Overview

URL www.luyilu55.com/index.php
IP154.215.212.60
ASNUNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Location Hong Kong
Report completed2022-09-26 04:23:35 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-26 2 www.luyilu55.com/index.php Phishing
2022-09-26 2 www.luyilu55.com/common.js Phishing
2022-09-26 2 www.luyilu55.com/tj.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-25 2 dsupt.top Sinkholed
2022-09-25 2 93533557591.com Sinkholed


Files

No files detected



Passive DNS (47)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS sz88.oss-cn-shenzhen.aliyuncs.com (1) 0 2022-06-01 18:03:12 UTC 2022-09-25 20:06:22 UTC 120.77.166.72 Domain (aliyuncs.com) ranked at: 1959
mnemonic passive DNS u0081.com (1) 0 2021-02-01 01:45:41 UTC 2022-09-25 14:49:19 UTC 20.239.190.150 Unknown ranking
mnemonic passive DNS img.999971.co (1) 0 2022-08-10 08:23:35 UTC 2022-09-25 20:06:22 UTC 23.225.222.2 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-09-26 04:12:21 UTC 93.184.220.29
mnemonic passive DNS ocsp2.globalsign.com (6) 1544 2012-05-21 07:12:19 UTC 2022-09-25 07:48:51 UTC 104.18.21.226
mnemonic passive DNS p5.toutiaoimg.com (1) 228847 2021-03-02 11:34:46 UTC 2022-09-25 20:06:22 UTC 125.75.231.100
mnemonic passive DNS dsupt.top (1) 0 2022-07-14 07:41:44 UTC 2022-09-25 20:06:33 UTC 198.16.41.254 Unknown ranking
mnemonic passive DNS 17265111.com (1) 0 2022-06-04 14:56:45 UTC 2022-09-25 20:06:33 UTC 20.239.175.73 Unknown ranking
mnemonic passive DNS fmtu.netfhtu.com (14) 244457 2021-12-27 14:39:45 UTC 2022-09-26 00:26:20 UTC 104.21.235.63
mnemonic passive DNS img.jialiimg.com (4) 269179 2021-08-22 13:32:15 UTC 2022-09-23 15:21:02 UTC 108.186.171.14
mnemonic passive DNS xpj08.oss-cn-beijing.aliyuncs.com (1) 0 2022-08-08 14:33:36 UTC 2022-09-26 00:26:24 UTC 59.110.185.220 Domain (aliyuncs.com) ranked at: 1959
mnemonic passive DNS pic.rmb.bdstatic.com (1) 25157 2017-02-01 17:01:36 UTC 2022-09-25 21:44:53 UTC 185.10.104.115
mnemonic passive DNS vkhhjp.com (1) 0 2022-07-07 04:57:46 UTC 2022-09-25 20:06:23 UTC 103.189.108.94 Unknown ranking
mnemonic passive DNS vgvjkw.com (1) 0 2022-07-07 16:38:40 UTC 2022-09-25 20:06:35 UTC 103.189.108.94 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-25 05:07:25 UTC 52.43.46.140
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-26 04:11:51 UTC 34.120.237.76
mnemonic passive DNS si1.go2yd.com (1) 325918 2017-02-02 11:37:19 UTC 2022-09-25 22:43:27 UTC 163.171.140.79
mnemonic passive DNS 93533557591.com (1) 0 2022-08-10 13:54:43 UTC 2022-09-25 21:28:40 UTC 103.170.15.76 Unknown ranking
mnemonic passive DNS img.lytuchuang.com (2) 0 2022-08-26 01:30:11 UTC 2022-09-25 21:44:48 UTC 154.12.52.22 Unknown ranking
mnemonic passive DNS p.qlogo.cn (3) 48578 2014-01-15 11:11:45 UTC 2022-09-26 03:41:28 UTC 43.154.254.32
mnemonic passive DNS r3.o.lencr.org (8) 344 2020-12-02 08:52:13 UTC 2022-09-25 05:02:41 UTC 23.36.76.226
mnemonic passive DNS ocsp.sectigo.com (23) 487 2018-12-17 11:31:55 UTC 2022-09-25 21:23:23 UTC 172.64.155.188
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-25 04:51:16 UTC 34.117.237.239
mnemonic passive DNS uup.wywk2.top (1) 0 2022-06-04 14:56:41 UTC 2022-09-04 23:29:03 UTC 122.10.110.114 Unknown ranking
mnemonic passive DNS hm.baidu.com (16) 8254 2012-05-26 08:38:45 UTC 2022-09-25 14:17:50 UTC 103.235.46.191
mnemonic passive DNS dimg04.c-ctrip.com (1) 139731 2014-05-08 16:11:10 UTC 2022-09-25 14:08:41 UTC 104.110.17.24
mnemonic passive DNS taiwtp1.com (2) 0 2022-04-08 07:06:08 UTC 2022-09-25 23:05:27 UTC 220.128.218.220 Unknown ranking
mnemonic passive DNS statuse.digitalcertvalidation.com (1) 16484 2019-06-21 15:00:06 UTC 2022-09-25 17:45:01 UTC 93.184.220.29
mnemonic passive DNS ggt999.oss-cn-hangzhou.aliyuncs.com (1) 0 2022-08-29 10:27:34 UTC 2022-09-25 20:06:22 UTC 47.110.177.104 Domain (aliyuncs.com) ranked at: 1959
mnemonic passive DNS sdk.51.la (1) 88367 2021-03-08 16:03:51 UTC 2022-09-25 14:50:37 UTC 47.253.50.2
mnemonic passive DNS p3.douyinpic.com (1) 23536 2020-12-18 11:20:50 UTC 2022-09-25 14:08:43 UTC 47.246.44.229
mnemonic passive DNS www.laoyazypic.com (4) 0 2022-06-10 09:22:36 UTC 2022-09-25 21:44:48 UTC 154.12.54.85 Unknown ranking
mnemonic passive DNS img.tpttzy.com (3) 521205 2021-08-08 13:07:20 UTC 2022-09-26 02:05:25 UTC 23.224.136.186
mnemonic passive DNS img.lytuchuang1.com (1) 0 2022-09-12 16:47:08 UTC 2022-09-25 20:06:23 UTC 154.12.54.84 Unknown ranking
mnemonic passive DNS 17271819.com (1) 0 2022-06-02 07:20:03 UTC 2022-09-25 20:06:33 UTC 20.239.191.20 Unknown ranking
mnemonic passive DNS vecukb.com (1) 0 2022-07-09 13:42:06 UTC 2022-09-25 20:06:23 UTC 103.170.15.61 Unknown ranking
mnemonic passive DNS p26.toutiaoimg.com (1) 75286 2021-01-20 17:21:02 UTC 2022-09-25 20:06:24 UTC 182.118.39.165
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-25 19:02:29 UTC 143.204.55.36
mnemonic passive DNS www.luyilu55.com (4) 0 2022-09-25 17:55:04 UTC 2022-09-25 17:55:04 UTC 154.215.212.60 Unknown ranking
mnemonic passive DNS di1.wynb16.top (22) 0 No data No data 154.208.77.247 Unknown ranking
mnemonic passive DNS ocsp.sectigo.com (23) 487 2018-12-17 11:31:55 UTC 2022-09-25 21:23:23 UTC 104.18.32.68
mnemonic passive DNS img.lytuchuang2.com (26) 0 2022-09-15 02:51:11 UTC 2022-09-25 21:44:49 UTC 154.12.52.21 Unknown ranking
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-25 05:42:52 UTC 34.160.144.191
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-25 05:23:09 UTC 104.18.20.226
mnemonic passive DNS collect-v6.51.la (1) 91421 2021-03-08 16:03:54 UTC 2022-09-26 03:56:23 UTC 139.9.63.194
mnemonic passive DNS ocsp.digicert.cn (1) 37572 2020-03-20 17:45:56 UTC 2022-09-25 04:35:57 UTC 47.246.44.205
mnemonic passive DNS vcwzfn.com (1) 0 2022-07-05 01:20:44 UTC 2022-09-25 20:06:33 UTC 45.61.212.131 Unknown ranking


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 154.215.212.60

Date UQ / IDS / BL URL IP
2022-09-26 04:23:35 +0000
0 - 0 - 5 www.luyilu55.com/index.php 154.215.212.60

Last 5 reports on ASN: UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

Date UQ / IDS / BL URL IP
2022-12-08 02:01:42 +0000
0 - 0 - 1 www1.datumresources.com/ 154.221.88.142
2022-12-07 06:37:35 +0000
0 - 0 - 8 www.liulujun.cn/index.php 154.215.219.104
2022-12-06 22:20:47 +0000
0 - 0 - 4 yoyo0830.cn/ 154.215.245.175
2022-12-06 22:06:48 +0000
0 - 0 - 12 bigbadandbeyond.com/ 154.221.150.54
2022-12-06 09:36:49 +0000
0 - 0 - 3 fwbsie.com/ 154.85.194.181

Last 1 reports on domain: luyilu55.com

Date UQ / IDS / BL URL IP
2022-09-26 04:23:35 +0000
0 - 0 - 5 www.luyilu55.com/index.php 154.215.212.60

No other reports with similar screenshot



JavaScript

Executed Scripts (36)


Executed Evals (0)


Executed Writes (72)

#1 JavaScript::Write (size: 1, repeated: 1) - SHA256: 2b4c342f5433ebe591a1da77e013d1b72475562d48578dca8b84bac6651c3cb9

                                        
                                    

#2 JavaScript::Write (size: 23, repeated: 1) - SHA256: 1bbfaf8a3697e615c339bf7be7b274e6a5a8c9952d9f7d7d0ae997cb55ddb7d7

                                        < style type = 'text/css' >
                                    

#3 JavaScript::Write (size: 16, repeated: 1) - SHA256: a28a6a35fef304e19a5adefefecb9a4d51e392bb7d2a520ed1a82f644b1af32b

                                        	margin: 0 auto;
                                    

#4 JavaScript::Write (size: 9, repeated: 1) - SHA256: 446e7e12bed53b0a06bbe397d9aaeaf2619e902eac60b372161d4fffb1229aee

                                         < /style>
                                    

#5 JavaScript::Write (size: 45, repeated: 1) - SHA256: 0a97d1ba8e685703554954ffb3d25a726087dd9db9dc12368986711a8e43dfd6

                                        < a href = 'https://863379.com'
target = '_blank' >
                                    

#6 JavaScript::Write (size: 135, repeated: 1) - SHA256: 5ed2ddaa14d0c79e4e744077b8b43b58288ecd38a5f3df479aa462c1e52a1448

                                        < img src = 'https://sz88.oss-cn-shenzhen.aliyuncs.com/02.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#7 JavaScript::Write (size: 44, repeated: 1) - SHA256: 677778bdbff8bc5456baf8105e4760b84a9882c5b7689295d4d700a54f0f9ba2

                                        < ul class = 'stui-link__text col-pd clearfix' >
                                    

#8 JavaScript::Write (size: 21, repeated: 1) - SHA256: 2eb4da6fd6e0e684a0a20fe29520f4a3bbdaee80149228018c3f1c07fb4402f4

                                           .m1938 - container {
                                    

#9 JavaScript::Write (size: 70, repeated: 1) - SHA256: 636fd4f2ebe6fbd6cb41ddd14aa2062cfcc230370cc683eba4db20637b0469f4

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > M9�� < /a></li >
                                    

#10 JavaScript::Write (size: 68, repeated: 1) - SHA256: 50056281dfcd50fec416c74199f060aecfb9a5c829ccb20a0ce0f5a141438cc8

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > Φ� < /a></li >
                                    

#11 JavaScript::Write (size: 50, repeated: 1) - SHA256: 0c9355cc0de66ef1ae92ad4cac2bc115ee17a2e92449337b4ec083a63815c747

                                        < a href = 'https://b5251.com:36555'
target = '_blank' >
                                    

#12 JavaScript::Write (size: 49, repeated: 1) - SHA256: bd1ad895bc1049eb6d56162caba1051c5fca292b17b2a3419a98b109eb9b6552

                                        < a href = 'https://v1298.com:7443'
target = '_blank' >
                                    

#13 JavaScript::Write (size: 37, repeated: 1) - SHA256: 9f533d0df36e2b8b0a87263e8ecd71bfa703d5da2830e9e8e572937497371b44

                                        @
media screen and(max - width: 768 px) {
                                    

#14 JavaScript::Write (size: 51, repeated: 1) - SHA256: 526e07b25352e8477094bd573cd5ce5fc257f49deebd424214721db93494ae2d

                                        < a href = 'https://v63255.com:33005'
target = '_blank' >
                                    

#15 JavaScript::Write (size: 86, repeated: 1) - SHA256: fe6e281d97e137ca1f63ebab58ea1d14da3414df234a24be8dcbe13c82b29e19

                                        	< li class = 'active' > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > �2 q� < /a></li >
                                    

#16 JavaScript::Write (size: 181, repeated: 1) - SHA256: f5a8a72beff98fabb21665dca4900d0bfbcd79a1248718394a557960910bd3b4

                                        < img src = 'https://p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/ac3d6ec0fdb54dbcad3779cb9c1d5a2a~noop.image'
border = '0'
width = '100%'
height = '46'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#17 JavaScript::Write (size: 120, repeated: 1) - SHA256: 243d2a17f36e70658ca5dd48ef93f341cbea511f4bfcde2d6fc0a5f89385767a

                                        < img src = 'https://taiwtp1.com/img/96060.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#18 JavaScript::Write (size: 188, repeated: 1) - SHA256: 0853554c71695c546813e2166629e00fd9356a9f5405a69be0a75bd06e4bcc3c

                                        < img src = 'https://p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5cd5c322c76272c5e26cad46e1f3c6ce7/0.png'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#19 JavaScript::Write (size: 138, repeated: 1) - SHA256: 2c7bdc12afc6901a51c6c6e38e3d44105de76d48af6b6ef3bba79b081a3fe84a

                                        < img src = 'https://xpj08.oss-cn-beijing.aliyuncs.com/vip80.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#20 JavaScript::Write (size: 68, repeated: 1) - SHA256: 9565a8cbba1b224d629b48965b4e2b3645e812f4a79966dc7ef1a717b239471e

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > M9� < /a></li >
                                    

#21 JavaScript::Write (size: 144, repeated: 1) - SHA256: be3c4788b047792c3d69b58bf41475b8eda059ffd5119fafd124c2b4a0bd945c

                                        < img src = 'https://17271819.com/2c164007ac96497ab449d2196508803a.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#22 JavaScript::Write (size: 56, repeated: 1) - SHA256: 0703d7e81d4ebae3156d4d76c71c974ac2c05d4ccf153df22373e83330f2b9e3

                                        < a href = 'https://e3555.com/?register=1'
target = '_blank' >
                                    

#23 JavaScript::Write (size: 6, repeated: 1) - SHA256: 8afbcd6ddc976ffeaba252c86ffd2ef626de3f6b7fe23f48dac51d852e337354

                                        ߡ�
                                    

#24 JavaScript::Write (size: 148, repeated: 1) - SHA256: cf51471b10fc733ab987a3759f0ac53578e218cfac981180ca69eeddcb4de1f6

                                        < img src = 'https://ggt999.oss-cn-hangzhou.aliyuncs.com/xpj/xpj96080a.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#25 JavaScript::Write (size: 6, repeated: 1) - SHA256: 5244c5cc7eed77a64e6cdd5de30a7f13d4b384fd9999ef0dd976dfbc5f420e28

                                        }
}
                                    

#26 JavaScript::Write (size: 144, repeated: 1) - SHA256: e1e5dda2ebd79f019cd2aa525bf050a27fe12a16269b97c9e52b4450d5a80718

                                        < img src = 'https://17265111.com/6d618dd3947a4ced907fd3f9de728d43.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#27 JavaScript::Write (size: 45, repeated: 1) - SHA256: 161f84704c9126c446700117a62c1d1ae0f0c86773aed9bbe0c189bfce4c404c

                                        < a href = 'https://6521.site/'
target = '_blank' >
                                    

#28 JavaScript::Write (size: 9, repeated: 1) - SHA256: 44a950677e5e2a20a75ed7d2375912f592aa1d0789194adca87a4855b22fe084

                                        <!--md-->
                                    

#29 JavaScript::Write (size: 84, repeated: 1) - SHA256: 2f36f534482621543a14383245825a6b2b7bb043b0b80cb9ad43d93a654e6250

                                        	< li class = 'active' > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > Φ� < /a></li >
                                    

#30 JavaScript::Write (size: 72, repeated: 1) - SHA256: 16c0e99083a2c3cdf9997d9b8bfb7f75c1e375730c3c3be7639ced7798fc6e63

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > h��� < /a></li >
                                    

#31 JavaScript::Write (size: 142, repeated: 1) - SHA256: ccb7b72a2efa7bc0df9344855ce62cf9b5683e6e901f354fff1e9babcdd70ae1

                                        < img src = 'https://vgvjkw.com/babcbe3202ae4f5ab8487c2e5403f4a8.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#32 JavaScript::Write (size: 144, repeated: 1) - SHA256: b83b96f164e2ac0eb0de2c11a230482b492308564f6a81982946a5c30107f0ff

                                        < img src = 'https://img.999971.co/images/6321bb5e89514da47f19c375.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#33 JavaScript::Write (size: 45, repeated: 1) - SHA256: 31f48c83021f8685a7e36db7b098da6f97f4e91f62e60ac0b2b2d84c2277dd2f

                                        < a href = 'https://839297.com'
target = '_blank' >
                                    

#34 JavaScript::Write (size: 66, repeated: 1) - SHA256: c02760f206b5a0aa46718a6a4bbc59992cfaaa8a77614e558c80347d778271a3

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > : xq & < /a></li >
                                    

#35 JavaScript::Write (size: 48, repeated: 1) - SHA256: e0e0ec26ed6b208e033deeae1ac11af5e7e9b98ecab5f8e9760e2072df99861e

                                        < a href = 'https://bfcwqeq12.com'
target = '_blank' >
                                    

#36 JavaScript::Write (size: 156, repeated: 1) - SHA256: 280f14005671c240c819dfb74a5288ef6ffe74e39778d071ddbea839737833b2

                                        < img src = 'https://pic.rmb.bdstatic.com/bjh/95e83044cdf96ff929c2262729f49b38.gif'
border = '0'
width = '100%'
height = '48'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#37 JavaScript::Write (size: 13, repeated: 1) - SHA256: 527fdef152b20ea2fd3abd5a040a8f8e650e8f4214a4591a617a8442ad469199

                                        	width: 100 % ;
                                    

#38 JavaScript::Write (size: 142, repeated: 1) - SHA256: 96343fa04dfcbb94f17d707ee04c8be20ae221943a586fcad85b291bdeafdff0

                                        < img src = 'https://vkhhjp.com/c01eb55b5a754966a2834c2b63b1cdc7.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#39 JavaScript::Write (size: 142, repeated: 1) - SHA256: 7f81f966aaa68c7f03cbbe26c5c88088760d27f5042f647241a0f0e21a7ea2f0

                                        < img src = 'https://vcwzfn.com/f157c264dffc4d99ab16a145dba669d0.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#40 JavaScript::Write (size: 72, repeated: 1) - SHA256: 86fcb5a3f4a5a11394f7bb4b985e254eede615743e77e54593efe2c3ceb35def

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > �+�� < /a></li >
                                    

#41 JavaScript::Write (size: 86, repeated: 1) - SHA256: 166610b13df526575d241d38255968ea4ce62130175a54dca3452370f59743da

                                        	< li class = 'active' > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > M9�� < /a></li >
                                    

#42 JavaScript::Write (size: 50, repeated: 1) - SHA256: cedf758c3cae98275cc96e74bedb85b6c0c5d76b72a47e021a20635636342d52

                                        < a href = 'https://3782t.com:30653'
target = '_blank' >
                                    

#43 JavaScript::Write (size: 55, repeated: 1) - SHA256: ca50b8ebc276100d888c92239b552b2fc28e82b1cdb7de9cf91d2a24b33938b8

                                        < a href = 'https://givvt.fklzr.com:6996'
target = '_blank' >
                                    

#44 JavaScript::Write (size: 6, repeated: 1) - SHA256: aac32651b10f567c461b9b4f255d6fb1fa6859b5368d8bd9a51af920ab21cf23

                                        < /div>
                                    

#45 JavaScript::Write (size: 180, repeated: 1) - SHA256: f370d13b89c8a8f3fbd79b7d159c0c9b1ba8b1a370b8881388f279fbd11f0511

                                        < img src = 'https://p5.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/d30397527b3845bd8558477731dd019d~noop.image'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#46 JavaScript::Write (size: 57, repeated: 1) - SHA256: 28a472dc0341d04dec18b1136de95d67659335a0e7e73d4ee166eec7f0998439

                                        < a href = 'https://5p7xa.816899.com:57020'
target = '_blank' >
                                    

#47 JavaScript::Write (size: 5, repeated: 1) - SHA256: 348845d8804b5c895e2a2938423ed17b2dc4cd3aad9f966c13e0ed89223b2f90

                                        < /ul>
                                    

#48 JavaScript::Write (size: 68, repeated: 1) - SHA256: 61f027d018641fb320ac2ef0920bdc8dbf543ea5af8dcedc1f69ed59094eb6a9

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > Z1w� < /a></li >
                                    

#49 JavaScript::Write (size: 68, repeated: 1) - SHA256: f20bdced64e32e4f382a49f4388175a9ec63cdb600a6c29fdd9f39cb8bad3981

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > f� < /a></li >
                                    

#50 JavaScript::Write (size: 72, repeated: 1) - SHA256: e8e6508055ae13ba7b0d2c4a240ee64abcc062425fe9f4a435ddbe21b9370aef

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > '���</a></li>
                                    

#51 JavaScript::Write (size: 136, repeated: 1) - SHA256: cace69737e47fae7604242a7e0985403a5f09ca34356f07d8def237bf0195d22

                                        < center > < iframe src = "http://uup.wywk2.top/"
rel = "nofollow"
scrolling = "no"
frameborder = "0"
width = "100%"
height = "8900" > < /iframe></center >
                                    

#52 JavaScript::Write (size: 38, repeated: 1) - SHA256: b3147b705a40e4264d413899d456c93ec364c4fadff2851da80e76aeb9c2386a

                                        @
media screen and(min - width: 769 px) {
                                    

#53 JavaScript::Write (size: 29, repeated: 1) - SHA256: 66189eec27f75203622e651590d949e860208d6a9f32ebd7d761b5819cbd2c9d

                                        < div class = 'm1938-container' >
                                    

#54 JavaScript::Write (size: 146, repeated: 1) - SHA256: 9fea6f08554b6325fd7f5ad26bb52d80f3d1f7946120e7ffe0d56c91ae581bf9

                                        < img src = 'https://dimg04.c-ctrip.com/images/03917120009z0w03uDAF1.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#55 JavaScript::Write (size: 1, repeated: 1) - SHA256: 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

                                        
                                    

#56 JavaScript::Write (size: 86, repeated: 1) - SHA256: 17e2fa1b41e8b8587d4e86f1c41c03248645775e24e415cbf95c25d07d34a0fa

                                        	< li class = 'active' > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > �n� 4 < /a></li >
                                    

#57 JavaScript::Write (size: 124, repeated: 1) - SHA256: f95d30794e44cae990dbb2176d3b6a3d18d4beaf366813a7883277208f0c1931

                                        < img src = 'https://dsupt.top/20220718/960_80.gif'
border = '0'
width = '100%'
height = '80'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#58 JavaScript::Write (size: 2, repeated: 1) - SHA256: 73db0c6d11af07e1ef0183371a67bf990a4398f49f14d77afa57239c54e3920b

                                        }
                                    

#59 JavaScript::Write (size: 25, repeated: 1) - SHA256: 62ff9ba4cfdca420fad14cce36f3aec666768b848ee7414be58404810b55989f

                                        	/* min-height: 500px; */
                                    

#60 JavaScript::Write (size: 56, repeated: 1) - SHA256: 347c46b275dd2577b6180b042c6670b9c5a9e586f2673c0ec494b3427c4cc975

                                        < a href = 'https://h4cor.238199.com:6386'
target = '_blank' >
                                    

#61 JavaScript::Write (size: 68, repeated: 1) - SHA256: d1cb40ac22fc37c07fcbc9a8cadf0ed9fe01aee2ecf73690bdb59dde6bb37d45

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > Q� P < /a></li >
                                    

#62 JavaScript::Write (size: 68, repeated: 1) - SHA256: 60ad008707274d2d750f24ded3881526b9357a55d8b52b58e346a5b7d0fa5ccd

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > -�WU < /a></li >
                                    

#63 JavaScript::Write (size: 3, repeated: 1) - SHA256: 737db166c79ae98e44bbe5ad43e03bf3774f7b3696068842d56a72e863dfeb20

                                          }
                                    

#64 JavaScript::Write (size: 52, repeated: 1) - SHA256: 72274fa6a800fd5e09ac9d14a743afe4517d148d9fd4a7d2796330ecdb3083e1

                                        < a href = 'https://bibo451.com:32060'
target = '_blank' >
                                    

#65 JavaScript::Write (size: 60, repeated: 1) - SHA256: d7e10402b9088a5759486f77f40c6740dbd0b6d9712728e57301bcf230e001e1

                                        < a href = 'https://p4452.com:5443?register=1'
target = '_blank' >
                                    

#66 JavaScript::Write (size: 0, repeated: 1) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                    

#67 JavaScript::Write (size: 50, repeated: 1) - SHA256: 5875491d6aaf67d4ce106b42fc973be419cf70cc2d059857259bc48a680382bd

                                        < a href = 'https://h3171.com:30021'
target = '_blank' >
                                    

#68 JavaScript::Write (size: 142, repeated: 1) - SHA256: ed90ad69fa646de92ff1786f69b18dd7092a598f524b42f74e5e219d0d52b907

                                        < img src = 'https://vecukb.com/2719d72ca72d49cf8efc39e40a93e430.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#69 JavaScript::Write (size: 147, repeated: 1) - SHA256: 945307342ed4f91b80ac830ed62b1b71b56a35e3382097e0b5aef9fd90bb18bb

                                        < img src = 'https://93533557591.com/00946a445772401895ecee2223297e7c.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#70 JavaScript::Write (size: 188, repeated: 1) - SHA256: 646b4eb3bddab307819865be13832767bc79ac84eb56a864dafe71c48738b3c9

                                        < img src = 'https://p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5472e67239ef16675ea414c591d4c7caa/0.png'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#71 JavaScript::Write (size: 66, repeated: 1) - SHA256: aadd48e44fb1d5941b571392f7b197ae24e6c34d47ea732e371fa734c2c30216

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > zР << /a></li >
                                    

#72 JavaScript::Write (size: 68, repeated: 1) - SHA256: c7f3fecd80898cb744f776e93c380693d0b7b7831c7f08f98f9c53dc39448c6b

                                        	< li > < a href = 'https://bfcwqeq12.com'
	target = '_blank' > �M9 < /a></li >
                                    


HTTP Transactions (178)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 04:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5HNzj-JTvqJc5-Nz-1lCzn2NPB5I--kDmkiqwhJqR31NQlyHD83_0A==
Age: 483


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7246
Expires: Mon, 26 Sep 2022 06:24:07 GMT
Date: Mon, 26 Sep 2022 04:23:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3955
Expires: Mon, 26 Sep 2022 05:29:16 GMT
Date: Mon, 26 Sep 2022 04:23:21 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: LS/0xMiEpMbY3+zuWMozo8qlWd2GTSijmjU8lYYLREN+WsDRG1bYO215wbth4e/6xMrj1HT2kdY=
x-amz-request-id: M8HR6RCZTFD704YF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 26 Sep 2022 03:46:09 GMT
age: 2232
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /index.php HTTP/1.1 
Host: www.luyilu55.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         154.215.212.60
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (606), with CRLF line terminators
Size:   540
Md5:    e2e1b7714a0d79e2b7c9eb98df4cfeff
Sha1:   af4efe252fd16e2151680304835553e4d5ff6e47
Sha256: 8f18095fcc46b0674946a4e6afbe5db939a087dd21e4886da37ebb20578b099a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 26 Sep 2022 04:23:21 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /common.js HTTP/1.1 
Host: www.luyilu55.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.luyilu55.com/index.php

                                         
                                         154.215.212.60
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:22 GMT
Content-Length: 561
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (499), with CRLF line terminators
Size:   561
Md5:    1c2279c1291ce8e5440b9c0dc81b9bdf
Sha1:   8e8d25542fdea7b10d63a25ea07136df84deb33b
Sha256: 18fb2774f71795277f99b57e2eabc15ed20c8220b4f357b2c6640024f0cb14f3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /tj.js HTTP/1.1 
Host: www.luyilu55.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.luyilu55.com/index.php

                                         
                                         154.215.212.60
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:22 GMT
Content-Length: 258
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   258
Md5:    1f9ee234b429d09d50232fe0a428e90a
Sha1:   48877aa2668674246c05d4083492d15318f3fa42
Sha256: cd4c69fdb3745b08a37e2ec61c20a363ebf1ab85c770bd1215f6344bc7e69919

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 26 Sep 2022 04:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Mon, 26 Sep 2022 04:22:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gFam4Az4n0DzJx_ixzmP8uAK85PFvXBaulEsFnAsEFdIDfF1R3Sw6Q==
Age: 1145


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.luyilu55.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.luyilu55.com/index.php

                                         
                                         154.215.212.60
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:22 GMT
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sat, 01 Oct 2022 04:23:22 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    7ef1f0a0093460fe46bb691578c07c95
Sha1:   2da3ffbbf4737ce4dae9488359de34034d1ebfbd
Sha256: 4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3910
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 04:23:22 GMT
Last-Modified: Mon, 26 Sep 2022 03:18:12 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CKjrmAtMLCIARaYvHfRajg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.43.46.140
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hwZWYgnL52TBqzVRJw06RkqiDsI=

                                        
                                            GET / HTTP/1.1 
Host: uup.wywk2.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.luyilu55.com/
Upgrade-Insecure-Requests: 1

                                         
                                         122.10.110.114
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Encoding: gzip
Last-Modified: Mon, 26 Sep 2022 04:01:09 GMT
Accept-Ranges: bytes
ETag: "e2fe2f9c5cd1d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 26 Sep 2022 04:23:21 GMT
Content-Length: 192


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   192
Md5:    8e2e8e385f7ac48dcfc0b310b535c6a4
Sha1:   94f862bf5afed50b1beb97c221e3d045265e9b1b
Sha256: 4f3ddccc72364e613b5874a44c87d199e97d00012b0450d2d7dd1d1e3d18d312
                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:23 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 30 Sep 2022 01:10:35 GMT
ETag: "ff6b4716ff06c28256797c11eed8721259021b27"
Last-Modified: Mon, 26 Sep 2022 01:10:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 110
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750939525a1bb51d-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    5a445b0fccaed0d431a96d10938802c8
Sha1:   ff6b4716ff06c28256797c11eed8721259021b27
Sha256: c11662e064e5f9203e83a564f6bcbf5474c994f8bf1738e9a13f401741c2858f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10424
Expires: Mon, 26 Sep 2022 07:17:08 GMT
Date: Mon, 26 Sep 2022 04:23:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10424
Expires: Mon, 26 Sep 2022 07:17:08 GMT
Date: Mon, 26 Sep 2022 04:23:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10424
Expires: Mon, 26 Sep 2022 07:17:08 GMT
Date: Mon, 26 Sep 2022 04:23:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10424
Expires: Mon, 26 Sep 2022 07:17:08 GMT
Date: Mon, 26 Sep 2022 04:23:24 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:57:14 GMT
age: 23170
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10318
Md5:    a90590f26bae9ad9e95ffdfbfb7dd21d
Sha1:   cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
Sha256: 33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 22388
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5157
Md5:    2fe8c4f0c70fb6c1f4259eabedc7015e
Sha1:   85e378d0fff856832a8dd01743516b9476fed8c6
Sha256: 508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:19 GMT
age: 24365
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size:   12826
Md5:    b3a72e81317074689a71dac7059e4b6a
Sha1:   b6d56333d7f1ea7ddc8838d84de498ff913c5464
Sha256: e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7185
x-amzn-requestid: e7b997d7-f9ce-40c6-b9bb-372ee10d8ad0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTAfEX5oAMFcHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb9c-31e295e33ead940f381121a1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:43:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p7rimTrmOgUnwPuESSKSrsWlzhiSBJYx9h8XIacxP8DUyyvXye2iyg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 23608
etag: "0d5cb1f3e3ea510308034a5e569c0e65fae30835"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7185
Md5:    6d79a3a5bd7dc7aa6cab306176fafd11
Sha1:   0d5cb1f3e3ea510308034a5e569c0e65fae30835
Sha256: 57979dfcf6fdc76f04e4790c2b94b876e188ac780aa49d9bfc8a58c498dc4203
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8851
x-amzn-requestid: dbe6ba4c-3d38-48e8-9d08-088d8e26e7a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUDAE23oAMF_yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd46-4f3b85952fa3109d2921d0e1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wbbfzE5nQkhK_nsXX8XGJbOl3Yf6NDA1r_AC-0dOzqJDkLQ2BLxK9A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:32:20 GMT
age: 21064
etag: "4b32113aaf50132b38c8034017a6eb5a32d7040b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8851
Md5:    431ff1171a3d7c60a31cc1c3f62164ee
Sha1:   4b32113aaf50132b38c8034017a6eb5a32d7040b
Sha256: 65d598db252fb3979d3df3cb8d052861bb31d6187552f9c694ec27a322b308c9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7998
x-amzn-requestid: beedf4d8-29c0-43c6-92d0-40af6b9ee9f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTibE5LoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cc75-1be97f2a525b9a5e3146d4be;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:47:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: i8BwIohBNqfEavPXBqSWshg7G-WF9UkBBScnDcyH4qEYV9TzreLXWA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:05:32 GMT
etag: "5c4ee294c98e8fc9312a7d481b6ec165494cf852"
age: 22672
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7998
Md5:    27d324b1fb661c318aced98468501b3c
Sha1:   5c4ee294c98e8fc9312a7d481b6ec165494cf852
Sha256: 937296b5da48df0495ebd0cb3509b7c00059725c00c5b97f475ba2382a0e5437
                                        
                                            GET /hm.js?b9debd489f26a5819e265b565d1f8590 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.luyilu55.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11350
Date: Mon, 26 Sep 2022 04:23:23 GMT
Etag: 3605fcb4985cc62d29cb7c2922fe8b26
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=1D85953F84B2558C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (637)
Size:   11350
Md5:    5dd7c253b823d925805b16f53b01e43a
Sha1:   9b22deb14a4ba8518fe12999860a09c11618711c
Sha256: 55469d8eec33da256dbce2c0e0ed4e117ffa4e177e89ebbc1441802d1dbbd499
                                        
                                            GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1874007220&si=b9debd489f26a5819e265b565d1f8590&v=1.2.97&lv=1&sn=35948&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.luyilu55.com%2Findex.php&tt=%E4%B8%B4%E7%8C%97%E5%9A%B7%E7%8C%9C%E5%AE%9E%E4%B8%9A%E6%8A%95%E8%B5%84%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.luyilu55.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Mon, 26 Sep 2022 04:23:24 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=BCB787CEF4F2528E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET / HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uup.wywk2.top/
Upgrade-Insecure-Requests: 1

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=85bh5fc8oatpg75fb7hb4cqogg; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (468), with CRLF line terminators
Size:   24744
Md5:    292507d5da0b0e2244dee4a638053267
Sha1:   5836a561c88c1fa26fea1bb9c9733fe247c230b0
Sha256: 32d23056313091d36a8b685265b68b1dc0aed3d5e2cbc8d18f2f77c71b5133bf
                                        
                                            GET /template/helen_v105/css/app.css HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Thu, 07 Oct 2021 07:58:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"615ea8b1-13cb5"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (588)
Size:   20919
Md5:    2f75755b5df2d10b47e8cd9e68960015
Sha1:   e7966f02db13a476cd59cd60d7db2111669fd435
Sha256: 7c7c7aa3f0f375b50a11ac4af16e0abedf53610f0e09d3cd37dd8595c206f4ba
                                        
                                            GET /template/helen_v105/images/app.css HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Sat, 09 Oct 2021 09:06:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61615baa-79a3"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  assembler source text\012- assembler source, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Size:   8288
Md5:    a93e68eff2c7b04c07dad2107b97f4db
Sha1:   300505c589b2bee6170928977fa643b4fee3b9fb
Sha256: f6da2b069f4d9c3d1b355dc3f1997daad08e5c011f38ab734a02d44e5b57d767
                                        
                                            GET /template/helen_v105/css/swiper.min.css HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Sat, 05 May 2018 15:15:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5aedca8e-4562"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (17459)
Size:   3298
Md5:    3b0f19c6e3d95b50787117fc26d47c7f
Sha1:   33799bc7c5f9ebda4adde8d59116a87fc2cce23f
Sha256: 39c608aa9656788524e36287f3a9e0070085695a439e4081a5bfd48c3b6f83b3
                                        
                                            GET /js-sdk-pro.min.js HTTP/1.1 
Host: sdk.51.la
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         47.253.50.2
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: openresty
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Fri, 15 Jul 2022 04:05:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"62d0e7a4-861a"
Cache-Control: max-age=1296000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (34110)
Size:   12853
Md5:    29243483fe441404931c046d27be80a6
Sha1:   92a0c68b0169eff0addb8cc05a53f6e009d41d47
Sha256: 4865f22b0a68c6a0a6c2d3cbedb9a190ffbea105c4f1e2a5806172919456f3b1
                                        
                                            GET /template/helen_v105/js/player.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Thu, 07 Oct 2021 07:00:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"615e9b0b-1f69"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (2677)
Size:   2690
Md5:    b6bb4e4db100193ec73c997a7ca91b0a
Sha1:   fc31f30e6cc32f5ceb286d92a365e83f325bc44d
Sha256: 3dd88b7d57665d87ce8b5627bfc1cfcd740622de67d2f86b8e7e777c2eb27e2c
                                        
                                            GET /template/helen_v105/js/iconfont.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Mon, 07 May 2018 13:58:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5af05b92-cad1"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (51921), with no line terminators
Size:   20013
Md5:    bb9d7290947ec8441f00f58a7cbc35bd
Sha1:   78eba70bdebe8b1c6f361072ea6531526548a164
Sha256: 9a350ba2c99ec88da12f04fddb155572aea004982bfbd7becc7c40c7692c8849
                                        
                                            GET /static/js/home.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Tue, 29 Jun 2021 04:19:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60da9f4e-994d"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (2677), with CRLF line terminators
Size:   10518
Md5:    76bc4696bdad526716af0614231f07a5
Sha1:   bb57648b9643bf707e5196c27b72a4ac65b0ca7a
Sha256: c69e0174bb9a0ac801d4cc1c05c4b6b5e1351b6c642639bdc82312b4af8c1780
                                        
                                            GET /template/helen_v105/js/jquery.min.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Sat, 05 May 2018 15:15:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5aedca96-1497d"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (32025), with CRLF line terminators
Size:   33242
Md5:    e56b3c19cd07e7048fc64dc10a55e221
Sha1:   1ea5677a24e92ef3a071de9addafdcbc27461794
Sha256: e60dd9efa71514889c120a09e536ff67d3d6fcfd03ca0288599a8dbab11b9704
                                        
                                            GET /template/helen_v105/js/swiper.min.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Sat, 05 May 2018 15:15:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5aedca98-1538a"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (32000)
Size:   25016
Md5:    4fb972799dffb51ede34073666ce7db6
Sha1:   6905ee048aec1d79cddfbb6c11d8848968999474
Sha256: cdf70fe5a58135403febefaefbac597ed5c78c265e1b7aa0e9b312f524fcd2ef
                                        
                                            GET /template/helen_v105/ads/hfs.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Mon, 19 Sep 2022 11:47:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"632856c7-1f44"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   1049
Md5:    016de1c0d1f8f9d75bee1fb9cfce1524
Sha1:   efaf8567f75b0668a93d7cca33cab3c73618080e
Sha256: f0628571b8769dffacbcd772c99c19c37ac21833b4999aaeda9be4e50e5e49d7
                                        
                                            GET /template/helen_v105/ads/we1.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Sat, 24 Sep 2022 04:23:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"632e8650-a4a"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   445
Md5:    017671d65674e5b10d13d57a3dd98d45
Sha1:   97fa14956d1eb37dcc1887569c9053a7f427b491
Sha256: 6d62d2e89dc24d96087b782e1102636c6e5e93b96d9820221a2a0ec680fd7696
                                        
                                            GET /template/helen_v105/ads/hfz.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Thu, 22 Sep 2022 14:00:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"632c6a77-6d7"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   517
Md5:    1be28295e530cd7d5fab239437fa6e99
Sha1:   90c7276832a21b0f9b57e4664ff0b17620edd5cb
Sha256: 4321dd752a8c5db219541fc281736786a43f627a3df7137f1c486841c9cc035f
                                        
                                            GET /template/helen_v105/css/q2.css HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Sat, 09 Oct 2021 09:04:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61615b11-13c4f"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (588)
Size:   20872
Md5:    71f393fd9eaace5e8738c1be5be3c6ef
Sha1:   e6bef8b6a7bc0620e9c7a78e65622c79c5dd431e
Sha256: b2e719d360a983d1cf2cc3d2a3e5a20dd2873cadb74de21017f1b27ea73f06ea
                                        
                                            GET /template/helen_v105/ads/77.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Thu, 22 Sep 2022 13:57:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"632c69c4-491"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   627
Md5:    dcaebe569cef174e1f59bb293b9732d7
Sha1:   c1f9ac22b2540efbe167ef711156d857eada9ca8
Sha256: 06c010808e96217677f6b68b1131828cd4c185e72744b6e406a61b65580c06bc
                                        
                                            GET /template/helen_v105/ads/hfx.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Thu, 22 Sep 2022 13:59:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"632c6a52-5b8"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   495
Md5:    6321c08039e0f4cd953069fe9afc8b20
Sha1:   ff94e3078147c44cb31aa899d30977cdb08b8341
Sha256: 50899e1b0c278bf4d83f1f1c206c7b8bbd906de291d08f7de1d27c48b2b33f78
                                        
                                            GET /static/js/tj.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Content-Length: 30
Last-Modified: Sun, 02 Jan 2022 19:31:13 GMT
Connection: keep-alive
ETag: "61d1fd81-1e"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with no line terminators
Size:   30
Md5:    5db64a5896e78ecbcb5d64e71013283f
Sha1:   542393665200a7bb30a887f402dae3eb2062980e
Sha256: f53a9bfceaee649430a3442711675d95eee375219d07f8e18a9a7e0a01ea99f8
                                        
                                            GET /template/helen_v105/js/lazyload.min.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Mon, 07 May 2018 13:57:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5af05b4c-fe6"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (3276)
Size:   1556
Md5:    798681852c5f1d9a7cc1dbadefda06d5
Sha1:   45b4362887487199d923370376440f0678a3c380
Sha256: 1c0933e4d2c26d1a489b0462b36fdf14a78ac9b8db2e42794aa0dcef26897640
                                        
                                            GET /template/helen_v105/js/app.js HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Last-Modified: Wed, 02 Jan 2019 07:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c2c66a8-13ae"
Expires: Mon, 26 Sep 2022 16:23:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   1614
Md5:    cd5da2a5ba13fd134b077b681866cd48
Sha1:   780be3e75972773ab67cc5aedb00e3ccf3b6331d
Sha256: b5bd1765a887aef771e14b7d0226a908ac11359fcb224adb4e48afaeae493c5f
                                        
                                            GET /template/helen_v105/fonts/iconfont.woff HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://di1.wynb16.top/template/helen_v105/css/q2.css

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:26 GMT
Content-Length: 6720
Last-Modified: Sat, 05 May 2018 15:15:34 GMT
Connection: keep-alive
ETag: "5aedca96-1a40"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 6720, version 1.0\012- data
Size:   6720
Md5:    e4ab9acbb868dc462eda82de8cf64428
Sha1:   f20a14b46db28f22728da11b16f8fc92684f095d
Sha256: 5674e754dbf6c112af013ea728b0e8a9ed299f370f45e5cf380c87bcb8dcbe50
                                        
                                            GET /template/helen_v105/images/21bg.jpg HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/template/helen_v105/css/app.css

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:25 GMT
Content-Length: 106643
Last-Modified: Tue, 23 Jan 2018 13:20:48 GMT
Connection: keep-alive
ETag: "5a6736b0-1a093"
Expires: Wed, 26 Oct 2022 04:23:25 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size:   106643
Md5:    f6d436a223dd136100b8ee1e850ad89a
Sha1:   b18ec9d3645685389adb97923835bbd0096f8117
Sha256: a56b85e2663ad5c1decd9bceefa9a3a758130c29b97afe06610e7226f77bf5f3
                                        
                                            GET /template/helen_v105/images/ss.png HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:26 GMT
Content-Length: 29542
Last-Modified: Wed, 26 Dec 2018 04:51:08 GMT
Connection: keep-alive
ETag: "5c2308bc-7366"
Expires: Wed, 26 Oct 2022 04:23:26 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 150 x 210\012- data
Size:   29542
Md5:    1339529c386f47bc3a5dc4efe5006de0
Sha1:   205b23221cf47c4f7ad4e31a274fc4a829ba8ca3
Sha256: e692502fe1883bae714f5ac5ceab175f6e408b312f847b6f9a866f38247c331a
                                        
                                            GET /api.php/timming/index?t=0.15557693058449107 HTTP/1.1 
Host: di1.wynb16.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         154.208.77.247
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=8r4alpfjtg0u1da4l3ho5jtnrh; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with no line terminators
Size:   118
Md5:    866d4aa5c812db10b23eb42d80f5ad7d
Sha1:   fc818785247f181f508f9fdd023b37de38963bfd
Sha256: 3ff8cad4ea43a9c5829a4e9b189f7d30c933ce795f31c502ed4ba1de3b058665
                                        
                                            GET /images/03917120009z0w03uDAF1.gif HTTP/1.1 
Host: dimg04.c-ctrip.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.110.17.24
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 534311
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=14956532
expires: Sat, 18 Mar 2023 06:58:58 GMT
date: Mon, 26 Sep 2022 04:23:26 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 100\012- data
Size:   534311
Md5:    d3bf6809a6a8fc553adc36091041ece3
Sha1:   bd73a2d6bf6d523dde40ed4de7dbc42804e2ae02
Sha256: 1a25b6969acc7ef5a3d6c3f7903edd923e25c7d86ca5f5969897380fb2477c58
                                        
                                            GET /hm.js?3b9e2f2fe2714afd3bd95d6fa4c6071c HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11343
Date: Mon, 26 Sep 2022 04:23:26 GMT
Etag: a4b8cae95e6f33fe88c56d00353a4abf
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6B71A47D12B4DF8B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (630)
Size:   11343
Md5:    63cf252153900f5d91decdb85f20b29b
Sha1:   f600d55585e42ff5335dd2893d7b7ef2aacae658
Sha256: dfa68e404d60f6439e121dad55965ddbc00feb48b080d0e95dbb0357fafbbe50
                                        
                                            GET /hm.js?118d8c4b51d138a967fb082395b27809 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11340
Date: Mon, 26 Sep 2022 04:23:26 GMT
Etag: 11c77bc5ed71d237ea06ff3de1c5b605
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A211B1F063E9FC6F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (627)
Size:   11340
Md5:    5eb724a3e54af5b4df09c8da982ddd46
Sha1:   cf44103342173df933602a1a031376741a62b734
Sha256: 2934da697e49dd97cf92f823cfd758a56a058ae67d9b8090f3665ac6db5ad982
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 30 Sep 2022 00:57:54 GMT
ETag: "d30f46f12b48985b4b7069c6cc5e2aaace47f93a"
Last-Modified: Mon, 26 Sep 2022 00:57:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1401
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7509396a7de7b50f-OSL


--- Additional Info ---
Magic:  data
Size:   1459
Md5:    46c0a8fd7b9eade8bb532b9ca4748b79
Sha1:   d30f46f12b48985b4b7069c6cc5e2aaace47f93a
Sha256: 7b5f2e509659337c633d04de5cb1308cfd32b68d754a8bdb44515e638e8c4002
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 30 Sep 2022 01:51:12 GMT
ETag: "507e1ebf5a039e1a9c35d1f4f5e57d47112e6b5a"
Last-Modified: Mon, 26 Sep 2022 01:51:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2807
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7509396a79c8b4f7-OSL


--- Additional Info ---
Magic:  data
Size:   1459
Md5:    028313d46599c8d47968c21504eb60de
Sha1:   507e1ebf5a039e1a9c35d1f4f5e57d47112e6b5a
Sha256: 3af6d9dcf0d930b7790192e7ef2b9884ee2180deed555484496989d07e932c6d
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 30 Sep 2022 01:16:32 GMT
ETag: "8804b5afe62808e091d4bb5401536998e3059a3e"
Last-Modified: Mon, 26 Sep 2022 01:16:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2807
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7509396aae0ab50f-OSL


--- Additional Info ---
Magic:  data
Size:   1459
Md5:    a16063544a3f417724abdd49220d4235
Sha1:   8804b5afe62808e091d4bb5401536998e3059a3e
Sha256: af4f3cc86be1e38e5a29a0578a2945bb5c524a764c9431aced62ea20f7a47868
                                        
                                            GET /upload/vod/20210705-1/ad1a35cf6adb419fe2c94a8880a7b454.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 7664
cf-bgj: h2pri
etag: "60e28b46-1df0"
last-modified: Mon, 05 Jul 2021 04:32:06 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3222
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gHrR5RL%2FQ3pdzzXFLLJcHO6lv%2FlyUh8wiqozUopgzMDmqovJl%2BNQqkjkZdf4kimU6914m7Fdvfl0smAQGj5T%2BXRB%2BTzbjL7OLLhLeb80ULXp64xRIsQNUuktdUQ%2FTGauPn1M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396abc897282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 23x30, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   7664
Md5:    c41bba5dbf22854f54547d2067f675b1
Sha1:   07ee2a9b636e0f206d9e8ba65ec09e94b5d1fd2f
Sha256: 74c11da4d9200db308e79c68ccc13e2fa797a3cbc80632531c4086e9407caaaf
                                        
                                            POST /v6/collect?dt=4 HTTP/1.1 
Host: collect-v6.51.la
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 391
Origin: http://di1.wynb16.top
Connection: keep-alive
Referer: http://di1.wynb16.top/

                                         
                                         139.9.63.194
HTTP/1.1 403
                                        
Server: nginx
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://di1.wynb16.top
Access-Control-Allow-Credentials: true

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 18:21:32 GMT
Expires: Sun, 02 Oct 2022 18:21:31 GMT
Etag: "d20f77acad8a10c9f1527d96914022c75a3d526c"
Cache-Control: max-age=568083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396b1dacb51b-OSL

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F6703E685037B62C394C03D16E386C1CECE522BF3F4892E5AD0F23032E89FA18"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4061
Expires: Mon, 26 Sep 2022 05:31:08 GMT
Date: Mon, 26 Sep 2022 04:23:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 01:17:33 GMT
Expires: Sun, 02 Oct 2022 01:17:32 GMT
Etag: "ea80874d3d5e417af061175637d34f38097ab550"
Cache-Control: max-age=506644,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396a7fe01c12-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 16:29:50 GMT
Expires: Sun, 02 Oct 2022 16:29:49 GMT
Etag: "d8ddad9e06ceed1eae53a71d5b46e614d3cb08c5"
Cache-Control: max-age=561381,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396a7b6eb523-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 15:53:07 GMT
Expires: Sat, 01 Oct 2022 15:53:06 GMT
Etag: "6df449d35ec86fd6122a216eabe37517e86b7a82"
Cache-Control: max-age=472778,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396a7eac0b49-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 07:05:03 GMT
Expires: Sat, 01 Oct 2022 07:05:02 GMT
Etag: "ca59678467dfdc5bc65a2725692aaf37413f659e"
Cache-Control: max-age=441094,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396b1f920b69-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 08:20:46 GMT
Expires: Sat, 01 Oct 2022 08:20:45 GMT
Etag: "23ee552393f953d4a3b9f1383d95715cbb0a4673"
Cache-Control: max-age=445637,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396c6c94b523-OSL

                                        
                                            GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=972555912&si=3b9e2f2fe2714afd3bd95d6fa4c6071c&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.2.97&lv=1&sn=35950&r=0&ww=1252&ct=!!&u=http%3A%2F%2Fdi1.wynb16.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Mon, 26 Sep 2022 04:23:27 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=893A691FEE66A035; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /upload/vod/20210705-1/52c7cb45eb4e7b02e517e464e4b219b1.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 12952
cf-bgj: h2pri
etag: "60e28b45-3298"
last-modified: Mon, 05 Jul 2021 04:32:05 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tphw8CuvjpY8%2FoCcBLshEA0XH8o51iYX8D86E%2F7pw61c7BfsXjBKwpp5PW%2BgAn448RnZ0VJrMoOYa6QJcFdjrYYj%2FVCyOOCKwx5BIFsdcDAzWDrSMODwjTuxO7hsCumIhB3Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396abc8b7282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   12952
Md5:    a0323ed6d742174718f2885c548e3b35
Sha1:   067216e6462f1a4bf8c82f8211f7899157f1d0be
Sha256: ad9cf5f068f88d2d8f110e5d7d14cab1957f14bbe3a153b9889d8467da9464e2
                                        
                                            GET /upload/vod/20210904-1/9d294e02dfdbad04a6e1b87350f449c6.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 7169
cf-bgj: h2pri
etag: "613274b0-1c01"
last-modified: Fri, 03 Sep 2021 19:17:04 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hpPLbz6TF5Zpx53rvoIU66DqcOEoMMUVRAEEE0m6YPV4QP6yC2HDp7r9HWArz9BTlRk6KgdL4bGvUP8M3HxMrtyTch05kXORTNgaO99owZvN8liSApS7QyIjoqaQgdTQ5rFe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396abc837282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Size:   7169
Md5:    844dab971f745ee9112b72a5363c420c
Sha1:   568c045d0404fe010bb07a1d92038cacb71cdb23
Sha256: cf3e390b750f18e3929a37f185a303baeca4138adcc472f5c36c6201dd139dbc
                                        
                                            GET /upload/vod/20210904-1/704ac85471d20331caa3aa9eba24c8b7.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 76928
cf-bgj: h2pri
etag: "613274b0-12c80"
last-modified: Fri, 03 Sep 2021 19:17:04 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vkrRKj7in%2BlpMEZ%2FGd%2FI6OrElsSOKLaisr66bSev1u7KuLNiNzOPEfgm8xtOJKXgkX0wr8Y8MYJhShNqejaZ2eg37eTyLqlCpt%2FdRFVvjDYDjexltIAxSPgVx0WoFataH4ha"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396abc877282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x394, components 3\012- data
Size:   76928
Md5:    dcfb693e216a00483c83e2a77724b6bd
Sha1:   6592ff72521e904ba596b0c6a490750e21866124
Sha256: fbf36d493202e22df32c465c01323d1d7b23a18b1aa18bffebff5fa5c7671b50
                                        
                                            GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=967082757&si=118d8c4b51d138a967fb082395b27809&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.2.97&lv=1&sn=35950&r=0&ww=1252&ct=!!&u=http%3A%2F%2Fdi1.wynb16.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Mon, 26 Sep 2022 04:23:27 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=4C4C38F417CDE502; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /upload/vod/20210705-1/b103f2af2671cd33ae20a36aa1cc2672.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 7744
cf-bgj: h2pri
etag: "60e28b46-1e40"
last-modified: Mon, 05 Jul 2021 04:32:06 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NrjIjfvAID3xGFYXb5qgy2c7Q1eTD2ws0WOz8Xw0JKaTJj49fAmB3PBwq5onHySrHstAgqqBJKoXTrMgtT01o1rXbDHRo372RF5qJ3vKa6D6QZ6jW2P80WxH8mz6hqUgnIbr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396abc887282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   7744
Md5:    6c5147447e2e2fd2e63c03be9dfd849e
Sha1:   ab074fd85a5722fc9cb604ea40f274e605aaddc5
Sha256: 67123c76ece81a63dce5ee080f6e49f762d44e74afe0451c7fdef18aaff1b07f
                                        
                                            GET /upload/vod/20210904-1/b0bd1ba58337778178765b1d4a742c8e.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 60557
cf-bgj: h2pri
etag: "613274b5-ec8d"
last-modified: Fri, 03 Sep 2021 19:17:09 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=prT5YsqzA%2Fv3izSeJ1ydm1evBFQN%2BP71aGD6QsxgiKnRsEMp65U6tzsK3yhfmlC%2FZfOAX5zFGTsADn3Z6FxEzUuUWF6V%2BTd4iu1oTtErGgrM4oOGZqIZ9pvN1pFwQjcz%2FDCh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396abc857282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 800x539, components 3\012- data
Size:   60557
Md5:    9d74006d0045bb74cb1bd08963d8f0ca
Sha1:   4feaaf5e77cda72f17898b04ea8ebda66daf271c
Sha256: a0bc5037a944b714cf4be65e5d85f0ba019cb2d2a493c3bc6a5b94cb89fb7450
                                        
                                            GET /upload/vod/20210705-1/7f4632d148a2258d293119b5ececd4b6.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 7731
cf-bgj: h2pri
etag: "60e28b45-1e33"
last-modified: Mon, 05 Jul 2021 04:32:05 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AeBLswfmziU0UELxBcv7B9pOVHhJ0b%2B7YYMgNuKO5FVewJG4jipqOJtlJSWdVni1l4jJnUJekCg2uEBi5K77t72lROPudHoCKZWVT82q6uMYWpDKQgoXw1q5yO845bZKtyXe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396abc8a7282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   7731
Md5:    912f28df14f25faf52ae5ded1cffd0ed
Sha1:   9019b58a472c0a41404b50b0700fc4ae28ae56a5
Sha256: a09db40f0a5a90029531b914afd6e4e4c2b687237e6a815abbc90bc2a2aafca4
                                        
                                            GET /upload/vod/20210705-1/3b28ba71517f0923c537b99bb8d4ed12.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 6858
cf-bgj: h2pri
etag: "60e28b45-1aca"
last-modified: Mon, 05 Jul 2021 04:32:05 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XVnLgLkNrY3JnzkXr2At7FgG3cB8chnclGjfekV51eYtlkdm929Gvom9W%2FWbN5E5XOS%2FtAe%2BlmnYuC4s9zBxcbOhHaR1EKvaMIKn%2FAVY7OW8yyyCHzBf6dGsyBiGomab6x1W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396adc947282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 23x30, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   6858
Md5:    0ed4e6ce9371dba6f86dec62c5d7a9d3
Sha1:   cc1e5430ddf712a11979c06726dfc8999979c315
Sha256: a0d41729d2512dadd44829c2ccaacae7ca35d29b9e8494b7bef40bca35873966
                                        
                                            GET /upload/vod/20210904-1/79cdad3e9feaf6dd360e342cb01e8ec4.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 8943
cf-bgj: h2pri
etag: "613274bc-22ef"
last-modified: Fri, 03 Sep 2021 19:17:16 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZjYrlVu%2Bv8NrdlhCsccOEOh4PaUr2S1jny1RHfTCbflgMHKfhk%2F%2BcJQw2COhuYxJHOf0CIb85pP8RK8w2AG9YJ0uYTUCE40UmXf1RxZ4CWnfN%2B3B0SL0gUT9iY4IC038AKUy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396aec9a7282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8943
Md5:    da20569b3284ed3b4c6602c7731dd144
Sha1:   493732590ff8b558330fb000ae6c2aa303600d69
Sha256: 7626eafc77e77017a12b2657493c83e4db8651dd05d26aae82370e8c2cb2aa67
                                        
                                            GET /upload/vod/20210904-1/4c582d5eba558682c69b96d8099ab114.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 24871
cf-bgj: h2pri
etag: "613274c0-6127"
last-modified: Fri, 03 Sep 2021 19:17:20 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U0QyywzAjP4l1GL%2BxhJIWRurtAmmWlBznKUqGd8%2BmX4%2FU5XZQlOAsXjThnml5j33TGwg7o6TSHaG4xqYSqksW2LqbGfrcw6aGBD2SnIQskqlo5ZCmyHkb4nkXkrRPT9xx8J4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396adc957282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 636x356, components 3\012- data
Size:   24871
Md5:    5bd10d9a9eaa8033c1ae2d21cd0b1fa0
Sha1:   be0914082ed52072ce03bc87d8465cbdccead632
Sha256: df702e964683133d91ff70af49d69d1e7e90508daf65e3d56f6abafe2bda4d8e
                                        
                                            GET /upload/vod/20210904-1/77a9b2add91e3b99e7ec1bc78efc2ea2.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 19148
cf-bgj: h2pri
etag: "613274b4-4acc"
last-modified: Fri, 03 Sep 2021 19:17:08 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xRAeMZ87glJ%2Bzbri1irwh8%2Bo6yFPBdifwVR5z2KNMRd7aQPs8L2fsA7K1wGrgfsUBQ8f1aloxFzwjrV2VpLZVovAa3CY6qf263thx%2FxsSk8ir5nA7omppTPsaEXDykKT%2BBgP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396adc977282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 567x316, components 3\012- data
Size:   19148
Md5:    027cc558ce9daef7799c64b78c7fad96
Sha1:   ff5da7cc353cfb3c32342297b1929ac436131fe4
Sha256: 603447579b92b28c5349bbd313b06a5c11bcd2c60e7bcb0e39c9a4bed4650b9b
                                        
                                            GET /upload/vod/20210904-1/f90b10f3cd18005876f392fd561251f6.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 20762
cf-bgj: h2pri
etag: "613274b5-511a"
last-modified: Fri, 03 Sep 2021 19:17:09 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RYA4DGvdsddP8rzyt%2FPOXy%2BY%2FcPjwZxhsnPisy9vIEk9dD%2B8LPpUn5QIM134W7oYxL3TcSOud8R8vqXEHiLAe%2BbW1dqSAFuVn8zSCxTEn08wlGuIo7CMwSdSosWPlhGBAGAF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396aec997282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 777x412, components 3\012- data
Size:   20762
Md5:    d987e7bab843b9807a115f6873a17364
Sha1:   a992d429a8f4f3e49972db70f3a85b36bbe42d35
Sha256: 0869fc00007cd4ddfa60eabd621f8b65f3ca2b38ba93bd6b9390cebf0dd5617f
                                        
                                            GET /upload/vod/20210904-1/e77f3b5f9f63ba18b5b77042d8bf8db5.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 121696
cf-bgj: h2pri
etag: "613274bf-1db60"
last-modified: Fri, 03 Sep 2021 19:17:19 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xdPYlMcIi90zZ%2F7Wvf8IuH2nj1kEpUbXQK9vHd8B83fs77Z%2FiR7qP84ngtcxzjWikrSB3R5ymd%2FLggCX73rnAEt%2B0k8OeHyA%2B06FMm0OaRTg7BJu3sa6kR%2Bk%2FQvChdOSjG0F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396abc847282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x394, components 3\012- data
Size:   121696
Md5:    e7d58a547752f76ab26f30ff8becef3c
Sha1:   2ddd0fde604e817a59de995740bf6a5f0eb639e6
Sha256: 3057037a2ea9c08974d7d67be2742183ebf28f81633d43069e4b073d502fde88
                                        
                                            GET /upload/vod/20210904-1/faf4a81bafcb82cdcd134c1812d1e9ad.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 39373
cf-bgj: h2pri
etag: "613274bc-99cd"
last-modified: Fri, 03 Sep 2021 19:17:16 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JeVuXCSKP8gbdrvlYHDL8o9I1UaVnvuW6g%2F4N38iF5uM3jJmLa25l%2FXYNTg0vc%2BHifw3ViiTIN73bNT8VZlvWk7w2N2mHqlmUQWzxK8HJ%2FIXFWOztYuJQrdjjtljtUkSPrPx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7509396adc927282-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 643x361, components 3\012- data
Size:   39373
Md5:    fba344523f35b2d5387023f617353db4
Sha1:   379156dd1382592ebaafa3345945d5a21c8b2444
Sha256: 8ad5e8e9cf6fb39a4bbb7f4e613c70bcdb58cdf2a57fdfff4d9ea7aeee41838d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 22:55:24 GMT
Expires: Sun, 02 Oct 2022 22:55:23 GMT
Etag: "716592382be8d4b5c6e51a089d158901b94c0555"
Cache-Control: max-age=584515,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396c2e6cb51b-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 08:20:46 GMT
Expires: Sat, 01 Oct 2022 08:20:45 GMT
Etag: "23ee552393f953d4a3b9f1383d95715cbb0a4673"
Cache-Control: max-age=445637,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396c582b0b69-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 08:20:46 GMT
Expires: Sat, 01 Oct 2022 08:20:45 GMT
Etag: "23ee552393f953d4a3b9f1383d95715cbb0a4673"
Cache-Control: max-age=445637,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396c68e81c12-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 08:20:46 GMT
Expires: Sat, 01 Oct 2022 08:20:45 GMT
Etag: "23ee552393f953d4a3b9f1383d95715cbb0a4673"
Cache-Control: max-age=445637,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396c6f940b49-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 10:57:49 GMT
Expires: Sat, 01 Oct 2022 10:57:48 GMT
Etag: "55ed23ca1bc956d1ad8b7f57655417de5ba65c83"
Cache-Control: max-age=455060,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396d98fb0b69-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 10:57:49 GMT
Expires: Sat, 01 Oct 2022 10:57:48 GMT
Etag: "55ed23ca1bc956d1ad8b7f57655417de5ba65c83"
Cache-Control: max-age=455060,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396cbcc1b523-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 10:57:49 GMT
Expires: Sat, 01 Oct 2022 10:57:48 GMT
Etag: "55ed23ca1bc956d1ad8b7f57655417de5ba65c83"
Cache-Control: max-age=455060,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396db8500b49-OSL

                                        
                                            GET /hm.js?7594b934d9a76568e9987e886fc92cc2 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11341
Date: Mon, 26 Sep 2022 04:23:27 GMT
Etag: 738a92dd5e7b1ee996ae02902ecb6787
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B57F1CF2C7528716; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (628)
Size:   11341
Md5:    64792b682856a31931d944a103b91d38
Sha1:   abc6868a2b97165d2124cddf875fa9d53e8fe878
Sha256: 53ad77a5060b60c0a80cba5b2e88218b50f7a2adebab6538787f38e597d61ac3
                                        
                                            GET /hm.js?09b570ae57a8bdd90710ea1938df4e59 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11340
Date: Mon, 26 Sep 2022 04:23:26 GMT
Etag: ac3c19dfa956771c0a8536380795cb69
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=C944CCE7AD704540; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (627)
Size:   11340
Md5:    ad3ea82a1938cd87d5290a20871fb2b8
Sha1:   d9b4c50283f5160b0ae98250e7582ac546cc6a56
Sha256: 2e9735268a729cbe9001a358428e1521e53b6450677a9df16e520cbc64f85af9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4426
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 04:23:27 GMT
Last-Modified: Mon, 26 Sep 2022 03:09:41 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 727

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 04:23:27 GMT
Server: ECS (amb/6BA9)
Content-Length: 727

                                        
                                            GET /hm.js?3245eddf7b031a037c644e0f859ed26d HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11341
Date: Mon, 26 Sep 2022 04:23:26 GMT
Etag: 1ee66de1a1bff177d9dbaa371ac9a754
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=884949C12EF96C44; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (628)
Size:   11341
Md5:    72b3c9ef0110887f223e8352fa8acdf7
Sha1:   e836ea91381950079f7466f3e77219fcdd79731e
Sha256: 7d81896df3661711ac1438f39b9cc8cf3b1dfb588c5dffaf67c99ece3c5e1fa7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 21:45:26 GMT
Expires: Sun, 02 Oct 2022 21:45:25 GMT
Etag: "5b083362c173e63a6f3284b8de23f421c00fbdc3"
Cache-Control: max-age=580317,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396e193c0b69-OSL

                                        
                                            GET /hm.js?bd1c4e4e3b958139dfa1d89e8e7306ed HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11343
Date: Mon, 26 Sep 2022 04:23:26 GMT
Etag: 0c133f3e81e8ecc809efeecace4633b7
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=ED9445C183A96A8E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (630)
Size:   11343
Md5:    463b28e9dda0b756b2ee7c5cf37e1f71
Sha1:   35fad861056e9f0f7b906ed1836ec73e3e838da7
Sha256: 5ba2f91bb5a3b98b7582fda3315813c9dd38eb036fbb6b7574aba773ad1d2162
                                        
                                            GET /obj/tos-cn-i-dy/344634db9b6a41158d93b908983d1ab7 HTTP/1.1 
Host: p3.douyinpic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         47.246.44.229
HTTP/2 200 OK
content-type: image/gif
                                        
server: Tengine
content-length: 439790
date: Wed, 14 Sep 2022 14:25:08 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Wed, 14 Sep 2022 11:30:49 GMT
nw-session-id: 20220914193049010150137047032108997qjmf02dy
nw-session-trace: 2022-09-14T19:30:49.714447827+08:00 34
x-bdcdn-cache-status: TCP_HIT
x-length: 439790
x-powered-by: ImageX
x-response-date: Wed, 14 Sep 2022 19:30:49 GMT
x-tt-logid: 2022091419304901015013704703210899
via: n150-055-204, cache2.l2de2[0,-1,206-0,H], cache12.l2de2[2,0], cache12.l2de2[3,0], cache4.se1[0,0,200-0,H], cache4.se1[1,0]
x-request-ip: fdbd:dc02:22:96::209
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 012daabd0b40cb118ccb02c4517a5fe301689ac17f00a14349a170232414db99d0ad2cbcbdb177e5ac30d8e9fa388f72fa3454057693359b65deb49c307c734ba6278d10a0357c9e53a36026db8282bb98eb5b22c3ca93811d146643ebeda0f8b1
x-response-lb: image
ali-swift-global-savetime: 1663165508
age: 1000699
x-cache: HIT TCP_MEM_HIT dirn:4:90928527
x-swift-savetime: Wed, 14 Sep 2022 14:34:25 GMT
x-swift-cachetime: 31535443
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9816641662077068918e
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 60\012- data
Size:   439790
Md5:    07ad6948d174b603a75e166a521bbb04
Sha1:   d08af2d0fc9693ce636e66cbb89277875d7954f4
Sha256: 40853d1d4eb09490225dfe79a563bcc574195734b42387a2a4043f854bc3ca2b
                                        
                                            GET /hm.js?509936279e06bc83b2661639fdba65fd HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11342
Date: Mon, 26 Sep 2022 04:23:26 GMT
Etag: 7f7369e081bc7388a89a2ea46a792959
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=821E1A85C06EA1C4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (629)
Size:   11342
Md5:    bd8f98b1539802a4bddd166bcc960518
Sha1:   fb6cbb1739a8a62127676105e301a6bce75d4253
Sha256: 576a0c8586e189a0f30575f2015b361e424a8368091533967daa144f84ed0837
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 02:04:47 GMT
Expires: Fri, 30 Sep 2022 02:04:46 GMT
Etag: "871d5189d683e5156d1735c53f8a46c7dc2bdeb2"
Cache-Control: max-age=336678,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396e58aa0b49-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 10:57:49 GMT
Expires: Sat, 01 Oct 2022 10:57:48 GMT
Etag: "55ed23ca1bc956d1ad8b7f57655417de5ba65c83"
Cache-Control: max-age=455060,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396d6f47b51b-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 10:57:49 GMT
Expires: Sat, 01 Oct 2022 10:57:48 GMT
Etag: "55ed23ca1bc956d1ad8b7f57655417de5ba65c83"
Cache-Control: max-age=455060,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396db9791c12-OSL

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B090EFF5C1946CBAF2DD1F3AED162DBFAF0722DC00EEA2BC516F52E5446FA15D"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18719
Expires: Mon, 26 Sep 2022 09:35:26 GMT
Date: Mon, 26 Sep 2022 04:23:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 14:54:11 GMT
Expires: Sat, 01 Oct 2022 14:54:10 GMT
Etag: "27462438fe02652377d010b490a87fcd115d737e"
Cache-Control: max-age=469242,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396eb8d90b49-OSL

                                        
                                            GET /upload/vod/20220926-1/4c0a400c4b643c518933c117aaf30ea7.jpg HTTP/1.1 
Host: img.lytuchuang2.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.52.21
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 10977
Last-Modified: Sun, 25 Sep 2022 16:09:50 GMT
Connection: keep-alive
ETag: "63307d4e-2ae1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 5713x4285, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   10977
Md5:    48289ac9c2f8fb4ac0a0d12fa5f66cdc
Sha1:   7bdbeb5c8f0c4f07b7f0df10acb7103f06d87e8b
Sha256: da2c3bed16bd66fe88413818b504dfcf70ca13fb2aa9d73e48872593b0609c82
                                        
                                            GET /upload/vod/20220724-1/65d26ba0ac520f00520cdc4186dbdc1e.jpg HTTP/1.1 
Host: www.laoyazypic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.54.85
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 33382
Last-Modified: Sun, 04 Sep 2022 15:53:48 GMT
Connection: keep-alive
ETag: "6314ca0c-8266"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 680x453, components 3\012- data
Size:   33382
Md5:    da301de7be1328f7904118480d1dfed6
Sha1:   336697a294e35143366f8d5833e948d5872ae8e8
Sha256: 0f946d34ba70944a11eaa745a09b7f420a47fcb2a7e7e2a90b65f032054013df
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 15:45:44 GMT
Expires: Fri, 30 Sep 2022 15:45:43 GMT
Etag: "8455d5fddbcf9e6081e77b276dede5891f7e69ff"
Cache-Control: max-age=385935,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396ec893b51b-OSL

                                        
                                            GET /img/96060.gif HTTP/1.1 
Host: taiwtp1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         220.128.218.220
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Mon, 26 Sep 2022 04:21:41 GMT
content-length: 46855
last-modified: Wed, 09 Mar 2022 07:10:56 GMT
etag: "62285300-b707"
expires: Wed, 26 Oct 2022 04:21:41 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 60\012- data
Size:   46855
Md5:    2b9c30b086d03d90a45a9174aef7b408
Sha1:   e87dbe76669e2f402826dd598bb047d793b1e20c
Sha256: f1eb3044b464fb4b4b8f3e081295bc19cc4cddc9361adb34ad7fb73b93b25de6
                                        
                                            GET /upload/vod/20220926-1/4b5e543c7646562ff2d3c3313fcd779a.jpg HTTP/1.1 
Host: img.lytuchuang2.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.52.21
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 13665
Last-Modified: Sun, 25 Sep 2022 16:09:29 GMT
Connection: keep-alive
ETag: "63307d39-3561"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 135x101, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   13665
Md5:    a137fb1357edbfd8d00cd1dcafd698a3
Sha1:   4da2347ddc63548abb4cae5e8d37b24967fd244a
Sha256: 8fedaf3084616d2598317582e79913143ba65967e40468d0acf39e98aedc897a
                                        
                                            GET /upload/vod/20220926-1/cd472d0a08f6105faf551301e166c23d.jpg HTTP/1.1 
Host: img.jialiimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         108.186.171.14
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Mon, 26 Sep 2022 04:25:57 GMT
content-length: 7000
last-modified: Sun, 25 Sep 2022 16:06:28 GMT
etag: "63307c84-1b58"
expires: Wed, 26 Oct 2022 04:25:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 270x203, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   7000
Md5:    8ff9661df1f05db6a8eba6be76ca8598
Sha1:   0ad1c8047ced707d4aa9444e505933bf06a99ded
Sha256: 082026c221dfde1ea7c47faf9d82371d923547bbd770ba44dee08013ff0fc0c7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 15:45:44 GMT
Expires: Fri, 30 Sep 2022 15:45:43 GMT
Etag: "8455d5fddbcf9e6081e77b276dede5891f7e69ff"
Cache-Control: max-age=385935,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396f1a1b1c12-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 21:45:26 GMT
Expires: Sun, 02 Oct 2022 21:45:25 GMT
Etag: "5b083362c173e63a6f3284b8de23f421c00fbdc3"
Cache-Control: max-age=580317,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396e5d9bb523-OSL

                                        
                                            GET /2c164007ac96497ab449d2196508803a.gif HTTP/1.1 
Host: 17271819.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         20.239.191.20
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 29 May 2022 12:21:37 GMT
ETag: W/"62936551-4898c"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 80\012- data
Size:   70213
Md5:    827ca50cd0e8aa2e60411690f8612e09
Sha1:   0dad56117cc53cbc1311126155d8ae61a282223b
Sha256: 07c1e38c05611d710c70941cac15cb5c470bd04af0fcf1fb289311404c2be75c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 02:04:47 GMT
Expires: Fri, 30 Sep 2022 02:04:46 GMT
Etag: "871d5189d683e5156d1735c53f8a46c7dc2bdeb2"
Cache-Control: max-age=336678,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7509396e695c0b69-OSL

                                        
                                            GET /upload/vod/20220926-1/8b9ba42c52efc47daad1113c0661576a.jpg HTTP/1.1 
Host: img.lytuchuang2.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.52.21
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 8695
Last-Modified: Sun, 25 Sep 2022 16:08:07 GMT
Connection: keep-alive
ETag: "63307ce7-21f7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8695
Md5:    e310ad22526fb9d23f58ba8912f890c2
Sha1:   0a42b4bdb9ca4d03a7ca1194ab4bda338bd9257d
Sha256: db67794646b763c1195fd16b16d0bae73df7497cd2120def4eef6d183b59b38e
                                        
                                            GET /upload/vod/20220629-1/08f0e6bd581c349a7efb4efc5f65cf83.jpg HTTP/1.1 
Host: www.laoyazypic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.54.85
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 54520
Last-Modified: Sun, 04 Sep 2022 15:50:20 GMT
Connection: keep-alive
ETag: "6314c93c-d4f8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 680x453, components 3\012- data
Size:   54520
Md5:    41f2cd672ea60a463ef1d7a4624e0a5a
Sha1:   ab45a95b25f0dedff0f3d0dd9a767433dc12817c
Sha256: cf55947a877c45103dba8d3e3b5f8ab31bcc78bd7c39089d9f2df061df16bf12
                                        
                                            GET /upload/vod/20220812-1/662ca2a33a2260734f3f1986015fa5ad.jpg HTTP/1.1 
Host: www.laoyazypic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.54.85
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 48347
Last-Modified: Sun, 04 Sep 2022 15:54:47 GMT
Connection: keep-alive
ETag: "6314ca47-bcdb"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 680x453, components 3\012- data
Size:   48347
Md5:    d32e892ba59423c47928bfa332bc08e3
Sha1:   9b31f6d4aeecc7e932a78f874bb3438fb69c91d2
Sha256: 8bf7c5c233aeb92e878723d12e073fbcee912b474cbf7eb991dac62757f8e32c
                                        
                                            GET /upload/vod/20220924-1/f7255f73e1f8db7f7c1eb0ad062e91ea.jpg HTTP/1.1 
Host: img.tpttzy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.224.136.186
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 13342
Last-Modified: Sat, 24 Sep 2022 06:37:38 GMT
Connection: keep-alive
ETag: "632ea5b2-341e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 336x189, components 3\012- data
Size:   13342
Md5:    f760675c8ab9494008b833cdc3538ef7
Sha1:   ca5a3b92cd8e0494f411fd162c0165f2b066ac6c
Sha256: ce3937784c7120fe2d96b6b9c3b93c02c9b4591de20d73789259108c4a495268
                                        
                                            GET /upload/vod/20220924-1/e9ca563452cd0a93168cd7d5318f601f.jpg HTTP/1.1 
Host: img.tpttzy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.224.136.186
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 11670
Last-Modified: Sat, 24 Sep 2022 06:37:28 GMT
Connection: keep-alive
ETag: "632ea5a8-2d96"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 336x189, components 3\012- data
Size:   11670
Md5:    47c1cdab0951e1eebbebfdd02dd4b636
Sha1:   93a5d7ed263278964531b07baaf92ebfef1ac456
Sha256: 22787f5269fd4778446de5bbe53de7bc6c78654af068cbeaa5e4d3bc03320b45
                                        
                                            GET /upload/vod/20220705-1/751250e1d672bf496503b609592a2464.jpg HTTP/1.1 
Host: www.laoyazypic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.54.85
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 60770
Last-Modified: Sun, 04 Sep 2022 15:51:20 GMT
Connection: keep-alive
ETag: "6314c978-ed62"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 680x453, components 3\012- data
Size:   60770
Md5:    d3e1c1217f66a98214393a4b4721d22f
Sha1:   b5a7847ee8aa1abad3a49531e7951c9fe9f3b6c2
Sha256: 143710612612b7a76042ba08bdad6274af1270c6bbfe77996bfaa7da1153b7af
                                        
                                            GET /upload/vod/20220926-1/b32c635d4aad50e95cf0125af57124b0.jpg HTTP/1.1 
Host: img.lytuchuang2.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.52.21
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 10039
Last-Modified: Sun, 25 Sep 2022 16:09:27 GMT
Connection: keep-alive
ETag: "63307d37-2737"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Size:   10039
Md5:    59e0fb7bcfd364ff91d5dc6669f70148
Sha1:   b985b6cbf05754974d764e532ec4dc5780c6864c
Sha256: 395e2c1803f95b0aff92d3e49c450171462730f78056ce018d89a5dd2c43ab11
                                        
                                            GET /upload/vod/20220926-1/921a590ae0c4a95a3b5222bdd8034739.jpg HTTP/1.1 
Host: img.lytuchuang2.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.52.21
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 8867
Last-Modified: Sun, 25 Sep 2022 16:13:53 GMT
Connection: keep-alive
ETag: "63307e41-22a3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 5713x4285, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8867
Md5:    3aef986888bec9b822b479f6af03d525
Sha1:   a243718715ca91bad22eaa3051e8c318a43a809b
Sha256: 73bbf1ffa562c6f5991e3ff9c17b7343864838331fb250afd149f18dc7781986
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.cn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         47.246.44.205
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Tengine
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 04:23:28 GMT
Ali-Swift-Global-Savetime: 1664166208
Via: cache11.l2de2[195,194,200-0,M], cache11.l2de2[196,0], cache1.se1[217,216,200-0,M], cache1.se1[217,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 26 Sep 2022 04:23:28 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9516641662078617013e

                                        
                                            GET /f157c264dffc4d99ab16a145dba669d0.gif HTTP/1.1 
Host: vcwzfn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         45.61.212.131
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: max-age=86400
etag: "62c2fa8d-6cad4"
server: nginx
date: Sun, 25 Sep 2022 19:01:03 GMT
last-modified: Mon, 04 Jul 2022 14:34:53 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us4-cdnb-01
content-length: 445140
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 60\012- data
Size:   445140
Md5:    8dc9eeb6e2f698ff336e098bf7c002a6
Sha1:   5be86ef65976a88e36ad3f30fe64d700f1883e0d
Sha256: 0de22c84ec1ac628f800ba4c39c5967868975d2cfc7d00d9244a6431925b9454
                                        
                                            GET /2719d72ca72d49cf8efc39e40a93e430.gif HTTP/1.1 
Host: vecukb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.170.15.61
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: max-age=86400
etag: "6324565d-3f4d0"
server: nginx
date: Fri, 23 Sep 2022 13:49:56 GMT
last-modified: Fri, 16 Sep 2022 10:56:29 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-51
content-length: 259280
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 60\012- data
Size:   259280
Md5:    53d090335e8e78b28c5a51a7bcd9f866
Sha1:   42c109960113d98371ae8b95c216ffd7ef1a2fcd
Sha256: 66f9448c9ef2eb689df4f89ac297e2aaaf55e7b7f8d49aa646ff5569b4441bcc
                                        
                                            GET /upload/vod/20220926-1/e6cc163c5cdfd1fbf0eb0d408085b4ed.jpg HTTP/1.1 
Host: img.lytuchuang2.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.52.21
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:28 GMT
Content-Length: 12487
Last-Modified: Sun, 25 Sep 2022 16:08:41 GMT
Connection: keep-alive
ETag: "63307d09-30c7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 5713x4285, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   12487
Md5:    030ec9980387b9d7bc8835a5cd2ed5fb
Sha1:   5f17a4c4d8b2841da8812f341fe60293b6d4b142
Sha256: 7bac6a3dadaf42ae8f6f4eed7a8a8e884aaf92878768a2417fd0d663da832424
                                        
                                            GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1943424201&si=7594b934d9a76568e9987e886fc92cc2&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.2.97&lv=1&sn=35951&r=0&ww=1252&ct=!!&u=http%3A%2F%2Fdi1.wynb16.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Mon, 26 Sep 2022 04:23:27 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=F9458EFEDC008FFF; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1831869617&si=3245eddf7b031a037c644e0f859ed26d&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.2.97&lv=1&sn=35951&r=0&ww=1252&ct=!!&u=http%3A%2F%2Fdi1.wynb16.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Mon, 26 Sep 2022 04:23:27 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=765B592277C7953F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1148075903&si=09b570ae57a8bdd90710ea1938df4e59&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.2.97&lv=1&sn=35951&r=0&ww=1252&ct=!!&u=http%3A%2F%2Fdi1.wynb16.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Mon, 26 Sep 2022 04:23:27 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=60847C0B7E0A4033; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /img/200200.gif HTTP/1.1 
Host: taiwtp1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         220.128.218.220
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Mon, 26 Sep 2022 04:21:41 GMT
content-length: 75259
last-modified: Wed, 09 Mar 2022 04:51:10 GMT
etag: "6228323e-125fb"
expires: Wed, 26 Oct 2022 04:21:41 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200\012- data
Size:   75259
Md5:    03c13356e00c2033df2c88cb919251eb
Sha1:   f3a334a0366ddda6a87034f7d6c889c4d159dc8d
Sha256: 0c184e206259e8d0c54d3fc12d3d5332e9f6ff5f0404630fcb2daefe65fe1bfe
                                        
                                            GET /img/tos-cn-i-siecs4i2o7/d30397527b3845bd8558477731dd019d~noop.image HTTP/1.1 
Host: p5.toutiaoimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         125.75.231.100
HTTP/2 200 OK
content-type: image/gif
                                        
server: Byte-nginx
content-length: 103173
access-control-allow-origin: *
age: 20910638
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Tue, 25 Jan 2022 02:34:59 GMT
nw-session-id: 20220125103459010209087131042EB65Avg7r202tt
nw-session-trace: 2022-01-25T10:34:59.804517957+08:00 62
server-timing: inner; dur=3
timing-allow-origin: *
x-bdcdn-cache-status: TCP_HIT
x-length: 103173
x-powered-by: ImageX
x-request-ip: 91.90.42.154
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
x-response-date: Tue, 25 Jan 2022 10:34:59 GMT
x-response-lb: image
x-tt-logid: 20220125103459010209087131042EB65A
x-tt-trace-host: 014fca8a137ae27738317af937d7437438e9bf3968051eb62568ee72a856755f8cd792687b0708374553221b38ef524dfecc92ff56d999444380fc6e4888a3184d9e90824a02f70a18a6ebb0af46375fccb3fb22f6163b158826f63e3ce2ce4f554b7c92d863369c7d62f9be2b7d2da69120033c6a8a1fd472c50e5976b7c9bebe
x-tt-trace-tag: id=5
date: Mon, 26 Sep 2022 04:23:27 GMT
via: cache02.tsct
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 60\012- data
Size:   103173
Md5:    6857bf5106087caf69a49c1ed738c573
Sha1:   0a1fe550e9134da6568b23d54079700ea0cb927d
Sha256: 7e67d29e4af77086b0ef5a1559f7f4046440e315f403e1620b3c38cdb9bdff54
                                        
                                            GET /get-image/0yFUidjGHhQ HTTP/1.1 
Host: si1.go2yd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         163.171.140.79
HTTP/2 200 OK
content-type: image/gif
                                        
date: Mon, 26 Sep 2022 04:23:28 GMT
content-length: 121040
x-application-context: application
x-kss-request-id: 926b8f9ca982487692c4e63ce22e4a6e
etag: "72f445e66343e28d92a588cd7858f2dc"
content-md5: cvRF5mND4o2SpYjNeFjy3A==
last-modified: Mon, 28 Feb 2022 07:36:54 GMT
accept-ranges: bytes
server: KS3
age: 1
x-via: 1.1 PSbjwjBGP2vu136:5 (Cdn Cache Server V2.0), 1.1 PSzjnbsxsy229:12 (Cdn Cache Server V2.0), 1.1 tb118:4 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1vj92:3 (Cdn Cache Server V2.0)
x-ws-request-id: 63312940_PShlamstdAMS1se91_42102-62478
access-control-allow-origin: *
ws-s2h-acc-level: 1
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 500 x 280\012- data
Size:   121040
Md5:    72f445e66343e28d92a588cd7858f2dc
Sha1:   0138a721a5a93bdac4700c65cc6f6490009d3c19
Sha256: 649a3df45cf01aea3bd959614665909f5e36a0dbfcf297334c69c94b579abbc0
                                        
                                            GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=720163473&si=bd1c4e4e3b958139dfa1d89e8e7306ed&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.2.97&lv=1&sn=35951&r=0&ww=1252&ct=!!&u=http%3A%2F%2Fdi1.wynb16.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Mon, 26 Sep 2022 04:23:28 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=45B4DC3C17709D63; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /upload/vod/20220926-1/efeaf182b5431e28040a5ffcb62a430f.jpg HTTP/1.1 
Host: img.jialiimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         108.186.171.14
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Mon, 26 Sep 2022 04:25:57 GMT
content-length: 9754
last-modified: Sun, 25 Sep 2022 16:06:45 GMT
etag: "63307c95-261a"
expires: Wed, 26 Oct 2022 04:25:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 135x101, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9754
Md5:    7b8a1f1b7fcd88c6f4804aada12c1373
Sha1:   a60bc8178358f4b72ad448b5791d23a7b5053698
Sha256: ce226a33ca98da6c3e1e5b5b0bbe6d92eba1becdc6e634e4fbe58ef819bc0bc1
                                        
                                            GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=297888083&si=509936279e06bc83b2661639fdba65fd&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.2.97&lv=1&sn=35951&r=0&ww=1252&ct=!!&u=http%3A%2F%2Fdi1.wynb16.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Mon, 26 Sep 2022 04:23:28 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=9CBEDD4FAD441B92; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /vip80.gif HTTP/1.1 
Host: xpj08.oss-cn-beijing.aliyuncs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         59.110.185.220
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: AliyunOSS
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 264494
Connection: keep-alive
x-oss-request-id: 6331293FB921E53438D98F50
Accept-Ranges: bytes
ETag: "672B95E7B6AB24B5606B8287DB85DBB4"
Last-Modified: Mon, 08 Aug 2022 07:28:40 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8762574589038276875
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: ZyuV57arJLVga4KH24XbtA==
x-oss-server-time: 2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 80\012- data
Size:   264494
Md5:    672b95e7b6ab24b5606b8287db85dbb4
Sha1:   98f1f1b06b3cb318d7f7a1bf7add76fa0a30c112
Sha256: 4203e1ae18bb06c6e719832987e87e838d8001fd6154e56a8b79c4c0678e7b54
                                        
                                            GET /upload/vod/20220926-1/d5b892ee784622f5c37972b443c38862.jpg HTTP/1.1 
Host: img.lytuchuang2.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.52.21
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 148075
Last-Modified: Sun, 25 Sep 2022 16:10:34 GMT
Connection: keep-alive
ETag: "63307d7a-2426b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 493x348, components 3\012- data
Size:   148075
Md5:    3574328c8077489bbe250632180af85e
Sha1:   79c325f384152305771bcf4c6f4c6d9892103414
Sha256: 2014e6d8c7d6b28ca2b3e939e69a2ea91f2f5dcc57dc1add1dba8493f329cac3
                                        
                                            GET /20220718/960_80.gif HTTP/1.1 
Host: dsupt.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         198.16.41.254
HTTP/2 200 OK
content-type: image/gif
                                        
date: Mon, 26 Sep 2022 04:23:27 GMT
content-length: 52137
last-modified: Mon, 18 Jul 2022 13:00:19 GMT
etag: "62d55963-cba9"
expires: Tue, 25 Oct 2022 10:58:07 GMT
cache-control: max-age=2592000
server: cdn-ddos-cc
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 80\012- data
Size:   52137
Md5:    ff56d3d0bb9eef4833d17a07fecadb08
Sha1:   7d85f47df4d86bc3b09155287b237b9c731da097
Sha256: feb778d732571a0d5f520577a91c1065bff9cea062a9dc34962abc5619cb5d86

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /00946a445772401895ecee2223297e7c.gif HTTP/1.1 
Host: 93533557591.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.170.15.76
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: max-age=604800
ETag: "6326eca5-c7a0c"
Date: Mon, 19 Sep 2022 00:29:17 GMT
Server: nginx
Last-Modified: Sun, 18 Sep 2022 10:02:13 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-06
Content-Length: 817676


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 60\012- data
Size:   817676
Md5:    2c0914501592136ef2d10a4111e355ed
Sha1:   d927d360f758036d51f4876f2ab97ac6d8ed5181
Sha256: 688662d5acf1c6584aa70e4a8ae273489b3a3b33e6b38f93571d85e99856d793

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /upload/vod/20220906-1/c2378a80d1afd7bf616fbcf94d5baf49.jpg HTTP/1.1 
Host: img.lytuchuang.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.52.22
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 132690
Last-Modified: Sat, 10 Sep 2022 18:18:38 GMT
Connection: keep-alive
ETag: "631cd4fe-20652"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 680x453, components 3\012- data
Size:   132690
Md5:    0bbfb5cceb55dc92b05a1333f2ae1d9c
Sha1:   91589af1ee2541297b1b788034653ec763347750
Sha256: 287968ff241d19560c6efbe25aa5072bb585efe333e9fa5cda7519c72cd51e70
                                        
                                            GET /6d618dd3947a4ced907fd3f9de728d43.gif HTTP/1.1 
Host: 17265111.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         20.239.175.73
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Mon, 26 Sep 2022 04:23:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 29 May 2022 12:20:05 GMT
ETag: W/"629364f5-69b6f"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 80\012- data
Size:   246449
Md5:    82116782c1bd2d5ca9ef21c9bc926dfb
Sha1:   52395ccedc32522b82807529e4654bd440fd1f7b
Sha256: d64d661290ffaae5d22fdf5ee65f03c2ba664b5deb5677152f31693d3df6eae3
                                        
                                            GET /upload/vod/20220924-1/8294cc049d8507efc4a7ca4d6b2a4988.jpg HTTP/1.1 
Host: img.tpttzy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.224.136.186
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:28 GMT
Content-Length: 18327
Last-Modified: Sat, 24 Sep 2022 06:37:28 GMT
Connection: keep-alive
ETag: "632ea5a8-4797"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 336x189, components 3\012- data
Size:   18327
Md5:    d324a50245a0fe5a8cb145e7619935e5
Sha1:   3400a3d45f727cae10bbc2883a583a85738dc39a
Sha256: d058cab1259b862d2af80103e57f578543a4abfacdf8e76cb9519841e8013719
                                        
                                            GET /upload/vod/20220926-1/a342caf77716b02497008fad2e55d453.jpg HTTP/1.1 
Host: img.lytuchuang2.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.52.21
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 170636
Last-Modified: Sun, 25 Sep 2022 16:10:34 GMT
Connection: keep-alive
ETag: "63307d7a-29a8c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 491x348, components 3\012- data
Size:   170636
Md5:    36e877dd9c395f009e6cec540432b413
Sha1:   80d6b0a0c07980c45b577a7fb764b7744a5fcc37
Sha256: 35f4003de183c3de7ca06f8c9cfc8163f205425da1edf3d9c9749185d96ef020
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:28 GMT
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 30 Sep 2022 01:10:52 GMT
ETag: "5dbbf47f6999373f78ad68cf452dbd55c17358ce"
Last-Modified: Mon, 26 Sep 2022 01:10:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3581
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75093972af1fb4f7-OSL


--- Additional Info ---
Magic:  data
Size:   1459
Md5:    d3e46d934d4159b8941af39506c3dc5c
Sha1:   5dbbf47f6999373f78ad68cf452dbd55c17358ce
Sha256: d4c714f5e67569d065a01491b5f304a99e9fb5d5e4e1a46104991c66c5734385
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 04:23:28 GMT
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 30 Sep 2022 01:10:52 GMT
ETag: "5dbbf47f6999373f78ad68cf452dbd55c17358ce"
Last-Modified: Mon, 26 Sep 2022 01:10:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3581
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75093972abd1b50f-OSL


--- Additional Info ---
Magic:  data
Size:   1459
Md5:    d3e46d934d4159b8941af39506c3dc5c
Sha1:   5dbbf47f6999373f78ad68cf452dbd55c17358ce
Sha256: d4c714f5e67569d065a01491b5f304a99e9fb5d5e4e1a46104991c66c5734385
                                        
                                            GET /upload/vod/20220912-1/d47ec62d9370762abed22d9f8082d713.jpg HTTP/1.1 
Host: img.lytuchuang1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://di1.wynb16.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.12.54.84
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Mon, 26 Sep 2022 04:23:27 GMT
Content-Length: 151105
Last-Modified: Sun, 11 Sep 2022 16:37:42 GMT
Connection: keep-alive
ETag: "631e0ed6-24e41"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS