r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b782882bdabaf3b08e64120922b4a4b7
2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9
3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20335
Expires: Sun, 08 Jan 2023 21:01:05 GMT
Date: Sun, 08 Jan 2023 15:22:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e4bdd77c0369662aa71ce2d01fd3edab
0ab1c5857e200e7e7946424c2c844537bfbb9775
a163c19fcc8fcf985e8df6ad4bd7ce73912b3df892d8236c70f9bc80820b26da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A163C19FCC8FCF985E8DF6AD4BD7CE73912B3DF892D8236C70F9BC80820B26DA"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3826
Expires: Sun, 08 Jan 2023 16:25:56 GMT
Date: Sun, 08 Jan 2023 15:22:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 08 Jan 2023 14:48:17 GMT
content-type: application/json
age: 2033
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 89a058935fd04697c87e9441fbb466a9
59b5b08119374b1da34cff7e43a7c6dc80103f6e
3a3261f495323ff0f60067b2930b8d0e5e4e5cd6ae9b14929a88047587b735da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A3261F495323FF0F60067B2930B8D0E5E4E5CD6AE9B14929A88047587B735DA"
Last-Modified: Sat, 07 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14320
Expires: Sun, 08 Jan 2023 19:20:50 GMT
Date: Sun, 08 Jan 2023 15:22:10 GMT
Connection: keep-alive
zgnmjcw.net/
46.3.166.123301 Moved Permanently 0 B IP 46.3.166.123:0
ASN #141677 Nathosts Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 08 Jan 2023 15:22:10 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.zgnmjcw.net/
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aulNV3ryUgBdZ58qoUdv2SAV9ztgGn1y8XT5F0ufUIJUK4WOE/hEf41QIjgnpw6dyEna/SXHY/g=
x-amz-request-id: C5JK5M3Y3K2QMXJG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 08 Jan 2023 15:00:52 GMT
age: 1278
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 15:22:10 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 08 Jan 2023 14:33:44 GMT
age: 2906
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 54ac41a005cad66e958c904071ea1d4f
66932889be57eb15ab99237a69d292b12090c68d
52545e144a7ca5c37c5369d5f5b566b4e5e820b1920ab7fe8e413e7fe022e21b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3487
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 15:22:11 GMT
Last-Modified: Sun, 08 Jan 2023 14:24:04 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.84.125101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.84.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +jSG2eMr8xue+pYb5Nv0YQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: S50RI00eCUoee7hVhAP1TAp11Qs=
www.zgnmjcw.net/
46.3.166.123200 OK 36 kB IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash b26c4448023d8df1b702162c6fd08290
0291a6c24cf26e6255b20d2cd08ef9b02ee04cd0
784e6fe3454f293499f83d74afdaa7e43033dbebf5d61a1fe3e7d5d0db93e77a
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: text/html
Content-Length: 35794
Connection: keep-alive
Content-Encoding: gzip
Vary: Accept-Encoding
www.zgnmjcw.net/static223/css/mytheme-font.css
46.3.166.123200 OK 7.8 kB URL HTTP/1.1 www.zgnmjcw.net/static223/css/mytheme-font.css
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (30763), with CRLF line terminators
Hash 346a153baf425d5c625acbc7a1636b0f
2b79e9c580b8d4803938ae084e23563880cc34ef
89f0adcce7da72b11a25b101e19da0fa259c8eea8a83ea3a0f7902dd13264748
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/css/mytheme-font.css HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: text/css
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327f8-78d5"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/static223/css/mytheme-ui.css
46.3.166.123200 OK 8.8 kB URL HTTP/1.1 www.zgnmjcw.net/static223/css/mytheme-ui.css
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type assembler source, Unicode text, UTF-8 (with BOM) text, with very long lines (1893), with CRLF line terminators
Hash e75f896a0b98215bc7509a6ab036e4d6
3c3cf6e00e5477664a9aa21349cdec45d80bde12
8efe653341c20fb3ce886e8c6d18b000cbe9468468860390d5f0a67b8064b51c
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/css/mytheme-ui.css HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: text/css
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327f8-8b04"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/static223/css/mytheme-site.css
46.3.166.123200 OK 2.7 kB URL HTTP/1.1 www.zgnmjcw.net/static223/css/mytheme-site.css
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 75b7bb98b77f11f3e22506e3af4abaed
3cec7a24ed6f714b165de61b35bf0e0eef7c7684
586083e8bef0f4ccdc12d0c0018b552ac205f797def3c3d2a25c4ab3b722409e
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/css/mytheme-site.css HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: text/css
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327f8-2994"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/static223/css/mytheme-share.css
46.3.166.123200 OK 481 B URL HTTP/1.1 www.zgnmjcw.net/static223/css/mytheme-share.css
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 641d3cbc6404014427a96b6d2e1e1acc
a2dc82616ed075fb60f4a8da6ddc4c49e288d741
fc016694b6e74e3807df5c912996226db2ff84415f76ed361490d3f93a89c7b4
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/css/mytheme-share.css HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: text/css
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327f8-694"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/static223/css/mytheme-color2.css
46.3.166.123200 OK 1.7 kB URL HTTP/1.1 www.zgnmjcw.net/static223/css/mytheme-color2.css
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash f63d13f8ae76be3fed83b8782f92aba2
62462df76249a2c545b9215358d11e7d8ec8897b
a7bcb81dbbc8cfa43d3b665d8c65a06850fb200f09eb528efd9cba1cd96e219f
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/css/mytheme-color2.css HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: text/css
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327f8-157d"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/static223/js/layer.js
46.3.166.123200 OK 8.4 kB URL HTTP/1.1 www.zgnmjcw.net/static223/js/layer.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type Unicode text, UTF-8 text, with very long lines (22024), with CRLF line terminators
Hash 86d55e1fbcf2cea4c9d8ca6d2ad34eed
b9c315892eda2d3a1579294be6c4fde6be95ff40
c92dc419d550842a89b2746b0c2fff1e57b9eab451e27c7baf7ffb06f5b71d3f
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/js/layer.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fa-565d"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/static223/js/mytheme-ui.js
46.3.166.123200 OK 5.8 kB URL HTTP/1.1 www.zgnmjcw.net/static223/js/mytheme-ui.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 3ff92a3ac12a98901c70e48b2fac3260
8ed8c21ef049cf41a17fc1ae6bcc11ae957f0093
83401d012a317f7f2682ec0644f283e628ef7c208d46074f1b154815dbab3d25
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/js/mytheme-ui.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fa-46c2"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/static223/js/mytheme-cms.js
46.3.166.123200 OK 2.5 kB URL HTTP/1.1 www.zgnmjcw.net/static223/js/mytheme-cms.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 3515bc5c7c4701dedabd9d7f999b0679
80ece1534665aa95703eec9fab4c93df44e7e121
395bef6828dc97712c30f29133fda9a3c2220d5d57ca7677cbea796e4a0d2460
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/js/mytheme-cms.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fc-1e32"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/yyhstatic/js/pcdaohang.js
46.3.166.123200 OK 465 B URL HTTP/1.1 www.zgnmjcw.net/yyhstatic/js/pcdaohang.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 7a2fa78d5c63142990435194dc2fccc8
91379245a830b070b4d18bf84f9ecbe53dd08e1d
a45b27e4ca694fc0104d4c38c493a058ff91efdc952ef68173bcce423618680b
Analyzer Verdict Alert quad9 Sinkholed
GET /yyhstatic/js/pcdaohang.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: application/javascript
Last-Modified: Mon, 04 Jul 2022 08:05:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62c29f31-dcd"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/static223/js/jquery.min.js
46.3.166.123200 OK 34 kB URL HTTP/1.1 www.zgnmjcw.net/static223/js/jquery.min.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 8b20c2183693be60f63566d710f39254
be463aa7b7916b9290b21f669ec5f9ca0320d225
614935fec2b27841e3a065883ab56229318c2fafcc6b08aff701c2549b7c9fe6
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/js/jquery.min.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fc-15391"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/yyhstatic/js/webdaohang.js
46.3.166.123200 OK 747 B URL HTTP/1.1 www.zgnmjcw.net/yyhstatic/js/webdaohang.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 3e988b8406c4307c5de31e61656ccffe
0301ef69c3e427bd0aaf72f1c92dad1f746da57f
340f4684f1bbf26aa15b9ca36048a681424676f58718776e9a5693082a97e6c6
Analyzer Verdict Alert quad9 Sinkholed
GET /yyhstatic/js/webdaohang.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: application/javascript
Last-Modified: Fri, 28 Oct 2022 08:28:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"635b92a8-1987"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/static223/js/mytheme-site.js
46.3.166.123200 OK 41 kB URL HTTP/1.1 www.zgnmjcw.net/static223/js/mytheme-site.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type ASCII text, with very long lines (8746), with CRLF line terminators
Hash e63b32dbb5bfef02e41ee6b632a5b51b
8c7d5b8de3215e6efedfc71eac45d20827c56668
311f6131e7ca0d5f389c0851ee05527326edf7a52ac7576b03212cfb79884196
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/js/mytheme-site.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fa-1f90d"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/yyhstatic/js/rmss.js
46.3.166.123200 OK 790 B URL HTTP/1.1 www.zgnmjcw.net/yyhstatic/js/rmss.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash d8193cb030040f6fb2e787c14863f056
54cbeda7db6b05ddc77427ee3fb8611511a09049
45b7b140e380fe365402e178d0e501be97c12e40d3dd80c8afaf34ef4a5cf09c
Analyzer Verdict Alert quad9 Sinkholed
GET /yyhstatic/js/rmss.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: application/javascript
Content-Length: 790
Last-Modified: Mon, 17 Oct 2022 08:54:10 GMT
Connection: keep-alive
ETag: "634d1832-316"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.zgnmjcw.net/yyhgg/dbgg.php
46.3.166.123200 OK 142 B URL HTTP/1.1 www.zgnmjcw.net/yyhgg/dbgg.php
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type ASCII text, with no line terminators
Hash 042de2a8fa63bdcca8dd3964fa32e54b
fe06916e05f08b9a049d2268875328c164e5dc55
1e3b063ab90ad83208189d058e981122659907c0bf01953a8bc2afbf8c57c12f
Analyzer Verdict Alert quad9 Sinkholed
GET /yyhgg/dbgg.php HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.zgnmjcw.net/yyhgg/sxgdpfgg.js
46.3.166.123200 OK 1.0 kB URL HTTP/1.1 www.zgnmjcw.net/yyhgg/sxgdpfgg.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type HTML document text\012- HTML document, ISO-8859 text, with very long lines (509), with CRLF line terminators
Hash 2c30c55de7a6deb84b836a79444be5d8
cd6b640e6ccdd6f8282aa4ec1ea8974731b0dcfb
7260120d791b4b63749728911cea209dc5432411b1c5cff316f2c8543b8117bf
Analyzer Verdict Alert quad9 Sinkholed
GET /yyhgg/sxgdpfgg.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: application/javascript
Last-Modified: Wed, 04 Jan 2023 04:03:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63b4faab-def"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/yyhgg/shipinqiangg.js
46.3.166.123200 OK 581 B URL HTTP/1.1 www.zgnmjcw.net/yyhgg/shipinqiangg.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 64d107c31e6e46d61b4c7b2aa3e9768a
d3fbe536561bb47aaf9cfd9100a258dfe03bef75
f35b2f56dc6395976872bf308a202550efcea0c2ba9d5a3994322d131fa87eaa
Analyzer Verdict Alert quad9 Sinkholed
GET /yyhgg/shipinqiangg.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:12 GMT
Content-Type: application/javascript
Last-Modified: Thu, 29 Dec 2022 11:03:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63ad73ff-800"
Expires: Mon, 09 Jan 2023 03:22:12 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/yyhstatic/js/tj.js
46.3.166.123200 OK 253 B URL HTTP/1.1 www.zgnmjcw.net/yyhstatic/js/tj.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
Hash c0f83c6ba9b8d1ee9b3474aa2bdf8b63
0815596afc37d7f814e2ac39efba1239aa0da83c
22ff477c414de1c727d25cd7a54ae2f8de4fbabbadd30eb41dede1317cd6a983
Analyzer Verdict Alert quad9 Sinkholed
GET /yyhstatic/js/tj.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:12 GMT
Content-Type: application/javascript
Content-Length: 253
Last-Modified: Sat, 21 May 2022 10:42:21 GMT
Connection: keep-alive
ETag: "6288c20d-fd"
Expires: Mon, 09 Jan 2023 03:22:12 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.zgnmjcw.net/static223/js/tj.js
46.3.166.123404 Not Found 62 B URL HTTP/1.1 www.zgnmjcw.net/static223/js/tj.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type ASCII text, with no line terminators
Hash 21945f57deaf3f3f9b991498eea47c0a
8f17a4f3e661d2d05123efb1c0debaf4feb50921
f408b9c52c95e1a25e51a6cdd32032b52953cfd665d253c3ba3e395336a5087f
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/js/tj.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 08 Jan 2023 15:22:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.zgnmjcw.net/static223/js/theme/layer.css?v=3.1.1
46.3.166.123200 OK 37 kB URL HTTP/1.1 www.zgnmjcw.net/static223/js/theme/layer.css?v=3.1.1
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 1df6543ddc0e6aadd90695178ac40053
35d23eae385c7a5295e5282166ef5e79a65788ee
139a0a4f0f71d8e7391e8b25cc668925f7ce50884c7faef384f28664ac58d3da
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/js/theme/layer.css?v=3.1.1 HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:12 GMT
Content-Type: text/html
Content-Length: 36637
Connection: keep-alive
Content-Encoding: gzip
Vary: Accept-Encoding
www.zgnmjcw.net/static223/picture/b3569e7ff05e95227d6436f10b777913.gif
46.3.166.123200 OK 9.1 kB URL HTTP/1.1 www.zgnmjcw.net/static223/picture/b3569e7ff05e95227d6436f10b777913.gif
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type GIF image data, version 89a, 125 x 45\012- data
Hash 48b66bbc2fca4f7f40af4fd8335abee2
5297d6f769b51e63f5c44c2056a7cbd6534a380c
a47011805154c0589e690e70f963cac8f0f2fd937f3362f45196d0c89fb4fe49
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/picture/b3569e7ff05e95227d6436f10b777913.gif HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:12 GMT
Content-Type: image/gif
Content-Length: 9115
Last-Modified: Thu, 17 Mar 2022 12:22:18 GMT
Connection: keep-alive
ETag: "623327fa-239b"
Expires: Tue, 07 Feb 2023 15:22:12 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3288
Expires: Sun, 08 Jan 2023 16:17:00 GMT
Date: Sun, 08 Jan 2023 15:22:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3288
Expires: Sun, 08 Jan 2023 16:17:00 GMT
Date: Sun, 08 Jan 2023 15:22:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3288
Expires: Sun, 08 Jan 2023 16:17:00 GMT
Date: Sun, 08 Jan 2023 15:22:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3288
Expires: Sun, 08 Jan 2023 16:17:00 GMT
Date: Sun, 08 Jan 2023 15:22:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 407fef75-2217-4da7-8ea8-b5ede48a0615
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eNKshEEvoAMFkMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b524b6-72ca4e7b3034e7ac1f3fa1ed;Sampled=0
x-amzn-remapped-date: Wed, 04 Jan 2023 07:03:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xOpZDrVh8MsfFqh0HuJJIWFvlgIm0jUE73p9MpgRA1PO_VAv0vP2nw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 16:43:14 GMT
age: 81538
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F753d022b-5cb9-4f9b-b520-756c952710b3.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F753d022b-5cb9-4f9b-b520-756c952710b3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2abe0388f11bae93f827a971bd29802
a57915c3b8388bc23c3a677ba12cc0525d949c2c
d23c15ca723fe73f6893703c7d1830034182fb1c9c620837313774c62368fa06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F753d022b-5cb9-4f9b-b520-756c952710b3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10544
x-amzn-requestid: 04bdd2a7-b3dd-434b-833c-7101a1da9da7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDy1E_goAMFmgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e678-3468e4a9174280c146f28962;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:39:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BTPEBPH5icsKe4sSjs8d_ILObhQcrFYwZG6VnW33Wv6lQzEp_AzcnQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 22:37:47 GMT
age: 60265
etag: "a57915c3b8388bc23c3a677ba12cc0525d949c2c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4c877ef-76ec-4130-a623-3cfe6579a770.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4c877ef-76ec-4130-a623-3cfe6579a770.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30c53ae078b112f7186e910c38898233
d3c58c28f0734f98bed64a26ede077464c3ad3f2
8f7dd1cf9f1472468a7caaf67a8f9c15bfe8836badcfb3249a9a8a7a6c3c0533
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4c877ef-76ec-4130-a623-3cfe6579a770.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13787
x-amzn-requestid: 2598b4fe-a032-47d7-8e6c-cfdcfbe9d64a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDvYE35IAMF1Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e662-574eb7370aac63dd531d6b75;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cd50TSdgJPa-oMD9VpvWgVF9DMls8TmQqVUNNj5d6BPlVnN1_3vTUA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 22:05:52 GMT
age: 62180
etag: "d3c58c28f0734f98bed64a26ede077464c3ad3f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ca4618f-6a71-4ec2-a5ca-de382d389417.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ca4618f-6a71-4ec2-a5ca-de382d389417.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0146cae6edad6011c47f44fb03277839
b6813e83720deba540bfbd7b469aa74b591d2f95
1cf46ba1abeb0533a36297e16789764b05e4bd8e989bb31d1d4c2897e81edd77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ca4618f-6a71-4ec2-a5ca-de382d389417.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4946
x-amzn-requestid: f6c37ccb-08b2-4c4e-917a-02be4ac06ca0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDvWEJeoAMFXgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e662-45a9e95a0213e1bc23044927;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wcgeUZbWS02iObvDp6Zha-9yNLj61Up5boN0zNQAv77pL_NYf3bvtw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 22:04:33 GMT
etag: "b6813e83720deba540bfbd7b469aa74b591d2f95"
content-type: image/jpeg
age: 62259
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facf2ac81-adf8-49be-856e-9b8af1161086.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facf2ac81-adf8-49be-856e-9b8af1161086.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0546bef00f303b12de4354291c504cad
2c8e60803dee7d21b198a92aa187b23a4dce2f43
736bad079c239fa69fab918c209ba3b2a8b7b15616a49871e527d5694670df67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facf2ac81-adf8-49be-856e-9b8af1161086.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8127
x-amzn-requestid: 8111f713-0a7a-4b10-ade5-1c7aa6e06677
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDvCE_ooAMF7gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e660-2b422a7d2dc4a28b24125d1e;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GFANyQVbYkFcVTnvUq5ELpsTsgAFaYXhZGUPHWVWixXrnsH6jBavrA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 21:46:52 GMT
etag: "2c8e60803dee7d21b198a92aa187b23a4dce2f43"
content-type: image/jpeg
age: 63320
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41d90e49-1704-4531-9083-c5d2cb357851.png
34.120.237.76200 OK 19 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41d90e49-1704-4531-9083-c5d2cb357851.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c38a39fefef49fbbffe8d3e1eba91494
0a03956a78d9ef6446040d116e7d7434f2b6f7cf
acba05376df772de6e16169393a27b5c21591881908d0e2218a45478688adc1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41d90e49-1704-4531-9083-c5d2cb357851.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 18851
x-amzn-requestid: 5caab31e-5124-47ca-bf12-0731a1650397
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDvWFW_IAMF-mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e662-57ae935a0223c2c305af46f0;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3mjZ55lDP6PWvjXj6W8M_tD9pe2e1yD6kvwNSokXSitDc3m9BhEwJw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 22:29:14 GMT
age: 60778
etag: "0a03956a78d9ef6446040d116e7d7434f2b6f7cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.zgnmjcw.net/static223/js/user.js
46.3.166.123200 OK 16 kB URL HTTP/1.1 www.zgnmjcw.net/static223/js/user.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type Unicode text, UTF-8 text, with very long lines (1156), with CRLF line terminators
Hash eebda990e6d8ce6d2c7567c969a7f058
defc2266bc5b6346053b9a35072f9c85814d338c
a3099d83eb2acc7be49961d0fe5a9c5055e4e20fa7bf9bc3d1505c47a1352aae
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/js/user.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:11 GMT
Content-Type: application/javascript
Last-Modified: Thu, 17 Mar 2022 12:22:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"623327fc-113c6"
Expires: Mon, 09 Jan 2023 03:22:11 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.zgnmjcw.net/static223/fonts/fontawesome-webfont.woff2
46.3.166.123200 OK 77 kB URL HTTP/1.1 www.zgnmjcw.net/static223/fonts/fontawesome-webfont.woff2
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.zgnmjcw.net/static223/css/mytheme-font.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:12 GMT
Content-Type: font/woff2
Content-Length: 77160
Last-Modified: Thu, 17 Mar 2022 12:22:16 GMT
Connection: keep-alive
ETag: "623327f8-12d68"
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 6f0eee44434ce303633bf7005d8aa6dd
1371d78342dbeadfe28047d1ae2e3a1994e167b2
60a37200246056f4712fc2878ab2e3c7992606d29c25e157b80145d532b34ac8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5575
Cache-Control: max-age=145748
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 15:22:12 GMT
Etag: "63ba6031-116"
Expires: Tue, 10 Jan 2023 07:51:20 GMT
Last-Modified: Sun, 08 Jan 2023 06:18:25 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 278
www.zgnmjcw.net/yyhgg/shouyeshang.html
46.3.166.123200 OK 4.2 kB URL HTTP/1.1 www.zgnmjcw.net/yyhgg/shouyeshang.html
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 99484754e3363789f29599eedf9c9dd0
193604b2dc4674a1a288adb3cac09e1fd13c986e
6f507e8c40d5724f3a403f45c54f7a87e123917ddc50ad7bc1e6234ba01d4fd6
Analyzer Verdict Alert quad9 Sinkholed
GET /yyhgg/shouyeshang.html HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:12 GMT
Content-Type: text/html
Last-Modified: Sun, 08 Jan 2023 14:13:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63bacf93-4204"
Content-Encoding: gzip
www.zgnmjcw.net/static223/js/tj.js
46.3.166.123404 Not Found 62 B URL HTTP/1.1 www.zgnmjcw.net/static223/js/tj.js
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type ASCII text, with no line terminators
Hash 21945f57deaf3f3f9b991498eea47c0a
8f17a4f3e661d2d05123efb1c0debaf4feb50921
f408b9c52c95e1a25e51a6cdd32032b52953cfd665d253c3ba3e395336a5087f
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/js/tj.js HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 08 Jan 2023 15:22:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.zgnmjcw.net/static223/images/play.png
46.3.166.123200 OK 2.5 kB URL HTTP/1.1 www.zgnmjcw.net/static223/images/play.png
IP 46.3.166.123:0
ASN #141677 Nathosts Limited
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 10a11cc31a1fe5126ae5f1e359679cbb
7d30dcc97bb4aed52948a5b040b4fa63149a405e
82b4aac50bdda11a5069442a4a6f593f4f3debbc2a4499b919d61691301c5537
Analyzer Verdict Alert quad9 Sinkholed
GET /static223/images/play.png HTTP/1.1
Host: www.zgnmjcw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/static223/css/mytheme-ui.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jan 2023 15:22:13 GMT
Content-Type: image/png
Content-Length: 2457
Last-Modified: Thu, 17 Mar 2022 12:22:20 GMT
Connection: keep-alive
ETag: "623327fc-999"
Expires: Tue, 07 Feb 2023 15:22:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
s2.loli.net/2022/05/21/zAxwCKkLnFjlaQ8.jpg
104.26.0.190200 OK 9.2 kB URL HTTP/2 s2.loli.net/2022/05/21/zAxwCKkLnFjlaQ8.jpg
IP 104.26.0.190:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /2022/05/21/zAxwCKkLnFjlaQ8.jpg HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 08 Jan 2023 15:22:13 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Sat, 21 May 2022 11:42:12 GMT
etag: "6288d014-23ce"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GgWHqyZUglTlpFR5YCEHyZfk9BvWqO4XwYUo%2BiGpIRHD1atjowr64YrHRAh9%2BGjzdMODNCS1BLqzEdllqwcI6Cp3%2Boe%2Fsx4CEPxh4%2FC4UHbwwA5ypKL8rVqwWgnW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7865ed66993a1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6f5cbc79ef8685a521d9095517f134ed
891ee91db221ce0b41c6d51bad2bcd2230aa8e12
d2ee362070972e2c0dc7ff179e42a121f3b066a37270e2a6802c77a15eecbb3d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2EE362070972E2C0DC7FF179E42A121F3B066A37270E2A6802C77A15EECBB3D"
Last-Modified: Fri, 06 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=869
Expires: Sun, 08 Jan 2023 15:36:42 GMT
Date: Sun, 08 Jan 2023 15:22:13 GMT
Connection: keep-alive
kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
13.227.254.85200 OK 396 kB URL HTTP/2 kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
IP 13.227.254.85:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 396 kB (395600 bytes)
Hash 5155d4f34bc2f7e77b9fe8e854d9e96f
408ed373dd26d934ee70f30b0e47a9dc8049983f
db9f393331e2d56fe7da37b7822590b82524e2dde508848299877daeae1df3be
GET /f7fd72d8ade7e262c4b4f656dd460724.gif HTTP/1.1
Host: kzehh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 395600
date: Tue, 20 Dec 2022 23:20:07 GMT
last-modified: Sat, 17 Dec 2022 11:55:02 GMT
etag: "5155d4f34bc2f7e77b9fe8e854d9e96f"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4e0b5cb07c18d66b4d938e898c1c7bf2.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: YcGHx-eDyyGnO40GFYWpdxss82BuFbOwsdIqmFUrEwxjwyMI49hXag==
age: 1612926
X-Firefox-Spdy: h2
3p8801.co/xx/960-120.gif
107.148.202.17200 OK 255 kB IP 107.148.202.17:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 255 kB (255334 bytes)
Hash c4ab06304c201b01386c41de236b8951
ee494b533c7a17da208eaf3fb745d0555a90b255
fa5b31c5fe077ff75d537b8548aab3ff9046bc27fd7445a4caae236a451ecff6
GET /xx/960-120.gif HTTP/1.1
Host: 3p8801.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 15:22:13 GMT
content-type: image/gif
content-length: 255334
last-modified: Mon, 02 Jan 2023 08:23:28 GMT
etag: "63b29480-3e566"
expires: Tue, 07 Feb 2023 15:22:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
kzehh.com/5b446fa07565d9dfcc1cc0ea5ee2c785.gif
13.227.254.85200 OK 393 kB URL HTTP/2 kzehh.com/5b446fa07565d9dfcc1cc0ea5ee2c785.gif
IP 13.227.254.85:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 393 kB (392629 bytes)
Hash 43dfaf26684a336a06f42a82c0fa0116
2ddf7452742361f303a35f0f3cef639aaa036bd0
450269ea249cb1aa54c78f9a6e4548022337737ea874bf9f3d89879510cc40aa
GET /5b446fa07565d9dfcc1cc0ea5ee2c785.gif HTTP/1.1
Host: kzehh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 392629
date: Wed, 21 Dec 2022 06:03:50 GMT
last-modified: Sat, 17 Dec 2022 11:51:38 GMT
etag: "43dfaf26684a336a06f42a82c0fa0116"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4e0b5cb07c18d66b4d938e898c1c7bf2.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: r_ovGXlj01HZoislzy8Ep9Wc-VtGUZXq_dGcbwbN7gc9qVuCfyKrbg==
age: 1588704
X-Firefox-Spdy: h2
de88deggtp.com/xinpujingtp/%E4%B8%8A%E9%97%A8.gif
23.224.145.236200 OK 75 kB URL HTTP/1.1 de88deggtp.com/xinpujingtp/%E4%B8%8A%E9%97%A8.gif
IP 23.224.145.236:0
File type GIF image data, version 89a, 200 x 200\012- data
Hash 03c13356e00c2033df2c88cb919251eb
f3a334a0366ddda6a87034f7d6c889c4d159dc8d
0c184e206259e8d0c54d3fc12d3d5332e9f6ff5f0404630fcb2daefe65fe1bfe
GET /xinpujingtp/%E4%B8%8A%E9%97%A8.gif HTTP/1.1
Host: de88deggtp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:15 GMT
Content-Type: image/gif
Content-Length: 75259
Connection: keep-alive
Last-Modified: Sat, 24 Dec 2022 11:03:11 GMT
ETag: "63a6dc6f-125fb"
Expires: Tue, 07 Feb 2023 11:08:21 GMT
Cache-Control: max-age=2592000
Server: qq.com
X-Cache-Status: HIT
Accept-Ranges: bytes
kveww.com/99462c01e85acc1311bebac224df6cce.gif
13.227.254.57200 OK 845 kB URL HTTP/2 kveww.com/99462c01e85acc1311bebac224df6cce.gif
IP 13.227.254.57:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 845 kB (845326 bytes)
Hash c3e13dfb200737af2e68b42c07f28465
4d8262aecd8d789494afca5d63b5dd50600870dc
3e962d14b678808967d50df163581b65c6052144cb6239d72da58cceb7bf04ac
GET /99462c01e85acc1311bebac224df6cce.gif HTTP/1.1
Host: kveww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 845326
last-modified: Thu, 15 Dec 2022 01:49:18 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 07 Jan 2023 20:57:49 GMT
etag: "c3e13dfb200737af2e68b42c07f28465"
x-cache: Hit from cloudfront
via: 1.1 0ebc10def77a5b11a9b58ccbe655bf62.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: u9QDbOlHt7iaGczkV0tktZDvHn8FjvzPuqk3WYyoa1TQa4Xcqd-4rQ==
age: 66266
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1f1c1dbf956f006da308b04014839253
4a6f9ee38452aae04cc1914616a90c88cefe6da7
e6b412dc21e925603e0f4fed59aeb4538e9f250bdf5a6103012396abdd2e2220
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6B412DC21E925603E0F4FED59AEB4538E9F250BDF5A6103012396ABDD2E2220"
Last-Modified: Sun, 08 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1533
Expires: Sun, 08 Jan 2023 15:47:49 GMT
Date: Sun, 08 Jan 2023 15:22:16 GMT
Connection: keep-alive
sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
120.77.166.72200 OK 394 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 394 kB (394237 bytes)
Hash 03123a07739f511b3306d13415cd72b1
6dbf38767657a15b922e4d153f46fe4829e012cb
72b3fa6461c39eace9c154e56b66b437457ecde50ae7c615cd923e442d058cdd
GET /js960x80%20.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 08 Jan 2023 15:22:14 GMT
Content-Type: image/gif
Content-Length: 394237
Connection: keep-alive
x-oss-request-id: 63BADFA6C197983033EEA321
Accept-Ranges: bytes
ETag: "03123A07739F511B3306D13415CD72B1"
Last-Modified: Tue, 20 Dec 2022 14:44:22 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13376170837400656090
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: AxI6B3OfURszBtE0Fc1ysQ==
x-oss-server-time: 1
de88deggtp.com/100tp/960x60.gif
23.224.145.236200 OK 456 kB URL HTTP/1.1 de88deggtp.com/100tp/960x60.gif
IP 23.224.145.236:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 456 kB (456396 bytes)
Hash 202f7e8882789aecd824a5d11a3d2550
0434fa09acb7451eaaf06fffe622e8f793a3d18e
a26f264cadabddc2fd0714f8c963ffe2b0ec2674dafe8cc7f759045eee907a71
GET /100tp/960x60.gif HTTP/1.1
Host: de88deggtp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:15 GMT
Content-Type: image/gif
Content-Length: 456396
Connection: keep-alive
Last-Modified: Tue, 21 Jun 2022 09:29:40 GMT
ETag: "62b18f84-6f6cc"
Expires: Tue, 07 Feb 2023 03:22:03 GMT
Cache-Control: max-age=2592000
Server: qq.com
X-Cache-Status: HIT
Accept-Ranges: bytes
kvexx.com/03c3cb047014f05117117e4a924df90d.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kvexx.com/03c3cb047014f05117117e4a924df90d.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /03c3cb047014f05117117e4a924df90d.gif HTTP/1.1
Host: kvexx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 08 Jan 2023 15:22:16 GMT
content-type: text/html
content-length: 162
location: https://kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0104r12000ae3juw4D3BD.gif?proc=autoorient
104.110.17.24200 OK 451 kB URL HTTP/2 dimg04.c-ctrip.com/images/0104r12000ae3juw4D3BD.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 451 kB (451384 bytes)
Hash 5b13a7d4b4ab331a744ad13bc2c5c595
57967287f8f6c0df3a697f210f536b5cd41e9f8f
31d883620ce4ffd498d729455a6ffb8e9631c2074e039b92ad7aaf58a66aab44
GET /images/0104r12000ae3juw4D3BD.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 451384
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=7595462
expires: Thu, 06 Apr 2023 13:13:18 GMT
date: Sun, 08 Jan 2023 15:22:16 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
104.110.17.24200 OK 489 kB URL HTTP/2 dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 489 kB (488987 bytes)
Hash 6a7d54ecdc2d1cce357d304db217ccec
03a803d54b6a1dd16cba5d73bf4e732d8b7be263
7cd4479b97a015f11a04b2d7d94fbe78030a7e0e3de457bf72abdbf53235c7d8
GET /images/0105c12000ae3a0t3DD7A.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 488987
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=7586017
expires: Thu, 06 Apr 2023 10:35:53 GMT
date: Sun, 08 Jan 2023 15:22:16 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0105j12000a16nl1n59E7.gif?proc=autoorient
104.110.17.24200 OK 477 kB URL HTTP/2 dimg04.c-ctrip.com/images/0105j12000a16nl1n59E7.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 477 kB (477289 bytes)
Hash 760cc21f91ee02e848650627ffa47ae2
22df8e62d12977ffd032aba17e5fd7632032633f
2b36a60cb734e5ebcaa9ad4d93f914157e563da89c4e08231bd02b72678875bd
GET /images/0105j12000a16nl1n59E7.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 477289
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=4230021
expires: Sun, 26 Feb 2023 14:22:37 GMT
date: Sun, 08 Jan 2023 15:22:16 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
47.75.19.55200 OK 409 kB URL HTTP/1.1 vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
IP 47.75.19.55:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 409 kB (408644 bytes)
Hash bcfbb4b0078b03be1636d20ac5102ff1
e18886f1cbf23adf9188bc82aa0961afe6e91f11
d3b834351a460b41f249d0b69b008860b7ecbe6f2c916bf30778826239e5f7b5
GET /sstu/st.gif HTTP/1.1
Host: vns86.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 08 Jan 2023 15:22:14 GMT
Content-Type: image/gif
Content-Length: 408644
Connection: keep-alive
x-oss-request-id: 63BADFA60E14E435389FC0D9
Accept-Ranges: bytes
ETag: "BCFBB4B0078B03BE1636D20AC5102FF1"
Last-Modified: Fri, 30 Dec 2022 05:27:28 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9529281951725548429
x-oss-storage-class: Standard
x-oss-version-id: CAEQRhiBgIDC4P.FqxgiIDdlNzBlMDIzMGE1ZDQwZmY5YTBiNTkxM2I2MDQwOWZk
Content-MD5: vPu0sAeLA74WNtIKxRAv8Q==
x-oss-server-time: 3
sz88.oss-cn-shenzhen.aliyuncs.com/960x80x.gif
120.77.166.72200 OK 617 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/960x80x.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 617 kB (616551 bytes)
Hash c7d5af41a71e7915dd3c695f4d92cb8b
63f42eb3bce47701db934e60bc0dad360bb1b57b
a6b8233eceb265b139102f0f885627e3c7294ac640c2b83b80467e879d1f5679
GET /960x80x.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 08 Jan 2023 15:22:14 GMT
Content-Type: image/gif
Content-Length: 616551
Connection: keep-alive
x-oss-request-id: 63BADFA62612B0343616C091
Accept-Ranges: bytes
ETag: "C7D5AF41A71E7915DD3C695F4D92CB8B"
Last-Modified: Wed, 01 Jun 2022 07:49:09 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2846388596987969293
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: x9WvQaceeRXdPGlfTZLLiw==
x-oss-server-time: 1
kzemm.com/bb7f858c0dad171784517c02e7bff891.gif
13.227.254.5200 OK 391 kB URL HTTP/2 kzemm.com/bb7f858c0dad171784517c02e7bff891.gif
IP 13.227.254.5:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 391 kB (390953 bytes)
Hash f849b3b0e9c6fdb31c56074c38c5123c
78200f076e1512a0f4b6f56f37d9f7ad355f0ad7
f9d4b673a595159370aa060f5d8b025842504116efc5b85269129a6c02110f6c
GET /bb7f858c0dad171784517c02e7bff891.gif HTTP/1.1
Host: kzemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 390953
last-modified: Sat, 17 Dec 2022 12:33:46 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 08 Jan 2023 05:07:20 GMT
etag: "f849b3b0e9c6fdb31c56074c38c5123c"
x-cache: Hit from cloudfront
via: 1.1 20bb709a751569d186bca51c132b4c86.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: AVyygx_ZGd4JR7oxuJPsPw8BuUtJL6K2T9mNn6xSnBz22iyzhJLeyw==
age: 67402
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 9405307786bc96cb2e52eefc592db9d2
28373dec4edf8832b104f2d07fa101cf3ed3f218
780ae60c96c6311fc6ed39463b50e1043139cff45680494163d219a9a5625f35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1223
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 15:22:16 GMT
Last-Modified: Sun, 08 Jan 2023 15:01:53 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ed1f86b13a6d82e6f9c60216e618ecc
bd595c435bd44495b9d12fab2a8c0867dcaeea73
84a83f2cd4d7aab54fc40845275476c0f0147f890bfd915f7129cf1046d3c89e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84A83F2CD4D7AAB54FC40845275476C0F0147F890BFD915F7129CF1046D3C89E"
Last-Modified: Fri, 06 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 08 Jan 2023 21:22:17 GMT
Date: Sun, 08 Jan 2023 15:22:17 GMT
Connection: keep-alive
z4a.net/images/2022/12/17/960x60.gif
104.21.234.234200 OK 320 kB URL HTTP/2 z4a.net/images/2022/12/17/960x60.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 320 kB (319606 bytes)
Hash 443ba779af0bf3944718aa7e4e2038a5
7054a327b7d5a805a510fab7bb2b35d5cd2ec9ca
1461a63340b84e5c64f250e3ca4d3153df4cf60a1226eb2107bf37c5cfcdd8ee
GET /images/2022/12/17/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 08 Jan 2023 15:22:16 GMT
content-type: image/gif
content-length: 319606
expires: Sun, 17 Dec 2023 07:59:36 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 1927359
last-modified: Sat, 17 Dec 2022 07:59:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xTkhH6GclKnK62n07efTzrRFk4cjpCszjYTR%2FQvZmsL5CQ%2FpGDV7%2FUd36NRICA%2F5o945NIcnE8d9Uk6ljgyFk24r3EV7ukJTUmjJ4%2BRg5eGp%2BvcN9zRWDF7F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7865ed802932dc4d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvevv.com/4bf88adf466b90cef3686374a27fc0e2.gif
13.227.254.70200 OK 507 kB URL HTTP/1.1 kvevv.com/4bf88adf466b90cef3686374a27fc0e2.gif
IP 13.227.254.70:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 507 kB (506851 bytes)
Hash 720e80d2a7ff4cf1bbf0b1608c2f35de
bf0a987ac8d4c7728171fe41e5c45b61b45a2f73
e177aeb64efe8103f8af0afc0a768394d970bbe60edcf103a083d56b915c18b1
GET /4bf88adf466b90cef3686374a27fc0e2.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 506851
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:08:10 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 07 Jan 2023 21:22:21 GMT
ETag: "720e80d2a7ff4cf1bbf0b1608c2f35de"
X-Cache: Hit from cloudfront
Via: 1.1 8c73194b247676a80d86714cba2447a4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SIN52-C3
X-Amz-Cf-Id: QpMjUr5V20g_J8eu-XfirYCqUbaGNSNpwwBOCcOAvvI_gu2XMuVVxw==
Age: 84994
223969ufy.com/1c8f6ace873c45fd92730a2016b71a0c..gif
45.61.212.127200 OK 423 kB URL HTTP/1.1 223969ufy.com/1c8f6ace873c45fd92730a2016b71a0c..gif
IP 45.61.212.127:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 423 kB (422791 bytes)
Hash bdeb53a7d3c2f219a7ae903a7346cd91
e5349fa31f22ce3605b9256c0a6e37def92b13b6
316319f597bb6dd3d686c46a51e67693243868108b798fa8174f8a124b6422b4
GET /1c8f6ace873c45fd92730a2016b71a0c..gif HTTP/1.1
Host: 223969ufy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "635b9155-67387"
Date: Fri, 06 Jan 2023 08:57:21 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 28 Oct 2022 08:22:45 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-27
Content-Length: 422791
kzeii.com/8d62ac139591ff0c5f17d4c5f1ff3cf6.gif
13.227.254.48200 OK 566 kB URL HTTP/2 kzeii.com/8d62ac139591ff0c5f17d4c5f1ff3cf6.gif
IP 13.227.254.48:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 566 kB (565615 bytes)
Hash 6a2c609ad0c46bb1b8d9cd39eacde625
45de0f50f86b45dd6fd4a1c764d47e2640126bf3
8eb8f61188f2555f5f7f0a934ebbae9e9ab703a3dc0b23191bdc7c147eb12140
GET /8d62ac139591ff0c5f17d4c5f1ff3cf6.gif HTTP/1.1
Host: kzeii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 565615
last-modified: Mon, 19 Dec 2022 09:06:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 08 Jan 2023 06:56:26 GMT
etag: "6a2c609ad0c46bb1b8d9cd39eacde625"
x-cache: Hit from cloudfront
via: 1.1 6b412795189620b2bd513604239f4f2e.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: qePCiui8LjGB9meZSKrBj7Dhr-yxJCDv0SenGxEBsv9EZmr3bRdp5w==
age: 68079
X-Firefox-Spdy: h2
kzeqq.com/17a571f5114b7fe07f3a8a84c49731c3.gif
88.99.102.224200 OK 570 kB URL HTTP/2 kzeqq.com/17a571f5114b7fe07f3a8a84c49731c3.gif
IP 88.99.102.224:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 960 x 60\012- data
Size 570 kB (570411 bytes)
Hash b4ba386b410ed3c8e88edc7863378408
e231d90073dfead323dcc5c92d63a5d3df81e2c5
b92eb16a1b399b10c529bb71aecf0d1cf458cc5544469ffa75c47c5f422f86da
GET /17a571f5114b7fe07f3a8a84c49731c3.gif HTTP/1.1
Host: kzeqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 15:22:17 GMT
content-type: image/gif
content-length: 570411
last-modified: Fri, 30 Dec 2022 02:48:10 GMT
etag: "63ae516a-8b42b"
expires: Mon, 09 Jan 2023 03:22:17 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 55401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ryY%2FdrZWEW%2Bh7DfokLPloMZXZtetV5w19FsXaACHQpSC07m6b%2BLU4SDAIbLIgbB56FNz7MLCfLE9zhcv6c9c54FPjr%2B%2F4K5ZqvN7qeGNFpGBITyBNxqW5ZhTV3xs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 781cbd5e4a7dc217-VIE
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
13.227.254.86200 OK 919 kB URL HTTP/2 kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP 13.227.254.86:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 919 kB (918679 bytes)
Hash 956582dd3aa22ca9b19bdd1d5e091e24
c2d80e05f59981f6ed58a8231f502bd990894d6b
88e686882e64a0e199c79bd83b7102885b67242b5d0b49a1f37674c0bb3ddd8e
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kzerr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 918679
last-modified: Mon, 19 Dec 2022 07:54:21 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 08 Jan 2023 12:17:04 GMT
etag: "956582dd3aa22ca9b19bdd1d5e091e24"
x-cache: Hit from cloudfront
via: 1.1 4107eb96660e4932c95658bc4727dd6c.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: ba-5WKs1p04_rW1xkQm8E-5n11VynD2PCIxTnF6N77leC5ZUfLB-NQ==
age: 11113
X-Firefox-Spdy: h2
kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
13.227.254.39200 OK 864 kB URL HTTP/2 kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 13.227.254.39:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 864 kB (864004 bytes)
Hash d2c820747a9b9b8c3abaab0775436ab7
99651afd10bd3874fb84d7973845482cd2c81f23
8aa3c7b05ba9bb5176a7155ead2a0ea562b07fb0dd7b27a9cf91c38e95ed43ed
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: kzecc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 864004
last-modified: Mon, 19 Dec 2022 09:06:34 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 08 Jan 2023 06:22:36 GMT
etag: "d2c820747a9b9b8c3abaab0775436ab7"
x-cache: Hit from cloudfront
via: 1.1 e458de70cfe2237c659d4e5f2ae84564.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: tvNHq7wSvReHw427xjEq3jx5EJr7atsa_MrL_cAGclT0k2R-ZczNwA==
age: 32381
X-Firefox-Spdy: h2
n0544.com/2aaa45651a8a4dbaa1a883cd38ad7461.gif
20.222.36.125200 OK 216 kB URL HTTP/1.1 n0544.com/2aaa45651a8a4dbaa1a883cd38ad7461.gif
IP 20.222.36.125:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 216 kB (215902 bytes)
Hash 153a7dac1d2bfce1349134956b3f408f
9e91fdc5f2052de208a86e18c10eca1a251e3906
907675e7b39a2cc587985b82e12f9b7da60d395aa62b23214fe9d265c62df0bb
GET /2aaa45651a8a4dbaa1a883cd38ad7461.gif HTTP/1.1
Host: n0544.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:16 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 Jan 2023 10:06:38 GMT
ETag: W/"63b54fae-54d22"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
ads-6686.top/960-60.gif
123.253.107.62200 OK 381 kB IP 123.253.107.62:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 381 kB (380774 bytes)
Hash d5b19fab300b34d93648b77ba1e87205
eabcc33b82a978d851b9af1337fc656a70f23c2f
e7cce7f77395b75187261e079f448c4b9de06f62f42ca0d2b87662efe80ea69b
GET /960-60.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: load-edge/2.1.1
date: Sun, 08 Jan 2023 15:22:16 GMT
content-type: image/gif
content-length: 380774
last-modified: Tue, 20 Dec 2022 08:28:12 GMT
etag: "63a1721c-5cf66"
strict-transport-security: max-age=31536000
lp-geo: edge-gxr4
lp-addr: 91.90.42.154
lp-request: 592d9cf4-a066-4012-8598-2817050eeb33
lp-id: a399ef5f98af3d98fbb896b4f2279f88
expires: Sun, 08 Jan 2023 15:27:16 GMT
cache-control: max-age=300
lp-cache: HIT
lp-cache-hit: 1
accept-ranges: bytes
X-Firefox-Spdy: h2
9366qq.com/3be4171f45964b3795b8b02e1da84c25.gif
45.61.212.124200 OK 584 kB URL HTTP/1.1 9366qq.com/3be4171f45964b3795b8b02e1da84c25.gif
IP 45.61.212.124:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 584 kB (584025 bytes)
Hash ebf4ee75bbd43b703e1b1b861ba166e2
c241029604f77ad6b4f56894bc51decfededfde7
d6655adbfa7089435d168e9b1432e524f0bf11be8b80ddc499bef69bd5a376ea
GET /3be4171f45964b3795b8b02e1da84c25.gif HTTP/1.1
Host: 9366qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "631ee6a4-8e959"
Date: Sun, 01 Jan 2023 05:18:21 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 12 Sep 2022 07:58:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-24
Content-Length: 584025
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 48c13eed88fd2c15839fe3ce5de06d5a
549da1ced2ad0ef7ad2aca3648588483698976a0
9c3564810bf1aaf0e40fecf251d673036f666f98e013168160f83b4d2a78c7e2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 15:19:39 GMT
Expires: Sat, 14 Jan 2023 15:19:38 GMT
Etag: "549da1ced2ad0ef7ad2aca3648588483698976a0"
Cache-Control: max-age=517640,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7865ed84ab7dfabc-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash d3cba9f7dc8d49b821205947614e5ca1
4dd0407c30d72561d1fe3fb64b774a664c059f8b
90287de0996611b71b22635ebba4af787871b897bbd8eeb0420f49eea8a2f465
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 17:33:17 GMT
Expires: Fri, 13 Jan 2023 17:33:16 GMT
Etag: "4dd0407c30d72561d1fe3fb64b774a664c059f8b"
Cache-Control: max-age=439258,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7865ed84afcbb50f-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash aec69695fd14bfd048020b6f00445553
add35b06ed0620b68424c3b873feb4ec5826a3ff
d6194f38bb885176b00d365c50161f9e0a58c7b83b9854079db793b52852605f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 05 Jan 2023 13:54:29 GMT
Expires: Thu, 12 Jan 2023 13:54:28 GMT
Etag: "add35b06ed0620b68424c3b873feb4ec5826a3ff"
Cache-Control: max-age=339730,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7865ed84be42b524-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 3e1fac52536740764d948959ae55f784
02482945cd5002bf29011e28c2a79f19da346f39
1ec89de279c237ab640423f2f6f81369f54d4cdb5f39d0b9514999162d5e9c20
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 12:53:48 GMT
Expires: Fri, 13 Jan 2023 12:53:47 GMT
Etag: "02482945cd5002bf29011e28c2a79f19da346f39"
Cache-Control: max-age=422489,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7865ed850fdab523-OSL
ljcdn.comtucdncom.com/upload/vod/20200504-1/f4d6fe441e621614f71f5a411c3c5fd7.jpg
45.89.208.114200 OK 7.3 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20200504-1/f4d6fe441e621614f71f5a411c3c5fd7.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 23x30, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 0ab826cc140f4cb383baf0ead13d9b46
9afaa86ddfc0812360706455aadd74747022711f
99ea33fb41ab63c64e80f8bffa7da0c327d012865e34cdc6fd3b202c4837c036
GET /upload/vod/20200504-1/f4d6fe441e621614f71f5a411c3c5fd7.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: image/jpeg
Content-Length: 7288
Last-Modified: Thu, 11 Aug 2022 04:54:47 GMT
Connection: keep-alive
ETag: "62f48b97-1c78"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash e9aed705771072ed921d64144f78f5e9
112344323a5566abdf01eb58721769d1a02a9c9c
36ac49a82d91d55607574e463e230a1c70374fea032bec1605d915e4ee90126a
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 12 Jan 2023 11:49:04 GMT
ETag: "112344323a5566abdf01eb58721769d1a02a9c9c"
Last-Modified: Sun, 08 Jan 2023 11:49:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2462
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7865ed85df3bb527-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash e9aed705771072ed921d64144f78f5e9
112344323a5566abdf01eb58721769d1a02a9c9c
36ac49a82d91d55607574e463e230a1c70374fea032bec1605d915e4ee90126a
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 12 Jan 2023 11:49:04 GMT
ETag: "112344323a5566abdf01eb58721769d1a02a9c9c"
Last-Modified: Sun, 08 Jan 2023 11:49:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2462
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7865ed85dc9fb4fd-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 5df971d42b06878b33a100ec34a6067e
a5bee51b7afebbaa4428728c6dafa6f8b7684f57
3a9c7ad0eecc349009fca7f983f53e7fd070a7e551a7594aa6634997f80d532a
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 12 Jan 2023 12:17:45 GMT
ETag: "a5bee51b7afebbaa4428728c6dafa6f8b7684f57"
Last-Modified: Sun, 08 Jan 2023 12:17:46 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2322
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7865ed861f95b527-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash f17e133b507578252af591b0d430d369
47ca5cbce82cabc1282eede99c1a941eee1e5f9b
f7abbf74546a43401b524819974e6891fc55667a68740f4cbe3b02ca2877c524
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 05 Jan 2023 13:55:31 GMT
Expires: Thu, 12 Jan 2023 13:55:30 GMT
Etag: "47ca5cbce82cabc1282eede99c1a941eee1e5f9b"
Cache-Control: max-age=339792,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7865ed850db3b511-OSL
ljcdn.comtucdncom.com/upload/vod/20190622-1/4d7881fea2759c16288f88df558a3944.jpg
45.89.208.114200 OK 6.4 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190622-1/4d7881fea2759c16288f88df558a3944.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2dfd5d2265a85fe1f3d2b584a17100f3
1b237a5889531276044f51a73678b771ade09f39
29dad7786ae00541c626104872d6452731808e89730364636643e32a9272cb1f
GET /upload/vod/20190622-1/4d7881fea2759c16288f88df558a3944.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: image/jpeg
Content-Length: 6433
Last-Modified: Thu, 11 Aug 2022 04:57:17 GMT
Connection: keep-alive
ETag: "62f48c2d-1921"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190619-1/6ca2f4b667f047bf35b0fed9690eb619.jpg
45.89.208.114200 OK 6.7 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190619-1/6ca2f4b667f047bf35b0fed9690eb619.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 0e7594eafdb481d7348c566df2b2e4b3
2f9e8ee48371bebf67e1ff2cba1f7cc765da797d
29360cb45a9356521218da209dc5264bbfcb69d5e4738ea0e6e3a6ce2ae33bec
GET /upload/vod/20190619-1/6ca2f4b667f047bf35b0fed9690eb619.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: image/jpeg
Content-Length: 6713
Last-Modified: Thu, 11 Aug 2022 04:56:54 GMT
Connection: keep-alive
ETag: "62f48c16-1a39"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190626-1/806a06ed5dc5515fa255041e1f32fe8b.jpg
45.89.208.114200 OK 7.3 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190626-1/806a06ed5dc5515fa255041e1f32fe8b.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 19ddea9d219b6b18f8fa497aa5c62b30
135b8465cb9e185ad11036b17c6f20d8a41c75e4
0bee7f825c05d6acd0dad98dbcb2a7455c85a6f82364a89b530b0c80fe60e52c
GET /upload/vod/20190626-1/806a06ed5dc5515fa255041e1f32fe8b.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: image/jpeg
Content-Length: 7344
Last-Modified: Thu, 11 Aug 2022 04:55:02 GMT
Connection: keep-alive
ETag: "62f48ba6-1cb0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/images/2022/01/10/hey5224.jpg
172.247.77.90301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/images/2022/01/10/hey5224.jpg
IP 172.247.77.90:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /images/2022/01/10/hey5224.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:33 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/images/2022/01/10/hey5224.jpg
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 44ff1680fcae5ad9373923c60bd2589a
9f1ad123747db9afb999618840331ae0a5ad9643
e3b537086a577e81df4f4b500e69ac16786564f62da7c0af8c6fc28355ce07ee
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "E3B537086A577E81DF4F4B500E69AC16786564F62DA7C0AF8C6FC28355CE07EE"
Last-Modified: Sat, 07 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5940
Expires: Sun, 08 Jan 2023 17:01:18 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash db6630f94071006fa2b7cf07987e8f9f
7656113cedae3a7c32989730cba3fbad751d883b
f2f0e0781f1ec1dc5c327d538c2838a19e0360d5ca43b6d15dc3a922d586123e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F2F0E0781F1EC1DC5C327D538C2838A19E0360D5CA43B6D15DC3A922D586123E"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9825
Expires: Sun, 08 Jan 2023 18:06:03 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash db6630f94071006fa2b7cf07987e8f9f
7656113cedae3a7c32989730cba3fbad751d883b
f2f0e0781f1ec1dc5c327d538c2838a19e0360d5ca43b6d15dc3a922d586123e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F2F0E0781F1EC1DC5C327D538C2838A19E0360D5CA43B6D15DC3A922D586123E"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9765
Expires: Sun, 08 Jan 2023 18:05:03 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash db6630f94071006fa2b7cf07987e8f9f
7656113cedae3a7c32989730cba3fbad751d883b
f2f0e0781f1ec1dc5c327d538c2838a19e0360d5ca43b6d15dc3a922d586123e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F2F0E0781F1EC1DC5C327D538C2838A19E0360D5CA43B6D15DC3A922D586123E"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 08 Jan 2023 21:22:18 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash db6630f94071006fa2b7cf07987e8f9f
7656113cedae3a7c32989730cba3fbad751d883b
f2f0e0781f1ec1dc5c327d538c2838a19e0360d5ca43b6d15dc3a922d586123e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F2F0E0781F1EC1DC5C327D538C2838A19E0360D5CA43B6D15DC3A922D586123E"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5244
Expires: Sun, 08 Jan 2023 16:49:42 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash c4e89485e0c16d6082d1b1a5883cc43a
10a5ca7be33d36cfa3c579742d90c512aa85a144
df3523b96fd2c17f0a81bbb115c31be1fda80458018a05f0041056d08a02faaf
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 12 Jan 2023 13:09:13 GMT
ETag: "10a5ca7be33d36cfa3c579742d90c512aa85a144"
Last-Modified: Sun, 08 Jan 2023 13:09:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7865ed85dc9db4fd-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash c69f4f6c499fb7bde49922137b2f2d99
f14b1cde80d686f6b9c05328cd4f4ab328b65469
e6f54f5ca0b1f98496435bbe35922fbe0824902104a36472c468717cfe0b72a6
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 12 Jan 2023 12:07:10 GMT
ETag: "f14b1cde80d686f6b9c05328cd4f4ab328b65469"
Last-Modified: Sun, 08 Jan 2023 12:07:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1278
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7865ed86ee4cb4fd-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dcea7363308d77e9429fc5365754d11e
af0727048f91568bddb62f1fe213141bc2ca0389
9c419fffbf1e0fcc5cf6d26a2a8250f34bafad0da8c03f2699f73c30e7f0193b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C419FFFBF1E0FCC5CF6D26A2A8250F34BAFAD0DA8C03F2699F73C30E7F0193B"
Last-Modified: Fri, 06 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12498
Expires: Sun, 08 Jan 2023 18:50:36 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash c4e89485e0c16d6082d1b1a5883cc43a
10a5ca7be33d36cfa3c579742d90c512aa85a144
df3523b96fd2c17f0a81bbb115c31be1fda80458018a05f0041056d08a02faaf
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 12 Jan 2023 13:09:13 GMT
ETag: "10a5ca7be33d36cfa3c579742d90c512aa85a144"
Last-Modified: Sun, 08 Jan 2023 13:09:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7865ed85df47b529-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash c4e89485e0c16d6082d1b1a5883cc43a
10a5ca7be33d36cfa3c579742d90c512aa85a144
df3523b96fd2c17f0a81bbb115c31be1fda80458018a05f0041056d08a02faaf
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 12 Jan 2023 13:09:13 GMT
ETag: "10a5ca7be33d36cfa3c579742d90c512aa85a144"
Last-Modified: Sun, 08 Jan 2023 13:09:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7865ed85de990b31-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash c4e89485e0c16d6082d1b1a5883cc43a
10a5ca7be33d36cfa3c579742d90c512aa85a144
df3523b96fd2c17f0a81bbb115c31be1fda80458018a05f0041056d08a02faaf
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 12 Jan 2023 13:09:13 GMT
ETag: "10a5ca7be33d36cfa3c579742d90c512aa85a144"
Last-Modified: Sun, 08 Jan 2023 13:09:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7865ed85df4f0afa-OSL
u1102.com/c3eff56a3a9d46bcad82e0324b761f11.gif
103.170.15.68200 OK 275 kB URL HTTP/2 u1102.com/c3eff56a3a9d46bcad82e0324b761f11.gif
IP 103.170.15.68:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 275 kB (275446 bytes)
Hash 70c0e3b780542b0ba8634822528674c1
18ff79341d6854d6c841618bc108233fb064b9c2
de2918f8ea0639a91d608b506207f16cc973559eb143eb711601ba50e14ef2bc
GET /c3eff56a3a9d46bcad82e0324b761f11.gif HTTP/1.1
Host: u1102.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "63bac791-433f6"
server: nginx
date: Sun, 08 Jan 2023 14:27:07 GMT
content-type: image/gif
last-modified: Sun, 08 Jan 2023 13:39:29 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-58
content-length: 275446
X-Firefox-Spdy: h2
ljcdn.comtucdncom.com/upload/vod/20190514-1/036fc69fbead933aa662ffa25fd27c6c.jpg
45.89.208.114200 OK 15 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190514-1/036fc69fbead933aa662ffa25fd27c6c.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 480x270, components 3\012- data
Hash 2484ef1d494e98619109bb595fd347e9
0c87896d4538c2dba0a026ad00e319b58eeee719
cc684a0e7b2e91e68e081f1e90541c9767e8cf7ca58729a0bd24b6649d5ed443
GET /upload/vod/20190514-1/036fc69fbead933aa662ffa25fd27c6c.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: image/jpeg
Content-Length: 15164
Last-Modified: Thu, 11 Aug 2022 04:55:38 GMT
Connection: keep-alive
ETag: "62f48bca-3b3c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/images/2021/12/8/heyzo4357.jpg
172.247.77.90301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/images/2021/12/8/heyzo4357.jpg
IP 172.247.77.90:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /images/2021/12/8/heyzo4357.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:33 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/images/2021/12/8/heyzo4357.jpg
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ef9cfb1f5aae31325d8ec786bdec0be
73176640cd742a912ee65b722b000472ea6d0c67
24b54e355042535557b8d6c7c06f84fb6e08486bc82b3c9839a0ca8caa2a2eff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24B54E355042535557B8D6C7C06F84FB6E08486BC82B3C9839A0CA8CAA2A2EFF"
Last-Modified: Fri, 06 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6178
Expires: Sun, 08 Jan 2023 17:05:16 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 196867af767aadede81c81ad3f0329a0
273892bcfbe37cbb6c2bcca34130eb188ea6952b
153d38763c40864b51ed5abb02468add21415733bfd79b9a8089b9c362a13c47
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "153D38763C40864B51ED5ABB02468ADD21415733BFD79B9A8089B9C362A13C47"
Last-Modified: Fri, 06 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12774
Expires: Sun, 08 Jan 2023 18:55:12 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ef9cfb1f5aae31325d8ec786bdec0be
73176640cd742a912ee65b722b000472ea6d0c67
24b54e355042535557b8d6c7c06f84fb6e08486bc82b3c9839a0ca8caa2a2eff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24B54E355042535557B8D6C7C06F84FB6E08486BC82B3C9839A0CA8CAA2A2EFF"
Last-Modified: Fri, 06 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6140
Expires: Sun, 08 Jan 2023 17:04:38 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a11bdc6eb6c451f2aafd7e8988f1d39a
793cd57a12c531889d03fe9cfcf61cbc1874ba06
a0d6e2b71870fdbf4303c1e548ae71e88d7bd736191d539812cce3088f25e375
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0D6E2B71870FDBF4303C1E548AE71E88D7BD736191D539812CCE3088F25E375"
Last-Modified: Sat, 07 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6083
Expires: Sun, 08 Jan 2023 17:03:41 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a11bdc6eb6c451f2aafd7e8988f1d39a
793cd57a12c531889d03fe9cfcf61cbc1874ba06
a0d6e2b71870fdbf4303c1e548ae71e88d7bd736191d539812cce3088f25e375
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0D6E2B71870FDBF4303C1E548AE71E88D7BD736191D539812CCE3088F25E375"
Last-Modified: Sat, 07 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21563
Expires: Sun, 08 Jan 2023 21:21:41 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7776eb098c90b8f9ef02fb90fb99562
783c6138b5222617435173c8deed6603b6e2fda2
c5698bc921e1396a4137004ebb4bae909cd82da87dfe988919257d8865ff6b1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5698BC921E1396A4137004EBB4BAE909CD82DA87DFE988919257D8865FF6B1C"
Last-Modified: Fri, 06 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6034
Expires: Sun, 08 Jan 2023 17:02:52 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 3a39c6c3c0908958da5905f71c6c5bb1
a60f523969075cd99366bea76701efe8a5798fc5
45ee141680cf42a281d8fbcb04de8a26ba581aaeefbd1e1919f04e9092198b64
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=784
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 3a39c6c3c0908958da5905f71c6c5bb1
a60f523969075cd99366bea76701efe8a5798fc5
45ee141680cf42a281d8fbcb04de8a26ba581aaeefbd1e1919f04e9092198b64
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=779
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 3a39c6c3c0908958da5905f71c6c5bb1
a60f523969075cd99366bea76701efe8a5798fc5
45ee141680cf42a281d8fbcb04de8a26ba581aaeefbd1e1919f04e9092198b64
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=800
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 3a39c6c3c0908958da5905f71c6c5bb1
a60f523969075cd99366bea76701efe8a5798fc5
45ee141680cf42a281d8fbcb04de8a26ba581aaeefbd1e1919f04e9092198b64
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=843
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
ljcdn.comtucdncom.com/upload/vod/20190616-1/dbe7c1e41ac924e1ef933056f182458e.jpg
45.89.208.114200 OK 47 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190616-1/dbe7c1e41ac924e1ef933056f182458e.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x450, components 3\012- data
Hash 3a9c3e60be02b50c63378a5a82a2e2fc
5ce3e154c00635439ad01880f8bc8ced793f6c5d
301b6e83aaa7539b1a32744e04c886de01fe19d59b56fee48de3bd2e2587ab1e
GET /upload/vod/20190616-1/dbe7c1e41ac924e1ef933056f182458e.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: image/jpeg
Content-Length: 46780
Last-Modified: Thu, 11 Aug 2022 04:57:00 GMT
Connection: keep-alive
ETag: "62f48c1c-b6bc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 471d5726c90ddb081113701cdcdf7e6a
8134f80f09e41dd3addac81ef09575fe545a8a3e
174ce86a181cf2688173c155913fd4a9b8476ac11628ab8d0e8de1d28725360c
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 12 Jan 2023 13:14:11 GMT
ETag: "8134f80f09e41dd3addac81ef09575fe545a8a3e"
Last-Modified: Sun, 08 Jan 2023 13:14:12 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2210
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7865ed889c491c12-OSL
pt1.putaozy.info/20220422/2429435FD7DA126A/2429435FD7DA126A.jpg
5.180.83.14200 OK 7.0 kB URL HTTP/1.1 pt1.putaozy.info/20220422/2429435FD7DA126A/2429435FD7DA126A.jpg
IP 5.180.83.14:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5d61f3c371b8a8935425c95d67069f50
b8711268e7d5bc95056fb54258c36a8e97a7f44e
438bdb55ededd5c190c911a5114878274a6d0801913635b8a58baa1aab49f1ad
GET /20220422/2429435FD7DA126A/2429435FD7DA126A.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 7047
Last-Modified: Wed, 07 Sep 2022 13:02:41 GMT
Connection: keep-alive
ETag: "63189671-1b87"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220307/9D06F1254DC0BB59/9D06F1254DC0BB59.jpg
5.180.83.14200 OK 12 kB URL HTTP/1.1 pt1.putaozy.info/20220307/9D06F1254DC0BB59/9D06F1254DC0BB59.jpg
IP 5.180.83.14:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6a65cc3b6f447ffd3985d1fb0078b36d
89d1c7b9982d91505dd0090afe2e68a73a69c303
60d66d5bb0e829849da28d5fd6cf5d4e30d7d00f21f3d1c9b1c86882e09d9178
GET /20220307/9D06F1254DC0BB59/9D06F1254DC0BB59.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 11493
Last-Modified: Wed, 07 Sep 2022 13:05:42 GMT
Connection: keep-alive
ETag: "63189726-2ce5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220314/6718E4B27E455C8C/6718E4B27E455C8C.jpg
5.180.83.14200 OK 12 kB URL HTTP/1.1 pt1.putaozy.info/20220314/6718E4B27E455C8C/6718E4B27E455C8C.jpg
IP 5.180.83.14:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 689cf7fbaca0179cde2891255798f883
66d79b4199d0b33cdf3910264898e7a190f72bf3
7b742e9446f81c1136551a8d3ce08978ce3d277808eb96291ba8e483464b1da0
GET /20220314/6718E4B27E455C8C/6718E4B27E455C8C.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 11937
Last-Modified: Wed, 07 Sep 2022 13:03:29 GMT
Connection: keep-alive
ETag: "631896a1-2ea1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220317/70EA8BA04FE71070/70EA8BA04FE71070.jpg
5.180.83.14200 OK 14 kB URL HTTP/1.1 pt1.putaozy.info/20220317/70EA8BA04FE71070/70EA8BA04FE71070.jpg
IP 5.180.83.14:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b22d302a46a1af4c752a08de37262d1c
550d886549b95ef64dca7cc14562ebedd92c08ce
f659e40b7bda32a734959f147f2a139d9bb89c9c9c5836b3cfd1231aa1038e39
GET /20220317/70EA8BA04FE71070/70EA8BA04FE71070.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 13804
Last-Modified: Wed, 07 Sep 2022 13:02:14 GMT
Connection: keep-alive
ETag: "63189656-35ec"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220510/27EDB675BFE6476F/27EDB675BFE6476F.jpg
5.180.83.14200 OK 5.3 kB URL HTTP/1.1 pt1.putaozy.info/20220510/27EDB675BFE6476F/27EDB675BFE6476F.jpg
IP 5.180.83.14:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c04a4138869707864bda14956d81164a
de6bee0ba59156cd6331d9ab468b0a1553efd50e
b758d866397b21d61baae6ab87aacfeedafaf8acce1ce41b36b3dcedf3ab26e2
GET /20220510/27EDB675BFE6476F/27EDB675BFE6476F.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 5333
Last-Modified: Wed, 07 Sep 2022 13:01:16 GMT
Connection: keep-alive
ETag: "6318961c-14d5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220509/5DB983A3BFF5D29F/5DB983A3BFF5D29F.jpg
5.180.83.14200 OK 9.9 kB URL HTTP/1.1 pt1.putaozy.info/20220509/5DB983A3BFF5D29F/5DB983A3BFF5D29F.jpg
IP 5.180.83.14:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2fa673f5e4b53ef756afaa31ad011f67
237d690e0c0672d3179f6144d70644aa1493fba5
fbe0f92cb0b6592dabeb4c8b96278622624e8c29253444cc841a9ad47cda2777
GET /20220509/5DB983A3BFF5D29F/5DB983A3BFF5D29F.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 9904
Last-Modified: Wed, 07 Sep 2022 13:02:31 GMT
Connection: keep-alive
ETag: "63189667-26b0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2bdb70149ba79ebdb516d9851c26b232
cc084787114baf0b3e85553d5a2ba6fa77f57fb5
21071dd58f7e03ce5120748c1a4951d80b1f6e048cb02f8cf6e1f48c96301a71
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3575
Cache-Control: max-age=107066
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 15:22:18 GMT
Etag: "63b9d0ed-117"
Expires: Mon, 09 Jan 2023 21:06:44 GMT
Last-Modified: Sat, 07 Jan 2023 20:07:09 GMT
Server: ECS (amb/6BA9)
X-Cache: HIT
Content-Length: 279
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 7434e02b95c178c19440f88422c9dcaf
93048991bf2f4d7b646b904a04a607f685508d3b
c7ca8ab9adc7f10d5abe733f944ba33fdc76a86a90d41f160274d0f72f567318
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 7434e02b95c178c19440f88422c9dcaf
93048991bf2f4d7b646b904a04a607f685508d3b
c7ca8ab9adc7f10d5abe733f944ba33fdc76a86a90d41f160274d0f72f567318
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=858
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash c1d8e8f8e2f0ccd267d3833805862fc5
1dfd2a4cc6295d768fc99dc267ecaa4dfdad5f21
ced56a4f37459242d8a41302757e1a7c67e049a971f3854c2aae612598f72ea1
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 7434e02b95c178c19440f88422c9dcaf
93048991bf2f4d7b646b904a04a607f685508d3b
c7ca8ab9adc7f10d5abe733f944ba33fdc76a86a90d41f160274d0f72f567318
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 7434e02b95c178c19440f88422c9dcaf
93048991bf2f4d7b646b904a04a607f685508d3b
c7ca8ab9adc7f10d5abe733f944ba33fdc76a86a90d41f160274d0f72f567318
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=884
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash a0772fdd459b72ad36c1bd342e5ce35b
da61cf704d062f583fb78e3be8407b4d95e9b175
33797c571c9f879b4673994ecae83819c0e80295106927915da7f121615d8860
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=176
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash a0772fdd459b72ad36c1bd342e5ce35b
da61cf704d062f583fb78e3be8407b4d95e9b175
33797c571c9f879b4673994ecae83819c0e80295106927915da7f121615d8860
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=176
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
pt1.putaozy.info/20220420/91E3C45920D953C3/91E3C45920D953C3.jpg
5.180.83.14200 OK 5.9 kB URL HTTP/1.1 pt1.putaozy.info/20220420/91E3C45920D953C3/91E3C45920D953C3.jpg
IP 5.180.83.14:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 11x10, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f93dc8683b035d74069d3f3c8b4f63ab
7d3ac68006fc4223f93afdf474ee655ae7c87547
4f1028c551c4a233e13620a9b09875e2d057a0db762389f78a40d9ec9153fa5f
GET /20220420/91E3C45920D953C3/91E3C45920D953C3.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 5890
Last-Modified: Wed, 07 Sep 2022 13:02:25 GMT
Connection: keep-alive
ETag: "63189661-1702"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/pic/20200217bentu-gc/8UEUtCk8.jpg
172.247.77.90200 OK 9.5 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/20200217bentu-gc/8UEUtCk8.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8be98c8985b5c8d000ce20456ee03b90
3c17dc00f34c5db347a03d8f867a19c2af7aa7db
977d29b68d61a0365777d207a3c521a53b59d116f10cf8716139cd24d77d03dc
GET /pic/20200217bentu-gc/8UEUtCk8.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 9519
Last-Modified: Wed, 10 Aug 2022 12:12:20 GMT
Connection: keep-alive
ETag: "62f3a0a4-252f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 98bf8eac3a6cf3b006993842f8a95806
17d64871e20c96a36bd336241f0a3b533bd3aa88
be7e911dd55eb625635432539cc0fd9ba019df2c0c22507d1e3a134935d05dd3
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=271
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
pt1.putaozy.info/20220310/FCCA446304AD301D/FCCA446304AD301D.jpg
5.180.83.14200 OK 8.7 kB URL HTTP/1.1 pt1.putaozy.info/20220310/FCCA446304AD301D/FCCA446304AD301D.jpg
IP 5.180.83.14:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ac22faca69051c262e08d8452065e0b0
2bfd00deb16032955c0d4092bcdcab00d9045355
2d526b9c2e2670f6ca26d8f62afd66c687b83fbc2fec2fb77e2d043d7761cf72
GET /20220310/FCCA446304AD301D/FCCA446304AD301D.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 8707
Last-Modified: Wed, 07 Sep 2022 13:04:13 GMT
Connection: keep-alive
ETag: "631896cd-2203"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220305/4303089A9AFFD22C/4303089A9AFFD22C.jpg
5.180.83.14200 OK 4.6 kB URL HTTP/1.1 pt1.putaozy.info/20220305/4303089A9AFFD22C/4303089A9AFFD22C.jpg
IP 5.180.83.14:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- Minix filesystem, V1 (big endian), 18581 zones\012- data
Hash 56746d3b228524b73879fd26860073cf
bde491624733aec7ab145c088bf546c552374e0e
744970007e5e7b6ea52364726fb78cf2d8aeb737ec3d7432382b540891d39b17
GET /20220305/4303089A9AFFD22C/4303089A9AFFD22C.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 4623
Last-Modified: Wed, 07 Sep 2022 13:02:48 GMT
Connection: keep-alive
ETag: "63189678-120f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220310/B704C691DC69D260/B704C691DC69D260.jpg
5.180.83.14200 OK 7.9 kB URL HTTP/1.1 pt1.putaozy.info/20220310/B704C691DC69D260/B704C691DC69D260.jpg
IP 5.180.83.14:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 89ffe0e46f274581161fb4ec31da153c
308d6787c4c138e3c33dd9aa17e8ed85bf4e914d
27d8b9e290dc3643caf5146efbac1245a9b693b1f7da352bd2904a659828bbcb
GET /20220310/B704C691DC69D260/B704C691DC69D260.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 7860
Last-Modified: Wed, 07 Sep 2022 13:02:15 GMT
Connection: keep-alive
ETag: "63189657-1eb4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220307/89BE2D3DC5273E54/89BE2D3DC5273E54.jpg
5.180.83.14200 OK 8.4 kB URL HTTP/1.1 pt1.putaozy.info/20220307/89BE2D3DC5273E54/89BE2D3DC5273E54.jpg
IP 5.180.83.14:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ab828bca739e31cabcbad73583a7e5db
18a04e992636d2d71c074674a5dadb855bacf449
5f3cf81be67250089129a06135a4cfc3fd26b64c02f5dbcd1fd3fe7e2aaddd18
GET /20220307/89BE2D3DC5273E54/89BE2D3DC5273E54.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 8357
Last-Modified: Wed, 07 Sep 2022 13:02:47 GMT
Connection: keep-alive
ETag: "63189677-20a5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210521-1/c45f6b189edc9c30cdca6af5beeac669.jpg
45.89.208.114200 OK 7.0 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210521-1/c45f6b189edc9c30cdca6af5beeac669.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash ba75408accabe2e36f5395fd137549aa
a31757ddb60fa3b9a92f3352418345cbe3bb8901
69aadd945612584b12e2bba3f5dac797f0fded54122fc8131e74691402ae7839
GET /upload/vod/20210521-1/c45f6b189edc9c30cdca6af5beeac669.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 6981
Last-Modified: Thu, 11 Aug 2022 04:56:42 GMT
Connection: keep-alive
ETag: "62f48c0a-1b45"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash a0772fdd459b72ad36c1bd342e5ce35b
da61cf704d062f583fb78e3be8407b4d95e9b175
33797c571c9f879b4673994ecae83819c0e80295106927915da7f121615d8860
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=115
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 98bf8eac3a6cf3b006993842f8a95806
17d64871e20c96a36bd336241f0a3b533bd3aa88
be7e911dd55eb625635432539cc0fd9ba019df2c0c22507d1e3a134935d05dd3
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=322
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
ljcdn.comtucdncom.com/upload/vod/20220520-1/7b11ac1c0c99372cf368ab733c443ce8.jpg
45.89.208.114200 OK 4.9 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20220520-1/7b11ac1c0c99372cf368ab733c443ce8.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 2834f4f4f34a18dc44ffd53f57b21dbb
8e506896f8b7be02bd6bdc812c58cec111774582
5bdf5217e3c3a91d00d0eee0c6af8bb2897cbab98501a68da1c8621571ccfc44
GET /upload/vod/20220520-1/7b11ac1c0c99372cf368ab733c443ce8.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 4868
Last-Modified: Thu, 11 Aug 2022 04:55:41 GMT
Connection: keep-alive
ETag: "62f48bcd-1304"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210507-1/737bcecd7efca02180558aa4b46c988f.jpg
45.89.208.114200 OK 10 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210507-1/737bcecd7efca02180558aa4b46c988f.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 7bdaee9699698007e094e1ba5e7e6ce4
43314016a21cacc52679911d9489ccdadef03fb1
26d1914386d4b37a8be1434b8acf438c2a044e6f675fc693b23caf27e95c4475
GET /upload/vod/20210507-1/737bcecd7efca02180558aa4b46c988f.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 10118
Last-Modified: Thu, 11 Aug 2022 04:53:55 GMT
Connection: keep-alive
ETag: "62f48b63-2786"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210324-1/5c0b44177965960328766c3161bc6b77.jpg
45.89.208.114200 OK 9.6 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210324-1/5c0b44177965960328766c3161bc6b77.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash d456e539a981d52a50e35cda658a0abd
711b69ab09c85da3fe14d8a91d177cc8884e4fc2
4a3a08d0a022fe5680962a14f6f3b1df47f6277f846d9137878920e48e367546
GET /upload/vod/20210324-1/5c0b44177965960328766c3161bc6b77.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 9591
Last-Modified: Thu, 11 Aug 2022 04:54:51 GMT
Connection: keep-alive
ETag: "62f48b9b-2577"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
104.21.234.153200 OK 310 kB URL HTTP/2 kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
IP 104.21.234.153:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 310 kB (310102 bytes)
Hash aaaee07863e1fab7724d3b6698c0b4b3
1f75ba89585a8844a2c1e41625f88bae649be17d
41ac392c3cca5e4434c0f80595838a48338c94f8a9c691d4141c7ecb68acb24e
GET /03c3cb047014f05117117e4a924df90d.gif HTTP/1.1
Host: kvhuuu.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zgnmjcw.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 08 Jan 2023 15:22:18 GMT
content-type: image/gif
content-length: 310102
last-modified: Wed, 13 Jul 2022 15:28:42 GMT
etag: "62cee4aa-4bb56"
expires: Tue, 10 Jan 2023 10:06:50 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2438128
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kO2Q8cULRD%2FyASH%2B96TQqGu1RSsPS5bdtRk6o9aLNltdLSm8%2Bx%2Fdot6IQnk2O7yqO%2FXzhapraLG9EEsihaUzcyChNMNQFLXwbwlmLoMLKU%2FUExUUHCV6jWLIL3WZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7865ed893e99774a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ljcdn.comtucdncom.com/upload/vod/20201114-1/3d9fd18b488a10e914a1b629abc7a715.jpg
45.89.208.114200 OK 7.5 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20201114-1/3d9fd18b488a10e914a1b629abc7a715.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3ad56e4b921d9ca2ec512a765661bf29
e3e07f408f205f77487170bcf5ab08a363d8e688
4456d9cb2410e2f3336070f77cf1dd510c604ba91621fd602948014fe48dd42e
GET /upload/vod/20201114-1/3d9fd18b488a10e914a1b629abc7a715.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 7532
Last-Modified: Thu, 11 Aug 2022 04:55:01 GMT
Connection: keep-alive
ETag: "62f48ba5-1d6c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220117/0A1A8B7748E44F77/0A1A8B7748E44F77.jpg
5.180.83.25200 OK 9.9 kB URL HTTP/1.1 pic1.semaobf1.com/20220117/0A1A8B7748E44F77/0A1A8B7748E44F77.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 515e9f30d641c921a857fa9a962990f8
6b8d26477d8791b7a5cc03ffb68a5b2c3d5fa2aa
08ffbc2f038ae4722d53022acefb8cedf85033d1256f2a9f4d1734e508cbec37
GET /20220117/0A1A8B7748E44F77/0A1A8B7748E44F77.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 9929
Last-Modified: Wed, 07 Sep 2022 12:52:25 GMT
Connection: keep-alive
ETag: "63189409-26c9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20210918/71950B1643F14CC3/71950B1643F14CC3.jpg
5.180.83.25200 OK 6.7 kB URL HTTP/1.1 pic1.semaobf1.com/20210918/71950B1643F14CC3/71950B1643F14CC3.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash b0dc5a71012622829dbfe78bd1bab943
263b5ecce00b60aa7ebabd204a6f8db589b67dd6
359d5d085831fb520839bf8edb67981ace0b1570d6ea1f665795f549e4571fed
GET /20210918/71950B1643F14CC3/71950B1643F14CC3.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 6723
Last-Modified: Wed, 07 Sep 2022 12:52:12 GMT
Connection: keep-alive
ETag: "631893fc-1a43"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/01-05/16/34wp32np2ep165334wp32np2ep22367.jpg
172.247.77.90200 OK 11 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/01-05/16/34wp32np2ep165334wp32np2ep22367.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 58716af316ccd5cff9375703c457826b
8e15aff52542a65e2e226c57855a5ca0db5182e6
35a7732e151ae5f4f73e419b8f0b424837e243bace82155f8994d528d09c9051
GET /upload/vod/2020/01-05/16/34wp32np2ep165334wp32np2ep22367.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 10750
Last-Modified: Wed, 09 Nov 2022 11:40:40 GMT
Connection: keep-alive
ETag: "636b91b8-29fe"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220517/C126038DF94EDB41/C126038DF94EDB41.jpg
5.180.83.25404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220517/C126038DF94EDB41/C126038DF94EDB41.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220517/C126038DF94EDB41/C126038DF94EDB41.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dbc83e11b27e91e15dc06bcfd2541ec9
e79884e807cec972366a6746aee8d530f08901c6
8ba1bac283b3befe77f42e8323e3172ba942c3e7c08339cd22e7a9f0ab5f6858
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BA1BAC283B3BEFE77F42E8323E3172BA942C3E7C08339CD22E7A9F0AB5F6858"
Last-Modified: Fri, 06 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1914
Expires: Sun, 08 Jan 2023 15:54:12 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dbc83e11b27e91e15dc06bcfd2541ec9
e79884e807cec972366a6746aee8d530f08901c6
8ba1bac283b3befe77f42e8323e3172ba942c3e7c08339cd22e7a9f0ab5f6858
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BA1BAC283B3BEFE77F42E8323E3172BA942C3E7C08339CD22E7A9F0AB5F6858"
Last-Modified: Fri, 06 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1914
Expires: Sun, 08 Jan 2023 15:54:12 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dbc83e11b27e91e15dc06bcfd2541ec9
e79884e807cec972366a6746aee8d530f08901c6
8ba1bac283b3befe77f42e8323e3172ba942c3e7c08339cd22e7a9f0ab5f6858
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BA1BAC283B3BEFE77F42E8323E3172BA942C3E7C08339CD22E7A9F0AB5F6858"
Last-Modified: Fri, 06 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1914
Expires: Sun, 08 Jan 2023 15:54:12 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2020/04-14/06/wybahpchtmk0604wybahpchtmk103432.jpg
172.247.77.90200 OK 7.9 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/04-14/06/wybahpchtmk0604wybahpchtmk103432.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 747e9f0b7285cf9319bd4971f204368a
c092481e061140049c24b1d27f647bcef1724d95
0093037a50ef459b9cb1f93c7ae00c338599f744a9203a7e37cb75ff6a49a07e
GET /upload/vod/2020/04-14/06/wybahpchtmk0604wybahpchtmk103432.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 7880
Last-Modified: Wed, 09 Nov 2022 11:45:47 GMT
Connection: keep-alive
ETag: "636b92eb-1ec8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211126/A36A0AC3AAC59D11/A36A0AC3AAC59D11.jpg
5.180.83.25404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20211126/A36A0AC3AAC59D11/A36A0AC3AAC59D11.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20211126/A36A0AC3AAC59D11/A36A0AC3AAC59D11.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
pic1.semaobf1.com/20220414/623574AF0762A782/623574AF0762A782.jpg
5.180.83.25404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220414/623574AF0762A782/623574AF0762A782.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220414/623574AF0762A782/623574AF0762A782.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2022/06-19/08/genc3tpvjvu0818genc3tpvjvu564322.jpg
172.247.77.90200 OK 4.5 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2022/06-19/08/genc3tpvjvu0818genc3tpvjvu564322.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash e9a3d543c5d07dfd3b9bc69fc5d62bac
d87f81074c05ca49a4537defea2014130fe32f4d
30187cfdf3edc64bf57bb04d94a5cd9efe85d64407b469752b120b533c807568
GET /upload/vod/2022/06-19/08/genc3tpvjvu0818genc3tpvjvu564322.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 4518
Last-Modified: Wed, 09 Nov 2022 11:42:36 GMT
Connection: keep-alive
ETag: "636b922c-11a6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2019/11-13/21/2tyoovwouac21102tyoovwouac112379.jpg
172.247.77.90200 OK 6.8 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2019/11-13/21/2tyoovwouac21102tyoovwouac112379.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 8x9, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash f5cf24910428102f194e4cbf428fbea7
92d32bb2f8b1b8a5438c53c4040c061252db9a8d
543f3c3b81dbc0942979e4228b8192dad414d4993a8b1ea555b78d8198611300
GET /upload/vod/2019/11-13/21/2tyoovwouac21102tyoovwouac112379.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 6751
Last-Modified: Wed, 09 Nov 2022 11:40:37 GMT
Connection: keep-alive
ETag: "636b91b5-1a5f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/11-19/06/x4rtie2n5vj0605x4rtie2n5vj16725.jpg
172.247.77.90200 OK 12 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/11-19/06/x4rtie2n5vj0605x4rtie2n5vj16725.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 5820af06947ea0ee130b25ea62bfbd15
4192c16d930529721b254381edce21ccfd1c6042
2a90648730e433e9b8799056f94c29791f63d0fb5ffa7e743f3c39e709988d23
GET /upload/vod/2020/11-19/06/x4rtie2n5vj0605x4rtie2n5vj16725.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 11833
Last-Modified: Wed, 09 Nov 2022 11:40:45 GMT
Connection: keep-alive
ETag: "636b91bd-2e39"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash d584b2dc99e99e2c2bbc34032b4b8c07
fb99a9db81123e53a690b13aa034a6ee0eaf16bc
7a0e2954d0d4ca65b66cc3cf653d72d1c36116b20166356ea6981c05b599398f
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=691
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
X-N: S
ljcdn.comtucdncom.com/upload/vod/20211221-1/0078ce36cf35b22fc1d6f9cb8ec80fec.jpg
45.89.208.114200 OK 9.6 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20211221-1/0078ce36cf35b22fc1d6f9cb8ec80fec.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 6a6d5723a76e36cb70ffd54d3e06cdf0
df679fc8ecb42a3903566f59c122f86b99a01c1b
b3d8fce93161b166d5f5ae2290cd570d31fa67feab16b740b814244edbe659f5
GET /upload/vod/20211221-1/0078ce36cf35b22fc1d6f9cb8ec80fec.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 9589
Last-Modified: Thu, 11 Aug 2022 04:53:59 GMT
Connection: keep-alive
ETag: "62f48b67-2575"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/05-23/00/dqp2ecnriy20009dqp2ecnriy23310177.jpg
172.247.77.90200 OK 10 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/05-23/00/dqp2ecnriy20009dqp2ecnriy23310177.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7ff191dee71f9201e288cbbe312234ac
7e1520dc204e7b1a45eaeed61e17af1a1b261c4c
8f8328117701cdf0c572acae9c43fe7044b6d63c8dfd6a974b35e8e50a4d54a1
GET /upload/vod/2020/05-23/00/dqp2ecnriy20009dqp2ecnriy23310177.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 10436
Last-Modified: Wed, 09 Nov 2022 11:44:18 GMT
Connection: keep-alive
ETag: "636b9292-28c4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-01-01/15463424411.jpg
45.89.209.74200 OK 9.6 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-01-01/15463424411.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 733c84dc7a75c30a7f5db954865e0d19
31478edb5aa0e30eb665fb3595f895e72fe493a4
1edd8e7f8f7f756e8514bbfa8ac907055f4bd34b33d3f90b78d1981fc2462494
GET /upload/vod/2019-01-01/15463424411.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 9574
Last-Modified: Sun, 04 Dec 2022 13:38:17 GMT
Connection: keep-alive
ETag: "638ca2c9-2566"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20200917-1/c47b8f12f5610e9c8f8b17672e6d32c4.jpg
45.89.208.114200 OK 7.8 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20200917-1/c47b8f12f5610e9c8f8b17672e6d32c4.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, baseline, precision 8, 240x320, components 3\012- data
Hash 2a3a2b2a0d4810ab0bc8e58fa2522d36
fb2ae75801aa0aa9ec5919fa38303a23642ccd9d
fed2c4f47d508cf67705dcbf155b985664be8c7713d9a130b44dbfbe2562ef33
GET /upload/vod/20200917-1/c47b8f12f5610e9c8f8b17672e6d32c4.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 7813
Last-Modified: Thu, 11 Aug 2022 04:53:17 GMT
Connection: keep-alive
ETag: "62f48b3d-1e85"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
de88deggtp89.com/100tp/120-170.gif
23.224.145.235200 OK 92 kB URL HTTP/2 de88deggtp89.com/100tp/120-170.gif
IP 23.224.145.235:0
File type GIF image data, version 89a, 120 x 170\012- data
Hash 47e5bb3ce57ef32da992fd4ee5b58c6a
88b2d56e6572ef2544f7719c63181c2af578a79b
9b431eb99c84942feafc123174b5d42e8dc27bb594b2260b4165e5ec186d49ee
GET /100tp/120-170.gif HTTP/1.1
Host: de88deggtp89.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 08 Jan 2023 15:22:18 GMT
content-type: image/gif
content-length: 91977
last-modified: Thu, 29 Dec 2022 10:42:19 GMT
etag: "63ad6f0b-16749"
expires: Sat, 28 Jan 2023 10:54:03 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ddcdn.comtucdncom.com/upload/vod/2019-09-16/156859370711.jpg
45.89.209.74200 OK 14 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-09-16/156859370711.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 536x681, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 0face0ae24b77aa267bb34ba71be9ee2
97fa087154923a35cd2521c59b203385a5437228
4fea03a70a534efd76832c1e5b5c3dbbcaf5f7f379b9d152c3b74a5e94a22c9c
GET /upload/vod/2019-09-16/156859370711.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 13764
Last-Modified: Sat, 10 Dec 2022 11:17:55 GMT
Connection: keep-alive
ETag: "63946ae3-35c4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220208/3F46EB7B0A378E70/3F46EB7B0A378E70.jpg
5.180.83.25200 OK 15 kB URL HTTP/1.1 pic1.semaobf1.com/20220208/3F46EB7B0A378E70/3F46EB7B0A378E70.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 09e22ff94a0088aab738bbf7e0593adb
2c85497290f7d53782ad876691188a11a987b4b9
4bcc0e1c28598772633fb9e703013cf2447f7320cf40396c2721a45b0fb137b1
GET /20220208/3F46EB7B0A378E70/3F46EB7B0A378E70.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 15129
Last-Modified: Wed, 07 Sep 2022 12:52:09 GMT
Connection: keep-alive
ETag: "631893f9-3b19"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2020-01-12/157878427711.jpg
45.89.209.74200 OK 9.8 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2020-01-12/157878427711.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash fa3ca749a92f8a5ae636828e7d261981
e83a49889257dcb73739d76f1798cbbfde9ce71a
53524a7c372fef9cd05c28d0352509a83b0f5fc15a9445ea0da154999fa1c1ad
GET /upload/vod/2020-01-12/157878427711.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 9770
Last-Modified: Sun, 04 Dec 2022 03:09:16 GMT
Connection: keep-alive
ETag: "638c0f5c-262a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-03-16/15527401082.jpg
45.89.209.74200 OK 7.1 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-03-16/15527401082.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x8, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 320x240, components 3\012- data
Hash fde996f36a185b9ceffd5c66ebb3d342
3e965c7c6eb7d2975f687a580a6e2cc846afa158
a0ff0051d4cc4a2abb11d7b40bc664a8ea98d167f5dc8f67a0d168b1abb0d0f7
GET /upload/vod/2019-03-16/15527401082.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 7074
Last-Modified: Sun, 04 Dec 2022 02:14:16 GMT
Connection: keep-alive
ETag: "638c0278-1ba2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220502/4BCF860CE18C3027/4BCF860CE18C3027.jpg
5.180.83.25200 OK 9.4 kB URL HTTP/1.1 pic1.semaobf1.com/20220502/4BCF860CE18C3027/4BCF860CE18C3027.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 9x8, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash fe8b4ee9c99015eed45456e4528cbabd
d262ce532a2b58db280a6adb00371e0202ff0dc9
77eddfa225e5615302c95a9b82e93d5de242c6637c527e01e9e34311cce37dd6
GET /20220502/4BCF860CE18C3027/4BCF860CE18C3027.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 9372
Last-Modified: Wed, 07 Sep 2022 12:52:10 GMT
Connection: keep-alive
ETag: "631893fa-249c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210920-1/ea04fffb7e0998e58deeaaf4e6b5c9c0.jpg
45.89.208.114200 OK 9.6 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210920-1/ea04fffb7e0998e58deeaaf4e6b5c9c0.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 23x30, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 48acbcf140735b094d46e1c289d2b151
fd65102a8560e3badfdd313a2f963e3fff8c20e0
79d5b99c2d6c6d68dbf4707fc124f55a9d7894bb9b9d07ad6e96899c09f6c349
GET /upload/vod/20210920-1/ea04fffb7e0998e58deeaaf4e6b5c9c0.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 9592
Last-Modified: Thu, 11 Aug 2022 04:55:57 GMT
Connection: keep-alive
ETag: "62f48bdd-2578"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211025/5EC5DED9BC2D7B27/5EC5DED9BC2D7B27.jpg
5.180.83.25200 OK 14 kB URL HTTP/1.1 pic1.semaobf1.com/20211025/5EC5DED9BC2D7B27/5EC5DED9BC2D7B27.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash d1ea957fd244dfc2510041f3041d8858
53e26ef7ecf3b9790df37aebfd9c7dbcaf8de24c
1f93ca14e88362830b0e8bc0c633694fa020711c708965fbae8daf423d6242de
GET /20211025/5EC5DED9BC2D7B27/5EC5DED9BC2D7B27.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 14168
Last-Modified: Wed, 07 Sep 2022 12:52:12 GMT
Connection: keep-alive
ETag: "631893fc-3758"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 2f129fd82e9a59561dc7f1b3f836d984
41400ece05968ce7b564efb202743d943f9e2666
deb1ba7f198877e7b39a85b79b8ae809cbae225f2916be880b571a0b31e3d83f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 715
Cache-Control: max-age=110680
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 15:22:18 GMT
Etag: "63b9ea37-2d7"
Expires: Mon, 09 Jan 2023 22:06:58 GMT
Last-Modified: Sat, 07 Jan 2023 21:55:03 GMT
Server: ECS (amb/6B83)
X-Cache: HIT
Content-Length: 727
pic1.semaobf1.com/20220614/1FE328C421B0DFC0/1FE328C421B0DFC0.jpg
5.180.83.25200 OK 7.9 kB URL HTTP/1.1 pic1.semaobf1.com/20220614/1FE328C421B0DFC0/1FE328C421B0DFC0.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c5d73f7457202ccc4e3cec5021ea90f9
7912763b142b628a3dbdc58f8880c83743f4252e
fced51727533d5a9780b5e73ea6a8e541a15f6ce8caa348a9d37c166d563eb74
GET /20220614/1FE328C421B0DFC0/1FE328C421B0DFC0.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 7869
Last-Modified: Wed, 07 Sep 2022 12:52:26 GMT
Connection: keep-alive
ETag: "6318940a-1ebd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2bdb70149ba79ebdb516d9851c26b232
cc084787114baf0b3e85553d5a2ba6fa77f57fb5
21071dd58f7e03ce5120748c1a4951d80b1f6e048cb02f8cf6e1f48c96301a71
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1328
Cache-Control: max-age=104818
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 15:22:18 GMT
Etag: "63b9d0ed-117"
Expires: Mon, 09 Jan 2023 20:29:16 GMT
Last-Modified: Sat, 07 Jan 2023 20:07:09 GMT
Server: ECS (amb/6B88)
X-Cache: HIT
Content-Length: 279
sycdn.comtucdncom.com/upload/vod/20200817-1/6bfe1ca88aa0e47891e6b737064cdba0.jpg
172.247.77.90200 OK 60 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200817-1/6bfe1ca88aa0e47891e6b737064cdba0.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 765x512, components 3\012- data
Hash 54486a95f2b6945eee0fdef8ee15033f
942e59e3c10aea6169eef18f704c0b1f41ed2e99
e9dd5acbdf1c9aac0047424b1975634ac71a0314c6f04fedcd4fa35e1b9b705e
GET /upload/vod/20200817-1/6bfe1ca88aa0e47891e6b737064cdba0.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 60417
Last-Modified: Wed, 10 Aug 2022 12:14:01 GMT
Connection: keep-alive
ETag: "62f3a109-ec01"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
p3.douyinpic.com/obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d
47.246.44.231200 OK 498 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d
IP 47.246.44.231:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 70\012- data
Size 498 kB (497844 bytes)
Hash 9d43f768f1897d7d3fd5ba803e1a770a
ff8fb3f427df7b6cfef65fcae162e0abab9474a4
00fe4f1ccfc623639abadf4e745aca22b946365e932a7a794d6c108fee0d85af
GET /obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 497844
date: Fri, 21 Oct 2022 06:45:44 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Fri, 21 Oct 2022 06:39:38 GMT
nw-session-id: 202210211439380101311360293842A52Fgx4cc03dy
nw-session-trace: 2022-10-21T14:39:38.59145035+08:00 28
x-bdcdn-cache-status: TCP_HIT
x-length: 497844
x-powered-by: ImageX
x-response-date: Fri, 21 Oct 2022 14:39:38 GMT
x-tt-logid: 202210211439380101311360293842A52F
via: n132-067-168, cache19.l2de2[0,0,206-0,H], cache11.l2de2[2,0], cache11.l2de2[2,0], cache1.se1[0,0,200-0,H], cache7.se1[1,0]
x-request-ip: fdbd:dc03:14:130::18
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 010bb5ec5b1b5f1e47ca91c2b81197a74f8048ba6c9105f29b60a5a5654edfd2e74a44ae94b6f429eb61763780aa091400b761df5690404fbe40d4d865710f70cd7a52fd33d8906f8ae44a9cba323b06e589132522b5dde5de19e056fb46c2d0ef
x-response-lb: image
ali-swift-global-savetime: 1666334744
age: 6856594
x-cache: HIT TCP_MEM_HIT dirn:8:264123485
x-swift-savetime: Fri, 21 Oct 2022 07:27:56 GMT
x-swift-cachetime: 31533468
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9b16731913388631001e
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/03-29/00/h0epfmnaimz0005h0epfmnaimz084488.jpg
172.247.77.90200 OK 11 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/03-29/00/h0epfmnaimz0005h0epfmnaimz084488.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 45x34, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b6b9d684f6169052823f0a37354e9f94
b1c7c5aa4c31131ebb39229e5c2ac9cbcb06abd9
8a35f1f4bad832825a5de028020bee656cbfa7739aee3a6b0cfc390514c813c0
GET /upload/vod/2020/03-29/00/h0epfmnaimz0005h0epfmnaimz084488.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 10924
Last-Modified: Wed, 09 Nov 2022 08:20:33 GMT
Connection: keep-alive
ETag: "636b62d1-2aac"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211012/9820FC0FD98C8FDD/9820FC0FD98C8FDD.jpg
5.180.83.25200 OK 6.2 kB URL HTTP/1.1 pic1.semaobf1.com/20211012/9820FC0FD98C8FDD/9820FC0FD98C8FDD.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 130b2947af57a2fa905a128336e8c3ba
2b383261557a461493278abd6e43f7c373d9c606
df14cd9a0e7848b5e5b62d3a08a807864fa6c0e5657c55a168ff475a75fcc6f6
GET /20211012/9820FC0FD98C8FDD/9820FC0FD98C8FDD.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 6212
Last-Modified: Wed, 07 Sep 2022 12:52:14 GMT
Connection: keep-alive
ETag: "631893fe-1844"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8369050eb05c55925fbdee7dd597274a
2fc27e16dda4dbc07e714115815ad90aa89be5fd
2a3e5f47d7be1a6bcde682ec39120e0913f33eb583c8c4842ba6a70bfab998f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A3E5F47D7BE1A6BCDE682EC39120E0913F33EB583C8C4842BA6A70BFAB998F1"
Last-Modified: Sat, 07 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9102
Expires: Sun, 08 Jan 2023 17:54:00 GMT
Date: Sun, 08 Jan 2023 15:22:18 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 2f129fd82e9a59561dc7f1b3f836d984
41400ece05968ce7b564efb202743d943f9e2666
deb1ba7f198877e7b39a85b79b8ae809cbae225f2916be880b571a0b31e3d83f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=109965
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 15:22:18 GMT
Etag: "63b9ea37-2d7"
Expires: Mon, 09 Jan 2023 21:55:03 GMT
Last-Modified: Sat, 07 Jan 2023 21:55:03 GMT
Server: nginx
Content-Length: 727
de88deggtp89.com/235tp/%E5%A4%9C%E5%A4%9C%E5%97%A8%E8%A7%86%E9%A2%91.gif
23.224.145.235200 OK 76 kB URL HTTP/2 de88deggtp89.com/235tp/%E5%A4%9C%E5%A4%9C%E5%97%A8%E8%A7%86%E9%A2%91.gif
IP 23.224.145.235:0
File type GIF image data, version 89a, 175 x 250\012- data
Hash 83e5595eeda0e76702d51631a449e6cb
6df9e78003bf5c8e2610f9b988999817f26b0706
74b1a1a1175139ae022c7c086b2e8702f42364ccac23395ecc58e52bcd3a3d3d
GET /235tp/%E5%A4%9C%E5%A4%9C%E5%97%A8%E8%A7%86%E9%A2%91.gif HTTP/1.1
Host: de88deggtp89.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 08 Jan 2023 15:22:18 GMT
content-type: image/gif
content-length: 75949
last-modified: Thu, 17 Nov 2022 02:41:36 GMT
etag: "63759f60-128ad"
expires: Fri, 03 Feb 2023 22:41:58 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2019/11-12/16/nvjntegmax31617nvjntegmax3471093.jpg
172.247.77.90200 OK 8.7 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2019/11-12/16/nvjntegmax31617nvjntegmax3471093.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash ce6d4093613d16a1f754c50a6810fe23
a453bf66f49c8b5bbc6e99dc7063428be8f14d11
95ced3aa41eca20c78c4d4c70b838a1f72f2984d3eb0edb0bd5ec73e762a971d
GET /upload/vod/2019/11-12/16/nvjntegmax31617nvjntegmax3471093.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 8685
Last-Modified: Wed, 09 Nov 2022 11:42:44 GMT
Connection: keep-alive
ETag: "636b9234-21ed"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2018-12-17/15450569650.jpg
45.89.209.74200 OK 7.9 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-17/15450569650.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 09661ba61d93f8be360b670aa80e2311
c0f0d2808342e739e770dce7fc5161f3b7e7b6e9
87f029a979605156d46b9388e9db0e1e602bab79e81b794880dd26cbadf37ade
GET /upload/vod/2018-12-17/15450569650.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 7854
Last-Modified: Sun, 04 Dec 2022 03:23:16 GMT
Connection: keep-alive
ETag: "638c12a4-1eae"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
6617398ccc.com/95128b772cae4720abf92e497051ddab.gif
45.61.212.51200 OK 604 kB URL HTTP/1.1 6617398ccc.com/95128b772cae4720abf92e497051ddab.gif
IP 45.61.212.51:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 604 kB (603987 bytes)
Hash 23949104e338cb795b2e13fa2f5a2247
466467d793d47e13999b5a3b0d8f3ff5fd980d93
871b665b13f515dec19211e8f88f5b03d1bca8ae5fd317d67c72630a748605a3
Analyzer Verdict Alert quad9 Sinkholed
GET /95128b772cae4720abf92e497051ddab.gif HTTP/1.1
Host: 6617398ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63aad950-93753"
Date: Wed, 04 Jan 2023 05:12:22 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 27 Dec 2022 11:38:56 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-21
Content-Length: 603987
kzeoo.com/68a7807de3933bf7079116fa9df99e6f.gif
172.83.155.45200 OK 366 kB URL HTTP/2 kzeoo.com/68a7807de3933bf7079116fa9df99e6f.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 366 kB (366444 bytes)
Hash 86371c51bf2086f3a40f0e438246b662
9da793de9c620485ee91b88413b256c69dc774c5
8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 15:22:18 GMT
content-type: image/gif
content-length: 366444
last-modified: Fri, 19 Aug 2022 17:02:28 GMT
etag: "62ffc224-5976c"
expires: Mon, 09 Jan 2023 03:22:18 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 1420381
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GwipRCov4sczHTcdIWkv%2FaUrYkMXIXYgzLjnYGeXGYrNTWiFyZ4kN%2FbAl29k5zhUJwdz4MPvR6gOiEVX0jKqomGgljR2%2BFim4H7cs%2FsgE0OBbp%2BdOSiFv8UW13GA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 77f29af56ca4c5f5-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/pic/20200215bentu-gc/7ZuJw9qV.jpg
172.247.77.90200 OK 6.7 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/20200215bentu-gc/7ZuJw9qV.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 35d3326942bccf2030e379b983f7d104
3322f0bde7f22c0a3b2413c637a0403ec0bbb0b9
b1cbaf332eafa5a4ce9b3fe410846fbb466fd5d99c3022e5cfdf5553997bb3f0
GET /pic/20200215bentu-gc/7ZuJw9qV.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 6718
Last-Modified: Wed, 10 Aug 2022 12:15:06 GMT
Connection: keep-alive
ETag: "62f3a14a-1a3e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220312/E45421BADA7EB851/E45421BADA7EB851.jpg
5.180.83.25200 OK 6.7 kB URL HTTP/1.1 pic1.semaobf1.com/20220312/E45421BADA7EB851/E45421BADA7EB851.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash a74170729e6dbb73e133074b81613fa2
d70392a91c797eaaeaf0234b0aac1f04602df982
dad793955dca87697a1427bbcf0e687a4b4504fa9fe1dcb625b1e46eb2f65a30
GET /20220312/E45421BADA7EB851/E45421BADA7EB851.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 6745
Last-Modified: Wed, 07 Sep 2022 12:52:11 GMT
Connection: keep-alive
ETag: "631893fb-1a59"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d04bff6bbc759d60c4e361e198cdbd08
1121f0a4a4fab1799e54bcdcdba3288a44611ade
ce322673ff48a388a4e1455aeb4d81b04e07c85dc8f8eab3eb55571dc1176218
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE322673FF48A388A4E1455AEB4D81B04E07C85DC8F8EAB3EB55571DC1176218"
Last-Modified: Sat, 07 Jan 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21533
Expires: Sun, 08 Jan 2023 21:21:12 GMT
Date: Sun, 08 Jan 2023 15:22:19 GMT
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2020/05-21/12/daqb5oswgl51202daqb5oswgl5231365.jpg
172.247.77.90200 OK 11 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/05-21/12/daqb5oswgl51202daqb5oswgl5231365.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash a3e94f0b6e83f500cbb7035c2ed2a91e
7994df9597a1ebb08194796891f8b809e8081939
4477c1d9779256028956084cb2d2d1287ff06cd7e50a648e65c56bd1cbbc216f
GET /upload/vod/2020/05-21/12/daqb5oswgl51202daqb5oswgl5231365.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 10720
Last-Modified: Wed, 09 Nov 2022 11:41:44 GMT
Connection: keep-alive
ETag: "636b91f8-29e0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/03/06/zhubo181809.jpg
45.89.209.74503 Service Temporarily Unavailable 190 B URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/03/06/zhubo181809.jpg
IP 45.89.209.74:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3267dd8f0e96711dd54dbb1f5676b447
202602c4ec4a5e2498e3d24a3ed025ce70bf749c
b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
GET /images/2022/03/06/zhubo181809.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Temporarily Unavailable
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 190
Connection: keep-alive
ddcdn.comtucdncom.com/upload/vod/2020-08-19/159778265014.jpg
45.89.209.74200 OK 9.8 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2020-08-19/159778265014.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 717x538, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash de051841d9dfbf1f06a4fcbc46821e03
b0afd6c8d0579fbab9ecf4e87401028c287e42c7
aa41eff2814e63e25689ee5f72f8535e4e4199527ffc2a0617d362beed124af6
GET /upload/vod/2020-08-19/159778265014.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 9815
Last-Modified: Thu, 01 Dec 2022 18:37:38 GMT
Connection: keep-alive
ETag: "6388f472-2657"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2020-12-01/16067529118.jpg
45.89.209.74200 OK 9.9 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2020-12-01/16067529118.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5a74a0e01739df3169b2a5edf1f32d13
7d6fe7f4eb5115269eb956b98cdf6fd85e7d96e7
32103378c5456d88351c3b17dc16ef95339ac0fa77b75d4a74c0f134991ea00a
GET /upload/vod/2020-12-01/16067529118.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 9948
Last-Modified: Sun, 04 Dec 2022 03:51:15 GMT
Connection: keep-alive
ETag: "638c1933-26dc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220505/35D0C1CFF9E58582/35D0C1CFF9E58582.jpg
5.180.83.25200 OK 9.3 kB URL HTTP/1.1 pic1.semaobf1.com/20220505/35D0C1CFF9E58582/35D0C1CFF9E58582.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 372bd1ccfe027e032a0a4c37a1f01413
1083037ee70d8945184c0f99e6dbbb8cb507c338
9fc1018215a5767ea48d174355d9090c052b0c06fab3ae16f8f853b791d272d8
GET /20220505/35D0C1CFF9E58582/35D0C1CFF9E58582.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 9286
Last-Modified: Wed, 07 Sep 2022 12:52:13 GMT
Connection: keep-alive
ETag: "631893fd-2446"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210420-1/8f012202969e6bf83f5af424e9a6330d.jpg
172.247.77.90200 OK 27 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210420-1/8f012202969e6bf83f5af424e9a6330d.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.98.100", baseline, precision 8, 636x364, components 3\012- data
Hash 674bc195197173b34420b26e39c17c78
e736f1e19f2a48463bc62f113417556e3f9f079d
c258f622b20a006c6a8601ec1f4e23f1eda283079b5151327f5de569f535a8b3
GET /upload/vod/20210420-1/8f012202969e6bf83f5af424e9a6330d.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 26715
Last-Modified: Wed, 10 Aug 2022 12:11:52 GMT
Connection: keep-alive
ETag: "62f3a088-685b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
p3.douyinpic.com/obj/tos-cn-i-dy/b1f4270216704c0f8cc43a10401d2f97
47.246.44.231200 OK 385 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/b1f4270216704c0f8cc43a10401d2f97
IP 47.246.44.231:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 385 kB (384932 bytes)
Hash 6b1533d50f7375dff2f5b3969e7ec1da
6dfd13e56902faedb34a9d2e6d27e51605ddb0f1
2f235ff0c8fd65b40619ef5448206c505716aa41dcee03850c00b1352c986f7c
GET /obj/tos-cn-i-dy/b1f4270216704c0f8cc43a10401d2f97 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 384932
date: Thu, 17 Nov 2022 10:00:16 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 17 Nov 2022 09:53:03 GMT
nw-session-id: 202211171753030102101860364CA5BD5Ex7wrg01dy
nw-session-trace: 2022-11-17T17:53:03.831686834+08:00 69
x-bdcdn-cache-status: TCP_HIT
x-length: 384932
x-powered-by: ImageX
x-response-date: Thu, 17 Nov 2022 17:53:03 GMT
x-tt-logid: 202211171753030102101860364CA5BD5E
via: n204-098-210, cache10.l2de2[0,0,206-0,H], cache5.l2de2[1,0], cache5.l2de2[2,0], cache5.se1[0,0,200-0,H], cache7.se1[1,0]
x-request-ip: fdbd:dc01:21:307::156
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 01f182c839dd3e503e2b5fce9c0d2d64acbfa1b6dda83814008bcbd6e2cf59654f59f479c39409b5b8c85de9eece6667f5a627f40eb1831b648df1e05282a67816bc37d9508c3aeb8db10b8a5b6d460aa6b502677ae9bbb5468667f0b67fbfc643
x-response-lb: image
ali-swift-global-savetime: 1668679217
age: 4512122
x-cache: HIT TCP_MEM_HIT dirn:11:222669295
x-swift-savetime: Thu, 17 Nov 2022 10:22:55 GMT
x-swift-cachetime: 31534642
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9b16731913390351126e
X-Firefox-Spdy: h2
pic1.semaobf1.com/20220129/5202408C0286A3C2/5202408C0286A3C2.jpg
5.180.83.25200 OK 18 kB URL HTTP/1.1 pic1.semaobf1.com/20220129/5202408C0286A3C2/5202408C0286A3C2.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 826ec09e51f54329f5d84b047cc491e9
5cec2e78fb7eeb49212d411b530994969d8b1cb2
b9355a77415001f5ebbcaf4c90db243852d9480b6ebe327ad67cecaf11658ccc
GET /20220129/5202408C0286A3C2/5202408C0286A3C2.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 17535
Last-Modified: Wed, 07 Sep 2022 12:52:14 GMT
Connection: keep-alive
ETag: "631893fe-447f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220615/FBD87DD2CB287E99/FBD87DD2CB287E99.jpg
5.180.83.25404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220615/FBD87DD2CB287E99/FBD87DD2CB287E99.jpg
IP 5.180.83.25:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220615/FBD87DD2CB287E99/FBD87DD2CB287E99.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
ljcdn.comtucdncom.com/upload/vod/20200906-1/52d847dc58a0062ffaf1c34dd8b3eac5.jpg
45.89.208.114200 OK 137 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20200906-1/52d847dc58a0062ffaf1c34dd8b3eac5.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 800x540, components 3\012- data
Size 137 kB (136904 bytes)
Hash fc9fee5800a65574522d826c952bf1e3
1b898096fdc4071b7a4ad8eade999597afc11778
5c090f0b43281ae5c7a0e8a71795b0d3936144060ea42b9b998fbe2513fe579c
GET /upload/vod/20200906-1/52d847dc58a0062ffaf1c34dd8b3eac5.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/jpeg
Content-Length: 136904
Last-Modified: Thu, 11 Aug 2022 04:57:48 GMT
Connection: keep-alive
ETag: "62f48c4c-216c8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210525-1/8b1434100853cb6c81cee42ecb319f98.jpg
172.247.77.90200 OK 21 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210525-1/8b1434100853cb6c81cee42ecb319f98.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.75.100", baseline, precision 8, 636x364, components 3\012- data
Hash a8984f0515bb0110c0d4fc5a175629a4
7508840b94182ae7c04d3d75e59ac3780a2cea24
fb725158b2428067c747982a6e41e3b0192ad4bd10d4c8852517dbf803c980db
GET /upload/vod/20210525-1/8b1434100853cb6c81cee42ecb319f98.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 21306
Last-Modified: Wed, 10 Aug 2022 12:10:17 GMT
Connection: keep-alive
ETag: "62f3a029-533a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
kvegg.com/1f983e66dfb925d81e4da07bbbaf11fa.gif
172.83.155.45200 OK 274 kB URL HTTP/2 kvegg.com/1f983e66dfb925d81e4da07bbbaf11fa.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 70\012- data
Size 274 kB (273994 bytes)
Hash dd958b3e68b86521a1aa39a6ad18b7ab
1985a71ffbda6b9f3cf8cc2c16a432827d74efdf
4b6204acd4c9d7154d86b003ee9abafb7e238fef26e46376d2c71b3fbf93ef36
GET /1f983e66dfb925d81e4da07bbbaf11fa.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 15:22:18 GMT
content-type: image/gif
content-length: 273994
last-modified: Sun, 18 Dec 2022 07:01:49 GMT
etag: "639ebadd-42e4a"
expires: Mon, 09 Jan 2023 03:22:18 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 21242
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cWKvu4czFePRb742V5V%2F8TKzrWAz9lu4QWw4vOoCRA98xLuiABZvCkAsemtJtw9IVyM3gynuuU7JZTFi%2FBcVDA%2F%2BJE7PTlFqhEW71gUtPKuruKWz7Q1MO6Ea%2B%2F29"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 77f29af0ac4ac36e-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/upload/vod/20210830-1/c3eabfb60b10dda98cd77e24f642eaef.jpg
172.247.77.90404 Not Found 146 B URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210830-1/c3eabfb60b10dda98cd77e24f642eaef.jpg
IP 172.247.77.90:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /upload/vod/20210830-1/c3eabfb60b10dda98cd77e24f642eaef.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 547f93929cc3453546a5c27039a8d54f
a3979dc8861ceed8093665892e548b0dec35c4c4
475c00efe6fba1e418e3a9e6544ac6411e66a8e23eec17ded13e6af34a7bbf28
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sun, 08 Jan 2023 15:21:25 GMT
last-modified: Sat, 07 Jan 2023 05:47:53 GMT
expires: Sat, 14 Jan 2023 05:47:52 GMT
etag: "a3979dc8861ceed8093665892e548b0dec35c4c4"
cache-control: max-age=594490,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7865ec3ea9369296-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1673191285
via: cache15.l2de2[0,0,200-0,H], cache12.l2de2[0,0], cache3.se1[22,28,200-0,M], cache3.se1[29,0], cache4.se1[32,0]
age: 54
x-cache: MISS TCP_REFRESH_MISS dirn:11:304534608
x-swift-savetime: Sun, 08 Jan 2023 15:22:19 GMT
x-swift-cachetime: 1746
timing-allow-origin: *, *
eagleid: 2ff62c9816731913391308839e, 2ff62c9816731913391308839e
ddcdn.comtucdncom.com/upload/vod/2021-04-08/16178127322.jpg
45.89.209.74200 OK 6.2 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2021-04-08/16178127322.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 2f22c52ae5462a41455e69759fc0f1d2
6810967d01332c23afa170205adbfe2eaaf91f74
958f17e89f7462b9f1b180341f962a19602af3305923ed3955d5f7232627eb27
GET /upload/vod/2021-04-08/16178127322.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 6222
Last-Modified: Sun, 04 Dec 2022 21:54:19 GMT
Connection: keep-alive
ETag: "638d170b-184e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 547f93929cc3453546a5c27039a8d54f
a3979dc8861ceed8093665892e548b0dec35c4c4
475c00efe6fba1e418e3a9e6544ac6411e66a8e23eec17ded13e6af34a7bbf28
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sun, 08 Jan 2023 15:21:25 GMT
last-modified: Sat, 07 Jan 2023 05:47:53 GMT
expires: Sat, 14 Jan 2023 05:47:52 GMT
etag: "a3979dc8861ceed8093665892e548b0dec35c4c4"
cache-control: max-age=594490,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7865ec3ea9369296-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1673191285
via: cache15.l2de2[0,0,304-0,H], cache26.l2de2[1,0], cache1.se1[82,82,200-0,H], cache3.se1[84,0], cache5.se1[85,0]
age: 54
x-cache: HIT TCP_REFRESH_HIT dirn:2:408835294
x-swift-savetime: Sun, 08 Jan 2023 15:22:19 GMT
x-swift-cachetime: 1746
timing-allow-origin: *, *
eagleid: 2ff62c9916731913391294865e, 2ff62c9916731913391294865e
hm.baidu.com/hm.js?f9e76138d2ab20503b8f3bec31a4b84c
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?f9e76138d2ab20503b8f3bec31a4b84c
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (618)
Hash 333f8a521efec6864213b57b4c848ead
d61a90365f38066a61863f545d4dc57c2d2ae467
f5ad9bee6f04b31e2a11ccadf0f710ce3168f726ebe08b171a16d9a042ef0faf
GET /hm.js?f9e76138d2ab20503b8f3bec31a4b84c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11256
Content-Type: application/javascript
Date: Sun, 08 Jan 2023 15:22:18 GMT
Etag: cbc5871f5a09a9512771ab95a4b64473
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=2EF3DAC219CA8EFB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ddcdn.comtucdncom.com/images/2022/05/26/heyzo7607.jpg
45.89.209.74200 OK 116 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/26/heyzo7607.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Size 116 kB (115936 bytes)
Hash f43a4d5d3bfad8e9744db0860ec6bb73
1d11bbb196a91b3de9bc643b7a62c1f97713b462
62cafebb3d5f8f901bbb8138cbe77bf7b5a60dc9294184429683678b2499c51f
GET /images/2022/05/26/heyzo7607.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 115936
Connection: keep-alive
Last-Modified: Thu, 26 May 2022 04:35:20 GMT
ETag: "628f0388-1c4e0"
Expires: Tue, 07 Feb 2023 15:22:18 GMT
Cache-Control: max-age=2592000
access-control-allow-credentials: : true
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
sycdn.comtucdncom.com/18SEAV-PIC/42044.jpg
172.247.77.90200 OK 15 kB URL HTTP/1.1 sycdn.comtucdncom.com/18SEAV-PIC/42044.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 400x225, components 3\012- data
Hash 56b78097c963295cca9b4af065fc7fc4
f661196c8843b988eb06af9329ee74350ab5270a
ed689793327e3d45b17eb7b69f38319a08f784fccb48679b127305b7c5ecbc1f
GET /18SEAV-PIC/42044.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 14959
Last-Modified: Wed, 10 Aug 2022 11:59:50 GMT
Connection: keep-alive
ETag: "62f39db6-3a6f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2018-12-14/15447745278.jpg
45.89.209.74200 OK 9.4 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-14/15447745278.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash dc07d3bf25bcb226ebfa16a8c13d19c4
8a1752167746cb194b6bc3cbbc85e7ae6c5a0296
be0df666a52d09546ac28ea9072d3dcd015aa6c9a227ee72a08a9428e3751c26
GET /upload/vod/2018-12-14/15447745278.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 9390
Last-Modified: Sun, 04 Dec 2022 02:35:15 GMT
Connection: keep-alive
ETag: "638c0763-24ae"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210607-1/f5562c7ee11d00e34ed66f3a7dd3eb3e.jpg
172.247.77.90200 OK 18 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210607-1/f5562c7ee11d00e34ed66f3a7dd3eb3e.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.111.101", baseline, precision 8, 634x374, components 3\012- data
Hash 17cf6c0d66c4728a362188daeead6ba3
f5faa130fb1535519d5a452c7acc579979f67d43
4263325d97d730d4eb4c9cee996e2ecf601f13892fbac919105e25cf4bada8f0
GET /upload/vod/20210607-1/f5562c7ee11d00e34ed66f3a7dd3eb3e.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 18020
Last-Modified: Wed, 10 Aug 2022 12:10:50 GMT
Connection: keep-alive
ETag: "62f3a04a-4664"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2020-04-27/15879401867.jpg
45.89.209.74200 OK 9.0 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2020-04-27/15879401867.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 52c60046424af8529b812f3cb3da8baa
32891d5214b7280c2892884c8209972cef3bb280
e236a812aa1d94b4f1d195e040493d0725ca1c2ae3b2272777017e53fa325256
GET /upload/vod/2020-04-27/15879401867.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 9045
Last-Modified: Sun, 04 Dec 2022 23:20:20 GMT
Connection: keep-alive
ETag: "638d2b34-2355"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2018-12-12/15446289396.jpg
45.89.209.74200 OK 7.4 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-12/15446289396.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 20fe24e96455494379c104776574a9c1
05de1f7e4135052b58798fd83f3fd454e9646b11
020e341faa3a390a48e97fbba226f2fa7015c6b2015c0937b1b4da695abe2628
GET /upload/vod/2018-12-12/15446289396.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: image/jpeg
Content-Length: 7395
Last-Modified: Sat, 03 Dec 2022 22:08:15 GMT
Connection: keep-alive
ETag: "638bc8cf-1ce3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/pic/reregc-pic/f2bdCsmQ.jpg
172.247.77.90200 OK 8.0 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/reregc-pic/f2bdCsmQ.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 782a2d4ace1f1ca7b4a43c9751c4283b
9e61e1520c943849616186119fca9a2f34a28c98
be494ae33d166ed582e4509d75f747e1d557023c6da495a0a8490eba7675c986
GET /pic/reregc-pic/f2bdCsmQ.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 7957
Last-Modified: Wed, 10 Aug 2022 12:12:19 GMT
Connection: keep-alive
ETag: "62f3a0a3-1f15"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
47.246.44.231200 OK 343 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
IP 47.246.44.231:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 343 kB (343002 bytes)
Hash ce862703bd3a6fd9e7acc3c32453fe84
c27754e24547e935314ba986477cd326628af7e4
eb9f779660b2713488854f27a211239724bb29b842e939424ec882b51520350b
GET /obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 343002
date: Sat, 17 Dec 2022 10:28:23 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sat, 17 Dec 2022 10:00:43 GMT
nw-session-id: 2022121718004301013113605215982497p5k6801dy
nw-session-trace: 2022-12-17T18:00:43.827293149+08:00 42
x-bdcdn-cache-status: TCP_HIT
x-length: 343002
x-powered-by: ImageX
x-response-date: Sat, 17 Dec 2022 18:00:43 GMT
x-tt-logid: 2022121718004301013113605215982497
via: n128-134-083, cache14.l2de2[0,0,206-0,H], cache5.l2de2[2,0], cache5.l2de2[3,0], cache3.se1[0,0,200-0,H], cache7.se1[1,0]
x-request-ip: fdbd:dc03:15:482::74
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 010ec35d8338a3c1341674e3d2464ee09a429c9c5af2fc930930b9ec60625c05f3b71a3d79f906afd2479681df4ec15d8b01af344e24d3e5df5584a5196f7e0400dfccab4c7d44dab881b7b096fd4eb23fa223bfc14da29e326a459a9a6aa15d8b
x-response-lb: image
ali-swift-global-savetime: 1671272903
age: 1918436
x-cache: HIT TCP_MEM_HIT dirn:2:427158808
x-swift-savetime: Sat, 17 Dec 2022 11:36:55 GMT
x-swift-cachetime: 31531888
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9b16731913393261325e
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/upload/vod/20200920-1/ae147b5c91b5a4f981b533bd8f32b8a8.jpg
172.247.77.90200 OK 32 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200920-1/ae147b5c91b5a4f981b533bd8f32b8a8.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 786x486, components 3\012- data
Hash 3b7777f35ad25769f0e4ba9c9daf46a8
04bddafedd6ba60665a908015045c5e38bafa898
365210901e7409e0f10cb71e5183ef27febabddbdea4946378ead8e3b1fd443d
GET /upload/vod/20200920-1/ae147b5c91b5a4f981b533bd8f32b8a8.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 31647
Last-Modified: Wed, 10 Aug 2022 12:11:49 GMT
Connection: keep-alive
ETag: "62f3a085-7b9f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 2807f8423563e4213b65ad7ba00df292
c8e0afafefe9da4e600ddd08368f35f78ed1b301
482716402c7c700498e05cd64df89750167a13be06f5450f152712040b85d0bb
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sun, 08 Jan 2023 15:22:19 GMT
last-modified: Sun, 08 Jan 2023 00:39:49 GMT
expires: Sun, 15 Jan 2023 00:39:48 GMT
etag: "c8e0afafefe9da4e600ddd08368f35f78ed1b301"
cache-control: max-age=578866,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb1
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
accept-ranges: bytes
cf-ray: 7865ed8edc15903c-FRA
via: cache2.l2de2[34,0], cache3.se1[55,0], cache4.se1[56,0]
timing-allow-origin: *, *
eagleid: 2ff62c9816731913393098985e, 2ff62c9816731913393098985e
ddcdn.comtucdncom.com/upload/vod/20211105-1/055ee9d5c89be89ec657faaea37b2ea5.jpg
45.89.209.74503 Service Temporarily Unavailable 190 B URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20211105-1/055ee9d5c89be89ec657faaea37b2ea5.jpg
IP 45.89.209.74:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3267dd8f0e96711dd54dbb1f5676b447
202602c4ec4a5e2498e3d24a3ed025ce70bf749c
b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
GET /upload/vod/20211105-1/055ee9d5c89be89ec657faaea37b2ea5.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Temporarily Unavailable
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 190
Connection: keep-alive
ggt999.oss-cn-hangzhou.aliyuncs.com/ky/ky96080c.gif
47.110.23.69200 OK 432 kB URL HTTP/1.1 ggt999.oss-cn-hangzhou.aliyuncs.com/ky/ky96080c.gif
IP 47.110.23.69:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 432 kB (432195 bytes)
Hash 66560dc1fbaeb67885a45dd7dc5831e1
38584ed6146b3cd7f220a7cf5db732f462cf1474
5586b90e8f142c31b3b89a89cd2630ed0bd5a2560074f7a58dda96bbc4abae32
GET /ky/ky96080c.gif HTTP/1.1
Host: ggt999.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/gif
Content-Length: 432195
Connection: keep-alive
x-oss-request-id: 63BADFAA0747933631D504DD
Accept-Ranges: bytes
ETag: "66560DC1FBAEB67885A45DD7DC5831E1"
Last-Modified: Sun, 06 Nov 2022 07:48:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15586424114477953781
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: ZlYNwfuutniFpF3X3Fgx4Q==
x-oss-server-time: 3
p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaTYwJYhDicnibqKbVUtzwk3vqBxlG2ZQYyjo/0
43.154.254.32200 OK 206 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaTYwJYhDicnibqKbVUtzwk3vqBxlG2ZQYyjo/0
IP 43.154.254.32:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 206 kB (205622 bytes)
Hash 8a22a6888c325aa3acf83e7cedfe35e7
37da1ea976724d35c1c32ae18d7924192184ba32
2e90b20d4c2067ff68444790955d65d2745365cf025c486c8c2b685696faeeaa
GET /qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaTYwJYhDicnibqKbVUtzwk3vqBxlG2ZQYyjo/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sun, 08 Jan 2023 15:22:18 GMT
content-type: image/gif
content-length: 205622
vary: Accept,Origin
last-modified: Mon, 19 Dec 2022 06:54:31 GMT
cache-control: max-age=2592000
x-delay: 40608 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 205622
chid: 0
fid: 0
x-nws-log-uuid: a86873e6-70dc-4ea5-9ce6-0e3ba4cba76b
X-Firefox-Spdy: h2
kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com/960X60.gif
47.75.19.247200 OK 254 kB URL HTTP/1.1 kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com/960X60.gif
IP 47.75.19.247:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 254 kB (253519 bytes)
Hash f744e995971941b6a95fcd2636f5a545
ac9c1230e04eab9e31512d2afe440fe5f0367dc5
59b1a138fa72df587e61916179965cbd819f91aec53ce6ab606949a7e06b3063
GET /960X60.gif HTTP/1.1
Host: kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 08 Jan 2023 15:22:17 GMT
Content-Type: image/gif
Content-Length: 253519
Connection: keep-alive
x-oss-request-id: 63BADFA97E084E36371CE15C
Accept-Ranges: bytes
ETag: "F744E995971941B6A95FCD2636F5A545"
Last-Modified: Tue, 29 Nov 2022 08:27:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17987192695826819902
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: 90TplZcZQbapX80mNvWlRQ==
x-oss-server-time: 1
fmlb.netlbtu.com/images/2022/01/10/hey5224.jpg
172.247.77.90200 OK 117 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2022/01/10/hey5224.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Size 117 kB (117293 bytes)
Hash bf5f1e98fb38d8a9e7276a833d9bc039
89d0974d5d8fbac4e28c30a75f04071e95329f3e
ca73a864a52cc50cc26accd4caa2944a7ef1119233d9a5b3dd3ef08ee7f02543
GET /images/2022/01/10/hey5224.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zgnmjcw.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 117293
Last-Modified: Wed, 09 Nov 2022 11:58:00 GMT
Connection: keep-alive
ETag: "636b95c8-1ca2d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid5a4367db8dd9d.jpg
172.247.77.90200 OK 26 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5a4367db8dd9d.jpg
IP 172.247.77.90:0
File type JPEG image data, baseline, precision 8, 1024x576, components 3\012- data
Hash a042271cbced4525fcb77e4278d9a7e2
94611c822aeb17579848501758efde43e07a3752
ec6453f3458349b9686084c686bbf61d4f9c9d0c472634e4a39ec46ef3895905
GET /papa-PIC/avid5a4367db8dd9d.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:35 GMT
Content-Type: image/jpeg
Content-Length: 25949
Last-Modified: Wed, 10 Aug 2022 12:08:41 GMT
Connection: keep-alive
ETag: "62f39fc9-655d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff46c6dc4-4e33-494e-b1dd-d2da59accb42.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff46c6dc4-4e33-494e-b1dd-d2da59accb42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b9822ea0495a55cff2c979c1abf85e9
67f2888ed156e249c97ba1fe12df18c850b7c019
94c9114c3b17c2ecc5783c3da644b2cdd9eb83ae8cd705e78a99bc4d5a5e9514
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff46c6dc4-4e33-494e-b1dd-d2da59accb42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6455
x-amzn-requestid: 758a4992-bb36-41ca-8152-7b1497319108
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDxEFraIAMFYjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e66d-458a3fc7350017c32a591ee0;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QlOiSpajpHa_3AkVweQdbrfxNR1v8ehm55ar_GEH0EKiLqljmj1u5A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 22:05:53 GMT
etag: "67f2888ed156e249c97ba1fe12df18c850b7c019"
content-type: image/jpeg
age: 62186
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/kpd-pic/E9pJ3cTs.jpg
172.247.77.90200 OK 18 kB URL HTTP/1.1 sycdn.comtucdncom.com/kpd-pic/E9pJ3cTs.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 595x409, components 3\012- data
Hash 4be48970737739e0abd8f177ed97bc78
1f1ea76928c88f863e5b0ed9e81431cc8d1f0861
53ab4957bc9b6234f6412dede001c75851beeff2f49b25488f753f871ad6f345
GET /kpd-pic/E9pJ3cTs.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:35 GMT
Content-Type: image/jpeg
Content-Length: 17684
Last-Modified: Wed, 10 Aug 2022 12:08:29 GMT
Connection: keep-alive
ETag: "62f39fbd-4514"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20210905-1/b703922ad401f03c1de68e599cf5107a.jpg
45.89.209.74503 Service Temporarily Unavailable 190 B URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20210905-1/b703922ad401f03c1de68e599cf5107a.jpg
IP 45.89.209.74:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3267dd8f0e96711dd54dbb1f5676b447
202602c4ec4a5e2498e3d24a3ed025ce70bf749c
b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
GET /upload/vod/20210905-1/b703922ad401f03c1de68e599cf5107a.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Temporarily Unavailable
Server: Tengine
Date: Sun, 08 Jan 2023 23:21:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 190
Connection: keep-alive
sycdn.comtucdncom.com/upload/vod/20211125-1/5cbf380e619a0ebb7a9103ab69a6d095.jpg
172.247.77.90200 OK 557 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20211125-1/5cbf380e619a0ebb7a9103ab69a6d095.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=120, yresolution=120], baseline, precision 8, 1280x720, components 3\012- data
Size 557 kB (556919 bytes)
Hash 80652f2c46323203542af42cf929adc1
dbfd8fb1e2e9ecfce1fb3cca1f62abe540fc96fa
0aef33477371061dfd004eefa45ddad986a328c8480e5a2a58785d577163a938
GET /upload/vod/20211125-1/5cbf380e619a0ebb7a9103ab69a6d095.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 556919
Last-Modified: Wed, 10 Aug 2022 12:09:50 GMT
Connection: keep-alive
ETag: "62f3a00e-87f77"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/images/2021/12/8/heyzo4357.jpg
172.247.77.90200 OK 91 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2021/12/8/heyzo4357.jpg
IP 172.247.77.90:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x450, components 3\012- data
Hash 90cb79c7c9416a8f31e6a5987e78350a
00a4a1c61c2f512425c2c214c34dd1f01ddaeab7
b5f0ee1bb5e9e2ff93b510fc5adb930565cfb9726dcfb5ad79bca1c3f7c31c35
GET /images/2021/12/8/heyzo4357.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zgnmjcw.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 91290
Last-Modified: Wed, 09 Nov 2022 11:41:37 GMT
Connection: keep-alive
ETag: "636b91f1-1649a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201126-1/2df0f7c5f2d18c7fca32cddf956a45fb.jpg
172.247.77.90200 OK 648 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201126-1/2df0f7c5f2d18c7fca32cddf956a45fb.jpg
IP 172.247.77.90:0
File type PNG image data, 800 x 539, 8-bit/color RGBA, non-interlaced\012- data
Size 648 kB (647735 bytes)
Hash 3ef2cb75235b9921d7fa983b35299b81
1cf8a07b7a84d19cfe224570de8261d2edb6c353
3ef05f8b04db5a857692d3cf9641a6cc35897ae33927e54b2c45fa127008016e
GET /upload/vod/20201126-1/2df0f7c5f2d18c7fca32cddf956a45fb.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:34 GMT
Content-Type: image/jpeg
Content-Length: 647735
Last-Modified: Wed, 10 Aug 2022 12:11:53 GMT
Connection: keep-alive
ETag: "62f3a089-9e237"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2089647207&si=f9e76138d2ab20503b8f3bec31a4b84c&v=1.3.0&lv=1&sn=17242&r=0&ww=1280&u=http%3A%2F%2Fwww.zgnmjcw.net%2F&tt=%E4%B8%9C%E4%BA%AC%E7%83%AD%E5%8A%A0%E5%8B%92%E6%AF%94HEZYO%E9%AB%98%E6%B8%85%2C%E6%97%A0%E7%A0%81%E4%B8%AD%E6%96%87%E5%B0%91%E5%A6%87%E4%B8%B0%E6%BB%A1%E4%B8%80%E5%8C%BA%2C%E6%AC%A7%E7%BE%8EA%E7%BA%A7%E4%B8%AD%E6%96%87%E5%AE%8C%E5%9C%A8%E7%BA%BF%E7%9C%8B%E5%AE%8C%E6%95%B4%E7%89%88%2C%E5%A4%A7%E5%86%85%E5%AF%86%E6%8E%A2%E4%B9%8B%E9%9B%B6%E9%9B%B6%E6%80%A7%E6%80%A7%2C%E7%BE%8E%E5%9B%BD%E6%80%A7%E4%BC%A61980%E7%A6%81%E5%BF%8C%E7%A6%81%E5%BF%8C
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2089647207&si=f9e76138d2ab20503b8f3bec31a4b84c&v=1.3.0&lv=1&sn=17242&r=0&ww=1280&u=http%3A%2F%2Fwww.zgnmjcw.net%2F&tt=%E4%B8%9C%E4%BA%AC%E7%83%AD%E5%8A%A0%E5%8B%92%E6%AF%94HEZYO%E9%AB%98%E6%B8%85%2C%E6%97%A0%E7%A0%81%E4%B8%AD%E6%96%87%E5%B0%91%E5%A6%87%E4%B8%B0%E6%BB%A1%E4%B8%80%E5%8C%BA%2C%E6%AC%A7%E7%BE%8EA%E7%BA%A7%E4%B8%AD%E6%96%87%E5%AE%8C%E5%9C%A8%E7%BA%BF%E7%9C%8B%E5%AE%8C%E6%95%B4%E7%89%88%2C%E5%A4%A7%E5%86%85%E5%AF%86%E6%8E%A2%E4%B9%8B%E9%9B%B6%E9%9B%B6%E6%80%A7%E6%80%A7%2C%E7%BE%8E%E5%9B%BD%E6%80%A7%E4%BC%A61980%E7%A6%81%E5%BF%8C%E7%A6%81%E5%BF%8C
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2089647207&si=f9e76138d2ab20503b8f3bec31a4b84c&v=1.3.0&lv=1&sn=17242&r=0&ww=1280&u=http%3A%2F%2Fwww.zgnmjcw.net%2F&tt=%E4%B8%9C%E4%BA%AC%E7%83%AD%E5%8A%A0%E5%8B%92%E6%AF%94HEZYO%E9%AB%98%E6%B8%85%2C%E6%97%A0%E7%A0%81%E4%B8%AD%E6%96%87%E5%B0%91%E5%A6%87%E4%B8%B0%E6%BB%A1%E4%B8%80%E5%8C%BA%2C%E6%AC%A7%E7%BE%8EA%E7%BA%A7%E4%B8%AD%E6%96%87%E5%AE%8C%E5%9C%A8%E7%BA%BF%E7%9C%8B%E5%AE%8C%E6%95%B4%E7%89%88%2C%E5%A4%A7%E5%86%85%E5%AF%86%E6%8E%A2%E4%B9%8B%E9%9B%B6%E9%9B%B6%E6%80%A7%E6%80%A7%2C%E7%BE%8E%E5%9B%BD%E6%80%A7%E4%BC%A61980%E7%A6%81%E5%BF%8C%E7%A6%81%E5%BF%8C HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 08 Jan 2023 15:22:19 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=B775E459DBC1AB94; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
tpcdnde88de.com/79tp/960x60-2.gif
23.224.145.234200 OK 0 B URL HTTP/2 tpcdnde88de.com/79tp/960x60-2.gif
IP 23.224.145.234:0
GET /79tp/960x60-2.gif HTTP/1.1
Host: tpcdnde88de.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 08 Jan 2023 15:22:19 GMT
content-type: image/gif
content-length: 322376
last-modified: Sat, 25 Jun 2022 12:15:37 GMT
etag: "62b6fc69-4eb48"
expires: Sun, 05 Feb 2023 03:48:34 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
gtm-cn-j6730u6sd0b.gtm-a3b8.com/ky960x60.gif
113.1.0.71200 OK 0 B URL HTTP/1.1 gtm-cn-j6730u6sd0b.gtm-a3b8.com/ky960x60.gif
IP 113.1.0.71:0
ASN #4837 CHINA UNICOM China169 Backbone
GET /ky960x60.gif HTTP/1.1
Host: gtm-cn-j6730u6sd0b.gtm-a3b8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Etag: "4e1e4b8f46ac2e67539d5881785ba29a"
Content-Type: image/gif
Date: Thu, 05 Jan 2023 11:55:58 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 10945751995987991778
x-cos-request-id: NjNiNmJhY2VfNjk0ZmI3MDlfOGQ1Ml8yNjgwZTE0
Accept-Ranges: bytes
Last-Modified: Thu, 29 Dec 2022 12:09:17 GMT
Content-Length: 399450
X-NWS-LOG-UUID: 12674644231413928498
Connection: keep-alive
X-Cache-Lookup: Cache Hit, Hit From Inner Cluster
383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
120.77.166.67200 OK 0 B URL HTTP/1.1 383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
IP 120.77.166.67:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
GET /960x60.gif HTTP/1.1
Host: 383guanggao.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 08 Jan 2023 15:22:18 GMT
Content-Type: image/gif
Content-Length: 299398
Connection: keep-alive
x-oss-request-id: 63BADFAACC8CEC3031928D57
Accept-Ranges: bytes
ETag: "F4B7967855549E81F65598B93A43D9DB"
Last-Modified: Thu, 08 Dec 2022 07:20:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8810428828543929982
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 9LeWeFVUnoH2VZi5OkPZ2w==
x-oss-server-time: 2
img.1134555.com/images/63a7da80b5bef8e4e6408476.gif
38.54.81.125302 Found 0 B URL HTTP/2 img.1134555.com/images/63a7da80b5bef8e4e6408476.gif
IP 38.54.81.125:0
GET /images/63a7da80b5bef8e4e6408476.gif HTTP/1.1
Host: img.1134555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/upload/vod/20210301-1/c84cc2e4faefcb4ab8b4a88a3d5f4c2f.jpg
172.247.77.90200 OK 0 B URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210301-1/c84cc2e4faefcb4ab8b4a88a3d5f4c2f.jpg
IP 172.247.77.90:0
GET /upload/vod/20210301-1/c84cc2e4faefcb4ab8b4a88a3d5f4c2f.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 08 Jan 2023 15:23:35 GMT
Content-Type: image/jpeg
Content-Length: 43810
Last-Modified: Wed, 10 Aug 2022 12:11:41 GMT
Connection: keep-alive
ETag: "62f3a07d-ab22"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.9617x.com/images/636b356914dd2ea30a790fe8.gif
38.54.81.125302 Found 0 B URL HTTP/2 img.9617x.com/images/636b356914dd2ea30a790fe8.gif
IP 38.54.81.125:0
GET /images/636b356914dd2ea30a790fe8.gif HTTP/1.1
Host: img.9617x.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/b1f4270216704c0f8cc43a10401d2f97
X-Firefox-Spdy: h2
img.u1669.com/images/63523ea35fe50f0585d3ef84.gif
38.54.81.125302 Found 0 B URL HTTP/2 img.u1669.com/images/63523ea35fe50f0585d3ef84.gif
IP 38.54.81.125:0
GET /images/63523ea35fe50f0585d3ef84.gif HTTP/1.1
Host: img.u1669.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d
X-Firefox-Spdy: h2
tpcdnde88de.com/235tp/960x60.gif
23.224.145.234200 OK 0 B URL HTTP/2 tpcdnde88de.com/235tp/960x60.gif
IP 23.224.145.234:0
GET /235tp/960x60.gif HTTP/1.1
Host: tpcdnde88de.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zgnmjcw.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 08 Jan 2023 15:22:19 GMT
content-type: image/gif
content-length: 590255
last-modified: Wed, 15 Jun 2022 13:02:58 GMT
etag: "62a9d882-901af"
expires: Sun, 05 Feb 2023 03:59:43 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2