r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8997fa58a7262e8fd559d64b40511a1b
0aa1c4365c28f45e4d7a8a234fbcf51cd009e083
1580d1145f125c765e40e5983cb4bb4e2424010d2920a25ea7da992485da0dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1580D1145F125C765E40E5983CB4BB4E2424010D2920A25EA7DA992485DA0DEA"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10846
Expires: Sat, 21 Jan 2023 11:38:46 GMT
Date: Sat, 21 Jan 2023 08:38:00 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b36ef73c20dffb6bc10194bbd2d0dcfa
a67a4023dc8b4944debaeb92f3ba0f1402c079a6
05a7a4d832cf9e593ca44efea309edcbd80734583bada15fda3e740612eff991
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05A7A4D832CF9E593CA44EFEA309EDCBD80734583BADA15FDA3E740612EFF991"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2220
Expires: Sat, 21 Jan 2023 09:15:00 GMT
Date: Sat, 21 Jan 2023 08:38:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 21 Jan 2023 07:49:36 GMT
content-type: application/json
age: 2904
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 17094b856fde02b2c8c2d3845ad325cf
26dc3f2ebf81faf5ab96eb75ffcbead6085528b8
6547376c41dcaa352cc4e747291916902bcddc0032b750bd84c5e3b2fe6f7d16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6547376C41DCAA352CC4E747291916902BCDDC0032B750BD84C5E3B2FE6F7D16"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5676
Expires: Sat, 21 Jan 2023 10:12:36 GMT
Date: Sat, 21 Jan 2023 08:38:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ev/4SiisHRp2bFdgSgPYVKn94j9w55ygtkpkEKLhBAJNxXUw1kaCVW84JY1RIo0vsht+D47mNqo=
x-amz-request-id: 97CWD1SZ8QNA2A3B
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 21 Jan 2023 07:46:43 GMT
age: 3077
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:38:00 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 21 Jan 2023 08:17:29 GMT
age: 1231
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
yekye.com/
38.40.249.199301 Moved Permanently 0 B IP 38.40.249.199:0
ASN #398823 PEGTECHINC-AP-02
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: yekye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 21 Jan 2023 08:38:04 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.yekye.com/index.php
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bdb8a13dfce39d6e151a9ef185a772a1
037a680510f9dbce3c7cc3c0f9115fd587dbcd1d
98c8b7f269b9aad73b73fd946788ebfd7a4d7afbdd5347b56c67f73b947f5ff6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 193
Cache-Control: max-age=88328
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 08:38:00 GMT
Etag: "63ca59af-1d7"
Expires: Sun, 22 Jan 2023 09:10:08 GMT
Last-Modified: Fri, 20 Jan 2023 09:06:55 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.yekye.com/index.php
38.40.249.199200 OK 694 B IP 38.40.249.199:0
ASN #398823 PEGTECHINC-AP-02
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (781), with CRLF line terminators
Hash 1c6d16cd3bd5dd55e0fcb05e57267499
273cd60538dd11d9426a1af6032829a19b3405a7
c43c91c6b013eab060a5d53125207c4c5d27728afdaee3d945554fb4fa7ca9ed
GET /index.php HTTP/1.1
Host: www.yekye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 08:38:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
52.89.106.162101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.106.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: L6/G9m6lMfa8hLuDlkyzGw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: g1tkWQZ+jTCUHx+dNyAmXtuphPY=
www.yekye.com/common.js
38.40.249.199200 OK 1.1 kB IP 38.40.249.199:0
ASN #398823 PEGTECHINC-AP-02
File type HTML document, ASCII text, with very long lines (389), with CRLF line terminators
Hash e76fa239f5b91e17b93cd981eefbe2e5
bc493da2145c33b1bfd03dad664e1a3d54a800dc
cfefe4e361499d352ca75b1be29f9dda7e59f058c01e88af7424e6d6383c13c1
GET /common.js HTTP/1.1
Host: www.yekye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.yekye.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 08:38:05 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.yekye.com/tj.js
38.40.249.199200 OK 522 B IP 38.40.249.199:0
ASN #398823 PEGTECHINC-AP-02
File type ASCII text, with CRLF line terminators
Hash 0aa61ce70f9f0868c2fa374f08ed190e
e83db8f2db8da8b95c71387737828a027edb73a0
7be0dab6e011ba8a3d95d8e2d7856b06066ff357e5b1d51b2e302cc3db05348a
GET /tj.js HTTP/1.1
Host: www.yekye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.yekye.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 08:38:05 GMT
Content-Type: application/x-javascript
Content-Length: 522
Connection: keep-alive
api.share.baidu.com/s.gif?l=http://www.yekye.com/index.php
182.61.201.93200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.yekye.com/index.php
IP 182.61.201.93:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.yekye.com/index.php HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.yekye.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Sat, 21 Jan 2023 08:38:01 GMT
www.yekye.com/favicon.ico
38.40.249.199200 OK 1.2 kB URL HTTP/1.1 www.yekye.com/favicon.ico
IP 38.40.249.199:0
ASN #398823 PEGTECHINC-AP-02
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.yekye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.yekye.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 08:38:06 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Thu, 26 Jan 2023 08:38:06 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3080
Expires: Sat, 21 Jan 2023 09:29:22 GMT
Date: Sat, 21 Jan 2023 08:38:02 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3080
Expires: Sat, 21 Jan 2023 09:29:22 GMT
Date: Sat, 21 Jan 2023 08:38:02 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3080
Expires: Sat, 21 Jan 2023 09:29:22 GMT
Date: Sat, 21 Jan 2023 08:38:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cxuHpm9vR0_DvHdEtR5p5eRRNAFgCrOTnak0RsH3OeCccehhurKhJA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 01:38:03 GMT
age: 25199
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 893ea518ea7c11ec06ffea60b2ee7921
34675a13bbac6abd1b087e546425e141215cf072
675ec12ed5803fad5036cedc1a3b66229316836bb321b4ad3a34aab56a100ca7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8698
x-amzn-requestid: 97c3bd04-2d8a-447e-85cb-376ea44b283c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K85GOQIAMFbPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-5b6517906d2f8bad6488e6f8;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: reROJ7ha0LKGWpSMN0ioNVaIrIEhJUn_cfprHVZlfyY7jBoFyKh0rw==
via: 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 13:48:55 GMT
age: 67747
etag: "34675a13bbac6abd1b087e546425e141215cf072"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7e829d-d4bc-4fa0-b5e5-e4527e48fd42.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7e829d-d4bc-4fa0-b5e5-e4527e48fd42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4483cb695fef2fe82f38a65e18ea1fd7
ea95504fc5be0259c8c3a39f47f8fcb322bca88d
807a120b964ee7ec7c83c5d943d29cea5df2171291ad1b99de9ef4df7e7e9046
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7e829d-d4bc-4fa0-b5e5-e4527e48fd42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9657
x-amzn-requestid: 63c51fc8-3cd1-486b-960b-91d0d4b14dbd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exbnMFUvoAMFvYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a62d-3f30f1cb5bc13bf812d3cf71;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:07:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 34RyiiWTD7qtrgZHxL7KpjUkCETug9eJ0TvPh6b2qGiLWLcZnmT3wg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 04:42:20 GMT
age: 14142
etag: "ea95504fc5be0259c8c3a39f47f8fcb322bca88d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b5b95d-798c-4d73-bd79-8e3c092be9b0.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b5b95d-798c-4d73-bd79-8e3c092be9b0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4b8e05930ca3ed03e20300b36819b1a
90645bb11f3788a9a03ad1756de541fea594fb15
0530c3fd68291836e997842e3e4b5bbef6086e89686f786dbda059143a5a8b5d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b5b95d-798c-4d73-bd79-8e3c092be9b0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5081
x-amzn-requestid: 56788104-29ed-4ff9-b9c5-58b83e53d169
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etktlF50oAMFwNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c21b23-1dafe7e12dbeee0e3318ccdc;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 03:01:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 886cYViC-eBqAPpavmVYF0Jxqhsk8VQc8O1KPpTGM1yFpjrs-IxFVw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 11:59:42 GMT
age: 74300
etag: "90645bb11f3788a9a03ad1756de541fea594fb15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F565a8eca-40af-442b-9fe9-95e12dc0170a.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F565a8eca-40af-442b-9fe9-95e12dc0170a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa786854fde0d99189b458067b9d9418
ddf0fb650816b969d53d6e32ae31074bcb7e944e
a3d08b87658f756aa2f9e3072e87d52db30884aa6b6ab0cd8b278d0c870db2b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F565a8eca-40af-442b-9fe9-95e12dc0170a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7000
x-amzn-requestid: 05354e13-330d-40fc-9a96-ac345cfc80f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4BN9HBgoAMF9Iw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c648bf-146e89a423565a04139b19cb;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:05:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JPr1Q54hGh5TxVRUTIHXPEviHADCGwqbU5WDd7B4JubG6ZiRG1Yr4Q==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 07:28:23 GMT
age: 4179
etag: "ddf0fb650816b969d53d6e32ae31074bcb7e944e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcee2448b-66c5-48e7-89de-838393cf3f07.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcee2448b-66c5-48e7-89de-838393cf3f07.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b08ef55971faa2683ab9f2af8a11dcec
a46c748cccb714f05a068c2438181328b4fbd57a
1d073abf25fbea2d85f34076eae47f9e89502846815094f5288b8e80762a8fe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcee2448b-66c5-48e7-89de-838393cf3f07.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11562
x-amzn-requestid: 67ff0d3d-ed43-4269-92f4-c3eb5445e9c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-EyBEhzIAMFnCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8b4d9-27c6ebf6450d0e3275dad906;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 03:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8-aCSDcxTLree8fsGCxZEqY0272fNcqQEtHJ7aVAO6XjQRmjZXgqdw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 05:18:04 GMT
age: 11998
etag: "a46c748cccb714f05a068c2438181328b4fbd57a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 7a32c55b985e9fa6613ff9a5642f0199
fb5f71fa049263788e1fdb6a9b958e3beceab0cc
3c254a6475687a86dbc1f39e1794c5b245d1c4e85ae2cdf1663dcbc9027d6084
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 08:38:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 25 Jan 2023 04:48:34 GMT
ETag: "fb5f71fa049263788e1fdb6a9b958e3beceab0cc"
Last-Modified: Sat, 21 Jan 2023 04:48:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1792
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cebb3ba9f20b4d-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 33e318499ba4144c2784ccd060829ef3
7f39e7e733f5cecc23b6a62938953a3dc8cf21fc
a0dafab61adc831cd11b13d7778f5db0b3087b27d152fb0e6f63aae06c2d8dfb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0DAFAB61ADC831CD11B13D7778F5DB0B3087B27D152FB0E6F63AAE06C2D8DFB"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 21 Jan 2023 14:38:02 GMT
Date: Sat, 21 Jan 2023 08:38:02 GMT
Connection: keep-alive
www.ppmvapi111.com/news/index.html
107.148.45.217200 OK 238 B URL HTTP/2 www.ppmvapi111.com/news/index.html
IP 107.148.45.217:0
File type HTML document, Unicode text, UTF-8 text
Hash 7fc398d054c92ecc96ea732cd566d257
3735682603d9454ac67c15b5883cc9456f5fa0dd
791bfb7ac67f5a30e7ffc135d41e8799218ef8481295e27c3fa8d7d149b281d0
GET /news/index.html HTTP/1.1
Host: www.ppmvapi111.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.yekye.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:48 GMT
content-type: text/html
content-length: 238
last-modified: Wed, 18 Jan 2023 09:27:12 GMT
etag: "63c7bb70-ee"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?6b11745c24526a19b8aef5d3491f2680
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?6b11745c24526a19b8aef5d3491f2680
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 607a619ebc9236da92580d407d01ddaf
ac288ae9677f8b371e5f3e17c9d35f9895d7b6f0
1357f91df571f803a75659b4caffebd300a92d463e0a4b39e7668ebd4f076862
GET /hm.js?6b11745c24526a19b8aef5d3491f2680 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.yekye.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Sat, 21 Jan 2023 08:38:03 GMT
Etag: 60c98765a556e2b8f155ad2496e32faa
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8F7E9E95B82222C4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b0008f27cf542381f8813339f4dbfefe
2841b15a5e6ee8c87d596d26818752b4295632ea
3d846f5eb2d11f9fcc39a5f6ffdf00b7b465eb83d6c73483cc14b60a01d263df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3D846F5EB2D11F9FCC39A5F6FFDF00B7B465EB83D6C73483CC14B60A01D263DF"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17285
Expires: Sat, 21 Jan 2023 13:26:09 GMT
Date: Sat, 21 Jan 2023 08:38:04 GMT
Connection: keep-alive
hm.baidu.com/hm.js?1d17743632808b728a4c05b9d579a62a
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?1d17743632808b728a4c05b9d579a62a
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash e037a878344b07801ae4f0ffbda60612
6365a4975ad7d3f3c7aa4584a9d0f411101620fd
4001f12658377cf38dfc1d754323cca007de1c36452638c422e9c1ed3596085d
GET /hm.js?1d17743632808b728a4c05b9d579a62a HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.yekye.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Sat, 21 Jan 2023 08:38:03 GMT
Etag: feef87b5bc9b8c5eaf7153618ed0561a
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=125FCA23540957E0; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1197438427&si=6b11745c24526a19b8aef5d3491f2680&v=1.3.0&lv=1&sn=2103&r=0&ww=1280&u=http%3A%2F%2Fwww.yekye.com%2Findex.php&tt=%E5%95%86%E6%B4%9B%E7%83%82%E5%86%85%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1197438427&si=6b11745c24526a19b8aef5d3491f2680&v=1.3.0&lv=1&sn=2103&r=0&ww=1280&u=http%3A%2F%2Fwww.yekye.com%2Findex.php&tt=%E5%95%86%E6%B4%9B%E7%83%82%E5%86%85%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1197438427&si=6b11745c24526a19b8aef5d3491f2680&v=1.3.0&lv=1&sn=2103&r=0&ww=1280&u=http%3A%2F%2Fwww.yekye.com%2Findex.php&tt=%E5%95%86%E6%B4%9B%E7%83%82%E5%86%85%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.yekye.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 21 Jan 2023 08:38:04 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=C5E81096AC083101; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=739546662&si=1d17743632808b728a4c05b9d579a62a&v=1.3.0&lv=1&sn=2103&r=0&ww=1280&u=http%3A%2F%2Fwww.yekye.com%2Findex.php&tt=%E5%95%86%E6%B4%9B%E7%83%82%E5%86%85%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=739546662&si=1d17743632808b728a4c05b9d579a62a&v=1.3.0&lv=1&sn=2103&r=0&ww=1280&u=http%3A%2F%2Fwww.yekye.com%2Findex.php&tt=%E5%95%86%E6%B4%9B%E7%83%82%E5%86%85%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=739546662&si=1d17743632808b728a4c05b9d579a62a&v=1.3.0&lv=1&sn=2103&r=0&ww=1280&u=http%3A%2F%2Fwww.yekye.com%2Findex.php&tt=%E5%95%86%E6%B4%9B%E7%83%82%E5%86%85%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.yekye.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 21 Jan 2023 08:38:04 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=16E09B633631F057; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.pki.goog/s/gts1p5/LV3HDQJjOr4
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/LV3HDQJjOr4
IP 216.58.211.3:0
Hash 85e0e9ab81eea0f1332bbaf0b284e678
62b4545e747c502e09b4da4933025f7aed19dd9f
3697a436abbb4c9cba97271e9b8210d5b0441a6a3cd863b2658bd87e5b86a0d3
POST /s/gts1p5/LV3HDQJjOr4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 08:38:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fengmian.fhfhtutu.com/upload/vod/2023/01/2xsfqhzmucb.jpg
172.67.38.180200 OK 7.2 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/2xsfqhzmucb.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0c19af62408331df80a6318e1423501e
1b175c43221e57a069921f7f885bae432c618bf2
3c9e40f26af79d609a802045e12c96f75180e67a4f717ff3bae346ed30b33580
GET /upload/vod/2023/01/2xsfqhzmucb.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:04 GMT
content-type: image/webp
content-length: 7214
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8345
content-disposition: inline; filename="2xsfqhzmucb.webp"
etag: "63ca4148-2099"
last-modified: Fri, 20 Jan 2023 07:22:48 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 52
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb471b7b0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/hkhgq3gm01q.jpg
172.67.38.180200 OK 8.4 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/hkhgq3gm01q.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 40ff042efab8c1013e39f545f22320b1
25b0e7b280146bb5047de8cef1656971abccdd6a
78289fec32f9f9a72e0d412dc205602e852cf32b4daf47bfbac8af91b4a69cb4
GET /upload/vod/2023/01/hkhgq3gm01q.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:04 GMT
content-type: image/webp
content-length: 8404
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9354
content-disposition: inline; filename="hkhgq3gm01q.webp"
etag: "63ca414c-248a"
last-modified: Fri, 20 Jan 2023 07:22:52 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 52
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb471b7c0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/vm5vbqv5pve.jpg
172.67.38.180200 OK 4.8 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/vm5vbqv5pve.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ff7ed0cf8547646a06958458b7284ba3
5e742c6b472cd655d8e08a8b1ab385499f0ccc3f
8abdfa7823ef69e982d6ba62b792f385ff87478f7cabe079f649175a207b8fcf
GET /upload/vod/2023/01/vm5vbqv5pve.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:04 GMT
content-type: image/webp
content-length: 4764
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7039
content-disposition: inline; filename="vm5vbqv5pve.webp"
etag: "63ca4151-1b7f"
last-modified: Fri, 20 Jan 2023 07:22:57 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 52
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb471b7d0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/rhhgvrchj1p.jpg
172.67.38.180200 OK 15 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/rhhgvrchj1p.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 4320cb17c1f81b184dd52837751654f5
30b420b59817c5fd739fbba59baf898ce9d0b6eb
9bc10a67569538e252235028d0c736ba6ec592ee2251229b4c20ac2593f8c88a
GET /upload/vod/2023/01/rhhgvrchj1p.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:04 GMT
content-type: image/jpeg
content-length: 14732
cf-bgj: imgq:85,h2pri
cf-polished: origSize=15456, status=webp_bigger
etag: "63ca4155-3c60"
last-modified: Fri, 20 Jan 2023 07:23:01 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 52
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb471b7e0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/fk5hqrzsfsa.jpg
172.67.38.180200 OK 4.7 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/fk5hqrzsfsa.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0c80aeb82457c76af01a83d1cf5a1ebc
d171b0d72beaa00f7a8362f34fc8bb5ca1827453
a37597fcbaa52d88a08114ba2e8bd6f55fcfff86dc8d13c35c04d5dec59ec3d0
GET /upload/vod/2023/01/fk5hqrzsfsa.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:04 GMT
content-type: image/webp
content-length: 4696
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6935
content-disposition: inline; filename="fk5hqrzsfsa.webp"
etag: "63ca4159-1b17"
last-modified: Fri, 20 Jan 2023 07:23:05 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 48
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb471b800b59-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/LV3HDQJjOr4
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/LV3HDQJjOr4
IP 216.58.211.3:0
Hash 85e0e9ab81eea0f1332bbaf0b284e678
62b4545e747c502e09b4da4933025f7aed19dd9f
3697a436abbb4c9cba97271e9b8210d5b0441a6a3cd863b2658bd87e5b86a0d3
POST /s/gts1p5/LV3HDQJjOr4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 08:38:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fengmian.fhfhtutu.com/upload/vod/2023/01/qv3fk22prvy.jpg
172.67.38.180200 OK 7.3 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/qv3fk22prvy.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4b0fb0bb1b41efe8364f9b73a5243ec3
93357af46526919669f1bbdd5786955394ea7270
14e686ce6ccfe3d0a6ac05e3a2c94368bad91f8919e0a61ccabd9daad66770d7
GET /upload/vod/2023/01/qv3fk22prvy.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:04 GMT
content-type: image/webp
content-length: 7336
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8419
content-disposition: inline; filename="qv3fk22prvy.webp"
etag: "63ca415e-20e3"
last-modified: Fri, 20 Jan 2023 07:23:10 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 48
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b810b59-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/LV3HDQJjOr4
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/LV3HDQJjOr4
IP 216.58.211.3:0
Hash 85e0e9ab81eea0f1332bbaf0b284e678
62b4545e747c502e09b4da4933025f7aed19dd9f
3697a436abbb4c9cba97271e9b8210d5b0441a6a3cd863b2658bd87e5b86a0d3
POST /s/gts1p5/LV3HDQJjOr4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 08:38:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/LV3HDQJjOr4
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/LV3HDQJjOr4
IP 216.58.211.3:0
Hash 85e0e9ab81eea0f1332bbaf0b284e678
62b4545e747c502e09b4da4933025f7aed19dd9f
3697a436abbb4c9cba97271e9b8210d5b0441a6a3cd863b2658bd87e5b86a0d3
POST /s/gts1p5/LV3HDQJjOr4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 08:38:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/LV3HDQJjOr4
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/LV3HDQJjOr4
IP 216.58.211.3:0
Hash 85e0e9ab81eea0f1332bbaf0b284e678
62b4545e747c502e09b4da4933025f7aed19dd9f
3697a436abbb4c9cba97271e9b8210d5b0441a6a3cd863b2658bd87e5b86a0d3
POST /s/gts1p5/LV3HDQJjOr4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 08:38:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fengmian.fhfhtutu.com/upload/vod/2023/01/jdrvagcztrx.jpg
172.67.38.180200 OK 4.6 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/jdrvagcztrx.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7fc698ac41fbab562e4a533dba1d970a
b18d9e45a1353e285638646c79c14b2748424136
dc4c471592ade2e5625a5481bf5d3507e5c8ab12070b050dfdfcce8b62fa914b
GET /upload/vod/2023/01/jdrvagcztrx.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:04 GMT
content-type: image/webp
content-length: 4624
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6822
content-disposition: inline; filename="jdrvagcztrx.webp"
etag: "63c882b4-1aa6"
last-modified: Wed, 18 Jan 2023 23:37:24 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b840b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/bto2xmehzxl.jpg
172.67.38.180200 OK 7.3 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/bto2xmehzxl.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8191568e778be95dfccad45bb62a9e49
1481fbb0801cd5112e3b87e1ac3ddb59b7c12dc2
40181b706ebbb5d4a2fee6347cb5bbb7e7cb1b932e0e09b5ecdb5a4eb7ebe2b2
GET /upload/vod/2023/01/bto2xmehzxl.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:04 GMT
content-type: image/webp
content-length: 7282
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8409
content-disposition: inline; filename="bto2xmehzxl.webp"
etag: "63c882c4-20d9"
last-modified: Wed, 18 Jan 2023 23:37:40 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b880b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/t5nb35ro5jf.jpg
172.67.38.180200 OK 5.7 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/t5nb35ro5jf.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 78f7f8840c9cbed4727962763a9ed995
94a3b9ce1a2280757737c2d821d8b6dad694e574
9026c57c74fdfdcc2f48787c9b15b92f21c5d88c2a9e264187fbb11c74ef1f5d
GET /upload/vod/2023/01/t5nb35ro5jf.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 5670
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8012
content-disposition: inline; filename="t5nb35ro5jf.webp"
etag: "63c91f48-1f4c"
last-modified: Thu, 19 Jan 2023 10:45:28 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b900b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/nqxu4dqei5v.jpg
172.67.38.180200 OK 11 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/nqxu4dqei5v.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 328fb51261bee7e28d44c3d24d9aa1f6
169eb2dce7dd12c3291f96f89eb01a26da84ec1b
412c3b3e5d0956df32920c7b18b7b1d1135f2563c09092fc245f7631cd24daa6
GET /upload/vod/2023/01/nqxu4dqei5v.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 10684
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11415
content-disposition: inline; filename="nqxu4dqei5v.webp"
etag: "63c91f39-2c97"
last-modified: Thu, 19 Jan 2023 10:45:13 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b890b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/faxcqhl0ceh.jpg
172.67.38.180200 OK 6.3 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/faxcqhl0ceh.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffa0717d9b00874aadcf9af820810ef0
57ff361e64b7089d76b10a67e19121b90f1cda42
7781805dbe6d936a221505a9dc34fe5abf7280297fb5d38784937cd9b8baf47c
GET /upload/vod/2023/01/faxcqhl0ceh.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 6288
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8566
content-disposition: inline; filename="faxcqhl0ceh.webp"
etag: "63c882c0-2176"
last-modified: Wed, 18 Jan 2023 23:37:36 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b870b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/cqtg3cluklv.jpg
172.67.38.180200 OK 11 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/cqtg3cluklv.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 46a4124ca114f9798d7e0e3fa2ceecd1
4938a7ac97508be12bec2682063e6cdd0ccd1ac1
79fbff51b03aea5568289df90ce0d0bc8fdbddcf45f250096ad12c87432f1280
GET /upload/vod/2023/01/cqtg3cluklv.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 10778
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=12322
content-disposition: inline; filename="cqtg3cluklv.webp"
etag: "63c882ac-3022"
last-modified: Wed, 18 Jan 2023 23:37:16 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b820b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/y0dsxecnqj5.jpg
172.67.38.180200 OK 9.7 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/y0dsxecnqj5.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fb319194ad3d42f249f99a235ceab418
67483de4dfd645b2f732d83dffc0f161bb420da0
4f9a8eec0233ca089529875715574ddb5fe1b192e49387c61846e2449e3c8b7e
GET /upload/vod/2023/01/y0dsxecnqj5.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 9706
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10222
content-disposition: inline; filename="y0dsxecnqj5.webp"
etag: "63c91f3c-27ee"
last-modified: Thu, 19 Jan 2023 10:45:16 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b8a0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/kbwqofylhdy.jpg
172.67.38.180200 OK 4.5 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/kbwqofylhdy.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1028ca8eea4fc6d4f1517eebb3dcb6e0
f246071f0101f97aec016b429ff11c9f0f9c96d0
a591c554fb1c8e42ac74b563f6266792dff2471539ec3a90ccef28aff5c78126
GET /upload/vod/2023/01/kbwqofylhdy.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 4526
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6476
content-disposition: inline; filename="kbwqofylhdy.webp"
etag: "63c882b0-194c"
last-modified: Wed, 18 Jan 2023 23:37:20 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b830b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/md44valkxas.jpg
172.67.38.180200 OK 10 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/md44valkxas.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6e21da5f749d57fe4c012b71ef73bbf3
a5a4d892f86fb7b993e41a2bde10ebee4c7d01f2
49289b119c98414136fbbefc9659b8ed3765c8f5240bbea3ff675c58dbfada2f
GET /upload/vod/2023/01/md44valkxas.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 10014
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10806
content-disposition: inline; filename="md44valkxas.webp"
etag: "63c91f40-2a36"
last-modified: Thu, 19 Jan 2023 10:45:20 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b8c0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/b1315quvlld.jpg
172.67.38.180200 OK 7.3 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/b1315quvlld.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 386f1dbac0f41a55356645c97e4bd667
0228de6318b05a0a5de7a1d5e03238baf28bfec7
58bbeaa6e8ac312807d8dfb7f4390e5c9e4ac5f537ad95a09970dec6143fb9a7
GET /upload/vod/2023/01/b1315quvlld.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 7344
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8561
content-disposition: inline; filename="b1315quvlld.webp"
etag: "63c91f44-2171"
last-modified: Thu, 19 Jan 2023 10:45:24 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b8f0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/us5ui0zujky.jpg
172.67.38.180200 OK 9.6 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/us5ui0zujky.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 16e6ed17392d78e5d48e20bfa3b74394
43b8e381fc613fdf815f0f8a79a6dc5588aefde0
fe0a148f333f1e8ec0e7a35d3b0a7da3b95814e0915a271d2fe9de887a030996
GET /upload/vod/2023/01/us5ui0zujky.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 9607
cf-bgj: imgq:85,h2pri
cf-polished: origSize=10012, status=webp_bigger
etag: "63c882b8-271c"
last-modified: Wed, 18 Jan 2023 23:37:28 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb472b850b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/4w5fzrrfehr.jpg
172.67.38.180200 OK 6.2 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/4w5fzrrfehr.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d1f6a48326cbe57acd827b4cf7e07ad1
9b4abec1f6b667b28f18d0bc3644bf54cb4fbab6
1327f4b6bc416e6b6d247729f6730c93fdc621f5727d84344db4e942e2361425
GET /upload/vod/2023/01/4w5fzrrfehr.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 6244
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8500
content-disposition: inline; filename="4w5fzrrfehr.webp"
etag: "63ca441e-2134"
last-modified: Fri, 20 Jan 2023 07:34:54 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb473b9f0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/cs42abyckow.jpg
172.67.38.180200 OK 9.0 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/cs42abyckow.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 7115f7963a344b3f193a5c0b7a69f507
bb1038e90f4d8f4fd864884be07509b6dcb08ef8
db4be25a54d0bae46076f11cb988285415a32033c7a823d17dfa3ce49b6bfa33
GET /upload/vod/2023/01/cs42abyckow.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 8978
cf-bgj: imgq:85,h2pri
cf-polished: origSize=9489, status=webp_bigger
etag: "63ca4413-2511"
last-modified: Fri, 20 Jan 2023 07:34:43 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb473b990b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/sr3xb40acx0.jpg
172.67.38.180200 OK 6.4 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/sr3xb40acx0.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 697fba3247f7cf687bfc21ef21299265
7b4e1f2345f69f89f534f3ec6a0a82ebc41560ad
afadade6a9244f7f664e12b3741824394acc945886b5f0702d175643f2f0697e
GET /upload/vod/2023/01/sr3xb40acx0.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 6374
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7848
content-disposition: inline; filename="sr3xb40acx0.webp"
etag: "63c882bc-1ea8"
last-modified: Wed, 18 Jan 2023 23:37:32 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b860b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/qlfimo35nmg.jpg
172.67.38.180200 OK 7.5 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/qlfimo35nmg.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e0ab8d5e5de55922edee7e61a35cd115
1c20aacfeffdc9208ad24f35a17e9315a8052e36
44fedf7abe1560af4eb52b4a2ad868ff629198b39bd68e187292389f95b0f35b
GET /upload/vod/2023/01/qlfimo35nmg.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 7530
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8353
content-disposition: inline; filename="qlfimo35nmg.webp"
etag: "63c91f51-20a1"
last-modified: Thu, 19 Jan 2023 10:45:37 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b970b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/unsfatgigwz.jpg
172.67.38.180200 OK 9.9 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/unsfatgigwz.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9184b6593d054bc2c2dd4001b9920395
e835fe4f42f06190f14cefc46b81202ae7d1d9b9
a809e6ae4daf5b2b78c9003de9d8138957f739722b18c76b430e5aa61cbe3484
GET /upload/vod/2023/01/unsfatgigwz.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 9932
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11215
content-disposition: inline; filename="unsfatgigwz.webp"
etag: "63ca440f-2bcf"
last-modified: Fri, 20 Jan 2023 07:34:39 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb473b980b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/1cer11kcuk0.jpg
172.67.38.180200 OK 12 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/1cer11kcuk0.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash fe7b1d99b0bb8412b8a276c756308ecc
c8c72961cdc41feebf91b444e52c0e04ed3fbf98
df0a02c6e05b8f3f221ea0c05506e6182655505575b09cee818c9abf7ac64a0c
GET /upload/vod/2023/01/1cer11kcuk0.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 11850
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12542, status=webp_bigger
etag: "63ca441b-30fe"
last-modified: Fri, 20 Jan 2023 07:34:51 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb473b9c0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/jf4xwnuuejm.jpg
172.67.38.180200 OK 8.5 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/jf4xwnuuejm.jpg
IP 172.67.38.180:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 789e662ea19f7459276aecf9a4eba6c9
8ffce7594a3d640fedd70c7eb123e858cbc3a590
dc31832f131aec5da86ac9266ca923f01d55b5888f442ee62150b36715692ac3
GET /upload/vod/2023/01/jf4xwnuuejm.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/webp
content-length: 8504
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9627
content-disposition: inline; filename="jf4xwnuuejm.webp"
etag: "63c91f4c-259b"
last-modified: Thu, 19 Jan 2023 10:45:32 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78cebb472b930b59-OSL
X-Firefox-Spdy: h2
www.ppmv025.xyz/static/images/1.gif
107.148.45.244200 OK 254 B URL HTTP/2 www.ppmv025.xyz/static/images/1.gif
IP 107.148.45.244:0
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /static/images/1.gif HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:49 GMT
content-type: image/gif
content-length: 254
last-modified: Tue, 15 Nov 2022 08:35:43 GMT
etag: "63734f5f-fe"
expires: Mon, 20 Feb 2023 08:37:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2020/07/5turcdgg5k0.jpg
172.67.38.180200 OK 8.4 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2020/07/5turcdgg5k0.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash aceff5a99202a6a9f43467ea266007ca
df1293cd626f70ab09b399940c9f47402e7be0d4
8d8e0a7a0d0b3c15918400b40424519f451f7ac92c82de977962e88db4e70696
GET /upload/vod/2020/07/5turcdgg5k0.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 8355
last-modified: Sun, 12 Jul 2020 02:49:05 GMT
etag: "5f0a7a21-20a3"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb471b780b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2020/07/lyolkvebqwi.jpg
172.67.38.180200 OK 8.7 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2020/07/lyolkvebqwi.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 0f69aab1e935788c96677c184cb77f63
3601ee69961cc74419eba9ddff77cd90ccc29d93
64d2ec8facc7f6f58d32952eb60390fd3ef6ec7539b4c94df4008e333d4cb376
GET /upload/vod/2020/07/lyolkvebqwi.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 8673
last-modified: Sun, 12 Jul 2020 02:48:58 GMT
etag: "5f0a7a1a-21e1"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb471b740b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/1era5spudbg.jpg
172.67.38.180200 OK 8.5 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/1era5spudbg.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash fde8202a44a3b6a86a5d840c72979c96
6a4c5d5abfe21a401e3ee4f17fe27a95beec6e62
4457f7b366864a2786139c0508d5453729733e72dac34e401d183033368d0891
GET /upload/vod/2023/01/1era5spudbg.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 8500
last-modified: Fri, 20 Jan 2023 07:34:58 GMT
etag: "63ca4422-2134"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb473ba00b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/keglsn1sr1u.jpg
172.67.38.180200 OK 11 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/keglsn1sr1u.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4cb74c8ed458ea3ad3bf9ef7dddc9823
c72aa9d62e48841d35b1442fdfac86ac3c7c1dca
faa6c4caff3632ee61795ca0ffcfcba2cfbecbf3ce40ea1a19ddbe58b6a67a50
GET /upload/vod/2023/01/keglsn1sr1u.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 10720
last-modified: Fri, 20 Jan 2023 07:34:46 GMT
etag: "63ca4416-29e0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb473b9b0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2020/07/fcvpkhvwdhz.jpg
172.67.38.180200 OK 9.3 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2020/07/fcvpkhvwdhz.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f2167e61853a4710a23db048278e6115
812e2069cd77bc23c64ef26999ef133ab71f01b8
3320e826846f4b5ad58e195f0561cc2543495897bc895bff92f980b430578afe
GET /upload/vod/2020/07/fcvpkhvwdhz.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 9330
last-modified: Sun, 12 Jul 2020 02:49:06 GMT
etag: "5f0a7a22-2472"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb471b790b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/wsr3hedyid5.jpg
172.67.38.180200 OK 7.4 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/wsr3hedyid5.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash abb3800ab858c107d5b41120180255ea
c0f30292f288634f44f5d0235718df3f02bb052f
9a701658d693b82ab8106204582e0abb7e50541264831c63e24c6f7ef21cf7ef
GET /upload/vod/2023/01/wsr3hedyid5.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 7425
last-modified: Fri, 20 Jan 2023 07:35:02 GMT
etag: "63ca4426-1d01"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb473ba20b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2020/07/rlbpaloaswp.jpg
172.67.38.180200 OK 13 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2020/07/rlbpaloaswp.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 99e9c9b81738e07edc2010fc2aa4a019
ce508a5b8f3c7d9e59d50087ccd7a219415391d9
dcb0280235784adcc1e56c76017c42630ee7b0aad434c433ed0a6fcb210068c1
GET /upload/vod/2020/07/rlbpaloaswp.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 12567
last-modified: Sun, 12 Jul 2020 02:49:08 GMT
etag: "5f0a7a24-3117"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb471b7a0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2020/07/wtyrnpu5uv5.jpg
172.67.38.180200 OK 13 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2020/07/wtyrnpu5uv5.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6b6c41c79cc2e61424b0dd596941acd3
e805d5e92f571f421258ab801c55816d8615b4ea
57d0cc99b4cebaed682c0cb5ea8ec25ff81cf2f7ca8438535cad23ac13eba52b
GET /upload/vod/2020/07/wtyrnpu5uv5.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 12964
last-modified: Sun, 12 Jul 2020 02:48:57 GMT
etag: "5f0a7a19-32a4"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb475bb00b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2020/07/a0cjl0gkxcm.jpg
172.67.38.180200 OK 11 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2020/07/a0cjl0gkxcm.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 45b9bd3a2b07474ba2b699840c575e9b
c41c81697cd4b511f48165f53fd1632e80aded1f
4b006d03ecadca0cf177418475a96d1804b22f40f422bace303abb36bda42108
GET /upload/vod/2020/07/a0cjl0gkxcm.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 10987
last-modified: Sun, 12 Jul 2020 02:49:02 GMT
etag: "5f0a7a1e-2aeb"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb475baf0b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2020/07/pqomcdqdo2i.jpg
172.67.38.180200 OK 13 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2020/07/pqomcdqdo2i.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3fc28239e94e71e34ed959bee2420af9
2c993290cafc3eba103817dbcb6b1784252fffd2
7a0826042100251a4f875f1d6669b5eb6a30bf89ffef59788154b1dca01d68d7
GET /upload/vod/2020/07/pqomcdqdo2i.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 13105
last-modified: Sun, 12 Jul 2020 02:47:11 GMT
etag: "5f0a79af-3331"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb477bc20b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2020/07/bsgtm0xkkxj.jpg
172.67.38.180200 OK 13 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2020/07/bsgtm0xkkxj.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3e3a2a2bf2a729825f254aca61e06c47
ffc7195771876ffb689a5ab06b9fc5be48c2318c
10dbbea23c0b554532d803e2c8ebcd6ce1f24f9b1ae500ba464475bebc7d7073
GET /upload/vod/2020/07/bsgtm0xkkxj.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 12736
last-modified: Sun, 12 Jul 2020 02:48:58 GMT
etag: "5f0a7a1a-31c0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb473ba50b59-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2020/07/vwb0fefxm3i.jpg
172.67.38.180200 OK 10 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2020/07/vwb0fefxm3i.jpg
IP 172.67.38.180:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5d67be198db416d7eb1dabc4339b1272
ffc49e4fde69a14ee9ddda51783131436be34cc1
cca98a5c0b2d689000761ed2b135d82682bd317c1dab1e10c5898e87ecf4ada2
GET /upload/vod/2020/07/vwb0fefxm3i.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:05 GMT
content-type: image/jpeg
content-length: 10375
last-modified: Sun, 12 Jul 2020 02:48:59 GMT
etag: "5f0a7a1b-2887"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78cebb473ba30b59-OSL
X-Firefox-Spdy: h2
www.ppmv025.xyz/js/top.js?adv=0.043163361466963535
107.148.45.244200 OK 588 B URL HTTP/2 www.ppmv025.xyz/js/top.js?adv=0.043163361466963535
IP 107.148.45.244:0
File type HTML document, Unicode text, UTF-8 text
Hash add2d43fff1c9780af62656ec0de51f9
64adda4327ef9df8a60df4e760c19089370dc028
eb83c04e1e660929de5d79020e70557b8bb2e7783d100e72faa7ce2e3aff45e6
GET /js/top.js?adv=0.043163361466963535 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:50 GMT
content-type: application/javascript
content-length: 588
last-modified: Sat, 31 Dec 2022 06:13:26 GMT
etag: "63afd306-24c"
expires: Sat, 21 Jan 2023 20:37:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0106a12000ae39u64C577.gif?proc=autoorient
104.110.17.24200 OK 408 kB URL HTTP/2 dimg04.c-ctrip.com/images/0106a12000ae39u64C577.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 408 kB (407956 bytes)
Hash 456052cfab11e5c1230c2b8b07b28937
b04dc3234615beefb7c12b1788be71b1f61f10a3
a9495c045c83eae51ff9edee2d31d707218b5542946d2466c4d8d806f323324e
GET /images/0106a12000ae39u64C577.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 407956
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=6565966
expires: Fri, 07 Apr 2023 08:30:52 GMT
date: Sat, 21 Jan 2023 08:38:06 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
www.ppmv025.xyz/template/m1938pc/css/ate.css
107.148.45.244200 OK 7.2 kB URL HTTP/2 www.ppmv025.xyz/template/m1938pc/css/ate.css
IP 107.148.45.244:0
Hash 6c6c507000ab9f393c5bd8d0c733c719
bbe91bf5e72878c17fe458497dbf307e0d8ae849
0d91b19c076b3e01f57b8837637c2c422d0dc7cd2c574439a4b8b0210cb33c83
GET /template/m1938pc/css/ate.css HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:49 GMT
content-type: text/css
last-modified: Tue, 04 Jan 2022 15:13:26 GMT
vary: Accept-Encoding
etag: W/"61d46416-126e4"
expires: Sat, 21 Jan 2023 20:37:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.ppmv025.xyz/js/xx1.js?adv=0.7253794695862663
107.148.45.244200 OK 1.4 kB URL HTTP/2 www.ppmv025.xyz/js/xx1.js?adv=0.7253794695862663
IP 107.148.45.244:0
Hash 8a2141a7b68866b23298b924d05349fb
05ef0303e0349ad34d398da79682596537e0ed3a
3bb616c85e36bf2d33ba54b9be4235f64e763dce19f18dfa534e6241d69f7c47
GET /js/xx1.js?adv=0.7253794695862663 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:50 GMT
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 13:56:31 GMT
vary: Accept-Encoding
etag: W/"63c0118f-f79"
expires: Sat, 21 Jan 2023 20:37:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.ppmv025.xyz/template/m1938pc/images/video-mask.png
107.148.45.244200 OK 107 B URL HTTP/2 www.ppmv025.xyz/template/m1938pc/images/video-mask.png
IP 107.148.45.244:0
File type PNG image data, 1 x 46, 8-bit gray+alpha, non-interlaced\012- data
Hash 6a5ee87ff75437cb480df839f36004fd
eac66370f99601cb7febef320c9540d4593cd856
c9b6925bdd64dab63151c3106347fefb8c500d87ac3d87d9a82e9a1c561233aa
GET /template/m1938pc/images/video-mask.png HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:52 GMT
content-type: image/png
content-length: 107
last-modified: Tue, 04 Jan 2022 15:14:24 GMT
etag: "61d46450-6b"
expires: Mon, 20 Feb 2023 08:37:52 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv025.xyz/template/m1938pc/images/video-play.png
107.148.45.244200 OK 1.6 kB URL HTTP/2 www.ppmv025.xyz/template/m1938pc/images/video-play.png
IP 107.148.45.244:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/m1938pc/images/video-play.png HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:52 GMT
content-type: image/png
content-length: 1567
last-modified: Tue, 04 Jan 2022 15:14:22 GMT
etag: "61d4644e-61f"
expires: Mon, 20 Feb 2023 08:37:52 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv025.xyz/js/250/1.js?adv=0.09750513437635944
107.148.45.244200 OK 948 B URL HTTP/2 www.ppmv025.xyz/js/250/1.js?adv=0.09750513437635944
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (355)
Hash 494dd5f806d626fe98bf1807ff7534fe
066140a0274bbe3e57c2681b79fcd40aeaed7909
74b855f6342804cfc93e683252e5d820748d692ca91c6139312a1c1e2fc67ef8
GET /js/250/1.js?adv=0.09750513437635944 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:52 GMT
content-type: application/javascript
content-length: 948
last-modified: Sun, 01 Jan 2023 07:12:06 GMT
etag: "63b13246-3b4"
expires: Sat, 21 Jan 2023 20:37:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 9b055431072e5f3d4f34ce455ae62668
6c8cb3dc22a211088f052f62bf6324ec285a4ac4
4293c1802702ddc85264f039caf1f889d261e1c68a6efd12bdb503716a4b4eb3
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 08:38:07 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 08:13:22 GMT
Expires: Wed, 25 Jan 2023 08:13:21 GMT
Etag: "6c8cb3dc22a211088f052f62bf6324ec285a4ac4"
Cache-Control: max-age=343513,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cebb55df20b512-OSL
sv1.stor.petaexpress.com/dfegfegeg/1.jpg
199.180.101.116200 OK 14 kB URL HTTP/1.1 sv1.stor.petaexpress.com/dfegfegeg/1.jpg
IP 199.180.101.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 650x96, components 3\012- data
Hash db2dbdc216703ec86bc6d75d652e7007
a2610252e80c359f3026f6bf3b744c23c3d4cb98
48dc2e5f86c223bdcfdf820eeb1ddef2840c9789dabd79ef2cf8bd67b0f22eb8
GET /dfegfegeg/1.jpg HTTP/1.1
Host: sv1.stor.petaexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 08:38:06 GMT
Content-Type: image/jpeg
Content-Length: 14485
Connection: keep-alive
Accept-Ranges: bytes
Etag: "db2dbdc216703ec86bc6d75d652e7007"
Last-Modified: Fri, 23 Dec 2022 09:12:12 GMT
x-qs-request-id: 9ede7042147ceee1
x-qs-storage-class: STANDARD
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 650c64ade3153f22b3b0884b7331671b
998b857d4c66bc4d1e44df0de7227579818e1e9c
d060c34774631a8bc864250313c9a7a8c1d4dc2880502a229a8a2f2c57af5080
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D060C34774631A8BC864250313C9A7A8C1D4DC2880502A229A8A2F2C57AF5080"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21577
Expires: Sat, 21 Jan 2023 14:37:44 GMT
Date: Sat, 21 Jan 2023 08:38:07 GMT
Connection: keep-alive
www.ppmv025.xyz/js/250/2.js?adv=0.8025418547978111
107.148.45.244200 OK 532 B URL HTTP/2 www.ppmv025.xyz/js/250/2.js?adv=0.8025418547978111
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (382)
Hash 06b1ee73f663b814b7d1acd3b01ec79f
6b5bdadc6d66e9fdcb8b9b8dc5ea1a0deb4dbb56
854e5c909093d5ab6e0c91203af3ed6021d249b3d5e2eed417ef0b132ec694c3
GET /js/250/2.js?adv=0.8025418547978111 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:52 GMT
content-type: application/javascript
content-length: 532
last-modified: Sat, 19 Nov 2022 10:19:26 GMT
etag: "6378adae-214"
expires: Sat, 21 Jan 2023 20:37:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/P7Q7skpuqPQ
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/P7Q7skpuqPQ
IP 216.58.211.3:0
Hash c65aaf50989156f953ffa2b1d2bc2752
4b872be81e767d2c3d778043de68ebc1b7a9841f
3734c68513edb74cc93372ca78108f9cbbcb58d268b84cd53ceb8c578ac34f2c
POST /s/gts1p5/P7Q7skpuqPQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 08:38:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7822b03197bc98d593e9f78bdcb7a9da
7b6fd92d0ff07aea39117686ca71367ae94bf79a
1238faaac140976674ba76f148291f288a0d8e465e5eae692fc4a99cdd5500e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1238FAAAC140976674BA76F148291F288A0D8E465E5EAE692FC4A99CDD5500E6"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21545
Expires: Sat, 21 Jan 2023 14:37:12 GMT
Date: Sat, 21 Jan 2023 08:38:07 GMT
Connection: keep-alive
www.ppmv025.xyz/js/250.js?adv=0.6774832491976512
107.148.45.244200 OK 28 kB URL HTTP/2 www.ppmv025.xyz/js/250.js?adv=0.6774832491976512
IP 107.148.45.244:0
Hash 8480ce0821e890a64e56ae329d640523
dc9868b1f5e5965cf741240dc72a74568c52f94a
c9340aafd3fe17b65d41f0ccc428482db137456881c4b293abcc41af37704bdf
GET /js/250.js?adv=0.6774832491976512 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:51 GMT
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 12:11:59 GMT
vary: Accept-Encoding
etag: W/"63bff90f-e53"
expires: Sat, 21 Jan 2023 20:37:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 8858ea1d6e06cbdd15b88a506e32987b
d41c026698afd9a8a2b3985c9544fd7a53413373
7cb5a7538e20579284947ffb68338570a8570561f14cf8d1bc34ac779e689b77
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 08:38:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 25 Jan 2023 05:11:06 GMT
ETag: "d41c026698afd9a8a2b3985c9544fd7a53413373"
Last-Modified: Sat, 21 Jan 2023 05:11:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2193
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cebb5849ddb512-OSL
www.ppmv025.xyz/js/250/3.js?adv=0.4789442469240055
107.148.45.244200 OK 486 B URL HTTP/2 www.ppmv025.xyz/js/250/3.js?adv=0.4789442469240055
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (369)
Hash 4ce206cd22ea1ac05c3d229b392d2896
a8ca9dd8fb48bce78ccb44933d0c722401419fb3
c03b31145986256c54d4bcbfc2a0de7d1c5592b4ffb0517311bd0228ea4e39d9
GET /js/250/3.js?adv=0.4789442469240055 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:52 GMT
content-type: application/javascript
content-length: 486
last-modified: Sat, 19 Nov 2022 10:19:33 GMT
etag: "6378adb5-1e6"
expires: Sat, 21 Jan 2023 20:37:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
587tuchuang.com/587z80.gif
183.255.106.38200 OK 139 kB URL HTTP/1.1 587tuchuang.com/587z80.gif
IP 183.255.106.38:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 139 kB (139025 bytes)
Hash 4751af930c8c7b33a61958356ca554f0
c0cfc5b499211aa4f43c5815630738d36013c1aa
68f1f41464e84af0d6078d951d3a3f479e6865bb641a6eed4ba969bb7067bb18
GET /587z80.gif HTTP/1.1
Host: 587tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 08:38:06 GMT
Content-Type: image/gif
Content-Length: 139025
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:30:32 GMT
ETag: "63a30a78-21f11"
Expires: Sun, 05 Feb 2023 16:23:39 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 1f79ebef9ba17d6467f877cac8977980
bd913db540826aa7ad4e732df206af49d79aaf14
634fd1e3eb6cbffddd934bef1a39319fee5d9fe34e490bf7f1fde8cdee13fae5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 08:38:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 08:47:58 GMT
Expires: Fri, 27 Jan 2023 08:47:57 GMT
Etag: "bd913db540826aa7ad4e732df206af49d79aaf14"
Cache-Control: max-age=518389,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cebb58a8f01c12-OSL
xinchacha2dv.ocsp-certum.com/
95.101.10.107200 OK 1.5 kB URL HTTP/1.1 xinchacha2dv.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash 55c47fda533be1950402a56508723eaa
9a4cc70eb440c8b396838c0986425dbb97554833
c55f08211b789b34e11fce3b43d236a35e85f735dd6857cee2d85d3b66a291c9
POST / HTTP/1.1
Host: xinchacha2dv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1538
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=445
Date: Sat, 21 Jan 2023 08:38:07 GMT
Connection: keep-alive
X-N: S
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash ac38bfb2d6c13f67febd75b622a78355
541fb7c0aa6128a1923cdb1c501da691a19e3d98
8df93dbce861b90f04cf34c5d26904fa748a23efa8f181c0dc502108fd7e3a5f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 08:38:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 22:05:43 GMT
Expires: Tue, 24 Jan 2023 22:05:42 GMT
Etag: "541fb7c0aa6128a1923cdb1c501da691a19e3d98"
Cache-Control: max-age=307054,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cebb58cfbeb527-OSL
www.ppmv025.xyz/js/xx3.js?adv=0.6399750998201991
107.148.45.244200 OK 360 B URL HTTP/2 www.ppmv025.xyz/js/xx3.js?adv=0.6399750998201991
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3e24852309978d1690e8c4809f989280
f590486d685ac8d4d2eba4f5fe1f3bf0beb723e7
a503f4a1ccd24a5e31dbfbbf18825476012481b775f1606f01275c0af15d1e58
GET /js/xx3.js?adv=0.6399750998201991 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:52 GMT
content-type: application/javascript
content-length: 360
last-modified: Sat, 19 Nov 2022 10:18:53 GMT
etag: "6378ad8d-168"
expires: Sat, 21 Jan 2023 20:37:52 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv025.xyz/js/250/4.js?adv=0.20765984432870865
107.148.45.244200 OK 486 B URL HTTP/2 www.ppmv025.xyz/js/250/4.js?adv=0.20765984432870865
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (369)
Hash 4ce206cd22ea1ac05c3d229b392d2896
a8ca9dd8fb48bce78ccb44933d0c722401419fb3
c03b31145986256c54d4bcbfc2a0de7d1c5592b4ffb0517311bd0228ea4e39d9
GET /js/250/4.js?adv=0.20765984432870865 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:53 GMT
content-type: application/javascript
content-length: 486
last-modified: Sat, 19 Nov 2022 10:19:41 GMT
etag: "6378adbd-1e6"
expires: Sat, 21 Jan 2023 20:37:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
8499483.com/8499/zzxx/960x100.gif
23.224.101.34200 OK 479 kB URL HTTP/2 8499483.com/8499/zzxx/960x100.gif
IP 23.224.101.34:0
File type GIF image data, version 89a, 960 x 100\012- data
Size 479 kB (479036 bytes)
Hash f586fcd7d6a54725a2d0d26355f16a06
338916b44a69b6820f8b741d0c47e68830e6234a
af1a7ed89fa356285f747cd80c8d7d33b980066a02051706c41083edd567414d
GET /8499/zzxx/960x100.gif HTTP/1.1
Host: 8499483.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:07 GMT
content-type: image/gif
content-length: 479036
last-modified: Sat, 24 Dec 2022 13:23:32 GMT
etag: "74f3c-5f092cf09552f"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv025.xyz/js/250/5.js?adv=0.8020359750089721
107.148.45.244200 OK 429 B URL HTTP/2 www.ppmv025.xyz/js/250/5.js?adv=0.8020359750089721
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (345)
Hash b091ecd1c842b0f03f7c9898274a3bf9
4cfd13aebfcf6101c639e255b252a4993056b2d6
5fc0828eaba80bdde4e6d053fbe4007fa3b5a3400e82e43f0e08033998fad7a4
GET /js/250/5.js?adv=0.8020359750089721 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:53 GMT
content-type: application/javascript
content-length: 429
last-modified: Sat, 19 Nov 2022 10:19:48 GMT
etag: "6378adc4-1ad"
expires: Sat, 21 Jan 2023 20:37:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0101c120009texk0w2379.gif?proc=autoorient
104.110.17.24200 OK 1 B URL HTTP/2 dimg04.c-ctrip.com/images/0101c120009texk0w2379.gif?proc=autoorient
IP 104.110.17.24:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
GET /images/0101c120009texk0w2379.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 1
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=3262295
expires: Tue, 28 Feb 2023 02:49:43 GMT
date: Sat, 21 Jan 2023 08:38:08 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
taiwtp1.com/xin/96080.gif
220.128.218.220200 OK 122 kB URL HTTP/2 taiwtp1.com/xin/96080.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 960 x 80\012- data
Size 122 kB (122193 bytes)
Hash 4293cc73ff1bcc11cfb9a5582a08c8f5
a3307ecff7a2be9d0740c530d6325ff1ed355b8c
ee86f9a233f1b754a8c67ec8b9120f4c5b4df290396ca690d41d54e5b2d528b5
GET /xin/96080.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:31:14 GMT
content-type: image/gif
content-length: 122193
last-modified: Thu, 20 Oct 2022 07:11:02 GMT
etag: "6350f486-1dd51"
expires: Mon, 20 Feb 2023 08:31:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ldbbs.ldmnq.com/bbs/topic/images/2022-12/fe8be621-0064-4f6b-a049-12a9383fb388.gif
218.12.76.168200 OK 118 kB URL HTTP/1.1 ldbbs.ldmnq.com/bbs/topic/images/2022-12/fe8be621-0064-4f6b-a049-12a9383fb388.gif
IP 218.12.76.168:0
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 960 x 60\012- data
Size 118 kB (118121 bytes)
Hash caaa592fad00ee9d8db810c6fdf0741d
90c218822bb4e8237f8d7ba5ddf73e63ce80fd13
d8307cc1c162ce82416d8dcc966b31fbe2e6834c0e7eaecf021a98baf1a16083
GET /bbs/topic/images/2022-12/fe8be621-0064-4f6b-a049-12a9383fb388.gif HTTP/1.1
Host: ldbbs.ldmnq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 08:38:07 GMT
Content-Type: image/gif
Content-Length: 118121
Connection: keep-alive
Server: openresty
Age: 1070009
CloudServiceDiscount: CDN
Content-Encoding: utf-8
ETag: "caaa592fad00ee9d8db810c6fdf0741d"
Last-Modified: Wed, 21 Dec 2022 06:06:06 GMT
X-CCDN-CacheTTL: 2592000
nginx-hit: 1
via: CHN-HEshijiazhuang-AREACUCC1-CACHE23[4],CHN-HEshijiazhuang-AREACUCC1-CACHE45[0,TCP_HIT,2],CHN-TJ-GLOBAL1-CACHE113[4],CHN-TJ-GLOBAL1-CACHE7[0,TCP_HIT,3]
x-amz-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCTyHQVjTG8D2o6c582FA8t4+ZByaQ0HW
x-amz-request-id: 00000185334A066E90100F774C8E3CB5
x-amz-storage-class: STANDARD_IA
x-hcs-proxy-type: 1
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Accept-Ranges: bytes
www.ppmv025.xyz/template/m1938pc/css/zui.css
107.148.45.244200 OK 273 kB URL HTTP/2 www.ppmv025.xyz/template/m1938pc/css/zui.css
IP 107.148.45.244:0
Size 273 kB (273128 bytes)
Hash 459b421d88d0a3e14bbbf30a0b8af040
0458d0d55631041f585219e11253c5f94083b5e4
468fc2abc6ce3129ae4a693f0b55390ba372e43c9cdd416d665e8f43ec43ccf3
GET /template/m1938pc/css/zui.css HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:49 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 12:08:14 GMT
vary: Accept-Encoding
etag: W/"6370de2e-15b6c"
expires: Sat, 21 Jan 2023 20:37:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
99883aaa.com/c0aaf969549441f3bca72296bf90ec44.gif
45.61.212.124200 OK 245 kB URL HTTP/1.1 99883aaa.com/c0aaf969549441f3bca72296bf90ec44.gif
IP 45.61.212.124:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 245 kB (244932 bytes)
Hash 433a6acbee7487fdfe64b06f5ab6c7a4
f69ed0f48baa9067b3657c02ab44ad80b10d6c09
54613a2d466fdfafeda33bfcb6726d2d3dbba765da415b603d471bfc77968ee7
GET /c0aaf969549441f3bca72296bf90ec44.gif HTTP/1.1
Host: 99883aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63a2e912-3bcc4"
Date: Wed, 21 Dec 2022 11:38:07 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 21 Dec 2022 11:08:02 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-24
Content-Length: 244932
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 656258ccfabc053cb25895191e74aa0f
4f65525540cf897bde40c44897da42990beea5a6
ebc6e76f634190585e8693ede76790e7f8b3f278fd29078dcc90295967a10071
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 21 Jan 2023 08:38:08 GMT
Ali-Swift-Global-Savetime: 1674290288
Via: cache26.l2de2[3,3,200-0,M], cache26.l2de2[4,0], cache7.se1[26,26,200-0,M], cache7.se1[28,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 21 Jan 2023 08:38:08 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9b16742902883915640e
si1.go2yd.com/get-image/0xmAGT9KS9C
163.171.140.79200 OK 118 kB URL HTTP/2 si1.go2yd.com/get-image/0xmAGT9KS9C
IP 163.171.140.79:0
ASN #54994 QUANTILNETWORKS
File type GIF image data, version 89a, 640 x 200\012- data
Size 118 kB (117593 bytes)
Hash c4caa37b717580e8594587f32ca86470
a645ec82581a0b18f67444b62a062059adf78aa6
208bafb1df6fa8b7929896b30415514e2dc59312332ec26aff058767fa81f269
GET /get-image/0xmAGT9KS9C HTTP/1.1
Host: si1.go2yd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:08 GMT
content-type: image/gif
content-length: 117593
server: Tengine
x-application-context: application
x-kss-request-id: 9a211df897c146b99866a236ff549e2f
etag: "c4caa37b717580e8594587f32ca86470"
content-md5: xMqje3F1gOhZRYfzLKhkcA==
last-modified: Thu, 10 Feb 2022 15:30:06 GMT
accept-ranges: bytes
age: 1
x-via: 1.1 PSbjwjBGP2ih137:4 (Cdn Cache Server V2.0), 1.1 PSzjnbsxkx232:7 (Cdn Cache Server V2.0), 1.1 tb118:13 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1cc96:12 (Cdn Cache Server V2.0)
x-ws-request-id: 63cba470_PShlamstdAMS1wt94_14425-1286
access-control-allow-origin: *
ws-s2h-acc-level: 1
X-Firefox-Spdy: h2
www.ppmv025.xyz/js/250/6.js?adv=0.5562694276631445
107.148.45.244200 OK 454 B URL HTTP/2 www.ppmv025.xyz/js/250/6.js?adv=0.5562694276631445
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (366)
Hash fb969bfaceb99f1da30a8eeef7ef3f9c
d30202994b3fbd393bfa93cea12ddc7cf445ac0a
befa9bb57dc5ce8dce7d72153b95becb0b1408e127d7d4ccfe122da80928a2e6
GET /js/250/6.js?adv=0.5562694276631445 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:53 GMT
content-type: application/javascript
content-length: 454
last-modified: Sat, 19 Nov 2022 10:19:55 GMT
etag: "6378adcb-1c6"
expires: Sat, 21 Jan 2023 20:37:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
339282bdb.com/3a6d5b19ebe640c2aa3a0d954584e13d.gif
103.170.15.94200 OK 577 kB URL HTTP/1.1 339282bdb.com/3a6d5b19ebe640c2aa3a0d954584e13d.gif
IP 103.170.15.94:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 577 kB (577413 bytes)
Hash f64cbeb43b40a06a467d403c4ee8f584
87df926cfc971f9af3784707b24eaf97a7acdf2a
0b374b57ebcf263193d88c13eddb10aecc4e3e9ce6b0bba17fc9cb0b053bf438
Analyzer Verdict Alert quad9 Sinkholed
GET /3a6d5b19ebe640c2aa3a0d954584e13d.gif HTTP/1.1
Host: 339282bdb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63a2e8c4-8cf85"
Date: Wed, 21 Dec 2022 12:07:17 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 21 Dec 2022 11:06:44 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-24
Content-Length: 577413
www.ppmv025.xyz/js/xx4.js?adv=0.1013466099374627
107.148.45.244200 OK 916 B URL HTTP/2 www.ppmv025.xyz/js/xx4.js?adv=0.1013466099374627
IP 107.148.45.244:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash bd5e3af6c592753239f355e60ce2f3ef
6ace16da2fe5b94a940410f05e2152e09a5b3e3a
b5e6dd7d88f403621cff37dfd07e02a503e07bf6e77120afe138923e9f066c97
GET /js/xx4.js?adv=0.1013466099374627 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:53 GMT
content-type: application/javascript
content-length: 916
last-modified: Sat, 19 Nov 2022 10:23:56 GMT
etag: "6378aebc-394"
expires: Sat, 21 Jan 2023 20:37:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash eaa894dfbc602f578f824e54418a1af9
6bbbded8e1e02abbaac8c6babb6e6561065b2085
4e8e4a2c201771c46578ef568a37ec7f399de385b3ec3cffa15e567fca7a5955
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 08:38:08 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 22:45:44 GMT
Expires: Fri, 27 Jan 2023 22:45:43 GMT
Etag: "6bbbded8e1e02abbaac8c6babb6e6561065b2085"
Cache-Control: max-age=568654,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78cebb614b28b512-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cca26911e94d509f1ea73523b829a794
4f093f58857816a5498ceec2a3dcbbf5d1dd77e9
ea345d5d9fdee930907bf2c988dfe2694708ed939e91d917b316973693a290ae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA345D5D9FDEE930907BF2C988DFE2694708ED939E91D917B316973693A290AE"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12160
Expires: Sat, 21 Jan 2023 12:00:49 GMT
Date: Sat, 21 Jan 2023 08:38:09 GMT
Connection: keep-alive
www.ppmv025.xyz/js/piaofu.js?adv=0.5856025578441306
107.148.45.244200 OK 230 kB URL HTTP/2 www.ppmv025.xyz/js/piaofu.js?adv=0.5856025578441306
IP 107.148.45.244:0
Size 230 kB (230470 bytes)
Hash e50754e9efc0a7d33bf4dceef7220b80
49731e0e2eab63ce6952ff63e5fad53bb4109d74
66bdbf1ba5e527db6333a62135258ab89cb7b0c391b5ab472e6a6d2925cd68e6
GET /js/piaofu.js?adv=0.5856025578441306 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:54 GMT
content-type: application/javascript
last-modified: Sat, 31 Dec 2022 06:04:22 GMT
vary: Accept-Encoding
etag: W/"63afd0e6-1594"
expires: Sat, 21 Jan 2023 20:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash be0d1e481e125e7ec4c2f2a1786b754c
ccde54061f1e128e9771538ca9931f546b89547f
974e9d6a61a9e947d4a0fe24917726c88fe31823e1f2cd0f02141bce1569cbdf
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 08:38:09 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "C954E13D0776779B8641B50C305B69505024F65F"
Expires: Sat, 21 Jan 2023 19:00:00 GMT
Last-Modified: Sat, 21 Jan 2023 07:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 753
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cebb636fbf0b4d-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf32145-89e4-4f11-b8c1-0f5b832b325a.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf32145-89e4-4f11-b8c1-0f5b832b325a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a43120101d55af4d7d2cb93aa3f81560
2c1443887c1e4a85ad794f463fc947a97486e091
055cd52ec7c883a67e521fba820e80cbbf8ecb59343f6d48ba5e5d9b22bfddcc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf32145-89e4-4f11-b8c1-0f5b832b325a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7895
x-amzn-requestid: 3ae300df-5e6c-4c70-a8ed-1475b7580b9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etlxaEz2IAMFwDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c21cd5-1b0ce13023f3ada1112870db;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 03:09:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ffjveHMubnwvTvS4AC0uHyf1hCYDHluCS3oxM25bE5U1sbjD65Gjcw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 21:49:35 GMT
age: 38914
etag: "2c1443887c1e4a85ad794f463fc947a97486e091"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ppmv025.xyz/ads/piaofu.js?adv=0.4961309183887822
107.148.45.244404 Not Found 146 B URL HTTP/2 www.ppmv025.xyz/ads/piaofu.js?adv=0.4961309183887822
IP 107.148.45.244:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /ads/piaofu.js?adv=0.4961309183887822 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sat, 21 Jan 2023 08:37:54 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0
43.154.254.32200 OK 0 B URL HTTP/2 p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0
IP 43.154.254.32:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sat, 21 Jan 2023 08:38:08 GMT
content-type: image/gif
content-length: 1607696
vary: Accept,Origin
last-modified: Sat, 10 Jul 2021 16:21:45 GMT
cache-control: max-age=2592000
x-delay: 774 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1607696
chid: 0
fid: 0
x-nws-log-uuid: 2435c4f2-d74f-4002-b45d-acc4039032b6
X-Firefox-Spdy: h2
www.ppmv025.xyz/
107.148.45.244200 OK 0 B IP 107.148.45.244:0
GET / HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmvapi111.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:49 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
fadacaitp.com/68-960-120.gif
20.210.223.254200 OK 0 B URL HTTP/2 fadacaitp.com/68-960-120.gif
IP 20.210.223.254:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /68-960-120.gif HTTP/1.1
Host: fadacaitp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:06 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Sun, 25 Dec 2022 07:04:53 GMT
etag: W/"63a7f615-6befc"
expires: Sun, 19 Feb 2023 21:25:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
8499583.com/8499/320x180.gif
162.209.128.162200 OK 0 B URL HTTP/2 8499583.com/8499/320x180.gif
IP 162.209.128.162:0
GET /8499/320x180.gif HTTP/1.1
Host: 8499583.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 21 Jan 2023 08:38:09 GMT
content-type: image/gif
content-length: 188752
last-modified: Wed, 28 Dec 2022 08:15:26 GMT
etag: "2e150-5f0def882a9b5"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv025.xyz/js/wz2.js?adv=0.5151587051443911
107.148.45.244200 OK 0 B URL HTTP/2 www.ppmv025.xyz/js/wz2.js?adv=0.5151587051443911
IP 107.148.45.244:0
GET /js/wz2.js?adv=0.5151587051443911 HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:51 GMT
content-type: application/javascript
last-modified: Wed, 18 Jan 2023 10:36:47 GMT
vary: Accept-Encoding
etag: W/"63c7cbbf-d64"
expires: Sat, 21 Jan 2023 20:37:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0
43.154.254.32200 OK 0 B URL HTTP/2 p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0
IP 43.154.254.32:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sat, 21 Jan 2023 08:38:07 GMT
content-type: image/gif
content-length: 1362871
vary: Accept,Origin
last-modified: Sat, 10 Jul 2021 16:21:47 GMT
cache-control: max-age=2592000
x-delay: 700 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1362871
chid: 0
fid: 0
x-nws-log-uuid: 2a3d792e-0805-4541-8980-9da4ec3234a5
X-Firefox-Spdy: h2
www.ppmv025.xyz/template/m1938pc/static/js/jquery.min.js
107.148.45.244200 OK 0 B URL HTTP/2 www.ppmv025.xyz/template/m1938pc/static/js/jquery.min.js
IP 107.148.45.244:0
GET /template/m1938pc/static/js/jquery.min.js HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:49 GMT
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 14:07:34 GMT
vary: Accept-Encoding
etag: W/"61d99aa6-17b8b"
expires: Sat, 21 Jan 2023 20:37:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.ppmv025.xyz/template/m1938pc/static/js/jquery.lazyload.min.js
107.148.45.244200 OK 0 B URL HTTP/2 www.ppmv025.xyz/template/m1938pc/static/js/jquery.lazyload.min.js
IP 107.148.45.244:0
GET /template/m1938pc/static/js/jquery.lazyload.min.js HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:49 GMT
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 14:08:24 GMT
vary: Accept-Encoding
etag: W/"61d99ad8-d35"
expires: Sat, 21 Jan 2023 20:37:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.ppmv025.xyz/template/m1938pc/static/js/base1.js
107.148.45.244200 OK 0 B URL HTTP/2 www.ppmv025.xyz/template/m1938pc/static/js/base1.js
IP 107.148.45.244:0
GET /template/m1938pc/static/js/base1.js HTTP/1.1
Host: www.ppmv025.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv025.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 08:37:50 GMT
content-type: application/javascript
last-modified: Sat, 31 Dec 2022 07:21:11 GMT
vary: Accept-Encoding
etag: W/"63afe2e7-153a"
expires: Sat, 21 Jan 2023 20:37:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2