Report - azinventorymanagement.com/

Report Overview

Submitted URL
azinventorymanagement.com/
IP
185.213.18.209
ASN
#46261 QUICKPACKET
Submitted
2023-06-05 04:52:29
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
lxbd2.com	unknown	2023-05-27	2023-05-27	2023-06-04	447 B	306 kB	172.83.155.45
tu.jnctupian.vip	unknown	2023-01-28	2023-02-04	2023-06-04	870 B	1.4 MB	162.250.140.227
tscf8.com	unknown	2023-05-28	2019-01-30	2023-06-05	2.2 kB	1.6 MB	172.83.155.45
jx.tongdoumaoyi.com	unknown	2022-07-04	2022-12-16	2023-06-04	1.1 kB	1.6 kB	20.24.81.157
lbfm.lbpictupian.com	unknown	2022-10-07	2022-10-09	2023-06-05	14 kB	269 kB	104.22.13.214
sta2.imgclh.com	unknown	2023-01-19	2023-02-06	2023-06-04	453 B	53 kB	104.21.66.6
dvcasha2.ocsp-certum.com	71753	2013-12-19	2014-11-27	2023-06-05	1.4 kB	7.5 kB	23.36.79.17
lexs9.com	unknown	2023-05-28	2023-05-28	2023-06-04	908 B	528 kB	172.83.155.45
png.pngtree.com	48376	2017-01-09	2017-03-16	2023-06-04	493 B	622 B	104.18.3.157
yangaiaiyang111111111111.oss-cn-hongkong.aliyuncs.com	unknown	2012-04-01	2023-05-14	2023-06-04	469 B	132 kB	47.75.19.123
165image.com:3188	unknown	unknown	No data	No data	430 B	321 kB	223.113.143.212
ocsp2.globalsign.com	1544	1999-04-19	2012-05-23	2023-06-04	357 B	1.9 kB	104.18.21.226
ocsp.buypass.com	157566	2004-08-13	2017-01-30	2023-06-04	990 B	6.5 kB	95.101.11.123
s2.loli.net	100401	2011-05-28	2021-12-08	2023-06-05	443 B	18 kB	104.26.1.190
lxbdx2rg.com	unknown	2023-05-23	2023-05-23	2023-06-04	450 B	306 kB	172.83.155.45
ocsp.sectigo.com	487	2018-08-16	2019-11-29	2023-06-05	1.3 kB	3.9 kB	104.18.14.101
api.share.baidu.com	44629	1999-10-11	2013-04-25	2023-06-05	404 B	114 B	39.156.68.163
	unknown				5.3 kB	258 kB	27.124.33.150
zhibo128x.xyz	unknown	2022-08-27	2022-09-07	2023-06-05	860 B	507 kB	154.83.27.206
xiod.xyz	unknown	2021-11-05	2023-03-20	2023-06-04	848 B	751 kB	123.234.2.86
push.zhanzhang.baidu.com	57139	1999-10-11	2015-07-22	2023-06-04	340 B	750 B	182.61.201.94
ocsp.globalsign.com	2075	1999-04-19	2012-07-20	2023-06-04	698 B	3.8 kB	104.18.21.226
files.backmoestream.xyz	unknown	2022-05-11	2022-08-15	2023-06-04	1.0 kB	660 kB	103.166.246.24
img.1231a.xyz	unknown	2023-05-10	2023-05-12	2023-06-04	450 B	274 B	103.166.246.24
225image.com:3188	unknown	unknown	No data	No data	430 B	132 kB	223.113.143.212
aaaaa557.com	unknown	2023-03-26	2023-04-04	2023-06-04	900 B	868 kB	103.170.15.114
azinventorymanagement.com	unknown	2022-10-19	2013-05-25	2023-06-05	398 B	210 B	185.213.18.209
www.azinventorymanagement.com	unknown	2022-10-19	2017-09-15	2023-06-05	1.5 kB	4.0 kB	185.213.18.209
pic.picnewsss.com	unknown	2022-06-14	2022-06-14	2023-06-04	441 B	27 kB	143.92.60.106
static.qwahk.com	unknown	2022-10-15	2022-11-07	2023-06-05	857 B	307 kB	154.39.80.127
img.1228a.xyz	unknown	2023-05-10	2023-05-13	2023-06-04	450 B	274 B	103.166.246.24
595image.com:3188	unknown	unknown	No data	No data	430 B	185 kB	223.113.143.213
228image.com:3188	unknown	unknown	No data	No data	430 B	174 kB	223.113.143.213
storage.googleapis.com	420	2005-01-25	2012-08-06	2023-06-05	446 B	30 kB	142.250.74.80
zerossl.ocsp.sectigo.com	4049	2018-08-16	2020-05-09	2023-06-05	338 B	1.2 kB	104.18.14.101
hm.baidu.com	8254	1999-10-11	2012-05-26	2023-06-05	3.6 kB	37 kB	103.235.46.191
8388tp.com	unknown	2023-03-28	2023-03-28	2023-06-05	851 B	107 kB	162.250.140.188
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-05	666 B	1.4 kB	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-05 04:52:15	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	unknown	37 B	2023-04-11	2024-04-24
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:49:14 Last Seen2024-04-24 05:59:01 Times Seen21813 Hash 1c5c9160600df2d96d69a4ea16cec7ed 3cf678c9135cc952ba6970ef545035bb757a443f a3520fe88e248d2b6c9c6db93309a037ef969fe297208e5bd7e49a55bb32c808 Loading...

	hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824	30 kB	2023-06-05	2023-06-05
Pretty URL hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 06:52:58 Last Seen2023-06-05 06:52:58 Times Seen2 Hash 424566c6d30685a68184170a106dfd2e 6dc21fd7f25fda756b40d178642072315edafb4d 311e5f00dc2a4a578fc72478daab950764e68daf00533d92eed9123d1ba4a2ee Loading...

	www.jxhjl.xyz:51868/template/m1938pc/html9/ads/zxf.js	1.8 kB	2023-06-04	2023-06-05
Pretty URL www.jxhjl.xyz:51868/template/m1938pc/html9/ads/zxf.js IP 27.124.33.150 ASN #64050 BGPNET Global ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-04 22:16:03 Last Seen2023-06-05 06:52:58 Times Seen2 Hash 966fb3e56a0f2c8b46b6bd2cd1da3e26 d7f7ccfea4fc50f8bbaabc239f994dad4e430c4d 3060914827ba5e438ffae65df79962436ef15350f29f34259649cc6c15bb926b Loading...

	www.jxhjl.xyz:51868/	254 B	2023-03-07	2023-07-10
Pretty URL www.jxhjl.xyz:51868/ IP 27.124.33.150 ASN #64050 BGPNET Global ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:17:15 Last Seen2023-07-10 02:29:30 Times Seen148 Hash 2b060c01c124335c89db809e88d801f5 4226dea14013c0d2b6a391cebcfafc02e00d9305 46b48e8582d3035db685d90fd6ef29a676ae4f59721521c4025568c81fc43621 Loading...

	hm.baidu.com/hm.js?2ac4a2d34c34a270e029b4996d351332	30 kB	2023-06-05	2023-06-05
Pretty URL hm.baidu.com/hm.js?2ac4a2d34c34a270e029b4996d351332 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 06:52:58 Last Seen2023-06-05 06:52:58 Times Seen2 Hash 122cadb5300e1824984beda9dd789abb 41fc87c9515eb880780f11b0cebb52bba422ed71 413f45615498fd509952685b2687e3a595a01ad86ffb496f698e45245fbdc06e Loading...

	www.azinventorymanagement.com/index.php	0 B	2023-03-07	2024-04-24
Pretty URL www.azinventorymanagement.com/index.php IP 185.213.18.209 ASN #46261 QUICKPACKET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 06:39:10 Times Seen37033041 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	push.zhanzhang.baidu.com/push.js	281 B	2023-03-07	2024-04-21
Pretty URL push.zhanzhang.baidu.com/push.js IP 182.61.201.94 ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-21 21:29:48 Times Seen18980 Hash 1bb5a3267c9865ad4abe8d937734b62b b5478dd2edb3e64242eced1db2dbd945ef81f592 674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2 Loading...

	hm.baidu.com/hm.js?20b2a673865afb658a9fa1545434b78d	30 kB	2023-06-05	2023-06-05
Pretty URL hm.baidu.com/hm.js?20b2a673865afb658a9fa1545434b78d IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 06:52:58 Last Seen2023-06-05 06:52:58 Times Seen2 Hash 261274c8181659488d481a166896d0e6 8680a71f54e936885c637a0adfe7c5ecb79b87a4 96fd98266a864b82a1ce9df815688c3f6b35f206355f2c24e95cdfd7ae7b6799 Loading...

	www.azinventorymanagement.com/tj.js	522 B	2023-06-05	2023-06-05
Pretty URL www.azinventorymanagement.com/tj.js IP 185.213.18.209 ASN #46261 QUICKPACKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 06:52:58 Last Seen2023-06-05 06:52:58 Times Seen2 Hash 151c57179333a0b529f179d282c2f9ff 655e49002d111c06f739333ac0f31800822250d7 f958fee6275c53a0e8c11c321f5e9c58046f9ca8f321ca8352361c9cdbadb3d8 Loading...

	unknown	386 B	2023-06-05	2023-06-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-06-05 06:52:58 Last Seen2023-06-05 06:52:58 Times Seen1 Hash 6f810eecfa83971225c44c5a444ef4a9 179983281555d4613048f29eca4d0ffd37ff4263 b938c5374cf7fd09f0591291d8fa870bbbb1d2d3f35ca31bd93ca5efb831b986 Loading...

	unknown	328 B	2023-06-05	2023-06-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-06-05 06:52:58 Last Seen2023-06-05 06:52:58 Times Seen1 Hash 5236842c49e20748a85d5da3f69d517a 83c25f2d821cc0faed1c85b4046e3d78456c079d 20c625ea25a47fb92b74a6825731d2db8a7bd1464bee23670897584debaed672 Loading...

	unknown	386 B	2023-06-05	2023-06-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-06-05 06:52:58 Last Seen2023-06-05 06:52:58 Times Seen1 Hash ffc5e8b3a696e6c3efd23afe12d515a9 134921bf0c4ffc7f0a06ca7f583231ca2cd3ab8a 9cb4e87b58ca44c62e4000c7d0019aaa90f94b8d26b5f890f0bae75f50858608 Loading...

	www.azinventorymanagement.com/common.js	1.5 kB	2023-03-09	2023-10-19
Pretty URL www.azinventorymanagement.com/common.js IP 185.213.18.209 ASN #46261 QUICKPACKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 12:31:50 Last Seen2023-10-19 01:51:07 Times Seen446 Hash 46b458a7218859f9e104d60dfaf1be1e b294e53b5af044e5b0b992c9baf639009d4b2ee7 52b19e0231b1983206d08645bc875476a80cfb274da47cfcd97fd082f8e51531 Loading...

		Size	First Seen	Last Seen
	#1 Eval - cc9c320aa88525d62aece36ce62fc20a	478 B	2023-06-05	2023-06-05
Pretty Observations First Seen2023-06-05 06:52:58 Last Seen2023-06-05 06:52:58 Times Seen1 Hash cc9c320aa88525d62aece36ce62fc20a 4bfa99c24c1d4b581206d32662ff7b8344b88bc8 58e2c57dd551c5c1f942d80c09d6f148163aad55b9763c9de3f280c453ad529b Loading...

		Size	First Seen	Last Seen
	#1 Write - 104f6c5f4bb7a757b91dc6ffe5b7d882	459 B	2023-06-05	2023-06-05
Pretty Observations First Seen2023-06-05 06:52:58 Last Seen2023-06-05 06:52:58 Times Seen1 Hash 104f6c5f4bb7a757b91dc6ffe5b7d882 70835d7600c7b4575b9caac6a0c1d16ffd3e00b8 ae7d536f64d921ddbc3df9b6e0ae5370460d2cb391b2deabcad09e2aa5bbbe17 Loading...

	#2 Write - b41c326655a1e61ea6f6dcc70f797eb7	201 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:06:53 Last Seen2024-04-19 06:49:25 Times Seen3761 Hash b41c326655a1e61ea6f6dcc70f797eb7 a416e2affbcd88fe88775b1dd7256dbb7b0e2b87 2d7d346bf62ff160f8d7d20318bedeb9dc7c79d0e2845f6061de5beabda471ca Loading...

	#3 Write - 02ef5bfe81a245abc85921f1d7737f56	592 B	2023-05-31	2023-06-18
Pretty Observations First Seen2023-05-31 21:17:25 Last Seen2023-06-18 09:58:46 Times Seen25 Hash 02ef5bfe81a245abc85921f1d7737f56 c561a2b3e338e46da82fd2302eb2dd61462dae14 92b0be5e8e1f67e7eaec9973574044ef1e64474cfdf5b91b45ffe66a4fd51403 Loading...

	#4 Write - 21d7128547d99fc554a984d73f1ff0db	605 B	2023-06-04	2023-06-05
Pretty Observations First Seen2023-06-04 22:16:03 Last Seen2023-06-05 06:52:58 Times Seen2 Hash 21d7128547d99fc554a984d73f1ff0db 8304dbdc6196ab1e79dbb5e5232faa123b0d4f1f b23d373e4e00f609540ed7b01152275426d610985f98b51d3f78306de182d925 Loading...

HTTP Transactions (108)

	URL	IP	Response	Size
	azinventorymanagement.com/	185.213.18.209		0 B
URL User Request GET azinventorymanagement.com/ IP 185.213.18.209:0 ASN #46261 QUICKPACKET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: azinventorymanagement.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Server: nginx Date: Mon, 05 Jun 2023 04:52:08 GMT Content-Type: text/html Content-Length: 0 Connection: keep-alive Location: http://www.azinventorymanagement.com/index.php`

	www.azinventorymanagement.com/index.php	185.213.18.209		787 B
URL User Request GET www.azinventorymanagement.com/index.php IP 185.213.18.209:0 ASN #46261 QUICKPACKET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators Size 787 B (787 bytes) Hash 850052b93bfc4ed0e9aea6386bc7bb90 7427546a75fbf9f34b525f3b117c2579a0be3313 25e0146a11f424590b393a4fab5a414cd0ce660bd324be0487c1d6387c51b175 HTTP Headers `GET /index.php HTTP/1.1 Host: www.azinventorymanagement.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Mon, 05 Jun 2023 04:52:09 GMT Content-Type: text/html Content-Length: 787 Connection: keep-alive`

	www.azinventorymanagement.com/tj.js	185.213.18.209	200 OK	522 B
URL GET HTTP/1.1 www.azinventorymanagement.com/tj.js IP 185.213.18.209:80 ASN #46261 QUICKPACKET Requested by http://www.azinventorymanagement.com/index.php File type ASCII text, with CRLF line terminators Size 522 B (522 bytes) Hash 151c57179333a0b529f179d282c2f9ff 655e49002d111c06f739333ac0f31800822250d7 f958fee6275c53a0e8c11c321f5e9c58046f9ca8f321ca8352361c9cdbadb3d8 HTTP Headers `GET /tj.js HTTP/1.1 Host: www.azinventorymanagement.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.azinventorymanagement.com/index.php Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Mon, 05 Jun 2023 04:52:09 GMT Content-Type: application/x-javascript Content-Length: 522 Connection: keep-alive`

	www.azinventorymanagement.com/common.js	185.213.18.209	200 OK	753 B
URL GET HTTP/1.1 www.azinventorymanagement.com/common.js IP 185.213.18.209:80 ASN #46261 QUICKPACKET Requested by http://www.azinventorymanagement.com/index.php File type HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators Size 753 B (753 bytes) Hash 46b458a7218859f9e104d60dfaf1be1e b294e53b5af044e5b0b992c9baf639009d4b2ee7 52b19e0231b1983206d08645bc875476a80cfb274da47cfcd97fd082f8e51531 HTTP Headers `GET /common.js HTTP/1.1 Host: www.azinventorymanagement.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.azinventorymanagement.com/index.php Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Mon, 05 Jun 2023 04:52:09 GMT Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Content-Encoding: gzip`

	push.zhanzhang.baidu.com/push.js	182.61.201.94	200 OK	227 B
URL GET HTTP/1.1 push.zhanzhang.baidu.com/push.js IP 182.61.201.94:80 ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.azinventorymanagement.com/index.php File type ASCII text, with no line terminators Size 227 B (227 bytes) Hash 1bb5a3267c9865ad4abe8d937734b62b b5478dd2edb3e64242eced1db2dbd945ef81f592 674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2 HTTP Headers `GET /push.js HTTP/1.1 Host: push.zhanzhang.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.azinventorymanagement.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=31536000 Content-Encoding: gzip Content-Length: 227 Content-Type: text/javascript Date: Mon, 05 Jun 2023 04:52:10 GMT Etag: "4078521116" Expires: Tue, 04 Jun 2024 04:52:10 GMT Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT P3p: CP=" OTI DSP COR IVA OUR IND COM " Server: apache Set-Cookie: BAIDUID=EDFFF2AE215A75BB97A3D4B821A8B111:FG=1; max-age=31536000; expires=Tue, 04-Jun-24 04:52:10 GMT; domain=.baidu.com; path=/; version=1 Vary: Accept-Encoding

	ocsp.globalsign.com/gsrsaovsslca2018	104.18.21.226		1.4 kB
URL ocsp.globalsign.com/gsrsaovsslca2018 IP 104.18.21.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.4 kB (1432 bytes) Hash 36f79592dc7d6dd0cf1069d35ad3e70c 16bca3662241c070f00d1a11c303976bb50113c1 a62b5a95f991a7dcff485b49f871231deec1e0b7842b424ea7ec7496d7ded13d HTTP Headers `POST /gsrsaovsslca2018 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:10 GMT Content-Type: application/ocsp-response Content-Length: 1432 Connection: keep-alive Expires: Fri, 09 Jun 2023 01:29:09 GMT ETag: "16bca3662241c070f00d1a11c303976bb50113c1" Last-Modified: Mon, 05 Jun 2023 01:29:10 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 1955 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7d25cdffdebeb4fa-OSL`

	ocsp.globalsign.com/gsrsaovsslca2018	104.18.20.226		1.4 kB
URL ocsp.globalsign.com/gsrsaovsslca2018 IP 104.18.20.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.4 kB (1432 bytes) Hash 36f79592dc7d6dd0cf1069d35ad3e70c 16bca3662241c070f00d1a11c303976bb50113c1 a62b5a95f991a7dcff485b49f871231deec1e0b7842b424ea7ec7496d7ded13d HTTP Headers `POST /gsrsaovsslca2018 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:10 GMT Content-Type: application/ocsp-response Content-Length: 1432 Connection: keep-alive Expires: Fri, 09 Jun 2023 01:29:09 GMT ETag: "16bca3662241c070f00d1a11c303976bb50113c1" Last-Modified: Mon, 05 Jun 2023 01:29:10 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 1955 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7d25cdffd87cb52d-OSL`

	www.azinventorymanagement.com/favicon.ico	185.213.18.209	200 OK	1.2 kB
URL GET HTTP/1.1 www.azinventorymanagement.com/favicon.ico IP 185.213.18.209:80 ASN #46261 QUICKPACKET Requested by http://www.azinventorymanagement.com/index.php File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Size 1.2 kB (1150 bytes) Hash 7ef1f0a0093460fe46bb691578c07c95 2da3ffbbf4737ce4dae9488359de34034d1ebfbd 4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c HTTP Headers `GET /favicon.ico HTTP/1.1 Host: www.azinventorymanagement.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.azinventorymanagement.com/index.php Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Mon, 05 Jun 2023 04:52:10 GMT Content-Type: image/x-icon Content-Length: 1150 Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT Connection: keep-alive ETag: "4e0d81df-47e" Expires: Sat, 10 Jun 2023 04:52:10 GMT Cache-Control: max-age=432000 Accept-Ranges: bytes`

	api.share.baidu.com/s.gif?l=http://www.azinventorymanagement.com/index.php	39.156.68.163	200 OK	0 B
URL GET HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.azinventorymanagement.com/index.php IP 39.156.68.163:80 ASN #9808 China Mobile Communications Group Co., Ltd. Requested by http://www.azinventorymanagement.com/index.php File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /s.gif?l=http://www.azinventorymanagement.com/index.php HTTP/1.1 Host: api.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.azinventorymanagement.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Length: 0 Content-Type: text/plain; charset=utf-8 Date: Mon, 05 Jun 2023 04:52:11 GMT`

	zerossl.ocsp.sectigo.com/	104.18.14.101		727 B
URL zerossl.ocsp.sectigo.com/ IP 104.18.14.101:0 ASN #13335 CLOUDFLARENET File type data Size 727 B (727 bytes) Hash a60582a5c583e38bc036042fafbc8d95 e0a439fd944cfc56e2e63dbaf7e02c7ac79196e8 986c2b72371ad849c7c6e9dc5b79f012c2acdeb8c8aee054a29d0bf75c2a8a64 HTTP Headers `POST / HTTP/1.1 Host: zerossl.ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:11 GMT Content-Type: application/ocsp-response Content-Length: 727 Connection: keep-alive Last-Modified: Sun, 04 Jun 2023 20:27:14 GMT Expires: Sun, 11 Jun 2023 20:27:13 GMT Etag: "e0a439fd944cfc56e2e63dbaf7e02c7ac79196e8" Cache-Control: max-age=573901,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb5 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7d25ce02d91d1c0a-OSL`

	hm.baidu.com/hm.js?20b2a673865afb658a9fa1545434b78d	103.235.46.191	200 OK	11 kB
URL GET HTTP/1.1 hm.baidu.com/hm.js?20b2a673865afb658a9fa1545434b78d IP 103.235.46.191:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.azinventorymanagement.com/index.php Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5 ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT File type ASCII text, with very long lines (616) Size 11 kB (11254 bytes) Hash 261274c8181659488d481a166896d0e6 8680a71f54e936885c637a0adfe7c5ecb79b87a4 96fd98266a864b82a1ce9df815688c3f6b35f206355f2c24e95cdfd7ae7b6799 HTTP Headers `GET /hm.js?20b2a673865afb658a9fa1545434b78d HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.azinventorymanagement.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Cache-Control: max-age=0, must-revalidate Content-Encoding: gzip Content-Length: 11254 Content-Type: application/javascript Date: Mon, 05 Jun 2023 04:52:11 GMT Etag: d1c7851bd6695ad1e8ba0c7b981db934 P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Server: apache Set-Cookie: HMACCOUNT=FB4581D18ADAACE5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT HMTK=1; path=/; Max-Age=31536000; SameSite=None; Secure Strict-Transport-Security: max-age=172800

	hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824	103.235.46.191	200 OK	11 kB
URL GET HTTP/1.1 hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824 IP 103.235.46.191:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.azinventorymanagement.com/index.php Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5 ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT File type ASCII text, with very long lines (619) Size 11 kB (11257 bytes) Hash 424566c6d30685a68184170a106dfd2e 6dc21fd7f25fda756b40d178642072315edafb4d 311e5f00dc2a4a578fc72478daab950764e68daf00533d92eed9123d1ba4a2ee HTTP Headers `GET /hm.js?ac926d0332f02f4f5a734812940af824 HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.azinventorymanagement.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Cache-Control: max-age=0, must-revalidate Content-Encoding: gzip Content-Length: 11257 Content-Type: application/javascript Date: Mon, 05 Jun 2023 04:52:11 GMT Etag: 42ff847cf8b1ab7217acf023e849ee25 P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Server: apache Set-Cookie: HMACCOUNT=0244D4DB1C692957; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT HMTK=1; path=/; Max-Age=31536000; SameSite=None; Secure Strict-Transport-Security: max-age=172800

	jx.tongdoumaoyi.com/news/index.php	20.24.81.157	200 OK	630 B
URL GET HTTP/2 jx.tongdoumaoyi.com/news/index.php IP 20.24.81.157:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by http://www.azinventorymanagement.com/index.php Certificate IssuerZeroSSL Subjectjx.tongdoumaoyi.com Fingerprint59:C4:53:3C:E4:F2:E6:70:4E:61:EF:CA:E7:5C:30:6F:0D:5F:03:6C ValidityFri, 19 May 2023 00:00:00 GMT - Thu, 17 Aug 2023 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 630 B (630 bytes) Hash c6923286d39474b573f61f9ad9dda249 491b5acbb92ddcb379820c2ccbdc9c7f977db5d8 6308772b260a93495bef907edf0fe60bbe46b4ca1f3de2a9f85ccfb063b69dd5 HTTP Headers GET /news/index.php HTTP/1.1 Host: jx.tongdoumaoyi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.azinventorymanagement.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx/1.22.1 date: Mon, 05 Jun 2023 04:52:11 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding content-encoding: gzip x-country: NO x-cache: BYPASS@whalem3g700004o X-Firefox-Spdy: h2`

	hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2114301089&si=20b2a673865afb658a9fa1545434b78d&v=1.3.0&lv=1&sn=52857&r=0&ww=1280&u=http%3A%2F%2Fwww.azinventorymanagement.com%2Findex.php&tt=%E6%B9%96%E5%B7%9E%E7%BC%BA%E5%BD%BB%E7%89%A9%E8%81%94%E7%BD%91%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8	103.235.46.191	200 OK	43 B
URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2114301089&si=20b2a673865afb658a9fa1545434b78d&v=1.3.0&lv=1&sn=52857&r=0&ww=1280&u=http%3A%2F%2Fwww.azinventorymanagement.com%2Findex.php&tt=%E6%B9%96%E5%B7%9E%E7%BC%BA%E5%BD%BB%E7%89%A9%E8%81%94%E7%BD%91%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 IP 103.235.46.191:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.azinventorymanagement.com/index.php Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5 ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash ad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda HTTP Headers GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2114301089&si=20b2a673865afb658a9fa1545434b78d&v=1.3.0&lv=1&sn=52857&r=0&ww=1280&u=http%3A%2F%2Fwww.azinventorymanagement.com%2Findex.php&tt=%E6%B9%96%E5%B7%9E%E7%BC%BA%E5%BD%BB%E7%89%A9%E8%81%94%E7%BD%91%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.azinventorymanagement.com/ Cookie: HMTK=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Cache-Control: private, max-age=0, no-cache Content-Length: 43 Content-Type: image/gif Date: Mon, 05 Jun 2023 04:52:12 GMT P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Pragma: no-cache Server: apache Set-Cookie: HMACCOUNT=C3A13CEC98FF1C8C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800 X-Content-Type-Options: nosniff`

	jx.tongdoumaoyi.com/news/list.php	20.24.81.157	200 OK	555 B
URL GET HTTP/2 jx.tongdoumaoyi.com/news/list.php IP 20.24.81.157:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Requested by http://www.azinventorymanagement.com/index.php Certificate IssuerZeroSSL Subjectjx.tongdoumaoyi.com Fingerprint59:C4:53:3C:E4:F2:E6:70:4E:61:EF:CA:E7:5C:30:6F:0D:5F:03:6C ValidityFri, 19 May 2023 00:00:00 GMT - Thu, 17 Aug 2023 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 555 B (555 bytes) Hash 637259518865b83935eab154d6b71af6 23574d6802e7c4b5ff97092ff95a044aa1dbe48e b4c3423483d4efe49dff7661960628f16a537df9edae8ed40c620bf5a02c240b HTTP Headers GET /news/list.php HTTP/1.1 Host: jx.tongdoumaoyi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://jx.tongdoumaoyi.com/news/index.php Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.22.1 date: Mon, 05 Jun 2023 04:52:13 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding content-encoding: gzip x-country: NO x-cache: BYPASS@whalem3g700004o X-Firefox-Spdy: h2`

	www.jxhjl.xyz:51868/template/m1938pc/html9/ads/960-100.gif	27.124.33.150	200 OK	68 kB
URL GET HTTP/2 www.jxhjl.xyz:51868/template/m1938pc/html9/ads/960-100.gif IP 27.124.33.150:51868 ASN #64050 BGPNET Global ASN Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectjxcou.xyz Fingerprint47:1A:C8:1B:BA:38:0D:B8:E2:2A:B8:AA:6B:65:7A:16:15:53:BF:2A ValidityTue, 02 May 2023 15:41:07 GMT - Mon, 31 Jul 2023 15:41:06 GMT File type GIF image data, version 89a, 960 x 100\012- data Size 68 kB (67871 bytes) Hash c6670a83c36f90db2ccb28cf0f769773 9bf4a6511e8c9fc55e06ac079be795477bfcf052 0e60b19fb6deb939528af5b2b7f9b62a4a68c79f7b2e785cf8a473e80e0418fb HTTP Headers `GET /template/m1938pc/html9/ads/960-100.gif HTTP/1.1 Host: www.jxhjl.xyz:51868 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/gif content-length: 67871 last-modified: Fri, 12 May 2023 07:26:24 GMT etag: "645dea20-1091f" expires: Wed, 05 Jul 2023 04:52:15 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	www.jxhjl.xyz:51868/template/m1938pc/html9/ads/1.gif	27.124.33.150	200 OK	254 B
URL GET HTTP/2 www.jxhjl.xyz:51868/template/m1938pc/html9/ads/1.gif IP 27.124.33.150:51868 ASN #64050 BGPNET Global ASN Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectjxcou.xyz Fingerprint47:1A:C8:1B:BA:38:0D:B8:E2:2A:B8:AA:6B:65:7A:16:15:53:BF:2A ValidityTue, 02 May 2023 15:41:07 GMT - Mon, 31 Jul 2023 15:41:06 GMT File type GIF image data, version 89a, 16 x 17\012- data Size 254 B (254 bytes) Hash b013f8fa3ec997fe20dc80b82af0ad0a e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9 119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef HTTP Headers `GET /template/m1938pc/html9/ads/1.gif HTTP/1.1 Host: www.jxhjl.xyz:51868 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/gif content-length: 254 last-modified: Sat, 02 Apr 2022 12:20:12 GMT etag: "62483f7c-fe" expires: Wed, 05 Jul 2023 04:52:15 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/1fnc1i3dlnk.jpg	104.22.13.214	200 OK	8.4 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/1fnc1i3dlnk.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 8.4 kB (8442 bytes) Hash 3c6b9a46bfa9a8d2908f42cc280771bc c2ec900c4394e9ea5f3ca58ee177636af2910251 a87bf84cd6e3ddf8c1d19fea232661720b2cd87003a0c2b4cf3eb53dc79704ca HTTP Headers `GET /upload/vod/2023/06/1fnc1i3dlnk.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/webp content-length: 8442 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=9684 content-disposition: inline; filename="1fnc1i3dlnk.webp" etag: "647c614f-25d4" last-modified: Sun, 04 Jun 2023 10:02:55 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e59620afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/aw4sepgpka0.jpg	104.22.13.214	200 OK	11 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/aw4sepgpka0.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data Size 11 kB (11133 bytes) Hash 8831874027532dd3ef264a8900f39ef8 ac2de95400e658afb1448f3f4b6cc34fade67f2a a199ff88ae0606ad69f6e7d65f261636cdbdb15e0bc00aad36ef82802a63219f HTTP Headers `GET /upload/vod/2023/06/aw4sepgpka0.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/jpeg content-length: 11133 cf-bgj: imgq:85,h2pri cf-polished: origSize=11598, status=webp_bigger etag: "647c616e-2d4e" last-modified: Sun, 04 Jun 2023 10:03:26 GMT cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d25ce1e59680afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/0juwkqfzlir.jpg	104.22.13.214	200 OK	11 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/0juwkqfzlir.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data Size 11 kB (10646 bytes) Hash 5e1926d6b510b406821f1cce742841b3 11653fd85d282c0dc50096dda205a88598af1608 9e6ee0034faa418bdeb8cd8cc04312fef7964311fec55f0255a8e1bb425bbadf HTTP Headers `GET /upload/vod/2023/06/0juwkqfzlir.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/jpeg content-length: 10646 cf-bgj: imgq:85,h2pri cf-polished: origSize=11232, status=webp_bigger etag: "647c6169-2be0" last-modified: Sun, 04 Jun 2023 10:03:21 GMT cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d25ce1e59670afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/smqcu2ejesx.jpg	104.22.13.214	200 OK	9.3 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/smqcu2ejesx.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 9.3 kB (9284 bytes) Hash 9f735685cb8476a44c380f8649391fcf 8fb3a832056e543793cc89051565aa9ab8f1aceb 2ccd463fb8d59e253f15f8be094e0c351db2c0f41a099e9b5e7e954d791481f8 HTTP Headers `GET /upload/vod/2023/06/smqcu2ejesx.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/webp content-length: 9284 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=10273 content-disposition: inline; filename="smqcu2ejesx.webp" etag: "647c6154-2821" last-modified: Sun, 04 Jun 2023 10:03:00 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e59630afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/gjwdm2egmtb.jpg	104.22.13.214	200 OK	9.6 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/gjwdm2egmtb.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data Size 9.6 kB (9627 bytes) Hash 0b5c96bc3479b8f3458238708fe2e2a8 218c839d9953a7f8aece5e546ee39e078250784d 84199fce584ce2cf74e9dbb8bcb0a02b26f217914a5e62aa50ebd8cdcfb1250d HTTP Headers `GET /upload/vod/2023/06/gjwdm2egmtb.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/jpeg content-length: 9627 cf-bgj: imgq:85,h2pri cf-polished: origSize=10049, status=webp_bigger etag: "647c6177-2741" last-modified: Sun, 04 Jun 2023 10:03:35 GMT cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d25ce1e596b0afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/w03jcrd0hfr.jpg	104.22.13.214	200 OK	6.1 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/w03jcrd0hfr.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 6.1 kB (6054 bytes) Hash 84bb3f4ebbed2ed856b686e8d024b1e2 8f6351e34a70d892435556a3537cf1785f652139 ebbbe864f823f630a8be9e0015fcdb60949a91f1d846677562d0d846ff43bd11 HTTP Headers `GET /upload/vod/2023/06/w03jcrd0hfr.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/webp content-length: 6054 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=7087 content-disposition: inline; filename="w03jcrd0hfr.webp" etag: "647c6180-1baf" last-modified: Sun, 04 Jun 2023 10:03:44 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e596e0afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/2rytajuzwx0.jpg	104.22.13.214	200 OK	7.4 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/2rytajuzwx0.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 7.4 kB (7410 bytes) Hash c7e5215d9e90baf8ee5935e13163d11a 1f71f820b429fac03b3a2b7975e301d33ea12327 1c895f0295a5067f40a364d6661c4f079bf35e86f978dd4fe0ca3a4ac80f1973 HTTP Headers `GET /upload/vod/2023/06/2rytajuzwx0.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/webp content-length: 7410 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=8430 content-disposition: inline; filename="2rytajuzwx0.webp" etag: "647c617b-20ee" last-modified: Sun, 04 Jun 2023 10:03:39 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e596c0afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/p5xui4z3s51.jpg	104.22.13.214	200 OK	10 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/p5xui4z3s51.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data Size 10 kB (10445 bytes) Hash 794525c72a2120050f34c87c95842379 31b35fac010e0c25e82a7e616fcfd4b27a8bd832 7ed3a9b962a03274fb2ed21cc19be9de0a7ec08e2b479ab6b0c852243f4583cb HTTP Headers `GET /upload/vod/2023/06/p5xui4z3s51.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/jpeg content-length: 10445 cf-bgj: imgq:85,h2pri cf-polished: origSize=11020, status=webp_bigger etag: "647c6158-2b0c" last-modified: Sun, 04 Jun 2023 10:03:04 GMT cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d25ce1e59640afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/1aeb5vmmbmf.jpg	104.22.13.214	200 OK	6.6 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/1aeb5vmmbmf.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 6.6 kB (6626 bytes) Hash ed4b4f03f771780ba632ba3a7e8a41e4 57249b1ed437ed68c452d1b7a0efdabfa2b1d741 92183196bb59c3cb47ccf8f58c82e8c96ad35cfa8f2fd586ab1db7fe7279bf45 HTTP Headers `GET /upload/vod/2023/06/1aeb5vmmbmf.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/webp content-length: 6626 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=7871 content-disposition: inline; filename="1aeb5vmmbmf.webp" etag: "647c6172-1ebf" last-modified: Sun, 04 Jun 2023 10:03:30 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e596a0afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/bneznafkiab.jpg	104.22.13.214	200 OK	10 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/bneznafkiab.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data Size 10 kB (10233 bytes) Hash 3cff5b7a41246e79e0cb3ae2253f58ce 83ad804fa4fa3ec9e82bb2b6c50d8bcd9f7622fd 85d6d192ad4fbaebe421ba9f298c94608d4039ab1452004f5cbdd54dbb98fa2d HTTP Headers `GET /upload/vod/2023/06/bneznafkiab.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/jpeg content-length: 10233 cf-bgj: imgq:85,h2pri cf-polished: origSize=10732, status=webp_bigger etag: "647c6185-29ec" last-modified: Sun, 04 Jun 2023 10:03:49 GMT cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d25ce1e596f0afa-OSL X-Firefox-Spdy: h2`

	sta2.imgclh.com/imgs/2023/04/02/ffcef993551299da.gif	104.21.66.6	200 OK	53 kB
URL GET HTTP/2 sta2.imgclh.com/imgs/2023/04/02/ffcef993551299da.gif IP 104.21.66.6:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerGoogle Trust Services LLC Subjectimgclh.com Fingerprint46:4D:17:85:53:DC:4A:39:FC:8F:80:12:FC:5E:8F:89:9F:A8:E3:A7 ValiditySun, 04 Jun 2023 16:42:13 GMT - Sat, 02 Sep 2023 16:42:12 GMT File type GIF image data, version 89a, 225 x 135\012- data Size 53 kB (52663 bytes) Hash 1a98a2d920350a892b616f8c35327a8d 58ec2e24b4acee59813070d3db1200b68ece1a6a 66b727a4e73053803b2d5452e0288a77d2485c0142cf53808ddb7eef8c0a407e HTTP Headers `GET /imgs/2023/04/02/ffcef993551299da.gif HTTP/1.1 Host: sta2.imgclh.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/gif content-length: 52663 last-modified: Sun, 02 Apr 2023 07:52:07 GMT etag: "64293427-cdb7" expires: Sat, 17 Jun 2023 07:51:12 GMT cache-control: max-age=31536000 cf-cache-status: HIT age: 1544463 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V2MdoOTP9Dc98ayZNfNlXDigpIggahJwPBWx4cbKYpuWPiZeagja0HosXYvx6zTa5Wv48zIctq%2BYurgrqXc34r9Mn%2BQvUyLy7dgbFHA47NRowop6Jbag01M4Mr3JOO020aI%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7d25ce1ed9840b45-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	lbfm.lbpictupian.com/upload/vod/2023/06/iy2frwzm2xz.jpg	104.22.13.214	200 OK	6.8 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/iy2frwzm2xz.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 6.8 kB (6792 bytes) Hash 31f7080951b2075f2bf0b19e9d72f1a0 6100d9ca4e5bf035a895683b3e45acb0bac6cc49 56489d4722f5290c6ca42e7fa6a2f9fb95cc82d46ec0eb777fbd75161ffcb130 HTTP Headers `GET /upload/vod/2023/06/iy2frwzm2xz.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/webp content-length: 6792 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=7897 content-disposition: inline; filename="iy2frwzm2xz.webp" etag: "647b498b-1ed9" last-modified: Sat, 03 Jun 2023 14:09:15 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: HIT age: 1733 accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1f09d00afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/mod2edgsr43.jpg	104.22.13.214	200 OK	9.6 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/mod2edgsr43.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 9.6 kB (9556 bytes) Hash 638434bec88d3d5363353c933e06f541 40728a3775c2f9aefea8c1fbf41072f294b67d90 5aa5e7673100430fa2bc31aa94902dcb4473e4fbd2eed120714a9eac3d8bfa43 HTTP Headers `GET /upload/vod/2023/06/mod2edgsr43.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/webp content-length: 9556 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=10218 content-disposition: inline; filename="mod2edgsr43.webp" etag: "647c615f-27ea" last-modified: Sun, 04 Jun 2023 10:03:11 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1f09d50afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/qbq44zcid3f.jpg	104.22.13.214	200 OK	10 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/qbq44zcid3f.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 10 kB (10082 bytes) Hash dde0d5c59b3dd5becd5d6d1b70232063 2a38570f1aba727f1468a8929d4fe6c177f5eaac a6ed887e6aa626e480b4d7770084aa6b01a74221e5b6450a6bc0d04d116d803c HTTP Headers `GET /upload/vod/2023/06/qbq44zcid3f.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/webp content-length: 10082 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=10799 content-disposition: inline; filename="qbq44zcid3f.webp" etag: "647c6165-2a2f" last-modified: Sun, 04 Jun 2023 10:03:17 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: HIT age: 3802 accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1f09d40afa-OSL X-Firefox-Spdy: h2`

	dvcasha2.ocsp-certum.com/	23.36.79.17		1.6 kB
URL dvcasha2.ocsp-certum.com/ IP 23.36.79.17:0 ASN #20940 Akamai International B.V. File type data Size 1.6 kB (1599 bytes) Hash 8215d255a41075701c09153c46e52197 09ae9c671e3d272bbfe8ec21784ee3d36b6a5dff 6bf9468cbef5bd18669a5c8db86912b230f9021235871faa109e7c3f8529c21a HTTP Headers `POST / HTTP/1.1 Host: dvcasha2.ocsp-certum.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 1599 X-Cached: HIT Strict-Transport-Security: max-age=63072000,includeSubDomains,preload Cache-Control: max-age=900 Date: Mon, 05 Jun 2023 04:52:15 GMT Connection: keep-alive X-N: S`

	dvcasha2.ocsp-certum.com/	23.36.79.10		1.6 kB
URL dvcasha2.ocsp-certum.com/ IP 23.36.79.10:0 ASN #20940 Akamai International B.V. File type data Size 1.6 kB (1599 bytes) Hash 8215d255a41075701c09153c46e52197 09ae9c671e3d272bbfe8ec21784ee3d36b6a5dff 6bf9468cbef5bd18669a5c8db86912b230f9021235871faa109e7c3f8529c21a HTTP Headers `POST / HTTP/1.1 Host: dvcasha2.ocsp-certum.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 1599 X-Cached: HIT Strict-Transport-Security: max-age=63072000,includeSubDomains,preload Cache-Control: max-age=850 Date: Mon, 05 Jun 2023 04:52:15 GMT Connection: keep-alive X-N: S`

	dvcasha2.ocsp-certum.com/	23.36.79.17		1.6 kB
URL dvcasha2.ocsp-certum.com/ IP 23.36.79.17:0 ASN #20940 Akamai International B.V. File type data Size 1.6 kB (1599 bytes) Hash 57761eb349beb2f8c06911de8f6862cd d552234a6e74c8fc92d4449a4d0a50c77f6229f4 f1ef61bcae0a9af3aa0a970d4cd6bf6d95343ab1980570a43eb12ae3c54e897a HTTP Headers `POST / HTTP/1.1 Host: dvcasha2.ocsp-certum.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 1599 X-Cached: STALE Strict-Transport-Security: max-age=63072000,includeSubDomains,preload Cache-Control: max-age=900 Date: Mon, 05 Jun 2023 04:52:15 GMT Connection: keep-alive X-N: S`

	8388tp.com/tp/980x60.gif	162.250.140.188	200 OK	60 kB
URL GET HTTP/1.1 8388tp.com/tp/980x60.gif IP 162.250.140.188:443 ASN #62587 ANT-CLOUD Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subject8388tp.com Fingerprint8A:DF:4D:27:E6:00:94:BE:CA:5C:CC:C0:24:7E:DE:A1:80:C1:C6:7E ValidityTue, 28 Mar 2023 09:45:41 GMT - Mon, 26 Jun 2023 09:45:40 GMT File type GIF image data, version 89a, 980 x 61\012- data Size 60 kB (60278 bytes) Hash 2ba7349622b60057c41d48576fe5939d 1e2f5c45487179792c6f01bd3aeeee4dd03d97be a3b3d9deae6d11647d4b5f693f32f4f823f1e9ffd9cb202010c2ae6447cada07 HTTP Headers `GET /tp/980x60.gif HTTP/1.1 Host: 8388tp.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: openresty Date: Mon, 05 Jun 2023 04:52:09 GMT Content-Type: image/gif Content-Length: 60278 Connection: keep-alive Last-Modified: Wed, 12 Apr 2023 07:51:28 GMT ETag: "64366300-eb76" Expires: Fri, 16 Jun 2023 09:05:48 GMT Cache-Control: max-age=2592000 Via: localhost.localdomain CDN-Cache: HIT Accept-Ranges: bytes`

	www.jxhjl.xyz:51868/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff	27.124.33.150	200 OK	13 kB
URL GET HTTP/2 www.jxhjl.xyz:51868/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff IP 27.124.33.150:51868 ASN #64050 BGPNET Global ASN Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectjxcou.xyz Fingerprint47:1A:C8:1B:BA:38:0D:B8:E2:2A:B8:AA:6B:65:7A:16:15:53:BF:2A ValidityTue, 02 May 2023 15:41:07 GMT - Mon, 31 Jul 2023 15:41:06 GMT File type Web Open Font Format, TrueType, length 13408, version 1.0\012- data Size 13 kB (13408 bytes) Hash 99af6debcdaba3e7ffe01b4c3cbccacb 4efda64b06cd7c294f6214623bcb634f3def3bd1 1106aebd6819da7203324abc443186658c8f54180a460ccc5b83553c5ce34f72 HTTP Headers GET /template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff HTTP/1.1 Host: www.jxhjl.xyz:51868 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/template/m1938pc/static/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: font/woff content-length: 13408 last-modified: Fri, 14 Jan 2022 04:47:30 GMT etag: "61e10062-3460" strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	dvcasha2.ocsp-certum.com/	23.36.79.17		1.6 kB
URL dvcasha2.ocsp-certum.com/ IP 23.36.79.17:0 ASN #20940 Akamai International B.V. File type data Size 1.6 kB (1599 bytes) Hash 8215d255a41075701c09153c46e52197 09ae9c671e3d272bbfe8ec21784ee3d36b6a5dff 6bf9468cbef5bd18669a5c8db86912b230f9021235871faa109e7c3f8529c21a HTTP Headers `POST / HTTP/1.1 Host: dvcasha2.ocsp-certum.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 1599 X-Cached: HIT Strict-Transport-Security: max-age=63072000,includeSubDomains,preload Cache-Control: max-age=899 Date: Mon, 05 Jun 2023 04:52:16 GMT Connection: keep-alive X-N: S`

	ocsp2.globalsign.com/gsorganizationvalsha2g3	104.18.21.226		1.5 kB
URL ocsp2.globalsign.com/gsorganizationvalsha2g3 IP 104.18.21.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.5 kB (1461 bytes) Hash 131fc1347523f5b0319e332e35985f8b 0dddeea4638f8c9a9df9685547d37e953bcef1c7 125a98bb8114569868ed96300139ec399540b583e5be10ca009d06390a7d5ec6 HTTP Headers `POST /gsorganizationvalsha2g3 HTTP/1.1 Host: ocsp2.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:16 GMT Content-Type: application/ocsp-response Content-Length: 1461 Connection: keep-alive Expires: Fri, 09 Jun 2023 03:39:49 GMT ETag: "0dddeea4638f8c9a9df9685547d37e953bcef1c7" Last-Modified: Mon, 05 Jun 2023 03:39:50 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 119 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7d25ce200f031c02-OSL`

	lbfm.lbpictupian.com/upload/vod/2023/05/45k4lyaugdj.jpg	104.22.13.214	200 OK	8.5 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/05/45k4lyaugdj.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 8.5 kB (8484 bytes) Hash c0269943ab5bbbf0ea1eaf6e65344554 55a7ff17f0cf1c87628f302e637e91684415f7b2 398d0b22fd455f39928252c7c29d16ab52472729a10471c9a2eea6d483b090d5 HTTP Headers `GET /upload/vod/2023/05/45k4lyaugdj.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 8484 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=9634 content-disposition: inline; filename="45k4lyaugdj.webp" etag: "6469deed-25a2" last-modified: Sun, 21 May 2023 09:05:49 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e59550afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2022/12/ioyhtumulof.jpg	104.22.13.214	200 OK	5.4 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/ioyhtumulof.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 5.4 kB (5408 bytes) Hash 7166b8828b383416635552a4e7d934ce 87a7b007c91b402ac837ae8e266418ff7c2b3e6f 0d4d40ee2c8f25be22915ed40f628147f3c428bf48f54d5fc71a81bf91581919 HTTP Headers `GET /upload/vod/2022/12/ioyhtumulof.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 5408 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=6438 content-disposition: inline; filename="ioyhtumulof.webp" etag: "63919883-1926" last-modified: Thu, 08 Dec 2022 07:55:47 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e595f0afa-OSL X-Firefox-Spdy: h2`

	www.jxhjl.xyz:51868/template/m1938pc/static/css/style.css	27.124.33.150	200 OK	24 kB
URL GET HTTP/2 www.jxhjl.xyz:51868/template/m1938pc/static/css/style.css IP 27.124.33.150:51868 ASN #64050 BGPNET Global ASN Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectjxcou.xyz Fingerprint47:1A:C8:1B:BA:38:0D:B8:E2:2A:B8:AA:6B:65:7A:16:15:53:BF:2A ValidityTue, 02 May 2023 15:41:07 GMT - Mon, 31 Jul 2023 15:41:06 GMT File type gzip compressed data, from Unix\012- data Size 24 kB (23976 bytes) Hash 41674458bc3184d606fcd7cab349c9bd 6aa18bdb34a6fc768da15974be1c28abee5fb8e8 67473caf50ce9c86a2b92149127f06b9a761789829027579b01e3abb21f52212 HTTP Headers `GET /template/m1938pc/static/css/style.css HTTP/1.1 Host: www.jxhjl.xyz:51868 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: text/css last-modified: Fri, 14 Jan 2022 04:46:10 GMT vary: Accept-Encoding etag: W/"61e10012-10aff" expires: Mon, 05 Jun 2023 16:52:15 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	www.jxhjl.xyz:51868/template/m1938pc/static/css/bootstrap.min.css	27.124.33.150	200 OK	39 kB
URL GET HTTP/2 www.jxhjl.xyz:51868/template/m1938pc/static/css/bootstrap.min.css IP 27.124.33.150:51868 ASN #64050 BGPNET Global ASN Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectjxcou.xyz Fingerprint47:1A:C8:1B:BA:38:0D:B8:E2:2A:B8:AA:6B:65:7A:16:15:53:BF:2A ValidityTue, 02 May 2023 15:41:07 GMT - Mon, 31 Jul 2023 15:41:06 GMT File type gzip compressed data, from Unix\012- data Size 39 kB (38568 bytes) Hash 5bd9e1a87ed84f3bcd95400a181bf298 c26b7d9f6cb3fa6611272556a2fc4e5cf2c2b956 3ac0b02dfc6bccaf80300e273bb8cdbfdcf32d62b6efb3f127332d40faa4e948 HTTP Headers `GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1 Host: www.jxhjl.xyz:51868 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: text/css last-modified: Fri, 14 Jan 2022 04:46:04 GMT vary: Accept-Encoding etag: W/"61e1000c-23816" expires: Mon, 05 Jun 2023 16:52:15 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/03/qrbrtlcglcv.jpg	104.22.13.214	200 OK	7.9 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/qrbrtlcglcv.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 7.9 kB (7870 bytes) Hash 15c530405254f2920d0e9affd02ba234 c702066f0f9f3f50e441d0f9f3fd23ccd16f4508 55497d46fb2e77e529701ca01ffea9250df8d61ebaffbef80e345b352a24c287 HTTP Headers `GET /upload/vod/2023/03/qrbrtlcglcv.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 7870 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=8683 content-disposition: inline; filename="qrbrtlcglcv.webp" etag: "6402cd39-21eb" last-modified: Sat, 04 Mar 2023 04:46:49 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e59660afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/kc3px2o2xtf.jpg	104.22.13.214	200 OK	5.0 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/kc3px2o2xtf.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 5.0 kB (5016 bytes) Hash 55de124766e42238e5b2f7e45c24a6ba 9a07f60a7750e9c6590b73581b557a056a871f81 3d7373a4a38bc910e074f951de2e95b896d747d72b3a3726821663b835d1e740 HTTP Headers `GET /upload/vod/2023/06/kc3px2o2xtf.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 5016 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=6960 content-disposition: inline; filename="kc3px2o2xtf.webp" etag: "647c6191-1b30" last-modified: Sun, 04 Jun 2023 10:04:01 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e59560afa-OSL X-Firefox-Spdy: h2`

	www.jxhjl.xyz:51868/template/m1938pc/static/css/white.css	27.124.33.150	200 OK	11 kB
URL GET HTTP/2 www.jxhjl.xyz:51868/template/m1938pc/static/css/white.css IP 27.124.33.150:51868 ASN #64050 BGPNET Global ASN Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectjxcou.xyz Fingerprint47:1A:C8:1B:BA:38:0D:B8:E2:2A:B8:AA:6B:65:7A:16:15:53:BF:2A ValidityTue, 02 May 2023 15:41:07 GMT - Mon, 31 Jul 2023 15:41:06 GMT File type gzip compressed data, from Unix\012- data Size 11 kB (10944 bytes) Hash 5196b9263dca9f898a8acb24d30f9bcb 41f4a3f5e87a69ea5de41fd891b86b9a583f510e 1b9375a347e151aa74fee454b3413e7695bb37ddd54797cd7254eec186b56a71 HTTP Headers `GET /template/m1938pc/static/css/white.css HTTP/1.1 Host: www.jxhjl.xyz:51868 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: text/css last-modified: Fri, 14 Jan 2022 04:46:10 GMT vary: Accept-Encoding etag: W/"61e10012-29d9" expires: Mon, 05 Jun 2023 16:52:15 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/06/oulx4gelopt.jpg	104.22.13.214	200 OK	9.4 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/oulx4gelopt.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data Size 9.4 kB (9365 bytes) Hash a92636a4fcd89970bcaae426f58df0c7 9317383d936def33a58f29e0b95624094789b1f5 ac88b3d38354649fe90befe7ef1b33a9fd8ce4fee5778dce25a4c7380c696909 HTTP Headers `GET /upload/vod/2023/06/oulx4gelopt.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/jpeg content-length: 9365 cf-bgj: imgq:85,h2pri cf-polished: origSize=9850, status=webp_bigger etag: "647c6189-267a" last-modified: Sun, 04 Jun 2023 10:03:53 GMT cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d25ce1e59700afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2022/12/ykvbryflu2v.jpg	104.22.13.214	200 OK	12 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/ykvbryflu2v.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data Size 12 kB (11451 bytes) Hash 47d37a5faeb9b9e9711d5f0d4144dd0f 904fdd70ddb03fc80cdb4ba832ca602b07e21824 c9cad32a7bfcd3216222ebdc1c2a7707715da1cdfc54edfe0b4c73cd7fd2a4ba HTTP Headers `GET /upload/vod/2022/12/ykvbryflu2v.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/jpeg content-length: 11451 cf-bgj: imgq:85,h2pri cf-polished: origSize=12037, status=webp_bigger etag: "6395898e-2f05" last-modified: Sun, 11 Dec 2022 07:41:02 GMT cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d25ce1e595d0afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2022/12/wsjcnxu5mfc.jpg	104.22.13.214	200 OK	4.7 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/wsjcnxu5mfc.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 4.7 kB (4700 bytes) Hash a1e3b01fee0f819cf66b3a87d4cf2ac3 258aa12dc1c2bcb5ae43456ff474815cb7d925c5 c1a366d694caeb11be2024da4a41c8c1df1f33414363ca7aeadd55683739cbeb HTTP Headers `GET /upload/vod/2022/12/wsjcnxu5mfc.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 4700 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=7557 content-disposition: inline; filename="wsjcnxu5mfc.webp" etag: "6396b759-1d85" last-modified: Mon, 12 Dec 2022 05:08:41 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e595c0afa-OSL X-Firefox-Spdy: h2`

	ocsp.buypass.com/	95.101.11.123		1.7 kB
URL ocsp.buypass.com/ IP 95.101.11.123:0 ASN #20940 Akamai International B.V. File type data Size 1.7 kB (1701 bytes) Hash dce96fad9d94922a45f32d4400ae4e6e c6bb302495cf4524a0c37e6ec91d8c1d212df1ab 87a5e46f82faa1e663cbea2831585cfa813b842e252930a627841e20ff8cd2a9 HTTP Headers `POST / HTTP/1.1 Host: ocsp.buypass.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 78 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Access-Control-Allow-Origin: https://www.buypass.no Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale Access-Control-Allow-Credentials: false Access-Control-Allow-Methods: GET,POST MDC-correlationId: 8a6ceed9-2737-4cde-b7d2-3ded100b6298 Content-Length: 1701 Date: Mon, 05 Jun 2023 04:52:16 GMT Connection: keep-alive`

	lbfm.lbpictupian.com/upload/vod/2023/06/dkbrk1jftvt.jpg	104.22.13.214	200 OK	11 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/dkbrk1jftvt.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data Size 11 kB (11385 bytes) Hash 1e1ed6972e95f90292368f3f1a2bfca2 32a26c70989d3cdf774605e37abcb4200f3ea1d3 33b2df70bb75f1d77ebc1e17b8b46843dedaf4319bd4ccbdf1cddd3a0534ce02 HTTP Headers `GET /upload/vod/2023/06/dkbrk1jftvt.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/jpeg content-length: 11385 cf-bgj: imgq:85,h2pri cf-polished: origSize=11922, status=webp_bigger etag: "647c618d-2e92" last-modified: Sun, 04 Jun 2023 10:03:57 GMT cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d25ce1e59710afa-OSL X-Firefox-Spdy: h2`

	www.jxhjl.xyz:51868/template/m1938pc/static/css/mm-content.css	27.124.33.150	200 OK	8.9 kB
URL GET HTTP/2 www.jxhjl.xyz:51868/template/m1938pc/static/css/mm-content.css IP 27.124.33.150:51868 ASN #64050 BGPNET Global ASN Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectjxcou.xyz Fingerprint47:1A:C8:1B:BA:38:0D:B8:E2:2A:B8:AA:6B:65:7A:16:15:53:BF:2A ValidityTue, 02 May 2023 15:41:07 GMT - Mon, 31 Jul 2023 15:41:06 GMT File type gzip compressed data, from Unix\012- data Size 8.9 kB (8935 bytes) Hash 25ecfab6899aa3d0ee9211390f118897 3b718f97acf23a53de4b66295695589de22434ac 21718fffd24f92c2e63e9d9f403da299e710cfb3ce3ec7c8523d53fb853a3f87 HTTP Headers `GET /template/m1938pc/static/css/mm-content.css HTTP/1.1 Host: www.jxhjl.xyz:51868 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: text/css last-modified: Fri, 14 Jan 2022 04:46:10 GMT vary: Accept-Encoding etag: W/"61e10012-1ccb" expires: Mon, 05 Jun 2023 16:52:15 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	ocsp.buypass.com/	95.101.11.123		1.7 kB
URL ocsp.buypass.com/ IP 95.101.11.123:0 ASN #20940 Akamai International B.V. File type data Size 1.7 kB (1701 bytes) Hash a53ec53c390fc3a76ffa4fb865eddf4d 1d36211f76cb3ec6d33e5545b00d9adea85a06d1 a763365b53c2f9d3380cc758d8bbee1511df9eacb373f14c5707e31dee6317c7 HTTP Headers `POST / HTTP/1.1 Host: ocsp.buypass.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 78 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Access-Control-Allow-Origin: https://www.buypass.no Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale Access-Control-Allow-Credentials: false Access-Control-Allow-Methods: GET,POST MDC-correlationId: 149f72f7-33c3-420a-a15d-e104186c064d Content-Length: 1701 Date: Mon, 05 Jun 2023 04:52:16 GMT Connection: keep-alive`

	lbfm.lbpictupian.com/upload/vod/2022/12/wu0pgmyswv1.jpg	104.22.13.214	200 OK	8.2 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/wu0pgmyswv1.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 8.2 kB (8218 bytes) Hash 53a8cd043a389cc5b7c9728278cf3560 6767a51338c26b2691760b121fab0936ba35fbfc d3a24ca26f5e2aaf1418fcb032962bd79b3e059521935b0f43f67ce9901b1b18 HTTP Headers `GET /upload/vod/2022/12/wu0pgmyswv1.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 8218 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=9558 content-disposition: inline; filename="wu0pgmyswv1.webp" etag: "63942e7f-2556" last-modified: Sat, 10 Dec 2022 07:00:15 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e595e0afa-OSL X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2022/12/tedqfnlyoyp.jpg	104.22.13.214	200 OK	9.9 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/tedqfnlyoyp.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 9.9 kB (9858 bytes) Hash 23fdc785a2c387a8921008b7aef07cbd b97e64bea59d8efd1341a6b139a9023c951a19da a30cc3d5cb4ad095190a9af6961a7a567a29ffbc395735d4be2c99f69f523a7f HTTP Headers `GET /upload/vod/2022/12/tedqfnlyoyp.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 9858 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=10702 content-disposition: inline; filename="tedqfnlyoyp.webp" etag: "63903e33-29ce" last-modified: Wed, 07 Dec 2022 07:18:11 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e59600afa-OSL X-Firefox-Spdy: h2`

	www.jxhjl.xyz:51868/template/m1938pc/html9/ads/zxf.js	27.124.33.150	200 OK	8.0 kB
URL GET HTTP/2 www.jxhjl.xyz:51868/template/m1938pc/html9/ads/zxf.js IP 27.124.33.150:51868 ASN #64050 BGPNET Global ASN Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectjxcou.xyz Fingerprint47:1A:C8:1B:BA:38:0D:B8:E2:2A:B8:AA:6B:65:7A:16:15:53:BF:2A ValidityTue, 02 May 2023 15:41:07 GMT - Mon, 31 Jul 2023 15:41:06 GMT File type gzip compressed data, from Unix\012- data Size 8.0 kB (8024 bytes) Hash d3c83918e5c9af6df6d5a2d3916277dd 735073d2dc655a0aae9cf712ee7616dc6e399a11 d37904d0f322db6cf4df2f367d1a275e404ea6db6befed80e96f5cce383b1ed0 HTTP Headers `GET /template/m1938pc/html9/ads/zxf.js HTTP/1.1 Host: www.jxhjl.xyz:51868 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: application/javascript last-modified: Sun, 04 Jun 2023 04:40:27 GMT vary: Accept-Encoding etag: W/"647c15bb-712" expires: Mon, 05 Jun 2023 16:52:15 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/04/trnxltqu2tl.jpg	104.22.13.214	200 OK	13 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/04/trnxltqu2tl.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data Size 13 kB (12596 bytes) Hash 9140c57a550a357c9a2439caa75e76c0 3c95bc7af551a0be8dd1b00df7da190a8c9e2896 6ceb01df06c994f9012c7e964037955e44b6ed9342e9b476938d6317111eb35f HTTP Headers `GET /upload/vod/2023/04/trnxltqu2tl.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/jpeg content-length: 12596 cf-bgj: imgq:85,h2pri cf-polished: origSize=13225, status=webp_bigger etag: "643bd35d-33a9" last-modified: Sun, 16 Apr 2023 10:52:13 GMT cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7d25ce1f09d30afa-OSL X-Firefox-Spdy: h2`

	hm.baidu.com/hm.js?2ac4a2d34c34a270e029b4996d351332	103.235.46.191	200 OK	11 kB
URL GET HTTP/1.1 hm.baidu.com/hm.js?2ac4a2d34c34a270e029b4996d351332 IP 103.235.46.191:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5 ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT File type ASCII text, with very long lines (618) Size 11 kB (11256 bytes) Hash 122cadb5300e1824984beda9dd789abb 41fc87c9515eb880780f11b0cebb52bba422ed71 413f45615498fd509952685b2687e3a595a01ad86ffb496f698e45245fbdc06e HTTP Headers `GET /hm.js?2ac4a2d34c34a270e029b4996d351332 HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Cookie: HMTK=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Cache-Control: max-age=0, must-revalidate Content-Encoding: gzip Content-Length: 11256 Content-Type: application/javascript Date: Mon, 05 Jun 2023 04:52:15 GMT Etag: 9e51bdd79d937e68e73d3adbf17af8e8 P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Server: apache Set-Cookie: HMACCOUNT=0FD5E15D55F0C512; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800`

	lbfm.lbpictupian.com/upload/vod/2023/04/owd0jwix5xh.jpg	104.22.13.214	200 OK	1.2 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/04/owd0jwix5xh.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 1.2 kB (1152 bytes) Hash b6cc9ae2f56d7a06deb4b17ad8080491 3d036d1d887b06fdad98a934121685b61f5aa974 ff63478a0d22b54f826a9ff4bf7cb375dd9dc3b72aab393b26404a6ed06c2403 HTTP Headers `GET /upload/vod/2023/04/owd0jwix5xh.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 1152 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=3100 content-disposition: inline; filename="owd0jwix5xh.webp" etag: "64465e9d-c1c" last-modified: Mon, 24 Apr 2023 10:49:01 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1f09d10afa-OSL X-Firefox-Spdy: h2`

	lexs9.com/a47af9be0ec690ef8a756f5ff9cb1fbf.gif	172.83.155.45	200 OK	261 kB
URL GET HTTP/2 lexs9.com/a47af9be0ec690ef8a756f5ff9cb1fbf.gif IP 172.83.155.45:443 ASN #201106 Spartan Host Ltd Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectlexs9.com Fingerprint24:51:4A:21:30:1E:9B:D4:37:EA:7D:A1:40:DC:F7:CE:0D:E6:35:AF ValiditySun, 28 May 2023 07:05:52 GMT - Sat, 26 Aug 2023 07:05:51 GMT File type GIF image data, version 89a, 1000 x 120\012- data Size 261 kB (261306 bytes) Hash 712dbc60bf51645be79b7c8dc21c2abb 9ed1ca0b59d1ee22dcec5d883d6a91952dab970e 1a8d1a16a0a513662d644f07062b0a2f18cf7f6d1669c0d5e77a294102128a07 HTTP Headers `GET /a47af9be0ec690ef8a756f5ff9cb1fbf.gif HTTP/1.1 Host: lexs9.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/gif content-length: 261306 last-modified: Sat, 18 Feb 2023 03:32:37 GMT etag: "63f046d5-3fcba" expires: Mon, 05 Jun 2023 16:52:15 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 58782 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mu%2F6bT5y1yeEaa2uvUtQRp9cZDL2s4oDB56RoeVncIcS2Rc2NoYVYBgzbgOcZ7KmO7Fv%2F3zKI9ikWi%2Fo6rVEGtIOgk7BpfgO2Y1u78YHBhk9ZGafwjoR3bTZ22d%2F"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 7d1c4f110f28c6a9-SEA alt-svc: h3=":443"; ma=86400 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	lexs9.com/4aeeadc5cce91dea5d60477cdcb15cb7.gif	172.83.155.45	200 OK	266 kB
URL GET HTTP/2 lexs9.com/4aeeadc5cce91dea5d60477cdcb15cb7.gif IP 172.83.155.45:443 ASN #201106 Spartan Host Ltd Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectlexs9.com Fingerprint24:51:4A:21:30:1E:9B:D4:37:EA:7D:A1:40:DC:F7:CE:0D:E6:35:AF ValiditySun, 28 May 2023 07:05:52 GMT - Sat, 26 Aug 2023 07:05:51 GMT File type GIF image data, version 89a, 300 x 150\012- data Size 266 kB (265674 bytes) Hash dea47f001508142b2f2a617e3396a162 10da441e828e554f3f90c18b5eb5ff92ba0b5cc4 f7bec6f2a02c9914f55f867ed0350b70a22189a0464b145e08e535a6728999b2 HTTP Headers `GET /4aeeadc5cce91dea5d60477cdcb15cb7.gif HTTP/1.1 Host: lexs9.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/gif content-length: 265674 last-modified: Mon, 27 Feb 2023 13:54:28 GMT etag: "63fcb614-40dca" expires: Mon, 05 Jun 2023 16:52:15 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 50577 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bzgI4CVhIr1KbugnojblPor3wOd5%2FABCM6py7JPHi%2Bc%2Faa2FiPap35oTybOlIayy0E1yMLVjZenMAhSLxzDUO2KA%2B2kmIDB3LTzka5c1jZx0I3TCX7Z%2FbRLvcrnX"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 7d1b87b53bd1c5e5-SEA alt-svc: h2=":443"; ma=60 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	img.1228a.xyz/images/6460d79f0ea532d5664a45d1.gif	103.166.246.24	302 Found	0 B
URL GET HTTP/2 img.1228a.xyz/images/6460d79f0ea532d5664a45d1.gif IP 103.166.246.24:443 ASN #51649 Neko LLC. Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subject1228a.xyz FingerprintEA:9E:B0:B9:66:C6:2B:CB:41:EA:39:06:06:FC:C9:07:8F:40:95:6B ValidityWed, 10 May 2023 08:22:10 GMT - Tue, 08 Aug 2023 08:22:09 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /images/6460d79f0ea532d5664a45d1.gif HTTP/1.1 Host: img.1228a.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found content-length: 0 referrer-policy: no-referrer cache-control: max-age=1800 location: https://files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTC6G41JTknxJcU7lH47v/RZC0fbyQg4sqjz9/BbN7Gj2wFkeZPQTFt9NQLNEd0VZ9o= X-Firefox-Spdy: h2`

	ocsp.buypass.com/	95.101.11.123		1.7 kB
URL ocsp.buypass.com/ IP 95.101.11.123:0 ASN #20940 Akamai International B.V. File type data Size 1.7 kB (1701 bytes) Hash 9745a7633008f6ad1e2a8d792c739b7b ee34110ad81976e2c275f1c5f73cb3e2a4ac3012 1cb699c48f49d00517c4e0c9d9896c912e7cadb02a2b3f0e30a89831eee9550d HTTP Headers `POST / HTTP/1.1 Host: ocsp.buypass.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 78 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Access-Control-Allow-Origin: https://www.buypass.no Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale Access-Control-Allow-Credentials: false Access-Control-Allow-Methods: GET,POST MDC-correlationId: 32883e0a-ad01-44e8-b621-5dd930a277ee Content-Length: 1701 Date: Mon, 05 Jun 2023 04:52:16 GMT Connection: keep-alive`

	8388tp.com/tp/225x135.gif	156.232.95.68	200 OK	46 kB
URL GET HTTP/1.1 8388tp.com/tp/225x135.gif IP 156.232.95.68:443 ASN #62587 ANT-CLOUD Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subject8388tp.com Fingerprint8A:DF:4D:27:E6:00:94:BE:CA:5C:CC:C0:24:7E:DE:A1:80:C1:C6:7E ValidityTue, 28 Mar 2023 09:45:41 GMT - Mon, 26 Jun 2023 09:45:40 GMT File type GIF image data, version 89a, 225 x 135\012- data Size 46 kB (45679 bytes) Hash 87097c3d9a99fc602424acfcafc53b52 c608939d51cbbc4dba7651fa773ada847d70ed83 033a01286d47fe08e157761c4cbb1b32c039492fb536c6a5accf1bbe1aabd7c6 HTTP Headers `GET /tp/225x135.gif HTTP/1.1 Host: 8388tp.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: openresty Date: Sun, 04 Jun 2023 20:53:17 GMT Content-Type: image/gif Content-Length: 45679 Connection: keep-alive Last-Modified: Thu, 04 May 2023 10:33:32 GMT ETag: "645389fc-b26f" Expires: Fri, 16 Jun 2023 09:05:58 GMT Cache-Control: max-age=2592000 Via: localhost.localdomain CDN-Cache: HIT Accept-Ranges: bytes`

	s2.loli.net/2023/06/01/BkszN94X52LwKx3.jpg	104.26.1.190	200 OK	17 kB
URL GET HTTP/2 s2.loli.net/2023/06/01/BkszN94X52LwKx3.jpg IP 104.26.1.190:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectloli.net FingerprintE3:84:D8:6C:17:7E:44:60:E3:01:5E:E6:32:E6:90:08:4D:87:12:B1 ValidityWed, 05 Apr 2023 00:00:00 GMT - Thu, 04 Apr 2024 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 336x221, components 3\012- data Size 17 kB (16836 bytes) Hash bf724c2b3ed499f956945bf840f46c4a 544261f064a723adf025102eda79367d71bca08e 0e4ab9ea4554a1e83571f4851b38904ac8caaa93b8d1cddb10f7c79346d60ce8 HTTP Headers `GET /2023/06/01/BkszN94X52LwKx3.jpg HTTP/1.1 Host: s2.loli.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/jpeg content-length: 16836 last-modified: Thu, 01 Jun 2023 13:10:48 GMT etag: "647898d8-41c4" strict-transport-security: max-age=31536000; includeSubDomains; preload x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block vary: Accept, Accept-Encoding access-control-allow-origin: * timing-allow-origin: * cf-cache-status: BYPASS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FMvBfLt8fWwPBiAvGgEvGq77DvaC5Ia%2F7aPXxYoSxFMQSXYerKn16t3s0iPkfhszb0MAq5GezbyEs1DfjtEE0s8AAMp7aRuP7dLhlwQny43U4xzJkEwEcBXDQvz7"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d25ce1ebe300b39-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	lxbdx2rg.com/d48317f8a5ae04949eaf4ce9217bb23b.gif	172.83.155.45	200 OK	305 kB
URL GET HTTP/2 lxbdx2rg.com/d48317f8a5ae04949eaf4ce9217bb23b.gif IP 172.83.155.45:443 ASN #201106 Spartan Host Ltd Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectlxbdx2rg.com Fingerprint95:31:6E:E2:81:56:3B:98:3D:8F:1E:C5:7D:BD:45:88:6B:6E:25:5D ValidityTue, 23 May 2023 09:09:34 GMT - Mon, 21 Aug 2023 09:09:33 GMT File type GIF image data, version 89a, 960 x 60\012- data Size 305 kB (305275 bytes) Hash 3cb212d31583fea947fb9e31e66db085 f6ec471eb810fe55480f8d1b419b964040398f6b abe2dd018a322d5621a6f98da23c5f8beeffae0929936dd1f824c2e101d3a4a7 HTTP Headers `GET /d48317f8a5ae04949eaf4ce9217bb23b.gif HTTP/1.1 Host: lxbdx2rg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: image/gif content-length: 305275 last-modified: Fri, 31 Mar 2023 06:51:25 GMT etag: "642682ed-4a87b" expires: Mon, 05 Jun 2023 16:52:15 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 124937 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BeauchElvAW6zG2l9UdkIX0dMd2epORsEJmQjCpdamoGckC%2F3reJH%2F%2B7t1YaEtUPSTdWNgj%2FCiKd2nosLHC06JA3%2FmcQ1oErkWKIfQ%2Bt%2BTT8cnbIKK4rsE3XPCb%2B"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 7d1c4f0e1c63c680-SEA alt-svc: h3=":443"; ma=86400 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=165101658&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fjx.tongdoumaoyi.com%2F&v=1.3.0&lv=1&sn=52861&r=0&ww=1280&u=https%3A%2F%2Fwww.jxhjl.xyz%3A51868%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86	103.235.46.191	200 OK	43 B
URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=165101658&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fjx.tongdoumaoyi.com%2F&v=1.3.0&lv=1&sn=52861&r=0&ww=1280&u=https%3A%2F%2Fwww.jxhjl.xyz%3A51868%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86 IP 103.235.46.191:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5 ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash ad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda HTTP Headers GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=165101658&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fjx.tongdoumaoyi.com%2F&v=1.3.0&lv=1&sn=52861&r=0&ww=1280&u=https%3A%2F%2Fwww.jxhjl.xyz%3A51868%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86 HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Cookie: HMTK=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Cache-Control: private, max-age=0, no-cache Content-Length: 43 Content-Type: image/gif Date: Mon, 05 Jun 2023 04:52:16 GMT P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Pragma: no-cache Server: apache Set-Cookie: HMACCOUNT=CB8984830C254B34; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800 X-Content-Type-Options: nosniff`

	zhibo128x.xyz/128/318X216.gif	154.83.27.206	200 OK	90 kB
URL GET HTTP/1.1 zhibo128x.xyz/128/318X216.gif IP 154.83.27.206:443 ASN #62587 ANT-CLOUD Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectzhibo128x.xyz FingerprintA7:F0:E5:91:6E:73:77:5A:5D:BA:B8:04:C8:14:F3:C7:D4:36:F4:81 ValidityWed, 26 Apr 2023 11:34:40 GMT - Tue, 25 Jul 2023 11:34:39 GMT File type GIF image data, version 89a, 318 x 216\012- data Size 90 kB (89870 bytes) Hash fcfb39891df6c04744982e2f8c67f6b7 7a667d860bab955b1e95bce9a455cc5555783076 534db09ef852e7d2de2fe879e2ea4447b28ae30d9093e3854da39ee604db801d HTTP Headers `GET /128/318X216.gif HTTP/1.1 Host: zhibo128x.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: openresty Date: Sun, 04 Jun 2023 20:48:53 GMT Content-Type: image/gif Content-Length: 89870 Connection: keep-alive Last-Modified: Sun, 04 Sep 2022 08:04:23 GMT ETag: "63145c07-15f0e" Expires: Sun, 11 Jun 2023 07:02:31 GMT Cache-Control: max-age=2592000 Via: localhost.localdomain CDN-Cache: HIT Accept-Ranges: bytes`

	img.1231a.xyz/images/645ce291cb7b3c771189205f.gif	103.166.246.24	302 Found	0 B
URL GET HTTP/2 img.1231a.xyz/images/645ce291cb7b3c771189205f.gif IP 103.166.246.24:443 ASN #51649 Neko LLC. Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subject1231a.xyz FingerprintD9:34:82:CE:9B:0A:16:A5:CD:32:5A:77:7D:36:66:B4:FC:70:39:86 ValidityWed, 10 May 2023 08:28:04 GMT - Tue, 08 Aug 2023 08:28:03 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /images/645ce291cb7b3c771189205f.gif HTTP/1.1 Host: img.1231a.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found content-length: 0 referrer-policy: no-referrer cache-control: max-age=1800 location: https://files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTBRGH7aQzZV7bb+CFCNHTspU6w6hH1+18S8VcyErrleAWp36uS8fnboa5EcqN+6j8U= X-Firefox-Spdy: h2`

	ocsp.sectigo.com/	104.18.14.101		472 B
URL ocsp.sectigo.com/ IP 104.18.14.101:0 ASN #13335 CLOUDFLARENET File type data Size 472 B (472 bytes) Hash 4ff89b22d478e2d19665eb37a2bc648c e7ae370725c500be5d09e49b0454885ffac0158c 4d13f7aa1074410980ffcfcfe522dc4e791ff747bc79f8453af78eef6b57dca2 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:16 GMT Content-Type: application/ocsp-response Content-Length: 472 Connection: keep-alive Last-Modified: Thu, 01 Jun 2023 16:42:21 GMT Expires: Thu, 08 Jun 2023 16:42:20 GMT Etag: "e7ae370725c500be5d09e49b0454885ffac0158c" Cache-Control: max-age=302161,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb6 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7d25ce25996c1c02-OSL`

	pic.picnewsss.com/tu-2022290039/se-1.jpg	143.92.60.106	200 OK	27 kB
URL GET HTTP/2 pic.picnewsss.com/tu-2022290039/se-1.jpg IP 143.92.60.106:443 ASN #64050 BGPNET Global ASN Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerBuypass AS-983163327 Subjectpic.picnewsss.com FingerprintF2:4D:96:5D:C9:D0:18:10:BB:58:F4:9C:BE:C0:89:89:C4:2E:8E:DC ValidityThu, 01 Jun 2023 16:42:33 GMT - Mon, 27 Nov 2023 22:59:00 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.98.100", baseline, precision 8, 638x378, components 3\012- data Size 27 kB (26754 bytes) Hash d7603dc1b229c08999abed67adb502ac 54c441cd973289db604c2ee8a9b7121616c1a871 b284bcf5f87ce6f498d8e3bc39b3fbd1300597553be3a0bd0414c78a6e2d835e HTTP Headers `GET /tu-2022290039/se-1.jpg HTTP/1.1 Host: pic.picnewsss.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK accept-ranges: bytes cache-control: max-age=2592000 content-type: image/jpeg date: Sun, 04 Jun 2023 15:49:48 GMT etag: "1685893788" expires: Tue, 04 Jul 2023 15:49:48 GMT last-modified: Sun, 04 Jun 2023 15:49:48 GMT server: nginx x-cache: HIT, policy, memory content-length: 26754 X-Firefox-Spdy: h2`

	zhibo128x.xyz/128/960x120.gif	154.83.27.206	200 OK	416 kB
URL GET HTTP/1.1 zhibo128x.xyz/128/960x120.gif IP 154.83.27.206:443 ASN #62587 ANT-CLOUD Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectzhibo128x.xyz FingerprintA7:F0:E5:91:6E:73:77:5A:5D:BA:B8:04:C8:14:F3:C7:D4:36:F4:81 ValidityWed, 26 Apr 2023 11:34:40 GMT - Tue, 25 Jul 2023 11:34:39 GMT File type GIF image data, version 89a, 960 x 120\012- data Size 416 kB (416179 bytes) Hash c020d0259e861cb5182eb0c71c1af4ea 0e7afbd365f78385dddd2407ba70613cd44182ce 134821dfbce62546017b8af53f5b6e0cdb060aa3450f9c1edc788b2d7549551b HTTP Headers `GET /128/960x120.gif HTTP/1.1 Host: zhibo128x.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: openresty Date: Sun, 04 Jun 2023 20:48:53 GMT Content-Type: image/gif Content-Length: 416179 Connection: keep-alive Last-Modified: Sat, 11 Feb 2023 21:40:02 GMT ETag: "63e80b32-659b3" Expires: Tue, 04 Jul 2023 08:14:39 GMT Cache-Control: max-age=2592000 Via: localhost.localdomain CDN-Cache: HIT Accept-Ranges: bytes`

	225image.com:3188/960x120.gif	223.113.143.212	200 OK	132 kB
URL GET HTTP/1.1 225image.com:3188/960x120.gif IP 223.113.143.212:3188 ASN #56046 China Mobile communications corporation Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerUnizeto Technologies S.A. Subject225image.com Fingerprint37:B4:B5:C4:CC:E3:E3:8F:6B:E1:E1:05:C7:D7:87:48:52:BD:71:ED ValidityWed, 10 May 2023 01:26:57 GMT - Sat, 08 Jun 2024 01:26:56 GMT File type GIF image data, version 89a, 960 x 120\012- data Size 132 kB (131626 bytes) Hash 57fed77003db9bd71efaf63b28d3403e 72c38f28c54ce67c3eadefcbd17178fdb585d0f6 9e9ec958affca72c932bba76af6e039c9ea9911140c46df10a5e490aec7be0ae HTTP Headers `GET /960x120.gif HTTP/1.1 Host: 225image.com:3188 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:16 GMT Content-Type: image/gif Content-Length: 131626 Connection: keep-alive Last-Modified: Sat, 04 Feb 2023 12:11:08 GMT ETag: "63de4b5c-2022a" Expires: Sat, 01 Jul 2023 02:24:13 GMT Cache-Control: max-age=2592000 Strict-Transport-Security: max-age=31536000 Server: cdn X-Cache-Status: HIT Accept-Ranges: bytes`

	lxbd2.com/d48317f8a5ae04949eaf4ce9217bb23b.gif	172.83.155.45	200 OK	305 kB
URL GET HTTP/2 lxbd2.com/d48317f8a5ae04949eaf4ce9217bb23b.gif IP 172.83.155.45:443 ASN #201106 Spartan Host Ltd Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectlxbd2.com FingerprintBD:68:BB:10:EC:8E:2A:1F:A1:F9:FA:FF:FA:77:AD:C7:B1:FE:FE:D2 ValiditySat, 27 May 2023 09:34:51 GMT - Fri, 25 Aug 2023 09:34:50 GMT File type GIF image data, version 89a, 960 x 60\012- data Size 305 kB (305275 bytes) Hash 3cb212d31583fea947fb9e31e66db085 f6ec471eb810fe55480f8d1b419b964040398f6b abe2dd018a322d5621a6f98da23c5f8beeffae0929936dd1f824c2e101d3a4a7 HTTP Headers `GET /d48317f8a5ae04949eaf4ce9217bb23b.gif HTTP/1.1 Host: lxbd2.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/gif content-length: 305275 last-modified: Fri, 31 Mar 2023 06:51:25 GMT etag: "642682ed-4a87b" expires: Mon, 05 Jun 2023 16:52:16 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 70153 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XgNzccAzlZjkRMfY9MZIdy3PwbDW9VvhNhRnSydc0mAxqSP9%2FZrdPdS7IwxG%2Bbotl0SheOXUq0UN6vFWs3kPOAhRBT7TbUkr%2Fuqs3IwS5kt9XzzCYHeeDZyOK8N9"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 7d1715963fc5c501-SEA alt-svc: h3=":443"; ma=86400 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	ocsp.sectigo.com/	104.18.14.101		471 B
URL ocsp.sectigo.com/ IP 104.18.14.101:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash f4455c93e96b5c4a638b3908be3feb3a 83f7df9f77a8adb65bf3d32218640334ed90b1eb 460aa010af79016bd437f8f6c9e004041fc33fcc3afbf561ab2de3009fae4f5a HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:17 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Thu, 01 Jun 2023 20:10:17 GMT Expires: Thu, 08 Jun 2023 20:10:16 GMT Etag: "83f7df9f77a8adb65bf3d32218640334ed90b1eb" Cache-Control: max-age=313678,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb6 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7d25ce259f67b517-OSL`

	ocsp.sectigo.com/	104.18.14.101		471 B
URL ocsp.sectigo.com/ IP 104.18.14.101:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash f4455c93e96b5c4a638b3908be3feb3a 83f7df9f77a8adb65bf3d32218640334ed90b1eb 460aa010af79016bd437f8f6c9e004041fc33fcc3afbf561ab2de3009fae4f5a HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:17 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Thu, 01 Jun 2023 20:10:17 GMT Expires: Thu, 08 Jun 2023 20:10:16 GMT Etag: "83f7df9f77a8adb65bf3d32218640334ed90b1eb" Cache-Control: max-age=313678,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb1 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7d25ce259b9cb4fd-OSL`

	595image.com:3188/960x120.gif	223.113.143.213	200 OK	185 kB
URL GET HTTP/1.1 595image.com:3188/960x120.gif IP 223.113.143.213:3188 ASN #56046 China Mobile communications corporation Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerUnizeto Technologies S.A. Subject225image.com Fingerprint37:B4:B5:C4:CC:E3:E3:8F:6B:E1:E1:05:C7:D7:87:48:52:BD:71:ED ValidityWed, 10 May 2023 01:26:57 GMT - Sat, 08 Jun 2024 01:26:56 GMT File type GIF image data, version 89a, 960 x 120\012- data Size 185 kB (184991 bytes) Hash f3142a120ee01ba9856a4587b419607e 0d590166dc2458fbfd077d6ac75381a7bc1203ac 31d7984bc007f48066a4fe3115ef3cd90450fa65349034eb9eaffcf7cf223e69 HTTP Headers `GET /960x120.gif HTTP/1.1 Host: 595image.com:3188 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:16 GMT Content-Type: image/gif Content-Length: 184991 Connection: keep-alive Last-Modified: Sun, 29 Jan 2023 15:25:24 GMT ETag: "63d68fe4-2d29f" Expires: Sat, 01 Jul 2023 02:24:13 GMT Cache-Control: max-age=2592000 Strict-Transport-Security: max-age=31536000 Server: cdn X-Cache-Status: HIT Accept-Ranges: bytes`

	tu.jnctupian.vip/jnc/jnc120av.gif	162.250.140.227		722 kB
URL tu.jnctupian.vip/jnc/jnc120av.gif IP 162.250.140.227:0 ASN #62587 ANT-CLOUD File type GIF image data, version 89a, 960 x 120\012- data Size 722 kB (721763 bytes) Hash b0381964f79eb32802841e6e1cda82fa be6108a05def414055f9d1e68ac11f9413473c24 dc4970ac08590ffbda971382a84fe26f1115ee2504adcd878fbe86f16c7be17b HTTP Headers `GET /jnc/jnc120av.gif HTTP/1.1 Host: tu.jnctupian.vip User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:16 GMT Content-Type: image/gif Content-Length: 721763 Connection: keep-alive Last-Modified: Sun, 19 Feb 2023 10:35:22 GMT ETag: "63f1fb6a-b0363" Expires: Wed, 05 Jul 2023 00:22:58 GMT Cache-Control: max-age=2592000 Server: cdn X-Cache-Status: HIT Accept-Ranges: bytes`

	yangaiaiyang111111111111.oss-cn-hongkong.aliyuncs.com/we9960x120.gif	47.75.19.123	200 OK	132 kB
URL GET HTTP/1.1 yangaiaiyang111111111111.oss-cn-hongkong.aliyuncs.com/we9960x120.gif IP 47.75.19.123:443 ASN #45102 Alibaba US Technology Co., Ltd. Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerGlobalSign nv-sa Subjectoss-cn-hongkong.aliyuncs.com Fingerprint5C:54:6A:2A:0F:08:BF:7D:08:9D:A9:9B:21:2F:00:47:89:4F:59:91 ValiditySun, 23 Apr 2023 03:01:18 GMT - Fri, 24 May 2024 03:01:17 GMT File type GIF image data, version 89a, 960 x 120\012- data Size 132 kB (131912 bytes) Hash 266ce41519e85b9d44146ddf81d7b184 ed9991c3f2f67295dcf74b52e972eb74d43feb65 70cdfdec788346769118fbdd31435b5e6cdc32a7a918fb1b7b76d37c98f2b240 HTTP Headers `GET /we9960x120.gif HTTP/1.1 Host: yangaiaiyang111111111111.oss-cn-hongkong.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Mon, 05 Jun 2023 04:52:16 GMT Content-Type: image/gif Content-Length: 131912 Connection: keep-alive x-oss-request-id: 647D6A00051F683333080038 Accept-Ranges: bytes ETag: "266CE41519E85B9D44146DDF81D7B184" Last-Modified: Sun, 14 May 2023 13:33:28 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 15452678779798306130 x-oss-storage-class: Standard x-oss-version-id: CAEQHRiBgMC61.7pwBgiIGU2OGIzYTEwNTBmYTQxZTc5YzdhMTc2MmRjYjc4NTI1 x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: JmzkFRnoW51EFG3fgdexhA== x-oss-server-time: 2

	tscf8.com/68a7807de3933bf7079116fa9df99e6f.gif	172.83.155.45	200 OK	366 kB
URL GET HTTP/2 tscf8.com/68a7807de3933bf7079116fa9df99e6f.gif IP 172.83.155.45:443 ASN #201106 Spartan Host Ltd Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjecttscf8.com Fingerprint5E:80:E1:2C:CF:58:95:9F:92:1B:EE:12:F4:69:64:75:13:C3:06:59 ValiditySun, 28 May 2023 07:06:25 GMT - Sat, 26 Aug 2023 07:06:24 GMT File type GIF image data, version 89a, 960 x 60\012- data Size 366 kB (366444 bytes) Hash 86371c51bf2086f3a40f0e438246b662 9da793de9c620485ee91b88413b256c69dc774c5 8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf HTTP Headers `GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1 Host: tscf8.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/gif content-length: 366444 last-modified: Fri, 19 Aug 2022 17:02:28 GMT etag: "62ffc224-5976c" expires: Mon, 05 Jun 2023 16:52:16 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 123252 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lqf9Dkha3LtrBy2y%2BbRYDvpV3CdFjUkD%2BE9Na4Ylx8ixTuY1sV1wr4M4gs4nXAvL0n3%2BXSQnafspeXC3889Jo88ahGtFOJEDrT2feGZSLlr1TlQAYAjFwlWt5DMh"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 7d1c25f17c9a08a9-SEA alt-svc: h3=":443"; ma=86400 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	ocsp.sectigo.com/	104.18.14.101		472 B
URL ocsp.sectigo.com/ IP 104.18.14.101:0 ASN #13335 CLOUDFLARENET File type data Size 472 B (472 bytes) Hash a395416e8299e3cac65b9d3782817da0 4135aadf071b04fa94a1b2a334678a97776dd937 bb28c8d08e6c6c70a6be513be3ff5459fcac5eb7f3a9aae9ffd60ca085281f84 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:17 GMT Content-Type: application/ocsp-response Content-Length: 472 Connection: keep-alive Last-Modified: Mon, 05 Jun 2023 04:42:15 GMT Expires: Mon, 12 Jun 2023 04:42:14 GMT Etag: "4135aadf071b04fa94a1b2a334678a97776dd937" Cache-Control: max-age=603596,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb2 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7d25ce254e53b50c-OSL`

	tscf8.com/47e02a59b814807a640ae615b82c06ac.gif	172.83.155.45	200 OK	198 kB
URL GET HTTP/2 tscf8.com/47e02a59b814807a640ae615b82c06ac.gif IP 172.83.155.45:443 ASN #201106 Spartan Host Ltd Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjecttscf8.com Fingerprint5E:80:E1:2C:CF:58:95:9F:92:1B:EE:12:F4:69:64:75:13:C3:06:59 ValiditySun, 28 May 2023 07:06:25 GMT - Sat, 26 Aug 2023 07:06:24 GMT File type GIF image data, version 89a, 150 x 150\012- data Size 198 kB (198515 bytes) Hash eb0077e6500bcd6ecfec826adb9f80ca f98df3c62a1570b609fb01d548e50c357bf0db9c 73679f4eaadb2d22bfe564ea9a6404fc364231f5d82ccb23757abb0e11cea1fb HTTP Headers `GET /47e02a59b814807a640ae615b82c06ac.gif HTTP/1.1 Host: tscf8.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/gif content-length: 198515 last-modified: Sun, 23 Apr 2023 12:58:56 GMT etag: "64452b90-30773" expires: Mon, 05 Jun 2023 16:52:16 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 204 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j1LVB74EFyGbp8gYqeSNEpQUiryvJ%2F%2Fq2nBBtK5rp5Og%2FcI2gWF6DW%2F1akaLSX0il2n2Vb27Ao6EFiZPZh7lhkEp4HoWIVPJ2C0SqIeS1D7QstPQNZHAMnk7mOgd"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 7d16b8e0fc2308ad-SEA alt-svc: h3=":443"; ma=86400 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	tscf8.com/d41aeed3b9aa52d7fcd37a6dbed93ace.gif	172.83.155.45	200 OK	328 kB
URL GET HTTP/2 tscf8.com/d41aeed3b9aa52d7fcd37a6dbed93ace.gif IP 172.83.155.45:443 ASN #201106 Spartan Host Ltd Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjecttscf8.com Fingerprint5E:80:E1:2C:CF:58:95:9F:92:1B:EE:12:F4:69:64:75:13:C3:06:59 ValiditySun, 28 May 2023 07:06:25 GMT - Sat, 26 Aug 2023 07:06:24 GMT File type GIF image data, version 89a, 300 x 150\012- data Size 328 kB (328392 bytes) Hash 4327bd9255dda82e60a738be21ad18d8 6f29578f4f34d6dd485d157e06a995ed56b41f04 a953a5d6d991316d2d5879d74ba56a01d7b2156adc26424a9104ec3754d54344 HTTP Headers `GET /d41aeed3b9aa52d7fcd37a6dbed93ace.gif HTTP/1.1 Host: tscf8.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/gif content-length: 328392 last-modified: Tue, 18 Apr 2023 13:28:19 GMT etag: "643e9af3-502c8" expires: Mon, 05 Jun 2023 16:52:16 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 116773 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o%2BAqsg9xeTTl%2BsGiYnTVPU3Elus5ZzNrByPETTUllyQbFRmEpXPnDaCV0xyLbt0sGCjso0Qni3vhjRCtWzC7igaTT4dp%2BCG7J2E4aDUQaoH0CITzB5Wt8545SrAK"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 7d1b87bfea70ec68-SEA alt-svc: h2=":443"; ma=60 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	tscf8.com/cb700e6a32132b9eb9d3d9902a6abf13.gif	172.83.155.45	200 OK	379 kB
URL GET HTTP/2 tscf8.com/cb700e6a32132b9eb9d3d9902a6abf13.gif IP 172.83.155.45:443 ASN #201106 Spartan Host Ltd Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjecttscf8.com Fingerprint5E:80:E1:2C:CF:58:95:9F:92:1B:EE:12:F4:69:64:75:13:C3:06:59 ValiditySun, 28 May 2023 07:06:25 GMT - Sat, 26 Aug 2023 07:06:24 GMT File type GIF image data, version 89a, 1000 x 60\012- data Size 379 kB (379339 bytes) Hash 286b9f2e1cbd027e95b51779e3686dfc abaf95349b023a5d6ef5a2b055b4242e04fa6aa0 b26417cd9cf5daa0b288eaa5a22a7af69c394b6a698203f8cda3b0b40c50a449 HTTP Headers `GET /cb700e6a32132b9eb9d3d9902a6abf13.gif HTTP/1.1 Host: tscf8.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/gif content-length: 379339 last-modified: Sun, 23 Apr 2023 12:58:27 GMT etag: "64452b73-5c9cb" expires: Mon, 05 Jun 2023 16:52:16 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 663821 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7ggbodupnmUskzzjHEoD1eRbHWiquxpxW%2By9qrExdWQKCa2%2FMFapB2Oql%2Bapz6yowPmJmR028axdroC%2BvCng%2FCqiFg78ZSH8smpOc%2B26qPfDPNUohnvUp8qxAf7n"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 7d1bf55c7ce9f8d5-SEA alt-svc: h3=":443"; ma=86400 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	tscf8.com/a671a2eebd0687c3d3b58dd905b52129.gif	172.83.155.45	200 OK	326 kB
URL GET HTTP/2 tscf8.com/a671a2eebd0687c3d3b58dd905b52129.gif IP 172.83.155.45:443 ASN #201106 Spartan Host Ltd Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjecttscf8.com Fingerprint5E:80:E1:2C:CF:58:95:9F:92:1B:EE:12:F4:69:64:75:13:C3:06:59 ValiditySun, 28 May 2023 07:06:25 GMT - Sat, 26 Aug 2023 07:06:24 GMT File type GIF image data, version 89a, 960 x 60\012- data Size 326 kB (326295 bytes) Hash d93bb97ca2490ec0b5003a4aa849d3a4 c27ef1df79677f7346d681212f6a5dd98acf1326 4cb74be2910cddafbf9f2316dabf4ec8a551651daf8477d87ccf22e64ce478dc HTTP Headers `GET /a671a2eebd0687c3d3b58dd905b52129.gif HTTP/1.1 Host: tscf8.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/gif content-length: 326295 last-modified: Tue, 18 Apr 2023 13:28:28 GMT etag: "643e9afc-4fa97" expires: Mon, 05 Jun 2023 16:52:16 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 295603 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=weylqaAw0CGyMtBPmYVyzS0g4ztZvoyF3I08%2B%2Bp1X2X%2BT7JRIYMhrqE3M0CgVH%2FlcBqtBsvIrhRR1iFvZ%2Bb%2BMmPecZoA32sBVCbIDn6Bfn2gbzH2r6xr1nLKAKQj"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 7d1b87a99a88c57e-SEA alt-svc: h2=":443"; ma=60 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	228image.com:3188/960x120.gif	223.113.143.213	200 OK	174 kB
URL GET HTTP/1.1 228image.com:3188/960x120.gif IP 223.113.143.213:3188 ASN #56046 China Mobile communications corporation Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerUnizeto Technologies S.A. Subject225image.com Fingerprint37:B4:B5:C4:CC:E3:E3:8F:6B:E1:E1:05:C7:D7:87:48:52:BD:71:ED ValidityWed, 10 May 2023 01:26:57 GMT - Sat, 08 Jun 2024 01:26:56 GMT File type GIF image data, version 89a, 960 x 120\012- data Size 174 kB (173842 bytes) Hash 3e8c3a6a5aa9f9c64883cd1c97e1bc82 fa46906673f0aabc73354bcc8d1ba680cbeb3e3a 94feaaab985537f58a5339bf967bee4ce167f3803928e402c53c4f1e1231e86e HTTP Headers `GET /960x120.gif HTTP/1.1 Host: 228image.com:3188 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:16 GMT Content-Type: image/gif Content-Length: 173842 Connection: keep-alive Last-Modified: Fri, 03 Mar 2023 06:49:35 GMT ETag: "6401987f-2a712" Expires: Sat, 01 Jul 2023 02:24:13 GMT Cache-Control: max-age=2592000 Strict-Transport-Security: max-age=31536000 Server: cdn X-Cache-Status: HIT Accept-Ranges: bytes`

	aaaaa557.com/f6a9e973ab65426eaf8c10d222ebd813.gif	103.170.15.114	200 OK	50 kB
URL GET HTTP/1.1 aaaaa557.com/f6a9e973ab65426eaf8c10d222ebd813.gif IP 103.170.15.114:443 ASN #7483 Skycloud Computing co., Ltd. Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerSectigo Limited Subjectaaaaa557.com FingerprintDF:8E:21:88:56:F8:88:46:F2:46:7B:29:83:AB:5D:86:79:06:6F:C2 ValidityMon, 27 Mar 2023 00:00:00 GMT - Tue, 26 Mar 2024 23:59:59 GMT File type GIF image data, version 89a, 320 x 185\012- data Size 50 kB (50060 bytes) Hash e12c1a7cf8648432020ec6316dea272e 30999d9e0eed16eac5a9cf51b05b4b218d97993e b9ba306c09575a04e2a7079368309f1025c1000a43f5676a429ebdee83a65698 HTTP Headers `GET /f6a9e973ab65426eaf8c10d222ebd813.gif HTTP/1.1 Host: aaaaa557.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Cache-Control: max-age=604800 ETag: "642ffbfd-c38c" Date: Sat, 03 Jun 2023 15:56:10 GMT Content-Type: image/gif Server: nginx Last-Modified: Fri, 07 Apr 2023 11:18:21 GMT Accept-Ranges: bytes X-Cache: HIT from yd11_13-cdn-g01-la2-44 Content-Length: 50060`

	165image.com:3188/960x120.gif	223.113.143.212	200 OK	320 kB
URL GET HTTP/1.1 165image.com:3188/960x120.gif IP 223.113.143.212:3188 ASN #56046 China Mobile communications corporation Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerUnizeto Technologies S.A. Subject225image.com Fingerprint37:B4:B5:C4:CC:E3:E3:8F:6B:E1:E1:05:C7:D7:87:48:52:BD:71:ED ValidityWed, 10 May 2023 01:26:57 GMT - Sat, 08 Jun 2024 01:26:56 GMT File type GIF image data, version 89a, 960 x 120\012- data Size 320 kB (320428 bytes) Hash c390e662e4ea0464507113e0dcf86fd7 a9bc1d431a0171255a726768fd8718bdf30db160 da84fe627571bc04b06be062cc2538cbc998859dbd3a7a617a267b6f79abc344 HTTP Headers `GET /960x120.gif HTTP/1.1 Host: 165image.com:3188 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:16 GMT Content-Type: image/gif Content-Length: 320428 Connection: keep-alive Last-Modified: Wed, 17 May 2023 09:50:47 GMT ETag: "6464a377-4e3ac" Expires: Sat, 01 Jul 2023 02:24:13 GMT Cache-Control: max-age=2592000 Strict-Transport-Security: max-age=31536000 Server: cdn X-Cache-Status: HIT Accept-Ranges: bytes`

	static.qwahk.com/240x140.gif	154.39.80.127	200 OK	119 kB
URL GET HTTP/1.1 static.qwahk.com/240x140.gif IP 154.39.80.127:443 ASN #174 COGENT-174 Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerBuypass AS-983163327 Subjectstatic.qwahk.com FingerprintFF:FF:A5:A9:19:4B:44:3B:55:3B:3F:E7:2F:A5:76:CF:5E:4C:E5:A4 ValidityMon, 19 Dec 2022 04:37:56 GMT - Fri, 16 Jun 2023 21:59:00 GMT File type GIF image data, version 89a, 240 x 140\012- data Size 119 kB (119322 bytes) Hash 6f9ba0ebad44f7f099208e4da21ddbc2 2827b65811c23b4e63de054b99a01df2df8266d1 9d09a3fe30d520577494ba98228ee82a5ccba750411c1fe7a2bacaa12b888cd8 HTTP Headers `GET /240x140.gif HTTP/1.1 Host: static.qwahk.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Accept-Ranges: bytes Access-Control-Allow-Methods: * Access-Control-Allow-Orign: * Content-Length: 119322 Content-Type: image/gif;charset=UTF-8 Date: Thu, 27 Apr 2023 06:31:21 GMT ETag: "1685938319" Last-Modified: Mon, 05 Jun 2023 04:11:59 GMT Server: PWS/8.3.1.0.8 Via: 1.1 dianxun232:2 (W), 1.1 PSmgshxSJC1cd36:13 (W) X-Cache: HIT, server, memory X-Px: ms PSmgshxSJC1cd36SJC,ms dianxun232000(origin) X-Reqid: 201921416722819520230427143121T24viqhZsampled X-Ws-Request-Id: 644a16b9_PSmgshxSJC1cd36_4616-21800

	aaaaa557.com/3af44ca6e6704621829a55cefc742300.gif	103.170.15.114	200 OK	817 kB
URL GET HTTP/1.1 aaaaa557.com/3af44ca6e6704621829a55cefc742300.gif IP 103.170.15.114:443 ASN #7483 Skycloud Computing co., Ltd. Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerSectigo Limited Subjectaaaaa557.com FingerprintDF:8E:21:88:56:F8:88:46:F2:46:7B:29:83:AB:5D:86:79:06:6F:C2 ValidityMon, 27 Mar 2023 00:00:00 GMT - Tue, 26 Mar 2024 23:59:59 GMT File type GIF image data, version 89a, 960 x 80\012- data Size 817 kB (817314 bytes) Hash 6c09f96f01dd4673949100282cecf09b d33c49f019f30bb031c08f58581bb1d4679377bd 84249ac6ab1a9e8fae8887bb6765a1b798ffc9134ec3d40d939840bd847cf083 HTTP Headers `GET /3af44ca6e6704621829a55cefc742300.gif HTTP/1.1 Host: aaaaa557.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Cache-Control: max-age=604800 ETag: "642ffbe6-c78a2" Date: Sat, 03 Jun 2023 15:56:09 GMT Content-Type: image/gif Server: nginx Last-Modified: Fri, 07 Apr 2023 11:17:58 GMT Accept-Ranges: bytes X-Cache: HIT from yd11_13-cdn-g01-la2-44 Content-Length: 817314`

	xiod.xyz/xpj960x60.gif	123.234.2.86	200 OK	345 kB
URL GET HTTP/1.1 xiod.xyz/xpj960x60.gif IP 123.234.2.86:443 ASN #4837 CHINA UNICOM China169 Backbone Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerSectigo Limited Subjectxiod.xyz Fingerprint41:40:C0:80:95:01:9F:C3:D4:37:B2:6C:A8:13:1B:F9:4C:A2:DB:49 ValidityMon, 20 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT File type GIF image data, version 89a, 960 x 60\012- data Size 345 kB (344832 bytes) Hash 4ebdabbf56c5ea36aeb13bc0dfb3cd1c 1683d1b07480e966e2ea783b9cc43220e1f8f549 0eac7dfc2111bea18f69905fd0183364c76e9489a39dcd319872b83fa5a53f51 HTTP Headers `GET /xpj960x60.gif HTTP/1.1 Host: xiod.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Last-Modified: Thu, 29 Dec 2022 12:11:22 GMT Etag: "4ebdabbf56c5ea36aeb13bc0dfb3cd1c" Content-Type: image/gif Date: Sun, 28 May 2023 20:07:23 GMT Server: tencent-cos x-cos-hash-crc64ecma: 357403910767134175 x-cos-request-id: NjQ3M2I0N2JfOWQ0ZmI3MDlfYTk0ZF9jNWZiYmVi Content-Length: 344832 Accept-Ranges: bytes X-NWS-LOG-UUID: 8417338245617317355 Connection: keep-alive X-Cache-Lookup: Cache Hit Cache-Control: max-age=86400`

	files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTBRGH7aQzZV7bb+CFCNHTspU6w6hH1+18S8VcyErrleAWp36uS8fnboa5EcqN+6j8U=	103.166.246.24	200 OK	54 kB
URL GET HTTP/2 files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTBRGH7aQzZV7bb+CFCNHTspU6w6hH1+18S8VcyErrleAWp36uS8fnboa5EcqN+6j8U= IP 103.166.246.24:443 ASN #51649 Neko LLC. Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectbackmoestream.xyz Fingerprint48:00:12:EB:61:AD:C7:13:2A:6A:97:BA:BF:64:C2:BE:F2:EA:18:6D ValidityTue, 28 Mar 2023 10:46:52 GMT - Mon, 26 Jun 2023 10:46:51 GMT File type GIF image data, version 89a, 320 x 185\012- data Size 54 kB (53571 bytes) Hash 3379207755438f33f9c71d205458c925 62be0aea7da26f3dd9af13f74272915f557ed661 f372dc3e7318bdbb617104817ef1bf1c4313ba9ffe43c2d75bae12b539fc9187 HTTP Headers `GET /proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTBRGH7aQzZV7bb+CFCNHTspU6w6hH1+18S8VcyErrleAWp36uS8fnboa5EcqN+6j8U= HTTP/1.1 Host: files.backmoestream.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:17 GMT content-type: image/gif content-length: 53571 access-control-allow-origin: * cache-control: max-age=2592000 alt-svc: h3=":443"; ma=86400, h3-27=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2`

	xiod.xyz/k9-ky960x60.gif	123.234.2.86	200 OK	406 kB
URL GET HTTP/1.1 xiod.xyz/k9-ky960x60.gif IP 123.234.2.86:443 ASN #4837 CHINA UNICOM China169 Backbone Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerSectigo Limited Subjectxiod.xyz Fingerprint41:40:C0:80:95:01:9F:C3:D4:37:B2:6C:A8:13:1B:F9:4C:A2:DB:49 ValidityMon, 20 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT File type GIF image data, version 89a, 960 x 60\012- data Size 406 kB (405511 bytes) Hash 2cc0caa937d60ce47f10bcc67e78c29d e6be035b70daeef0479d69f5530e552cb7bb5cdc a8360b2d6ce237a2ff2899226461cce6ebf9d014aed3febb2c4cdc8e2356c6df HTTP Headers `GET /k9-ky960x60.gif HTTP/1.1 Host: xiod.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Last-Modified: Mon, 13 Mar 2023 10:13:40 GMT Etag: "2cc0caa937d60ce47f10bcc67e78c29d" Content-Type: image/gif Date: Wed, 31 May 2023 03:13:57 GMT Server: tencent-cos x-cos-hash-crc64ecma: 17982091820924443950 x-cos-request-id: NjQ3NmJiNzVfY2Q0ZWI3MDlfMmIzMDZfY2I1ZGI2Zg== Content-Length: 405511 Accept-Ranges: bytes X-NWS-LOG-UUID: 7991845120614816735 Connection: keep-alive X-Cache-Lookup: Cache Hit Cache-Control: max-age=86400`

	static.qwahk.com/960x60.gif	154.39.80.127	200 OK	187 kB
URL GET HTTP/1.1 static.qwahk.com/960x60.gif IP 154.39.80.127:443 ASN #174 COGENT-174 Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerBuypass AS-983163327 Subjectstatic.qwahk.com FingerprintFF:FF:A5:A9:19:4B:44:3B:55:3B:3F:E7:2F:A5:76:CF:5E:4C:E5:A4 ValidityMon, 19 Dec 2022 04:37:56 GMT - Fri, 16 Jun 2023 21:59:00 GMT File type GIF image data, version 89a, 960 x 60\012- data Size 187 kB (186717 bytes) Hash d5c7abafee220d36ad4c23f76d8d428c 31825dedcd230ec6c31b3654c89e3cd35124d327 c25d50eea7fe6b832b3b5a1b3735f5cd9cdd3feb917ca24e9ac82c83bc7ad8b2 HTTP Headers `GET /960x60.gif HTTP/1.1 Host: static.qwahk.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Accept-Ranges: bytes Access-Control-Allow-Methods: * Access-Control-Allow-Orign: * Content-Length: 186717 Content-Type: image/gif;charset=UTF-8 Date: Thu, 27 Apr 2023 06:30:17 GMT ETag: "1682577017" Last-Modified: Thu, 27 Apr 2023 06:30:17 GMT Server: PWS/8.3.1.0.8 Via: 1.1 dianxun232:2 (W), 1.1 PSmgshxSJC1cd36:13 (W) X-Cache: HIT, server, memory X-Px: ms PSmgshxSJC1cd36SJC,ms dianxun232000(origin) X-Reqid: 201921416722818020230427143017eiccnncfsampled X-Ws-Request-Id: 644a1679_PSmgshxSJC1cd36_4543-56532

	files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTC6G41JTknxJcU7lH47v/RZC0fbyQg4sqjz9/BbN7Gj2wFkeZPQTFt9NQLNEd0VZ9o=	103.166.246.24	200 OK	606 kB
URL GET HTTP/2 files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTC6G41JTknxJcU7lH47v/RZC0fbyQg4sqjz9/BbN7Gj2wFkeZPQTFt9NQLNEd0VZ9o= IP 103.166.246.24:443 ASN #51649 Neko LLC. Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectbackmoestream.xyz Fingerprint48:00:12:EB:61:AD:C7:13:2A:6A:97:BA:BF:64:C2:BE:F2:EA:18:6D ValidityTue, 28 Mar 2023 10:46:52 GMT - Mon, 26 Jun 2023 10:46:51 GMT File type GIF image data, version 89a, 960 x 120\012- data Size 606 kB (606377 bytes) Hash ff8db48a241860ecf6a36d6ecfabe8f5 ab3f3df03c30778940ef5be94f23ab2759e00075 eea5d018174211847a5e4bf57c0ec4bcbf6276fcbde9da15d3489c1aadb9040d HTTP Headers `GET /proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTC6G41JTknxJcU7lH47v/RZC0fbyQg4sqjz9/BbN7Gj2wFkeZPQTFt9NQLNEd0VZ9o= HTTP/1.1 Host: files.backmoestream.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:17 GMT content-type: image/gif content-length: 606377 access-control-allow-origin: * cache-control: max-age=2592000 alt-svc: h3=":443"; ma=86400, h3-27=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash f63b1674de4bb19b5052b77760827617 701d72e36846d77d24cbfe7fb002d94fa354b0eb 64f3d144bcec08e674cd0150035a8f976bc96c89db945feb0b20b54b49fa1a42 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 05 Jun 2023 04:52:18 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	storage.googleapis.com/yanc/imgs/y100100a.gif	142.250.74.80	200 OK	30 kB
URL GET HTTP/2 storage.googleapis.com/yanc/imgs/y100100a.gif IP 142.250.74.80:443 ASN #15169 GOOGLE Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerGoogle Trust Services LLC Subjectstorage.googleapis.com FingerprintDF:A1:15:43:3F:FE:76:DC:90:2B:67:20:8E:3C:80:FB:4B:C7:B7:C1 ValidityFri, 19 May 2023 13:00:16 GMT - Fri, 11 Aug 2023 13:00:15 GMT File type GIF image data, version 89a, 100 x 100\012- data Size 30 kB (29450 bytes) Hash f2cc2e6882c955f915fa7f6d5339b229 f3ddc4a11d888364904a8b634a111d4f55ecedd2 c020e78f7be6e2cd215f347356ebe528d5d9c906b19971e0261d08e2c30507b3 HTTP Headers `GET /yanc/imgs/y100100a.gif HTTP/1.1 Host: storage.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-guploader-uploadid: ADPycds0Hehnz0Vp6Ufle3hrgokzp1Hq0L97iPggWNXP8ZhKA5dqjQHFMhmRgA6Ii5_3EmyTpcdZXQWC8Z2q3SHqtkP7Uw x-goog-generation: 1684646513804049 x-goog-metageneration: 1 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 29450 x-goog-hash: crc32c=xSfD5w==, md5=8swuaILJVfkV+n9tUzmyKQ== x-goog-storage-class: STANDARD accept-ranges: bytes content-length: 29450 server: UploadServer date: Mon, 05 Jun 2023 04:52:20 GMT expires: Mon, 05 Jun 2023 05:52:20 GMT cache-control: public, max-age=3600 last-modified: Sun, 21 May 2023 05:21:53 GMT etag: "f2cc2e6882c955f915fa7f6d5339b229" content-type: image/gif age: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash f63b1674de4bb19b5052b77760827617 701d72e36846d77d24cbfe7fb002d94fa354b0eb 64f3d144bcec08e674cd0150035a8f976bc96c89db945feb0b20b54b49fa1a42 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 05 Jun 2023 04:52:20 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	lbfm.lbpictupian.com/upload/vod/2023/01/fmzorehgq2h.jpg	104.22.13.214	200 OK	11 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/fmzorehgq2h.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 11 kB (11052 bytes) Hash b261c7ee4148bc416811a968b4b903b0 d72b3766d5aacddf64dd41e2c97bf905bce795ec 2ec9590475e9ddabb38fc6690a9974d1383f08756dbf74fc6ba51f76c269e272 HTTP Headers `GET /upload/vod/2023/01/fmzorehgq2h.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 11052 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=11975 content-disposition: inline; filename="fmzorehgq2h.webp" etag: "63cdf480-2ec7" last-modified: Mon, 23 Jan 2023 02:44:16 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e59590afa-OSL X-Firefox-Spdy: h2`

	www.jxhjl.xyz:51868/	27.124.33.150	200 OK	63 kB
URL GET HTTP/2 www.jxhjl.xyz:51868/ IP 27.124.33.150:51868 ASN #64050 BGPNET Global ASN Requested by http://www.azinventorymanagement.com/index.php Certificate IssuerLet's Encrypt Subjectjxcou.xyz Fingerprint47:1A:C8:1B:BA:38:0D:B8:E2:2A:B8:AA:6B:65:7A:16:15:53:BF:2A ValidityTue, 02 May 2023 15:41:07 GMT - Mon, 31 Jul 2023 15:41:06 GMT File type Size 63 kB (63425 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: www.jxhjl.xyz:51868 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://jx.tongdoumaoyi.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:14 GMT content-type: text/html; charset=utf-8 vary: Accept-Encoding strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	www.jxhjl.xyz:51868/template/m1938pc/static/css/swiper.min.css	27.124.33.150	200 OK	18 kB
URL GET HTTP/2 www.jxhjl.xyz:51868/template/m1938pc/static/css/swiper.min.css IP 27.124.33.150:51868 ASN #64050 BGPNET Global ASN Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectjxcou.xyz Fingerprint47:1A:C8:1B:BA:38:0D:B8:E2:2A:B8:AA:6B:65:7A:16:15:53:BF:2A ValidityTue, 02 May 2023 15:41:07 GMT - Mon, 31 Jul 2023 15:41:06 GMT File type ASCII text, with very long lines (17459), with CRLF line terminators Size 18 kB (17773 bytes) Hash 018da5e642fda033e4debef641f6f582 16bb9daf33ec818e293eff5cae7fad701f72e1d2 46525cb298d262696150996f8731fe08bd6727c7e33f2dc8222ae40f1543dfe6 HTTP Headers `GET /template/m1938pc/static/css/swiper.min.css HTTP/1.1 Host: www.jxhjl.xyz:51868 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: text/css last-modified: Fri, 14 Jan 2022 04:46:06 GMT vary: Accept-Encoding etag: W/"61e1000e-456d" expires: Mon, 05 Jun 2023 16:52:15 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	www.jxhjl.xyz:51868/template/m1938pc/static/css/1.css	27.124.33.150	200 OK	1.3 kB
URL GET HTTP/2 www.jxhjl.xyz:51868/template/m1938pc/static/css/1.css IP 27.124.33.150:51868 ASN #64050 BGPNET Global ASN Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjectjxcou.xyz Fingerprint47:1A:C8:1B:BA:38:0D:B8:E2:2A:B8:AA:6B:65:7A:16:15:53:BF:2A ValidityTue, 02 May 2023 15:41:07 GMT - Mon, 31 Jul 2023 15:41:06 GMT File type Unicode text, UTF-8 text, with very long lines (1373), with no line terminators Size 1.3 kB (1294 bytes) Hash ab3f85a6788b13e5d5d63d99926f72a7 e002cb07f2c17f6dba15615165d0e23c1447f8be 6b4b6bfeaf2f3ad7ebc1db1fce8f29bbb6de3a4f6a07c0efc9d926d536ca63f2 HTTP Headers `GET /template/m1938pc/static/css/1.css HTTP/1.1 Host: www.jxhjl.xyz:51868 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Mon, 05 Jun 2023 04:52:15 GMT content-type: text/css last-modified: Sun, 16 Jan 2022 07:31:51 GMT vary: Accept-Encoding etag: W/"61e3c9e7-50e" expires: Mon, 05 Jun 2023 16:52:15 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	lbfm.lbpictupian.com/upload/vod/2023/04/ocvcnejz1ha.jpg	104.22.13.214	200 OK	7.4 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/04/ocvcnejz1ha.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 7.4 kB (7358 bytes) Hash a139419a57a5e9ab0bb7cca467db46bd cc33e3a5d2e7863cbd2c39d108e53b8002f00858 0eefa53c91020700b98d267008c6438844156e2cdfe62f2946032f09773186dd HTTP Headers `GET /upload/vod/2023/04/ocvcnejz1ha.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 7358 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=8418 content-disposition: inline; filename="ocvcnejz1ha.webp" etag: "642bfe73-20e2" last-modified: Tue, 04 Apr 2023 10:39:47 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e59650afa-OSL X-Firefox-Spdy: h2`

	hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1057773352&si=ac926d0332f02f4f5a734812940af824&v=1.3.0&lv=1&sn=52857&r=0&ww=1280&u=http%3A%2F%2Fwww.azinventorymanagement.com%2Findex.php&tt=%E6%B9%96%E5%B7%9E%E7%BC%BA%E5%BD%BB%E7%89%A9%E8%81%94%E7%BD%91%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8	103.235.46.191	200 OK	43 B
URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1057773352&si=ac926d0332f02f4f5a734812940af824&v=1.3.0&lv=1&sn=52857&r=0&ww=1280&u=http%3A%2F%2Fwww.azinventorymanagement.com%2Findex.php&tt=%E6%B9%96%E5%B7%9E%E7%BC%BA%E5%BD%BB%E7%89%A9%E8%81%94%E7%BD%91%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 IP 103.235.46.191:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.azinventorymanagement.com/index.php Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5 ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash ad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda HTTP Headers GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1057773352&si=ac926d0332f02f4f5a734812940af824&v=1.3.0&lv=1&sn=52857&r=0&ww=1280&u=http%3A%2F%2Fwww.azinventorymanagement.com%2Findex.php&tt=%E6%B9%96%E5%B7%9E%E7%BC%BA%E5%BD%BB%E7%89%A9%E8%81%94%E7%BD%91%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.azinventorymanagement.com/ Cookie: HMTK=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Cache-Control: private, max-age=0, no-cache Content-Length: 43 Content-Type: image/gif Date: Mon, 05 Jun 2023 04:52:12 GMT P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Pragma: no-cache Server: apache Set-Cookie: HMACCOUNT=F57DBE88E5924786; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800 X-Content-Type-Options: nosniff`

	lbfm.lbpictupian.com/upload/vod/2023/02/5e1takc455a.jpg	104.22.13.214	200 OK	7.5 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/5e1takc455a.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 7.5 kB (7526 bytes) Hash bfd8c5bd9592ab2856e606943f0348cf c948f3de437c84bea9b7637bf31a2283980246a5 10e2b7f8ec0e0d0151527fc8e44c29a95d18134e849332408c938bd4f8764677 HTTP Headers `GET /upload/vod/2023/02/5e1takc455a.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 7526 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=8961 content-disposition: inline; filename="5e1takc455a.webp" etag: "63e243c6-2301" last-modified: Tue, 07 Feb 2023 12:27:50 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e59570afa-OSL X-Firefox-Spdy: h2`

	tu.jnctupian.vip/jnc/jnc120av.gif	162.250.140.227	200 OK	722 kB
URL GET HTTP/1.1 tu.jnctupian.vip/jnc/jnc120av.gif IP 162.250.140.227:443 ASN #62587 ANT-CLOUD Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerLet's Encrypt Subjecttu.jnctupian.vip Fingerprint9D:5C:2A:C9:6B:5C:72:8F:EE:34:BA:5E:0A:3C:51:A0:B5:9E:55:67 ValiditySun, 14 May 2023 04:27:02 GMT - Sat, 12 Aug 2023 04:27:01 GMT File type GIF image data, version 89a, 960 x 120\012- data Size 722 kB (721763 bytes) Hash b0381964f79eb32802841e6e1cda82fa be6108a05def414055f9d1e68ac11f9413473c24 dc4970ac08590ffbda971382a84fe26f1115ee2504adcd878fbe86f16c7be17b HTTP Headers `GET /jnc/jnc120av.gif HTTP/1.1 Host: tu.jnctupian.vip User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 05 Jun 2023 04:52:16 GMT Content-Type: image/gif Content-Length: 721763 Connection: keep-alive Last-Modified: Sun, 19 Feb 2023 10:35:22 GMT ETag: "63f1fb6a-b0363" Expires: Wed, 05 Jul 2023 00:22:58 GMT Cache-Control: max-age=2592000 Server: cdn X-Cache-Status: HIT Accept-Ranges: bytes`

	lbfm.lbpictupian.com/upload/vod/2023/01/xwvdrsm2zyb.jpg	104.22.13.214	200 OK	9.3 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/xwvdrsm2zyb.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 9.3 kB (9250 bytes) Hash 56baf758f71c00520cb2e8174cc0a01d 749deb90919186ab4f6a6fad8843b2036abc8f4c 2704091e7f98ec6cd01de61ab2337b45cd35c21a3c13d30cedf4eee36f613c6e HTTP Headers `GET /upload/vod/2023/01/xwvdrsm2zyb.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 9250 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=10165 content-disposition: inline; filename="xwvdrsm2zyb.webp" etag: "63ba99e2-27b5" last-modified: Sun, 08 Jan 2023 10:24:34 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e595b0afa-OSL X-Firefox-Spdy: h2`

	png.pngtree.com/png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg	104.18.3.157	403 Forbidden	0 B
URL GET HTTP/2 png.pngtree.com/png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg IP 104.18.3.157:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerDigiCert Inc Subject.pngtree.com Fingerprint14:62:07:73:2C:B1:44:24:03:14:EF:CE:F3:79:16:FF:42:B8:2F:D9 ValiditySat, 06 May 2023 00:00:00 GMT - Thu, 09 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg HTTP/1.1 Host: png.pngtree.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 403 Forbidden date: Mon, 05 Jun 2023 04:52:16 GMT content-type: application/xml x-amz-request-id: YCPEF6RWPF55J4WJ x-amz-id-2: 64hTMrcSRtwLzxodPqbeTifXXTzV2E3bQgrj38D9xt5kmswlqQxslhgJSYlE6sI7gcOZiFYMgLk= cf-cache-status: MISS set-cookie: __cf_bm=Vto6gvsoCsw9tCSc1HAIWEBrcMK1Vx1UZY8mkkdPMUo-1685940736-0-AWJ8U++N0OOkQFBrtTq+weFrlVLnU92OGkLTxX4eh0djxYkqpc8xLgxnDLDccVN7bMihKre2SBiVKryLjpRyCcA=; path=/; expires=Mon, 05-Jun-23 05:22:16 GMT; domain=.pngtree.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare cf-ray: 7d25ce1d891eb4ee-OSL content-encoding: br X-Firefox-Spdy: h2

	lbfm.lbpictupian.com/upload/vod/2023/01/n3l0wa4kamf.jpg	104.22.13.214	200 OK	8.1 kB
URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/n3l0wa4kamf.jpg IP 104.22.13.214:443 ASN #13335 CLOUDFLARENET Requested by https://www.jxhjl.xyz:51868/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00 ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 8.1 kB (8128 bytes) Hash 3693fb9f98c3624cbc9f5223f78c985e 726e9a51e8678521f3f3b284e5fbf3bb915938ce b3187742e72ef08ac082070f4ecdfc5d7a2d8b563ac67c1c316507d819199f85 HTTP Headers `GET /upload/vod/2023/01/n3l0wa4kamf.jpg HTTP/1.1 Host: lbfm.lbpictupian.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.jxhjl.xyz:51868/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Mon, 05 Jun 2023 04:52:16 GMT content-type: image/webp content-length: 8128 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=9313 content-disposition: inline; filename="n3l0wa4kamf.webp" etag: "63d3ada3-2461" last-modified: Fri, 27 Jan 2023 10:55:31 GMT vary: Accept cache-control: max-age=31536000 cf-cache-status: REVALIDATED accept-ranges: bytes server: cloudflare cf-ray: 7d25ce1e59580afa-OSL X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL