Report - herniadrhouston.com/

Report Overview

Submitted URL
herniadrhouston.com/
IP
45.39.29.10
ASN
#18779 EGIHOSTING
Submitted
2022-10-19 07:39:00
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
s2.loli.net	100401	2021-12-08T13:17:10Z	2023-03-09T06:15:37Z	385 B	231 kB	104.26.0.190
kvhbbb.top	unknown	2022-09-25T17:04:41Z	2022-12-04T11:57:40Z	390 B	865 kB	104.21.234.67
www.jxys88.net	unknown	2022-01-15T02:49:35Z	2023-03-02T22:42:46Z	964 B	166 kB	173.231.12.68
kvhmm.com	unknown	2021-10-20T06:40:54Z	2023-02-10T10:47:54Z	389 B	422 B	78.46.107.74
sysupload.csiteadmin.com	unknown	2022-02-20T11:34:59Z	2023-02-21T13:32:54Z	8.4 kB	3.7 MB	20.189.126.154
fmlb.netlbtu.com	187701	2021-09-14T13:57:06Z	2023-03-09T09:19:57Z	2.5 kB	54 kB	45.89.208.114
kvmaa.com	unknown	2015-11-06T05:44:54Z	2023-01-07T21:05:57Z	778 B	844 B	78.46.107.74
kvtfff.top	unknown	2022-07-19T12:01:17Z	2023-01-19T06:15:57Z	390 B	889 kB	104.21.233.216
pic.picnewsss.com	unknown	2022-06-14T13:57:58Z	2023-03-09T07:33:28Z	772 B	384 kB	23.225.139.251
sszhan.oss-cn-shenzhen.aliyuncs.com	unknown	2022-08-12T18:47:21Z	2023-03-09T06:11:04Z	388 B	540 kB	120.77.166.90
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-09T05:09:04Z	347 B	1.9 kB	104.18.20.226
www.yssydh.top	unknown	2022-08-05T17:26:13Z	2023-03-09T10:00:31Z	416 B	48 kB	172.67.209.49
ob699.cc	unknown	2022-09-25T23:28:39Z	2022-12-07T01:23:32Z	250 B	20 kB	103.55.25.226
kvhyyy.top	unknown	2022-05-01T03:24:27Z	2022-11-29T02:11:44Z	390 B	757 kB	104.21.7.76
kvemm.com	222018	2021-10-18T03:51:02Z	2023-03-09T13:47:41Z	778 B	844 B	104.143.94.110
dimg04.c-ctrip.com	139731	2014-05-08T18:11:10Z	2023-03-09T10:38:00Z	804 B	566 kB	104.110.17.24
p.qlogo.cn	48578	2014-01-15T12:11:45Z	2023-03-09T05:15:22Z	3.1 kB	267 kB	43.129.255.47
acoossn.top	475526	2022-03-01T12:57:13Z	2022-11-15T09:48:35Z	391 B	740 kB	172.67.213.234
kveff.com	unknown	2022-08-16T13:07:26Z	2023-02-24T23:08:37Z	389 B	422 B	64.32.13.142
ocsp.digicert.cn	37572	2020-03-20T18:45:56Z	2023-03-09T11:08:28Z	1.3 kB	4.4 kB	47.246.44.205
img.999993.co	unknown	2022-08-05T17:50:55Z	2022-12-23T06:12:56Z	392 B	183 B	3.36.126.81
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	594 B	127 B	52.41.252.32
www.jxys14.xyz	unknown	2022-08-17T07:55:28Z	2022-12-23T15:46:43Z	3.3 kB	789 kB	173.231.38.5
tu.ob168.cc	unknown	2022-10-16T01:07:03Z	2022-11-02T23:05:23Z	251 B	23 kB	103.55.25.226
zerossl.ocsp.sectigo.com	4049	2020-05-09T21:05:29Z	2023-03-09T05:14:26Z	3.0 kB	11 kB	172.64.155.188
kzeaa.com	unknown	2022-05-22T08:40:48Z	2023-03-09T06:11:03Z	778 B	846 B	66.150.130.123
bisi666.cc	unknown	2022-06-09T18:28:04Z	2023-01-13T09:17:20Z	268 B	1.2 MB	108.170.5.74
aliyun-static-oss.oss-cn-hongkong.aliyuncs.com	unknown	2022-06-02T12:46:58Z	2023-03-03T08:45:01Z	476 B	555 B	47.56.33.17
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	321 B	229 B	34.117.237.239
hm.baidu.com	8254	2012-05-26T10:38:45Z	2023-03-09T08:30:34Z	3.1 kB	41 kB	103.235.46.191
www.herniadrhouston.com	unknown	2022-08-21T09:36:55Z	2022-11-04T08:40:15Z	930 B	2.5 kB	45.39.29.10
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.7 kB	95 kB	34.120.237.76
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-09T11:25:06Z	3.6 kB	11 kB	104.18.32.68
taiwtp2.com	unknown	2022-04-10T09:12:59Z	2023-01-15T07:08:32Z	369 B	56 kB	220.128.218.253
img.cuphe.xyz	unknown	2022-07-11T18:46:15Z	2022-11-10T05:20:23Z	392 B	183 B	3.36.126.81
513575528.com	unknown	2022-09-15T10:58:05Z	2023-01-19T03:47:33Z	393 B	461 B	47.75.19.145
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	758 B	2.8 kB	143.204.55.115
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	8.2 kB	22 kB	23.36.76.226
87193776899.com	unknown	2022-08-09T11:39:23Z	2023-02-20T04:45:03Z	794 B	702 kB	103.170.15.94
p3.douyinpic.com	23536	2020-12-18T12:20:50Z	2023-03-09T13:10:54Z	1.5 kB	1.5 MB	47.246.44.231
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	5.6 kB	11 kB	93.184.220.29
kvezz.com	237784	2021-10-17T10:32:09Z	2023-03-09T08:24:44Z	389 B	423 B	104.143.94.110
ocsp2.globalsign.com	1544	2012-05-23T20:10:04Z	2023-03-09T05:09:49Z	2.1 kB	12 kB	104.18.20.226
dvcasha2.ocsp-certum.com	71753	2014-11-27T09:04:42Z	2023-03-09T12:14:45Z	1.0 kB	5.6 kB	23.36.79.17
ob168.cc	unknown	2021-03-22T12:51:31Z	2022-11-10T05:20:37Z	249 B	43 kB	103.55.25.226
i.ibb.co	13485	2018-11-25T11:13:48Z	2023-03-09T09:19:31Z	742 B	1.1 MB	51.210.3.236
lzty888.xyz	unknown	2022-10-15T03:29:48Z	2022-11-02T23:05:40Z	252 B	107 kB	103.55.25.226
img.syhy.top	unknown	2022-09-12T22:20:19Z	2023-02-10T06:12:37Z	768 B	569 kB	137.175.22.207
65677358625.com	unknown	2022-08-09T11:37:36Z	2023-01-08T21:11:46Z	395 B	854 kB	45.61.212.127
acoossi.top	489936	2022-01-13T06:50:58Z	2022-12-08T04:06:14Z	782 B	1.1 MB	104.21.234.201
93533557591.com	unknown	2022-08-10T15:54:43Z	2022-12-26T00:27:46Z	395 B	1.2 MB	103.170.15.85
nkiun.xyz	unknown	2022-09-21T19:24:39Z	2023-03-03T10:07:30Z	254 B	17 kB	8.210.99.166
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	401 B	5.8 kB	34.160.144.191
push.zhanzhang.baidu.com	57139	2015-07-22T07:44:02Z	2023-03-09T05:47:10Z	281 B	750 B	182.61.201.93
img.x939.xyz	unknown	2022-07-18T14:55:11Z	2022-12-10T09:03:24Z	391 B	937 kB	3.36.126.81
613711567.com	unknown	2022-09-15T10:59:07Z	2022-12-23T02:34:10Z	393 B	749 kB	47.75.19.145
666222258.com	unknown	2022-09-22T12:49:33Z	2023-02-25T02:33:21Z	378 B	212 kB	137.220.135.132
e1.o.lencr.org	6159	2021-08-20T09:36:30Z	2023-03-09T05:14:34Z	3.6 kB	8.0 kB	23.36.76.226
kzecc.com	unknown	2017-01-29T05:39:36Z	2023-03-09T10:00:31Z	389 B	422 B	104.143.94.110
65686232255.com	unknown	2022-08-09T11:37:00Z	2023-02-15T11:15:43Z	395 B	161 kB	103.170.15.99
api.share.baidu.com	44629	2013-04-25T16:45:11Z	2023-03-09T05:47:11Z	339 B	114 B	182.61.240.101
taiwtp1.com	unknown	2022-04-08T09:06:08Z	2023-03-09T05:15:22Z	738 B	300 kB	220.128.218.220
ads-6686.top	unknown	2022-09-06T10:15:05Z	2023-03-05T20:48:58Z	733 B	262 kB	118.107.10.31
cdn-yudietupian-cdn.com	unknown	2022-09-09T17:01:43Z	2023-01-10T12:50:34Z	762 B	654 kB	154.197.13.136
kvtnnn.top	unknown	2022-08-16T12:58:10Z	2023-03-06T09:48:59Z	390 B	367 kB	104.21.234.87
kvevv.com	unknown	2022-05-01T03:44:50Z	2023-03-09T06:11:04Z	778 B	844 B	104.143.94.110
nvhbbb.top	unknown	2022-04-10T10:43:59Z	2023-03-10T01:34:07Z	780 B	1.6 MB	104.21.55.74
api.06fgej.com	unknown	2022-08-04T10:26:15Z	2022-10-28T17:04:31Z	1.1 kB	2.4 kB	54.169.196.110
tt.1468tu.com	unknown	2022-05-27T11:15:48Z	2023-01-20T09:18:01Z	632 B	166 kB	167.71.218.143
zhibo128x.xyz	unknown	2022-09-07T01:50:00Z	2023-03-09T10:00:31Z	744 B	738 kB	154.83.25.141
kvhhhh.top	unknown	2022-02-24T18:36:27Z	2023-02-23T22:04:28Z	780 B	2.1 MB	104.21.235.35
666000258.com	unknown	2022-09-22T12:49:32Z	2023-02-25T02:33:16Z	378 B	28 kB	137.220.135.132
si1.go2yd.com	325918	2017-02-02T12:37:19Z	2023-03-09T06:53:14Z	756 B	141 kB	58.254.180.65
img.x966.xyz	unknown	2022-07-18T15:03:44Z	2022-10-25T01:06:43Z	391 B	183 B	3.36.126.81
herniadrhouston.com	unknown	2022-06-02T19:16:30Z	2022-12-07T09:42:13Z	339 B	204 B	45.39.29.10
lbfm.lbpictupian.com	unknown	2022-10-09T18:47:38Z	2023-03-09T05:15:22Z	7.0 kB	151 kB	104.22.12.214

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-19	medium	ads-6686.top	Sinkholed
2022-10-19	medium	ads-6686.top	Sinkholed
2022-10-19	medium	65677358625.com	Sinkholed

JavaScript (19)

	URL	Size	First Seen	Last Seen
	api.06fgej.com/js/dom.js	16 kB	2023-03-07	2023-03-11
Pretty URL api.06fgej.com/js/dom.js IP 54.169.196.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:52:35 Last Seen2023-03-11 22:51:19 Times Seen1 Hash 69252e17604aab4c6fd770c3f70113e9 69f8291f946243a4f9f5164256d017927db85d13 73931ac37c9a8ff96a448e363e9d838809e47794beae1a9992754f1678638dcd Loading...

	www.herniadrhouston.com/tj.js	520 B	2023-03-07	2023-03-13
Pretty URL www.herniadrhouston.com/tj.js IP 45.39.29.10 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:10:57 Last Seen2023-03-13 14:40:12 Times Seen1 Hash 201dd7e40e7339ed3282fbdf40c1c583 862a8ba838ace9b09537cffb79e36106df92de83 b7bf4c87a1a23bf2fdb212ec234c808f1373ace0aac14db94800d3840b20e85d Loading...

	www.herniadrhouston.com/common.js	1.5 kB	2023-03-07	2023-03-17
Pretty URL www.herniadrhouston.com/common.js IP 45.39.29.10 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:14 Last Seen2023-03-17 10:41:04 Times Seen1 Hash 2d67599d1e21388fb35a4f6ae7c75a34 d659e4906bd306b2056c78675375c10c520f0435 4f619b09ee009853db7003ec09d8562208b4fd9a643d4706084159df5804b84d Loading...

	www.jxys14.xyz/template/m1938pc/html9/ads/zxf.js	1.3 kB	2023-03-08	2023-03-10
Pretty URL www.jxys14.xyz/template/m1938pc/html9/ads/zxf.js IP 173.231.38.5 ASN #18450 WEBNX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:14:41 Last Seen2023-03-10 11:59:28 Times Seen1 Hash fbdf7f800bc63de7f94da73eb1e6b121 d28194e7547ae508336c97f34a13b4b290357817 078b5c9927597bce92f2f8319351ebb9acccbdb11744610fc705b2366aa0b566 Loading...

	www.jxys14.xyz/	254 B	2023-03-07	2023-07-10
Pretty URL www.jxys14.xyz/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:15 Last Seen2023-07-10 02:29:30 Times Seen148 Hash 2b060c01c124335c89db809e88d801f5 4226dea14013c0d2b6a391cebcfafc02e00d9305 46b48e8582d3035db685d90fd6ef29a676ae4f59721521c4025568c81fc43621 Loading...

	api.06fgej.com/sh/317.js	911 B	2023-03-10	2023-03-10
Pretty URL api.06fgej.com/sh/317.js IP 54.169.196.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:28:46 Last Seen2023-03-10 11:28:46 Times Seen1 Hash 08735fbae8571159cc9603d3d355ef3d 367fbc6b620574a09bcb4a855f40c82668070b41 e3a9e3a0f02b9db58c40d352de0e74c0fd8917bc9a255ab684d186a8e4ee22a6 Loading...

	push.zhanzhang.baidu.com/push.js	281 B	2023-03-07	2024-04-26
Pretty URL push.zhanzhang.baidu.com/push.js IP 182.61.201.93 ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-26 16:09:47 Times Seen19027 Hash 1bb5a3267c9865ad4abe8d937734b62b b5478dd2edb3e64242eced1db2dbd945ef81f592 674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2 Loading...

	www.jxys88.net/news/data.php	469 B	2023-03-08	2023-03-11
Pretty URL www.jxys88.net/news/data.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:44:00 Last Seen2023-03-11 22:51:19 Times Seen1 Hash 7f56be0ca5a97f81ac641229e5c24b4c 692a4379baa5daf6b4e173fb012a87641bde14d1 032baef139f9557423b7d7536a112f7bfb6b12b1a17210dec23ed069d5f2d005 Loading...

	hm.baidu.com/hm.js?2ac4a2d34c34a270e029b4996d351332	34 kB	2023-03-10	2023-03-10
Pretty URL hm.baidu.com/hm.js?2ac4a2d34c34a270e029b4996d351332 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:28:46 Last Seen2023-03-10 11:28:46 Times Seen1 Hash d17ea1a34b448ef3862893d13de928cf aa01cb6de1c7b9032f05e1d880808aee64fca9f8 0e105dd06087e929f15869da700fb148b33751121e60c4639de5bca37060bf9b Loading...

	www.herniadrhouston.com/index.php	404 B	2023-03-07	2024-04-26
Pretty URL www.herniadrhouston.com/index.php IP 45.39.29.10 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-26 13:23:16 Times Seen2980 Hash 91862680df880ab56f799547b01a5900 bd184fe6e0e046873c1a606c89ce2d3eed4b689f 6520359b93c2e43efd5a58f422af308b43c718769a0989344a10f00b345ca0b2 Loading...

	hm.baidu.com/hm.js?aecfe4a2ad79729f816997d3ee0d19b3	34 kB	2023-03-10	2023-03-10
Pretty URL hm.baidu.com/hm.js?aecfe4a2ad79729f816997d3ee0d19b3 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:28:46 Last Seen2023-03-10 11:28:46 Times Seen1 Hash 176d0481a797659c9a27f0f17333d2dd e0987e556e54e263072d3af58f44deacbe401f43 2887937773fc0df340173c858308567cbec6d426f090fb97e5e4198cfc8a324a Loading...

	api.06fgej.com/sh/328.js	862 B	2023-03-10	2023-03-10
Pretty URL api.06fgej.com/sh/328.js IP 54.169.196.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:28:46 Last Seen2023-03-10 11:28:46 Times Seen1 Hash 0dfdbe9256232b724e318506b1dbf1cd 9bd6fa88eaaf29ced04bf2ade64ce78a5a1368fe 37d5b6fe1652bf2ae1bb0ec293a313a44d92ad2555994bbf23996937c1c6571b Loading...

	www.jxys88.net/news/index.php	166 B	2023-03-07	2023-04-05
Pretty URL www.jxys88.net/news/index.php IP 173.231.12.68 ASN #18450 WEBNX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:15 Last Seen2023-04-05 02:05:15 Times Seen271 Hash 148c395b30fc62c19c4e96a387ce5080 aaad892b0553b427438079c39c45c04a4bd26683 3abae3dd940fa31948ccf4348d0b3dd0528808c33a99915e9ea06c6c9faf097c Loading...

	hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824	34 kB	2023-03-10	2023-03-10
Pretty URL hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:28:46 Last Seen2023-03-10 11:28:46 Times Seen1 Hash 28147941c144174825076db914a08b52 830e9ac15c5b48fbbd38ab06d2422b7d5d6ba6eb f335f9adc6e95578221a81d63c530b632cf141f692a3e9c905359409e40d1eac Loading...

		Size	First Seen	Last Seen
	#1 Eval - 21d92412832217293182fd7820b7aaf3	477 B	2023-03-07	2023-03-10
Pretty Observations First Seen2023-03-07 13:10:57 Last Seen2023-03-10 11:28:46 Times Seen1 Hash 21d92412832217293182fd7820b7aaf3 cafc3a6de922e19b60c51302866c0012c1be39ce c08d00aac1159de99bea3848a1baf37637bb60f581c8091048c64991a1c5a246 Loading...

		Size	First Seen	Last Seen
	#1 Write - 6b83563ff6790455d9a189afa1320899	458 B	2023-03-07	2023-03-10
Pretty Observations First Seen2023-03-07 13:10:58 Last Seen2023-03-10 11:28:46 Times Seen1 Hash 6b83563ff6790455d9a189afa1320899 37c8cdd6e7fcde99012bb21affebe56faa48fd01 63e84c8613da5cad9f15e333f3a1ecdfe2870463f7210ca1a4ce4b7fa4ccb4a1 Loading...

	#2 Write - b41c326655a1e61ea6f6dcc70f797eb7	201 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:06:53 Last Seen2024-04-25 20:37:27 Times Seen3762 Hash b41c326655a1e61ea6f6dcc70f797eb7 a416e2affbcd88fe88775b1dd7256dbb7b0e2b87 2d7d346bf62ff160f8d7d20318bedeb9dc7c79d0e2845f6061de5beabda471ca Loading...

	#3 Write - ea60702d41186f58ab88f5f095c57afd	322 B	2023-03-07	2023-03-17
Pretty Observations First Seen2023-03-07 01:17:15 Last Seen2023-03-17 10:41:04 Times Seen1 Hash ea60702d41186f58ab88f5f095c57afd d102cd49709a3406708adf761203c085b00c4b77 f03e2f7be3776755af00a0f4a5ee7efc25f217ce32ef2f271cdf36eb0dfce61e Loading...

	#4 Write - 6e0427f6dedadc7d9717e2c8983daa6a	353 B	2023-03-08	2023-03-10
Pretty Observations First Seen2023-03-08 07:05:24 Last Seen2023-03-10 11:59:28 Times Seen1 Hash 6e0427f6dedadc7d9717e2c8983daa6a ea4e2f6d89701d942189df8014fec31bd9122b19 89594bd6c5fbba7df984a7e7fe390920810be297b77f73112916401c6401cabe Loading...

HTTP Transactions (244)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 19 Oct 2022 06:51:34 GMT
Expires: Wed, 19 Oct 2022 07:44:34 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SWlC-NH45_ca4UvwmtmWXGTo9qMA_YJ78YquksQLWknl8zWaRjcNvQ==
Age: 2834

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
24a97183f836954e0f05c4dc794ff4d1
52778bbe39b9f736c16b5798575d1d96607ce9d0
01f6721f2674f54662fff590fdf7247cc8c58a3f84906cae75527fb7b6dd2436

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01F6721F2674F54662FFF590FDF7247CC8C58A3F84906CAE75527FB7B6DD2436"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3642
Expires: Wed, 19 Oct 2022 08:39:30 GMT
Date: Wed, 19 Oct 2022 07:38:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
533e1d53f291993ed5886f88a85c6e55
eb4396e8422f71168d32ac6ff3ef49496f625e62
0d1b73b2a228fe76bf14688e603741025a40803971e05570f873b28788334b33

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D1B73B2A228FE76BF14688E603741025A40803971E05570F873B28788334B33"
Last-Modified: Mon, 17 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11575
Expires: Wed, 19 Oct 2022 10:51:43 GMT
Date: Wed, 19 Oct 2022 07:38:48 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: h9YVQ/nzjasd264Z28d4mi/ZIbDXxoR1TgyEd93WS4x5wBboYLv0zNDIfH1KaU9OlkfI+Q2w1jY=
x-amz-request-id: RNDV3ZBQ6JVQ8D6B
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 19 Oct 2022 07:04:10 GMT
age: 2078
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

herniadrhouston.com/

45.39.29.10

301 Moved Permanently

0 B

URL HTTP/1.1
herniadrhouston.com/
IP
45.39.29.10:0
ASN
#18779 EGIHOSTING

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: herniadrhouston.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 19 Oct 2022 07:38:48 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.herniadrhouston.com/index.php

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 19 Oct 2022 06:43:40 GMT
Cache-Control: max-age=3600
Expires: Wed, 19 Oct 2022 07:01:37 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IuDUMaxJuFavvdDqOxnzOEYvz-a8k8GXqGn0X3mB8Nt05TUW3dZEGg==
Age: 3308

www.herniadrhouston.com/index.php

45.39.29.10

200 OK

783 B

URL HTTP/1.1
www.herniadrhouston.com/index.php
IP
45.39.29.10:0
ASN
#18779 EGIHOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators
Size
783 B (783 bytes)
Hash
0008ac34017a3900006546798c5768b3
69bedef39cd5b67f330f8ea833e2ff75c28c264b
0a3ed236879419087e3802d632dc82378296144bb9ce2cd5a8f8340eb5d1cd49

HTTP Headers

GET /index.php HTTP/1.1
Host: www.herniadrhouston.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 19 Oct 2022 07:38:48 GMT
Content-Type: text/html
Content-Length: 783
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c9b278637bdca251f78b46e4a0850473
a48fe5095fc27af1c6b6628149d9e8f655295621
eea38f271e134a85a7b586631a8831888ab81f0edb33120b26bd35cdfa032e52

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2869
Cache-Control: max-age=90945
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:49 GMT
Etag: "634e5e95-1d7"
Expires: Thu, 20 Oct 2022 08:54:34 GMT
Last-Modified: Tue, 18 Oct 2022 08:06:45 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

www.herniadrhouston.com/tj.js

45.39.29.10

200 OK

520 B

URL HTTP/1.1
www.herniadrhouston.com/tj.js
IP
45.39.29.10:0
ASN
#18779 EGIHOSTING

File type
ASCII text, with CRLF line terminators
Size
520 B (520 bytes)
Hash
201dd7e40e7339ed3282fbdf40c1c583
862a8ba838ace9b09537cffb79e36106df92de83
b7bf4c87a1a23bf2fdb212ec234c808f1373ace0aac14db94800d3840b20e85d

HTTP Headers

GET /tj.js HTTP/1.1
Host: www.herniadrhouston.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.herniadrhouston.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 19 Oct 2022 07:38:49 GMT
Content-Type: application/x-javascript
Content-Length: 520
Connection: keep-alive

push.services.mozilla.com/

52.41.252.32

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.41.252.32:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A/01czzL9glwVYs9HmOLoQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Z2s4iLu8iyOkIQt5sYeS1G969KM=

www.herniadrhouston.com/common.js

45.39.29.10

200 OK

738 B

URL HTTP/1.1
www.herniadrhouston.com/common.js
IP
45.39.29.10:0
ASN
#18779 EGIHOSTING

File type
HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Size
738 B (738 bytes)
Hash
70670d0986c3d241b2799f9b5ae5e100
e0a9285c476b9339f8ee575c4cbc26ecfc4d0a8b
788c72241a91da39f72a02d61ea2da8aa6a57d0db6b1118e583ad166b61b1ea6

HTTP Headers

GET /common.js HTTP/1.1
Host: www.herniadrhouston.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.herniadrhouston.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 19 Oct 2022 07:38:49 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

push.zhanzhang.baidu.com/push.js

182.61.201.93

200 OK

227 B

URL HTTP/1.1
push.zhanzhang.baidu.com/push.js
IP
182.61.201.93:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with no line terminators
Size
227 B (227 bytes)
Hash
e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5

HTTP Headers

GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.herniadrhouston.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Wed, 19 Oct 2022 07:38:49 GMT
Etag: "4078521116"
Expires: Thu, 19 Oct 2023 07:38:49 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=D1C199000941C34E1B969A2A89751EB9:FG=1; max-age=31536000; expires=Thu, 19-Oct-23 07:38:49 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c4feda3ab3b25be2dddae78a164ad8cb
60331872012735a8f0be26787fa5059b070297f2
7af931fca06196c7e0cabfb1756808e26bede28ba54e94f99c3084c672f77239

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7AF931FCA06196C7E0CABFB1756808E26BEDE28BA54E94F99C3084C672F77239"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15952
Expires: Wed, 19 Oct 2022 12:04:41 GMT
Date: Wed, 19 Oct 2022 07:38:49 GMT
Connection: keep-alive

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
6c533fc6619df5360636bd840599779f
1bb9a1ac21048aaa16fe361dcbc40da12f87b802
38eacac9d8d9f5ffc9aa02ab90eda40f56441eef4f44fab884f456527cf04af3

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:50 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 23 Oct 2022 05:48:27 GMT
ETag: "1bb9a1ac21048aaa16fe361dcbc40da12f87b802"
Last-Modified: Wed, 19 Oct 2022 05:48:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2435
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75c7db3efee6b515-OSL

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7271
Expires: Wed, 19 Oct 2022 09:40:01 GMT
Date: Wed, 19 Oct 2022 07:38:50 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7271
Expires: Wed, 19 Oct 2022 09:40:01 GMT
Date: Wed, 19 Oct 2022 07:38:50 GMT
Connection: keep-alive

www.jxys88.net/news/index.php

173.231.12.68

200 OK

1.7 kB

URL HTTP/2
www.jxys88.net/news/index.php
IP
173.231.12.68:0
ASN
#18450 WEBNX

File type
data
Size
1.7 kB (1737 bytes)
Hash
c95ef1d4f6dc82070d7420158d8903f7
6ed657441659f1eb17c4ef9fae8be41cd75f6d4e
4df6f25295dc1b31cad02a0cff47f2471b3ad2c6bbc114bb6b4276479efb562a

HTTP Headers

GET /news/index.php HTTP/1.1
Host: www.jxys88.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.herniadrhouston.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:49 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7271
Expires: Wed, 19 Oct 2022 09:40:01 GMT
Date: Wed, 19 Oct 2022 07:38:50 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F930c4fbc-71e1-4a9f-9906-859379701be9.jpeg

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F930c4fbc-71e1-4a9f-9906-859379701be9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9129 bytes)
Hash
40f819b2d90eea9b4a6de0a7bf764cce
6528d63d04c30638fa11328d2145c3e36661f11e
998ca60b05b85d184d590a4b1ecc430395249f7bd134a2fbf2fa7e4232f89bd5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F930c4fbc-71e1-4a9f-9906-859379701be9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9129
x-amzn-requestid: eed778be-9b5d-4ebe-b503-f7048da1e311
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aOFouGyMoAMFmrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f1c9e-19e09ede0124e0ab212167fd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: XdlCUEyPlnhQvHS18Ci57rqPZNi_Aq9cYofsFpW98owdeOSGN1MPZQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 21:43:08 GMT
etag: "6528d63d04c30638fa11328d2145c3e36661f11e"
content-type: image/jpeg
age: 35742
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05c7bc81-316c-4f0d-bb3e-28d892d65e29.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9070 bytes)
Hash
ccb0f6ae2ffc84b77d6048ab25ab3c91
4cbe904deab4f29866b499d55c0cd646de67fdb8
743c9908b18412433934d58665bd5c5aeded03cc48be57e916a43f79e2c664b0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05c7bc81-316c-4f0d-bb3e-28d892d65e29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9070
x-amzn-requestid: 3f5c3e27-e6e2-45b1-a986-853dbfbe2813
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aOFBfEbJoAMF-iQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f1ba2-6a359b2847d892f12bb2b9a4;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 21:33:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8EHDb0C1ZGKbEfs8XDoBis3QUhH-Igwdcv0q0FChhX3biFeqJfnsA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 22:07:58 GMT
age: 34252
etag: "4cbe904deab4f29866b499d55c0cd646de67fdb8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1225a0a3-d0b6-4370-9d9b-3c7fe884d8e7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8492 bytes)
Hash
8c03e9d833ec110dd7c26124f52c1086
364ef2b925c8419b261f2df2db9f22f3f941d511
aaef9690d51ebe0668876cde7b20a5f927723daf5dd32cf8816c1c8c2e0156e5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1225a0a3-d0b6-4370-9d9b-3c7fe884d8e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8492
x-amzn-requestid: 632dbb5f-9f8d-4fed-ad42-c5503f59e7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aBrITEJHoAMFXxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634a2568-51031ecb53b9b849467e914e;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 03:13:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qybO_Aib4LN0pCXRBOKL29ucrstHW9jNibQlzIKB6K2AqmBrd9gcBg==
via: 1.1 332ef4544bd8b531e8f11abaa4197c08.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 06:21:15 GMT
age: 4655
etag: "364ef2b925c8419b261f2df2db9f22f3f941d511"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b5a91b4-f537-421e-8b13-62843ad940ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7702 bytes)
Hash
92a90f3b620eabc7ed15fa14182ab0d1
2250764fd089f9b34180ef5cfd20dc3486261107
40ffc2e0b243630aba041940aa239c82720057525b9591399c4cfcefa3509b56

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b5a91b4-f537-421e-8b13-62843ad940ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7702
x-amzn-requestid: 8fa4e14b-317b-4ca8-9a32-52e58f493a69
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aBsM-EUEIAMF8Sg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634a271f-07a02fd8190b163d50ebb5c4;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 03:21:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TzOjtmvdmf1X8EeDJiOHrqZ6Lafujfzhpk-rqtx29F_3y_EyvL-nxQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 07:55:33 GMT
age: 85397
etag: "2250764fd089f9b34180ef5cfd20dc3486261107"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bf804b9-106b-4b42-b666-1788ceaf7278.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11185 bytes)
Hash
7b10da6ec04c02af8d9dc77fe98905f3
86441999a290c69c8efd603613bcbae94e9e3c47
3e95090beb5e0fd5b3f80a62a24746a139baf4f81b6ed1a5ce714b46c54c20d9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bf804b9-106b-4b42-b666-1788ceaf7278.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11185
x-amzn-requestid: 6b074a8f-dc0c-4e08-8f08-583d9bf12fc9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aOFDoEe_IAMF7sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f1bb0-5e005ff635cfcb99629b9abd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 21:33:36 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3WuoxfCK1xoD5it6ZY--B0wbYj7lUNGbHtPgkwLYt6Uk19cGulsMPg==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 21:53:09 GMT
age: 35141
etag: "86441999a290c69c8efd603613bcbae94e9e3c47"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

35 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc809406-f843-4494-9a76-eab77bec4daa.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
35 kB (35276 bytes)
Hash
b683fafb36238c7da6be76247f60600b
e975f7a307a970ab45b03f861fd7d875ec66028d
b65fa7f3e7e0d999ebdfc1a4beb74e21221e4ceabd9e57ed0af6ab4560e12fdd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc809406-f843-4494-9a76-eab77bec4daa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 35276
x-amzn-requestid: 6e8a79ad-d0f3-4290-a1ed-ef9b1239f193
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aOFApGzbIAMFRGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f1b9d-65cf1b926ab122b1716a2983;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 21:33:17 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hPbTIgByMSbi22qlqk74Vk8h6AWf5DxSWDZHjew5y-RHl6X0uRu_wQ==
via: 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 21:42:49 GMT
age: 35761
etag: "e975f7a307a970ab45b03f861fd7d875ec66028d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

api.share.baidu.com/s.gif?l=http://www.herniadrhouston.com/index.php

182.61.240.101

200 OK

0 B

URL HTTP/1.1
api.share.baidu.com/s.gif?l=http://www.herniadrhouston.com/index.php
IP
182.61.240.101:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s.gif?l=http://www.herniadrhouston.com/index.php HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.herniadrhouston.com/

HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Wed, 19 Oct 2022 07:38:50 GMT

hm.baidu.com/hm.js?aecfe4a2ad79729f816997d3ee0d19b3

103.235.46.191

200 OK

13 kB

URL HTTP/1.1
hm.baidu.com/hm.js?aecfe4a2ad79729f816997d3ee0d19b3
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
13 kB (12648 bytes)
Hash
0f8b5364cafd6ac183cf8269fa77c74e
b164b904d969ea4dcd6dbaf8868413441832d063
5321e8102e374ba80ebba3667a26a4b76d5b65395009ce5f5e86eba8b778d9a3

HTTP Headers

GET /hm.js?aecfe4a2ad79729f816997d3ee0d19b3 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.herniadrhouston.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 12648
Content-Type: application/javascript
Date: Wed, 19 Oct 2022 07:38:50 GMT
Etag: 3e13d92b0a3574c55532eebe1a3f9234
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=1E62280CD9A0F88E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824

103.235.46.191

200 OK

13 kB

URL HTTP/1.1
hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (619)
Size
13 kB (12650 bytes)
Hash
689c1992db99da3e2e4a5aebce42d507
71c7d6da89b2abace5b1ac5883f094416429d5e9
df3a0dad9d2c161f4047fe68ec0b84b6a8469c4f3ab0caf6518251e0fa94dc3a

HTTP Headers

GET /hm.js?ac926d0332f02f4f5a734812940af824 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.herniadrhouston.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 12650
Content-Type: application/javascript
Date: Wed, 19 Oct 2022 07:38:50 GMT
Etag: 06e63e42723dbe35a47e8c6b98c24a43
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=BD991F31D57E36E7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1751440639&si=aecfe4a2ad79729f816997d3ee0d19b3&v=1.2.99&lv=1&sn=3300&r=0&ww=1280&u=http%3A%2F%2Fwww.herniadrhouston.com%2Findex.php&tt=%E6%BF%AE%E9%98%B3%E9%A5%B2%E7%96%9A%E6%96%B0%E6%9D%90%E6%96%99%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1751440639&si=aecfe4a2ad79729f816997d3ee0d19b3&v=1.2.99&lv=1&sn=3300&r=0&ww=1280&u=http%3A%2F%2Fwww.herniadrhouston.com%2Findex.php&tt=%E6%BF%AE%E9%98%B3%E9%A5%B2%E7%96%9A%E6%96%B0%E6%9D%90%E6%96%99%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1751440639&si=aecfe4a2ad79729f816997d3ee0d19b3&v=1.2.99&lv=1&sn=3300&r=0&ww=1280&u=http%3A%2F%2Fwww.herniadrhouston.com%2Findex.php&tt=%E6%BF%AE%E9%98%B3%E9%A5%B2%E7%96%9A%E6%96%B0%E6%9D%90%E6%96%99%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.herniadrhouston.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 19 Oct 2022 07:38:51 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=023D682B8D494B40; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=599773776&si=ac926d0332f02f4f5a734812940af824&v=1.2.99&lv=1&sn=3300&r=0&ww=1280&u=http%3A%2F%2Fwww.herniadrhouston.com%2Findex.php&tt=%E6%BF%AE%E9%98%B3%E9%A5%B2%E7%96%9A%E6%96%B0%E6%9D%90%E6%96%99%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=599773776&si=ac926d0332f02f4f5a734812940af824&v=1.2.99&lv=1&sn=3300&r=0&ww=1280&u=http%3A%2F%2Fwww.herniadrhouston.com%2Findex.php&tt=%E6%BF%AE%E9%98%B3%E9%A5%B2%E7%96%9A%E6%96%B0%E6%9D%90%E6%96%99%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=599773776&si=ac926d0332f02f4f5a734812940af824&v=1.2.99&lv=1&sn=3300&r=0&ww=1280&u=http%3A%2F%2Fwww.herniadrhouston.com%2Findex.php&tt=%E6%BF%AE%E9%98%B3%E9%A5%B2%E7%96%9A%E6%96%B0%E6%9D%90%E6%96%99%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.herniadrhouston.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 19 Oct 2022 07:38:51 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=F80A8FB5E0C4159D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cf6724ec6e36306a3f48f5e81c5fc7ef
fb5ade95ef604d34af697eba1fd45352e02a3a20
f94921f37da9ac27c6f4d2a7aef2366bdb9bfe6975ce95145ff558dbc72a09bc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F94921F37DA9AC27C6F4D2A7AEF2366BDB9BFE6975CE95145FF558DBC72A09BC"
Last-Modified: Wed, 19 Oct 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 19 Oct 2022 13:38:52 GMT
Date: Wed, 19 Oct 2022 07:38:52 GMT
Connection: keep-alive

www.jxys14.xyz/template/m1938pc/html9/ads/1.gif

173.231.38.5

200 OK

254 B

URL HTTP/2
www.jxys14.xyz/template/m1938pc/html9/ads/1.gif
IP
173.231.38.5:0
ASN
#18450 WEBNX

File type
GIF image data, version 89a, 16 x 17\012- data
Size
254 B (254 bytes)
Hash
b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef

HTTP Headers

GET /template/m1938pc/html9/ads/1.gif HTTP/1.1
Host: www.jxys14.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:52 GMT
content-type: image/gif
content-length: 254
last-modified: Sat, 02 Apr 2022 12:20:12 GMT
etag: "62483f7c-fe"
expires: Fri, 18 Nov 2022 07:38:52 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jxys14.xyz/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff

173.231.38.5

200 OK

13 kB

URL HTTP/2
www.jxys14.xyz/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff
IP
173.231.38.5:0
ASN
#18450 WEBNX

File type
Web Open Font Format, TrueType, length 13408, version 1.0\012- data
Size
13 kB (13408 bytes)
Hash
99af6debcdaba3e7ffe01b4c3cbccacb
4efda64b06cd7c294f6214623bcb634f3def3bd1
1106aebd6819da7203324abc443186658c8f54180a460ccc5b83553c5ce34f72

HTTP Headers

GET /template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff HTTP/1.1
Host: www.jxys14.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.jxys14.xyz/template/m1938pc/static/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:52 GMT
content-type: font/woff
content-length: 13408
last-modified: Fri, 14 Jan 2022 04:47:30 GMT
etag: "61e10062-3460"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

tu.ob168.cc/tu/tt1.gif

103.55.25.226

200 OK

23 kB

URL HTTP/1.1
tu.ob168.cc/tu/tt1.gif
IP
103.55.25.226:0
ASN
#55933 Cloudie Limited

File type
GIF image data, version 89a, 960 x 80\012- data
Size
23 kB (23072 bytes)
Hash
aa41b5478e7ee58073b7b2a6d552010e
de93de2cda74726f8ba1a880f2862e670a166122
250d8df2360a6380d3927e65a126754e6424485333718c594fbaed325855314c

HTTP Headers

GET /tu/tt1.gif HTTP/1.1
Host: tu.ob168.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 19 Oct 2022 07:38:53 GMT
Content-Type: image/gif
Content-Length: 23072
Last-Modified: Fri, 14 Oct 2022 13:34:32 GMT
Connection: keep-alive
ETag: "63496568-5a20"
Expires: Fri, 18 Nov 2022 07:38:53 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

hm.baidu.com/hm.js?2ac4a2d34c34a270e029b4996d351332

103.235.46.191

200 OK

13 kB

URL HTTP/1.1
hm.baidu.com/hm.js?2ac4a2d34c34a270e029b4996d351332
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (618)
Size
13 kB (12649 bytes)
Hash
bad7441464316d4ba992fc2d89cfa925
38bebbad63b69b1cc3531453edd59282151e0393
b206c04874040e83e6b1416411afea9b3738571e1299b607684a8fa91f2b17d6

HTTP Headers

GET /hm.js?2ac4a2d34c34a270e029b4996d351332 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 12649
Content-Type: application/javascript
Date: Wed, 19 Oct 2022 07:38:52 GMT
Etag: 2cbf6e3d3456b399eda2a5c629447c22
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=FA6CC77AAF7AB067; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc815c5e4b912932ef3e6543cf156572
517cc087704ef6f339fc09f3d74dd2bc645ab4ef
f1f9a8b5173cbdf76fa0b278e628794a8a791833511bb991391ecafb20c92078

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F1F9A8B5173CBDF76FA0B278E628794A8A791833511BB991391ECAFB20C92078"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13892
Expires: Wed, 19 Oct 2022 11:30:25 GMT
Date: Wed, 19 Oct 2022 07:38:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a50b59957acd1d88f64f8457e7d32541
61195850422d630155c9d10c3b3813a3838036d4
529a22faf515932ee60f8968f42266cddbf6c1615c4c8b7686cf2dcfd984e2cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "529A22FAF515932EE60F8968F42266CDDBF6C1615C4C8B7686CF2DCFD984E2CF"
Last-Modified: Mon, 17 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9400
Expires: Wed, 19 Oct 2022 10:15:33 GMT
Date: Wed, 19 Oct 2022 07:38:53 GMT
Connection: keep-alive

kvmaa.com/0faf263b1025a51efcea7acd844cc402.gif

78.46.107.74

301 Moved Permanently

162 B

URL HTTP/2
kvmaa.com/0faf263b1025a51efcea7acd844cc402.gif
IP
78.46.107.74:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /0faf263b1025a51efcea7acd844cc402.gif HTTP/1.1
Host: kvmaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:53 GMT
content-type: text/html
content-length: 162
location: https://nvhbbb.top/0faf263b1025a51efcea7acd844cc402.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a50b59957acd1d88f64f8457e7d32541
61195850422d630155c9d10c3b3813a3838036d4
529a22faf515932ee60f8968f42266cddbf6c1615c4c8b7686cf2dcfd984e2cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "529A22FAF515932EE60F8968F42266CDDBF6C1615C4C8B7686CF2DCFD984E2CF"
Last-Modified: Mon, 17 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9400
Expires: Wed, 19 Oct 2022 10:15:33 GMT
Date: Wed, 19 Oct 2022 07:38:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
964adee0bb32fd65df5b8d423fccd071
bca71623e3b04881036c99ea0ea2eaf217b6590d
759e42123bea5ad721b0cdd0aabd8e8ac4cf8570328b67743dad8da29104bdb8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "759E42123BEA5AD721B0CDD0AABD8E8AC4CF8570328B67743DAD8DA29104BDB8"
Last-Modified: Mon, 17 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12414
Expires: Wed, 19 Oct 2022 11:05:47 GMT
Date: Wed, 19 Oct 2022 07:38:53 GMT
Connection: keep-alive

kvemm.com/c70f7dd4a4c94432f7e7dfd8886c435b.gif

104.143.94.110

301 Moved Permanently

162 B

URL HTTP/2
kvemm.com/c70f7dd4a4c94432f7e7dfd8886c435b.gif
IP
104.143.94.110:0
ASN
#201106 Spartan Host Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /c70f7dd4a4c94432f7e7dfd8886c435b.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:53 GMT
content-type: text/html
content-length: 162
location: https://kvhhhh.top/c70f7dd4a4c94432f7e7dfd8886c435b.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
a450b148b3237501f103e0eb7d5f6b36
8fbb7705e7f7731c700776264045d0664af7b210
6170f1b09992552278e659cb5df38aaaa5db9048c4954de8b9646c0e9a3946df

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 23 Oct 2022 05:00:30 GMT
ETag: "8fbb7705e7f7731c700776264045d0664af7b210"
Last-Modified: Wed, 19 Oct 2022 05:00:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1137
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75c7db572a95b511-OSL

kvmaa.com/99d9b625f2ad0e82d1c36c0d0f18e725.gif

78.46.107.74

301 Moved Permanently

162 B

URL HTTP/2
kvmaa.com/99d9b625f2ad0e82d1c36c0d0f18e725.gif
IP
78.46.107.74:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /99d9b625f2ad0e82d1c36c0d0f18e725.gif HTTP/1.1
Host: kvmaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:53 GMT
content-type: text/html
content-length: 162
location: https://nvhbbb.top/99d9b625f2ad0e82d1c36c0d0f18e725.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
003e9fcc1cf022ecd783082c630923bd
e0e20e0301b2059ff60695b01bced8cb34d7f629
5058f0bc9edc477e489ad03b2567a6e453b5a7e6f4d45f437147ec38fd260cdc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 18 Oct 2022 00:22:25 GMT
Expires: Tue, 25 Oct 2022 00:22:24 GMT
Etag: "e0e20e0301b2059ff60695b01bced8cb34d7f629"
Cache-Control: max-age=491610,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db571b41b512-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
0f124b7ee400dc9d56640847a6d08f43
99e78033eebea2e7426b54482a3786b03b650fe1
50d0549f28f5c553004ccd2689db13b03fcdee204fb60ac1152f179c6a140818

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 06:36:27 GMT
Expires: Mon, 24 Oct 2022 06:36:26 GMT
Etag: "99e78033eebea2e7426b54482a3786b03b650fe1"
Cache-Control: max-age=427652,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db5749c81bfe-OSL

ob168.cc/bb12345.gif

103.55.25.226

200 OK

43 kB

URL HTTP/1.1
ob168.cc/bb12345.gif
IP
103.55.25.226:0
ASN
#55933 Cloudie Limited

File type
GIF image data, version 89a, 960 x 80\012- data
Size
43 kB (43115 bytes)
Hash
a09229886e70f6c39716c3b8434f6520
cfaaca7c2ad891e74ce827ca82ae0cd554834444
b848c9dcaf05e2c39472758ab0d0701cb4672651dafcb6c411d0c45fe0289a4c

HTTP Headers

GET /bb12345.gif HTTP/1.1
Host: ob168.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 19 Oct 2022 07:38:53 GMT
Content-Type: image/gif
Content-Length: 43115
Last-Modified: Wed, 12 Oct 2022 08:19:28 GMT
Connection: keep-alive
ETag: "63467890-a86b"
Expires: Fri, 18 Nov 2022 07:38:53 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e00cfd0ca9058aa5c798fa0006193fb0
93545e015b6caa6c9423e3ab46e29fc15b9741e2
59677d788a1fb0e3bfd575d536c18bec48306ca35bf63ec677a6d6dcff4593d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59677D788A1FB0E3BFD575D536C18BEC48306CA35BF63EC677A6D6DCFF4593D1"
Last-Modified: Mon, 17 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3732
Expires: Wed, 19 Oct 2022 08:41:06 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f9b28538ba1925c4850aba3243207ef3
72e4e9cb34cbd8ffb9a915dadb8d24e5f5356c08
7a5be93f9c15199501b69ef45bafeda016d9cce82e6a98d1e103dfddbfcd1656

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7A5BE93F9C15199501B69EF45BAFEDA016D9CCE82E6A98D1E103DFDDBFCD1656"
Last-Modified: Mon, 17 Oct 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18283
Expires: Wed, 19 Oct 2022 12:43:37 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

dimg04.c-ctrip.com/images/0102y120009tf26vrA1E9.gif?proc=autoorient

104.110.17.24

200 OK

151 kB

URL HTTP/2
dimg04.c-ctrip.com/images/0102y120009tf26vrA1E9.gif?proc=autoorient
IP
104.110.17.24:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 960 x 120\012- data
Size
151 kB (151061 bytes)
Hash
89c820a186cb325d9979cdae663875eb
e9dbc77e9d46e03ebec28aaca2bf5e302767064f
9116f460b6f4c7d03cf9be95d414ba83d6bcba145a4f1eddd9decec6127e0ade

HTTP Headers

GET /images/0102y120009tf26vrA1E9.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 151061
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=11688859
expires: Fri, 03 Mar 2023 14:33:13 GMT
date: Wed, 19 Oct 2022 07:38:54 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2

dimg04.c-ctrip.com/images/0Z05r12000a1q2ru71C64.gif

104.110.17.24

200 OK

415 kB

URL HTTP/2
dimg04.c-ctrip.com/images/0Z05r12000a1q2ru71C64.gif
IP
104.110.17.24:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 960 x 80\012- data
Size
415 kB (414559 bytes)
Hash
1a2cba8175d957d2379d06e6d2d4250d
190eb918616fa53aaca8a53b917f2627e626fecc
17e78ffe065be76212de6b960082ea287cc0e712b6f170f44c63e2144ec14c84

HTTP Headers

GET /images/0Z05r12000a1q2ru71C64.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 414559
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=14345330
expires: Mon, 03 Apr 2023 08:27:44 GMT
date: Wed, 19 Oct 2022 07:38:54 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2

tt.1468tu.com/58tu/405x204.gif

167.71.218.143

301 Moved Permanently

166 B

URL HTTP/1.1
tt.1468tu.com/58tu/405x204.gif
IP
167.71.218.143:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
166 B (166 bytes)
Hash
3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691

HTTP Headers

GET /58tu/405x204.gif HTTP/1.1
Host: tt.1468tu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Wed, 19 Oct 2022 07:38:53 GMT
Content-Type: text/html
Content-Length: 166
Connection: keep-alive
Location: https://tt.1468tu.com:1382/58tu/405x204.gif
Server: X-Y

i.ibb.co/tL26d3m/240x140.gif

51.210.3.236

200 OK

360 kB

URL HTTP/2
i.ibb.co/tL26d3m/240x140.gif
IP
51.210.3.236:0
ASN
#16276 OVH SAS

File type
GIF image data, version 89a, 250 x 140\012- data
Size
360 kB (359778 bytes)
Hash
2373284fae9ce56090a43e645463367a
d8437327a4f709bfc78bb715121f2eff9f59b052
c4739c5646d1f04df546b713a09d526661651c3a3e5be9c3750d75384420ee86

HTTP Headers

GET /tL26d3m/240x140.gif HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:53 GMT
content-type: image/gif
content-length: 359778
last-modified: Sun, 16 Oct 2022 07:05:37 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
92b3c1825f0cced1db622db151a4acfc
0f0ef9a726da157534a6f2e2f71bdaae78872584
75a887f482c1f9abd91bd90cff273be767ba12c6bee5599296a217828373d6f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75A887F482C1F9ABD91BD90CFF273BE767BA12C6BEE5599296A217828373D6F3"
Last-Modified: Mon, 17 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16941
Expires: Wed, 19 Oct 2022 12:21:15 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

ob699.cc/xxx12345.gif

103.55.25.226

200 OK

20 kB

URL HTTP/1.1
ob699.cc/xxx12345.gif
IP
103.55.25.226:0
ASN
#55933 Cloudie Limited

File type
GIF image data, version 89a, 225 x 135\012- data
Size
20 kB (19781 bytes)
Hash
74f156899d26c1a1ef9108ee4023052d
3d2f15dc81ee27a7832947bbb59a7836ccc7f027
b9d31d39b1bcf37b577c5b74c1b8742819a003052d35cdc72e829143e96f29f0

HTTP Headers

GET /xxx12345.gif HTTP/1.1
Host: ob699.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 19 Oct 2022 07:38:53 GMT
Content-Type: image/gif
Content-Length: 19781
Last-Modified: Sat, 01 Oct 2022 06:45:45 GMT
Connection: keep-alive
ETag: "6337e219-4d45"
Expires: Fri, 18 Nov 2022 07:38:53 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
2a18bad18ca3c746416cb205684980fc
b7910c77c03e1ae0cd577fcdd957266b5cf9f390
d3b9dfc98579267374af466abb0b89eb60cdc00ab73b8f9ed9ab0ae9af97e57e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1324
Cache-Control: max-age=145819
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:54 GMT
Etag: "634f3afd-117"
Expires: Fri, 21 Oct 2022 00:09:13 GMT
Last-Modified: Tue, 18 Oct 2022 23:47:09 GMT
Server: ECS (amb/6B86)
X-Cache: HIT
Content-Length: 279

i.ibb.co/KymtVJH/960x100.gif

51.210.3.236

200 OK

763 kB

URL HTTP/2
i.ibb.co/KymtVJH/960x100.gif
IP
51.210.3.236:0
ASN
#16276 OVH SAS

File type
GIF image data, version 89a, 960 x 100\012- data
Size
763 kB (763448 bytes)
Hash
211b3f3a7f99ee8690441e79bb92c9e6
9696cb1a4c3d265480e2cd96b6751a63515eab5a
72ac7b0afc27e3d1126dd65844d5de46f57ba6d256676286161c5593415842a8

HTTP Headers

GET /KymtVJH/960x100.gif HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:53 GMT
content-type: image/gif
content-length: 763448
last-modified: Sun, 16 Oct 2022 07:04:56 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

kvemm.com/0eddc09b941df608c7dbb65fd7344c05.gif

104.143.94.110

301 Moved Permanently

162 B

URL HTTP/2
kvemm.com/0eddc09b941df608c7dbb65fd7344c05.gif
IP
104.143.94.110:0
ASN
#201106 Spartan Host Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /0eddc09b941df608c7dbb65fd7344c05.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: text/html
content-length: 162
location: https://kvhhhh.top/0eddc09b941df608c7dbb65fd7344c05.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
003e9fcc1cf022ecd783082c630923bd
e0e20e0301b2059ff60695b01bced8cb34d7f629
5058f0bc9edc477e489ad03b2567a6e453b5a7e6f4d45f437147ec38fd260cdc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 18 Oct 2022 00:22:25 GMT
Expires: Tue, 25 Oct 2022 00:22:24 GMT
Etag: "e0e20e0301b2059ff60695b01bced8cb34d7f629"
Cache-Control: max-age=491609,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db5719481bfa-OSL

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
6047f05f60c26fc0b7796e0a52514d19
e2503ff3b960b95967da6a7411abe549c4d897bb
54c49c5391b32840e70214c84557f06de2fd62aa7fd3109dcb8191a3497766f2

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 12:29:18 GMT
Expires: Mon, 24 Oct 2022 12:29:17 GMT
Etag: "e2503ff3b960b95967da6a7411abe549c4d897bb"
Cache-Control: max-age=448822,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db57ba770af6-OSL

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c5950a7d51ed111cf3a8591a858cee9f
63d4027720f731e2bfd32d8e7b513f0f0c7525ca
8bad63f0f2f6d59360f3b1393c459e54d748baa16df37392f781af1e71570fd9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BAD63F0F2F6D59360F3B1393C459E54D748BAA16DF37392F781AF1E71570FD9"
Last-Modified: Mon, 17 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5200
Expires: Wed, 19 Oct 2022 09:05:34 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

kvhmm.com/94747760f9a86fa539e3ba23345db0a4.gif

78.46.107.74

301 Moved Permanently

162 B

URL HTTP/2
kvhmm.com/94747760f9a86fa539e3ba23345db0a4.gif
IP
78.46.107.74:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /94747760f9a86fa539e3ba23345db0a4.gif HTTP/1.1
Host: kvhmm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: text/html
content-length: 162
location: https://kvtfff.top/94747760f9a86fa539e3ba23345db0a4.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.jxys14.xyz/template/m1938pc/static/css/white.css

173.231.38.5

200 OK

161 kB

URL HTTP/2
www.jxys14.xyz/template/m1938pc/static/css/white.css
IP
173.231.38.5:0
ASN
#18450 WEBNX

File type
data
Size
161 kB (161192 bytes)
Hash
68e5efecdec7477b9cd83ede806b7d75
1e43387b61af2d3e16100046c6c58806c3b2c86f
24cf0800cb2cefa5c09bc662c9064a3264a20b54b3ce0193fc859a64cb495f06

HTTP Headers

GET /template/m1938pc/static/css/white.css HTTP/1.1
Host: www.jxys14.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:52 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:10 GMT
vary: Accept-Encoding
etag: W/"61e10012-29d9"
expires: Wed, 19 Oct 2022 19:38:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c2660807a6bb6b38592267fd17237114
0e08016c73377f79c5db4bb4f8c5d36baaba4d69
f47b4bc823c3b5ca7feea02498c6d1685437e9f7b2b4669a385cc26905b289dc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F47B4BC823C3B5CA7FEEA02498C6D1685437E9F7B2B4669A385CC26905B289DC"
Last-Modified: Mon, 17 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8509
Expires: Wed, 19 Oct 2022 10:00:43 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

kvevv.com/7546c860e55fa3bf22e5cd95994dd097.gif

104.143.94.110

301 Moved Permanently

162 B

URL HTTP/2
kvevv.com/7546c860e55fa3bf22e5cd95994dd097.gif
IP
104.143.94.110:0
ASN
#201106 Spartan Host Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /7546c860e55fa3bf22e5cd95994dd097.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: text/html
content-length: 162
location: https://kvhyyy.top/7546c860e55fa3bf22e5cd95994dd097.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
abf0ea31a3e8ba7d27fdbdb56fbe2328
deadf44c7f5c4e42deeb4b40ce191e296a6e4fa5
00e308c2d3f96d8708062a3ec0306913f9d445fd8c0d56e2a694a28f6e7b3d4c

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "00E308C2D3F96D8708062A3EC0306913F9D445FD8C0D56E2A694A28F6E7B3D4C"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 19 Oct 2022 13:38:54 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

kzeaa.com/9f40845b27097d68beff34e10f37d7ef.gif

66.150.130.123

301 Moved Permanently

162 B

URL HTTP/2
kzeaa.com/9f40845b27097d68beff34e10f37d7ef.gif
IP
66.150.130.123:0
ASN
#35913 DEDIPATH-LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /9f40845b27097d68beff34e10f37d7ef.gif HTTP/1.1
Host: kzeaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: text/html
content-length: 162
location: https://acoossi.top/9f40845b27097d68beff34e10f37d7ef.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
32286195f50efb0f693d749876d78e09
035974c0d387bd7ca71eee3224dafa093dd60276
6ee8026f70daa6fe2e5ee73c749a91415c1279c23de7269e9027daff8b776b78

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=120476
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:54 GMT
Etag: "634edd2a-117"
Expires: Thu, 20 Oct 2022 17:06:50 GMT
Last-Modified: Tue, 18 Oct 2022 17:06:50 GMT
Server: nginx
Content-Length: 279

kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif

66.150.130.123

301 Moved Permanently

162 B

URL HTTP/2
kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
IP
66.150.130.123:0
ASN
#35913 DEDIPATH-LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kzeaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: text/html
content-length: 162
location: https://acoossi.top/92f0c144d76dd785f7c04f84ae149b33.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=697688961&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fwww.jxys88.net%2F&v=1.2.99&lv=1&sn=3302&r=0&ww=1268&u=https%3A%2F%2Fwww.jxys14.xyz%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=697688961&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fwww.jxys88.net%2F&v=1.2.99&lv=1&sn=3302&r=0&ww=1268&u=https%3A%2F%2Fwww.jxys14.xyz%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=697688961&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fwww.jxys88.net%2F&v=1.2.99&lv=1&sn=3302&r=0&ww=1268&u=https%3A%2F%2Fwww.jxys14.xyz%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 19 Oct 2022 07:38:54 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=A392C1EECFE981B1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
87ea4f3c8bff2f67e278af819b1b111f
d0e88b10af01ece8d51bb436a213f14e99712529
89511310c63e853172bc25eacba267bfa333677048efba26201a36a5ea1bba17

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89511310C63E853172BC25EACBA267BFA333677048EFBA26201A36A5EA1BBA17"
Last-Modified: Mon, 17 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17493
Expires: Wed, 19 Oct 2022 12:30:27 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

www.yssydh.top/upload/vod/20220727-1/216a680fcabdc4f622130059f8ea82da.gif

172.67.209.49

200 OK

48 kB

URL HTTP/2
www.yssydh.top/upload/vod/20220727-1/216a680fcabdc4f622130059f8ea82da.gif
IP
172.67.209.49:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 150 x 150\012- data
Size
48 kB (47538 bytes)
Hash
238e06fae36a60963dd217adc895c9e4
feb1b8c405b5e162fb23a7727aedb83eae0a9e9f
321e056f1cd521d36cde0b3579d208fd0118f423b07b92622a215ca551639fce

HTTP Headers

GET /upload/vod/20220727-1/216a680fcabdc4f622130059f8ea82da.gif HTTP/1.1
Host: www.yssydh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/gif
content-length: 47538
last-modified: Wed, 27 Jul 2022 08:34:24 GMT
etag: "62e0f890-b9b2"
expires: Thu, 03 Nov 2022 11:53:58 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1280695
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yskdJWZAyM7t%2B8e6uQ5k3K%2BiptB4AJ05JwtTnAm3EdFvsmTJLygt4Ci2LKPmD6lqY8zbQKWKTVlGGE0d%2BPeTUSi9ObQB7jFdWUQfuKDThn0wrUzVSR4CRaG7KH%2F5m1ALWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db597d6db521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.jxys88.net/news/list.php

173.231.12.68

200 OK

164 kB

URL HTTP/2
www.jxys88.net/news/list.php
IP
173.231.12.68:0
ASN
#18450 WEBNX

File type
data
Size
164 kB (163771 bytes)
Hash
3fec104d326318df1ac8fef377482345
f1f5b9cd3b98fdbc637aeae3913bf828f8dfc3fa
de5fd3c3f8d1574b39f974c3694d904cc17954dfd9ec62373c463c8b3d3022e7

HTTP Headers

GET /news/list.php HTTP/1.1
Host: www.jxys88.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys88.net/news/index.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:51 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
5ab71f8a819369d4967753b77420905c
b25e6142f4782cebc4ecd599c04e38454f39cf47
855378f8e3a410ef7af81f68285bad633c4a431b482c710032389822ff27d389

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 630
Cache-Control: max-age=164999
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:54 GMT
Etag: "634f889f-117"
Expires: Fri, 21 Oct 2022 05:28:53 GMT
Last-Modified: Wed, 19 Oct 2022 05:18:23 GMT
Server: ECS (amb/6B86)
X-Cache: HIT
Content-Length: 279

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
baaa70993e30b9e3cd488d70f43fc357
7cf8b635f6c3d996e57495fe5c6062c3f4c8fcae
d92917db486f318ab683b14f73132391d70b5cfd1bab7e0336791719b9d1d40e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 18 Oct 2022 11:17:42 GMT
Expires: Tue, 25 Oct 2022 11:17:41 GMT
Etag: "7cf8b635f6c3d996e57495fe5c6062c3f4c8fcae"
Cache-Control: max-age=530926,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db597bab1bfe-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
993190056ce71afdd850a979537fbde3
25c9b46dbc1f98e56f18b110f720627731e078cb
ee338f6c241b253c4133c880f8c0f423fc8cb429e3a1622811f0e1fa35464afd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 16 Oct 2022 16:29:53 GMT
Expires: Sun, 23 Oct 2022 16:29:52 GMT
Etag: "25c9b46dbc1f98e56f18b110f720627731e078cb"
Cache-Control: max-age=376857,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db598dc9b512-OSL

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
68104b5d0cc92274cc220be307deccc3
d6751a3c8bc44ebe3c94eaea98da443c850cac0e
0efedb3492673fb07c0077b693507ddb673d6e333c70f885c013d618903a5513

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "0EFEDB3492673FB07C0077B693507DDB673D6E333C70F885C013D618903A5513"
Last-Modified: Mon, 17 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11660
Expires: Wed, 19 Oct 2022 10:53:14 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
68104b5d0cc92274cc220be307deccc3
d6751a3c8bc44ebe3c94eaea98da443c850cac0e
0efedb3492673fb07c0077b693507ddb673d6e333c70f885c013d618903a5513

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "0EFEDB3492673FB07C0077B693507DDB673D6E333C70F885C013D618903A5513"
Last-Modified: Mon, 17 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11660
Expires: Wed, 19 Oct 2022 10:53:14 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

kvezz.com/800a83efcf662b60b2ec0c6bb37ce110.gif

104.143.94.110

301 Moved Permanently

162 B

URL HTTP/2
kvezz.com/800a83efcf662b60b2ec0c6bb37ce110.gif
IP
104.143.94.110:0
ASN
#201106 Spartan Host Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /800a83efcf662b60b2ec0c6bb37ce110.gif HTTP/1.1
Host: kvezz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: text/html
content-length: 162
location: https://acoossn.top/800a83efcf662b60b2ec0c6bb37ce110.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
6047f05f60c26fc0b7796e0a52514d19
e2503ff3b960b95967da6a7411abe549c4d897bb
54c49c5391b32840e70214c84557f06de2fd62aa7fd3109dcb8191a3497766f2

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 12:29:18 GMT
Expires: Mon, 24 Oct 2022 12:29:17 GMT
Etag: "e2503ff3b960b95967da6a7411abe549c4d897bb"
Cache-Control: max-age=448822,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db57bfcdb50b-OSL

kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif

104.143.94.110

301 Moved Permanently

162 B

URL HTTP/2
kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP
104.143.94.110:0
ASN
#201106 Spartan Host Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: kzecc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: text/html
content-length: 162
location: https://kvhbbb.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/erqolpqjy0y0851erqolpqjy0y3821890.jpg

104.22.12.214

200 OK

12 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/erqolpqjy0y0851erqolpqjy0y3821890.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 107x80, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Size
12 kB (11580 bytes)
Hash
00969aaae0413921c3d7c4e96c85a9af
e7e6c977e5465005f219f83d7e5a41b6155ff514
0db937ea2d58d100131d8fe161273f08b7ca82089862dac1cb119906be771ac4

HTTP Headers

GET /upload/vod/2019/11-08/08/erqolpqjy0y0851erqolpqjy0y3821890.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/jpeg
content-length: 11580
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12240, status=webp_bigger
etag: "69988fadce95d51:0"
last-modified: Fri, 08 Nov 2019 00:51:38 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db5a5a050b39-OSL
X-Firefox-Spdy: h2

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/jhnvsscfp520850jhnvsscfp525021866.jpg

104.22.12.214

200 OK

11 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/jhnvsscfp520850jhnvsscfp525021866.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 107x80, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Size
11 kB (11170 bytes)
Hash
cee95e8df772dd14defa7cedcb1bb650
c3c20d9fc876674a1aa1625a70e70b5196be286c
37c6625debbe8c820837a051f00e4d1a20b97ff9d5bd598e885c4df6c3941410

HTTP Headers

GET /upload/vod/2019/11-08/08/jhnvsscfp520850jhnvsscfp525021866.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/jpeg
content-length: 11170
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11769, status=webp_bigger
etag: "d3982c91ce95d51:0"
last-modified: Fri, 08 Nov 2019 00:50:50 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db5a5a090b39-OSL
X-Firefox-Spdy: h2

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/o5bouquo3we0850o5bouquo3we1921850.jpg

104.22.12.214

200 OK

14 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/o5bouquo3we0850o5bouquo3we1921850.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 107x80, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Size
14 kB (14147 bytes)
Hash
150db5ff63a5a97581b7cd47726044d6
8f7a684ec0c94a899bc64efcc25cb242561369fa
9003e36c01e38a566b9fc16bc7bc9f9713464e23e066f52d80d168091474ae30

HTTP Headers

GET /upload/vod/2019/11-08/08/o5bouquo3we0850o5bouquo3we1921850.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/jpeg
content-length: 14147
cf-bgj: imgq:85,h2pri
cf-polished: origSize=14827, status=webp_bigger
etag: "9815477ece95d51:0"
last-modified: Fri, 08 Nov 2019 00:50:19 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db5a5a0a0b39-OSL
X-Firefox-Spdy: h2

lzty888.xyz/aa12345.gif

103.55.25.226

200 OK

107 kB

URL HTTP/1.1
lzty888.xyz/aa12345.gif
IP
103.55.25.226:0
ASN
#55933 Cloudie Limited

File type
GIF image data, version 89a, 960 x 80\012- data
Size
107 kB (106771 bytes)
Hash
374c814b412120cf5a25699d6bd35cba
da4496f168645be33c35efd1dc6b80847b01bb4c
0b82c6b414f7ca3e7443d4b9eda64bdec839dd0a595613e509967c150b62c611

HTTP Headers

GET /aa12345.gif HTTP/1.1
Host: lzty888.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 19 Oct 2022 07:38:53 GMT
Content-Type: image/gif
Content-Length: 106771
Last-Modified: Fri, 14 Oct 2022 12:21:30 GMT
Connection: keep-alive
ETag: "6349544a-1a113"
Expires: Fri, 18 Nov 2022 07:38:53 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
a892bebf585aaac47c52e72251a32b9e
913ec49f9a71d3d8d9d07fdc21df22c22e1b8027
01e9e697dd89b5b79ec909e680075042d59768ed3cddff45fe57f8408e55eb23

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 18 Oct 2022 04:48:18 GMT
Expires: Tue, 25 Oct 2022 04:48:17 GMT
Etag: "913ec49f9a71d3d8d9d07fdc21df22c22e1b8027"
Cache-Control: max-age=507562,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db59ec051bfe-OSL

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/umfm1mld1a40850umfm1mld1a43421858.jpg

104.22.12.214

200 OK

12 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/umfm1mld1a40850umfm1mld1a43421858.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 107x80, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Size
12 kB (12051 bytes)
Hash
bc85945dda98344ba090f7d2a12099bd
d0a9e6ca1a0f1446ca6fed2a01472c8189739659
cb98b4f674cc28225969899e5bb3694b363fd45abe972f931843bf7b63a961bd

HTTP Headers

GET /upload/vod/2019/11-08/08/umfm1mld1a40850umfm1mld1a43421858.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/jpeg
content-length: 12051
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12688, status=webp_bigger
etag: "738bb87ce95d51:0"
last-modified: Fri, 08 Nov 2019 00:50:35 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db5a5a070b39-OSL
X-Firefox-Spdy: h2

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/mqpk5qt5pef0852mqpk5qt5pef1021906.jpg

104.22.12.214

200 OK

8.0 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/mqpk5qt5pef0852mqpk5qt5pef1021906.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
8.0 kB (8002 bytes)
Hash
f61ac57965db76b14776d61ecf366591
dab71b6fc6ca195cbcf09ce117f592c17b7efcf0
2443b5b8dc80d86b6d1c39ee6d0443be71421427a8284d8d949363e505578897

HTTP Headers

GET /upload/vod/2019/11-08/08/mqpk5qt5pef0852mqpk5qt5pef1021906.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/webp
content-length: 8002
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9582
content-disposition: inline; filename="mqpk5qt5pef0852mqpk5qt5pef1021906.webp"
etag: "67e079c0ce95d51:0"
last-modified: Fri, 08 Nov 2019 00:52:10 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
server: cloudflare
cf-ray: 75c7db5a5a0f0b39-OSL
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
973f5b15da0b3d368a56643c23aeafd8
9514af120f26c99b6f1b332217556430e0d62145
fb6d5d69fbcc1442858c96f16e7b1653b10d81a603e71545671a09b1274d92d7

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 23 Oct 2022 03:46:57 GMT
ETag: "9514af120f26c99b6f1b332217556430e0d62145"
Last-Modified: Wed, 19 Oct 2022 03:46:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1711
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75c7db5a7ebfb511-OSL

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/kf04ntxf3zb0851kf04ntxf3zb0621874.jpg

104.22.12.214

200 OK

12 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/kf04ntxf3zb0851kf04ntxf3zb0621874.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 107x80, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Size
12 kB (11846 bytes)
Hash
671f02aa6e005cef596a62919a8731f3
808d2516cb6d84e87d8006a5036d363eaaec1d2f
330157bef9ceeab1fd2123f50d07032eae5bdd038b58e0c4a14342c4e269ad0b

HTTP Headers

GET /upload/vod/2019/11-08/08/kf04ntxf3zb0851kf04ntxf3zb0621874.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/jpeg
content-length: 11846
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12493, status=webp_bigger
etag: "7450a59ace95d51:0"
last-modified: Fri, 08 Nov 2019 00:51:06 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db5a5a0c0b39-OSL
X-Firefox-Spdy: h2

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/3tvwvuwv5iy08513tvwvuwv5iy2221882.jpg

104.22.12.214

200 OK

14 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/3tvwvuwv5iy08513tvwvuwv5iy2221882.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 107x80, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Size
14 kB (13765 bytes)
Hash
001f5f41393770f20c285f2b3769d2af
ecc842a24dc7ddc5d6e216a7e1cd7e092100bea4
5e453974db22376febc0ad1e7d5b640006f055ddf8970c06dd15d82835b4dd57

HTTP Headers

GET /upload/vod/2019/11-08/08/3tvwvuwv5iy08513tvwvuwv5iy2221882.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/jpeg
content-length: 13765
cf-bgj: imgq:85,h2pri
cf-polished: origSize=14534, status=webp_bigger
etag: "ae4319a4ce95d51:0"
last-modified: Fri, 08 Nov 2019 00:51:22 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db5a5a0e0b39-OSL
X-Firefox-Spdy: h2

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/lkuzxh3e0d40852lkuzxh3e0d45721930.jpg

104.22.12.214

200 OK

5.8 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/lkuzxh3e0d40852lkuzxh3e0d45721930.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
5.8 kB (5842 bytes)
Hash
3b7b97438dc23579cca9c14ff8cb960a
05022734a20f5e0f407b0062f583c37bd22b962b
d02f40f84cd92de7ba32c06cc15a811e0c31e07e941ff947d16764bfff1aad6d

HTTP Headers

GET /upload/vod/2019/11-08/08/lkuzxh3e0d40852lkuzxh3e0d45721930.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/webp
content-length: 5842
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8364
content-disposition: inline; filename="lkuzxh3e0d40852lkuzxh3e0d45721930.webp"
etag: "80e0dcdcce95d51:0"
last-modified: Fri, 08 Nov 2019 00:52:57 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
server: cloudflare
cf-ray: 75c7db5a5a130b39-OSL
X-Firefox-Spdy: h2

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/oejkcftxxzp0851oejkcftxxzp5421898.jpg

104.22.12.214

200 OK

8.4 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/oejkcftxxzp0851oejkcftxxzp5421898.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
8.4 kB (8372 bytes)
Hash
18d79ddc8933b9283f3f1c46e49f8990
628e92f1c09bd540cbd0c6b083b04631d6da35c4
bb6d54f5bcdde1361ceb67c4afa8c2959f2bd21d49b83e2cb36b1b3f1980e9da

HTTP Headers

GET /upload/vod/2019/11-08/08/oejkcftxxzp0851oejkcftxxzp5421898.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/webp
content-length: 8372
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9730
content-disposition: inline; filename="oejkcftxxzp0851oejkcftxxzp5421898.webp"
etag: "7c281b7ce95d51:0"
last-modified: Fri, 08 Nov 2019 00:51:54 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
server: cloudflare
cf-ray: 75c7db5a5a120b39-OSL
X-Firefox-Spdy: h2

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/30hxhy5e1te085230hxhy5e1te2621914.jpg

104.22.12.214

200 OK

7.6 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/30hxhy5e1te085230hxhy5e1te2621914.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
7.6 kB (7644 bytes)
Hash
c879cc4909774e22f9048c3dcf3d5299
0a52c57e57f267c781684d8575265a7954e565ae
e3800e2d6ab113c4f03a5c1658c1471fe98024656bcf2d1f21999af9b70da954

HTTP Headers

GET /upload/vod/2019/11-08/08/30hxhy5e1te085230hxhy5e1te2621914.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/webp
content-length: 7644
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9014
content-disposition: inline; filename="30hxhy5e1te085230hxhy5e1te2621914.webp"
etag: "b135f0c9ce95d51:0"
last-modified: Fri, 08 Nov 2019 00:52:26 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
server: cloudflare
cf-ray: 75c7db5a5a100b39-OSL
X-Firefox-Spdy: h2

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/g5rh0z42j0u0852g5rh0z42j0u4121922.jpg

104.22.12.214

200 OK

6.8 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/g5rh0z42j0u0852g5rh0z42j0u4121922.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.8 kB (6830 bytes)
Hash
8df507aec03675425747c6a06213e376
40b15702d2a4dcdb4a35812024ef4d4bdcb0a4da
1898bbb1e7809fc43f81d5bee6c5b24ea6608dac0077693817894b4ac189b539

HTTP Headers

GET /upload/vod/2019/11-08/08/g5rh0z42j0u0852g5rh0z42j0u4121922.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/webp
content-length: 6830
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7825
content-disposition: inline; filename="g5rh0z42j0u0852g5rh0z42j0u4121922.webp"
etag: "968a66d3ce95d51:0"
last-modified: Fri, 08 Nov 2019 00:52:41 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
server: cloudflare
cf-ray: 75c7db5a5a150b39-OSL
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
973f5b15da0b3d368a56643c23aeafd8
9514af120f26c99b6f1b332217556430e0d62145
fb6d5d69fbcc1442858c96f16e7b1653b10d81a603e71545671a09b1274d92d7

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 23 Oct 2022 03:46:57 GMT
ETag: "9514af120f26c99b6f1b332217556430e0d62145"
Last-Modified: Wed, 19 Oct 2022 03:46:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1711
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75c7db5aaf22b511-OSL

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
973f5b15da0b3d368a56643c23aeafd8
9514af120f26c99b6f1b332217556430e0d62145
fb6d5d69fbcc1442858c96f16e7b1653b10d81a603e71545671a09b1274d92d7

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 23 Oct 2022 03:46:57 GMT
ETag: "9514af120f26c99b6f1b332217556430e0d62145"
Last-Modified: Wed, 19 Oct 2022 03:46:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1711
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75c7db5aaa510b39-OSL

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/zyxpkbalcm40849zyxpkbalcm43121826.jpg

104.22.12.214

200 OK

6.8 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/zyxpkbalcm40849zyxpkbalcm43121826.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.8 kB (6764 bytes)
Hash
a1cd8ef22d3268fc431cc6f2c1a7563a
e2b15b8bac77ef0b035c5c53f2182fffebfc01f6
b7e79497cc53660b0fe340d0e23c4f013ce11c240ea9ac0838c24c42984aedf0

HTTP Headers

GET /upload/vod/2019/11-08/08/zyxpkbalcm40849zyxpkbalcm43121826.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/webp
content-length: 6764
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9948
content-disposition: inline; filename="zyxpkbalcm40849zyxpkbalcm43121826.webp"
etag: "f615e461ce95d51:0"
last-modified: Fri, 08 Nov 2019 00:49:31 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
server: cloudflare
cf-ray: 75c7db5aba580b39-OSL
X-Firefox-Spdy: h2

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/ofejiadlt250850ofejiadlt250321842.jpg

104.22.12.214

200 OK

10 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/ofejiadlt250850ofejiadlt250321842.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
10 kB (10062 bytes)
Hash
e2e89dccf55fc544086bb481b26435c9
60106c53b718577117f9bd0faa08fbd2eabe3671
a7a2e19b7783a2c7abc7d376e82e65697f3a3b40e26c1001d6fd0cf524d5ea9c

HTTP Headers

GET /upload/vod/2019/11-08/08/ofejiadlt250850ofejiadlt250321842.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/webp
content-length: 10062
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10906
content-disposition: inline; filename="ofejiadlt250850ofejiadlt250321842.webp"
etag: "60c0d074ce95d51:0"
last-modified: Fri, 08 Nov 2019 00:50:03 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5537
accept-ranges: bytes
server: cloudflare
cf-ray: 75c7db5aba5c0b39-OSL
X-Firefox-Spdy: h2

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/5jgbfflyoia08495jgbfflyoia1521818.jpg

104.22.12.214

200 OK

4.2 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/5jgbfflyoia08495jgbfflyoia1521818.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
4.2 kB (4190 bytes)
Hash
ca33d703ca9642b5918cad83df42b9b2
940d3bf69d9a5ff0176e0324c070b6e8f4066763
30fe12c1f2d0074f25158ad533a780d23993ad6be37d6d50b588154b3ebe1825

HTTP Headers

GET /upload/vod/2019/11-08/08/5jgbfflyoia08495jgbfflyoia1521818.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/webp
content-length: 4190
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6130
content-disposition: inline; filename="5jgbfflyoia08495jgbfflyoia1521818.webp"
etag: "68237058ce95d51:0"
last-modified: Fri, 08 Nov 2019 00:49:15 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
server: cloudflare
cf-ray: 75c7db5aba5d0b39-OSL
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
a892bebf585aaac47c52e72251a32b9e
913ec49f9a71d3d8d9d07fdc21df22c22e1b8027
01e9e697dd89b5b79ec909e680075042d59768ed3cddff45fe57f8408e55eb23

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 18 Oct 2022 04:48:18 GMT
Expires: Tue, 25 Oct 2022 04:48:17 GMT
Etag: "913ec49f9a71d3d8d9d07fdc21df22c22e1b8027"
Cache-Control: max-age=507562,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db5a7c561bfa-OSL

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
973f5b15da0b3d368a56643c23aeafd8
9514af120f26c99b6f1b332217556430e0d62145
fb6d5d69fbcc1442858c96f16e7b1653b10d81a603e71545671a09b1274d92d7

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 23 Oct 2022 03:46:57 GMT
ETag: "9514af120f26c99b6f1b332217556430e0d62145"
Last-Modified: Wed, 19 Oct 2022 03:46:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1711
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75c7db5aba600b39-OSL

lbfm.lbpictupian.com/upload/vod/2019/11-08/08/dekmb0tijis0849dekmb0tijis4721834.jpg

104.22.12.214

200 OK

5.7 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2019/11-08/08/dekmb0tijis0849dekmb0tijis4721834.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
5.7 kB (5730 bytes)
Hash
58ebdd0642986bc374bacbd2b8cd6874
e1fc18123ad0048d77965c3522810c2b405cff44
b63b9c5a25c43ce411afe9a383552b7a3a4682c16ebde54d79ad1991d280776c

HTTP Headers

GET /upload/vod/2019/11-08/08/dekmb0tijis0849dekmb0tijis4721834.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/webp
content-length: 5730
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7848
content-disposition: inline; filename="dekmb0tijis0849dekmb0tijis4721834.webp"
etag: "7fa6556bce95d51:0"
last-modified: Fri, 08 Nov 2019 00:49:47 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5538
accept-ranges: bytes
server: cloudflare
cf-ray: 75c7db5aba5a0b39-OSL
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
efd054ae8404d2cf3456cae5f98da134
003bfcb808d268074defce3bd560a396f48f1820
508e8751370730a5d0c525976883413f35fc0e21ce4a4c96f29f1dcbd035eaec

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "508E8751370730A5D0C525976883413F35FC0E21CE4A4C96F29F1DCBD035EAEC"
Last-Modified: Mon, 17 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2998
Expires: Wed, 19 Oct 2022 08:28:52 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
efd054ae8404d2cf3456cae5f98da134
003bfcb808d268074defce3bd560a396f48f1820
508e8751370730a5d0c525976883413f35fc0e21ce4a4c96f29f1dcbd035eaec

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "508E8751370730A5D0C525976883413F35FC0E21CE4A4C96F29F1DCBD035EAEC"
Last-Modified: Mon, 17 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2998
Expires: Wed, 19 Oct 2022 08:28:52 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

img.syhy.top/2022/09/13/63f153796b8ae.gif

137.175.22.207

200 OK

32 kB

URL HTTP/1.1
img.syhy.top/2022/09/13/63f153796b8ae.gif
IP
137.175.22.207:0
ASN
#54600 PEGTECHINC

File type
GIF image data, version 89a, 224 x 134\012- data
Size
32 kB (31454 bytes)
Hash
de4aaef1e42711deb4701509cb15229e
dc6f9818bdc0023a94b42ceac86ae2b715d5447e
a1cb2cd4a0062198e6138619eaec51842a94074042f9ca3a946a19887a43ade7

HTTP Headers

GET /2022/09/13/63f153796b8ae.gif HTTP/1.1
Host: img.syhy.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: image/gif
Content-Length: 31454
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 10:41:28 GMT
ETag: "63205e58-7ade"
Expires: Thu, 17 Nov 2022 14:22:35 GMT
Cache-Control: max-age=2592000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
1ba9720e1ed2f502a4d38b6dd2d5d1b8
f88e38aee485637faa0bd801487ad2f903f22353
678b3c8bc2aff6d50f39cd353ae4c7355f311ef915869860a8ab8eb37979b496

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3671
Cache-Control: max-age=111893
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:54 GMT
Etag: "634ead4c-118"
Expires: Thu, 20 Oct 2022 14:43:47 GMT
Last-Modified: Tue, 18 Oct 2022 13:42:36 GMT
Server: ECS (amb/6B86)
X-Cache: HIT
Content-Length: 280

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
72a413aa424cc5a89984033dcd430cc8
21c39bb203530485849c6d8ca51dae4f525f7c67
86de218bbdee1761313958bc67037c3bddb5a30365ae5f63907b968c0d74074b

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 19:09:58 GMT
Expires: Mon, 24 Oct 2022 19:09:57 GMT
Etag: "21c39bb203530485849c6d8ca51dae4f525f7c67"
Cache-Control: max-age=472862,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db5b1d070af6-OSL

nvhbbb.top/0faf263b1025a51efcea7acd844cc402.gif

104.21.55.74

200 OK

1.1 MB

URL HTTP/2
nvhbbb.top/0faf263b1025a51efcea7acd844cc402.gif
IP
104.21.55.74:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 120\012- data
Size
1.1 MB (1082384 bytes)
Hash
a2513b4510f6797c4cbe4012fc79c64c
41f15aa49c66eed88a541224dedda5d215f9e7ef
16e775f7ac1e0368c216cdcf70bc3d56d7d952d7653898dbb8093efcd712cc71

HTTP Headers

GET /0faf263b1025a51efcea7acd844cc402.gif HTTP/1.1
Host: nvhbbb.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys14.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/gif
content-length: 1082384
last-modified: Sat, 27 Aug 2022 07:44:24 GMT
etag: "6309cb58-108410"
expires: Mon, 14 Nov 2022 15:23:39 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 317715
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7gSVVkH5av2%2FL9D5uyG9Moi3YAyQ%2FuDF8juzNddEH0ADWzXrZiL%2BRjOJnQZ5U%2BZgElIzyWgs3bax%2ByBcy%2F1BRWY4Bngogp5aC8kOiie7JsBoVtwM24R8smDxb6b7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db5b6f10b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
72a413aa424cc5a89984033dcd430cc8
21c39bb203530485849c6d8ca51dae4f525f7c67
86de218bbdee1761313958bc67037c3bddb5a30365ae5f63907b968c0d74074b

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 19:09:58 GMT
Expires: Mon, 24 Oct 2022 19:09:57 GMT
Etag: "21c39bb203530485849c6d8ca51dae4f525f7c67"
Cache-Control: max-age=472862,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db5b3ec3b515-OSL

pic.picnewsss.com/tu-2022290039/250-150.gif

23.225.139.251

200 OK

15 kB

URL HTTP/2
pic.picnewsss.com/tu-2022290039/250-150.gif
IP
23.225.139.251:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 250 x 150\012- data
Size
15 kB (14672 bytes)
Hash
aab2c8e3e0b65b7dc076703d9c6180b0
7f8c62ec8d1df683c7b0ea7fbe7f4122eaf12435
af9fca558859236893c18170fce073bdfca98bda7257e54ba88f6eaecfb829ba

HTTP Headers

GET /tu-2022290039/250-150.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Tue, 18 Oct 2022 21:54:17 GMT
etag: "1666130057"
expires: Thu, 17 Nov 2022 21:54:17 GMT
last-modified: Tue, 18 Oct 2022 21:54:17 GMT
server: nginx
x-cache: HIT, policy, disk
content-length: 14672
X-Firefox-Spdy: h2

pic.picnewsss.com/tu-2022290039/960-120.gif

23.225.139.251

200 OK

369 kB

URL HTTP/2
pic.picnewsss.com/tu-2022290039/960-120.gif
IP
23.225.139.251:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 960 x 120\012- data
Size
369 kB (369108 bytes)
Hash
d3f9f17ed067ebb6ee0792014656333e
1f5593ee409f13d7734fd538a9a779dbe469a7c1
69da833d60a8ae1c0d5f64a25dfb6b42579ac7d20046a2db7c2be4256b601b68

HTTP Headers

GET /tu-2022290039/960-120.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Tue, 18 Oct 2022 23:42:08 GMT
etag: "1666136528"
expires: Thu, 17 Nov 2022 23:42:08 GMT
last-modified: Tue, 18 Oct 2022 23:42:08 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 369108
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
61d72b47e1e53977cecb29ffce00bd13
23d1e1fd61e6078c32119f77dba03fcbcc5235ae
a1c5432746cc2b63d47d22c9fc27bdb4856244efd56de7ad582c63459e402c19

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1C5432746CC2B63D47D22C9FC27BDB4856244EFD56DE7AD582C63459E402C19"
Last-Modified: Tue, 18 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12827
Expires: Wed, 19 Oct 2022 11:12:41 GMT
Date: Wed, 19 Oct 2022 07:38:54 GMT
Connection: keep-alive

nvhbbb.top/99d9b625f2ad0e82d1c36c0d0f18e725.gif

104.21.55.74

200 OK

524 kB

URL HTTP/2
nvhbbb.top/99d9b625f2ad0e82d1c36c0d0f18e725.gif
IP
104.21.55.74:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 325 x 143\012- data
Size
524 kB (523775 bytes)
Hash
2e77865c5e60159691251f889fbcbde5
538cd55848422448bbfe390a20c3dff6d78998fe
fda43c5dafab5df63cca29ea0c9c36e80930634c9d07a788adadf45f7833d1cc

HTTP Headers

GET /99d9b625f2ad0e82d1c36c0d0f18e725.gif HTTP/1.1
Host: nvhbbb.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys14.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/gif
content-length: 523775
last-modified: Sun, 28 Aug 2022 11:22:29 GMT
etag: "630b4ff5-7fdff"
expires: Wed, 16 Nov 2022 14:41:51 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 147423
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Uug5z0DM%2BI%2Fy62b91TMSEiz99Oy4ExDz%2Fc1x0FnldMxh5WcHpaE1hsRs9SppDH8OuIgmNQf4WfxadyLyBEHNU6u8iXDtf%2FfVh%2F3Lan%2FFhfc%2FclzyC7BigdSCeY7n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db5c485cb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
72a413aa424cc5a89984033dcd430cc8
21c39bb203530485849c6d8ca51dae4f525f7c67
86de218bbdee1761313958bc67037c3bddb5a30365ae5f63907b968c0d74074b

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 19:09:58 GMT
Expires: Mon, 24 Oct 2022 19:09:57 GMT
Etag: "21c39bb203530485849c6d8ca51dae4f525f7c67"
Cache-Control: max-age=472862,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db5b1bf0b50b-OSL

ads-6686.top/960-60.gif

118.107.10.31

200 OK

179 kB

URL HTTP/2
ads-6686.top/960-60.gif
IP
118.107.10.31:0
ASN
#64050 BGPNET Global ASN

File type
GIF image data, version 89a, 960 x 60\012- data
Size
179 kB (179135 bytes)
Hash
e66d01a700c00399b345a3f71477b98a
4cc3b5c09ce2e791e55fba866b8632816cf68d79
87bdc50d1208a7dc3d1819b9b9c33682ec1826c902b7cc7dd4635b188dcccb1e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /960-60.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
last-modified: Tue, 20 Sep 2022 12:28:46 GMT
accept-ranges: bytes
etag: "fed63387ecccd81:0"
server: Microsoft-IIS/10.0
date: Wed, 19 Oct 2022 07:38:53 GMT
content-length: 179135
X-Firefox-Spdy: h2

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
72a413aa424cc5a89984033dcd430cc8
21c39bb203530485849c6d8ca51dae4f525f7c67
86de218bbdee1761313958bc67037c3bddb5a30365ae5f63907b968c0d74074b

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 19:09:58 GMT
Expires: Mon, 24 Oct 2022 19:09:57 GMT
Etag: "21c39bb203530485849c6d8ca51dae4f525f7c67"
Cache-Control: max-age=472862,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db5b28fab4fd-OSL

bisi666.cc/data/attachment/ad/ad357.gif

108.170.5.74

200 OK

1.2 MB

URL HTTP/1.1
bisi666.cc/data/attachment/ad/ad357.gif
IP
108.170.5.74:0
ASN
#20454 SSASN2

File type
GIF image data, version 89a, 960 x 80\012- data
Size
1.2 MB (1174791 bytes)
Hash
61efabef91c6a0720d84d415006e4ce0
a6d47aa5e276f78f46c7c16e8da5e515f2bcca83
c6d95cfece1eb68aacb3fb8e69cf0fb4239253a0fe22990dcc04d90fb5ec2311

HTTP Headers

GET /data/attachment/ad/ad357.gif HTTP/1.1
Host: bisi666.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 19 Oct 2022 07:38:53 GMT
Content-Type: image/gif
Content-Length: 1174791
Last-Modified: Sun, 29 May 2022 10:02:30 GMT
Connection: keep-alive
ETag: "629344b6-11ed07"
Expires: Fri, 18 Nov 2022 07:38:53 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
d39fca0bb02b0abbd023a55a47ef2803
c4a551c2c8060360169bd711e7d210418418531c
d91a91fa510f6a6e7a4b5e6440a582ff5c82c34edfd20fbdd4f429639b3fb749

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 16 Oct 2022 04:05:47 GMT
Expires: Sun, 23 Oct 2022 04:05:46 GMT
Etag: "c4a551c2c8060360169bd711e7d210418418531c"
Cache-Control: max-age=332211,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db5c2e0a0af6-OSL

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
72a413aa424cc5a89984033dcd430cc8
21c39bb203530485849c6d8ca51dae4f525f7c67
86de218bbdee1761313958bc67037c3bddb5a30365ae5f63907b968c0d74074b

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 19:09:58 GMT
Expires: Mon, 24 Oct 2022 19:09:57 GMT
Etag: "21c39bb203530485849c6d8ca51dae4f525f7c67"
Cache-Control: max-age=472862,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db5b6f350b59-OSL

www.jxys14.xyz/template/m1938pc/static/css/1.css

173.231.38.5

200 OK

426 kB

URL HTTP/2
www.jxys14.xyz/template/m1938pc/static/css/1.css
IP
173.231.38.5:0
ASN
#18450 WEBNX

File type
data
Size
426 kB (426178 bytes)
Hash
ecad6055ce2cfa511e398f3b18823ed6
89dca435eff63ce7d8a1543b027c14dec9baa343
68c236114a5a790e9866554e019e3dbbdbc3a85374c873ddd8323fab7ac8a966

HTTP Headers

GET /template/m1938pc/static/css/1.css HTTP/1.1
Host: www.jxys14.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:52 GMT
content-type: text/css
last-modified: Sun, 16 Jan 2022 07:31:51 GMT
vary: Accept-Encoding
etag: W/"61e3c9e7-50e"
expires: Wed, 19 Oct 2022 19:38:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

ads-6686.top/225X135.gif

118.107.10.31

200 OK

82 kB

URL HTTP/2
ads-6686.top/225X135.gif
IP
118.107.10.31:0
ASN
#64050 BGPNET Global ASN

File type
GIF image data, version 89a, 225 x 135\012- data
Size
82 kB (82460 bytes)
Hash
93507608c701135ff054561125eec3ce
1d0fc7d6da393ea9a4c085e214ed407ba04077f8
81eb175d1283407105372ad04a40fdee5fccefb842ff5b671c4faecc209a3f2b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /225X135.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
last-modified: Sun, 25 Sep 2022 07:54:14 GMT
accept-ranges: bytes
etag: "0572f1b4d0d81:0"
server: Microsoft-IIS/10.0
date: Wed, 19 Oct 2022 07:38:53 GMT
content-length: 82460
X-Firefox-Spdy: h2

dvcasha2.ocsp-certum.com/

23.36.79.17

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
1477118798b0ea814acba813767167bc
b6f1f6f59e19798cf6247efb32cfffe6ecbe9e85
f3fd93aaca218f7c5625c6bacbece0fb134970ca4b4c5aeadb76633277e727ec

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=784
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive
X-N: S

dvcasha2.ocsp-certum.com/

23.36.79.17

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
1477118798b0ea814acba813767167bc
b6f1f6f59e19798cf6247efb32cfffe6ecbe9e85
f3fd93aaca218f7c5625c6bacbece0fb134970ca4b4c5aeadb76633277e727ec

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=802
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive
X-N: S

dvcasha2.ocsp-certum.com/

23.36.79.17

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
92b5dd0992306b78ca9cc99813f68f0b
4c21a26ff94bc8003b11fe456ae53248da7376fb
48905e77e2bd4870cc85df853dc134a8e1d3045adec28a8538f227ce44138d0a

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=854
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive
X-N: S

zhibo128x.xyz/128/318X216.gif

154.83.25.141

200 OK

90 kB

URL HTTP/1.1
zhibo128x.xyz/128/318X216.gif
IP
154.83.25.141:0
ASN
#62587 ANT-CLOUD

File type
GIF image data, version 89a, 318 x 216\012- data
Size
90 kB (89870 bytes)
Hash
fcfb39891df6c04744982e2f8c67f6b7
7a667d860bab955b1e95bce9a455cc5555783076
534db09ef852e7d2de2fe879e2ea4447b28ae30d9093e3854da39ee604db801d

HTTP Headers

GET /128/318X216.gif HTTP/1.1
Host: zhibo128x.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: image/gif
Content-Length: 89870
Connection: keep-alive
Last-Modified: Sun, 04 Sep 2022 08:04:23 GMT
ETag: "63145c07-15f0e"
Expires: Sun, 23 Oct 2022 16:34:26 GMT
Cache-Control: max-age=2592000
Via: 154.83.25.138
CDN-Cache: HIT
Accept-Ranges: bytes

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
254650f6c6d0c4f34bf151142e422bfc
c5ae9cb5bb7245b11d88dccf986ed544fd3ec23b
577d62fc7bfeb74465629db06f604ba9b5da6473a6bd69e08f3864a6adf56b7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:55 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 18 Oct 2022 03:02:51 GMT
Expires: Tue, 25 Oct 2022 03:02:50 GMT
Etag: "c5ae9cb5bb7245b11d88dccf986ed544fd3ec23b"
Cache-Control: max-age=501234,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db5eb8ca1bfe-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
2a18bad18ca3c746416cb205684980fc
b7910c77c03e1ae0cd577fcdd957266b5cf9f390
d3b9dfc98579267374af466abb0b89eb60cdc00ab73b8f9ed9ab0ae9af97e57e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1325
Cache-Control: max-age=145819
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:55 GMT
Etag: "634f3afd-117"
Expires: Fri, 21 Oct 2022 00:09:14 GMT
Last-Modified: Tue, 18 Oct 2022 23:47:09 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
fc6b4337e5bbf857010ae8d9772ec629
eab80e123cccff5ab583ebee9d5aa314a8b6f4f1
16ce3a40a9760f46741b9608f1a2e5b779410c64cceb2f91af7d44d6df0d0a4b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5106
Cache-Control: max-age=139277
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:55 GMT
Etag: "634f12aa-2d7"
Expires: Thu, 20 Oct 2022 22:20:12 GMT
Last-Modified: Tue, 18 Oct 2022 20:55:06 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 727

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
29b4749918443a510cac5e19191de3d1
6929c200236fd4288bf369dd53d7fd7bf3e07709
fe04f437b4ffe5862aa35c0c7b7bfb62a11590421efb443135378b0c978dad00

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:55 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 23 Oct 2022 05:17:05 GMT
ETag: "6929c200236fd4288bf369dd53d7fd7bf3e07709"
Last-Modified: Wed, 19 Oct 2022 05:17:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3028
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75c7db5f5d2cb511-OSL

87193776899.com/137dd6d87688482eb020c1c774325059.185.gif

103.170.15.94

200 OK

149 kB

URL HTTP/1.1
87193776899.com/137dd6d87688482eb020c1c774325059.185.gif
IP
103.170.15.94:0
ASN
#7483 Skycloud Computing co., Ltd.

File type
GIF image data, version 89a, 320 x 185\012- data
Size
149 kB (149081 bytes)
Hash
ca110f84ebcc10dd498b26dc6c90087b
cfaf975d43693cfc7c2e05305068b0d933748d98
04dff307dc6fdc4da149bad386613e102c1f0e6d2b26974c5666505c7d97ef2e

HTTP Headers

GET /137dd6d87688482eb020c1c774325059.185.gif HTTP/1.1
Host: 87193776899.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62f2795c-24659"
Date: Tue, 09 Aug 2022 15:23:25 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 09 Aug 2022 15:12:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-24
Content-Length: 149081

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
fc6b4337e5bbf857010ae8d9772ec629
eab80e123cccff5ab583ebee9d5aa314a8b6f4f1
16ce3a40a9760f46741b9608f1a2e5b779410c64cceb2f91af7d44d6df0d0a4b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1461
Cache-Control: max-age=135632
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:55 GMT
Etag: "634f12aa-2d7"
Expires: Thu, 20 Oct 2022 21:19:27 GMT
Last-Modified: Tue, 18 Oct 2022 20:55:06 GMT
Server: ECS (amb/6B86)
X-Cache: HIT
Content-Length: 727

kvhhhh.top/c70f7dd4a4c94432f7e7dfd8886c435b.gif

104.21.235.35

200 OK

1.6 MB

URL HTTP/2
kvhhhh.top/c70f7dd4a4c94432f7e7dfd8886c435b.gif
IP
104.21.235.35:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 60\012- data
Size
1.6 MB (1590489 bytes)
Hash
59648e1a4d52551c26255ff6bc625648
165fbacafad21065e9faa33c5e3752cd463549ad
eb53352fe423b9358ba49249e57fe3d55746d854c681f6c45baedb23eb2196e5

HTTP Headers

GET /c70f7dd4a4c94432f7e7dfd8886c435b.gif HTTP/1.1
Host: kvhhhh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys14.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:55 GMT
content-type: image/gif
content-length: 1590489
last-modified: Sun, 26 Jun 2022 12:04:30 GMT
etag: "62b84b4e-1844d9"
expires: Fri, 11 Nov 2022 04:37:03 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 615712
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AdyHKbkggSHowx3OtCY0DzakQ3LcJxGDu%2F21DH%2FOQ7NPHc7Nj41GtgCx%2FSmGZ8EsOzLK6G0ftep3ATHMwtcZn9h9NUy5XFtFjY8c5Rp6yx84gsYlSJCVdt4fnl9B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db5ecef7dd47-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

kvhhhh.top/0eddc09b941df608c7dbb65fd7344c05.gif

104.21.235.35

200 OK

501 kB

URL HTTP/2
kvhhhh.top/0eddc09b941df608c7dbb65fd7344c05.gif
IP
104.21.235.35:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 384 x 216\012- data
Size
501 kB (500709 bytes)
Hash
034336a5237349a60154dea96de80b58
3542d0bbdf703508930fc994eabce17681c818fa
602d2dfc2f528acbe33ca7ff13c163f8ea4f908fc7aed58c4d3a50a5931ccc0d

HTTP Headers

GET /0eddc09b941df608c7dbb65fd7344c05.gif HTTP/1.1
Host: kvhhhh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys14.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:55 GMT
content-type: image/gif
content-length: 500709
last-modified: Sun, 26 Jun 2022 12:08:26 GMT
etag: "62b84c3a-7a3e5"
expires: Tue, 15 Nov 2022 08:11:05 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 257270
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oXUV6ByDrbruHxQwDkMlwUeroRoya5kqkN18gXGlIq6kyy0FDVoGBr4W1kVhjnXu7SapFH1EqEJsW2uKv9ZJSgUf8N%2FntjLaJfDr4RJaRJKWwH8ovDl%2Br1SnD0M%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db5f5809dd47-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
d39fca0bb02b0abbd023a55a47ef2803
c4a551c2c8060360169bd711e7d210418418531c
d91a91fa510f6a6e7a4b5e6440a582ff5c82c34edfd20fbdd4f429639b3fb749

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:55 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 16 Oct 2022 04:05:47 GMT
Expires: Sun, 23 Oct 2022 04:05:46 GMT
Etag: "c4a551c2c8060360169bd711e7d210418418531c"
Cache-Control: max-age=332210,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db5e2a10b515-OSL

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
4fb61dad5947257a2de8ba080428600c
dd25f3f5f8eaac19045ba38cc7dda9832d3316dd
29a34ab606bf0d0e1eafded2e7d4adbb8d5c7405384e102af1d177ae9c6c2c28

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "29A34AB606BF0D0E1EAFDED2E7D4ADBB8D5C7405384E102AF1D177AE9C6C2C28"
Last-Modified: Mon, 17 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5819
Expires: Wed, 19 Oct 2022 09:15:54 GMT
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
abf0ea31a3e8ba7d27fdbdb56fbe2328
deadf44c7f5c4e42deeb4b40ce191e296a6e4fa5
00e308c2d3f96d8708062a3ec0306913f9d445fd8c0d56e2a694a28f6e7b3d4c

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "00E308C2D3F96D8708062A3EC0306913F9D445FD8C0D56E2A694A28F6E7B3D4C"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Wed, 19 Oct 2022 13:38:54 GMT
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
32286195f50efb0f693d749876d78e09
035974c0d387bd7ca71eee3224dafa093dd60276
6ee8026f70daa6fe2e5ee73c749a91415c1279c23de7269e9027daff8b776b78

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=120475
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:55 GMT
Etag: "634edd2a-117"
Expires: Thu, 20 Oct 2022 17:06:50 GMT
Last-Modified: Tue, 18 Oct 2022 17:06:50 GMT
Server: nginx
Content-Length: 279

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
ab19eb7d3957ecfb1be11c121b71a52e
0bc44f56ff81e9dd090291288ab945233a6e5fc2
a931b43c5009a52855f627cdf8ee2d73e7d8c9f73fee5772e5bb37eeedcee499

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A931B43C5009A52855F627CDF8EE2D73E7D8C9F73FEE5772E5BB37EEEDCEE499"
Last-Modified: Mon, 17 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1887
Expires: Wed, 19 Oct 2022 08:10:22 GMT
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
63d84c3293d26504d9a14bca157d5ba5
e51c6bf6d774761e93fd5f4ceadb804e6be32493
b3a346e2d02a4a2076e81b77ab46da94116d27e43c93633f3c5ebdb5fe89a5ef

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "B3A346E2D02A4A2076E81B77AB46DA94116D27E43C93633F3C5EBDB5FE89A5EF"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7043
Expires: Wed, 19 Oct 2022 09:36:18 GMT
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive

p3.douyinpic.com/obj/tos-cn-i-dy/b98f0a079cbe4664844d203380c42853

47.246.44.231

200 OK

286 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/b98f0a079cbe4664844d203380c42853
IP
47.246.44.231:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 960 x 60\012- data
Size
286 kB (286168 bytes)
Hash
c69f681b06f2feb34e383846219c8209
3a27ca24bfdcde1a59c108ffad610f61251630c9
affedc1c62a2e5cc16f453ef22ffd25086d3523129b7dfb2ffc34ef7962cbddb

HTTP Headers

GET /obj/tos-cn-i-dy/b98f0a079cbe4664844d203380c42853 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 286168
date: Tue, 11 Oct 2022 05:50:15 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Tue, 11 Oct 2022 05:43:49 GMT
nw-session-id: 202210111343490102100491450F44B253n4b2501dy
nw-session-trace: 2022-10-11T13:43:49.652489884+08:00 42
x-bdcdn-cache-status: TCP_HIT
x-length: 286168
x-powered-by: ImageX
x-response-date: Tue, 11 Oct 2022 13:43:49 GMT
x-tt-logid: 202210111343490102100491450F44B253
via: n132-082-086, cache2.l2de2[0,0,206-0,H], cache4.l2de2[0,0], cache4.l2de2[1,0], cache1.se1[0,0,200-0,H], cache5.se1[2,0]
x-request-ip: fdbd:dc03:8:577::14
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01f85227e11f708737ac1cc9acefc749a5e2464a149c47f693e6ea7e78c94a4658c84a40889d30e003fbbba154b943b739ff85951026707e7b950edc4979e14131a470dd197e96d4f5ea15c26127bd75bf2885ae3c2df22dbafc712563e2c1ef17
x-response-lb: image
ali-swift-global-savetime: 1665467415
age: 697720
x-cache: HIT TCP_MEM_HIT dirn:4:192438655
x-swift-savetime: Tue, 11 Oct 2022 06:00:44 GMT
x-swift-cachetime: 31535371
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916661651352621264e
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2c57ba5a07369ffa798ed6bda876b2f2
9f530e105e3939c0af5f5012bd32f1f8e740f452
24bbad26239a95ccb4da46ff30a0441ea8ff4cc0814db86fc541854e2c4a9bf3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24BBAD26239A95CCB4DA46FF30A0441EA8FF4CC0814DB86FC541854E2C4A9BF3"
Last-Modified: Tue, 18 Oct 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14013
Expires: Wed, 19 Oct 2022 11:32:28 GMT
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive

p3.douyinpic.com/obj/tos-cn-i-dy/5221178d1109428e912192689c4a224b

47.246.44.231

200 OK

498 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/5221178d1109428e912192689c4a224b
IP
47.246.44.231:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 960 x 70\012- data
Size
498 kB (497844 bytes)
Hash
9d43f768f1897d7d3fd5ba803e1a770a
ff8fb3f427df7b6cfef65fcae162e0abab9474a4
00fe4f1ccfc623639abadf4e745aca22b946365e932a7a794d6c108fee0d85af

HTTP Headers

GET /obj/tos-cn-i-dy/5221178d1109428e912192689c4a224b HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 497844
date: Mon, 26 Sep 2022 15:51:55 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 26 Sep 2022 15:48:09 GMT
nw-session-id: 202209262348090101311360522A56A372wh9fn01dy
nw-session-trace: 2022-09-26T23:48:09.499467597+08:00 35
x-bdcdn-cache-status: TCP_HIT
x-length: 497844
x-powered-by: ImageX
x-response-date: Mon, 26 Sep 2022 23:48:09 GMT
x-tt-logid: 202209262348090101311360522A56A372
via: n204-100-050, cache3.l2de2[0,0,206-0,H], cache25.l2de2[0,0], cache25.l2de2[2,0], cache3.se1[0,0,200-0,H], cache5.se1[3,0]
x-request-ip: fdbd:dc01:27:681::45
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=3
x-tt-trace-host: 012b00969317ff7be8260d35d00bf7715dbd42a2e2519f19bce5077d154f0c450651b5c390e296599c13bbb00b38fd8cd36464c815d54035da5290c5bd9169301cdb764bda59cc61d074f70a5947cce39eaced8ed2aa7690b8250fc25a0d33d00b
x-response-lb: image
ali-swift-global-savetime: 1664207518
age: 1957617
x-cache: HIT TCP_MEM_HIT dirn:2:208573224
x-swift-savetime: Mon, 26 Sep 2022 16:02:29 GMT
x-swift-cachetime: 31535369
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916661651353551313e
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
25141a5c72d6ea5a0de92a106bc8c648
39308278360d719f8ee34127969034c3afbf609a
6ad401acef2c3128b2518b6d9ef197f1a7ae566d372d42c7aac7ca7f7ff62c8d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:55 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 02:36:06 GMT
Expires: Mon, 24 Oct 2022 02:36:05 GMT
Etag: "39308278360d719f8ee34127969034c3afbf609a"
Cache-Control: max-age=413229,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db607a441bfe-OSL

kvevv.com/4bf88adf466b90cef3686374a27fc0e2.gif

104.143.94.110

301 Moved Permanently

162 B

URL HTTP/2
kvevv.com/4bf88adf466b90cef3686374a27fc0e2.gif
IP
104.143.94.110:0
ASN
#201106 Spartan Host Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /4bf88adf466b90cef3686374a27fc0e2.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:55 GMT
content-type: text/html
content-length: 162
location: https://kvhyyy.top/4bf88adf466b90cef3686374a27fc0e2.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

65677358625.com/07f738d006994222be00801af0c54525.gif

45.61.212.127

200 OK

854 kB

URL HTTP/1.1
65677358625.com/07f738d006994222be00801af0c54525.gif
IP
45.61.212.127:0
ASN
#53587 AZT

File type
GIF image data, version 89a, 960 x 70\012- data
Size
854 kB (854203 bytes)
Hash
5a74c62195f1f378fe04282c741bf68d
412d0daf5ab979aa04014e7c7e5c6fb11705bb2f
84d4eddc8ec1df6c7d1cfeda1376193e8848676a85400a7ae0b69ec633c35a75

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /07f738d006994222be00801af0c54525.gif HTTP/1.1
Host: 65677358625.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6342597f-d08bb"
Date: Mon, 17 Oct 2022 15:39:53 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 09 Oct 2022 05:17:51 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-27
Content-Length: 854203

87193776899.com/73f23e1f7ead40baa32cf579a4bb735b.gif

103.170.15.94

200 OK

553 kB

URL HTTP/1.1
87193776899.com/73f23e1f7ead40baa32cf579a4bb735b.gif
IP
103.170.15.94:0
ASN
#7483 Skycloud Computing co., Ltd.

File type
GIF image data, version 89a, 960 x 60\012- data
Size
553 kB (552818 bytes)
Hash
097e6fa9314192dc3dd55cb1c5023ee5
c30366c4c910616f1a3c1b773ffb4af967e20eb5
db020d7293807326453f5848c0bf219e2b835f2530468a9d816a3c1c7941023a

HTTP Headers

GET /73f23e1f7ead40baa32cf579a4bb735b.gif HTTP/1.1
Host: 87193776899.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62f27ac4-86f72"
Date: Sat, 08 Oct 2022 10:29:51 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 09 Aug 2022 15:18:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-24
Content-Length: 552818

kvtfff.top/94747760f9a86fa539e3ba23345db0a4.gif

104.21.233.216

200 OK

888 kB

URL HTTP/2
kvtfff.top/94747760f9a86fa539e3ba23345db0a4.gif
IP
104.21.233.216:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 120\012- data
Size
888 kB (888376 bytes)
Hash
fedb3aaeb3cdc4b12aed1f9235094f0e
6fa984cfb8d8bc50d1ca8d20a8bf0bb29b36e2e7
953d594e6f49223defd9b3a6b42b60f900dcb52c8b57cd52fa9fe1e08eec7d8b

HTTP Headers

GET /94747760f9a86fa539e3ba23345db0a4.gif HTTP/1.1
Host: kvtfff.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys14.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:55 GMT
content-type: image/gif
content-length: 888376
last-modified: Mon, 19 Sep 2022 14:58:59 GMT
etag: "632883b3-d8e38"
expires: Thu, 17 Nov 2022 06:30:42 GMT
cache-control: max-age=5356800
cf-cache-status: HIT
age: 90493
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ni8Z%2BqGjB%2FqgURPLT7j8Ixm16dCnA8QiXSQgdTRliUUEPQxP02BqgFlws%2BfMjPKEJ5NuoOpPhD9Q92a0vSSMTCw7dKIBMIgWcFZodd4EN2vlIJf7WM8F%2FKMidE5P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db607807dd77-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

acoossi.top/9f40845b27097d68beff34e10f37d7ef.gif

104.21.234.201

200 OK

45 kB

URL HTTP/2
acoossi.top/9f40845b27097d68beff34e10f37d7ef.gif
IP
104.21.234.201:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 300 x 150\012- data
Size
45 kB (45267 bytes)
Hash
f290cbd6e3db05d8539291b35a96a5a6
1ddfc4b6940f79c029084b39280921231962a5f9
c2c3b89f6ccc9df70f4ecca798dab047531f8652831ed831f5adeb13a3b5cf12

HTTP Headers

GET /9f40845b27097d68beff34e10f37d7ef.gif HTTP/1.1
Host: acoossi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys14.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:55 GMT
content-type: image/gif
content-length: 45267
last-modified: Wed, 25 May 2022 13:52:17 GMT
etag: "628e3491-b0d3"
expires: Wed, 16 Nov 2022 19:58:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 128431
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rGjoJvk1os%2Bmyh0dvAQbxDf9E4vDvrThon8fysWVVDPgKoCo%2BM9%2BFSErU3F%2BVC0HESLOqvErunexoHiCt4KyQWiw0l5PcBH3cZw49Yx2ykxNhKRJqBF0DKiA4OeLow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db60fbd471a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

s2.loli.net/2022/09/25/eC3mlnQvzVrNHip.gif

104.26.0.190

200 OK

230 kB

URL HTTP/2
s2.loli.net/2022/09/25/eC3mlnQvzVrNHip.gif
IP
104.26.0.190:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 400 x 400\012- data
Size
230 kB (229902 bytes)
Hash
8337411d40e4a3f8a69387aa03e641a8
709c20382a9207168fc119aec235d2e17f1df7d6
958cda9ab11b3a5c9434f4f93d2c941546c93756b3048e4a9880c28ab0e0cff2

HTTP Headers

GET /2022/09/25/eC3mlnQvzVrNHip.gif HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:55 GMT
content-type: image/gif
content-length: 229902
last-modified: Sun, 25 Sep 2022 11:07:29 GMT
etag: "63303671-3820e"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zLRBPMta5EdNHXnqYSPNX3D2Y2S5NLDatLuYPApNf%2Fb7PAd8YkTATkgG8KY1UAzj1A42hgOuvS1D7zMYnCBQp2l5Q0ImMhi8pYHaShhX8H4qM0QNdyxPv69u02Xz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75c7db59f8ec1c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
628343685b89f381a1fbcccbbd8b60bc
9609dfe538d8b61953b507e5756ac8721beb54c5
3d26d43d9790ca0900033446adc3fa2758a0d19870614c4c198dd4be56d7202b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3D26D43D9790CA0900033446ADC3FA2758A0D19870614C4C198DD4BE56D7202B"
Last-Modified: Mon, 17 Oct 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 19 Oct 2022 13:38:55 GMT
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive

img.syhy.top/2022/05/19/b3e29dd487b2b.gif

137.175.22.207

200 OK

536 kB

URL HTTP/1.1
img.syhy.top/2022/05/19/b3e29dd487b2b.gif
IP
137.175.22.207:0
ASN
#54600 PEGTECHINC

File type
GIF image data, version 89a, 960 x 60\012- data
Size
536 kB (536519 bytes)
Hash
6c475c6d1a80641ecea6fc80c2798d87
dd77ebd4c8c568267f6d28000650324d68a10f1d
258557a327c1ebf554beb73af7c6faa540ddec90bd27f3bf863eb8aeff67416b

HTTP Headers

GET /2022/05/19/b3e29dd487b2b.gif HTTP/1.1
Host: img.syhy.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: image/gif
Content-Length: 536519
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 16:33:12 GMT
ETag: "62851fc8-82fc7"
Expires: Thu, 17 Nov 2022 14:21:57 GMT
Cache-Control: max-age=2592000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes

93533557591.com/7c572867c08941819e5390af65418338.gif

103.170.15.85

200 OK

1.2 MB

URL HTTP/1.1
93533557591.com/7c572867c08941819e5390af65418338.gif
IP
103.170.15.85:0
ASN
#7483 Skycloud Computing co., Ltd.

File type
GIF image data, version 89a, 960 x 100\012- data
Size
1.2 MB (1184271 bytes)
Hash
a0d9c3776a1e7616e6c1471d4378e348
1958e68d4544d881c08e58ba3fb7f921db78b212
a49fb807e3e7d520fc3dfe9c6031159266a6083ee708f623259e0158060c58f0

HTTP Headers

GET /7c572867c08941819e5390af65418338.gif HTTP/1.1
Host: 93533557591.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6310a377-12120f"
Date: Thu, 13 Oct 2022 01:33:38 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 01 Sep 2022 12:20:07 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-15
Content-Length: 1184271

zhibo128x.xyz/128/960x120.gif

154.83.25.141

200 OK

647 kB

URL HTTP/1.1
zhibo128x.xyz/128/960x120.gif
IP
154.83.25.141:0
ASN
#62587 ANT-CLOUD

File type
GIF image data, version 89a, 960 x 120\012- data
Size
647 kB (647290 bytes)
Hash
4fd1179d632274467f2d161456d79264
7e14d27cde6b11c437d17d7abf8ea273a5e63798
4a24512ccf73527d8996dc5a02acc63fe7fcb7c9f9ae22cac178345c6d46361c

HTTP Headers

GET /128/960x120.gif HTTP/1.1
Host: zhibo128x.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: image/gif
Content-Length: 647290
Connection: keep-alive
Last-Modified: Sat, 08 Oct 2022 06:08:16 GMT
ETag: "634113d0-9e07a"
Expires: Wed, 16 Nov 2022 15:01:59 GMT
Cache-Control: max-age=2592000
Via: 154.83.25.138
CDN-Cache: HIT
Accept-Ranges: bytes

acoossi.top/92f0c144d76dd785f7c04f84ae149b33.gif

104.21.234.201

200 OK

1.0 MB

URL HTTP/2
acoossi.top/92f0c144d76dd785f7c04f84ae149b33.gif
IP
104.21.234.201:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 60\012- data
Size
1.0 MB (1024160 bytes)
Hash
52748c8ca30fe48c822541046bceafc0
8640926f83b9c0d635fb28403505a7c0f0753857
2e292531362f37bf7a1cd01330efb234450b1f836e975c55f2b2179c0be32ae6

HTTP Headers

GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: acoossi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys14.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:55 GMT
content-type: image/gif
content-length: 1024160
last-modified: Wed, 25 May 2022 13:49:10 GMT
etag: "628e33d6-fa0a0"
expires: Wed, 16 Nov 2022 19:25:48 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 130387
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GQ6pPujE0njqJDbK2CapKwKkf0eCqL8hBnRtKaXnGxAVhhtQCOTJVVBus9stOkePaLdGgwVU7tIH%2FC0iVcUVeIWAkQ%2FCqor%2BRB0szhblUacP7HvhdMGUasEvsqg2lA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db60fbcc71a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
59d475d732e35eec8570d007673a7d9c
0c5870a43ccf05915b7ee99f064d98b7b92a61bd
1bd10ffcb7ec46707c81d68a82e3e90e6b37694257b94a8e3bfdafe53efe1ebd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=90600
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:55 GMT
Etag: "634e6877-117"
Expires: Thu, 20 Oct 2022 08:48:55 GMT
Last-Modified: Tue, 18 Oct 2022 08:48:55 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
91a324dd349adfd0a034b321f0fb801b
a31b494e67dbb9be9f22c0d5cf7543b48592bf21
4bebec76afb0b03aafa1d1580641e841ce80751b746579e4b151be93af46e395

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=121226
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:55 GMT
Etag: "634ee019-118"
Expires: Thu, 20 Oct 2022 17:19:21 GMT
Last-Modified: Tue, 18 Oct 2022 17:19:21 GMT
Server: nginx
Content-Length: 280

sszhan.oss-cn-shenzhen.aliyuncs.com/tycsz.gif

120.77.166.90

200 OK

540 kB

URL HTTP/1.1
sszhan.oss-cn-shenzhen.aliyuncs.com/tycsz.gif
IP
120.77.166.90:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

File type
GIF image data, version 89a, 960 x 80\012- data
Size
540 kB (539555 bytes)
Hash
f90b8bf8612b18c79e67580f4b9dec6e
99c934b5bdfa99699ee3629dd28f33a74f4e5c1b
a54b481c5ef1752d4b4534fce464b73c117870bf776d85fb489d35c446d37e8c

HTTP Headers

GET /tycsz.gif HTTP/1.1
Host: sszhan.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: image/gif
Content-Length: 539555
Connection: keep-alive
x-oss-request-id: 634FA98E6309463536047E66
Accept-Ranges: bytes
ETag: "F90B8BF8612B18C79E67580F4B9DEC6E"
Last-Modified: Mon, 10 Oct 2022 07:43:33 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12644736064967929141
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: +QuL+GErGMeeZ1gPS53sbg==
x-oss-server-time: 7

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
791288fa44815c194f7d7037aa72e92c
2acd37a6adffb654781475294a46f6e2422820a6
2c909113b28506cd55b83ff489144d0e5da9b3d4f0108f4e952c96eebc34c645

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=94532
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:55 GMT
Etag: "634e77d3-116"
Expires: Thu, 20 Oct 2022 09:54:27 GMT
Last-Modified: Tue, 18 Oct 2022 09:54:27 GMT
Server: nginx
Content-Length: 278

nkiun.xyz/guanggao/22.jpg

8.210.99.166

200 OK

17 kB

URL HTTP/1.1
nkiun.xyz/guanggao/22.jpg
IP
8.210.99.166:0
ASN
#45102 Alibaba US Technology Co., Ltd.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 377x377, components 3\012- data
Size
17 kB (16832 bytes)
Hash
d4ff38bbb14b8c7efaf7631ed7b17d7b
29e7892508fa13314dff9e206178952a50d3ded8
1f83a9a771790e0dc7368598662280ecaed8b12b8da18ad237d0b9ec4f740099

HTTP Headers

GET /guanggao/22.jpg HTTP/1.1
Host: nkiun.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 19 Oct 2022 07:38:55 GMT
Content-Type: image/jpeg
Content-Length: 16832
Last-Modified: Tue, 20 Sep 2022 14:03:48 GMT
Connection: keep-alive
ETag: "6329c844-41c0"
Expires: Fri, 18 Nov 2022 07:38:55 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
d4d190f0eed14c483b7751bc5cc0356f
a0b270c4f2e99fafdb7c652085ad172d27858090
8e660c648cb5fd30f70ab6e58a9411e2c1f5faae8e4798d43b76b4ae6a379250

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:55 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 16 Oct 2022 12:43:05 GMT
Expires: Sun, 23 Oct 2022 12:43:04 GMT
Etag: "a0b270c4f2e99fafdb7c652085ad172d27858090"
Cache-Control: max-age=363248,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db60ddbdb512-OSL

p.qlogo.cn/hy_personal/3e28f14aa05168424fa80afa512d4767c40b66114c992edbcaac2af9d9ba2182/0.png

43.129.255.47

200 OK

121 kB

URL HTTP/2
p.qlogo.cn/hy_personal/3e28f14aa05168424fa80afa512d4767c40b66114c992edbcaac2af9d9ba2182/0.png
IP
43.129.255.47:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type
GIF image data, version 89a, 650 x 350\012- data
Size
121 kB (121197 bytes)
Hash
c333d9318beb5b59bc7fd1dbe71ed7f3
7f59fbc05d4302bc5768755ed10aa58932bf8c7a
58ae8f93dc8f4805de239cc27796b1a97bd67acd9ef72cd7f0ed73119175d4f5

HTTP Headers

GET /hy_personal/3e28f14aa05168424fa80afa512d4767c40b66114c992edbcaac2af9d9ba2182/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/gif
content-length: 121197
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 15:24:44 GMT
cache-control: max-age=2592000
x-delay: 68 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 121197
chid: 0
fid: 0
x-nws-log-uuid: 05f89d4a-881a-4639-b165-43f32cd91ccb
X-Firefox-Spdy: h2

www.jxys14.xyz/template/m1938pc/static/css/bootstrap.min.css

173.231.38.5

200 OK

137 kB

URL HTTP/2
www.jxys14.xyz/template/m1938pc/static/css/bootstrap.min.css
IP
173.231.38.5:0
ASN
#18450 WEBNX

File type
data
Size
137 kB (137217 bytes)
Hash
c0f53a15a251da8131cd0117e06fe116
51ea1d454a70d46065d736ff39dca62fe8a0822f
851209a9c2030b4d7d5b313c9875ec98a77569f3201a6f7b150514cf1844ebf1

HTTP Headers

GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1
Host: www.jxys14.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:52 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:04 GMT
vary: Accept-Encoding
etag: W/"61e1000c-23816"
expires: Wed, 19 Oct 2022 19:38:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

taiwtp1.com/img/200200.gif

220.128.218.220

200 OK

75 kB

URL HTTP/2
taiwtp1.com/img/200200.gif
IP
220.128.218.220:0
ASN
#3462 Data Communication Business Group

File type
GIF image data, version 89a, 200 x 200\012- data
Size
75 kB (75259 bytes)
Hash
03c13356e00c2033df2c88cb919251eb
f3a334a0366ddda6a87034f7d6c889c4d159dc8d
0c184e206259e8d0c54d3fc12d3d5332e9f6ff5f0404630fcb2daefe65fe1bfe

HTTP Headers

GET /img/200200.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:36:54 GMT
content-type: image/gif
content-length: 75259
last-modified: Wed, 09 Mar 2022 04:51:10 GMT
etag: "6228323e-125fb"
expires: Fri, 18 Nov 2022 07:36:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8122c06c024b099ffef0ae2254e19691
983311e7602959efcc0b6a61b64460752beb2577
3169f3df2545f36489b8835f0f5d5e84f030a1af94578a18c7172a5b47acf7eb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3169F3DF2545F36489B8835F0F5D5E84F030A1AF94578A18C7172A5B47ACF7EB"
Last-Modified: Mon, 17 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7513
Expires: Wed, 19 Oct 2022 09:44:08 GMT
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive

p3.douyinpic.com/obj/tos-cn-i-dy/d3a13ee486ae419c97cc3b15c34ebadb

47.246.44.231

200 OK

358 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/d3a13ee486ae419c97cc3b15c34ebadb
IP
47.246.44.231:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 440 x 240\012- data
Size
358 kB (358276 bytes)
Hash
40b26808b7743791705f32cf49aa84d0
4ad6b4a4aea098d64566cb7d1efe401821890591
091c7316fb23f6614d103255be50c63bcb15e04c3dc5c3574456acedf9977d43

HTTP Headers

GET /obj/tos-cn-i-dy/d3a13ee486ae419c97cc3b15c34ebadb HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 358276
date: Sat, 10 Sep 2022 12:28:41 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sat, 10 Sep 2022 12:21:56 GMT
nw-session-id: 2022091020215601015803720938646A40fb4zp01dy
nw-session-trace: 2022-09-10T20:21:56.577698599+08:00 60
x-bdcdn-cache-status: TCP_HIT
x-length: 358276
x-powered-by: ImageX
x-response-date: Sat, 10 Sep 2022 20:21:56 GMT
x-tt-logid: 2022091020215601015803720938646A40
via: n204-100-029, cache9.l2de2[0,0,206-0,H], cache1.l2de2[0,0], cache1.l2de2[1,0], cache2.se1[0,0,200-0,H], cache5.se1[4,0]
x-request-ip: fdbd:dc01:27:155::141
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=4
x-tt-trace-host: 01174b39532af94304e7942e465d42c12a7eb2252123cca16f7d6563df8b2fa159806672698020d6a4bc7a2b4e0cd60d8597a1cbc89401bf5c50053a094c262bf613c5b1e25c9abbb9f1a0072821fedd03f767c1548192be6727388f22514f6710
x-response-lb: image
ali-swift-global-savetime: 1662812921
age: 3352214
x-cache: HIT TCP_HIT dirn:6:158121794
x-swift-savetime: Sat, 10 Sep 2022 12:30:52 GMT
x-swift-cachetime: 31535869
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916661651358251648e
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
13b248e9748370193ff8a4bd5aa0ae2d
8b8055e6f063f71579c9fd522ac2a90848a84379
be7b11f902dcdb65f857a544243514f5063db2f4c188dbb44a3f0c66f664c5d2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE7B11F902DCDB65F857A544243514F5063DB2F4C188DBB44A3F0C66F664C5D2"
Last-Modified: Sun, 16 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3228
Expires: Wed, 19 Oct 2022 08:32:43 GMT
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
1ba9720e1ed2f502a4d38b6dd2d5d1b8
f88e38aee485637faa0bd801487ad2f903f22353
678b3c8bc2aff6d50f39cd353ae4c7355f311ef915869860a8ab8eb37979b496

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=108221
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:55 GMT
Etag: "634ead4c-118"
Expires: Thu, 20 Oct 2022 13:42:36 GMT
Last-Modified: Tue, 18 Oct 2022 13:42:36 GMT
Server: nginx
Content-Length: 280

p3.douyinpic.com/obj/tos-cn-i-dy/92d8bec0e6ce4a9a94e4f6b36345a2ef

47.246.44.231

200 OK

361 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/92d8bec0e6ce4a9a94e4f6b36345a2ef
IP
47.246.44.231:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 480 x 280\012- data
Size
361 kB (360769 bytes)
Hash
33f098bf1336f5d6973bcc45c1a5112b
65a81de6a3a2c9f8092a61e3cf8785c73e584601
552891e050c60db6ced172bc31e027068d7ef6297c89cef95dd8aca3350d7304

HTTP Headers

GET /obj/tos-cn-i-dy/92d8bec0e6ce4a9a94e4f6b36345a2ef HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 360769
date: Tue, 11 Oct 2022 05:50:20 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Tue, 11 Oct 2022 05:44:02 GMT
nw-session-id: 202210111344020101501381653A3F03AFm4hbc03dy
nw-session-trace: 2022-10-11T13:44:02.709836549+08:00 20
x-bdcdn-cache-status: TCP_HIT
x-length: 360769
x-powered-by: ImageX
x-response-date: Tue, 11 Oct 2022 13:44:02 GMT
x-tt-logid: 202210111344020101501381653A3F03AF
via: n132-055-194, cache2.l2de2[0,0,206-0,H], cache5.l2de2[0,0], cache5.l2de2[2,0], cache7.se1[0,0,200-0,H], cache5.se1[4,0]
x-request-ip: fdbd:dc03:8:568::226
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=4
x-tt-trace-host: 01f85227e11f708737ac1cc9acefc749a5118211a439aeba9b28d18baedad2e01b29279f9a3568233bb3ac8fbc9b335ba2258bd369a86afeaa1d04d6787afaca7a404cb3157e9214da77213ad7a7432fbc109c8e1bf8810969ef1e29a0f665d619
x-response-lb: image
ali-swift-global-savetime: 1665467421
age: 697714
x-cache: HIT TCP_HIT dirn:3:130285800
x-swift-savetime: Tue, 11 Oct 2022 07:42:32 GMT
x-swift-cachetime: 31529269
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916661651358451658e
X-Firefox-Spdy: h2

acoossn.top/800a83efcf662b60b2ec0c6bb37ce110.gif

172.67.213.234

200 OK

740 kB

URL HTTP/2
acoossn.top/800a83efcf662b60b2ec0c6bb37ce110.gif
IP
172.67.213.234:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 120\012- data
Size
740 kB (739561 bytes)
Hash
5318e42d25e6b9b53726d8166248cc33
762b03c16562865a9a58a02dba471f78608376db
b632e7a04d032c4853a8460e9d636ac032f697db8f50cfee6a6016587ed8f62c

HTTP Headers

GET /800a83efcf662b60b2ec0c6bb37ce110.gif HTTP/1.1
Host: acoossn.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys14.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:55 GMT
content-type: image/gif
content-length: 739561
last-modified: Mon, 02 May 2022 19:20:49 GMT
etag: "62702f11-b48e9"
expires: Tue, 15 Nov 2022 16:03:41 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 228914
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xdOzsjPN8IbQKoNglEFXrbeesDoYUeHg8J75ONHyCbwnAusUgsGa7Z%2BhR9ZbDq%2Bp%2F2Xk0wERqtyxpEDwCCex%2BW5pl5Nd%2FI2jXLQTj60yA2VtQ9mEFMONPHR9W058WA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db632964b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
5ab71f8a819369d4967753b77420905c
b25e6142f4782cebc4ecd599c04e38454f39cf47
855378f8e3a410ef7af81f68285bad633c4a431b482c710032389822ff27d389

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 631
Cache-Control: max-age=164999
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:55 GMT
Etag: "634f889f-117"
Expires: Fri, 21 Oct 2022 05:28:54 GMT
Last-Modified: Wed, 19 Oct 2022 05:18:23 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279

img.x939.xyz/images/6331c9920262760f377de8bc.gif

3.36.126.81

302 Found

937 kB

URL HTTP/2
img.x939.xyz/images/6331c9920262760f377de8bc.gif
IP
3.36.126.81:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 384 x 216\012- data
Size
937 kB (936553 bytes)
Hash
f33b09c01587b81863cd4e66a993fe0f
832b925eac330d932e6a880732fc1017df52d5c7
73de3f0be825260919b92f3d90c6bd74e7e4337103ac2da6499cbf87c5a9aeb6

HTTP Headers

GET /images/6331c9920262760f377de8bc.gif HTTP/1.1
Host: img.x939.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/5221178d1109428e912192689c4a224b
cache-control: max-age=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
13b248e9748370193ff8a4bd5aa0ae2d
8b8055e6f063f71579c9fd522ac2a90848a84379
be7b11f902dcdb65f857a544243514f5063db2f4c188dbb44a3f0c66f664c5d2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE7B11F902DCDB65F857A544243514F5063DB2F4C188DBB44A3F0C66F664C5D2"
Last-Modified: Sun, 16 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3232
Expires: Wed, 19 Oct 2022 08:32:47 GMT
Date: Wed, 19 Oct 2022 07:38:55 GMT
Connection: keep-alive

sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894599409102.gif

20.189.126.154

200 OK

252 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894599409102.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 960 x 60\012- data
Size
252 kB (251962 bytes)
Hash
feb5419ef22c0a10470f6cfe2b0f1517
412e6b8e6f4244071851549b9d5ba5fdf9a5b631
d889e702650ec0543cef9a6d281f576366872f31463f3b707498aac5cef2ae07

HTTP Headers

GET /static/uploads/image/x22/20221004/1664894599409102.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 04 Oct 2022 14:43:26 GMT
ETag: "1664894607"
Expires: Thu, 03 Nov 2022 14:43:26 GMT
Last-Modified: Tue, 04 Oct 2022 14:43:27 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

613711567.com/4aa44d1866a149878b6b79cadb7ab527.gif

47.75.19.145

200 OK

748 kB

URL HTTP/1.1
613711567.com/4aa44d1866a149878b6b79cadb7ab527.gif
IP
47.75.19.145:0
ASN
#45102 Alibaba US Technology Co., Ltd.

File type
GIF image data, version 89a, 750 x 120\012- data
Size
748 kB (748166 bytes)
Hash
dc16c165d9da37bf4a9e9596a765425c
824e5729161352cd5f7b57faea8a32c54d35b410
4abb336ff1a1a08dc2963b708638359da654fadaf843669e4406d6ab348b4608

HTTP Headers

GET /4aa44d1866a149878b6b79cadb7ab527.gif HTTP/1.1
Host: 613711567.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 19 Oct 2022 07:38:54 GMT
Content-Type: image/gif
Content-Length: 748166
Connection: keep-alive
x-oss-request-id: 634FA98EB374843031EBE1DF
Accept-Ranges: bytes
ETag: "DC16C165D9DA37BF4A9E9596A765425C"
Last-Modified: Fri, 23 Sep 2022 09:19:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3478477367098298607
x-oss-storage-class: Standard
Content-MD5: 3BbBZdnaN79KnpWWp2VCXA==
x-oss-server-time: 2

lbfm.lbpictupian.com/upload/vod/2022/10-14/16/2omtifvgwvo16482omtifvgwvo282149.jpg

104.22.12.214

200 OK

5.6 kB

URL HTTP/2
lbfm.lbpictupian.com/upload/vod/2022/10-14/16/2omtifvgwvo16482omtifvgwvo282149.jpg
IP
104.22.12.214:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
5.6 kB (5568 bytes)
Hash
187a056e67fd5cb46bc7c783f9a9fdac
4ee4e1bf29186fa2c4d5373fe121a6a6031a8737
a02fab7d850232b8f4fb9bc943a441566f738d0d56012f677f5f32d847bdc171

HTTP Headers

GET /upload/vod/2022/10-14/16/2omtifvgwvo16482omtifvgwvo282149.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:56 GMT
content-type: image/webp
content-length: 5568
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6690
content-disposition: inline; filename="2omtifvgwvo16482omtifvgwvo282149.webp"
etag: "5b9e9ebaa9dfd81:0"
last-modified: Fri, 14 Oct 2022 08:48:28 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 75c7db5aba5f0b39-OSL
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
4fb61dad5947257a2de8ba080428600c
dd25f3f5f8eaac19045ba38cc7dda9832d3316dd
29a34ab606bf0d0e1eafded2e7d4adbb8d5c7405384e102af1d177ae9c6c2c28

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "29A34AB606BF0D0E1EAFDED2E7D4ADBB8D5C7405384E102AF1D177AE9C6C2C28"
Last-Modified: Mon, 17 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5818
Expires: Wed, 19 Oct 2022 09:15:54 GMT
Date: Wed, 19 Oct 2022 07:38:56 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
ab19eb7d3957ecfb1be11c121b71a52e
0bc44f56ff81e9dd090291288ab945233a6e5fc2
a931b43c5009a52855f627cdf8ee2d73e7d8c9f73fee5772e5bb37eeedcee499

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A931B43C5009A52855F627CDF8EE2D73E7D8C9F73FEE5772E5BB37EEEDCEE499"
Last-Modified: Mon, 17 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1886
Expires: Wed, 19 Oct 2022 08:10:22 GMT
Date: Wed, 19 Oct 2022 07:38:56 GMT
Connection: keep-alive

kvhyyy.top/4bf88adf466b90cef3686374a27fc0e2.gif

104.21.7.76

200 OK

756 kB

URL HTTP/2
kvhyyy.top/4bf88adf466b90cef3686374a27fc0e2.gif
IP
104.21.7.76:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 60\012- data
Size
756 kB (755861 bytes)
Hash
c2dc0ed33af046deabc8a896c8ca57ca
b4f888334f869de4eb3dddd6b7542b0e2922f36a
c613a49de134cd30594eb822368a4a16eb3de0648b857ad44d872944c4bd407a

HTTP Headers

GET /4bf88adf466b90cef3686374a27fc0e2.gif HTTP/1.1
Host: kvhyyy.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys14.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:56 GMT
content-type: image/gif
content-length: 755861
last-modified: Thu, 06 Oct 2022 15:26:58 GMT
etag: "633ef3c2-b8895"
expires: Sun, 06 Nov 2022 14:05:45 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 1013591
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vdpXwEi91UEBmIzSvdRztir%2BZM43DdRj4C4tNkDINR8%2BT4v6RdHRfxwsEBEu0mpX1gfeQGzmzjmmXNSJ9roqpVzvQJkMNkeEsH5F5H2A83Q%2Bm9oafa6WE2E0cz1U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db644ed0b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

sysupload.csiteadmin.com/static/uploads/image/x22/20221011/1665488703978248.gif

20.189.126.154

200 OK

216 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221011/1665488703978248.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 960 x 60\012- data
Size
216 kB (216143 bytes)
Hash
f6a67a8064b379303cda8e948a6ddee9
c0b0ac22a9ee5661338509a0a1a6c4d804ad14fd
44fecd867f5ed5e00f92b34092684d8c42ae8dc1714f7831703e480687f364d3

HTTP Headers

GET /static/uploads/image/x22/20221011/1665488703978248.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 11 Oct 2022 11:57:20 GMT
ETag: "1665489440"
Expires: Thu, 10 Nov 2022 11:57:20 GMT
Last-Modified: Tue, 11 Oct 2022 11:57:20 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

kvhbbb.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif

104.21.234.67

200 OK

864 kB

URL HTTP/2
kvhbbb.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP
104.21.234.67:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 60\012- data
Size
864 kB (864004 bytes)
Hash
d2c820747a9b9b8c3abaab0775436ab7
99651afd10bd3874fb84d7973845482cd2c81f23
8aa3c7b05ba9bb5176a7155ead2a0ea562b07fb0dd7b27a9cf91c38e95ed43ed

HTTP Headers

GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: kvhbbb.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys14.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:55 GMT
content-type: image/gif
content-length: 864004
last-modified: Sun, 04 Sep 2022 09:11:53 GMT
etag: "63146bd9-d2f04"
expires: Fri, 18 Nov 2022 05:45:28 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6806
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ON9849R%2BVYQSA1ROrE6oYuqO1ysTa00oNPKnFMHTPfq6sgkckmnajDzRO301LPXyEDrg2ueiEif7X2Gw4dM%2FGQHO307X6bUjbfcHToiplUrR8CwqZ6sOblrneVS5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db633bfe7318-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

kveff.com/68a7807de3933bf7079116fa9df99e6f.gif

64.32.13.142

301 Moved Permanently

162 B

URL HTTP/2
kveff.com/68a7807de3933bf7079116fa9df99e6f.gif
IP
64.32.13.142:0
ASN
#46844 ST-BGP

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kveff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 19 Oct 2022 07:38:56 GMT
content-type: text/html
content-length: 162
location: https://kvtnnn.top/68a7807de3933bf7079116fa9df99e6f.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
59d475d732e35eec8570d007673a7d9c
0c5870a43ccf05915b7ee99f064d98b7b92a61bd
1bd10ffcb7ec46707c81d68a82e3e90e6b37694257b94a8e3bfdafe53efe1ebd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=90600
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:56 GMT
Etag: "634e6877-117"
Expires: Thu, 20 Oct 2022 08:48:56 GMT
Last-Modified: Tue, 18 Oct 2022 08:48:55 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
91a324dd349adfd0a034b321f0fb801b
a31b494e67dbb9be9f22c0d5cf7543b48592bf21
4bebec76afb0b03aafa1d1580641e841ce80751b746579e4b151be93af46e395

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=121226
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:56 GMT
Etag: "634ee019-118"
Expires: Thu, 20 Oct 2022 17:19:22 GMT
Last-Modified: Tue, 18 Oct 2022 17:19:21 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

65686232255.com/03f4c91859e345fd8955d5640194ce6e.gif

103.170.15.99

200 OK

161 kB

URL HTTP/1.1
65686232255.com/03f4c91859e345fd8955d5640194ce6e.gif
IP
103.170.15.99:0
ASN
#7483 Skycloud Computing co., Ltd.

File type
GIF image data, version 89a, 320 x 185\012- data
Size
161 kB (160599 bytes)
Hash
1e6146135f463f9dd5a91b6ec27e6dc6
b4871d778c720ce51a7c0e9fef07230b6ac0935a
ee63a02abc03ac35bb66a8010518568351f9215b346ffdc244f6b8926ff08519

HTTP Headers

GET /03f4c91859e345fd8955d5640194ce6e.gif HTTP/1.1
Host: 65686232255.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63427f5e-27357"
Date: Wed, 12 Oct 2022 05:38:02 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 09 Oct 2022 07:59:26 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-29
Content-Length: 160599

sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894417817771.gif

20.189.126.154

200 OK

212 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894417817771.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 960 x 60\012- data
Size
212 kB (212163 bytes)
Hash
14c76e87c5da9f7226cf412026035c9d
a6cbebd6fd70a1975c7900dbacea379c7722bf94
b1cd2e21b685362b7688cc2444535ff135de009483da19cb9b5de4a0624eb9a4

HTTP Headers

GET /static/uploads/image/x22/20221004/1664894417817771.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 04 Oct 2022 16:53:18 GMT
ETag: "1664902399"
Expires: Thu, 03 Nov 2022 16:53:18 GMT
Last-Modified: Tue, 04 Oct 2022 16:53:19 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
791288fa44815c194f7d7037aa72e92c
2acd37a6adffb654781475294a46f6e2422820a6
2c909113b28506cd55b83ff489144d0e5da9b3d4f0108f4e952c96eebc34c645

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=94531
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 07:38:56 GMT
Etag: "634e77d3-116"
Expires: Thu, 20 Oct 2022 09:54:27 GMT
Last-Modified: Tue, 18 Oct 2022 09:54:27 GMT
Server: nginx
Content-Length: 278

sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894243920576.gif

20.189.126.154

200 OK

133 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894243920576.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 960 x 60\012- data
Size
133 kB (133073 bytes)
Hash
f44f18314d520e89498d1f67557c2697
bbdd1041f6be7316f0a565d525761a902959b6e6
303b74f93a5d4a4d3232e66f67e7e0f3f7a034495afdb766585e1aef792bded8

HTTP Headers

GET /static/uploads/image/x26/20221004/1664894243920576.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 04 Oct 2022 14:37:27 GMT
ETag: "1664894247"
Expires: Thu, 03 Nov 2022 14:37:27 GMT
Last-Modified: Tue, 04 Oct 2022 14:37:27 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

api.06fgej.com/sh/317.js

54.169.196.110

200 OK

911 B

URL HTTP/2
api.06fgej.com/sh/317.js
IP
54.169.196.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (911), with no line terminators
Size
911 B (911 bytes)
Hash
08735fbae8571159cc9603d3d355ef3d
367fbc6b620574a09bcb4a855f40c82668070b41
e3a9e3a0f02b9db58c40d352de0e74c0fd8917bc9a255ab684d186a8e4ee22a6

HTTP Headers

GET /sh/317.js HTTP/1.1
Host: api.06fgej.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:56 GMT
content-type: application/json; charset=UTF-8
content-length: 911
server: Tengine
x-cache-status: MISS
X-Firefox-Spdy: h2

cdn-yudietupian-cdn.com/yd/640x160.gif

154.197.13.136

200 OK

431 kB

URL HTTP/2
cdn-yudietupian-cdn.com/yd/640x160.gif
IP
154.197.13.136:0
ASN
#0

File type
GIF image data, version 89a, 640 x 160\012- data
Size
431 kB (430666 bytes)
Hash
a4152706fb3028847a535f886b406161
a5c9a4b31947da57ebc43d59b658fcb64f056ca8
93b09ac3b36a1c60eb4b42c3f8522c92c8bddccfdd2fe9b575cc53ee8d5b5339

HTTP Headers

GET /yd/640x160.gif HTTP/1.1
Host: cdn-yudietupian-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/gif
content-length: 430666
last-modified: Tue, 04 Oct 2022 12:52:16 GMT
etag: "633c2c80-6924a"
expires: Thu, 17 Nov 2022 12:43:45 GMT
cache-control: max-age=2592000
server: cdn-ddos-cc
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

taiwtp2.com/img/225135.gif

220.128.218.253

200 OK

56 kB

URL HTTP/2
taiwtp2.com/img/225135.gif
IP
220.128.218.253:0
ASN
#3462 Data Communication Business Group

File type
GIF image data, version 89a, 225 x 135\012- data
Size
56 kB (55532 bytes)
Hash
c4539a59f06d5bc38785ab194578f59a
888f240435d2826a77a4472f36b4c4df0903bcbe
d85c6396134a1ac4d32d1816b7ae54e75f5f5250523ebb5f0b1437abf22b3f51

HTTP Headers

GET /img/225135.gif HTTP/1.1
Host: taiwtp2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:36:55 GMT
content-type: image/gif
content-length: 55532
last-modified: Thu, 06 Oct 2022 12:44:24 GMT
etag: "633ecda8-d8ec"
expires: Fri, 18 Nov 2022 07:36:55 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
6b2b71a8c25d792fc03f520d893ea5f4
ba418dbc77d01e621c7619d89e39d7ce6e45ca57
d29fa9b2553d0fe985e263cfd253846bcbcbd1e0ff6238e7da0ef25fd730ad1e

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "D29FA9B2553D0FE985E263CFD253846BCBCBD1E0FF6238E7DA0EF25FD730AD1E"
Last-Modified: Sun, 16 Oct 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7489
Expires: Wed, 19 Oct 2022 09:43:45 GMT
Date: Wed, 19 Oct 2022 07:38:56 GMT
Connection: keep-alive

api.06fgej.com/sh/328.js

54.169.196.110

200 OK

862 B

URL HTTP/2
api.06fgej.com/sh/328.js
IP
54.169.196.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (862), with no line terminators
Size
862 B (862 bytes)
Hash
0dfdbe9256232b724e318506b1dbf1cd
9bd6fa88eaaf29ced04bf2ade64ce78a5a1368fe
37d5b6fe1652bf2ae1bb0ec293a313a44d92ad2555994bbf23996937c1c6571b

HTTP Headers

GET /sh/328.js HTTP/1.1
Host: api.06fgej.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:56 GMT
content-type: application/json; charset=UTF-8
content-length: 862
server: Tengine
x-cache-status: MISS
X-Firefox-Spdy: h2

sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894286620122.gif

20.189.126.154

200 OK

132 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894286620122.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 960 x 60\012- data
Size
132 kB (131724 bytes)
Hash
6815a174b1da262bb85e17910991d3ed
cbf03ab57a46f9301dac7cd0f7cf99c777b686c7
d0089533769022907251b9dd2fbd0c51fbd14b1326dda3cc2d990c1931fabc01

HTTP Headers

GET /static/uploads/image/x26/20221004/1664894286620122.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 04 Oct 2022 14:38:10 GMT
ETag: "1664894290"
Expires: Thu, 03 Nov 2022 14:38:10 GMT
Last-Modified: Tue, 04 Oct 2022 14:38:10 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

taiwtp1.com/img/960240.gif

220.128.218.220

200 OK

224 kB

URL HTTP/2
taiwtp1.com/img/960240.gif
IP
220.128.218.220:0
ASN
#3462 Data Communication Business Group

File type
GIF image data, version 89a, 960 x 240\012- data
Size
224 kB (223879 bytes)
Hash
a39bb27f09ccd6961fe1c0f3074a8b97
0e914bc58abc78e7275d3c639e2aeb548313d627
269a642190139efcc044a53f3194f196e79d8e981d3e8cf0184ce4e8eb134020

HTTP Headers

GET /img/960240.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:36:55 GMT
content-type: image/gif
content-length: 223879
last-modified: Wed, 09 Mar 2022 04:06:14 GMT
etag: "622827b6-36a87"
expires: Fri, 18 Nov 2022 07:36:55 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894380503898.gif

20.189.126.154

200 OK

245 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894380503898.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 960 x 60\012- data
Size
245 kB (245365 bytes)
Hash
15b01b59267acae7726f30675e79d8bf
7449390411869cdc7b1b4ae6bee7e4fb7e893675
3c17fb36844b4fc9ead50ffc421dba8367ff08b4e307195f72323a2d9edec46d

HTTP Headers

GET /static/uploads/image/x22/20221004/1664894380503898.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 04 Oct 2022 16:53:18 GMT
ETag: "1664902398"
Expires: Thu, 03 Nov 2022 16:53:18 GMT
Last-Modified: Tue, 04 Oct 2022 16:53:18 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

666000258.com/static/225135logo.gif

137.220.135.132

200 OK

28 kB

URL HTTP/2
666000258.com/static/225135logo.gif
IP
137.220.135.132:0
ASN
#64050 BGPNET Global ASN

File type
GIF image data, version 89a, 225 x 135\012- data
Size
28 kB (27866 bytes)
Hash
091a0eac7433930eed89d3a184878e05
9624170ad6d9b085d4085a9c4266fe682ee93d13
07f5afe8aca7c169c7d96051002a63dba1062c50a41db9164c693949e4989002

HTTP Headers

GET /static/225135logo.gif HTTP/1.1
Host: 666000258.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:55 GMT
content-type: image/gif
content-length: 27866
last-modified: Tue, 11 Oct 2022 03:44:34 GMT
etag: "6344e6a2-6cda"
expires: Fri, 18 Nov 2022 07:38:55 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894189710457.gif

20.189.126.154

200 OK

261 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894189710457.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 960 x 60\012- data
Size
261 kB (261015 bytes)
Hash
68ca80e6c19384277e66f07f304b6ed7
680dea475bf73401cd981b5d64f81a23c5536fed
cdbf4e9a6e9fd6b14415c2039f70aef83ec4067c4d82510246096432cd8b93a8

HTTP Headers

GET /static/uploads/image/x26/20221004/1664894189710457.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 04 Oct 2022 14:36:30 GMT
ETag: "1664894191"
Expires: Thu, 03 Nov 2022 14:36:30 GMT
Last-Modified: Tue, 04 Oct 2022 14:36:31 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894322248517.gif

20.189.126.154

200 OK

258 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894322248517.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 960 x 60\012- data
Size
258 kB (257993 bytes)
Hash
038ba2e11d90524678f7762f4628513f
a41054637ff263d13570f7eec83a3286957edc80
51d5f69d306345589b0c376bcff99c50c48bda07e3d61a5d3c1a96181acefa71

HTTP Headers

GET /static/uploads/image/x22/20221004/1664894322248517.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 04 Oct 2022 16:53:18 GMT
ETag: "1664902398"
Expires: Thu, 03 Nov 2022 16:53:18 GMT
Last-Modified: Tue, 04 Oct 2022 16:53:18 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

kvtnnn.top/68a7807de3933bf7079116fa9df99e6f.gif

104.21.234.87

200 OK

366 kB

URL HTTP/2
kvtnnn.top/68a7807de3933bf7079116fa9df99e6f.gif
IP
104.21.234.87:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 60\012- data
Size
366 kB (366444 bytes)
Hash
86371c51bf2086f3a40f0e438246b662
9da793de9c620485ee91b88413b256c69dc774c5
8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf

HTTP Headers

GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kvtnnn.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys14.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:56 GMT
content-type: image/gif
content-length: 366444
last-modified: Fri, 19 Aug 2022 17:02:28 GMT
etag: "62ffc224-5976c"
expires: Tue, 15 Nov 2022 05:53:50 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 265506
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kdpoG7Ve30lPO9otwZgDmPQJZA8gm2O%2BGbQ%2BwfpWyH1SiqTMjpN%2Fs4dFxvHvlGs7b3OcXc60SLO%2FTMcPSCRDWr5y%2FWiQsK7nBVzhv9OnHyJ4xmAAbgleJAwa%2FzhO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c7db664fed768c-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-yudietupian-cdn.com/yd/230-160.gif

154.197.13.136

200 OK

223 kB

URL HTTP/2
cdn-yudietupian-cdn.com/yd/230-160.gif
IP
154.197.13.136:0
ASN
#0

File type
GIF image data, version 89a, 230 x 160\012- data
Size
223 kB (222720 bytes)
Hash
a2b256cd905526d70276fd2835fa79f4
03564799a379dae5aa7b4efad02635adf8c9fa63
d10449e6d09e17bb3b39cde96abd5bdb3552ef33137f4a1380fa6be3b0c8ea44

HTTP Headers

GET /yd/230-160.gif HTTP/1.1
Host: cdn-yudietupian-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:55 GMT
content-type: image/gif
content-length: 222720
last-modified: Mon, 12 Sep 2022 09:17:13 GMT
etag: "631ef919-36600"
expires: Thu, 17 Nov 2022 12:43:38 GMT
cache-control: max-age=2592000
server: cdn-ddos-cc
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
f8f1b504da8f0ebba39b511eca117669
da2e0a01ad11f67c887fb4eb26478085f7b8a8cf
d4e3fda102745663e293aee132c3e8ff93674d32ee3ceb491ef9043553591c27

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:56 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 01:28:27 GMT
Expires: Wed, 26 Oct 2022 01:28:26 GMT
Etag: "da2e0a01ad11f67c887fb4eb26478085f7b8a8cf"
Cache-Control: max-age=581969,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75c7db6698511bfe-OSL

e1.o.lencr.org/

23.36.76.226

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
6b2b71a8c25d792fc03f520d893ea5f4
ba418dbc77d01e621c7619d89e39d7ce6e45ca57
d29fa9b2553d0fe985e263cfd253846bcbcbd1e0ff6238e7da0ef25fd730ad1e

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "D29FA9B2553D0FE985E263CFD253846BCBCBD1E0FF6238E7DA0EF25FD730AD1E"
Last-Modified: Sun, 16 Oct 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7489
Expires: Wed, 19 Oct 2022 09:43:45 GMT
Date: Wed, 19 Oct 2022 07:38:56 GMT
Connection: keep-alive

sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664958053685368.gif

20.189.126.154

200 OK

143 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664958053685368.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 225 x 136\012- data
Size
143 kB (142810 bytes)
Hash
e7fa5fab9c6f638bf6e867ab976713a1
0e04672bf56def9eb8eef15e9aedc4b6ead6dd05
1145d5d9f499e6f3e2818a598b72cf02ff750ba41752bc94ff06513a522ee23e

HTTP Headers

GET /static/uploads/image/x22/20221005/1664958053685368.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 05 Oct 2022 08:39:52 GMT
ETag: "1664959192"
Expires: Fri, 04 Nov 2022 08:39:52 GMT
Last-Modified: Wed, 05 Oct 2022 08:39:52 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

fmlb.netlbtu.com/upload/vod/2022/10-09/15/leriejuir1c1539leriejuir1c22519.jpg

45.89.208.114

200 OK

5.1 kB

URL HTTP/1.1
fmlb.netlbtu.com/upload/vod/2022/10-09/15/leriejuir1c1539leriejuir1c22519.jpg
IP
45.89.208.114:0
ASN
#40065 CNSERVERS

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
5.1 kB (5133 bytes)
Hash
b4fe691a1e1838c9f1478958a1755ecc
342f266ceede5184e9cc944325d5644aad9373cd
e16caff401e9c45407df43293ca846a805d8a8fa2893df39b000d5e76bdb4969

HTTP Headers

GET /upload/vod/2022/10-09/15/leriejuir1c1539leriejuir1c22519.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 19 Oct 2022 07:38:56 GMT
Content-Type: image/jpeg
Content-Length: 5133
Connection: keep-alive
Last-Modified: Sun, 09 Oct 2022 07:39:34 GMT
Accept-Ranges: bytes
ETag: "abcc7746b2dbd81:0"

sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664958002923244.gif

20.189.126.154

200 OK

138 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664958002923244.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 225 x 136\012- data
Size
138 kB (137556 bytes)
Hash
bd3f6c291cab93e830a11147c254ba40
84e34f4b6d924250b792926a4000b057496a171c
f83c49320f5c7ebedeeb3c449113fc15dd505bcc55a074c6c4cbebc3fb3a209f

HTTP Headers

GET /static/uploads/image/x22/20221005/1664958002923244.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 05 Oct 2022 08:23:17 GMT
ETag: "1664958198"
Expires: Fri, 04 Nov 2022 08:23:17 GMT
Last-Modified: Wed, 05 Oct 2022 08:23:18 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664958086287321.gif

20.189.126.154

200 OK

157 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664958086287321.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 225 x 136\012- data
Size
157 kB (157109 bytes)
Hash
b2ab67245d12303f5bbafd7d9b5f0114
44e3a620562fb6e6542b21d4ff534057d7dbe116
44748a35ac18f29a7fb6aa261701604648c5a5c2edf8b6a4d7789ef52b992afe

HTTP Headers

GET /static/uploads/image/x22/20221005/1664958086287321.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 05 Oct 2022 08:23:23 GMT
ETag: "1664958203"
Expires: Fri, 04 Nov 2022 08:23:23 GMT
Last-Modified: Wed, 05 Oct 2022 08:23:23 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

sysupload.csiteadmin.com/static/uploads/image/x22/20221011/1665488736300773.gif

20.189.126.154

200 OK

144 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221011/1665488736300773.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 225 x 136\012- data
Size
144 kB (143652 bytes)
Hash
8daacd0fa11caf19d79c021488006888
a8f6cf9ab8a92ac90a0a43b89bccf574cfe1b7ce
78538e6491052878c6d573ac5fa7deab612a7dfc3b8916147c8bfd81ae7ceb59

HTTP Headers

GET /static/uploads/image/x22/20221011/1665488736300773.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 11 Oct 2022 11:45:40 GMT
ETag: "1665488740"
Expires: Thu, 10 Nov 2022 11:45:40 GMT
Last-Modified: Tue, 11 Oct 2022 11:45:40 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

ocsp.digicert.cn/

47.246.44.205

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
471 B (471 bytes)
Hash
9f270def00cead6e0cb574da1dfefe73
22a1efbbac2447f963d6481d88c4eb8ed32ab9a0
87e49059bca25445cb6f918559f4178e495ece64892ccf112c78718df56739e2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 19 Oct 2022 07:38:56 GMT
Last-Modified: Tue, 18 Oct 2022 23:18:50 GMT
ETag: "634f345a-1d7"
Expires: Thu, 20 Oct 2022 23:18:50 GMT
Cache-Control: max-age=142794
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666165136
Via: cache29.l2vn1[179,179,200-0,M], cache29.l2vn1[181,0], cache2.se1[549,549,200-0,M], cache2.se1[550,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 19 Oct 2022 07:38:56 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616661651361407796e

sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894518194257.gif

20.189.126.154

200 OK

279 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894518194257.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 960 x 60\012- data
Size
279 kB (278909 bytes)
Hash
cbbb3d8ff70b59b11fd1182f7e5d77e9
06af5df2b2aeaa07b578979ee331b52e1f298323
f62a633b62c1dea5bca396206d4956bf14db30141e6e524bf3a00e3588c1c893

HTTP Headers

GET /static/uploads/image/x22/20221004/1664894518194257.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 04 Oct 2022 14:42:07 GMT
ETag: "1664894527"
Expires: Thu, 03 Nov 2022 14:42:07 GMT
Last-Modified: Tue, 04 Oct 2022 14:42:07 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894256451036.gif

20.189.126.154

200 OK

259 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894256451036.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 960 x 60\012- data
Size
259 kB (258804 bytes)
Hash
70649fd49138ca6897fe0c9365470117
f0cbcec39497ab084adb72c03a6225c2144c6866
48f51d425b1ad9363336bc2edf9009cbfd17d0c24f817fe60fec9e6ed258e5b0

HTTP Headers

GET /static/uploads/image/x22/20221004/1664894256451036.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 04 Oct 2022 14:40:36 GMT
ETag: "1664894436"
Expires: Thu, 03 Nov 2022 14:40:36 GMT
Last-Modified: Tue, 04 Oct 2022 14:40:36 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664958351815456.gif

20.189.126.154

200 OK

122 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664958351815456.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 225 x 136\012- data
Size
122 kB (122077 bytes)
Hash
37114d23edd40ed9e0901b4a9719e67b
203de7186613dabd8a3468c1869544447c99edaa
3c27d4f44ba0e325468830935351ed317f9db77d46ff0d07154900e5f41ec4de

HTTP Headers

GET /static/uploads/image/x22/20221005/1664958351815456.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 05 Oct 2022 08:39:52 GMT
ETag: "1664959192"
Expires: Fri, 04 Nov 2022 08:39:52 GMT
Last-Modified: Wed, 05 Oct 2022 08:39:52 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

sysupload.csiteadmin.com/static/uploads/image/x26/20221005/1664958058465466.gif

20.189.126.154

200 OK

119 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x26/20221005/1664958058465466.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 225 x 136\012- data
Size
119 kB (118706 bytes)
Hash
3af8a82b93e6db570c683b4c6e5f0450
937c3dd1c9fffec78b039ec5973008e928e279bf
ea57b0fdaf3bb2d726e9677a4b7ac267b8ca18b7e8e4abcb6b8e02fa6e89b383

HTTP Headers

GET /static/uploads/image/x26/20221005/1664958058465466.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 05 Oct 2022 08:39:52 GMT
ETag: "1664959193"
Expires: Fri, 04 Nov 2022 08:39:52 GMT
Last-Modified: Wed, 05 Oct 2022 08:39:53 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

sysupload.csiteadmin.com/static/uploads/image/x26/20221005/1664957978608725.gif

20.189.126.154

200 OK

108 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x26/20221005/1664957978608725.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 225 x 136\012- data
Size
108 kB (108092 bytes)
Hash
44f342e4357af0d5256493db6e7fc924
2f62b8f1d1c167566367105d5cae6dc52dc73133
156f4985af424639dd35a2ec1f77217a45781e148a4504f4109b48c2d71a0cfa

HTTP Headers

GET /static/uploads/image/x26/20221005/1664957978608725.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 05 Oct 2022 08:19:56 GMT
ETag: "1664957996"
Expires: Fri, 04 Nov 2022 08:19:56 GMT
Last-Modified: Wed, 05 Oct 2022 08:19:56 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

p.qlogo.cn/qqmail_head/PiajxSqBRaEJJRn8gJmldAhC0pUPnSjTFBia3lcU1Yh3mASpwYtAmD8Ru5UEX6CO3WjJsCjiboD2cM/0

43.129.255.47

200 OK

143 kB

URL HTTP/2
p.qlogo.cn/qqmail_head/PiajxSqBRaEJJRn8gJmldAhC0pUPnSjTFBia3lcU1Yh3mASpwYtAmD8Ru5UEX6CO3WjJsCjiboD2cM/0
IP
43.129.255.47:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type
GIF image data, version 89a, 960 x 60\012- data
Size
143 kB (142771 bytes)
Hash
50e1ecc2ba3db0fcf6b081ba3a499ca2
e89fc9c43132ff33900430842817bd1455533b46
7571359d9da05ec6286c8846ff10f0cda1ed6da94bd7af990b03d427bd66b218

HTTP Headers

GET /qqmail_head/PiajxSqBRaEJJRn8gJmldAhC0pUPnSjTFBia3lcU1Yh3mASpwYtAmD8Ru5UEX6CO3WjJsCjiboD2cM/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/gif
content-length: 142771
vary: Accept,Origin
last-modified: Sun, 02 Oct 2022 12:35:19 GMT
cache-control: max-age=2592000
x-delay: 35662 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 142771
chid: 0
fid: 0
x-nws-log-uuid: 04e7ded5-65cd-4bdd-a50b-5999f5a9f250
X-Firefox-Spdy: h2

sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664958243131147.gif

20.189.126.154

200 OK

133 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664958243131147.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 225 x 136\012- data
Size
133 kB (132742 bytes)
Hash
917f961ed729bc558e9962fd1484dbe2
f0962f3292c4097bb4f6a4ae63ca765714c7262d
51fd38511ac427eaad10ac504a836bb4ad732c51176e3cf8a6eca65df60302eb

HTTP Headers

GET /static/uploads/image/x22/20221005/1664958243131147.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 05 Oct 2022 08:39:52 GMT
ETag: "1664959193"
Expires: Fri, 04 Nov 2022 08:39:52 GMT
Last-Modified: Wed, 05 Oct 2022 08:39:53 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

ocsp.digicert.cn/

47.246.44.205

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
471 B (471 bytes)
Hash
9f270def00cead6e0cb574da1dfefe73
22a1efbbac2447f963d6481d88c4eb8ed32ab9a0
87e49059bca25445cb6f918559f4178e495ece64892ccf112c78718df56739e2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 19 Oct 2022 07:38:56 GMT
Last-Modified: Tue, 18 Oct 2022 23:18:50 GMT
ETag: "634f345a-1d7"
Expires: Thu, 20 Oct 2022 23:18:50 GMT
Cache-Control: max-age=142794
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666165136
Via: cache13.l2vn1[506,506,200-0,M], cache13.l2vn1[507,0], cache2.se1[885,885,200-0,M], cache2.se1[886,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 19 Oct 2022 07:38:57 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616661651361157782e

ocsp.digicert.cn/

47.246.44.205

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
471 B (471 bytes)
Hash
9f270def00cead6e0cb574da1dfefe73
22a1efbbac2447f963d6481d88c4eb8ed32ab9a0
87e49059bca25445cb6f918559f4178e495ece64892ccf112c78718df56739e2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 19 Oct 2022 07:38:56 GMT
Last-Modified: Tue, 18 Oct 2022 23:18:50 GMT
ETag: "634f345a-1d7"
Expires: Thu, 20 Oct 2022 23:18:50 GMT
Cache-Control: max-age=142794
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666165136
Via: cache10.l2vn1[518,518,200-0,M], cache10.l2vn1[519,0], cache2.se1[886,886,200-0,M], cache2.se1[888,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 19 Oct 2022 07:38:57 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616661651361187785e

ocsp.digicert.cn/

47.246.44.205

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
471 B (471 bytes)
Hash
9f270def00cead6e0cb574da1dfefe73
22a1efbbac2447f963d6481d88c4eb8ed32ab9a0
87e49059bca25445cb6f918559f4178e495ece64892ccf112c78718df56739e2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 19 Oct 2022 07:38:56 GMT
Last-Modified: Tue, 18 Oct 2022 23:18:50 GMT
ETag: "634f345a-1d7"
Expires: Thu, 20 Oct 2022 23:18:50 GMT
Cache-Control: max-age=142794
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666165136
Via: cache19.l2vn1[547,546,200-0,M], cache19.l2vn1[548,0], cache1.se1[908,908,200-0,M], cache1.se1[909,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 19 Oct 2022 07:38:57 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9516661651361126337e

fmlb.netlbtu.com/upload/vod/2019/11-08/04/st05uwgco2v0407st05uwgco2v258917.jpg

45.89.208.114

200 OK

8.0 kB

URL HTTP/1.1
fmlb.netlbtu.com/upload/vod/2019/11-08/04/st05uwgco2v0407st05uwgco2v258917.jpg
IP
45.89.208.114:0
ASN
#40065 CNSERVERS

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
8.0 kB (8028 bytes)
Hash
94cce198be510e7dad60f740fbecec8c
8314c91f10f5ec38742b3780681e6cec16190d2e
59267bae18e01a3c0744581e1376c17fd507651854a3122056d887b4d9e66f0a

HTTP Headers

GET /upload/vod/2019/11-08/04/st05uwgco2v0407st05uwgco2v258917.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 19 Oct 2022 07:38:56 GMT
Content-Type: image/jpeg
Content-Length: 8028
Connection: keep-alive
Last-Modified: Thu, 07 Nov 2019 20:07:25 GMT
Accept-Ranges: bytes
ETag: "194acf9a695d51:0"

fmlb.netlbtu.com/upload/vod/2022/09-28/03/n2ty52knjb20337n2ty52knjb2332177.jpg

45.89.208.114

200 OK

8.8 kB

URL HTTP/1.1
fmlb.netlbtu.com/upload/vod/2022/09-28/03/n2ty52knjb20337n2ty52knjb2332177.jpg
IP
45.89.208.114:0
ASN
#40065 CNSERVERS

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
8.8 kB (8829 bytes)
Hash
75a7a64965e27d7748ea85d184361d04
972f4b7ca8c0f8a58fddb4b87231dc475f01c13e
d6840d9c333a0f4780180bb8c686f50a01f687a2610684e9d396d49e6715b908

HTTP Headers

GET /upload/vod/2022/09-28/03/n2ty52knjb20337n2ty52knjb2332177.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 19 Oct 2022 07:38:56 GMT
Content-Type: image/jpeg
Content-Length: 8829
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 19:37:33 GMT
Accept-Ranges: bytes
ETag: "5d392197a8d2d81:0"

fmlb.netlbtu.com/upload/vod/2022/08-31/13/2yrr0wod3wh13232yrr0wod3wh3122907.jpg

45.89.208.114

200 OK

8.8 kB

URL HTTP/1.1
fmlb.netlbtu.com/upload/vod/2022/08-31/13/2yrr0wod3wh13232yrr0wod3wh3122907.jpg
IP
45.89.208.114:0
ASN
#40065 CNSERVERS

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
8.8 kB (8805 bytes)
Hash
30ed76a00c6ba5a0743421c79a85a456
84ab818e94afb878dd64e354b69cbb2eb0bdbb22
09df0ec846ddca07df9c60f975436a9ffc469f260fad2fa5cd731b686d01500d

HTTP Headers

GET /upload/vod/2022/08-31/13/2yrr0wod3wh13232yrr0wod3wh3122907.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 19 Oct 2022 07:38:56 GMT
Content-Type: image/jpeg
Content-Length: 8805
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 05:23:31 GMT
Accept-Ranges: bytes
ETag: "f0d146cff9bcd81:0"

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90ea90fc-0b03-49dc-abcc-5b2f63848ee4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7101 bytes)
Hash
dab85fff2471ea4c2ac2cff2ad49bae5
ab43e85170b3ca9df53b386e98a84da36a6978dc
777aeaeb9c0397a4ad77bdd8e8ea68d94f9ba508b32ddcb345348708f577471e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90ea90fc-0b03-49dc-abcc-5b2f63848ee4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7101
x-amzn-requestid: 5de5c163-8d87-4b48-9f54-d92801e5f3a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aIQIqHTvoAMFVFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634cc704-3e2f3599159bc8386907cb3f;Sampled=0
x-amzn-remapped-date: Mon, 17 Oct 2022 03:07:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fLSU6Wr2Wdt1k7vl-ktk0YLL1uXCYg1bqKJtM8ulKhoKvPMhp9WHiw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 04:34:58 GMT
age: 11039
etag: "ab43e85170b3ca9df53b386e98a84da36a6978dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664957962898269.gif

20.189.126.154

200 OK

136 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x22/20221005/1664957962898269.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 225 x 136\012- data
Size
136 kB (135617 bytes)
Hash
e2b3f17c74651d10d199dc95cb7bdf21
173e21137df4427a1bb417a60162e604fa43fe36
590d8375f2b0dd21dc6eecc7a14f3e939b3f4838784f0e1da463aa29a36e3a61

HTTP Headers

GET /static/uploads/image/x22/20221005/1664957962898269.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 05 Oct 2022 08:23:14 GMT
ETag: "1664958194"
Expires: Fri, 04 Nov 2022 08:23:14 GMT
Last-Modified: Wed, 05 Oct 2022 08:23:14 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

fmlb.netlbtu.com/upload/vod/2022/09-30/13/f0lpycsk5tx1314f0lpycsk5tx502941.jpg

45.89.208.114

200 OK

14 kB

URL HTTP/1.1
fmlb.netlbtu.com/upload/vod/2022/09-30/13/f0lpycsk5tx1314f0lpycsk5tx502941.jpg
IP
45.89.208.114:0
ASN
#40065 CNSERVERS

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
14 kB (14304 bytes)
Hash
8943af77fc234d1e4a935f8ff3007471
5316de2c0e183897735ae3f64ddc21172c9427bf
0bd345fe3484025bd9e72a45f52e661e91f606531c48f60f97a39f598187acad

HTTP Headers

GET /upload/vod/2022/09-30/13/f0lpycsk5tx1314f0lpycsk5tx502941.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 19 Oct 2022 07:38:56 GMT
Content-Type: image/jpeg
Content-Length: 14304
Connection: keep-alive
Last-Modified: Fri, 30 Sep 2022 05:14:50 GMT
Accept-Ranges: bytes
ETag: "7821f1908bd4d81:0"

sysupload.csiteadmin.com/static/uploads/image/x26/20221005/1664958027512691.gif

20.189.126.154

200 OK

271 kB

URL HTTP/1.1
sysupload.csiteadmin.com/static/uploads/image/x26/20221005/1664958027512691.gif
IP
20.189.126.154:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 225 x 136\012- data
Size
271 kB (270639 bytes)
Hash
8a598123a6c21612760ffc08cd6ddd05
b6bc973f2e717c2077eae5f43163fde18981eb30
349c245fb89068bc9236b8960f553a1bca367b07e75b988f67383ca21ff68908

HTTP Headers

GET /static/uploads/image/x26/20221005/1664958027512691.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 05 Oct 2022 08:39:52 GMT
ETag: "1664959192"
Expires: Fri, 04 Nov 2022 08:39:52 GMT
Last-Modified: Wed, 05 Oct 2022 08:39:52 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked

666222258.com/static/960120logo.gif

137.220.135.132

200 OK

211 kB

URL HTTP/2
666222258.com/static/960120logo.gif
IP
137.220.135.132:0
ASN
#64050 BGPNET Global ASN

File type
GIF image data, version 89a, 960 x 120\012- data
Size
211 kB (211240 bytes)
Hash
67e541a6b9571a70e72eaea63435d0cc
6b93a9afed7684e3084993d6a9cacdf764229b58
3006bd4b7cc9fd9635f89f9c4d8d911b765371df18667dcd2cfcabc0cb2d5ca5

HTTP Headers

GET /static/960120logo.gif HTTP/1.1
Host: 666222258.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:56 GMT
content-type: image/gif
content-length: 211240
last-modified: Tue, 11 Oct 2022 03:44:34 GMT
etag: "6344e6a2-33928"
expires: Fri, 18 Nov 2022 07:38:56 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jxys14.xyz/template/m1938pc/static/css/style.css

173.231.38.5

200 OK

48 kB

URL HTTP/2
www.jxys14.xyz/template/m1938pc/static/css/style.css
IP
173.231.38.5:0
ASN
#18450 WEBNX

File type
data
Size
48 kB (47993 bytes)
Hash
902010f646050943d6e88cd1a15adf97
34c1e7f0c5c8ce67e86b2944076df4d7fb20cdf5
2a5edca7c457275f04aaeb320971e04e4b5d19e39cf51cc8e5696d2ceed91d92

HTTP Headers

GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: www.jxys14.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:52 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:10 GMT
vary: Accept-Encoding
etag: W/"61e10012-10aff"
expires: Wed, 19 Oct 2022 19:38:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

si1.go2yd.com/get-image/0yFVWR9AM6k

58.254.180.65

200 OK

140 kB

URL HTTP/2
si1.go2yd.com/get-image/0yFVWR9AM6k
IP
58.254.180.65:0
ASN
#136958 China Unicom Guangdong IP network

File type
GIF image data, version 89a, 750 x 376\012- data
Size
140 kB (140259 bytes)
Hash
4125d9bf66b1a755f42abaea805ee9af
17232f64827beb19e2a717d1bdbf384b3e938249
d3c1b29a4d2c0fa6fc41d308d6c110eeb868276c2a74697766283838ebe1f732

HTTP Headers

GET /get-image/0yFVWR9AM6k HTTP/1.1
Host: si1.go2yd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: JSP3/2.0.14
date: Wed, 19 Oct 2022 07:38:56 GMT
content-type: image/gif
content-length: 140259
last-modified: Mon, 28 Feb 2022 07:48:08 GMT
etag: "4125d9bf66b1a755f42abaea805ee9af"
age: 772118
accept-ranges: bytes
x-application-context: application
x-kss-request-id: b8d0dad1b76d4aeeabd3c1f4e62e1a52
content-md5: QSXZv2axp1X0KrrqgF7prw==
timing-allow-origin: *
ohc-cache-hit: gz3un54 [2], xauncache75 [2], suzix242 [2]
ohc-file-size: 140259
x-cache-status: HIT
X-Firefox-Spdy: h2

fmlb.netlbtu.com/upload/vod/2022/09-26/15/mus5q5uummd1516mus5q5uummd121842.jpg

45.89.208.114

200 OK

7.8 kB

URL HTTP/1.1
fmlb.netlbtu.com/upload/vod/2022/09-26/15/mus5q5uummd1516mus5q5uummd121842.jpg
IP
45.89.208.114:0
ASN
#40065 CNSERVERS

File type
JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Size
7.8 kB (7756 bytes)
Hash
0f1c4007154f75c35d75f408e001bc6a
64724f653ce003586c12680c0ede2638533b9404
ebe54255a4390cb473cf6c734a3dba31e94a9ade9d5b9443eb2e2c5ed46c4f3e

HTTP Headers

GET /upload/vod/2022/09-26/15/mus5q5uummd1516mus5q5uummd121842.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 19 Oct 2022 07:38:56 GMT
Content-Type: image/jpeg
Content-Length: 7756
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 07:16:12 GMT
Accept-Ranges: bytes
ETag: "43f379db77d1d81:0"

tt.1468tu.com/58tu/960x100.gif

167.71.218.143

200 OK

166 kB

URL HTTP/1.1
tt.1468tu.com/58tu/960x100.gif
IP
167.71.218.143:0
ASN
#14061 DIGITALOCEAN-ASN

File type
GIF image data, version 89a, 960 x 100\012- data
Size
166 kB (165870 bytes)
Hash
ac63ac5a8f69ce5bd9f5c6dbcbe5e449
ea0e3a5a67615ba236262770bfbf9aacaaf59ef8
c509935cc565a4e97603bb9ae7ed879b22b0ac048e825cd771be70b69ce0842d

HTTP Headers

GET /58tu/960x100.gif HTTP/1.1
Host: tt.1468tu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 19 Oct 2022 07:38:55 GMT
Content-Type: image/gif
Content-Length: 165870
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 08:09:12 GMT
ETag: "b6ce236cffd6d81:0"
X-Powered-By: ASP.NET
Server: X-Y
X-Cache-Status: HIT
Accept-Ranges: bytes

p.qlogo.cn/qqmail_head/ajNVdqHZLLAAhTB4nzPcdlvSveJOxiaGBFgZnjhwBgdA8RviaktyXOCsIKYUxkSv3hXF5h0gYFjpg/0

43.129.255.47

200 OK

0 B

URL HTTP/2
p.qlogo.cn/qqmail_head/ajNVdqHZLLAAhTB4nzPcdlvSveJOxiaGBFgZnjhwBgdA8RviaktyXOCsIKYUxkSv3hXF5h0gYFjpg/0
IP
43.129.255.47:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /qqmail_head/ajNVdqHZLLAAhTB4nzPcdlvSveJOxiaGBFgZnjhwBgdA8RviaktyXOCsIKYUxkSv3hXF5h0gYFjpg/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 19 Oct 2022 07:38:56 GMT
content-type: image/gif
content-length: 228319
vary: Accept,Origin
last-modified: Wed, 18 May 2022 15:29:03 GMT
cache-control: max-age=2592000
x-delay: 38050 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 228319
chid: 0
fid: 0
x-nws-log-uuid: 04e38586-a182-4b5b-8fc9-3d519b6cf7b1
X-Firefox-Spdy: h2

img.x966.xyz/images/6345028bf069a31c59d98fa5.gif

3.36.126.81

302 Found

0 B

URL HTTP/2
img.x966.xyz/images/6345028bf069a31c59d98fa5.gif
IP
3.36.126.81:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/6345028bf069a31c59d98fa5.gif HTTP/1.1
Host: img.x966.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/b98f0a079cbe4664844d203380c42853
cache-control: max-age=86400
X-Firefox-Spdy: h2

img.cuphe.xyz/images/6345029af069a31c59d98fa6.gif

3.36.126.81

302 Found

0 B

URL HTTP/2
img.cuphe.xyz/images/6345029af069a31c59d98fa6.gif
IP
3.36.126.81:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/6345029af069a31c59d98fa6.gif HTTP/1.1
Host: img.cuphe.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/92d8bec0e6ce4a9a94e4f6b36345a2ef
cache-control: max-age=86400
X-Firefox-Spdy: h2

img.999993.co/images/631c815761ac02a3c057d0fb.gif

3.36.126.81

302 Found

0 B

URL HTTP/2
img.999993.co/images/631c815761ac02a3c057d0fb.gif
IP
3.36.126.81:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/631c815761ac02a3c057d0fb.gif HTTP/1.1
Host: img.999993.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/d3a13ee486ae419c97cc3b15c34ebadb
cache-control: max-age=86400
X-Firefox-Spdy: h2

p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5cd5c322c76272c5e26cad46e1f3c6ce7/0.png

43.129.255.47

200 OK

0 B

URL HTTP/2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5cd5c322c76272c5e26cad46e1f3c6ce7/0.png
IP
43.129.255.47:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b5cd5c322c76272c5e26cad46e1f3c6ce7/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/gif
content-length: 1495356
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:08:11 GMT
cache-control: max-age=2592000
x-delay: 102107 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1495356
chid: 0
fid: 0
x-nws-log-uuid: ea7761e0-af43-4c1d-b429-8b46239021dd
X-Firefox-Spdy: h2

si1.go2yd.com/get-image/0yFQ28gLGhP

58.254.180.65

200 OK

0 B

URL HTTP/2
si1.go2yd.com/get-image/0yFQ28gLGhP
IP
58.254.180.65:0
ASN
#136958 China Unicom Guangdong IP network

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /get-image/0yFQ28gLGhP HTTP/1.1
Host: si1.go2yd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: JSP3/2.0.14
date: Wed, 19 Oct 2022 07:38:57 GMT
content-type: image/gif
content-length: 279676
last-modified: Mon, 28 Feb 2022 06:31:20 GMT
etag: "b25d41aed5450abed3b57ce91edeb1ef"
age: 670830
accept-ranges: bytes
x-application-context: application
x-kss-request-id: f130ot80n86obs74opib5np8lk60k9tf
content-md5: sl1BrtVFCr7TtXzpHt6x7w==
timing-allow-origin: *
ohc-cache-hit: gz3un52 [2], cangzuncache52 [2], xaix239 [2]
ohc-file-size: 279676
x-cache-status: HIT
X-Firefox-Spdy: h2

www.jxys14.xyz/template/m1938pc/static/css/swiper.min.css

173.231.38.5

200 OK

0 B

URL HTTP/2
www.jxys14.xyz/template/m1938pc/static/css/swiper.min.css
IP
173.231.38.5:0
ASN
#18450 WEBNX

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/static/css/swiper.min.css HTTP/1.1
Host: www.jxys14.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:52 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:06 GMT
vary: Accept-Encoding
etag: W/"61e1000e-456d"
expires: Wed, 19 Oct 2022 19:38:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5472e67239ef16675ea414c591d4c7caa/0.png

43.129.255.47

200 OK

0 B

URL HTTP/2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5472e67239ef16675ea414c591d4c7caa/0.png
IP
43.129.255.47:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b5472e67239ef16675ea414c591d4c7caa/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/gif
content-length: 893726
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 16:38:38 GMT
cache-control: max-age=2592000
x-delay: 108867 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 893726
chid: 0
fid: 0
x-nws-log-uuid: 6bda74ab-c2c5-4063-8e86-a092419aa594
X-Firefox-Spdy: h2

www.jxys14.xyz/template/m1938pc/html9/ads/zxf.js

173.231.38.5

200 OK

0 B

URL HTTP/2
www.jxys14.xyz/template/m1938pc/html9/ads/zxf.js
IP
173.231.38.5:0
ASN
#18450 WEBNX

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/html9/ads/zxf.js HTTP/1.1
Host: www.jxys14.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 07:38:52 GMT
content-type: application/javascript
last-modified: Thu, 06 Oct 2022 12:58:53 GMT
vary: Accept-Encoding
etag: W/"633ed10d-51f"
expires: Wed, 19 Oct 2022 19:38:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

aliyun-static-oss.oss-cn-hongkong.aliyuncs.com/b5/f554e2887180883376a154c0d49550.gif?attname=899E8306-3565-4974-AD46-916F3A0C3E17.gif

47.56.33.17

200 OK

0 B

URL HTTP/1.1
aliyun-static-oss.oss-cn-hongkong.aliyuncs.com/b5/f554e2887180883376a154c0d49550.gif?attname=899E8306-3565-4974-AD46-916F3A0C3E17.gif
IP
47.56.33.17:0
ASN
#45102 Alibaba US Technology Co., Ltd.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /b5/f554e2887180883376a154c0d49550.gif?attname=899E8306-3565-4974-AD46-916F3A0C3E17.gif HTTP/1.1
Host: aliyun-static-oss.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 19 Oct 2022 07:38:55 GMT
Content-Type: image/gif
Content-Length: 294418
Connection: keep-alive
x-oss-request-id: 634FA98FFC567C31384207F6
Vary: Origin
Accept-Ranges: bytes
ETag: "B5F554E2887180883376A154C0D49550"
Last-Modified: Tue, 25 Jan 2022 08:46:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7927258656666560621
x-oss-storage-class: Standard
Content-Disposition: inline;filename=899E8306-3565-4974-AD46-916F3A0C3E17.gif
Content-MD5: tfVU4ohxgIgzdqFUwNSVUA==
x-oss-server-time: 1

p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b58a032ac4afb4e3c2b8b36dd7d3e56948/0.png

43.129.255.47

200 OK

0 B

URL HTTP/2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b58a032ac4afb4e3c2b8b36dd7d3e56948/0.png
IP
43.129.255.47:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b58a032ac4afb4e3c2b8b36dd7d3e56948/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/gif
content-length: 456390
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:11:26 GMT
cache-control: max-age=2592000
x-delay: 55230 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 456390
chid: 0
fid: 0
x-nws-log-uuid: 0fd8a5e3-657b-4861-83a4-3517f3dda8fe
X-Firefox-Spdy: h2

513575528.com/5763fcb110e746d991dc36aad301dda5.gif

47.75.19.145

200 OK

0 B

URL HTTP/1.1
513575528.com/5763fcb110e746d991dc36aad301dda5.gif
IP
47.75.19.145:0
ASN
#45102 Alibaba US Technology Co., Ltd.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /5763fcb110e746d991dc36aad301dda5.gif HTTP/1.1
Host: 513575528.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 19 Oct 2022 07:38:57 GMT
Content-Type: image/gif
Content-Length: 67749
Connection: keep-alive
x-oss-request-id: 634FA9907E084E35397B1251
Accept-Ranges: bytes
ETag: "7FB729164DE96495010D31173B4DFDE9"
Last-Modified: Fri, 23 Sep 2022 10:07:05 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3572186298259414675
x-oss-storage-class: Standard
Content-MD5: f7cpFk3pZJUBDTEXO0396Q==
x-oss-server-time: 1

p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b564bf8a82fe24d215c37baf794f0f8b71/0.png

43.129.255.47

200 OK

0 B

URL HTTP/2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b564bf8a82fe24d215c37baf794f0f8b71/0.png
IP
43.129.255.47:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b564bf8a82fe24d215c37baf794f0f8b71/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 19 Oct 2022 07:38:54 GMT
content-type: image/gif
content-length: 2668995
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:04:56 GMT
cache-control: max-age=2592000
x-delay: 146292 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 2668995
chid: 0
fid: 0
x-nws-log-uuid: 3a964816-38e8-45a0-abed-20835657fd90
X-Firefox-Spdy: h2

api.06fgej.com/js/dom.js

54.169.196.110

200 OK

0 B

URL HTTP/2
api.06fgej.com/js/dom.js
IP
54.169.196.110:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/dom.js HTTP/1.1
Host: api.06fgej.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys14.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 07:38:56 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1d8c96ac8343425"
last-modified: Fri, 16 Sep 2022 01:22:27 GMT
server: Tengine
x-cache-status: MISS
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations