5w==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 14:09:57 GMT
age: 47844
etag: "f7a1cd9d20352e369f02aa3e60e4dbc522b43058"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67b75ebf-7439-4cd2-bd89-000ec5f3aab8.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67b75ebf-7439-4cd2-bd89-000ec5f3aab8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c0dc083dd00810ff8d197c5ad7fb6f7
9e1ca8f2da2a53f7941b6869684b458a3c72a96f
6abddb307b4eab72eeafc413d0eb005773e5100120c4e074f7f3baadf12fa954
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67b75ebf-7439-4cd2-bd89-000ec5f3aab8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8537
x-amzn-requestid: 4e0f7a60-ab06-4494-984d-34fcacf63ba1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d_oI7GZfIAMFkGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63afba38-6a6424991c4612dd6d3888fa;Sampled=0
x-amzn-remapped-date: Sat, 31 Dec 2022 04:27:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HVSax8zutp54N838OPZjYA6MGIF5tCK3plkg9G7R4fg9jm71_Mdcvg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 23:39:54 GMT
age: 13647
etag: "9e1ca8f2da2a53f7941b6869684b458a3c72a96f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff91ff871-3f80-4a32-932c-b81a53066ccd.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff91ff871-3f80-4a32-932c-b81a53066ccd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4367f9a4e85a0b03fc104148023c73e6
81b2d64110d0f5853a7190be93252dac4a428b7a
ec0b378ad8bea69e474ba2fd53321467a04143b39da7f438924b0a7604fa6751
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff91ff871-3f80-4a32-932c-b81a53066ccd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8884
x-amzn-requestid: d0b8e033-5a7a-4c2c-8cee-7cd14d205e5e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d-XYNFV6IAMFoog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63af3901-1f152c56526a8cfd6aab77d1;Sampled=0
x-amzn-remapped-date: Fri, 30 Dec 2022 19:16:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -NKgGBkJUbNdMOK5TlrSwxH_I-xI6kENYZyEAPatO-GJB72OciVqbQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 04:02:51 GMT
age: 84270
etag: "81b2d64110d0f5853a7190be93252dac4a428b7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21ed4431-081e-4d12-961f-aa4e653e835e.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21ed4431-081e-4d12-961f-aa4e653e835e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 542c50a9c4ddc940c0b46f84973f26a6
adec3ce0b331c1ae542b07e3105ccbb7e517699a
2e6efc9930b8b281f4b4282a3f1f9815708b245760319bd711844c66f1b1cfb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21ed4431-081e-4d12-961f-aa4e653e835e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4574
x-amzn-requestid: 5656411c-79b6-424e-ba7c-9a546cb6f99b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d42MyGYVIAMFXig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ad03eb-62d0a04f49947a6e42e6083d;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 03:05:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wSuSl_AwzE-gpPpgnold7LpLSffwsdUk69I4YFf9iok7sNxYV6QuXg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 04:13:30 GMT
age: 83631
etag: "adec3ce0b331c1ae542b07e3105ccbb7e517699a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 7b77a4d9e943b734cfc9192fa800f316
c431a6d6eae53095cbbe6cbf5f7a5accb0467df5
236a408953528b912339c010aa51c285c9c50f9eec825a2c1efe2ed55d8edb07
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=146389
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 03:27:21 GMT
Etag: "63b0966e-116"
Expires: Mon, 02 Jan 2023 20:07:10 GMT
Last-Modified: Sat, 31 Dec 2022 20:07:10 GMT
Server: nginx
Content-Length: 278
pic1.semaobf1.com/20220626/009C76CAF6D25A99/009C76CAF6D25A99.jpg
5.180.83.41200 OK 9.1 kB URL HTTP/1.1 pic1.semaobf1.com/20220626/009C76CAF6D25A99/009C76CAF6D25A99.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c24e9bcd968008fb26645430c5db71e1
f6537353c07664df15a7c409040c02acbab9571f
49d4df76e2985e900aed0a9d510ef7ac797e88f1f8924bef1eedbd85df4cc6be
GET /20220626/009C76CAF6D25A99/009C76CAF6D25A99.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:37 GMT
Content-Type: image/jpeg
Content-Length: 9074
Last-Modified: Tue, 06 Sep 2022 14:42:44 GMT
Connection: keep-alive
ETag: "63175c64-2372"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
47.75.19.55200 OK 409 kB URL HTTP/1.1 vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
IP 47.75.19.55:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 409 kB (408644 bytes)
Hash bcfbb4b0078b03be1636d20ac5102ff1
e18886f1cbf23adf9188bc82aa0961afe6e91f11
d3b834351a460b41f249d0b69b008860b7ecbe6f2c916bf30778826239e5f7b5
GET /sstu/st.gif HTTP/1.1
Host: vns86.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 01 Jan 2023 03:27:19 GMT
Content-Type: image/gif
Content-Length: 408644
Connection: keep-alive
x-oss-request-id: 63B0FD9723C0543933F97030
Accept-Ranges: bytes
ETag: "BCFBB4B0078B03BE1636D20AC5102FF1"
Last-Modified: Fri, 30 Dec 2022 05:27:28 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9529281951725548429
x-oss-storage-class: Standard
x-oss-version-id: CAEQRhiBgIDC4P.FqxgiIDdlNzBlMDIzMGE1ZDQwZmY5YTBiNTkxM2I2MDQwOWZk
Content-MD5: vPu0sAeLA74WNtIKxRAv8Q==
x-oss-server-time: 2
pic1.semaobf1.com/20220212/44C6D2B1D327C9A0/44C6D2B1D327C9A0.jpg
5.180.83.41200 OK 6.5 kB URL HTTP/1.1 pic1.semaobf1.com/20220212/44C6D2B1D327C9A0/44C6D2B1D327C9A0.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 317d312b026cb81b26cdc0db793c8b3d
93ae49052445bb4c2f3ed0180f2adf0a0aff621a
bfffc607ef12bf36fdf3e73e65a9565aff2a5c3d584e501cb67aedb812a62b8d
GET /20220212/44C6D2B1D327C9A0/44C6D2B1D327C9A0.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:37 GMT
Content-Type: image/jpeg
Content-Length: 6460
Last-Modified: Tue, 06 Sep 2022 14:32:44 GMT
Connection: keep-alive
ETag: "63175a0c-193c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash fcebf4fee9d1129244ee613192937ac2
7275fb49c4d2ac1ef3db35ff02a6a2ef3271beb5
43479a7404b62320354ce667b3329b07729a7e0a316835cd1b7ef7b5b44f4ec2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 31 Dec 2022 03:25:01 GMT
Expires: Sat, 07 Jan 2023 03:25:00 GMT
Etag: "7275fb49c4d2ac1ef3db35ff02a6a2ef3271beb5"
Cache-Control: max-age=517658,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7828289dfd50b4f7-OSL
sycdn.comtucdncom.com/upload/vod/20210318-1/0cea11ac985c16c87f442d04b2d80c02.jpg
172.247.77.90200 OK 37 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210318-1/0cea11ac985c16c87f442d04b2d80c02.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 1280x720, components 3\012- data
Hash 0ac4b5a35e5bab2a0de310924026656a
6c648238295603601d85a38145616be94486de11
e11aac08a6ddafbeb7ad207b1fa5353539d06732b1887e0d1245155a45ee672f
GET /upload/vod/20210318-1/0cea11ac985c16c87f442d04b2d80c02.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:42 GMT
Content-Type: image/jpeg
Content-Length: 36685
Last-Modified: Wed, 10 Aug 2022 12:14:37 GMT
Connection: keep-alive
ETag: "62f3a12d-8f4d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
de88deggtp89.com/235tp/%E5%A4%9C%E5%A4%9C%E5%97%A8%E8%A7%86%E9%A2%91.gif
23.224.145.233200 OK 76 kB URL HTTP/2 de88deggtp89.com/235tp/%E5%A4%9C%E5%A4%9C%E5%97%A8%E8%A7%86%E9%A2%91.gif
IP 23.224.145.233:0
File type GIF image data, version 89a, 175 x 250\012- data
Hash 83e5595eeda0e76702d51631a449e6cb
6df9e78003bf5c8e2610f9b988999817f26b0706
74b1a1a1175139ae022c7c086b2e8702f42364ccac23395ecc58e52bcd3a3d3d
GET /235tp/%E5%A4%9C%E5%A4%9C%E5%97%A8%E8%A7%86%E9%A2%91.gif HTTP/1.1
Host: de88deggtp89.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 03:27:21 GMT
content-type: image/gif
content-length: 75949
last-modified: Thu, 17 Nov 2022 02:41:36 GMT
etag: "63759f60-128ad"
expires: Wed, 04 Jan 2023 22:41:57 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pt1.putaozy.info/20220310/7A4A0527276781C9/7A4A0527276781C9.jpg
5.180.83.11200 OK 15 kB URL HTTP/1.1 pt1.putaozy.info/20220310/7A4A0527276781C9/7A4A0527276781C9.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 728fb9f81ba1bac619e78f4bb5f527b1
b271323ebc812463170dfc749af0d96d1d8975a0
755fff21296f5e01f1cfdb156d686be4ae4d822581df1ffa2d6a8a2b209221d5
GET /20220310/7A4A0527276781C9/7A4A0527276781C9.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 14656
Last-Modified: Wed, 07 Sep 2022 13:06:32 GMT
Connection: keep-alive
ETag: "63189758-3940"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
xinchacha2dv.ocsp-certum.com/
23.36.79.17200 OK 1.5 kB URL HTTP/1.1 xinchacha2dv.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash fd5bea1648ac86b9aff49ac6e1d037f2
c71ec6d4797606a5696a0ab31ead249eb4095265
e5971d92aba4707865ee0de2cefd27fc3c04932515f6d8ef52f8239c4ba8d0fe
POST / HTTP/1.1
Host: xinchacha2dv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1538
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=396
Date: Sun, 01 Jan 2023 03:27:21 GMT
Connection: keep-alive
X-N: S
sycdn.comtucdncom.com/upload/vod/20201126-1/22fdc9c50a5fc0440781880b892df613.jpg
172.247.77.90200 OK 70 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201126-1/22fdc9c50a5fc0440781880b892df613.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x539, components 3\012- data
Hash f49e84bf194691a35dbf326167f6ff70
37dd5562b25a90d4b500e6c0516e4e0d6768ab76
1c31eefaad145f4182ed974a135685093861977d4944bb0fdc972086988937cb
GET /upload/vod/20201126-1/22fdc9c50a5fc0440781880b892df613.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:42 GMT
Content-Type: image/jpeg
Content-Length: 69473
Last-Modified: Wed, 10 Aug 2022 12:11:38 GMT
Connection: keep-alive
ETag: "62f3a07a-10f61"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-04-16/15554296576.jpg
45.89.209.74200 OK 7.8 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-04-16/15554296576.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 411x904, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 320x240, components 3\012- data
Hash baa50daa441c11839d123694387fa561
d8254cb05d29dacb5ea8d0575905ef84f66712c1
de25a12f74aa565848b1193c421b997fa29f686af3eb0caf675c1c70df9292f9
GET /upload/vod/2019-04-16/15554296576.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 7772
Last-Modified: Mon, 05 Dec 2022 06:24:19 GMT
Connection: keep-alive
ETag: "638d8e93-1e5c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210706-1/b5b676baad06f85a890a643388a42c78.jpg
172.247.77.90200 OK 77 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210706-1/b5b676baad06f85a890a643388a42c78.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.115.101", baseline, precision 8, 1280x756, components 3\012- data
Hash 076b37c9f85448cc76a1b54a8b3e0e37
7524cc7b89160b5755b6e5e302f931f81025b6e2
ef2403e43a3360f81c4eef38dc23d9dce10521b6484976a5c5c98f7b827355cd
GET /upload/vod/20210706-1/b5b676baad06f85a890a643388a42c78.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:42 GMT
Content-Type: image/jpeg
Content-Length: 76616
Last-Modified: Wed, 10 Aug 2022 12:09:58 GMT
Connection: keep-alive
ETag: "62f3a016-12b48"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220518/87632EE2946310E3/87632EE2946310E3.jpg
5.180.83.11200 OK 9.8 kB URL HTTP/1.1 pt1.putaozy.info/20220518/87632EE2946310E3/87632EE2946310E3.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ec2619967c70f1e462f107175209826a
0a39740b0e8afe236186f42fde04fd16d4adf3ce
4b87ce55d7655718443f28f67e55218fc0c1ebd31b06ae3b42c5f52aed76f745
GET /20220518/87632EE2946310E3/87632EE2946310E3.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 9845
Last-Modified: Wed, 07 Sep 2022 13:05:35 GMT
Connection: keep-alive
ETag: "6318971f-2675"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220624/179611432B2A5CE6/179611432B2A5CE6.jpg
5.180.83.41404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220624/179611432B2A5CE6/179611432B2A5CE6.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220624/179611432B2A5CE6/179611432B2A5CE6.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2022/07-20/07/sqdj5xeg1w40718sqdj5xeg1w4347161.jpg
172.247.77.90200 OK 10 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2022/07-20/07/sqdj5xeg1w40718sqdj5xeg1w4347161.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 45x34, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash dd6a12a0d6563f00438ffb53f471ea0f
a665cc40abd717f431b1f95c17b64bf193c5ee65
a730505bea85d35dab789df7fc0b9bcbf38dab0f28877f6830e1362a963e810f
GET /upload/vod/2022/07-20/07/sqdj5xeg1w40718sqdj5xeg1w4347161.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 10013
Last-Modified: Wed, 09 Nov 2022 11:41:09 GMT
Connection: keep-alive
ETag: "636b91d5-271d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220414/0CD4EC6DDFDDBDB5/0CD4EC6DDFDDBDB5.jpg
5.180.83.11200 OK 11 kB URL HTTP/1.1 pt1.putaozy.info/20220414/0CD4EC6DDFDDBDB5/0CD4EC6DDFDDBDB5.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3842d4c11a1d82788b8f1d46652e6423
f2065889b534b510ce64a9b02ad7ee6d6d3564b2
35800bdee02d41164ab63f6df2c5c47ecc9b85830eec1b3fa71e4ea7ff43f35f
GET /20220414/0CD4EC6DDFDDBDB5/0CD4EC6DDFDDBDB5.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 11216
Last-Modified: Wed, 07 Sep 2022 13:07:22 GMT
Connection: keep-alive
ETag: "6318978a-2bd0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220325/113EA3D3FDD64241/113EA3D3FDD64241.jpg
5.180.83.11200 OK 12 kB URL HTTP/1.1 pt1.putaozy.info/20220325/113EA3D3FDD64241/113EA3D3FDD64241.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f5832edd8305d1b106dd7bcadc85a3c6
dd2f5c331c9828e0518eeef475e9080706b61cb9
3b8fe20a370cff8b8784aa329224cb6c0aa4355f50224ad75d24c88d23f1c069
GET /20220325/113EA3D3FDD64241/113EA3D3FDD64241.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 11704
Last-Modified: Wed, 07 Sep 2022 13:05:15 GMT
Connection: keep-alive
ETag: "6318970b-2db8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220510/2033C5578E77BA75/2033C5578E77BA75.jpg
5.180.83.11200 OK 8.5 kB URL HTTP/1.1 pt1.putaozy.info/20220510/2033C5578E77BA75/2033C5578E77BA75.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6d4a9ecba8459156f0748657acd8a102
a9f337531d2ee00f18f9ef35bb25097b1f8a16ef
a9bf41c260d58ca927fdf3c6da6ab8842b42d93d751b679f93a5ba547582222b
GET /20220510/2033C5578E77BA75/2033C5578E77BA75.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 8471
Last-Modified: Wed, 07 Sep 2022 13:04:52 GMT
Connection: keep-alive
ETag: "631896f4-2117"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220714/058C3A0A6CF091BF/058C3A0A6CF091BF.jpg
5.180.83.41200 OK 8.3 kB URL HTTP/1.1 pic1.semaobf1.com/20220714/058C3A0A6CF091BF/058C3A0A6CF091BF.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 127x96, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2db7c86f62e65c490675c171158e7b04
d6bd60a6f5512b28740ad63e03a3faffedd0dd50
6657712959dcdfe04446baf12c2de819f0da105071f7cff425834a4ac345857e
GET /20220714/058C3A0A6CF091BF/058C3A0A6CF091BF.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:26:37 GMT
Content-Type: image/jpeg
Content-Length: 8344
Last-Modified: Tue, 06 Sep 2022 14:37:26 GMT
Connection: keep-alive
ETag: "63175b26-2098"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/03/11/wuma6608.jpg
45.89.209.74200 OK 89 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/03/11/wuma6608.jpg
IP 45.89.209.74:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 960x540, components 3\012- data
Hash 744ea9a76b1ce56f8f140447bc2deb8f
e7ef8bf9d50f74208ade8db49a493157eaed843a
522d38f270b93eb6b1f2ef079283653963914e0ef4b35d0583fa72214b42d2f0
GET /images/2022/03/11/wuma6608.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 88752
Connection: keep-alive
Last-Modified: Fri, 11 Mar 2022 09:47:31 GMT
ETag: "622b1ab3-15ab0"
Expires: Tue, 31 Jan 2023 03:27:21 GMT
Cache-Control: max-age=2592000
access-control-allow-credentials: : true
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20211224-1/b36ded2950fa6709084b8fca7777d828.jpg
172.247.77.90200 OK 18 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20211224-1/b36ded2950fa6709084b8fca7777d828.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 320x184, components 3\012- data
Hash cd14981dfa5fff5888fb982cb5def199
3ba2929f3ed2da097ba558275e94065f34a59d75
2991cd066038c7355497e0d1bbd6d54edb9394ffc9c3cee88b4dc35e6b799ef7
GET /upload/vod/20211224-1/b36ded2950fa6709084b8fca7777d828.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 17661
Last-Modified: Wed, 10 Aug 2022 12:11:48 GMT
Connection: keep-alive
ETag: "62f3a084-44fd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-08-09/156530665015.jpg
45.89.209.74200 OK 7.4 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-08-09/156530665015.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density -437x-4933, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 2483c86b4ca13bdf26974f4e0ec89f77
06bc6fdeac6fb8d5745d3af789c260c69435fc24
b15799726dc930825bcbec14da61529f879981bda7c63845fac4cb323a6b8f6c
GET /upload/vod/2019-08-09/156530665015.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 7375
Last-Modified: Sat, 03 Dec 2022 20:54:15 GMT
Connection: keep-alive
ETag: "638bb777-1ccf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2019/11-08/05/qzjmktnvqgn0553qzjmktnvqgn3115908.jpg
172.247.77.90200 OK 9.6 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2019/11-08/05/qzjmktnvqgn0553qzjmktnvqgn3115908.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash c27dcda204f37d6661445811f3c22dc9
279ce3c7e3949fb3b3085a4dd164a929cf51232d
efa20405ee88d0e33a87826b3c3b41069c98ca35c8167301d6b3493f6cfa3f83
GET /upload/vod/2019/11-08/05/qzjmktnvqgn0553qzjmktnvqgn3115908.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 9585
Last-Modified: Wed, 09 Nov 2022 11:56:18 GMT
Connection: keep-alive
ETag: "636b9562-2571"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-01-15/15475658856.jpg
45.89.209.74200 OK 6.4 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-01-15/15475658856.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 61x24, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 280x400, components 3\012- data
Hash d433a2946cb00b3279606123edda608d
734ef493cad35e802ca3a27b617f225c2ab7e4f1
fd1cfa848d74b9b9f347bb1b1af9f925d6c549155189f993195b2b17ec35cd2d
GET /upload/vod/2019-01-15/15475658856.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 6411
Last-Modified: Sun, 04 Dec 2022 13:01:16 GMT
Connection: keep-alive
ETag: "638c9a1c-190b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220416/F840BA430ED65C07/F840BA430ED65C07.jpg
5.180.83.11200 OK 12 kB URL HTTP/1.1 pt1.putaozy.info/20220416/F840BA430ED65C07/F840BA430ED65C07.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash aefac734f0a4303cb1e23fa0e1004c3a
c1cc794b07dbd35f34a850fd275d0e602ddff7f7
c159402c63f2bb86a065e9302f5cf4560e5702049a573d810ce686be1d055765
GET /20220416/F840BA430ED65C07/F840BA430ED65C07.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 12255
Last-Modified: Wed, 07 Sep 2022 13:13:02 GMT
Connection: keep-alive
ETag: "631898de-2fdf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 7b77a4d9e943b734cfc9192fa800f316
c431a6d6eae53095cbbe6cbf5f7a5accb0467df5
236a408953528b912339c010aa51c285c9c50f9eec825a2c1efe2ed55d8edb07
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=146389
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 03:27:21 GMT
Etag: "63b0966e-116"
Expires: Mon, 02 Jan 2023 20:07:10 GMT
Last-Modified: Sat, 31 Dec 2022 20:07:10 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
tpkj3333.com/img/k80m/obGVw2k2O.gif
66.203.156.151200 OK 65 kB URL HTTP/1.1 tpkj3333.com/img/k80m/obGVw2k2O.gif
IP 66.203.156.151:0
ASN #59371 Dimension Network & Communication Limited
File type GIF image data, version 89a, 960 x 60\012- data
Hash e03b348553ccccf6c7145c1278045339
8d40704565b38767c7b752ca1f34e78c7695df47
dd462e1eaa30ce285b258edb8c1790de17f3838ce2e55749f554bbb7ee4e7ef9
GET /img/k80m/obGVw2k2O.gif HTTP/1.1
Host: tpkj3333.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 01 Jan 2023 03:27:20 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"202250-1671636497000"
Last-Modified: Wed, 21 Dec 2022 15:28:17 GMT
Expires: Mon, 16 Jan 2023 03:27:20 GMT
Cache-Control: max-age=1296000
Content-Encoding: gzip
Nginx-Cache: HIT, HIT
ljcdn.comtucdncom.com/upload/vod/20211026-1/bb883aeecc4cf14316d693055a53533e.jpg
45.89.208.114200 OK 10 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20211026-1/bb883aeecc4cf14316d693055a53533e.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 45x34, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d7f324ab153266c4bc155cf014d36c17
89f235e12e168d97c73f77b189b19d93c435eb2a
c9d79e1e4a828da0bc27cde69f198655302c37b19c8e57a50d51105397a50a35
GET /upload/vod/20211026-1/bb883aeecc4cf14316d693055a53533e.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 10388
Last-Modified: Thu, 11 Aug 2022 04:56:04 GMT
Connection: keep-alive
ETag: "62f48be4-2894"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash c49a2269cdcfaded2def8afad947fa3b
077d24dcf187f4306d2cc4927a63fd45611d66bf
67eb96cfb14fc72e09e7afc8a219e9ce233088c8c2863cb68931c0f8d3f7a7a4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2799
Cache-Control: max-age=155661
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 03:27:21 GMT
Etag: "63b0afb8-2d7"
Expires: Mon, 02 Jan 2023 22:41:42 GMT
Last-Modified: Sat, 31 Dec 2022 21:55:04 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 727
kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
104.21.234.153200 OK 310 kB URL HTTP/2 kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
IP 104.21.234.153:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 310 kB (310102 bytes)
Hash aaaee07863e1fab7724d3b6698c0b4b3
1f75ba89585a8844a2c1e41625f88bae649be17d
41ac392c3cca5e4434c0f80595838a48338c94f8a9c691d4141c7ecb68acb24e
GET /03c3cb047014f05117117e4a924df90d.gif HTTP/1.1
Host: kvhuuu.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.hbyjpipe.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 03:27:21 GMT
content-type: image/gif
content-length: 310102
last-modified: Wed, 13 Jul 2022 15:28:42 GMT
etag: "62cee4aa-4bb56"
expires: Wed, 04 Jan 2023 05:34:03 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2325198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TGj6wCNTO2iSzHFleIcGPR5jjEzMoN3P1KnBlSbY9MWyHmSINB90DDf5b3eGEg0sovIjSsF30odzzHMIfsr7dL1WgYKDYqW0fZxXO2SgYnECqbB2LnF1881YcePg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7828289f5fec23d4-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash c49a2269cdcfaded2def8afad947fa3b
077d24dcf187f4306d2cc4927a63fd45611d66bf
67eb96cfb14fc72e09e7afc8a219e9ce233088c8c2863cb68931c0f8d3f7a7a4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1846
Cache-Control: max-age=154709
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 03:27:21 GMT
Etag: "63b0afb8-2d7"
Expires: Mon, 02 Jan 2023 22:25:50 GMT
Last-Modified: Sat, 31 Dec 2022 21:55:04 GMT
Server: ECS (amb/6BA1)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash c49a2269cdcfaded2def8afad947fa3b
077d24dcf187f4306d2cc4927a63fd45611d66bf
67eb96cfb14fc72e09e7afc8a219e9ce233088c8c2863cb68931c0f8d3f7a7a4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1845
Cache-Control: max-age=154708
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 03:27:21 GMT
Etag: "63b0afb8-2d7"
Expires: Mon, 02 Jan 2023 22:25:49 GMT
Last-Modified: Sat, 31 Dec 2022 21:55:04 GMT
Server: ECS (amb/6B82)
X-Cache: HIT
Content-Length: 727
pt1.putaozy.info/20220314/727B3C0DA73659B9/727B3C0DA73659B9.jpg
5.180.83.11200 OK 8.5 kB URL HTTP/1.1 pt1.putaozy.info/20220314/727B3C0DA73659B9/727B3C0DA73659B9.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8631d09f0986e32011ebc442583164c7
acab0b93ed265694dabe6dfd884d4a91d14dc429
1118637a1e2b76244aa1f2e1711b446b2648060ce7f3f4227af0b6a43d8a9e69
GET /20220314/727B3C0DA73659B9/727B3C0DA73659B9.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 8462
Last-Modified: Wed, 07 Sep 2022 13:03:27 GMT
Connection: keep-alive
ETag: "6318969f-210e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
47.246.44.226200 OK 343 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
IP 47.246.44.226:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 343 kB (343002 bytes)
Hash ce862703bd3a6fd9e7acc3c32453fe84
c27754e24547e935314ba986477cd326628af7e4
eb9f779660b2713488854f27a211239724bb29b842e939424ec882b51520350b
GET /obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 343002
date: Sat, 17 Dec 2022 10:28:23 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sat, 17 Dec 2022 10:00:43 GMT
nw-session-id: 2022121718004301013113605215982497p5k6801dy
nw-session-trace: 2022-12-17T18:00:43.827293149+08:00 42
x-bdcdn-cache-status: TCP_HIT
x-length: 343002
x-powered-by: ImageX
x-response-date: Sat, 17 Dec 2022 18:00:43 GMT
x-tt-logid: 2022121718004301013113605215982497
via: n128-134-083, cache14.l2de2[0,0,206-0,H], cache5.l2de2[2,0], cache5.l2de2[3,0], cache3.se1[0,0,200-0,H], cache5.se1[1,0]
x-request-ip: fdbd:dc03:15:482::74
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 010ec35d8338a3c1341674e3d2464ee09a429c9c5af2fc930930b9ec60625c05f3b71a3d79f906afd2479681df4ec15d8b01af344e24d3e5df5584a5196f7e0400dfccab4c7d44dab881b7b096fd4eb23fa223bfc14da29e326a459a9a6aa15d8b
x-response-lb: image
ali-swift-global-savetime: 1671272903
age: 1270738
x-cache: HIT TCP_MEM_HIT dirn:2:427158808
x-swift-savetime: Sat, 17 Dec 2022 11:36:55 GMT
x-swift-cachetime: 31531888
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916725436415884793e
X-Firefox-Spdy: h2
fmlb.netlbtu.com/20210912/RHGxZ7WH/1.jpg
172.247.77.90200 OK 19 kB URL HTTP/1.1 fmlb.netlbtu.com/20210912/RHGxZ7WH/1.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash fe558c6bef0bb436d96d23d89fc99240
8089949b7bd1fb623ca0cf37c09c710fd35d0963
d661840f2db85c8b6f8b5630a94cb210b630f50a96da20b1c08754071a09e05d
GET /20210912/RHGxZ7WH/1.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.hbyjpipe.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 18597
Last-Modified: Wed, 09 Nov 2022 11:42:01 GMT
Connection: keep-alive
ETag: "636b9209-48a5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20200703-1/528c32921813b71f97c404eaa8e422db.jpg
172.247.77.90200 OK 62 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200703-1/528c32921813b71f97c404eaa8e422db.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 310x208, components 3\012- data
Hash fd3106a4a2ddad6b3bc4bcbf159dcd26
72c9423dde83c27f01affb0336e9596cbddd1ba4
3ec286ad00c1fe2b1092ab7172cca54c662f944725009dd0e282b8bebde138c2
GET /upload/vod/20200703-1/528c32921813b71f97c404eaa8e422db.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:42 GMT
Content-Type: image/jpeg
Content-Length: 62538
Last-Modified: Wed, 10 Aug 2022 12:11:06 GMT
Connection: keep-alive
ETag: "62f3a05a-f44a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
p3.douyinpic.com/obj/tos-cn-i-dy/b1f4270216704c0f8cc43a10401d2f97
47.246.44.226200 OK 385 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/b1f4270216704c0f8cc43a10401d2f97
IP 47.246.44.226:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 385 kB (384932 bytes)
Hash 6b1533d50f7375dff2f5b3969e7ec1da
6dfd13e56902faedb34a9d2e6d27e51605ddb0f1
2f235ff0c8fd65b40619ef5448206c505716aa41dcee03850c00b1352c986f7c
GET /obj/tos-cn-i-dy/b1f4270216704c0f8cc43a10401d2f97 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 384932
date: Thu, 17 Nov 2022 10:00:16 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 17 Nov 2022 09:53:03 GMT
nw-session-id: 202211171753030102101860364CA5BD5Ex7wrg01dy
nw-session-trace: 2022-11-17T17:53:03.831686834+08:00 69
x-bdcdn-cache-status: TCP_HIT
x-length: 384932
x-powered-by: ImageX
x-response-date: Thu, 17 Nov 2022 17:53:03 GMT
x-tt-logid: 202211171753030102101860364CA5BD5E
via: n204-098-210, cache10.l2de2[0,0,206-0,H], cache5.l2de2[1,0], cache5.l2de2[2,0], cache5.se1[0,0,200-0,H], cache5.se1[1,0]
x-request-ip: fdbd:dc01:21:307::156
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 01f182c839dd3e503e2b5fce9c0d2d64acbfa1b6dda83814008bcbd6e2cf59654f59f479c39409b5b8c85de9eece6667f5a627f40eb1831b648df1e05282a67816bc37d9508c3aeb8db10b8a5b6d460aa6b502677ae9bbb5468667f0b67fbfc643
x-response-lb: image
ali-swift-global-savetime: 1668679217
age: 3864424
x-cache: HIT TCP_MEM_HIT dirn:4:215142304
x-swift-savetime: Thu, 17 Nov 2022 10:22:55 GMT
x-swift-cachetime: 31534642
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916725436416094802e
X-Firefox-Spdy: h2
de88deggtp89.com/100tp/120-170.gif
23.224.145.233200 OK 92 kB URL HTTP/2 de88deggtp89.com/100tp/120-170.gif
IP 23.224.145.233:0
File type GIF image data, version 89a, 120 x 170\012- data
Hash 47e5bb3ce57ef32da992fd4ee5b58c6a
88b2d56e6572ef2544f7719c63181c2af578a79b
9b431eb99c84942feafc123174b5d42e8dc27bb594b2260b4165e5ec186d49ee
GET /100tp/120-170.gif HTTP/1.1
Host: de88deggtp89.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 03:27:21 GMT
content-type: image/gif
content-length: 91977
last-modified: Thu, 29 Dec 2022 10:42:19 GMT
etag: "63ad6f0b-16749"
expires: Sat, 28 Jan 2023 10:54:03 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/papa-PIC/avid59b91092d7d54.jpg
172.247.77.90200 OK 16 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid59b91092d7d54.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 414x415, segment length 16, comment: "Lavc57.63.103", baseline, precision 8, 332x576, components 3\012- data
Hash b274a5c7e0fcf321143eebd67a78edd8
751bc56261ad1b296fd6a2e02376fdc47961ea7e
1e1429e51efeae346d92aec8df2f70f31b23448e46f8451fcacafa159fa3dc40
GET /papa-PIC/avid59b91092d7d54.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 16103
Last-Modified: Wed, 10 Aug 2022 12:13:19 GMT
Connection: keep-alive
ETag: "62f3a0df-3ee7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220307/176CD9F79593A47E/176CD9F79593A47E.jpg
5.180.83.11200 OK 9.4 kB URL HTTP/1.1 pt1.putaozy.info/20220307/176CD9F79593A47E/176CD9F79593A47E.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 16c66506a2ccd9665c00682d695422a5
076d2de0ecfcec46628512e46d820ae6ca953834
15ed92b8d41d6949db5ac9951b3d109c3cb435340f8de10df04eef4a5057819f
GET /20220307/176CD9F79593A47E/176CD9F79593A47E.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 9396
Last-Modified: Wed, 07 Sep 2022 13:07:36 GMT
Connection: keep-alive
ETag: "63189798-24b4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220314/E13523C2CA04FF23/E13523C2CA04FF23.jpg
5.180.83.11200 OK 11 kB URL HTTP/1.1 pt1.putaozy.info/20220314/E13523C2CA04FF23/E13523C2CA04FF23.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6c8365360c65141e00d8c67292a2f80f
b127141eac33307149b7363a6296a03a263d8273
3ddeb8d61fa1004e9d8c2ca93c7060b12b3a2383cd14ffa2bfe6e992e9f3e0b2
GET /20220314/E13523C2CA04FF23/E13523C2CA04FF23.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 11251
Last-Modified: Wed, 07 Sep 2022 13:03:19 GMT
Connection: keep-alive
ETag: "63189697-2bf3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220504/98B02867B3AF650C/98B02867B3AF650C.jpg
5.180.83.11200 OK 7.5 kB URL HTTP/1.1 pt1.putaozy.info/20220504/98B02867B3AF650C/98B02867B3AF650C.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 22d20efc91b4148ca6c79b3d6ff946cb
f11b6500fc3aafc642569a527301e6f489fee02b
aa0fbb05354082a868990a5268d6b5ce113634e09ded4077d1850256675eeb8a
GET /20220504/98B02867B3AF650C/98B02867B3AF650C.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 7542
Last-Modified: Wed, 07 Sep 2022 13:04:06 GMT
Connection: keep-alive
ETag: "631896c6-1d76"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
p3.douyinpic.com/obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d
47.246.44.226200 OK 498 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d
IP 47.246.44.226:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 70\012- data
Size 498 kB (497844 bytes)
Hash 9d43f768f1897d7d3fd5ba803e1a770a
ff8fb3f427df7b6cfef65fcae162e0abab9474a4
00fe4f1ccfc623639abadf4e745aca22b946365e932a7a794d6c108fee0d85af
GET /obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 497844
date: Fri, 21 Oct 2022 06:45:44 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Fri, 21 Oct 2022 06:39:38 GMT
nw-session-id: 202210211439380101311360293842A52Fgx4cc03dy
nw-session-trace: 2022-10-21T14:39:38.59145035+08:00 28
x-bdcdn-cache-status: TCP_HIT
x-length: 497844
x-powered-by: ImageX
x-response-date: Fri, 21 Oct 2022 14:39:38 GMT
x-tt-logid: 202210211439380101311360293842A52F
via: n132-067-168, cache19.l2de2[0,0,206-0,H], cache11.l2de2[2,0], cache11.l2de2[2,0], cache1.se1[0,0,200-0,H], cache5.se1[1,0]
x-request-ip: fdbd:dc03:14:130::18
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 010bb5ec5b1b5f1e47ca91c2b81197a74f8048ba6c9105f29b60a5a5654edfd2e74a44ae94b6f429eb61763780aa091400b761df5690404fbe40d4d865710f70cd7a52fd33d8906f8ae44a9cba323b06e589132522b5dde5de19e056fb46c2d0ef
x-response-lb: image
ali-swift-global-savetime: 1666334744
age: 6208897
x-cache: HIT TCP_MEM_HIT dirn:11:324456903
x-swift-savetime: Fri, 21 Oct 2022 07:27:56 GMT
x-swift-cachetime: 31533468
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916725436416204804e
X-Firefox-Spdy: h2
ddcdn.comtucdncom.com/upload/vod/2018-12-13/15446978719.jpg
45.89.209.74200 OK 6.7 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-13/15446978719.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 01a5cdcc16d7cab88ba143a4c39d7802
91eab61031f33a7aee4bb7766506897c075f75a1
9afc9845327674677712478bcb6afb337d9376b2ea70b3e0e322cdd1ecdf7aea
GET /upload/vod/2018-12-13/15446978719.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:22 GMT
Content-Type: image/jpeg
Content-Length: 6701
Last-Modified: Sun, 04 Dec 2022 14:16:17 GMT
Connection: keep-alive
ETag: "638cabb1-1a2d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210607-1/68c458ce739f75ebc5ffffa85f48a05d.jpg
172.247.77.90200 OK 20 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210607-1/68c458ce739f75ebc5ffffa85f48a05d.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.111.101", baseline, precision 8, 636x364, components 3\012- data
Hash 152f61de757ae972054bd40b130aa471
a5ca00cf46ac5d47f7ffc41b57c86a1dd38909be
59d553254f7a8a948dec666024895e49ccab4678bbd21d7faa921de250c024c0
GET /upload/vod/20210607-1/68c458ce739f75ebc5ffffa85f48a05d.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 19896
Last-Modified: Wed, 10 Aug 2022 12:06:35 GMT
Connection: keep-alive
ETag: "62f39f4b-4db8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220317/A27696AB847CF66D/A27696AB847CF66D.jpg
5.180.83.11200 OK 6.7 kB URL HTTP/1.1 pt1.putaozy.info/20220317/A27696AB847CF66D/A27696AB847CF66D.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c35dff2fb65e1f01d37b3c0a7075f1b0
b258344e06b4fd30612102a4450a23cee8976f7c
a0c4ea4b86b4cae4ff9267fb6435243d14c0d0ab7ae1a26176178124b8e27c4f
GET /20220317/A27696AB847CF66D/A27696AB847CF66D.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 6664
Last-Modified: Wed, 07 Sep 2022 13:07:00 GMT
Connection: keep-alive
ETag: "63189774-1a08"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220311/675E7258AB93B74B/675E7258AB93B74B.jpg
5.180.83.11200 OK 12 kB URL HTTP/1.1 pt1.putaozy.info/20220311/675E7258AB93B74B/675E7258AB93B74B.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a046aa9b74a648d1798a42b2fab711be
715a0983743bd577db1fae7c5ed4fa700ea1e0e0
c9876fae49913066c18fbdb73c729e0135d315e6d2b623340d562205e2d6b014
GET /20220311/675E7258AB93B74B/675E7258AB93B74B.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 11908
Last-Modified: Wed, 07 Sep 2022 13:06:50 GMT
Connection: keep-alive
ETag: "6318976a-2e84"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2021-03-06/161496105018.jpg
45.89.209.74200 OK 6.5 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2021-03-06/161496105018.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 3c7e85b80e132b2097c6be25ec09d777
119ef039a6e45e6ec897ef7d6e84610a4794cfff
fe48162eec9e66668b32526c332541884d856ba13d40f9f26ecd1cc376b07a75
GET /upload/vod/2021-03-06/161496105018.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:22 GMT
Content-Type: image/jpeg
Content-Length: 6524
Last-Modified: Sat, 03 Dec 2022 18:34:14 GMT
Connection: keep-alive
ETag: "638b96a6-197c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20220530-1/40a967ad750ae851ba6a50ea9ff38314.jpg
45.89.208.114200 OK 43 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20220530-1/40a967ad750ae851ba6a50ea9ff38314.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Hash 6effe6ed0055d5bb20b2bee7c46f7c2a
7516ad4a118b034d3386f160f4e1980eb54702f7
023dbd1a80775865ecb2fd3568c00f3ca40115011979b1b3e52f06e67908bd25
GET /upload/vod/20220530-1/40a967ad750ae851ba6a50ea9ff38314.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 42977
Last-Modified: Thu, 11 Aug 2022 05:00:54 GMT
Connection: keep-alive
ETag: "62f48d06-a7e1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20200817-1/6698c319401b2e09230a45f102bd3ad9.jpg
172.247.77.90200 OK 88 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200817-1/6698c319401b2e09230a45f102bd3ad9.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 761x512, components 3\012- data
Hash 3e27304d0071d24dbd73b4bdb3bccd54
26d7be6a5ae149ef6d28e939f26855722da38138
4bdf9945467ac38a4b6cd179aecad03fca0925bb7c4b4e964240654097ee90c9
GET /upload/vod/20200817-1/6698c319401b2e09230a45f102bd3ad9.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 87714
Last-Modified: Wed, 10 Aug 2022 11:46:03 GMT
Connection: keep-alive
ETag: "62f39a7b-156a2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220309/E8DB09649237FB24/E8DB09649237FB24.jpg
5.180.83.11200 OK 13 kB URL HTTP/1.1 pt1.putaozy.info/20220309/E8DB09649237FB24/E8DB09649237FB24.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4c6907606813d5fea99752bef6ee5c03
0fec3b701cbc74daecb804e35c5cc2483ac3fd2b
4585add0f479fe78fe80c00f0d8e2d49799bda681dc1e5d501cb30084e06559f
GET /20220309/E8DB09649237FB24/E8DB09649237FB24.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 13289
Last-Modified: Wed, 07 Sep 2022 13:04:14 GMT
Connection: keep-alive
ETag: "631896ce-33e9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2021-06-22/16243370321.jpg
45.89.209.74200 OK 59 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2021-06-22/16243370321.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 750x422, components 3\012- data
Hash 3fda16e1757e7f43917deb0a8c8061d6
86aa0d29c15b58f270400bd9b1294a41ecfebe17
78c0953bd932bfacd94152ea0153a8e485b01acf5203f995244514383b41f1ab
GET /upload/vod/2021-06-22/16243370321.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 59417
Last-Modified: Fri, 02 Dec 2022 01:30:40 GMT
Connection: keep-alive
ETag: "63895540-e819"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid5bc6f3757ea0.jpg
172.247.77.90200 OK 51 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5bc6f3757ea0.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 8eb8b6bdcf657fd760680a73e0015532
42d0c590c8166fb7fe3e576cfdf409afd47a69b8
da7c571bf19d050265052fbfff4f686bc0dabf85a9e15a4419ca217f2347ef0d
GET /papa-PIC/avid5bc6f3757ea0.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 50859
Last-Modified: Wed, 10 Aug 2022 12:12:46 GMT
Connection: keep-alive
ETag: "62f3a0be-c6ab"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/04/30/wuma7876.jpg
45.89.209.74200 OK 96 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/04/30/wuma7876.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Hash 8bbb0299b6d5a00f8a09345ad4fa4592
36842378ea8f11181763bece5a31ca12ac5ec528
7d23dca9841b519fdfb2231d73e384cdf309e86c62a7eb34eadb53a950fc64b8
GET /images/2022/04/30/wuma7876.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:21 GMT
Content-Type: image/jpeg
Content-Length: 96391
Connection: keep-alive
Last-Modified: Sat, 30 Apr 2022 15:25:15 GMT
ETag: "626d54db-17887"
Expires: Tue, 31 Jan 2023 03:27:21 GMT
Cache-Control: max-age=2592000
access-control-allow-credentials: : true
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
sycdn.comtucdncom.com/pic/20200215bentu-gc/EnEyGTPH.jpg
172.247.77.90200 OK 10 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/20200215bentu-gc/EnEyGTPH.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1a7894d29ce3dafba91b49b38bc9a0dc
4c21cdd9055fc5fe7e4fcfddd255f93385510619
47b117eac58df3564c9db6dc6b31ac27b158b2e4d7feae4eb3711dca929c9a15
GET /pic/20200215bentu-gc/EnEyGTPH.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 10200
Last-Modified: Wed, 10 Aug 2022 12:12:13 GMT
Connection: keep-alive
ETag: "62f3a09d-27d8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20220310-1/7c883f5789bfe729c8c97cf3b8c0af85.jpg
45.89.208.114200 OK 82 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20220310-1/7c883f5789bfe729c8c97cf3b8c0af85.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 960x540, components 3\012- data
Hash e1026a0a16e5c588e9fd1a95bb1defda
60d79dc4355e21035fc6ce9a662305331e87fa97
39c0046b78c0f59be472575be1c5fe04b2a927c73e31da44c55bba6544c79556
GET /upload/vod/20220310-1/7c883f5789bfe729c8c97cf3b8c0af85.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 82333
Last-Modified: Thu, 11 Aug 2022 04:54:56 GMT
Connection: keep-alive
ETag: "62f48ba0-1419d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20211125-1/30078d298e09dae858204b97ce9660fa.jpg
172.247.77.90200 OK 488 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20211125-1/30078d298e09dae858204b97ce9660fa.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=120, yresolution=120], baseline, precision 8, 1280x720, components 3\012- data
Size 488 kB (488524 bytes)
Hash 59a740c827a0a1116efbcde757ebdb1a
5126688b7e23ed54f84be967b46b56d0f03943b0
b34f719e68e9af2efeea026d1bcab5d8969377bd9305eba88a149a51ea8c31d3
GET /upload/vod/20211125-1/30078d298e09dae858204b97ce9660fa.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:42 GMT
Content-Type: image/jpeg
Content-Length: 488524
Last-Modified: Wed, 10 Aug 2022 12:10:32 GMT
Connection: keep-alive
ETag: "62f3a038-7744c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papaduanpian-img/avid5b73e67df686e.jpg
172.247.77.90200 OK 40 kB URL HTTP/1.1 sycdn.comtucdncom.com/papaduanpian-img/avid5b73e67df686e.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash bf9c709ad6f9429ae77938d3c5ea3baa
0f1a7633bdd33db8930361881d134cf6daaeca46
49287cb0644ad68e0fecd9760e5031f18dbe02e3669fae9a60ced4ff01e5b2ba
GET /papaduanpian-img/avid5b73e67df686e.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 39983
Last-Modified: Wed, 10 Aug 2022 12:12:12 GMT
Connection: keep-alive
ETag: "62f3a09c-9c2f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210301-1/0f51284262d98e6a176d49ab211d110a.jpg
172.247.77.90200 OK 59 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210301-1/0f51284262d98e6a176d49ab211d110a.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 08359c8631de48d3b62691359242571f
c6e299775081e754158fc3d0bd009aec119e7b53
0360590e8b31a6f15b466038b7ab875a378492c9e40983dff837f0ab7c1346b2
GET /upload/vod/20210301-1/0f51284262d98e6a176d49ab211d110a.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 59336
Last-Modified: Wed, 10 Aug 2022 12:10:20 GMT
Connection: keep-alive
ETag: "62f3a02c-e7c8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
13.227.254.86200 OK 919 kB URL HTTP/2 kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP 13.227.254.86:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 919 kB (918679 bytes)
Hash 956582dd3aa22ca9b19bdd1d5e091e24
c2d80e05f59981f6ed58a8231f502bd990894d6b
88e686882e64a0e199c79bd83b7102885b67242b5d0b49a1f37674c0bb3ddd8e
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kzerr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 918679
last-modified: Mon, 19 Dec 2022 07:54:21 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 31 Dec 2022 13:46:27 GMT
etag: "956582dd3aa22ca9b19bdd1d5e091e24"
x-cache: Hit from cloudfront
via: 1.1 66d851b48249ff71df5688c84f41fec8.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: VB01yOm8hrgj_XM37qKWDR3kp7shKaNpP8XHlvf62IrGzyUR16dlWw==
age: 49254
X-Firefox-Spdy: h2
kzeoo.com/68a7807de3933bf7079116fa9df99e6f.gif
172.83.155.45200 OK 366 kB URL HTTP/2 kzeoo.com/68a7807de3933bf7079116fa9df99e6f.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 366 kB (366444 bytes)
Hash 86371c51bf2086f3a40f0e438246b662
9da793de9c620485ee91b88413b256c69dc774c5
8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 01 Jan 2023 03:27:21 GMT
content-type: image/gif
content-length: 366444
last-modified: Fri, 19 Aug 2022 17:02:28 GMT
etag: "62ffc224-5976c"
expires: Sun, 01 Jan 2023 15:27:21 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 1420381
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GwipRCov4sczHTcdIWkv%2FaUrYkMXIXYgzLjnYGeXGYrNTWiFyZ4kN%2FbAl29k5zhUJwdz4MPvR6gOiEVX0jKqomGgljR2%2BFim4H7cs%2FsgE0OBbp%2BdOSiFv8UW13GA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 77f29af56ca4c5f5-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/papa-PIC/avid5c2334d6c0f5a.jpg
172.247.77.90200 OK 46 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5c2334d6c0f5a.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash f411231b04d2127abe48fc6ce865ec65
025bf9d55067db966da1861d304db5de53ae1c9d
64259ff11366be504305c815892aa27b2d8d9536a33e28f3567476d27ed71aeb
GET /papa-PIC/avid5c2334d6c0f5a.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 45719
Last-Modified: Wed, 10 Aug 2022 12:12:50 GMT
Connection: keep-alive
ETag: "62f3a0c2-b297"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210525-1/b089b2cd60004f085c96afd4e9b63eae.jpg
172.247.77.90200 OK 28 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210525-1/b089b2cd60004f085c96afd4e9b63eae.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.75.100", baseline, precision 8, 636x364, components 3\012- data
Hash 5d2dad92536d6c36d1ac451c454d0e18
84b038aca3ae5007d580af17c4124390ebdca520
5f878b013832325bc9e87e00883a80e6740c459cd09c563365ba0d9a6aae8fc9
GET /upload/vod/20210525-1/b089b2cd60004f085c96afd4e9b63eae.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 27983
Last-Modified: Wed, 10 Aug 2022 12:10:41 GMT
Connection: keep-alive
ETag: "62f3a041-6d4f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.js?d68828aa48ee2cea277ba5d25c3844b7
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?d68828aa48ee2cea277ba5d25c3844b7
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (618)
Hash b1b3d4437bf841a23a444d10b9eed942
f628e4649df54bc401c9e2949fdb5770544a927d
d0d9d3cae919217641cc320d304094b8c24a21d8dad64bb9fe80c39a1b75efb5
GET /hm.js?d68828aa48ee2cea277ba5d25c3844b7 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11256
Content-Type: application/javascript
Date: Sun, 01 Jan 2023 03:27:21 GMT
Etag: 322914cfa0854a3bdf59e3d5dacaf9e0
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=E30D4110FE79D148; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
kvegg.com/1f983e66dfb925d81e4da07bbbaf11fa.gif
172.83.155.45200 OK 274 kB URL HTTP/2 kvegg.com/1f983e66dfb925d81e4da07bbbaf11fa.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 70\012- data
Size 274 kB (273994 bytes)
Hash dd958b3e68b86521a1aa39a6ad18b7ab
1985a71ffbda6b9f3cf8cc2c16a432827d74efdf
4b6204acd4c9d7154d86b003ee9abafb7e238fef26e46376d2c71b3fbf93ef36
GET /1f983e66dfb925d81e4da07bbbaf11fa.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 01 Jan 2023 03:27:21 GMT
content-type: image/gif
content-length: 273994
last-modified: Sun, 18 Dec 2022 07:01:49 GMT
etag: "639ebadd-42e4a"
expires: Sun, 01 Jan 2023 15:27:21 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 21242
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cWKvu4czFePRb742V5V%2F8TKzrWAz9lu4QWw4vOoCRA98xLuiABZvCkAsemtJtw9IVyM3gynuuU7JZTFi%2FBcVDA%2F%2BJE7PTlFqhEW71gUtPKuruKWz7Q1MO6Ea%2B%2F29"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 77f29af0ac4ac36e-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
tpcdnde88de.com/79tp/960x60-2.gif
23.224.145.234200 OK 322 kB URL HTTP/2 tpcdnde88de.com/79tp/960x60-2.gif
IP 23.224.145.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 322 kB (322376 bytes)
Hash c41a909fa1e62a4ebc583626a93c05c1
10adfd5b6d78d04cc93c76b14a29fc93ce4f2708
b60310fa346cdc56ed271a244d9c4f1e137e0fd46571802f25c0c8e09131aa4e
GET /79tp/960x60-2.gif HTTP/1.1
Host: tpcdnde88de.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 03:27:21 GMT
content-type: image/gif
content-length: 322376
last-modified: Sat, 25 Jun 2022 12:15:37 GMT
etag: "62b6fc69-4eb48"
expires: Fri, 06 Jan 2023 03:48:31 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ljcdn.comtucdncom.com/upload/vod/20200910-1/51e28f9fd97905320803141a4180b808.jpg
45.89.208.114200 OK 157 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20200910-1/51e28f9fd97905320803141a4180b808.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 800x540, components 3\012- data
Size 157 kB (156813 bytes)
Hash d5e8b0e7f4acbeada201de48020388f0
929c63d24b5512c7bd484479e0d96a417e3fd289
295e0d7d685185a8a04fad39aa9738ba68999c8199a275e79fba9419cab5f569
GET /upload/vod/20200910-1/51e28f9fd97905320803141a4180b808.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 156813
Last-Modified: Thu, 11 Aug 2022 04:57:16 GMT
Connection: keep-alive
ETag: "62f48c2c-2648d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20200703-1/a3d06c666cdd2b59cf1067f5d5ace3f4.jpg
172.247.77.90200 OK 60 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200703-1/a3d06c666cdd2b59cf1067f5d5ace3f4.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 310x208, components 3\012- data
Hash 1dca2d570b4f94615dc8c52a9f39fd9c
a5574216ce5a7a5e62c8f5efcab3983092969351
a3ed68fb0699720aab1dc1a2a723a19eaec2e4def84cfce3e95779e552beac45
GET /upload/vod/20200703-1/a3d06c666cdd2b59cf1067f5d5ace3f4.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 59701
Last-Modified: Wed, 10 Aug 2022 11:44:21 GMT
Connection: keep-alive
ETag: "62f39a15-e935"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/pic/reregc-pic/QnE7oFc0.jpg
172.247.77.90200 OK 7.2 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/reregc-pic/QnE7oFc0.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 8c0c47375a2cb18d8cbf81b3b441e16a
19543d30f767192a5f8ba669bc7b50ce8a306e0e
4204f7f05dc3af9949f91084048247f8cc06faffd484459b0d4c628229b66251
GET /pic/reregc-pic/QnE7oFc0.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 7247
Last-Modified: Wed, 10 Aug 2022 12:14:47 GMT
Connection: keep-alive
ETag: "62f3a137-1c4f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
tpcdnde88de.com/235tp/960x60.gif
23.224.145.234200 OK 590 kB URL HTTP/2 tpcdnde88de.com/235tp/960x60.gif
IP 23.224.145.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 590 kB (590255 bytes)
Hash d9d8d54236add0a03997175e250e51ef
b65ebc88346d3a308dbf4791ade0637330df8895
81954cd3768276219bbf7aca8ce82881fbda51a1721ef78d559cdd7772800571
GET /235tp/960x60.gif HTTP/1.1
Host: tpcdnde88de.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 01 Jan 2023 03:27:21 GMT
content-type: image/gif
content-length: 590255
last-modified: Wed, 15 Jun 2022 13:02:58 GMT
etag: "62a9d882-901af"
expires: Fri, 06 Jan 2023 03:59:39 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/upload/vod/20210330-1/7e946f0c9f44502346dac737f4df9ae0.jpg
172.247.77.90200 OK 11 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210330-1/7e946f0c9f44502346dac737f4df9ae0.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 072ca8637b7c65f4f63c298ddf63c5fc
cd951a056bad239ddf9e1e7f2759765427c5c6d0
3c74c48b9a0d996a3c211defdbcce8cad27e9dab19e865e680bb7d9e3e6d4f07
GET /upload/vod/20210330-1/7e946f0c9f44502346dac737f4df9ae0.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 10701
Last-Modified: Wed, 10 Aug 2022 12:14:21 GMT
Connection: keep-alive
ETag: "62f3a11d-29cd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20200806-1/84f84c679ff2dd030295e56668c8ec80.jpg
172.247.77.90200 OK 87 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200806-1/84f84c679ff2dd030295e56668c8ec80.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 761x512, components 3\012- data
Hash baeb9b0b8bb89817ccdf7017945ba6db
2514b62c56e0ef8e7b7ab6258bfd006758ae81cf
56cb6f471fa4c13dcb49cd50eda0fd58c077597e7263ffef4d90e68b9b6b0ca8
GET /upload/vod/20200806-1/84f84c679ff2dd030295e56668c8ec80.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 87150
Last-Modified: Wed, 10 Aug 2022 12:11:02 GMT
Connection: keep-alive
ETag: "62f3a056-1546e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20211107-1/922abf2be65c23eb4537b6dfa5e61499.jpg
45.89.209.74200 OK 579 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20211107-1/922abf2be65c23eb4537b6dfa5e61499.jpg
IP 45.89.209.74:0
File type PNG image data, 800 x 539, 8-bit/color RGBA, non-interlaced\012- data
Size 579 kB (579017 bytes)
Hash a4ded7120579d025234d97d030e2f391
7a310c297a7320353b21420f4530a7b2e1240b76
de6302ee1fe1d6f2c1ebcf934c2ab468f847cfe8f34ff894fa22876625c5b42f
GET /upload/vod/20211107-1/922abf2be65c23eb4537b6dfa5e61499.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:22 GMT
Content-Type: image/jpeg
Content-Length: 579017
Connection: keep-alive
Last-Modified: Wed, 16 Feb 2022 16:46:52 GMT
ETag: "620d2a7c-8d5c9"
Expires: Tue, 31 Jan 2023 03:27:21 GMT
Cache-Control: max-age=2592000
access-control-allow-credentials: : true
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210511-1/731174aa6572dfb911a87218be554868.jpg
172.247.77.90200 OK 19 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210511-1/731174aa6572dfb911a87218be554868.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.98.100", baseline, precision 8, 638x376, components 3\012- data
Hash 46616077bebd3999f9e397fd6da4cad4
22cf504ed6a1625db44358dfad10675a7bf6481d
e31950bafaa37c5654bce6912117ecbda22c4a15a4ffc510a35ddb170e49581c
GET /upload/vod/20210511-1/731174aa6572dfb911a87218be554868.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 19228
Last-Modified: Wed, 10 Aug 2022 11:53:28 GMT
Connection: keep-alive
ETag: "62f39c38-4b1c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210923-1/c6df38ac8c24ce948703c10df1a34e1c.jpg
172.247.77.90200 OK 76 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210923-1/c6df38ac8c24ce948703c10df1a34e1c.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x539, components 3\012- data
Hash 3a0af09e2227ba04f718f2aa6565b2e5
66009870f58f468623a93e8cc30395a163bd280d
c10456c6d138eb95b9a241dec4d095a4ba0a0f19c523a313ff9908fe63771991
GET /upload/vod/20210923-1/c6df38ac8c24ce948703c10df1a34e1c.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 75858
Last-Modified: Wed, 10 Aug 2022 12:10:53 GMT
Connection: keep-alive
ETag: "62f3a04d-12852"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20200703-1/b4ec74f1503289dc94706a327c192c31.jpg
172.247.77.90200 OK 66 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200703-1/b4ec74f1503289dc94706a327c192c31.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 310x208, components 3\012- data
Hash fb79cf02f1361c281aeb2c74344610fe
410d1539689bedfab26b81e94cb846e45bdf3c03
53cb51465532ee8e6169e9090ef7fdc24a66b5ee6ae61cb8f43a6ac90cb94564
GET /upload/vod/20200703-1/b4ec74f1503289dc94706a327c192c31.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 66190
Last-Modified: Wed, 10 Aug 2022 12:13:38 GMT
Connection: keep-alive
ETag: "62f3a0f2-1028e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210420-1/9a2d7096e90cf2eb0807983731bde534.jpg
172.247.77.90200 OK 5.8 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210420-1/9a2d7096e90cf2eb0807983731bde534.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 76c21a42f8cea62ab84359277e8f8ac8
1b10026c0383444d60354ac25eb49106fcd476af
07114e1ef6d1ea49c1b9ad4df405f69189f31c3fc1421713b8958c6c46d41afb
GET /upload/vod/20210420-1/9a2d7096e90cf2eb0807983731bde534.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 5798
Last-Modified: Wed, 10 Aug 2022 12:06:43 GMT
Connection: keep-alive
ETag: "62f39f53-16a6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
u1033.com/4f87ac53747641188cda45be4ebed5f9.gif
103.170.15.54200 OK 309 kB URL HTTP/2 u1033.com/4f87ac53747641188cda45be4ebed5f9.gif
IP 103.170.15.54:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 309 kB (309100 bytes)
Hash 85a34441173f1ad7d14a35ca78a4ca92
5d6216548b65b8ac46382cdc4b52c01305c5c1f8
ad6bfce666abcdf98e9ba0b238269d0b1b708c870bc21b0d066fcc57264b965f
GET /4f87ac53747641188cda45be4ebed5f9.gif HTTP/1.1
Host: u1033.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "63a6b5ff-4b76c"
server: nginx
date: Fri, 30 Dec 2022 00:29:19 GMT
content-type: image/gif
last-modified: Sat, 24 Dec 2022 08:19:11 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-44
content-length: 309100
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/upload/vod/20210726-1/0b5012754aedd5fb8286bc117070014e.jpg
172.247.77.90200 OK 16 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210726-1/0b5012754aedd5fb8286bc117070014e.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x169, components 3\012- data
Hash ecb2f2be51ba553600c75bee1c1adceb
8193aa566c48ba7888c139ef98a83608189a5cee
7092fd15fae8dd3f7b2a6ff8dbe81fd35a14efda8bbd621ef1349ad5078574e9
GET /upload/vod/20210726-1/0b5012754aedd5fb8286bc117070014e.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 16365
Last-Modified: Wed, 10 Aug 2022 11:38:57 GMT
Connection: keep-alive
ETag: "62f398d1-3fed"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/2020/07/unroj00utvz.jpg
45.89.208.114200 OK 11 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/2020/07/unroj00utvz.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash a9c06baf3b15b998e767190bcd2c0149
27895f6741897de3fc803b2605ea6a938babf521
62ff8599e2dde35ae434257dd26cada8947d143b4905b8cfeb216168f7dce282
GET /upload/vod/2020/07/unroj00utvz.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 10683
Connection: keep-alive
Last-Modified: Sat, 25 Jul 2020 06:38:19 GMT
ETag: "5f1bd35b-29bb"
Accept-Ranges: bytes
sycdn.comtucdncom.com/pic/20200430-HIP91/l5txEINR.jpg
172.247.77.90200 OK 8.6 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/20200430-HIP91/l5txEINR.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 7e3f9d2fcdda0bf425b36c919682faa7
d5acc9539296dfce5d6df4182f954e664d859bd3
b8ed5a35f01c8df08494dadb52e7c4237073b16452ea782142ee4af9c772a47c
GET /pic/20200430-HIP91/l5txEINR.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 8623
Last-Modified: Wed, 10 Aug 2022 12:14:35 GMT
Connection: keep-alive
ETag: "62f3a12b-21af"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ggt999.oss-cn-hangzhou.aliyuncs.com/xpj/xpj96080e.gif
47.110.23.69200 OK 560 kB URL HTTP/1.1 ggt999.oss-cn-hangzhou.aliyuncs.com/xpj/xpj96080e.gif
IP 47.110.23.69:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 560 kB (560502 bytes)
Hash fcbcc738fb6a5f8f5e56a56d72cb1289
510283d17b79cfbacb3061964810555dc3dc4314
f1d0c16cca2cae7a2e7b05b68d0dd21ed48c9fd56453a3892748b55d5991b27f
GET /xpj/xpj96080e.gif HTTP/1.1
Host: ggt999.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 01 Jan 2023 03:27:20 GMT
Content-Type: image/gif
Content-Length: 560502
Connection: keep-alive
x-oss-request-id: 63B0FD98DC44E03736F4995D
Accept-Ranges: bytes
ETag: "FCBCC738FB6A5F8F5E56A56D72CB1289"
Last-Modified: Mon, 19 Dec 2022 06:38:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 18035721676580147221
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: /LzHOPtqX49eVqVtcssSiQ==
x-oss-server-time: 4
ggt999.oss-cn-hangzhou.aliyuncs.com/ky/ky96080c.gif
47.110.23.69200 OK 432 kB URL HTTP/1.1 ggt999.oss-cn-hangzhou.aliyuncs.com/ky/ky96080c.gif
IP 47.110.23.69:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 432 kB (432195 bytes)
Hash 66560dc1fbaeb67885a45dd7dc5831e1
38584ed6146b3cd7f220a7cf5db732f462cf1474
5586b90e8f142c31b3b89a89cd2630ed0bd5a2560074f7a58dda96bbc4abae32
GET /ky/ky96080c.gif HTTP/1.1
Host: ggt999.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/gif
Content-Length: 432195
Connection: keep-alive
x-oss-request-id: 63B0FD99DC44E03633D29A5D
Accept-Ranges: bytes
ETag: "66560DC1FBAEB67885A45DD7DC5831E1"
Last-Modified: Sun, 06 Nov 2022 07:48:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15586424114477953781
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: ZlYNwfuutniFpF3X3Fgx4Q==
x-oss-server-time: 3
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=382045462&si=d68828aa48ee2cea277ba5d25c3844b7&v=1.3.0&lv=1&sn=24900&r=0&ww=1280&u=http%3A%2F%2Fwww.hbyjpipe.com%2F&tt=%E9%9D%92%E9%9D%92%E9%9D%92%E5%9B%BD%E4%BA%A7%E5%9C%A8%E7%BA%BF%E8%A7%86%E9%A2%91%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%2C%E4%BC%8A%E4%BA%BA%E4%B9%85%E4%B9%85%E5%A4%A7%E9%A6%99%E7%BA%BF%E8%95%89%E4%BA%9A%E6%B4%B2%E4%BA%94%E6%9C%88%E5%A4%A9%2C%E9%9D%92%E8%8D%89%E8%A7%86%E9%A2%91%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%2C%E5%9B%BD%E4%BA%A7%E7%B2%BE%E5%93%81%E8%87%AA%E5%9C%A8%E5%9C%A8%E7%BA%BF%E5%8D%88%E5%A4%9C%E5%85%8D%E8%B4%B9
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=382045462&si=d68828aa48ee2cea277ba5d25c3844b7&v=1.3.0&lv=1&sn=24900&r=0&ww=1280&u=http%3A%2F%2Fwww.hbyjpipe.com%2F&tt=%E9%9D%92%E9%9D%92%E9%9D%92%E5%9B%BD%E4%BA%A7%E5%9C%A8%E7%BA%BF%E8%A7%86%E9%A2%91%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%2C%E4%BC%8A%E4%BA%BA%E4%B9%85%E4%B9%85%E5%A4%A7%E9%A6%99%E7%BA%BF%E8%95%89%E4%BA%9A%E6%B4%B2%E4%BA%94%E6%9C%88%E5%A4%A9%2C%E9%9D%92%E8%8D%89%E8%A7%86%E9%A2%91%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%2C%E5%9B%BD%E4%BA%A7%E7%B2%BE%E5%93%81%E8%87%AA%E5%9C%A8%E5%9C%A8%E7%BA%BF%E5%8D%88%E5%A4%9C%E5%85%8D%E8%B4%B9
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=382045462&si=d68828aa48ee2cea277ba5d25c3844b7&v=1.3.0&lv=1&sn=24900&r=0&ww=1280&u=http%3A%2F%2Fwww.hbyjpipe.com%2F&tt=%E9%9D%92%E9%9D%92%E9%9D%92%E5%9B%BD%E4%BA%A7%E5%9C%A8%E7%BA%BF%E8%A7%86%E9%A2%91%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%2C%E4%BC%8A%E4%BA%BA%E4%B9%85%E4%B9%85%E5%A4%A7%E9%A6%99%E7%BA%BF%E8%95%89%E4%BA%9A%E6%B4%B2%E4%BA%94%E6%9C%88%E5%A4%A9%2C%E9%9D%92%E8%8D%89%E8%A7%86%E9%A2%91%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%2C%E5%9B%BD%E4%BA%A7%E7%B2%BE%E5%93%81%E8%87%AA%E5%9C%A8%E5%9C%A8%E7%BA%BF%E5%8D%88%E5%A4%9C%E5%85%8D%E8%B4%B9 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 01 Jan 2023 03:27:22 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=0B6F858C698FF30E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
fmtu.netfhtu.com/upload/vod/20210705-1/bfd1a41dc7b16c70fa8a540eeed52e0e.jpg
45.89.208.114200 OK 5.7 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210705-1/bfd1a41dc7b16c70fa8a540eeed52e0e.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 7ba2325b62cd23791dacd6a506166308
6af86ddbc74e295dc50a0b17f83ea0392dddf367
e7090c4f353491ff6dd9c8798c4458aa76dba475611b9f4e0c9df66bce2d7c25
GET /upload/vod/20210705-1/bfd1a41dc7b16c70fa8a540eeed52e0e.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/jpeg
Content-Length: 5733
Connection: keep-alive
Last-Modified: Mon, 05 Jul 2021 04:24:47 GMT
ETag: "60e2898f-1665"
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20211128-1/a59adbac438e6a472186028aad3d0184.jpg
45.89.209.74200 OK 337 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20211128-1/a59adbac438e6a472186028aad3d0184.jpg
IP 45.89.209.74:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2018 (Windows), datetime=2019:08:28 17:53:44], baseline, precision 8, 752x423, components 3\012- data
Size 337 kB (336786 bytes)
Hash 568e0e925b123453e5f2ce8a5324c52f
6ce64d4f6e90341f02ae5b6e31eab26058a18e14
983e870ded37275dc5c2d58c7e061e20b75816a0b4482aa44b0cb38df4e3db3e
GET /upload/vod/20211128-1/a59adbac438e6a472186028aad3d0184.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:22 GMT
Content-Type: image/jpeg
Content-Length: 336786
Connection: keep-alive
Last-Modified: Wed, 16 Feb 2022 16:45:37 GMT
ETag: "620d2a31-52392"
Expires: Tue, 31 Jan 2023 03:27:21 GMT
Cache-Control: max-age=2592000
access-control-allow-credentials: : true
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20211224-1/0cd68f76db84f640f0707e5e4d10aad0.jpg
172.247.77.90200 OK 23 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20211224-1/0cd68f76db84f640f0707e5e4d10aad0.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 320x184, components 3\012- data
Hash 4687b28d7b19827a4691b0096d3a2196
7a59c9c4df9f2f5953d8715e4e6fb254f6ea958d
59d17f3c71e695653491271cf19965638b4a7bfdd814e4babd828eab1ae26868
GET /upload/vod/20211224-1/0cd68f76db84f640f0707e5e4d10aad0.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 22853
Last-Modified: Wed, 10 Aug 2022 12:10:27 GMT
Connection: keep-alive
ETag: "62f3a033-5945"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20210727-1/8aaa02e0003bc865ca308f14ce2d32d1.jpg
45.89.209.74200 OK 274 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20210727-1/8aaa02e0003bc865ca308f14ce2d32d1.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 350x350, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2018:12:04 17:53:06], baseline, precision 8, 752x423, components 3\012- data
Size 274 kB (274042 bytes)
Hash e99996997fd2b8b006b3b0d15b5ec851
7af18f250b1c84167bca71b8e05e9d87e445e10b
8a752b12b3eac010dc3c6544f9c7c583f44ea295c6190ed22725b7960d678d62
GET /upload/vod/20210727-1/8aaa02e0003bc865ca308f14ce2d32d1.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:22 GMT
Content-Type: image/jpeg
Content-Length: 274042
Last-Modified: Sun, 04 Dec 2022 12:35:16 GMT
Connection: keep-alive
ETag: "638c9404-42e7a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20200703-1/759e80984c052ef3c89c740e8513251c.jpg
172.247.77.90200 OK 64 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200703-1/759e80984c052ef3c89c740e8513251c.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 310x208, components 3\012- data
Hash 3af7a33b63cb4aa94398de929c63c518
6db6510d77f7c569218ff78ceabd75a6f0f9ff46
3bb354b19f09132a169bb10f082b5e1aa0959f1854a1fcff724885edfa6745b7
GET /upload/vod/20200703-1/759e80984c052ef3c89c740e8513251c.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:28:43 GMT
Content-Type: image/jpeg
Content-Length: 63600
Last-Modified: Wed, 10 Aug 2022 12:12:28 GMT
Connection: keep-alive
ETag: "62f3a0ac-f870"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/2022/07/51fx4rizdhq.jpg
45.89.208.114200 OK 10 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/2022/07/51fx4rizdhq.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash feb9bf998bf9c694fd88299b6c72316f
6105be8fdc245c1ae5c49e1c1f14ec04cc7f6616
c726d60bbdd8cdd9ce720838fc5e9644cfed51ed72f3ad92e080ac867fa076f7
GET /upload/vod/2022/07/51fx4rizdhq.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:22 GMT
Content-Type: image/jpeg
Content-Length: 10126
Connection: keep-alive
Last-Modified: Sat, 16 Jul 2022 04:06:58 GMT
ETag: "62d23962-278e"
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20211119-1/2fc5b7d397be2c4a0458720c696c47c0.jpg
45.89.209.74200 OK 705 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20211119-1/2fc5b7d397be2c4a0458720c696c47c0.jpg
IP 45.89.209.74:0
File type PNG image data, 800 x 539, 8-bit/color RGBA, non-interlaced\012- data
Size 705 kB (704700 bytes)
Hash e241b814e2fe946791595b4e405b94d6
60222bf109c3b182b1360abc0b35dbf312b446b6
dd14279bf41bcd8f9abbf5f29be1de086019aa39df445a423ba203f06061ba24
GET /upload/vod/20211119-1/2fc5b7d397be2c4a0458720c696c47c0.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 11:26:22 GMT
Content-Type: image/jpeg
Content-Length: 704700
Connection: keep-alive
Last-Modified: Wed, 16 Feb 2022 16:46:05 GMT
ETag: "620d2a4d-ac0bc"
Expires: Tue, 31 Jan 2023 03:27:21 GMT
Cache-Control: max-age=2592000
access-control-allow-credentials: : true
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/2022/06/ovqoppcwe3h.jpg
45.89.208.114200 OK 8.4 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/2022/06/ovqoppcwe3h.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash d3f8ab9e10c1c9c5e74c368fa017cdd8
7be4d74f57eb4984bf9fef4857538e0a8c9b31a9
68115afbc687ec913778309d75db39bcf9cd4b02aeea25cb2ba64b6cd84cec3d
GET /upload/vod/2022/06/ovqoppcwe3h.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:22 GMT
Content-Type: image/jpeg
Content-Length: 8353
Connection: keep-alive
Last-Modified: Thu, 30 Jun 2022 10:00:04 GMT
ETag: "62bd7424-20a1"
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20210705-1/2e88a64051ab3fbad3045de619cc9068.jpg
45.89.208.114200 OK 12 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210705-1/2e88a64051ab3fbad3045de619cc9068.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash e2d8791150a399e9d15e6e1ba6e60fb7
c3261ea66e3014f3518d339bdbc276d58becf818
b98ab588f4fcf0bf06bb4936b78789a2ddcd64751d1b06489138221bcfdc2ca0
GET /upload/vod/20210705-1/2e88a64051ab3fbad3045de619cc9068.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:22 GMT
Content-Type: image/jpeg
Content-Length: 12336
Connection: keep-alive
Last-Modified: Mon, 05 Jul 2021 04:25:53 GMT
ETag: "60e289d1-3030"
Accept-Ranges: bytes
p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaTYwJYhDicnibqKbVUtzwk3vqBxlG2ZQYyjo/0
43.129.255.47200 OK 206 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaTYwJYhDicnibqKbVUtzwk3vqBxlG2ZQYyjo/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 206 kB (205622 bytes)
Hash 8a22a6888c325aa3acf83e7cedfe35e7
37da1ea976724d35c1c32ae18d7924192184ba32
2e90b20d4c2067ff68444790955d65d2745365cf025c486c8c2b685696faeeaa
GET /qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaTYwJYhDicnibqKbVUtzwk3vqBxlG2ZQYyjo/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sun, 01 Jan 2023 03:27:21 GMT
content-type: image/gif
content-length: 205622
vary: Accept,Origin
last-modified: Mon, 19 Dec 2022 06:54:31 GMT
cache-control: max-age=2592000
x-delay: 39470 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 205622
chid: 0
fid: 0
x-nws-log-uuid: c19ca7b1-defb-4a8d-8160-c0c30a0851d0
X-Firefox-Spdy: h2
ldbbs.ldmnq.com/bbs/topic/images/2022-12/8a42cd46-12a9-46a4-8563-ee14a925192c.gif
218.12.76.164200 OK 1.1 MB URL HTTP/1.1 ldbbs.ldmnq.com/bbs/topic/images/2022-12/8a42cd46-12a9-46a4-8563-ee14a925192c.gif
IP 218.12.76.164:0
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 960 x 120\012- data
Size 1.1 MB (1082384 bytes)
Hash a2513b4510f6797c4cbe4012fc79c64c
41f15aa49c66eed88a541224dedda5d215f9e7ef
16e775f7ac1e0368c216cdcf70bc3d56d7d952d7653898dbb8093efcd712cc71
GET /bbs/topic/images/2022-12/8a42cd46-12a9-46a4-8563-ee14a925192c.gif HTTP/1.1
Host: ldbbs.ldmnq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/gif
Content-Length: 1082384
Connection: keep-alive
Server: openresty
Age: 940839
CloudServiceDiscount: CDN
Content-Encoding: utf-8
ETag: "a2513b4510f6797c4cbe4012fc79c64c"
Last-Modified: Wed, 21 Dec 2022 06:06:41 GMT
X-CCDN-CacheTTL: 2592000
nginx-hit: 1
via: CHN-HEshijiazhuang-AREACUCC1-CACHE38[7],CHN-HEshijiazhuang-AREACUCC1-CACHE30[0,TCP_HIT,1],CHN-TJ-GLOBAL1-CACHE95[133],CHN-TJ-GLOBAL1-CACHE30[123,TCP_MISS,131]
x-amz-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSFhv2Sr1BDL3xCdwQqA6DE4Gw8YvJHp
x-amz-request-id: 00000185334A8E1F900DAF7A4A1D6950
x-amz-storage-class: STANDARD_IA
x-hcs-proxy-type: 1
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Accept-Ranges: bytes
kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com/960X60.gif
47.75.19.39200 OK 254 kB URL HTTP/1.1 kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com/960X60.gif
IP 47.75.19.39:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 254 kB (253519 bytes)
Hash f744e995971941b6a95fcd2636f5a545
ac9c1230e04eab9e31512d2afe440fe5f0367dc5
59b1a138fa72df587e61916179965cbd819f91aec53ce6ab606949a7e06b3063
GET /960X60.gif HTTP/1.1
Host: kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 01 Jan 2023 03:27:21 GMT
Content-Type: image/gif
Content-Length: 253519
Connection: keep-alive
x-oss-request-id: 63B0FD99DD75B73234A7A162
Accept-Ranges: bytes
ETag: "F744E995971941B6A95FCD2636F5A545"
Last-Modified: Tue, 29 Nov 2022 08:27:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17987192695826819902
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: 90TplZcZQbapX80mNvWlRQ==
x-oss-server-time: 2
fmtu.netfhtu.com/upload/vod/20210705-1/b29a271c7f8510b14befef32753c47d8.jpg
45.89.208.114200 OK 9.4 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210705-1/b29a271c7f8510b14befef32753c47d8.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 23x30, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash f7c58d9c676076b97baf499d477da3cd
6d94b19bc4e37c4e506c9c028198cd1a32f76389
66a0123bb5d6757dbf66346cd678f80713679adf16a2d474df7d6fcd36dd1935
GET /upload/vod/20210705-1/b29a271c7f8510b14befef32753c47d8.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:22 GMT
Content-Type: image/jpeg
Content-Length: 9432
Connection: keep-alive
Last-Modified: Mon, 05 Jul 2021 04:31:12 GMT
ETag: "60e28b10-24d8"
Accept-Ranges: bytes
383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
120.77.166.54200 OK 299 kB URL HTTP/1.1 383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
IP 120.77.166.54:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 299 kB (299398 bytes)
Hash f4b7967855549e81f65598b93a43d9db
6ab53e8a9af687c1dddad236af323080a04499cf
2e95dc2082af7cc833e0aef825efc261c04b69e3ec4350203854008cc4a12dc6
GET /960x60.gif HTTP/1.1
Host: 383guanggao.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 01 Jan 2023 03:27:22 GMT
Content-Type: image/gif
Content-Length: 299398
Connection: keep-alive
x-oss-request-id: 63B0FD9A6EABC839391C6224
Accept-Ranges: bytes
ETag: "F4B7967855549E81F65598B93A43D9DB"
Last-Modified: Thu, 08 Dec 2022 07:20:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8810428828543929982
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 9LeWeFVUnoH2VZi5OkPZ2w==
x-oss-server-time: 3
fmtu.netfhtu.com/upload/vod/2022/06/hv3lzlccxm5.jpg
45.89.208.114200 OK 14 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/2022/06/hv3lzlccxm5.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash f95c59808c7d7501bcc4184bd84d7265
9faae35288fe6cbc712411647c5103f14f1d59f1
fc47965b3f3f8f7dac5633d3eea2cf427877fca2f9c03b407c6d7d626c0e5fc0
GET /upload/vod/2022/06/hv3lzlccxm5.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 01 Jan 2023 03:27:23 GMT
Content-Type: image/jpeg
Content-Length: 13873
Connection: keep-alive
Last-Modified: Mon, 06 Jun 2022 00:01:28 GMT
ETag: "629d43d8-3631"
Accept-Ranges: bytes
img.1134555.com/images/63a7da80b5bef8e4e6408476.gif
3.36.126.81302 Found 0 B URL HTTP/2 img.1134555.com/images/63a7da80b5bef8e4e6408476.gif
IP 3.36.126.81:0
GET /images/63a7da80b5bef8e4e6408476.gif HTTP/1.1
Host: img.1134555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
X-Firefox-Spdy: h2
img.9617x.com/images/636b356914dd2ea30a790fe8.gif
3.36.126.81302 Found 0 B URL HTTP/2 img.9617x.com/images/636b356914dd2ea30a790fe8.gif
IP 3.36.126.81:0
GET /images/636b356914dd2ea30a790fe8.gif HTTP/1.1
Host: img.9617x.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/b1f4270216704c0f8cc43a10401d2f97
X-Firefox-Spdy: h2
img.u1669.com/images/63523ea35fe50f0585d3ef84.gif
3.36.126.81302 Found 0 B URL HTTP/2 img.u1669.com/images/63523ea35fe50f0585d3ef84.gif
IP 3.36.126.81:0
GET /images/63523ea35fe50f0585d3ef84.gif HTTP/1.1
Host: img.u1669.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hbyjpipe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d
X-Firefox-Spdy: h2