Report - www.jieyinxie.com/index.php

Report Overview

Submitted URL
www.jieyinxie.com/index.php
IP
154.221.165.59
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Submitted
2022-11-26 14:57:18
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
niugetv3.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	6.9 MB	172.67.194.208
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.3 kB	8.5 kB	142.250.74.3
kvemm.com	222018	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	422 B	64.32.13.142
pic.picnewsss.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	395 B	363 kB	23.225.139.251
8499753.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	765 B	663 kB	23.224.101.35
monaitv.me	789781	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	9.1 MB	137.175.72.61
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	5.8 kB	93.184.220.29
vns86.oss-cn-hongkong.aliyuncs.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	532 kB	47.75.19.163
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	44.236.232.139
ocsp2.globalsign.com	1544	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	5.8 kB	104.18.20.226
kvkddd.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	968 kB	104.21.233.183
9366qq.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	426 kB	103.170.15.93
p26.toutiaoimg.com	75286	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	438 B	679 kB	120.52.95.240
img.1170555.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	182 B	185.239.226.23
img.9675x.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	415 B	182 B	185.239.226.23
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
p3.douyinpic.com	23536	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	1.8 MB	47.246.44.225
nvhbbb.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	319 kB	172.67.170.188
8644aaw.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	397 kB	60.244.96.178
kvmaa.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	422 B	170.178.176.170
madou8img.5100m.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.7 kB	508 kB	104.21.234.134
3688qq.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	359 kB	103.170.15.78
ads-6686.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	752 B	4.3 MB	123.253.107.219
sz88.oss-cn-shenzhen.aliyuncs.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	402 B	563 kB	120.77.166.72
wap.mgivkqk.cn	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	364 B	515 B	47.246.44.172
www.tukky.vip	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	385 B	331 kB	172.67.142.245
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.9 kB	23.36.77.32
www.tukudhgg.vip	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	79 kB	104.21.69.128
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	53 kB	34.120.237.76
ocsp.trust-provider.cn	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	7.5 kB	47.246.44.205
p.qlogo.cn	48578	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	455 B	332 kB	43.154.254.32
img.u2765.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	182 B	185.239.226.23
www.moneyziyouwm.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	952 B	104.21.235.134
hm.baidu.com	8254	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.7 kB	96 kB	103.235.46.191
cdn-xinghuatupian-cdn.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	174 kB	154.197.17.158
kjimg10.360buyimg.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	892 B	1.7 MB	182.140.218.3
www.jieyinxie.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.6 kB	154.221.165.59
niugetv9.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	147 kB	38.60.24.90
int.jstatic.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400 B	48 kB	172.67.189.178
zerossl.ocsp.sectigo.com	4049	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	696 B	2.4 kB	172.64.155.188
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.9 kB	172.64.155.188
img.alicdn.com	8663	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	434 B	9.8 kB	47.246.50.251
592773xgg.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	402 B	1.8 MB	45.61.212.56
u0062.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	248 kB	20.78.78.186
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.4 kB	12 kB	23.36.76.226
img.1200555.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	182 B	185.239.226.23
taiwtp1.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	437 kB	220.128.218.220
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	9.5 kB	104.18.21.226
523zyw.com	922633	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	2.4 MB	137.175.72.61
img.u1662.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	182 B	185.239.226.23
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-26	medium	niugetv3.top	Sinkholed
2022-11-26	medium	niugetv3.top	Sinkholed
2022-11-26	medium	niugetv3.top	Sinkholed
2022-11-26	medium	niugetv3.top	Sinkholed
2022-11-26	medium	niugetv3.top	Sinkholed
2022-11-26	medium	niugetv3.top	Sinkholed
2022-11-26	medium	9366qq.com	Sinkholed

JavaScript (37)

	URL	Size	First Seen	Last Seen
	niugetv9.top/	865 B	2023-03-08	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:09:21 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 98a4f352b880d558b81065f5dc002a9d 5096709bd1dea70fd320fe82c375e977a7338934 dec74ef18d872bb91eeae1562ac4dc6f1d9e18afcf2e6cbdd0e8d9a7f7cdbde8 Loading...

	hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash 0ae7f3622d59f180039a0f37e663f7fd 25fdfa0015e6e08643982ccab987fa528c71e3c7 8d7e09e62713d1c2c6d61dc1492e7a0ec65ac00e0e85a4e009025a6b46f5aa6a Loading...

	niugetv9.top/template/m1938pc/static/js/bootstrap.min.js	40 kB	2023-03-07	2024-04-25
Pretty URL niugetv9.top/template/m1938pc/static/js/bootstrap.min.js IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-25 04:42:11 Times Seen12200 Hash 2f34b630ffe30ba2ff2b91e3f3c322a1 b16fd8226bd6bfb08e568f1b1d0a21d60247cefb 9ee2fcff6709e4d0d24b09ca0fc56aade12b4961ed9c43fd13b03248bfb57afe Loading...

	niugetv9.top/	1.3 kB	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 21:16:33 Times Seen1 Hash 5144ba6f3896f81d47c890b27ac6fc63 4af9b35a450d7dbd0485603902bbe44a0a34cdd9 53a176599e9caec41252357720de88b3741c7d3616e60f1382b6fe6b95f6ed58 Loading...

	hm.baidu.com/hm.js?f8ee02cdc233248a74e9de89c68d6953	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?f8ee02cdc233248a74e9de89c68d6953 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash 6fffdf4d0b09abdc1d476be80fee35ed 2daf2384fab49bcda9338d5be2780696e608f017 bf3871616fff4272866d7d5177d51ac69a7c405f6c6e1d86696b3d72a18b8429 Loading...

	hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash 18b956c5a60cdbb25f145939246d0f90 402657fedfa950cc0ce094cd839c4e40099012a2 b01aa48053b37d05f9c4268cf11a22936edfeea3231eb5496af7dfd4a9393ed2 Loading...

	www.jieyinxie.com/tj.js	258 B	2023-03-11	2023-03-11
Pretty URL www.jieyinxie.com/tj.js IP 154.221.165.59 ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash 6f1562204cbb9dfa2468c9c3993f640b 1543b45c6242ffeec85154d8aebe06ac54b68aba 5874dc9a62559b8d7106b58b2406786eae43f9ce6ffb0e58c66a9326a8fed74f Loading...

	niugetv9.top/	254 B	2023-03-07	2023-04-02
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:35 Last Seen2023-04-02 21:31:12 Times Seen3 Hash 3886b99a5f1702e3ae7b42e6d977852d fb269551e217ecd157e281f89520040b04aff628 4f714efdc83be2b936cb887a57888c559da75c14c80108737f0a4b129a00e7c5 Loading...

	niugetv9.top/	386 B	2023-03-07	2024-01-24
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:05 Last Seen2024-01-24 07:55:37 Times Seen110 Hash b9f9d9b5a9226709c5400c5339ad9026 1489836c52e1398984a1f7f84acd9cea97bdd8ad e5776022bbe71e026ab65aad61f115b6782653431de77d5a4e77f690810dc955 Loading...

	hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash a8b8cf7de9d3ad42c730e08b621eb92e 13e59b42bc802c1c45f698715925abb652afc4fa 03dae5d72e57cd3a26f2baeaa97e3e38219532d2d97aba7af70905ae1e84ac95 Loading...

	www.jieyinxie.com/common.js	1.8 kB	2023-03-11	2023-03-11
Pretty URL www.jieyinxie.com/common.js IP 154.221.165.59 ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 039cff144f86b246c9116887e9b29b21 98d8b653662692b7dd244bad33ef40e81e20a71b c5ceb1235f5a57b57a347e0d35193b1399cc970e7f2bdf5b7705072f9c2a1259 Loading...

	niugetv9.top/	8.8 kB	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:40:50 Last Seen2023-03-11 21:16:33 Times Seen1 Hash 864fe8365d2da913d72c501091b2665c db25f584ef0561956a54af44cc26d9ae99e642d7 f972b506bc65a85d1efcec0b1ed72b157e6cec1c3fd16684bcc46695f2749621 Loading...

	niugetv9.top/	15 kB	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:40:50 Last Seen2023-03-11 21:16:33 Times Seen1 Hash 1b6e70ef604de32921fff243e04cabcb b88a2147158fa34993b43428c2fb8b8fa44c6513 7b48019f57f5fc7a963a4e667b9844eb06f803d55274fe75826753e578e12dfb Loading...

	niugetv9.top/	171 B	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:40:52 Last Seen2023-03-11 20:46:18 Times Seen1 Hash 0f23ae14d87fc140d613ace0dd8b11f4 a2c388b5f75ca75936ae63d86218e5f4fe73ba3b 3afe42167ea8d45bf65dc60469455f571158cf28bebca9b25e0a9d5e82e52e81 Loading...

	niugetv9.top/	254 B	2023-03-07	2023-03-13
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:54:15 Last Seen2023-03-13 00:53:14 Times Seen1 Hash 6f99ad135c073f87ec1060fc943dea4c 10597bcc5eeb6049655cc520d71e8aa17f2d9821 c797f3b8524957f2150bcb64a68653a1028d6b4a3a40032bed769b945e837196 Loading...

	niugetv9.top/template/m1938pc/static/js/jquery.min.js	97 kB	2023-03-07	2024-04-25
Pretty URL niugetv9.top/template/m1938pc/static/js/jquery.min.js IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-25 02:53:38 Times Seen118687 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	niugetv9.top/template/m1938pc/static/js/jquery.lazyload.min.js	3.4 kB	2023-03-07	2024-04-25
Pretty URL niugetv9.top/template/m1938pc/static/js/jquery.lazyload.min.js IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:48 Last Seen2024-04-25 01:43:39 Times Seen4075 Hash 112c8d1b40b3e62e883c743e9d71e0bf 338318e930487b2791a7bcf53ad4601630cc41e2 ad79ce7e34d1a788809bb853031133de2ae45f3c19ac4955dae46c7490188c2e Loading...

	niugetv9.top/template/m1938pc/static/js/global.js	225 B	2023-03-07	2023-09-28
Pretty URL niugetv9.top/template/m1938pc/static/js/global.js IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:56 Last Seen2023-09-28 09:34:39 Times Seen20 Hash daa83033a5dfaa134d09d60dad0f02ec c6bc6e2ba0d0d84ae34d3e7ec586d5b2884f6539 868c454612344976f793e1a2c8a20d947f4b90cb4784509ab146c561590f2226 Loading...

	niugetv9.top/	356 B	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:40:52 Last Seen2023-03-11 20:46:18 Times Seen1 Hash a972257aed49d99b14aadf0b595e9fea 5a3bb003217893ea138c08bd3f6a45ed09fffaa1 1bd0b7e1f819cb1ccaf4ffb95968a56e1119d201e656f54f82aa340b683e4a5a Loading...

	www.jieyinxie.com/index.php	36 B	2023-03-11	2023-03-11
Pretty URL www.jieyinxie.com/index.php IP 154.221.165.59 ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash daf42e665c821e413f2ad7b7ef270b62 05d311075001c3228bd98698a13dc16d228530a8 9b2029696f35beaffc08b9c0e6e7dbcfe15836ae6aff3225ed44444033823649 Loading...

	niugetv9.top/	236 B	2023-03-07	2023-04-02
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:35 Last Seen2023-04-02 21:31:12 Times Seen3 Hash 972172b87a1814c948b6b4e505d1493d 926456939c45384d387b86525c9fc28428a753c0 0ac2fd418c92ff77c17a60cf1edc4de15094c81e943422a8a7d0ad5ff0a7516b Loading...

	niugetv9.top/	5.5 kB	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:40:53 Last Seen2023-03-11 20:46:18 Times Seen1 Hash 9691a0f633d18f1247b1e3aba47c19ec faf4f4f51b6af9f57a915825308d59296b9c67e4 e319b2475113599b9d1c1784f2c1c10be960000df84fa28731f36372c78d8809 Loading...

	niugetv9.top/template/m1938pc/static/js/swiper.min.js	96 kB	2023-03-07	2024-04-24
Pretty URL niugetv9.top/template/m1938pc/static/js/swiper.min.js IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:19 Last Seen2024-04-24 00:06:57 Times Seen1569 Hash fb13ef3e875ca3497ede35d3774be9d3 ab0743a89d522438c17ae7eaf5943fd4590ee3d0 4a10219bee747aadeeda78f166d787adf32583f361f88d44b472f6f3da798083 Loading...

	hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash e8e8c24e06b982ec15f762155903dc74 419777d093bb3eac735eb8f97db2f86f51878f27 e230fa4d855c4190ad6238642b3b6fbc3916f6d8002ff9f1ff28f31b7df9ff78 Loading...

	hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash 284f5311a2f0f65382952de2cdc94116 29e5d09156b37c1f1b537858cc19424f06b72e13 b1a69439b56996ab41593add15d9b851658ea5e99e5f6fc37bde8814cf1c2015 Loading...

	hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash 45a1664c0d6041127d6c00d676decaff d037e246aa8672b2bfc6f533b6b5e5aff2862144 ced7c239fefe281ace35d2e178ad8868c11516103dcb8352e67248b587145cf6 Loading...

	hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash 795b4ff140ee424278ccf12faf0a09c7 c455d34ef120fbd771c756478dd514a561f6b064 b6385a91d42e57fb1e9723f4e6e767be81fdf680b89ea261fca7fa3ba891280c Loading...

		Size	First Seen	Last Seen
	#1 Eval - 352b24846e046c20db40b4dd0c438a60	456 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash 352b24846e046c20db40b4dd0c438a60 5646990f558490b630053b0983428606def3dff5 7013ca730bb3e413acfe12530224dc041dfe33b4a1ef58064b5eefb1716525a6 Loading...

	#2 Eval - 8cb34f4fd5073df257b9540df205db1f	4 B	2023-03-11	2023-05-17
Pretty Observations First Seen2023-03-11 20:40:50 Last Seen2023-05-17 04:17:43 Times Seen5 Hash 8cb34f4fd5073df257b9540df205db1f ff170e37409940c8968bc0fb98c480de3d53f899 46e98cb6b9d25e781f85aa710fb2604692eef01e4bd54b2df0f40470c2995169 Loading...

	#3 Eval - a8e86dcb36b8bfe517749412bbcbad22	338 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 21:16:33 Times Seen1 Hash a8e86dcb36b8bfe517749412bbcbad22 2efeb89d3883ca840a4d4be0aeb0c6c39d3414ca a99c986b245b07a5e0bd3984a0a54b276c4f601ecbe324c79a489e44108252b0 Loading...

	#4 Eval - 06609e1c230e1eae4c553c78a4457b41	5 B	2023-03-07	2024-03-03
Pretty Observations First Seen2023-03-07 01:10:44 Last Seen2024-03-03 12:39:54 Times Seen336 Hash 06609e1c230e1eae4c553c78a4457b41 7a76989908fbeb7a3636c4e492b58558c6a37cb0 a0b69f041ba716e2e1eba506e3ed0a7bdadd55c5c72471a7190ef8d5954222ec Loading...

		Size	First Seen	Last Seen
	#1 Write - d847b733c0d07a9e10d6995199e11edb	567 B	2023-03-08	2023-03-11
Pretty Observations First Seen2023-03-08 16:09:22 Last Seen2023-03-11 22:54:53 Times Seen1 Hash d847b733c0d07a9e10d6995199e11edb e258603beb426388b5dbb4a99e8b3b86c61f1a13 156dc2de3f920cba5e4084247a5dcfc953d1436e95c395505d18c53b023c41c5 Loading...

	#2 Write - 3f406ced7fd223540329bd726104c78e	1.3 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 21:16:33 Times Seen1 Hash 3f406ced7fd223540329bd726104c78e 09424480b962426fc69aa631614a7ea11602c94f c7b9e361fa6265de14b054bc40242a91f1d16f044f2e284273db1d42451cdf9c Loading...

	#3 Write - a452fceb61632ff1733b9980af02a84c	72 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 21:16:33 Times Seen1 Hash a452fceb61632ff1733b9980af02a84c 39695e2c53dcad39bc890e774471e50b31149a38 a400f54c79889d2fccc6f3897ea4f879deaff0015edc8047f1db4296b6f42871 Loading...

	#4 Write - 65e6453f01763f14e6a233f43df2a550	7.1 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:40:53 Last Seen2023-03-11 20:46:18 Times Seen1 Hash 65e6453f01763f14e6a233f43df2a550 7a02d9b23909453cce6f0ea50a8f68c7ecd21f67 b59c955a3f405498793c15f3f570c4eb42c28812a078fe3dfe6cd8b629423853 Loading...

	#5 Write - be885609099f37f40319d0a17dc7465b	437 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 20:46:18 Times Seen1 Hash be885609099f37f40319d0a17dc7465b 17823cdfd65bbf7fba216d8a2bf56ad7de1434d3 fbb85e0e6a56214368fd3b15e542cada743f83a5668b53bfc59638532ffc00b5 Loading...

	#6 Write - b41c326655a1e61ea6f6dcc70f797eb7	201 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:06:53 Last Seen2024-04-19 06:49:25 Times Seen3761 Hash b41c326655a1e61ea6f6dcc70f797eb7 a416e2affbcd88fe88775b1dd7256dbb7b0e2b87 2d7d346bf62ff160f8d7d20318bedeb9dc7c79d0e2845f6061de5beabda471ca Loading...

HTTP Transactions (192)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7824
Expires: Sat, 26 Nov 2022 17:07:26 GMT
Date: Sat, 26 Nov 2022 14:57:02 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5459
Cache-Control: max-age=162305
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:02 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 12:02:07 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17789
Expires: Sat, 26 Nov 2022 19:53:31 GMT
Date: Sat, 26 Nov 2022 14:57:02 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 14:19:13 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2269
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: mWYdozSbUyANcji1XuaGo9VCnRyM4g9N0zBPCjy2lDOvbv9N2eo9tS2p7t7ZflHwAkpvHdvrDR8=
x-amz-request-id: SDTD41J7JGDYC32R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 14:41:15 GMT
age: 947
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 14:57:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.jieyinxie.com/index.php

154.221.165.59

200 OK

536 B

URL HTTP/1.1
www.jieyinxie.com/index.php
IP
154.221.165.59:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (641), with CRLF line terminators
Size
536 B (536 bytes)
Hash
e65ebda266272041fa013fd6acd86a21
6cc35699515ce12310e21167075fbd8b382bd907
9f44aa6891ba1d6eb56cfb0960086a64a833d798d723c23c41e052c2a7a69c20

HTTP Headers

GET /index.php HTTP/1.1
Host: www.jieyinxie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.jieyinxie.com/tj.js

154.221.165.59

200 OK

258 B

URL HTTP/1.1
www.jieyinxie.com/tj.js
IP
154.221.165.59:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
ASCII text, with CRLF line terminators
Size
258 B (258 bytes)
Hash
6f1562204cbb9dfa2468c9c3993f640b
1543b45c6242ffeec85154d8aebe06ac54b68aba
5874dc9a62559b8d7106b58b2406786eae43f9ce6ffb0e58c66a9326a8fed74f

HTTP Headers

GET /tj.js HTTP/1.1
Host: www.jieyinxie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jieyinxie.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:02 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive

www.jieyinxie.com/common.js

154.221.165.59

200 OK

822 B

URL HTTP/1.1
www.jieyinxie.com/common.js
IP
154.221.165.59:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Size
822 B (822 bytes)
Hash
6995f13355499348c74d8d05830edb35
82325c8623aa870b022ee46726c4e9d3dee0b20c
e72e6c52f476845f1bd58f72bbcc9dfce75d31ce8ddfdce8566fdd778679c95b

HTTP Headers

GET /common.js HTTP/1.1
Host: www.jieyinxie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jieyinxie.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:02 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 14:08:54 GMT
cache-control: public,max-age=3600
age: 2888
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4199
Cache-Control: max-age=155987
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:03 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:16:50 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

44.236.232.139

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.236.232.139:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gFzuKJj9gny/AsEc4ESpsw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2yJxDj9uYyy21T2fe3dji0lFbsM=

www.jieyinxie.com/favicon.ico

154.221.165.59

200 OK

1.2 kB

URL HTTP/1.1
www.jieyinxie.com/favicon.ico
IP
154.221.165.59:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.jieyinxie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jieyinxie.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:03 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Thu, 01 Dec 2022 14:57:03 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
04c3a43b6c4d52e99dad07e6fce44697
e37ea1ca0745e29a51b3bce2d4dbd66727f2ab03
a7d6523eec8617d19acea316df8e58db7071823108bf7cc553da72396d7d2042

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 30 Nov 2022 12:15:18 GMT
ETag: "e37ea1ca0745e29a51b3bce2d4dbd66727f2ab03"
Last-Modified: Sat, 26 Nov 2022 12:15:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1632
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7703796cbf6ab505-OSL

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
04c3a43b6c4d52e99dad07e6fce44697
e37ea1ca0745e29a51b3bce2d4dbd66727f2ab03
a7d6523eec8617d19acea316df8e58db7071823108bf7cc553da72396d7d2042

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 30 Nov 2022 12:15:18 GMT
ETag: "e37ea1ca0745e29a51b3bce2d4dbd66727f2ab03"
Last-Modified: Sat, 26 Nov 2022 12:15:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1632
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7703796cbc711bfa-OSL

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
04c3a43b6c4d52e99dad07e6fce44697
e37ea1ca0745e29a51b3bce2d4dbd66727f2ab03
a7d6523eec8617d19acea316df8e58db7071823108bf7cc553da72396d7d2042

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 30 Nov 2022 12:15:18 GMT
ETag: "e37ea1ca0745e29a51b3bce2d4dbd66727f2ab03"
Last-Modified: Sat, 26 Nov 2022 12:15:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1632
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7703796cdf93b505-OSL

niugetv9.top/

38.60.24.90

200 OK

22 kB

URL HTTP/1.1
niugetv9.top/
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (546), with CRLF, LF line terminators
Size
22 kB (22246 bytes)
Hash
e05b41de3fba35e67aa0d38b83f897fa
54d18c4a904a1c8325fdedc5e35b6e18a0bf0823
1c46c686f5b573fa318d6426d957270faca03bd9b94791fe53494d8a41cdfbe8

HTTP Headers

GET / HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jieyinxie.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:03 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/js/bootstrap.min.js

38.60.24.90

200 OK

13 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/js/bootstrap.min.js
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (39553)
Size
13 kB (12719 bytes)
Hash
89cfee4061db2dd37f5e2668f1c7ebfb
1ecc979a3bc78d4987cb642f3f64e80d56d57d39
dcff2dfb3ebcdba16ed0e4b9024fa681edc77ace8a686d9bd5aea6dc282e8168

HTTP Headers

GET /template/m1938pc/static/js/bootstrap.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:04 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-9b00"
Expires: Sun, 27 Nov 2022 02:57:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/js/jquery.lazyload.min.js

38.60.24.90

200 OK

1.3 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/js/jquery.lazyload.min.js
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (3309)
Size
1.3 kB (1342 bytes)
Hash
8e5f2c601d9dc5b0d53cb406774e99c9
562d3c568f650e9cc977328d440fc94c46fe9f8e
0f18d8d9a5b33df370579bebc38911b2f344a8fb99bcdd66e83a6fa48c25e01a

HTTP Headers

GET /template/m1938pc/static/js/jquery.lazyload.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:04 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-d35"
Expires: Sun, 27 Nov 2022 02:57:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/css/swiper.min.css

38.60.24.90

200 OK

3.3 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/css/swiper.min.css
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (17459)
Size
3.3 kB (3288 bytes)
Hash
e73a49e6a4e9772b6add191cf694bd34
00038fe32a6e97fbbeb281939adfb363cdd5f54f
5a1a24bd85867233f36de37f59b96bfeeb4290619781494713b8216902b30988

HTTP Headers

GET /template/m1938pc/static/css/swiper.min.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:04 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-455f"
Expires: Sun, 27 Nov 2022 02:57:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/js/jquery.min.js

38.60.24.90

200 OK

38 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/js/jquery.min.js
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (32077)
Size
38 kB (38004 bytes)
Hash
c0750a85ce0399accd8ded17e2564d6b
ba767d35271e9b39305f156814495650f269ddb6
9de8ff805e6807598c4c2987a8368ff4b2240606f6285902c844baf5a04655ac

HTTP Headers

GET /template/m1938pc/static/js/jquery.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:04 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-17b8b"
Expires: Sun, 27 Nov 2022 02:57:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/js/swiper.min.js

38.60.24.90

200 OK

28 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/js/swiper.min.js
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (31999)
Size
28 kB (27510 bytes)
Hash
3694d961c3b4a420105cf9563c4cafe7
f75e4b2319d4bc0ea3af5ad3b8cf2e0679575767
3e5b269624b5703cb234c5217a66e9e77b5ffe6f70e2dd0425f3a8951dcba27c

HTTP Headers

GET /template/m1938pc/static/js/swiper.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:04 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-178a3"
Expires: Sun, 27 Nov 2022 02:57:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/css/common.css

38.60.24.90

200 OK

1.7 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/css/common.css
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text
Size
1.7 kB (1685 bytes)
Hash
1bfc16865e4e7621e5c91f2a4505e7fe
7b556b6e7f13fc6e86ab74b1e8b539fc30d7af89
dd1cca1a3a887f0bf1af7b0c06fe6ef5f0cdfa720d9f3c7230843830ba709c26

HTTP Headers

GET /template/m1938pc/static/css/common.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:04 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-19c0"
Expires: Sun, 27 Nov 2022 02:57:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/js/global.js

38.60.24.90

200 OK

225 B

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/js/global.js
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text
Size
225 B (225 bytes)
Hash
daa83033a5dfaa134d09d60dad0f02ec
c6bc6e2ba0d0d84ae34d3e7ec586d5b2884f6539
868c454612344976f793e1a2c8a20d947f4b90cb4784509ab146c561590f2226

HTTP Headers

GET /template/m1938pc/static/js/global.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:04 GMT
Content-Type: application/javascript
Content-Length: 225
Last-Modified: Sat, 12 Nov 2022 16:24:06 GMT
Connection: keep-alive
ETag: "636fc8a6-e1"
Expires: Sun, 27 Nov 2022 02:57:04 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes

niugetv9.top/template/m1938pc/static/css/bootstrap.min.css

38.60.24.90

200 OK

24 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/css/bootstrap.min.css
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (65369)
Size
24 kB (23941 bytes)
Hash
fa8eee12898882e0b97ca29c7920c483
427b362e999391c7ad6d1c37e0178a4fc906fa10
239818d1da6510c291bb39dfa0b5f5873a81a4d63ae877fe97a9053842b58cf2

HTTP Headers

GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:04 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-1da6a"
Expires: Sun, 27 Nov 2022 02:57:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/css/style.css

38.60.24.90

200 OK

9.6 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/css/style.css
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
assembler source, Unicode text, UTF-8 text, with very long lines (367)
Size
9.6 kB (9606 bytes)
Hash
76c3cfbf09c2924d1324d18e71e4086c
e2955681a2b3e4806b34e4953517088ae3875059
48e3528c19a5f4f1dbd10bf600f3232f614369099eabb26a55b2baada479de09

HTTP Headers

GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:04 GMT
Content-Type: text/css
Last-Modified: Thu, 03 Jun 2021 01:54:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b83650-bf0e"
Expires: Sun, 27 Nov 2022 02:57:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv3.top/img/ylf-1.gif

172.67.194.208

301 Moved Permanently

0 B

URL HTTP/1.1
niugetv3.top/img/ylf-1.gif
IP
172.67.194.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/ylf-1.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 14:57:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 26 Nov 2022 15:57:04 GMT
Location: https://niugetv3.top/img/ylf-1.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dH8HdiwnQhQ9QaLy0YB%2B%2Frkg2cfdu7Uh%2BCGV%2FI13bUHVR1GpZYXLtWvns02RIj3w1JswJ3D8X8WJ4sF%2BiZvKEfiYX%2BpIpY%2BZWyUPErDRekJqamXBahj829E5CBlrOlQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770379733ef2b4fa-OSL
alt-svc: h2=":443"; ma=60

niugetv3.top/img/1717.gif

172.67.194.208

301 Moved Permanently

0 B

URL HTTP/1.1
niugetv3.top/img/1717.gif
IP
172.67.194.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/1717.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 14:57:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 26 Nov 2022 15:57:04 GMT
Location: https://niugetv3.top/img/1717.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6oduhwi%2FxH6m0LhDJqY0q%2FiKCtkpfkBh5iuU77giWV19hCtSZdhcglQfa9uoRDy4ZXPJLfvDJdXLfpZmmKKNSfPxtUyULu9e0N%2FB%2FszCbw52AanMqwSbEDDGHzR6CnM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770379733ffeb517-OSL
alt-svc: h2=":443"; ma=60

niugetv3.top/img/17172.gif

172.67.194.208

301 Moved Permanently

0 B

URL HTTP/1.1
niugetv3.top/img/17172.gif
IP
172.67.194.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/17172.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 14:57:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 26 Nov 2022 15:57:04 GMT
Location: https://niugetv3.top/img/17172.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nIuDQy%2BFh2qff7P1sF8y6JvQIb23qpkmkdgEaOGufTtEDiGeqMwZg0iiG2iMiGkof7%2FEibRxqq74qq3U3LNI%2F2QgMB%2BQxHEC%2B7UWN4SOT06RuptXHedDmg3pQJnLW%2Fg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770379733ef4b4fa-OSL
alt-svc: h2=":443"; ma=60

hm.baidu.com/hm.js?f8ee02cdc233248a74e9de89c68d6953

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?f8ee02cdc233248a74e9de89c68d6953
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (621)
Size
11 kB (11259 bytes)
Hash
b7357c084f968cf53091b1094100f2c4
9a394403efdb48b6bd179ee102916185f93069d0
e87c73cacd236fad73719c9a6738c55d70441e65b518bf99dcdabeb1ac2bf71c

HTTP Headers

GET /hm.js?f8ee02cdc233248a74e9de89c68d6953 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.jieyinxie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 26 Nov 2022 14:57:03 GMT
Etag: eb3adc3753c949176c2cc12174bebba6
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=4B0F5C68DA18E5CC; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
058dc539ed356f467d079f21086f2ffa
2a8bde51e9abbe14b4cccad618dcb24d18ae9a33
d4ff4047158afaa993d8d70b02e5c5f4cc0346fec12011c0cb5752f8f7871fa3

HTTP Headers

GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.jieyinxie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Sat, 26 Nov 2022 14:57:03 GMT
Etag: e472958b4c0c5b9aeb93b68928ca5c54
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=26CF1D9BAD1E4CE8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (624)
Size
11 kB (11262 bytes)
Hash
96c27dce2874b3d0c8a86b2a1a86733c
b770582c71a86b7e0a6c22b4fa3bc56a1fca1d56
7eb793d101527f62791489c41c25c79a0fe33c46b91eb71312ed57931445c466

HTTP Headers

GET /hm.js?f3d6365cc089588672da4dd3e692e58e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.jieyinxie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11262
Content-Type: application/javascript
Date: Sat, 26 Nov 2022 14:57:03 GMT
Etag: b8cc1f17eb8353a9de44f3a9cabae6d0
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=1C7D86F974016ADB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

ocsp.pki.goog/s/gts1p5/swCvH5hS9-4

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c4ed0d10d8de4b71c626867018dd263
72d5c910504cba7b6ff02a429e31b8b3de708e0b
ee66c5f14c483557e555384a91591129f8aefd95906787694364ed8c8fa85660

HTTP Headers

POST /s/gts1p5/swCvH5hS9-4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.tukky.vip/91uu/91uuspk200.gif

172.67.142.245

200 OK

330 kB

URL HTTP/2
www.tukky.vip/91uu/91uuspk200.gif
IP
172.67.142.245:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 320 x 200\012- data
Size
330 kB (329800 bytes)
Hash
c8515e829d6c15278640453ade073548
20019ae01ae180c537c65d9370dd6dff01e56346
6ca0b4ef7e96f09b8fdb715877485314fa5da8e9e9b501f7d0906609a003f894

HTTP Headers

GET /91uu/91uuspk200.gif HTTP/1.1
Host: www.tukky.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:04 GMT
content-type: image/gif
content-length: 329800
last-modified: Mon, 17 Oct 2022 03:32:11 GMT
etag: "634cccbb-50848"
expires: Sat, 24 Dec 2022 20:17:00 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 113186
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LCVOwBRGhWPl0%2FJn%2FGf9Nv59iVWvcyu3%2FbvRXyxtucnZ0DvhJr02H0dxVJLuvzilMlj1QAL6sKsQAEDNP%2FQRoc77NX7%2BygZ4fExKRUNbFNf3LT4jt1kbxp9%2F%2BEUZTLDt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77037974b89c1c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
8dec56e1967edcdc664f3d4959aa6343
cd2d04fe8fab26d63bc5020f334d5c22d09d18ad
66555be8bf47b96fe74102c738ad90e534b247cbc9a1ea54b76eee52703dcb10

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "66555BE8BF47B96FE74102C738AD90E534B247CBC9A1EA54B76EEE52703DCB10"
Last-Modified: Thu, 24 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3503
Expires: Sat, 26 Nov 2022 15:55:27 GMT
Date: Sat, 26 Nov 2022 14:57:04 GMT
Connection: keep-alive

int.jstatic.xyz/happy/newyear/yiren/yiren140.gif

172.67.189.178

200 OK

47 kB

URL HTTP/2
int.jstatic.xyz/happy/newyear/yiren/yiren140.gif
IP
172.67.189.178:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 240 x 140\012- data
Size
47 kB (47044 bytes)
Hash
eb340fa6893251f2af76ebef29cf6600
64c8dcdb9a57321c84136068a5f7a16363bc5430
962f36c8324e275fa8df04007b238d7a47d28bf3ab01d189d78271d8ea88d663

HTTP Headers

GET /happy/newyear/yiren/yiren140.gif HTTP/1.1
Host: int.jstatic.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:04 GMT
content-type: image/gif
content-length: 47044
last-modified: Sat, 01 Oct 2022 12:28:45 GMT
etag: "6338327d-b7c4"
expires: Tue, 29 Nov 2022 13:45:18 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 2337106
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QJ74uVQnhS6zkHgDdjnFr7oqNxX%2BIrkDm5lhByud7Pw9B5ACrZ15PwXwidjft6LkykrcRB40arPer2ArS61MxaJCGxxfZ0NLgZLhQ3a95XvqRvMYKTvKuAf9BMuqdHyfXOI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379756d5eb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
57a7c61103527d6763b633999ef4de20
853f1eeddb7ac04d9c434273a1db9c722ab4527a
c2c5b1c5033820b07c43fa4cd74400ffd1b16fedc9206b3b3ca2ddf02c898593

HTTP Headers

POST /s/gts1p5/t1eJGFHGm7w HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.tukudhgg.vip/lm/klm01.gif

104.21.69.128

200 OK

78 kB

URL HTTP/2
www.tukudhgg.vip/lm/klm01.gif
IP
104.21.69.128:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 320 x 190\012- data
Size
78 kB (78524 bytes)
Hash
f12d32b75b26394038be19df19aea586
286e3cee23dee594ce497c1f2020ccb842e0ae69
06a090053e07f41505d1949525aa511001d14069cb8560f933d60740f9e3eba9

HTTP Headers

GET /lm/klm01.gif HTTP/1.1
Host: www.tukudhgg.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:04 GMT
content-type: image/gif
content-length: 78524
last-modified: Wed, 24 Aug 2022 10:34:37 GMT
etag: "6305febd-132bc"
expires: Sat, 24 Dec 2022 06:29:29 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 162839
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ei48u%2BU13h%2Fhe%2F7lCDLm%2BqIU0ob%2Bc0BLsILPRLkXds7EJ6LXrzeIcNtS1eDLmrxuM9oU%2FU%2FHJ7ySjP%2FPhezckhqPwfRnW6168v2ZVk%2BbsZN8DB7fH%2FHILuxLPLjFLggs7d8n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77037975b81ab4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d1e8b6e5499e87bfa7fbec32d02bc40f
6ce993fa0725fba9afe7e43cac29601ff9617b54
4236ae771a76f59cd8d8bc0bc1e52febc1a010e8762909652ab985bca490d10a

HTTP Headers

POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d1e8b6e5499e87bfa7fbec32d02bc40f
6ce993fa0725fba9afe7e43cac29601ff9617b54
4236ae771a76f59cd8d8bc0bc1e52febc1a010e8762909652ab985bca490d10a

HTTP Headers

POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d1e8b6e5499e87bfa7fbec32d02bc40f
6ce993fa0725fba9afe7e43cac29601ff9617b54
4236ae771a76f59cd8d8bc0bc1e52febc1a010e8762909652ab985bca490d10a

HTTP Headers

POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d1e8b6e5499e87bfa7fbec32d02bc40f
6ce993fa0725fba9afe7e43cac29601ff9617b54
4236ae771a76f59cd8d8bc0bc1e52febc1a010e8762909652ab985bca490d10a

HTTP Headers

POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

niugetv9.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff

38.60.24.90

404 Not Found

146 B

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
146 B (146 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

HTTP Headers

GET /template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://niugetv9.top/template/m1938pc/static/css/style.css

HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 26 Nov 2022 14:57:04 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive

madou8img.5100m.xyz/videos/202208/02/62e90000eadff471ec46ef79/poster2.jpg

104.21.234.134

200 OK

32 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202208/02/62e90000eadff471ec46ef79/poster2.jpg
IP
104.21.234.134:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x280, components 3\012- data
Size
32 kB (32462 bytes)
Hash
2168175198d806920b9ca6be571620a9
441468d1ad0850e970905829a526ebea4fd481b1
6f682c2d779f9635cc3452d2aff82e0aaaf49ad28a2b5b09e7e294e7bc710704

HTTP Headers

GET /videos/202208/02/62e90000eadff471ec46ef79/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:04 GMT
content-type: image/jpeg
content-length: 32462
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Tue, 02 Aug 2022 10:51:58 GMT
etag: W/"7ece-1825e2f0dab"
expires: Sat, 26 Nov 2022 16:18:14 GMT
cf-cache-status: HIT
age: 38330
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zZyIdLPdHDiP8ijE6tI5swKD%2B7vPs0wpVCo9vd%2F4hsZEZ3o%2BJ8EWA5gsP%2BI3o1mAjhYvKttgVTLNUgOvp7frY6Dxnj%2F570%2FRA6OF%2BiEie2TJEAHPwwB4tmoe3E6DHvbjAMWdkjjc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379762bcb8880-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

madou8img.5100m.xyz/videos/202208/16/62fa8381d0f295073ac3428a/poster2.jpg

104.21.234.134

200 OK

52 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202208/16/62fa8381d0f295073ac3428a/poster2.jpg
IP
104.21.234.134:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Size
52 kB (52487 bytes)
Hash
5a215dfceaa95f4a43c845f20132d5eb
d37c13d1eb3518c5ee10441e576896f625052ae7
3a00ff03c4fae1304fee97356a0191ad806cf503fef3250a7963d17e285b33fe

HTTP Headers

GET /videos/202208/16/62fa8381d0f295073ac3428a/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:04 GMT
content-type: image/jpeg
content-length: 52487
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Mon, 15 Aug 2022 17:44:52 GMT
etag: W/"cd07-182a29bbe89"
expires: Sat, 26 Nov 2022 16:18:14 GMT
cf-cache-status: HIT
age: 38330
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FAytaAZz5bK3ObovN0XS0a19X2ZgIx3Tzwwpv8%2BtACoZ3yjxu1F55emN7UyIalmhZxTnt2LBdM%2BktslnKbuSpES5SxOSyBGiyNXsvOgkIF9ocjmtk7XpAD%2FJjP%2B8jP0344TVF42O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379762bc88880-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

madou8img.5100m.xyz/videos/202209/27/63316b9586da7f0a13564b50/poster2.jpg

104.21.234.134

200 OK

42 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202209/27/63316b9586da7f0a13564b50/poster2.jpg
IP
104.21.234.134:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Size
42 kB (42133 bytes)
Hash
c17876650a8788b99f4428d83c5e6275
8af99b8b4d273e003cc930ee6f418db73d0710f6
a32324247bfc53e8b7dc95a5bd736974f050acf9386d80e6ba87a48008f23ba0

HTTP Headers

GET /videos/202209/27/63316b9586da7f0a13564b50/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:04 GMT
content-type: image/jpeg
content-length: 42133
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Mon, 26 Sep 2022 17:06:24 GMT
etag: W/"a495-1837ac39ebc"
expires: Sat, 26 Nov 2022 16:18:14 GMT
cf-cache-status: HIT
age: 38330
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lgLBdvJcGAkknuSR9BJYNmPg7gjyCPleLD%2FULfUlQxqpD1BX7kth77fbGWww5pcaeMzka5Y60rCtsCXlM3%2BbnmYW2IJBWEJYAS01YxonjkD6vrz0IKpIzn45zb6Chtrbt7tdQepm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379762bca8880-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

madou8img.5100m.xyz/videos/202208/19/62fe8c4531a1d92735afd637/poster2.jpg

104.21.234.134

200 OK

43 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202208/19/62fe8c4531a1d92735afd637/poster2.jpg
IP
104.21.234.134:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Size
43 kB (43223 bytes)
Hash
88ee11921d7b3044c5d30194ab6c4f2d
3ef3bdf4528b952516ce38fabd64375be05a26b6
6ee4ca9b863107ccbe3049cfdfe70bd40325c261bfcbf764d8a9b483ec5a594d

HTTP Headers

GET /videos/202208/19/62fe8c4531a1d92735afd637/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/jpeg
content-length: 43223
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Thu, 18 Aug 2022 19:02:38 GMT
etag: W/"a8d7-182b25607a2"
expires: Sat, 26 Nov 2022 16:18:14 GMT
cf-cache-status: HIT
age: 38331
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p90CQg1H3mqw6Ry3DM5FnhOFGaRRmqy%2FCMv%2Fp%2FmNwPXJxO3gEllu40gczbSPnGmn5QmQw1cPuHYfKpnphueZ8EM2%2FP%2BbryPqVV%2BtHJPNLb5M3fdMVIfwTwxJ4GsKmJ%2Bdn%2BU19MvS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379763bee8880-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

madou8img.5100m.xyz/videos/202208/19/62fe8bef31a1d92735afd32b/poster2.jpg

104.21.234.134

200 OK

46 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202208/19/62fe8bef31a1d92735afd32b/poster2.jpg
IP
104.21.234.134:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Size
46 kB (46124 bytes)
Hash
ac746135e5427e1c0bcd4cb75e08517e
f248a80e54d3add8d2a79412a41cd98c9844cb5b
bfe401425cad65e54a0e0c246749a3774238ab780f0bb3db4cde328058f95788

HTTP Headers

GET /videos/202208/19/62fe8bef31a1d92735afd32b/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/jpeg
content-length: 46124
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Thu, 18 Aug 2022 19:05:26 GMT
etag: W/"b42c-182b2589892"
expires: Sat, 26 Nov 2022 16:18:14 GMT
cf-cache-status: HIT
age: 38331
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CQA168tgSCKTXGazWdKi6UYJD4KacLyNJPOYZY%2BC0XewMfu1LYVjQOuMA%2BL7AH4PniTvdciaMEH4eKL9xm9DilMWu24tjXh9gINnSiMxze3C205x8nMbxXyKzEBhtZ2jh%2BGjMsyy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379764bff8880-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

madou8img.5100m.xyz/videos/202209/07/6317977af015abad704dd40c/poster2.jpg

104.21.234.134

200 OK

39 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202209/07/6317977af015abad704dd40c/poster2.jpg
IP
104.21.234.134:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Size
39 kB (38993 bytes)
Hash
b31063386754c00fc4acdde3e1779472
d8242d68d022f924853587ada995fc18321eecbc
2cf4125080e5d23e802b9fa205985943a15b8c7c1f249fc95ae64e6800646887

HTTP Headers

GET /videos/202209/07/6317977af015abad704dd40c/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/jpeg
content-length: 38993
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Tue, 06 Sep 2022 19:16:40 GMT
etag: W/"9851-183143bb28b"
expires: Sat, 26 Nov 2022 16:18:14 GMT
cf-cache-status: HIT
age: 38331
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fs0zCUsgaBkYdtRqhGIxlcuuyO94Fk29pjsyWxle6byrb7TCfUiLOzeKlTp%2F2fRDt2hETbeoCDmnLWv%2B9mpV9oNYOPwmdvpy7zRlymwA6IbPTYNEzsiqTIrqEy0qPt1szEMzXl7b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379764c008880-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

madou8img.5100m.xyz/videos/202208/27/63092d6d44bab570997f2856/poster2.jpg

104.21.234.134

200 OK

56 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202208/27/63092d6d44bab570997f2856/poster2.jpg
IP
104.21.234.134:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Size
56 kB (55541 bytes)
Hash
50ae77358ac00ecf26231bf3d33e0545
7bd06db6836bc28ace41426b59470078681f9942
87c6975557cdd1ae0431b53216e018a6015a65eaf2dc43daaf2f61c41068c320

HTTP Headers

GET /videos/202208/27/63092d6d44bab570997f2856/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/jpeg
content-length: 55541
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sat, 27 Aug 2022 01:11:55 GMT
etag: W/"d8f5-182dcdafcac"
expires: Sat, 26 Nov 2022 16:18:14 GMT
cf-cache-status: HIT
age: 38331
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Npjq6RfOeNboSw62Sumv1TPtAjyjsqbT2fnkXAz4tTfGx2hArdxYuLqc33Dyx7LCXox8gHV%2BgL%2BS3JbJargLaRnbZXMIssW9C56ECI3yYUo8XaxY72KTWbFBRnYy4A%2BgCSj4DRYn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379763bed8880-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
091dff2cc2c301264ae297d4570af7f4
e47cd7e7ed3a78ad2d4a84e9f09e25eff6c4632a
71b4e348cc93b2ca9d1de657f2d7d233a3b9cdc5f2af9075a0e817b61df1bf21

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "71B4E348CC93B2CA9D1DE657F2D7D233A3B9CDC5F2AF9075A0E817B61DF1BF21"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21553
Expires: Sat, 26 Nov 2022 20:56:18 GMT
Date: Sat, 26 Nov 2022 14:57:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10699
Expires: Sat, 26 Nov 2022 17:55:24 GMT
Date: Sat, 26 Nov 2022 14:57:05 GMT
Connection: keep-alive

madou8img.5100m.xyz/videos/202208/27/63092d5b44bab570997f277e/poster2.jpg

104.21.234.134

200 OK

49 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202208/27/63092d5b44bab570997f277e/poster2.jpg
IP
104.21.234.134:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Size
49 kB (49322 bytes)
Hash
b69ea1a3eac95fbc10ab946ee0e70363
127b20b8feeb15995e11fe484e636296a34d2065
3f5b75cbe4e01c163dcbaf5d7d6f2fbc3330bef37d36cc69af455025ce5b488b

HTTP Headers

GET /videos/202208/27/63092d5b44bab570997f277e/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/jpeg
content-length: 49322
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sat, 27 Aug 2022 01:13:49 GMT
etag: W/"c0aa-182dcdcba05"
expires: Sun, 27 Nov 2022 02:57:05 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B%2F7C5zgL97f6dScBcEvLiTEy%2BovK3lMjGCwRP5kU%2FBST%2FUlYyoUAqDo%2FrHDosEd7Tl%2ByL0SUa1dOWIznYDaZnWHOOkefdh9wlzG75n40WEgdoBcSAPmiqlLVj3QbpS9CkM69om%2Fa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379762bc28880-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
54c9e380c742dbfba67e03f6142d78b4
54005ec2fc25b79f3a48694e6120061858c8a4cb
17add5437b4b82ad3993e39de8b8505edb64992bb3da909c04c73644fb6ab85f

HTTP Headers

POST /s/gts1p5/DU7TrHLJxL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:05 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

madou8img.5100m.xyz/videos/202208/16/62fa83f9d0f295073ac342ff/poster2.jpg

104.21.234.134

200 OK

47 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202208/16/62fa83f9d0f295073ac342ff/poster2.jpg
IP
104.21.234.134:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x337, components 3\012- data
Size
47 kB (46985 bytes)
Hash
a1455d80e87f17b3e7b33c5911360601
5481127f7853e4125fbc6bbc4198da11ad19ab90
f1c214dd2719f44ef63c34fa5486ed858ee306f95c2b9f0bf07475ec74d05856

HTTP Headers

GET /videos/202208/16/62fa83f9d0f295073ac342ff/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/jpeg
content-length: 46985
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Mon, 15 Aug 2022 17:46:17 GMT
etag: W/"b789-182a29d0c5b"
expires: Sun, 27 Nov 2022 02:57:05 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dC0TM7lpoJp9NVydAXljeeUUMymb00kyiMeqyexkOC8xeWIHB8uqAxH6IQ11Uefniq6Z2LeCM5Zp22MAjdrTuVOupPh18yJE4Bn0GGGfOiQmsyLD9EuRGRsk5YPvUMdYYv%2BuLeDf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379762bc38880-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

madou8img.5100m.xyz/videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg

104.21.234.134

200 OK

46 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg
IP
104.21.234.134:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x340, components 3\012- data
Size
46 kB (46200 bytes)
Hash
8cee135b65dc2de4efafc419f4b353d0
fffc6829df1aa62783f66eca0ac618512d64dbe8
28cf9e87185f5cff027ac436cd6fe1b1b7f44e5b31df3e18c99f0898d1785932

HTTP Headers

GET /videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/jpeg
content-length: 46200
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Wed, 17 Aug 2022 19:41:16 GMT
etag: W/"b478-182ad53098f"
expires: Sun, 27 Nov 2022 02:57:05 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9yUj1l9RntZNZcijsgb5T%2BmDUGd4IWvSCeraP2X6uIxg%2FBkTsm7JuiLsGYKgHI55NUukoKWIBC4ZB4SZrax8T2pHN3YjYeI84onGPIQ%2FMyKMlteN44CQuh0wRpbOfyeUsnxP6Pe%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379762bcc8880-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6065a3bcc1be61e5db9c099de7a63ef6
a1a0d562b4cbb33a70f2e664dffd402a7ee2e3f7
84bdb066b87336256ee9cb446e291c43f4ab14c867a4f6787462872535a7f644

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84BDB066B87336256EE9CB446E291C43F4AB14C867A4F6787462872535A7F644"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2664
Expires: Sat, 26 Nov 2022 15:41:29 GMT
Date: Sat, 26 Nov 2022 14:57:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9ee667b5babe7e6d60d670064c51af8d
f7dc3365543a3f890614ac251df0076af4709ce3
733185f6818e1aa0391f914ac2e28161e9cf35862051bfbcdeea18e600b53d84

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "733185F6818E1AA0391F914AC2E28161E9CF35862051BFBCDEEA18E600B53D84"
Last-Modified: Fri, 25 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=104
Expires: Sat, 26 Nov 2022 14:58:49 GMT
Date: Sat, 26 Nov 2022 14:57:05 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 35557
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6065a3bcc1be61e5db9c099de7a63ef6
a1a0d562b4cbb33a70f2e664dffd402a7ee2e3f7
84bdb066b87336256ee9cb446e291c43f4ab14c867a4f6787462872535a7f644

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84BDB066B87336256EE9CB446E291C43F4AB14C867A4F6787462872535A7F644"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2664
Expires: Sat, 26 Nov 2022 15:41:29 GMT
Date: Sat, 26 Nov 2022 14:57:05 GMT
Connection: keep-alive

niugetv3.top/img/1717.gif

172.67.194.208

200 OK

2.8 MB

URL HTTP/2
niugetv3.top/img/1717.gif
IP
172.67.194.208:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 120\012- data
Size
2.8 MB (2812930 bytes)
Hash
b84dd689257112c2eeb9ff11c1eb1de7
125c585e21293764e1e52ca97dc256af76a67fc5
bd957c468bded0806e0a7ab33334f11f4a8952467f2fa13c2c606cf0bfc0ce83

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/1717.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/gif
content-length: 2812930
last-modified: Wed, 26 Oct 2022 16:39:02 GMT
etag: "635962a6-2aec02"
expires: Sat, 24 Dec 2022 19:01:43 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 158122
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HllHIxCKC0PXb7FVIEkkI9qvTz5Mx5KbmXISA2aiZFfvvd8IHaemngJRk4wSI9H9YpRHd%2B9Wa9%2FG65WmN3BQxWFEHCKMg0uN8zWK0W0cwqWJ8KwJna5sCPOGOTif78E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379776913b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

kvmaa.com/cf4287991556df0490caf209d0ed91fe.gif

170.178.176.170

301 Moved Permanently

162 B

URL HTTP/2
kvmaa.com/cf4287991556df0490caf209d0ed91fe.gif
IP
170.178.176.170:0
ASN
#46844 ST-BGP

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /cf4287991556df0490caf209d0ed91fe.gif HTTP/1.1
Host: kvmaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: text/html
content-length: 162
location: https://nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1271073626&si=f3d6365cc089588672da4dd3e692e58e&v=1.3.0&lv=1&sn=36035&r=0&ww=1280&u=http%3A%2F%2Fwww.jieyinxie.com%2Findex.php&tt=%E5%B9%BF%E5%AE%89%E5%B2%9B%E8%B4%A9%E5%AE%B6%E5%B1%85%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1271073626&si=f3d6365cc089588672da4dd3e692e58e&v=1.3.0&lv=1&sn=36035&r=0&ww=1280&u=http%3A%2F%2Fwww.jieyinxie.com%2Findex.php&tt=%E5%B9%BF%E5%AE%89%E5%B2%9B%E8%B4%A9%E5%AE%B6%E5%B1%85%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1271073626&si=f3d6365cc089588672da4dd3e692e58e&v=1.3.0&lv=1&sn=36035&r=0&ww=1280&u=http%3A%2F%2Fwww.jieyinxie.com%2Findex.php&tt=%E5%B9%BF%E5%AE%89%E5%B2%9B%E8%B4%A9%E5%AE%B6%E5%B1%85%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.jieyinxie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 26 Nov 2022 14:57:05 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=115906A7BE018F25; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1661954835&si=f8ee02cdc233248a74e9de89c68d6953&v=1.3.0&lv=1&sn=36035&r=0&ww=1280&u=http%3A%2F%2Fwww.jieyinxie.com%2Findex.php&tt=%E5%B9%BF%E5%AE%89%E5%B2%9B%E8%B4%A9%E5%AE%B6%E5%B1%85%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1661954835&si=f8ee02cdc233248a74e9de89c68d6953&v=1.3.0&lv=1&sn=36035&r=0&ww=1280&u=http%3A%2F%2Fwww.jieyinxie.com%2Findex.php&tt=%E5%B9%BF%E5%AE%89%E5%B2%9B%E8%B4%A9%E5%AE%B6%E5%B1%85%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1661954835&si=f8ee02cdc233248a74e9de89c68d6953&v=1.3.0&lv=1&sn=36035&r=0&ww=1280&u=http%3A%2F%2Fwww.jieyinxie.com%2Findex.php&tt=%E5%B9%BF%E5%AE%89%E5%B2%9B%E8%B4%A9%E5%AE%B6%E5%B1%85%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.jieyinxie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 26 Nov 2022 14:57:05 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=7A0C44CC2B582CDE; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
4500dfffcc71ba78273d9a719049252a
006021cfd72a0a26c0da3db2fd03b01ccc80a225
0f608e852ec11bfa3893006362929913e6e2e1cf22b055d2273097bbcdd4c5ce

HTTP Headers

GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: e472958b4c0c5b9aeb93b68928ca5c54

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Sat, 26 Nov 2022 14:57:04 GMT
Etag: 96e328204bc72418a817bc5e033c1b41
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B3F74B4F89FDE6CE; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

niugetv9.top/template/m1938pc/static/fonts/iconfont.woff

38.60.24.90

200 OK

2.9 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/fonts/iconfont.woff
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
Web Open Font Format, TrueType, length 2924, version 1.0\012- data
Size
2.9 kB (2924 bytes)
Hash
1b05b2b67ca6e3fe976ed8d2d1aa31d5
c7055832382daf713a911d67501e26873db045f8
ac1718a88630db8d2fd67997ad9796acdc8a6a88361b2b7058832caeec4fb22d

HTTP Headers

GET /template/m1938pc/static/fonts/iconfont.woff HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://niugetv9.top/template/m1938pc/static/css/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 14:57:05 GMT
Content-Type: font/woff
Content-Length: 2924
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Connection: keep-alive
ETag: "60b765dc-b6c"
Accept-Ranges: bytes

hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
68c685a4c2a59e89db05d8c1601023c6
ce4240f2f639caa246d29aa83fe0795e60423d70
75af74a7829fc17e7043a3f0d3819198bba7cdfbbbaa3096eef06d09980b8fb9

HTTP Headers

GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Sat, 26 Nov 2022 14:57:04 GMT
Etag: 2dce9e89d14b114b43bcf8073ac995b9
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9FA6C1A576429794; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d1e8b6e5499e87bfa7fbec32d02bc40f
6ce993fa0725fba9afe7e43cac29601ff9617b54
4236ae771a76f59cd8d8bc0bc1e52febc1a010e8762909652ab985bca490d10a

HTTP Headers

POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:05 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1p5/swCvH5hS9-4

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c4ed0d10d8de4b71c626867018dd263
72d5c910504cba7b6ff02a429e31b8b3de708e0b
ee66c5f14c483557e555384a91591129f8aefd95906787694364ed8c8fa85660

HTTP Headers

POST /s/gts1p5/swCvH5hS9-4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:05 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1252370829&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.3.0&lv=1&sn=36035&r=0&ww=1280&u=http%3A%2F%2Fwww.jieyinxie.com%2Findex.php&tt=%E5%B9%BF%E5%AE%89%E5%B2%9B%E8%B4%A9%E5%AE%B6%E5%B1%85%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1252370829&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.3.0&lv=1&sn=36035&r=0&ww=1280&u=http%3A%2F%2Fwww.jieyinxie.com%2Findex.php&tt=%E5%B9%BF%E5%AE%89%E5%B2%9B%E8%B4%A9%E5%AE%B6%E5%B1%85%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1252370829&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.3.0&lv=1&sn=36035&r=0&ww=1280&u=http%3A%2F%2Fwww.jieyinxie.com%2Findex.php&tt=%E5%B9%BF%E5%AE%89%E5%B2%9B%E8%B4%A9%E5%AE%B6%E5%B1%85%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.jieyinxie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 26 Nov 2022 14:57:05 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=EFF82187DD9A33A0; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
57660d3bd5387ee6665ec15d709ea7fe
ac9b888400c9eaff9c3bb57fb2b8f07156e20854
f5d882027ce4a50f472caf1dbf1dadda9816a23fdea0dba9cdae92f4bb30ac23

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F5D882027CE4A50F472CAF1DBF1DADDA9816A23FDEA0DBA9CDAE92F4BB30AC23"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9045
Expires: Sat, 26 Nov 2022 17:27:50 GMT
Date: Sat, 26 Nov 2022 14:57:05 GMT
Connection: keep-alive

madou8img.5100m.xyz/videos/202208/27/63092d6644bab570997f27d3/poster2.jpg

104.21.234.134

200 OK

44 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202208/27/63092d6644bab570997f27d3/poster2.jpg
IP
104.21.234.134:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Size
44 kB (43786 bytes)
Hash
2a8ce24ab0eba3719092df7fc9f827a4
22a2838e383b9d3a87d91c9745f29a5ed0a12c56
4d5b11e38d9412185457fd1819eba660ecadcc9161eb4156f7cf8b00398543ab

HTTP Headers

GET /videos/202208/27/63092d6644bab570997f27d3/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/jpeg
content-length: 43786
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sat, 27 Aug 2022 01:13:14 GMT
etag: W/"ab0a-182dcdc3326"
expires: Sat, 26 Nov 2022 16:18:14 GMT
cf-cache-status: HIT
age: 38331
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ELtYlU0II%2BNMdHIcMulpWRb%2Bzo6vCCozaleA0tMyNG%2BdtL3tDb8JGVk8VkNwxtqmfrkBo%2B3E5yzlLvLgx6CJD5Vo8HZ76yxLBrSTUlwcuOkBwoGZHyt5S1QiphGHvRSkMC2wyUSb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379799a8b8880-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
2705db343df591a8a65280711ad391d2
65705b7ac4bdc79b01206ef29548d4b7f819d155
72e1b1ac913f28f9895187eb9e7472156b2eb707042d2e440e7a44a5915caa24

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 26 Nov 2022 14:43:44 GMT
last-modified: Sat, 26 Nov 2022 11:26:23 GMT
expires: Sat, 03 Dec 2022 11:26:22 GMT
etag: "65705b7ac4bdc79b01206ef29548d4b7f819d155"
cache-control: max-age=600276,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 770365e81bce9a0f-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669473824
via: cache19.l2de2[34,33,304-0,M], cache25.l2de2[35,0], cache5.se1[0,0,200-0,H], cache2.se1[3,0], cache5.se1[4,0]
age: 801
x-cache: HIT TCP_MEM_HIT dirn:1:325898602
x-swift-savetime: Sat, 26 Nov 2022 14:43:44 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9916694746255223035e, 2ff62c9916694746255223035e

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
2705db343df591a8a65280711ad391d2
65705b7ac4bdc79b01206ef29548d4b7f819d155
72e1b1ac913f28f9895187eb9e7472156b2eb707042d2e440e7a44a5915caa24

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 26 Nov 2022 14:43:44 GMT
last-modified: Sat, 26 Nov 2022 11:26:23 GMT
expires: Sat, 03 Dec 2022 11:26:22 GMT
etag: "65705b7ac4bdc79b01206ef29548d4b7f819d155"
cache-control: max-age=600276,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 770365e81bce9a0f-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669473824
via: cache19.l2de2[34,33,304-0,M], cache25.l2de2[35,0], cache5.se1[0,0,200-0,H], cache2.se1[2,0], cache2.se1[4,0]
age: 801
x-cache: HIT TCP_MEM_HIT dirn:1:325898602
x-swift-savetime: Sat, 26 Nov 2022 14:43:44 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9616694746256006813e, 2ff62c9616694746256006813e

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
2705db343df591a8a65280711ad391d2
65705b7ac4bdc79b01206ef29548d4b7f819d155
72e1b1ac913f28f9895187eb9e7472156b2eb707042d2e440e7a44a5915caa24

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 26 Nov 2022 14:43:44 GMT
last-modified: Sat, 26 Nov 2022 11:26:23 GMT
expires: Sat, 03 Dec 2022 11:26:22 GMT
etag: "65705b7ac4bdc79b01206ef29548d4b7f819d155"
cache-control: max-age=600276,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 770365e81bce9a0f-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669473824
via: cache19.l2de2[0,0,304-0,H], cache4.l2de2[1,0], cache2.se1[83,83,200-0,H], cache2.se1[85,0], cache3.se1[89,0]
age: 801
x-cache: HIT TCP_REFRESH_HIT dirn:11:36018522
x-swift-savetime: Sat, 26 Nov 2022 14:57:05 GMT
x-swift-cachetime: 999
timing-allow-origin: *, *
eagleid: 2ff62c9716694746255217683e, 2ff62c9716694746255217683e

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
2705db343df591a8a65280711ad391d2
65705b7ac4bdc79b01206ef29548d4b7f819d155
72e1b1ac913f28f9895187eb9e7472156b2eb707042d2e440e7a44a5915caa24

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 26 Nov 2022 14:43:44 GMT
last-modified: Sat, 26 Nov 2022 11:26:23 GMT
expires: Sat, 03 Dec 2022 11:26:22 GMT
etag: "65705b7ac4bdc79b01206ef29548d4b7f819d155"
cache-control: max-age=600276,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 770365e81bce9a0f-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669473824
via: cache19.l2de2[0,0,304-0,H], cache4.l2de2[1,0], cache2.se1[83,3,200-0,C], cache2.se1[7,0], cache5.se1[8,0]
age: 801
x-cache: HIT TCP_MEM_HIT dirn:11:36018522
x-swift-savetime: Sat, 26 Nov 2022 14:57:05 GMT
x-swift-cachetime: 999
timing-allow-origin: *, *
eagleid: 2ff62c9916694746256033083e, 2ff62c9916694746256033083e

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aaf500966023ee1d76a482b2fe774303
b7d456c69b00a82ef0634912256a95390d97c92e
fd35d7c36493ad814c5d8c36abfe16d8c516b5714bb0ab06d5d537db8f825cbb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD35D7C36493AD814C5D8C36ABFE16D8C516B5714BB0AB06D5D537DB8F825CBB"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16216
Expires: Sat, 26 Nov 2022 19:27:21 GMT
Date: Sat, 26 Nov 2022 14:57:05 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.77.32

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
8dec56e1967edcdc664f3d4959aa6343
cd2d04fe8fab26d63bc5020f334d5c22d09d18ad
66555be8bf47b96fe74102c738ad90e534b247cbc9a1ea54b76eee52703dcb10

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "66555BE8BF47B96FE74102C738AD90E534B247CBC9A1EA54B76EEE52703DCB10"
Last-Modified: Thu, 24 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3502
Expires: Sat, 26 Nov 2022 15:55:27 GMT
Date: Sat, 26 Nov 2022 14:57:05 GMT
Connection: keep-alive

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
3b87531f8e2f44a41dbc82132dd4f2dd
bc221e0e10b4f4bca12907c2021d2a65eb848aad
81a7b1cb379d5bfa9a1a1b04742402e176d49a148194c3d8ec71a0e4f6684f33

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:05 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 04:34:28 GMT
Expires: Thu, 01 Dec 2022 04:34:27 GMT
Etag: "bc221e0e10b4f4bca12907c2021d2a65eb848aad"
Cache-Control: max-age=394041,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7703797948bab529-OSL

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
daddcf0ab2997b54fc856427439df2ed
cb80e931671fd9db0a2f79d695f2f835dce19b06
2a5984f8aa140bf99cf940d933d21448bd6717ad02a75befd3be2dd9c1416705

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 16:01:18 GMT
Expires: Thu, 01 Dec 2022 16:01:17 GMT
Etag: "cb80e931671fd9db0a2f79d695f2f835dce19b06"
Cache-Control: max-age=435251,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7703797a7bc7b4f9-OSL

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
38c85444d04a02cc0ba5385e286fe413
e2da541367f09e77c14b091f34bdfba6642ebc47
f42ecc8e6ec8ff400e4984cca9ab0250e7696ba302c888c383477ea8d30553fd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 17:33:14 GMT
Expires: Fri, 02 Dec 2022 17:33:13 GMT
Etag: "e2da541367f09e77c14b091f34bdfba6642ebc47"
Cache-Control: max-age=527167,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7703797a8ae5b4eb-OSL

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3502 bytes)
Hash
a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 27819
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc537c2d0-d011-4ed0-a5d4-5f5d2190c49b.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4366 bytes)
Hash
abd79421a3c44a8df11ad2cc50083309
8665e5f3026f2c2b9505eb139c478f4d359851c3
3a66b00498fa1322730705b1c4502614b5a520ac3f884f494d65e27a5bb62c3f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc537c2d0-d011-4ed0-a5d4-5f5d2190c49b.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4366
x-amzn-requestid: ce25f5ab-0c92-431e-ae4e-618829594a74
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNZFjHoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-6a3a8dff70e717011e3a0606;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 75AMMfa7oq0Y51YPEC_FEDOoNVc9cgfjg9bOSOXwikONPdhW7OG3uQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:48:10 GMT
age: 61735
etag: "8665e5f3026f2c2b9505eb139c478f4d359851c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15818 bytes)
Hash
17ebe470d040a6ea8c57e9b9d4f4e828
1ac7a410cd4f3709f476c776dd5646dd982dcfa8
d65114b68fcc12344c6df7bf294718b79822fa9782d3bd54ca044b66f82052b1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15818
x-amzn-requestid: a6570859-3b03-492e-9f84-e25b01223da2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLXrUF3bIAMF8CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381397b-379b1bcf2ac0715835e10e48;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:54:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HgiyaodE2vJx5JL8QfOiTersSAgAwq74gtsPkpHUhnQ3In2vZ-3rbQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:33:09 GMT
etag: "1ac7a410cd4f3709f476c776dd5646dd982dcfa8"
content-type: image/jpeg
age: 59036
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9914 bytes)
Hash
3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:59:05 GMT
age: 61080
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
6945de86931f071ee096807b60cdd4c6
93cfa0a54a816762e42de1bfb669f89d6c13f9bd
17c3019ae34bedc0b6926c1f541cdd7d03f9a69aa1396579d284e82bb5e52120

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 26 Nov 2022 14:48:45 GMT
last-modified: Fri, 25 Nov 2022 18:55:34 GMT
expires: Fri, 02 Dec 2022 18:55:33 GMT
etag: "93cfa0a54a816762e42de1bfb669f89d6c13f9bd"
cache-control: max-age=600782,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb5
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 77036d450ed59042-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669474125
via: cache16.l2de2[0,0,304-0,H], cache9.l2de2[1,0], cache3.se1[0,0,200-0,H], cache2.se1[1,0], cache2.se1[2,0]
age: 500
x-cache: HIT TCP_MEM_HIT dirn:1:249667634
x-swift-savetime: Sat, 26 Nov 2022 14:55:19 GMT
x-swift-cachetime: 1406
timing-allow-origin: *, *
eagleid: 2ff62c9616694746257346930e, 2ff62c9616694746257346930e

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9049 bytes)
Hash
c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 62009
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ede9d7df49a7e00d51c415d5022c7936
bf85e6580bf13510d145273c27b0ed7f35fd76a4
924dbbab8cfc5f6878c78e36b562723253fdcf06826fdab6bb4b2af6f5242e4b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "924DBBAB8CFC5F6878C78E36B562723253FDCF06826FDAB6BB4B2AF6F5242E4B"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=760
Expires: Sat, 26 Nov 2022 15:09:45 GMT
Date: Sat, 26 Nov 2022 14:57:05 GMT
Connection: keep-alive

niugetv3.top/img/ylf-1.gif

172.67.194.208

200 OK

876 kB

URL HTTP/2
niugetv3.top/img/ylf-1.gif
IP
172.67.194.208:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 980 x 120\012- data
Size
876 kB (875859 bytes)
Hash
5d8bd2cf8dfd1fdeebc625f2a664a5f5
b3cc24d971059319e859932dd124bcc4d64a7a8f
f1c047bf61b6c302e1afd72b6c49e7d5e397689109620cefdb055ce09d6483b6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/ylf-1.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/gif
content-length: 875859
last-modified: Fri, 18 Nov 2022 14:33:12 GMT
etag: "637797a8-d5d53"
expires: Sat, 24 Dec 2022 19:01:36 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 158129
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4wcn5znQytJGod%2Bjt8B6QrbAtT1TC6cj%2FNxlZdo955QdmqXG%2F8E5MqACIB%2FUm0Bqk4EViI95pAzK044Fut%2BzOXmLRjtRSAoXXwsnF0M6S%2BjiHX%2BNmJGt8H5yVGgOq4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7703797b1d44b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

niugetv3.top/img/17172.gif

172.67.194.208

200 OK

3.2 MB

URL HTTP/2
niugetv3.top/img/17172.gif
IP
172.67.194.208:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 600 x 240\012- data
Size
3.2 MB (3197145 bytes)
Hash
4dff729097677e6c8875d87ecb1cc40a
b2a83ac93f0177346ba2a2ba69280db169a89d0e
fdade7b3735760517f548e086b27db22b3701015daf7d94dd94a4a284373a154

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/17172.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/gif
content-length: 3197145
last-modified: Thu, 27 Oct 2022 13:06:28 GMT
etag: "635a8254-30c8d9"
expires: Sun, 25 Dec 2022 10:15:59 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 103266
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Rn7lreZKpvdQCSJe8aas8PcF%2BA5Pm2iIQe%2B6RaS80XLthu3rk%2B%2ByHpOHfmXTrrl2pyGQ5%2B4koCixcQst6%2BpDn0%2FLTvJ6bmQxFRG3noa4%2BA4C4b6s9BIdRAKayUsptc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7703797b2d4db4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif

64.32.13.142

301 Moved Permanently

162 B

URL HTTP/2
kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif
IP
64.32.13.142:0
ASN
#46844 ST-BGP

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: text/html
content-length: 162
location: https://kvkddd.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0face83032fe1f5835606cf1fd2fd46e
f3b631d06f30ded71ca92a48c1916882b49bcaca
e8d2b195d702f21f3e059ffb843f50117dad1a591c3adafeae46a3d255685574

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8D2B195D702F21F3E059FFB843F50117DAD1A591C3ADAFEAE46A3D255685574"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=217
Expires: Sat, 26 Nov 2022 15:00:42 GMT
Date: Sat, 26 Nov 2022 14:57:05 GMT
Connection: keep-alive

hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1144601855&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.jieyinxie.com%2F&v=1.3.0&lv=1&sn=36035&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1144601855&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.jieyinxie.com%2F&v=1.3.0&lv=1&sn=36035&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1144601855&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.jieyinxie.com%2F&v=1.3.0&lv=1&sn=36035&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 26 Nov 2022 14:57:05 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=9FFF310E5FE69AF9; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=528889313&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.jieyinxie.com%2F&v=1.3.0&lv=1&sn=36035&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=528889313&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.jieyinxie.com%2F&v=1.3.0&lv=1&sn=36035&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=528889313&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.jieyinxie.com%2F&v=1.3.0&lv=1&sn=36035&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 26 Nov 2022 14:57:05 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=BFD0CEF94B884F69; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
d70f0571f110d61e72a3961505950fa1
90476448b25e8e5fed72d8b497f1d24fbe54dff4
b2633dd1aa0357ada5bbb652b83bf1aa806f8abfd470ae44f1cd3de9e8c0130f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 16:32:08 GMT
Expires: Fri, 02 Dec 2022 16:32:07 GMT
Etag: "90476448b25e8e5fed72d8b497f1d24fbe54dff4"
Cache-Control: max-age=523501,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7703797aa8a1b511-OSL

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
3b87531f8e2f44a41dbc82132dd4f2dd
bc221e0e10b4f4bca12907c2021d2a65eb848aad
81a7b1cb379d5bfa9a1a1b04742402e176d49a148194c3d8ec71a0e4f6684f33

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:05 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 04:34:28 GMT
Expires: Thu, 01 Dec 2022 04:34:27 GMT
Etag: "bc221e0e10b4f4bca12907c2021d2a65eb848aad"
Cache-Control: max-age=394041,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7703797a7a440afa-OSL

523zyw.com/upload/vod/2021-12-12/16392796543.jpg

137.175.72.61

200 OK

9.8 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/16392796543.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Size
9.8 kB (9760 bytes)
Hash
2c71baf999ce37c40386d6a2e00ec66c
31b77e70ec09ea78669bf591c250d2a8bf48c133
21e9b852dc387c096ad40bad1348bcaee6153a880d33ce8eeaceb5c28b930f8b

HTTP Headers

GET /upload/vod/2021-12-12/16392796543.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 9760
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 03:27:34 GMT
Accept-Ranges: bytes
ETag: "55c636348efd71:0"

523zyw.com/upload/vod/2022-06-21/16558170520.jpg

137.175.72.61

200 OK

11 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-06-21/16558170520.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Size
11 kB (10813 bytes)
Hash
c9986014e13b48dd83aac307dbef0eab
a538f972d5b60f03353605d4d32346b69ee03c2f
443e66acb35dd4d2a197461c06594607355f05f15b92bbc2aa99ae0c50ecaeb2

HTTP Headers

GET /upload/vod/2022-06-21/16558170520.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 10813
Connection: keep-alive
Last-Modified: Tue, 21 Jun 2022 13:10:53 GMT
Accept-Ranges: bytes
ETag: "3eb01c567085d81:0"

ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
57a7c61103527d6763b633999ef4de20
853f1eeddb7ac04d9c434273a1db9c722ab4527a
c2c5b1c5033820b07c43fa4cd74400ffd1b16fedc9206b3b3ca2ddf02c898593

HTTP Headers

POST /s/gts1p5/t1eJGFHGm7w HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:05 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
dd929a249b5a23d607402e74b57c64d2
1858874a1e113b774554ce18e9d9b82970ce156a
e62d9af2623b748ca1412aa777949f1d82292da693e3ee93e8dc1998439cd29a

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 30 Nov 2022 12:00:44 GMT
ETag: "1858874a1e113b774554ce18e9d9b82970ce156a"
Last-Modified: Sat, 26 Nov 2022 12:00:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1850
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7703797caaf2b505-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
91d2c05dcf25e00058c6d9819475b37a
a8b1336f319cc3accf3104b900c84258389aef81
daacb3a1012a41f6d76dae0357f19fdb58dc0b5a08169a60534525d59d510a32

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4791
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:06 GMT
Last-Modified: Sat, 26 Nov 2022 13:37:15 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 727

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
023817dd3a9a60130c555dcdc2f019a0
718c54dafa23554d0a99371d893ebacfccd5dbd3
fa6c6c130f9e76000f84cbba25e250e6a62baa5e36ea0bb194d38711f3ff39a6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FA6C6C130F9E76000F84CBBA25E250E6A62BAA5E36EA0BB194D38711F3FF39A6"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10549
Expires: Sat, 26 Nov 2022 17:52:55 GMT
Date: Sat, 26 Nov 2022 14:57:06 GMT
Connection: keep-alive

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
bc97ae7e5ed2d72be7e110190724a57b
12edb034861977b349003f33e282e5377622dae5
0cc0f219c47efc713f29a18a88fd77188e3e2839a06a073b749b618b92b65232

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 30 Nov 2022 11:57:14 GMT
ETag: "12edb034861977b349003f33e282e5377622dae5"
Last-Modified: Sat, 26 Nov 2022 11:57:15 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1850
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7703797ceb42b505-OSL

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
023817dd3a9a60130c555dcdc2f019a0
718c54dafa23554d0a99371d893ebacfccd5dbd3
fa6c6c130f9e76000f84cbba25e250e6a62baa5e36ea0bb194d38711f3ff39a6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FA6C6C130F9E76000F84CBBA25E250E6A62BAA5E36EA0BB194D38711F3FF39A6"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10549
Expires: Sat, 26 Nov 2022 17:52:55 GMT
Date: Sat, 26 Nov 2022 14:57:06 GMT
Connection: keep-alive

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
8dc18c5dabd2a624ba4c4235f15f3acb
9d72c5a5e2ffb5c2d58417a7c7d94d747be07dcf
fd5f7246ffef8f82d5307db70e640ba4c1e3b49908cf6950dd7736b951d7edda

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 30 Nov 2022 13:22:04 GMT
ETag: "9d72c5a5e2ffb5c2d58417a7c7d94d747be07dcf"
Last-Modified: Sat, 26 Nov 2022 13:22:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2029
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7703797cfb45b505-OSL

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d05893195aa5ddb83b28b52e434be01f
6829b8688dc279af2feb22df2fb3afd55ed23308
4947087c34ac5f0edffd8ac6aa429268fe66a715baaceb33338194095c0d2891

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4947087C34AC5F0EDFFD8AC6AA429268FE66A715BAACEB33338194095C0D2891"
Last-Modified: Sat, 26 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3255
Expires: Sat, 26 Nov 2022 15:51:21 GMT
Date: Sat, 26 Nov 2022 14:57:06 GMT
Connection: keep-alive

hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
62d7ddce139830f36086564e3002f0d6
04de53d2b173ed1f48361dfdb97a319b4c7aaba1
dc6028d7fbb34723c88a9877b3308dbfcbbe0cb1494863d323c646ba605747c1

HTTP Headers

GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 2dce9e89d14b114b43bcf8073ac995b9

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Sat, 26 Nov 2022 14:57:05 GMT
Etag: 47ff3badc8b29e2825fb80845ac4aaf7
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=5624BCCE6872B2E8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

e1.o.lencr.org/

23.36.77.32

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
091dff2cc2c301264ae297d4570af7f4
e47cd7e7ed3a78ad2d4a84e9f09e25eff6c4632a
71b4e348cc93b2ca9d1de657f2d7d233a3b9cdc5f2af9075a0e817b61df1bf21

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "71B4E348CC93B2CA9D1DE657F2D7D233A3B9CDC5F2AF9075A0E817B61DF1BF21"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Sat, 26 Nov 2022 20:56:18 GMT
Date: Sat, 26 Nov 2022 14:57:06 GMT
Connection: keep-alive

p3.douyinpic.com/obj/tos-cn-i-dy/087453e6696a47efaee2f34d49758e2f

47.246.44.225

200 OK

516 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/087453e6696a47efaee2f34d49758e2f
IP
47.246.44.225:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 960 x 60\012- data
Size
516 kB (516218 bytes)
Hash
8d339af776b8da39e4e1fdb55f96b6af
d6b84760fea01429a13f8ff040172507361097c0
fd6e67ed60cceb42d84e753cce3f4c5ede43ae84f4038ffea335a840302fa2df

HTTP Headers

GET /obj/tos-cn-i-dy/087453e6696a47efaee2f34d49758e2f HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 516218
date: Thu, 24 Nov 2022 07:58:46 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 24 Nov 2022 07:58:45 GMT
nw-session-id: 2022112415584501015802909733AEEBB46wgcr02dy
nw-session-trace: 2022-11-24T15:58:45.965828724+08:00 74
x-bdcdn-cache-status: TCP_HIT
x-length: 516218
x-powered-by: ImageX
x-response-date: Thu, 24 Nov 2022 15:58:45 GMT
x-tt-logid: 2022112415584501015802909733AEEBB4
via: n204-098-037, cache3.l2de2[0,0,206-0,H], cache15.l2de2[1,0], cache15.l2de2[1,0], cache8.se1[0,0,200-0,H], cache1.se1[3,0]
x-request-ip: fdbd:dc01:26:287::138
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=3
x-tt-trace-host: 01828e55a3aae08103c59996ea14c72a4a650c73ba8184de598e17f202145c99cd35257572df5bd322260a1f6c2ddafba79c62fdfddd14e19b8e6dc290d92121db388df5ed24178baf3b2aac2621aaa9d52bc8452f4e3bf018dd534b0cc22077f5
x-response-lb: image
ali-swift-global-savetime: 1669276726
age: 197900
x-cache: HIT TCP_HIT dirn:11:402716544
x-swift-savetime: Thu, 24 Nov 2022 10:03:54 GMT
x-swift-cachetime: 31528492
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9516694746260496042e
X-Firefox-Spdy: h2

hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
f7ea23a68fb874da6684eebb801f14fb
097f84e781071daac6237de9c071f265020b8c53
29f28f0edb5c13a669749ab4d318b170499cc2a21512291f3e7296ed271b53bb

HTTP Headers

GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 96e328204bc72418a817bc5e033c1b41

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Sat, 26 Nov 2022 14:57:05 GMT
Etag: 0cc75c1a9dfc0c66766fdc4c9b150efd
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6183EEF549AB01F0; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d1e8b6e5499e87bfa7fbec32d02bc40f
6ce993fa0725fba9afe7e43cac29601ff9617b54
4236ae771a76f59cd8d8bc0bc1e52febc1a010e8762909652ab985bca490d10a

HTTP Headers

POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
54c9e380c742dbfba67e03f6142d78b4
54005ec2fc25b79f3a48694e6120061858c8a4cb
17add5437b4b82ad3993e39de8b8505edb64992bb3da909c04c73644fb6ab85f

HTTP Headers

POST /s/gts1p5/DU7TrHLJxL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
7267db8144555ed4487fe7b4bb65e2cc
80e96b7c50b0828ceed3f0ce7824d38570bd7da5
cd118d4c708c241eb20cabd8391205a9111c60f8b3241b9c915ad2a12867a8a1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:06 GMT
Etag: "63804c0d-117"
Server: ECS (amb/6B8E)
Content-Length: 279

p3.douyinpic.com/obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6

47.246.44.225

200 OK

385 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6
IP
47.246.44.225:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 960 x 60\012- data
Size
385 kB (384932 bytes)
Hash
6b1533d50f7375dff2f5b3969e7ec1da
6dfd13e56902faedb34a9d2e6d27e51605ddb0f1
2f235ff0c8fd65b40619ef5448206c505716aa41dcee03850c00b1352c986f7c

HTTP Headers

GET /obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 384932
date: Tue, 22 Nov 2022 10:08:41 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Tue, 22 Nov 2022 10:08:41 GMT
nw-session-id: 202211221808410101351601674FE863345mzx501dy
nw-session-trace: 2022-11-22T18:08:41.647742825+08:00 42
x-bdcdn-cache-status: TCP_MISS
x-length: 384932
x-powered-by: ImageX
x-response-date: Tue, 22 Nov 2022 18:08:41 GMT
x-tt-logid: 202211221808410101351601674FE86334
via: n132-082-090, cache8.l2de2[0,0,206-0,H], cache5.l2de2[1,0], cache5.l2de2[1,0], cache2.se1[0,0,200-0,H], cache1.se1[2,0]
x-request-ip: fdbd:dc03:8:579::167
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01828e55a3aae08103c59996ea14c72a4affd5f336396c83fef04801501cdc16c039bb9b50be36e4583a9a652be70d4c26d43a9fbfbc9d261778259a62d27b92becca44012ddd205b00b27dc756b3cf65e7a30213d49dde86765893b92cc85453b
x-response-lb: image
ali-swift-global-savetime: 1669111721
age: 362905
x-cache: HIT TCP_HIT dirn:3:20866193
x-swift-savetime: Tue, 22 Nov 2022 11:19:45 GMT
x-swift-cachetime: 31531736
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9516694746262326159e
X-Firefox-Spdy: h2

p3.douyinpic.com/obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3

47.246.44.225

200 OK

66 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3
IP
47.246.44.225:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 200 x 200\012- data
Size
66 kB (65638 bytes)
Hash
9d629444f249b855a94e8a882d5ec47d
c06f98e56cf9977aaa7addb0e0acee4d982f6248
a81c159959e121cf31b8fb9fff87a139cb549a928b07ff43306ac65a2dcb6a0c

HTTP Headers

GET /obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 65638
date: Thu, 24 Nov 2022 17:04:00 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 24 Nov 2022 17:04:00 GMT
nw-session-id: 202211250104000102090801531EE6926Csfzgg02dy
nw-session-trace: 2022-11-25T01:04:00.722129358+08:00 73
x-bdcdn-cache-status: TCP_MISS
x-length: 65638
x-powered-by: ImageX
x-response-date: Fri, 25 Nov 2022 01:04:00 GMT
x-tt-logid: 202211250104000102090801531EE6926C
via: n204-098-054, cache10.l2de2[0,0,206-0,H], cache17.l2de2[1,0], cache17.l2de2[1,0], cache5.se1[0,18,200-0,H], cache1.se1[20,0]
x-request-ip: fdbd:dc01:26:259::153
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=20
x-tt-trace-host: 01ca22b6e36e3f31e53156b8c1b9275e2a54e22ec5fa313783764a03842e9750a0a7ec1b4f7a798a21a47d5248bf2e9442c66bae0b17d8290d806bf3a82392ede5fb1912d52b89c2efd48888dfe0420c77be8fe85a874695a645e46616c04286b4
x-response-lb: image
ali-swift-global-savetime: 1669309440
age: 165186
x-cache: HIT TCP_HIT dirn:11:87007938
x-swift-savetime: Fri, 25 Nov 2022 13:07:35 GMT
x-swift-cachetime: 31463785
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9516694746262366162e
X-Firefox-Spdy: h2

p3.douyinpic.com/obj/tos-cn-i-dy/50372422c79c43218a1f1a337e6e6727

47.246.44.225

200 OK

440 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/50372422c79c43218a1f1a337e6e6727
IP
47.246.44.225:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 960 x 60\012- data
Size
440 kB (439790 bytes)
Hash
07ad6948d174b603a75e166a521bbb04
d08af2d0fc9693ce636e66cbb89277875d7954f4
40853d1d4eb09490225dfe79a563bcc574195734b42387a2a4043f854bc3ca2b

HTTP Headers

GET /obj/tos-cn-i-dy/50372422c79c43218a1f1a337e6e6727 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 439790
date: Tue, 22 Nov 2022 10:08:42 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Tue, 22 Nov 2022 10:08:42 GMT
nw-session-id: 2022112218084201015816313014E20EC78n6pj03dy
nw-session-trace: 2022-11-22T18:08:42.103953138+08:00 30
x-bdcdn-cache-status: TCP_MISS
x-length: 439790
x-powered-by: ImageX
x-response-date: Tue, 22 Nov 2022 18:08:42 GMT
x-tt-logid: 2022112218084201015816313014E20EC7
via: n150-062-144, cache12.l2de2[0,0,206-0,H], cache2.l2de2[0,0], cache2.l2de2[1,0], cache2.se1[0,0,200-0,H], cache1.se1[3,0]
x-request-ip: fdbd:dc02:22:591::130
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=3
x-tt-trace-host: 01828e55a3aae08103c59996ea14c72a4aa51a193bb85077f4f7c956c62e5a545448397ee85385517816fd2376cd74e6a5134a7bbe40b2f834d80de48cf19178d98157ba68fe13526cac7ff6b9a769ff2e578150eb7becb6badde52c1221bf0e52
x-response-lb: image
ali-swift-global-savetime: 1669111722
age: 362904
x-cache: HIT TCP_HIT dirn:11:33709056
x-swift-savetime: Tue, 22 Nov 2022 11:19:45 GMT
x-swift-cachetime: 31531737
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9516694746262696204e
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
c962d00c5990db6177d46313fb9d52f4
6a0f6cdeb0dd5df988b26cca02ecc6cc0100cbe9
4f2ec16c924561fdeccf0fa216e8e323e757b24af1da42cefc4eaa072131f80f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=171931
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:06 GMT
Etag: "638225dd-118"
Expires: Mon, 28 Nov 2022 14:42:37 GMT
Last-Modified: Sat, 26 Nov 2022 14:42:37 GMT
Server: nginx
Content-Length: 280

p3.douyinpic.com/obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6

47.246.44.225

200 OK

420 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6
IP
47.246.44.225:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 960 x 60\012- data
Size
420 kB (420442 bytes)
Hash
7020ecb5ebdf5d2d41668f76d36f5982
30c768ceb1463fffc0145f1e73c808f8f6d2bb51
3a55db6e5e4fa541729efffaa932549e491e07af768e1c3c3d1dad65ae53a8bb

HTTP Headers

GET /obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 420442
date: Wed, 23 Nov 2022 19:05:33 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Wed, 23 Nov 2022 14:25:30 GMT
nw-session-id: 202211232225300101580270672D784638mtkdn02dy
nw-session-trace: 2022-11-23T22:25:30.548689345+08:00 81
x-bdcdn-cache-status: TCP_HIT
x-length: 420442
x-powered-by: ImageX
x-response-date: Wed, 23 Nov 2022 22:25:30 GMT
x-tt-logid: 202211232225300101580270672D784638
via: n132-085-052, cache5.l2de2[0,0,206-0,H], cache21.l2de2[2,0], cache21.l2de2[3,0], cache1.se1[0,1,200-0,H], cache1.se1[3,0]
x-request-ip: fdbd:dc03:15:231::134
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=3
x-tt-trace-host: 01e30c4ab5eb7be2436f4e80c37d0bf865ef2d9e490926580dd610aecbe3b3a013e27c67d9bdcc334baaf37a5076138f2c0511e61569a5cdf088a257cc92e49364e17f9f5ac608c83dc1ec0d4b13ce6f2b753315b127c46b57bfdd2e2fb9612211
x-response-lb: image
ali-swift-global-savetime: 1669230333
age: 244293
x-cache: HIT TCP_HIT dirn:2:17137560
x-swift-savetime: Fri, 25 Nov 2022 09:11:11 GMT
x-swift-cachetime: 31398862
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9516694746262836216e
X-Firefox-Spdy: h2

nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif

172.67.170.188

200 OK

318 kB

URL HTTP/2
nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif
IP
172.67.170.188:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 60\012- data
Size
318 kB (317903 bytes)
Hash
fb3f1f47e7cd3c017411f4a08cb222b7
9ef0eebfa48d7d3c66398066ad781c2e4c5c2fce
864310898b7de94e28b82e0e318d801e6537365a75078d2f94b98a25c81e98a9

HTTP Headers

GET /cf4287991556df0490caf209d0ed91fe.gif HTTP/1.1
Host: nvhbbb.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:06 GMT
content-type: image/gif
content-length: 317903
last-modified: Sat, 13 Aug 2022 11:03:31 GMT
etag: "62f78503-4d9cf"
expires: Sat, 24 Dec 2022 18:27:11 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 160195
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lRnVr9M0q%2FuxVjS%2Ft%2BEf5Bd%2FkeqTDgIpbB%2BkxQVysTCbkd8jYNaoYfTloFfP9%2FPShq4Pitvgjmpa8fguYuUaYokGac4oMFiflAF1xKJgAGInJ3tmeLG%2FaTTmOK10"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7703797ebea2b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg

47.246.50.251

200 OK

9.2 kB

URL HTTP/2
img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg
IP
47.246.50.251:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Size
9.2 kB (9166 bytes)
Hash
43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e

HTTP Headers

GET /imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg HTTP/1.1
Host: img.alicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: image/jpeg
content-length: 9166
date: Tue, 10 May 2022 07:04:29 GMT
last-modified: Fri, 13 Aug 2021 10:28:00 GMT
picasso-ret-code: SUCCESS
request-time: 0.160
expires: Wed, 10 May 2023 07:04:29 GMT
cache-control: max-age=31536000
ali-swift-global-savetime: 1652166269
via: cache31.l2ot7-1[0,0,200-0,H], cache36.l2ot7-1[6,0], cache2.fr1[0,0,200-0,H], cache7.fr1[2,0]
access-control-allow-origin: *
age: 17308357
x-cache: HIT TCP_MEM_HIT dirn:9:336077318
x-swift-savetime: Mon, 27 Jun 2022 19:24:11 GMT
x-swift-cachetime: 27344418
s-rt: 2
timing-allow-origin: *
eagleid: 2ff6329b16694746263392326e
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
991ed12f9f142cd13d1114fe40a3560f
55135eb5d27c9170dda21e536597d24dc0c49996
e1e01d90ee139b5ac3d28d56124c95155a6b4f76656c0c8c62ade089d137711e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5115
Cache-Control: max-age=90648
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:06 GMT
Etag: "6380d45f-116"
Expires: Sun, 27 Nov 2022 16:07:54 GMT
Last-Modified: Fri, 25 Nov 2022 14:42:39 GMT
Server: ECS (amb/6B8E)
X-Cache: HIT
Content-Length: 278

kvkddd.top/e48970f4052a7ec9d8b871d168e2b2ab.gif

104.21.233.183

200 OK

967 kB

URL HTTP/2
kvkddd.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
IP
104.21.233.183:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 80\012- data
Size
967 kB (966741 bytes)
Hash
e6e170a45f5089c336f21c4453d4e00f
20fcfbe9d22eb6868add8b1782234d1b888c0337
a37eaf9f04a634f3e85dcd7353eb1fa224ddefa8d1e04b65a946b3cebf97ea75

HTTP Headers

GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1
Host: kvkddd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:06 GMT
content-type: image/gif
content-length: 966741
last-modified: Sat, 12 Mar 2022 15:18:45 GMT
etag: "622cb9d5-ec055"
expires: Sun, 25 Dec 2022 23:45:32 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 54694
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WAFJecusGoFQ5D564LeqgIug%2F1ydUGEWPrA%2BXz5cow39kQ0125Mt7HxE4N7%2BOAiW%2BCvnRpuaBwYG9fkh4Tjs043XiNEvXi4euafqxdT9VWScF2Zsw30lbxL3mOHx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7703797e7e17770b-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

3688qq.com/4b282cc16ec34dcba5f961c935029278.gif

103.170.15.78

200 OK

359 kB

URL HTTP/1.1
3688qq.com/4b282cc16ec34dcba5f961c935029278.gif
IP
103.170.15.78:0
ASN
#7483 Skycloud Computing co., Ltd.

File type
GIF image data, version 89a, 960 x 60\012- data
Size
359 kB (358672 bytes)
Hash
668143938c3bb811847d83330decd423
f86300da5d773b84bc65d3c901a4767fd8566c48
a06c47f458fdbd01ba8ba0202fb615e94e2353d65098b480ede52a13a645f859

HTTP Headers

GET /4b282cc16ec34dcba5f961c935029278.gif HTTP/1.1
Host: 3688qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "637e164a-57910"
Date: Wed, 23 Nov 2022 14:01:38 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 23 Nov 2022 12:47:06 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-08
Content-Length: 358672

pic.picnewsss.com/tu-2022290039/960-120.gif

23.225.139.251

200 OK

363 kB

URL HTTP/2
pic.picnewsss.com/tu-2022290039/960-120.gif
IP
23.225.139.251:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 960 x 120\012- data
Size
363 kB (362862 bytes)
Hash
c3bde1a0936121317a37c1ea11d3c59a
5c61c5caea1804742596aff4779247ca14fe0fe3
0e54eb7dcb90dc18351c3b5c97e684fee4b4b1de27f3d2e263f81103a20edd81

HTTP Headers

GET /tu-2022290039/960-120.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Sat, 26 Nov 2022 13:48:57 GMT
etag: "1669471077"
expires: Mon, 26 Dec 2022 13:48:57 GMT
last-modified: Sat, 26 Nov 2022 13:57:57 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 362862
X-Firefox-Spdy: h2

9366qq.com/d1c4e9fab26a450f81996ecd67b392b3.gif

103.170.15.93

200 OK

426 kB

URL HTTP/1.1
9366qq.com/d1c4e9fab26a450f81996ecd67b392b3.gif
IP
103.170.15.93:0
ASN
#7483 Skycloud Computing co., Ltd.

File type
GIF image data, version 89a, 960 x 60\012- data
Size
426 kB (425642 bytes)
Hash
05224c1ad7b782f551cbccdcf9f27fa5
c6ee7c8a6a149c7bd96c9e25ac1784fdbca84eb0
0b24fd89f9a5bbd8278bccf94b310be958f495b91597c0bf0c8faa7980ab5897

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /d1c4e9fab26a450f81996ecd67b392b3.gif HTTP/1.1
Host: 9366qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "637e165c-67eaa"
Date: Wed, 23 Nov 2022 14:50:01 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 23 Nov 2022 12:47:24 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-23
Content-Length: 425642

523zyw.com/upload/vod/2022-06-08/16546931080.jpg

137.175.72.61

200 OK

102 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-06-08/16546931080.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x450, components 3\012- data
Size
102 kB (102375 bytes)
Hash
7a28615b3633dae35f19606ef82de39d
a0bc6dae4b13bf52eff20c1997cb61b6c01ad1ff
8df06b67421f9964e28c37b094faf1780bda267455b6ea0a6d3c5e09491a6730

HTTP Headers

GET /upload/vod/2022-06-08/16546931080.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 102375
Connection: keep-alive
Last-Modified: Wed, 08 Jun 2022 12:58:30 GMT
Accept-Ranges: bytes
ETag: "6261a773377bd81:0"

ads-6686.top/600X300.gif

123.253.107.219

200 OK

2.0 MB

URL HTTP/2
ads-6686.top/600X300.gif
IP
123.253.107.219:0
ASN
#0

File type
GIF image data, version 89a, 600 x 300\012- data
Size
2.0 MB (1963053 bytes)
Hash
d30acbce9f6b70d5db3de8add527b4e4
ce6f310e4afc8b622d5b83182c1982f21a6f0948
0bd87a1b457da36aba0fdc9ed7001f5e1b1bd6821f90861faab660af7f7589d6

HTTP Headers

GET /600X300.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: load-edge/2.1.1
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/gif
content-length: 1963053
last-modified: Mon, 14 Nov 2022 07:36:41 GMT
etag: "6371f009-1df42d"
strict-transport-security: max-age=31536000
lp-geo: edge-ahzp
lp-addr: 91.90.42.154
lp-request: 836d34a6-29c1-411b-99a3-9f2c0a40bc99
lp-id: 7abaf80dd2e5a0258629714017c6eeb9
expires: Sat, 26 Nov 2022 15:02:05 GMT
cache-control: max-age=300
lp-cache: HIT
lp-cache-hit: 1
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
7267db8144555ed4487fe7b4bb65e2cc
80e96b7c50b0828ceed3f0ce7824d38570bd7da5
cd118d4c708c241eb20cabd8391205a9111c60f8b3241b9c915ad2a12867a8a1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=137038
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:06 GMT
Etag: "63819d90-117"
Expires: Mon, 28 Nov 2022 05:01:04 GMT
Last-Modified: Sat, 26 Nov 2022 05:01:04 GMT
Server: nginx
Content-Length: 279

8499753.com/8499/960x60.gif

23.224.101.35

200 OK

331 kB

URL HTTP/2
8499753.com/8499/960x60.gif
IP
23.224.101.35:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 960 x 60\012- data
Size
331 kB (331043 bytes)
Hash
09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725

HTTP Headers

GET /8499/960x60.gif HTTP/1.1
Host: 8499753.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/gif
content-length: 331043
last-modified: Wed, 09 Nov 2022 06:22:39 GMT
etag: "50d23-5ed03aef4304d"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

ads-6686.top/960X240.gif

123.253.107.219

200 OK

2.3 MB

URL HTTP/2
ads-6686.top/960X240.gif
IP
123.253.107.219:0
ASN
#0

File type
GIF image data, version 89a, 960 x 240\012- data
Size
2.3 MB (2291400 bytes)
Hash
e95cb7b655d12501799b1e020ef32265
3fdba737a19ffd6c2c43b48dd655c5f91d92bba4
6a877f0bcfe685891a093893ce37fa8ff60d3264ecf9ebff6f6b7a6848516f71

HTTP Headers

GET /960X240.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: load-edge/2.1.1
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: image/gif
content-length: 2291400
last-modified: Mon, 14 Nov 2022 08:20:48 GMT
etag: "6371fa60-22f6c8"
strict-transport-security: max-age=31536000
lp-geo: edge-ahzp
lp-addr: 91.90.42.154
lp-request: f6301689-275d-4828-8b2a-111d85ed7785
lp-id: 2fa24cf56ea58aa8518c66a0705238d6
expires: Sat, 26 Nov 2022 15:02:05 GMT
cache-control: max-age=300
lp-cache: HIT
lp-cache-hit: 1
accept-ranges: bytes
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2022-05-10/165218234215.jpg

137.175.72.61

200 OK

153 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-10/165218234215.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size
153 kB (153048 bytes)
Hash
223bdafb0ca06f90e9d7df03f17db812
2d6b7dfe52975a4c1274da004ced5e279f26732e
f7ec6ee02da64fee06a549339222e7be6a83bf2463d199e094de800bb4c0d7dd

HTTP Headers

GET /upload/vod/2022-05-10/165218234215.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 153048
Last-Modified: Tue, 15 Nov 2022 10:48:40 GMT
Connection: keep-alive
ETag: "63736e88-255d8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-05-11/16522685882.jpg

137.175.72.61

200 OK

176 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-11/16522685882.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size
176 kB (175768 bytes)
Hash
417b643d20c564532c3d37320fd1abfa
724fd2e50a3112f1b002196dc971ed401ab90d83
301fb7d2f22d5d2b9cf2489527650f9020c6fa7e1769c91d293c74e564637941

HTTP Headers

GET /upload/vod/2022-05-11/16522685882.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 175768
Last-Modified: Tue, 15 Nov 2022 10:48:38 GMT
Connection: keep-alive
ETag: "63736e86-2ae98"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2021-12-12/16392865119.jpg

137.175.72.61

200 OK

607 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/16392865119.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 799x482, components 3\012- data
Size
607 kB (606843 bytes)
Hash
70632b93fd5a3a41b89b6203b9426b08
80c015fe160a97fdb870a247e8c6c3d716a8aa2c
d710fda8ec063b92d3bf67c180c5352e87a916971a59ee821736eb84434ffb8c

HTTP Headers

GET /upload/vod/2021-12-12/16392865119.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 606843
Last-Modified: Tue, 15 Nov 2022 10:46:10 GMT
Connection: keep-alive
ETag: "63736df2-9427b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2021-12-12/163928648117.jpg

137.175.72.61

200 OK

329 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/163928648117.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=11, height=873, bps=0, PhotometricIntepretation=RGB, width=1554], baseline, precision 8, 1280x720, components 3\012- data
Size
329 kB (328777 bytes)
Hash
d103ab13339f34f0141f7e36ae8ad3ff
817bd092771a5e603881012794c16e36f8ea65e7
5d27fc0a5e7769534f26b16817cad0755e07003fd0d5c71b16e55752916e4253

HTTP Headers

GET /upload/vod/2021-12-12/163928648117.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 328777
Last-Modified: Tue, 15 Nov 2022 10:49:54 GMT
Connection: keep-alive
ETag: "63736ed2-50449"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

8499753.com/8499/hongse/960x60.gif

23.224.101.35

200 OK

331 kB

URL HTTP/2
8499753.com/8499/hongse/960x60.gif
IP
23.224.101.35:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 960 x 60\012- data
Size
331 kB (331043 bytes)
Hash
09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725

HTTP Headers

GET /8499/hongse/960x60.gif HTTP/1.1
Host: 8499753.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:06 GMT
content-type: image/gif
content-length: 331043
last-modified: Sat, 12 Nov 2022 04:48:00 GMT
etag: "50d23-5ed3eb5f982bf"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

523zyw.com/upload/vod/2022-06-08/165469311011.jpg

137.175.72.61

200 OK

196 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-06-08/165469311011.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 931x524, components 3\012- data
Size
196 kB (195830 bytes)
Hash
02a94b591a6cc279a8350da88239034d
f4b0917700682e45b3dc2d8393c65ff75dbd9e19
4aac4b4387a692333d59de360ac462668163d28eba7b57fd2815a024ae65e124

HTTP Headers

GET /upload/vod/2022-06-08/165469311011.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 195830
Connection: keep-alive
Last-Modified: Wed, 08 Jun 2022 12:58:30 GMT
Accept-Ranges: bytes
ETag: "379ae073377bd81:0"

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
ac743acaa158b81a76562b1ab28fd093
da15b2a8843fa424d3fbaa8f43a3b0652fa355c2
deb3eb79d36ddf041a20041417b063d8416932db214feb513322dbca381651d9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1220
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 14:57:06 GMT
Etag: "6380bded-2d7"
Last-Modified: Sat, 26 Nov 2022 14:36:46 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 727

monaitv.me/upload/vod/2022-05-12/16523577639.jpg

137.175.72.61

200 OK

506 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-12/16523577639.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x500, components 3\012- data
Size
506 kB (505771 bytes)
Hash
fc00730c1ea4736331b5dd42f88113bb
9eaf86f5968a05fa603b895bb08dd9a5d011e93f
42a2a7e40378b1811b643fec705dbbfc429236998bc848ec16849f39f3d7c742

HTTP Headers

GET /upload/vod/2022-05-12/16523577639.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 505771
Last-Modified: Tue, 15 Nov 2022 10:48:29 GMT
Connection: keep-alive
ETag: "63736e7d-7b7ab"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

592773xgg.com/be2d6c93b7fe43b4b25d4a8810bc5bfc.gif

45.61.212.56

200 OK

1.8 MB

URL HTTP/1.1
592773xgg.com/be2d6c93b7fe43b4b25d4a8810bc5bfc.gif
IP
45.61.212.56:0
ASN
#53587 AZT

File type
GIF image data, version 89a, 960 x 240\012- data
Size
1.8 MB (1833203 bytes)
Hash
b7b8c8d351470288a0c28f34bbdbfac6
d3f0b5bbaff9cda595c8525365618228e756d55d
bcd291e3c8c9fbccc8953982200b8ffe1804289e13f0a68b44aa189227e569d8

HTTP Headers

GET /be2d6c93b7fe43b4b25d4a8810bc5bfc.gif HTTP/1.1
Host: 592773xgg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6364f659-1bf8f3"
Date: Sat, 26 Nov 2022 02:36:39 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 04 Nov 2022 11:24:09 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-26
Content-Length: 1833203

523zyw.com/upload/vod/2022-06-06/16545246109.jpg

137.175.72.61

200 OK

160 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-06-06/16545246109.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x450, components 3\012- data
Size
160 kB (159498 bytes)
Hash
385b3947a3cf69bb2152b8eaaea688a8
5e01b3c8afb71eb8f5a2a7d365c145eb56ee6fec
69dc95d6cafa37d5a8c2dbf26fe4abe55c8a11fcc652528446dc59e9335d5834

HTTP Headers

GET /upload/vod/2022-06-06/16545246109.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 159498
Connection: keep-alive
Last-Modified: Mon, 06 Jun 2022 14:10:10 GMT
Accept-Ranges: bytes
ETag: "eb1fd521af79d81:0"

monaitv.me/upload/vod/2022-05-10/16521823416.jpg

137.175.72.61

200 OK

121 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-10/16521823416.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x536, components 3\012- data
Size
121 kB (121128 bytes)
Hash
1e3ea0e4875d2ff429cfcb7b7e9933bc
38293a9d66d546b4717fe7fa5c3fcf27fa234ccb
750a282780c5eeb70c2c856b139920875f6fcd861ae6c59302403d6164ab84f3

HTTP Headers

GET /upload/vod/2022-05-10/16521823416.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:09 GMT
Content-Type: image/jpeg
Content-Length: 121128
Last-Modified: Tue, 15 Nov 2022 10:48:36 GMT
Connection: keep-alive
ETag: "63736e84-1d928"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

523zyw.com/upload/vod/2022-06-05/16544341897.jpg

137.175.72.61

200 OK

266 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-06-05/16544341897.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x450, components 3\012- data
Size
266 kB (265881 bytes)
Hash
d0d8e0b26182b63c26d2352679eef116
71144402308fca92960f03eb3306d95a3ece2b09
6cbc66fe55cda41205fc617ed698741815134603e648537ba344c19d53895b9e

HTTP Headers

GET /upload/vod/2022-06-05/16544341897.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 265881
Connection: keep-alive
Last-Modified: Sun, 05 Jun 2022 13:03:09 GMT
Accept-Ranges: bytes
ETag: "fd7ad89adc78d81:0"

523zyw.com/upload/vod/2022-06-12/165504085510.jpg

137.175.72.61

200 OK

318 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-06-12/165504085510.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 720x405, components 3\012- data
Size
318 kB (318273 bytes)
Hash
1295a641eadeb14883700c3a4a7ce36c
89c6fd850cfec15ab3ac2943739fd633038b4f30
963af0f941e8c7c08b5f2fc1c6c18f2328b4e4485f785ac063e905d507ad90ee

HTTP Headers

GET /upload/vod/2022-06-12/165504085510.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 318273
Connection: keep-alive
Last-Modified: Sun, 12 Jun 2022 13:34:15 GMT
Accept-Ranges: bytes
ETag: "802dd51b617ed81:0"

u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif

20.78.78.186

200 OK

248 kB

URL HTTP/1.1
u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif
IP
20.78.78.186:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 650 x 350\012- data
Size
248 kB (247851 bytes)
Hash
a9bf695dc5e2ed4a1d5e17818bb895f6
5018e0b9d477d7a536586297fbd2404fc407e295
6cd4ba0841e74acee6bcbc0933c03a0932d5e267a3a2b2af1b8f1abd6a7c0010

HTTP Headers

GET /a13ccf8571ea4a7ab6b41a306a625f57.gif HTTP/1.1
Host: u0062.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:06 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 29 May 2022 12:25:12 GMT
ETag: W/"62936628-3c8da"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip

523zyw.com/upload/vod/2022-06-09/165478262711.jpg

137.175.72.61

200 OK

484 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-06-09/165478262711.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=11, height=856, bps=0, PhotometricIntepretation=RGB, width=1528], baseline, precision 8, 800x450, components 3\012- data
Size
484 kB (483453 bytes)
Hash
db1a93c91e3e93cff685b28789077cca
5d96102837906a135fa3671d450452c78142a4cd
837bfd96db79621a7f943591c610da5b0431efd87ddd655034f31feb3258f712

HTTP Headers

GET /upload/vod/2022-06-09/165478262711.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 483453
Connection: keep-alive
Last-Modified: Thu, 09 Jun 2022 13:50:27 GMT
Accept-Ranges: bytes
ETag: "d34f72e077cd81:0"

cdn-xinghuatupian-cdn.com/xh/200x200.gif

154.197.17.158

200 OK

174 kB

URL HTTP/2
cdn-xinghuatupian-cdn.com/xh/200x200.gif
IP
154.197.17.158:0
ASN
#0

File type
GIF image data, version 89a, 200 x 200\012- data
Size
174 kB (173918 bytes)
Hash
244b4e49ec5bb4f58c3489cf450ecd47
9cd1a210e9b24bb4d9e3f933512066b251981426
b8daee26c934893d31997c7652c2b683191c7259692e764499c964408be0cf19

HTTP Headers

GET /xh/200x200.gif HTTP/1.1
Host: cdn-xinghuatupian-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:06 GMT
content-type: image/gif
content-length: 173918
last-modified: Sun, 02 Oct 2022 06:51:55 GMT
etag: "6339350b-2a75e"
expires: Sun, 25 Dec 2022 18:46:12 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2022-05-11/16522685899.jpg

137.175.72.61

200 OK

195 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-11/16522685899.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size
195 kB (195032 bytes)
Hash
2698bc46140d074f8bb20c6bca7bf91f
c086fb8fcb08ebb06b0a9fdf69b4f50feb822ab8
38ef323bdb2e173a10ad064415e4332216a6d566d397e01722fb5a7deff9ada8

HTTP Headers

GET /upload/vod/2022-05-11/16522685899.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:10 GMT
Content-Type: image/jpeg
Content-Length: 195032
Last-Modified: Tue, 15 Nov 2022 10:48:40 GMT
Connection: keep-alive
ETag: "63736e88-2f9d8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

523zyw.com/upload/vod/2022-06-11/16549533209.jpg

137.175.72.61

200 OK

263 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-06-11/16549533209.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 720x405, components 3\012- data
Size
263 kB (263359 bytes)
Hash
a5f66105523b5111e64d27e91b82b635
1400a6352d0c0c2317fc754e976d090cc86c5cf8
7d9cc8e99ecf8741d4eda42bdd5efc356fdec859da196b4cf81481a24dfa3920

HTTP Headers

GET /upload/vod/2022-06-11/16549533209.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:09 GMT
Content-Type: image/jpeg
Content-Length: 263359
Connection: keep-alive
Last-Modified: Sat, 11 Jun 2022 13:15:21 GMT
Accept-Ranges: bytes
ETag: "4367e4d957dd81:0"

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
350dabdad47c86af3f8ef0c4244f30f8
9e5412cd17652589f4e5d0dc8e139149d2c60915
1f97dd152958f3234ba0b6b099292c59161abc69d0db37af28880f89a6066ca6

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 30 Nov 2022 11:13:40 GMT
ETag: "9e5412cd17652589f4e5d0dc8e139149d2c60915"
Last-Modified: Sat, 26 Nov 2022 11:13:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2976
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770379868ccb1bfa-OSL

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
350dabdad47c86af3f8ef0c4244f30f8
9e5412cd17652589f4e5d0dc8e139149d2c60915
1f97dd152958f3234ba0b6b099292c59161abc69d0db37af28880f89a6066ca6

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 14:57:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 30 Nov 2022 11:13:40 GMT
ETag: "9e5412cd17652589f4e5d0dc8e139149d2c60915"
Last-Modified: Sat, 26 Nov 2022 11:13:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2976
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770379869e40b505-OSL

p.qlogo.cn/qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0

43.154.254.32

200 OK

331 kB

URL HTTP/2
p.qlogo.cn/qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0
IP
43.154.254.32:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type
GIF image data, version 89a, 960 x 60\012- data
Size
331 kB (331043 bytes)
Hash
09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725

HTTP Headers

GET /qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sat, 26 Nov 2022 14:57:06 GMT
content-type: image/gif
content-length: 331043
vary: Accept,Origin
last-modified: Tue, 08 Nov 2022 23:42:24 GMT
cache-control: max-age=2592000
x-delay: 51923 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 331043
chid: 0
fid: 0
x-nws-log-uuid: ab26174b-3ef3-45c5-b499-d3a772a9e0c1
X-Firefox-Spdy: h2

taiwtp1.com/xin/960240.gif

220.128.218.220

200 OK

436 kB

URL HTTP/2
taiwtp1.com/xin/960240.gif
IP
220.128.218.220:0
ASN
#3462 Data Communication Business Group

File type
GIF image data, version 89a, 960 x 240\012- data
Size
436 kB (436473 bytes)
Hash
732bd86d0a1c250c8ee8f6ebf30d358e
9f8ec516e191af6504caead933e550627ed80af9
8f3edf67a76ef4c9b72fe1dc842ec813009e0fd7bb1945c96d564eb385d068ee

HTTP Headers

GET /xin/960240.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 14:54:41 GMT
content-type: image/gif
content-length: 436473
last-modified: Thu, 20 Oct 2022 07:11:15 GMT
etag: "6350f493-6a8f9"
expires: Mon, 26 Dec 2022 14:54:41 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2022-05-13/165244791315.jpg

137.175.72.61

200 OK

215 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-13/165244791315.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size
215 kB (215324 bytes)
Hash
fced78d2018ccd2755bde00009b3c204
5b84ee7e84d002a40f789f3c4ab20341824da26a
fa9d420a0aadf67ee8962a82f9cc4c5d857854c4b90ad20ef83647229981ff5c

HTTP Headers

GET /upload/vod/2022-05-13/165244791315.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:10 GMT
Content-Type: image/jpeg
Content-Length: 215324
Last-Modified: Tue, 15 Nov 2022 10:48:39 GMT
Connection: keep-alive
ETag: "63736e87-3491c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x80-6.gif

120.77.166.72

200 OK

562 kB

URL HTTP/1.1
sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x80-6.gif
IP
120.77.166.72:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

File type
GIF image data, version 89a, 960 x 80\012- data
Size
562 kB (562130 bytes)
Hash
8beed805ef37d0fa42646c105c8aadd8
48ce0717f037a6fb1f489ff1da3537a00ff0f47b
9df49f47b95763d2234554adf562f5a0ba5eb3910a9f7f01a5d90e5f425eccce

HTTP Headers

GET /af/q960x80-6.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 26 Nov 2022 14:57:06 GMT
Content-Type: image/gif
Content-Length: 562130
Connection: keep-alive
x-oss-request-id: 63822942E0DCB9313210872C
Accept-Ranges: bytes
ETag: "8BEED805EF37D0FA42646C105C8AADD8"
Last-Modified: Tue, 27 Sep 2022 07:43:47 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15479893720264865523
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: i+7YBe830PpCZGwQXIqt2A==
x-oss-server-time: 1

monaitv.me/upload/vod/2022-05-11/165226858912.jpg

137.175.72.61

200 OK

305 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-11/165226858912.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x450, components 3\012- data
Size
305 kB (305241 bytes)
Hash
523867dc906986eea5a015a2438971fd
01387674d1b22bf1461db7840677b0f6cd9e3d3a
0bb76c4c22ef8cde6344e2215ca3a1d99e5def535df8586a6e66a9b375d833b4

HTTP Headers

GET /upload/vod/2022-05-11/165226858912.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:09 GMT
Content-Type: image/jpeg
Content-Length: 305241
Last-Modified: Tue, 15 Nov 2022 10:48:19 GMT
Connection: keep-alive
ETag: "63736e73-4a859"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

8644aaw.com/a.gif

60.244.96.178

200 OK

397 kB

URL HTTP/2
8644aaw.com/a.gif
IP
60.244.96.178:0
ASN
#24154 Asia Pacific Broadband Fixed Lines Co., Ltd.

File type
GIF image data, version 89a, 200 x 200\012- data
Size
397 kB (397051 bytes)
Hash
5869cbd58ab3c66fb06e236b6b5dc421
e9d3274a485604f1077dff7b47968036e25b3ae3
62e972b383e9d0b0e5f7288e58935588610d0453b1b9fde60228328b1e2860d0

HTTP Headers

GET /a.gif HTTP/1.1
Host: 8644aaw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 14:57:03 GMT
content-type: image/gif
content-length: 397051
last-modified: Wed, 05 Oct 2022 08:47:42 GMT
etag: "633d44ae-60efb"
expires: Mon, 26 Dec 2022 14:57:03 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
27099e2cf766d185579c89edc659e349
79b4954e86ded5f6f7a3c55cb9ad3ae8da1f8acd
d538f479bf675847cba136bab15f97ad148d8c7941dc92861020330e28101d3b

HTTP Headers

GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 47ff3badc8b29e2825fb80845ac4aaf7

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Sat, 26 Nov 2022 14:57:06 GMT
Etag: 7b207de4c954c6d887a512f8eb05d385
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=C3D089F5FAFB3B0B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

523zyw.com/upload/vod/2022-06-07/16546102140.jpg

137.175.72.61

200 OK

616 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-06-07/16546102140.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=11, height=720, bps=0, PhotometricIntepretation=RGB, width=1280], baseline, precision 8, 1280x720, components 3\012- data
Size
616 kB (615888 bytes)
Hash
d1bde6dd137265ec4d4f6d553fe44197
b8f7b3980c21b3b519bb012f796219b7a8a1fad5
b7012f58bf7dc9c7c22d69c9e8c05712e3acc057a89fd66c5171813e933b5505

HTTP Headers

GET /upload/vod/2022-06-07/16546102140.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:09 GMT
Content-Type: image/jpeg
Content-Length: 615888
Connection: keep-alive
Last-Modified: Tue, 07 Jun 2022 13:56:56 GMT
Accept-Ranges: bytes
ETag: "7e8b873767ad81:0"

monaitv.me/upload/vod/2022-05-10/165218234212.jpg

137.175.72.61

200 OK

454 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-10/165218234212.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=9, manufacturer=Canon, model=Canon EOS 5D Mark III, xresolution=150, yresolution=158, resolutionunit=2, software=www.meitu.com, datetime=2021:05:15 18:49:56], baseline, precision 8, 800x500, components 3\012- data
Size
454 kB (454316 bytes)
Hash
28d90714e3f28386048ec2ab06978ac5
56b08e64c9d16cf21730407e57461e4c65d3fe27
012f921dbb8ad1330f4338b4d3b8d1c12d448fdb1e4458b0dcb4d86cdd26d9ec

HTTP Headers

GET /upload/vod/2022-05-10/165218234212.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:09 GMT
Content-Type: image/jpeg
Content-Length: 454316
Last-Modified: Tue, 15 Nov 2022 10:48:26 GMT
Connection: keep-alive
ETag: "63736e7a-6eeac"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-05-12/16523577623.jpg

137.175.72.61

200 OK

179 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-12/16523577623.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size
179 kB (179099 bytes)
Hash
7872ed66e70c3cdb550eb66db3448478
5a42848dc7778de79900aaaad4418cc8eda07578
cc9069762c80f7e836faabe736b4a60e76e64538e542d0d9e0afbd1874411459

HTTP Headers

GET /upload/vod/2022-05-12/16523577623.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:10 GMT
Content-Type: image/jpeg
Content-Length: 179099
Last-Modified: Tue, 15 Nov 2022 10:48:41 GMT
Connection: keep-alive
ETag: "63736e89-2bb9b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif

47.75.19.163

200 OK

532 kB

URL HTTP/1.1
vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
IP
47.75.19.163:0
ASN
#45102 Alibaba US Technology Co., Ltd.

File type
GIF image data, version 89a, 960 x 80\012- data
Size
532 kB (531945 bytes)
Hash
904c4f51a02c9f03f27ac2593d4c061e
faa7b399e3dc1e36e450636f0fafcaaca901f59e
107d811d56db4017059b2c99a4829faa9e20ce7fa395b3182bdb456ff93fbee6

HTTP Headers

GET /sstu/st.gif HTTP/1.1
Host: vns86.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 26 Nov 2022 14:57:06 GMT
Content-Type: image/gif
Content-Length: 531945
Connection: keep-alive
x-oss-request-id: 63822942F27FBE37371C312C
Accept-Ranges: bytes
ETag: "904C4F51A02C9F03F27AC2593D4C061E"
Last-Modified: Sun, 20 Nov 2022 05:06:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9035815038154931791
x-oss-storage-class: Standard
x-oss-version-id: CAEQPxiBgIC4ltzNpBgiIDdlODc5YmI4ZDVjNjQ3ZDk5OTI1NWRlZmIwMjk2Zjc5
Content-MD5: kExPUaAsnwPyesJZPUwGHg==
x-oss-server-time: 1

monaitv.me/upload/vod/2021-12-25/16404063220.jpg

137.175.72.61

200 OK

96 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-25/16404063220.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x557, components 3\012- data
Size
96 kB (95845 bytes)
Hash
c5d09b3062f65682c7066181a645cb64
5f5f4a70b6268b3e71f62b9551c3136615c0ba8e
164928f4839c0bd88b7767923d0b7491906b8e80ab65ddf6bbeb793adafaca69

HTTP Headers

GET /upload/vod/2021-12-25/16404063220.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:10 GMT
Content-Type: image/jpeg
Content-Length: 95845
Last-Modified: Tue, 15 Nov 2022 10:46:56 GMT
Connection: keep-alive
ETag: "63736e20-17665"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-05-10/16521823419.jpg

137.175.72.61

200 OK

958 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-10/16521823419.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 1829x1143, components 3\012- data
Size
958 kB (957757 bytes)
Hash
90e46431868d346e574b4538f2404e8c
d705410fe5071a96e376b961cd04b597984e8021
ea09637f8c051b546cb5e39c0d38019fb36b153ed2846f759c5674b674afb82d

HTTP Headers

GET /upload/vod/2022-05-10/16521823419.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:09 GMT
Content-Type: image/jpeg
Content-Length: 957757
Last-Modified: Tue, 15 Nov 2022 10:48:27 GMT
Connection: keep-alive
ETag: "63736e7b-e9d3d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-05-12/16523577622.jpg

137.175.72.61

200 OK

193 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-12/16523577622.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size
193 kB (192660 bytes)
Hash
befec64407c777a1b5b3edad2bdcd393
347fc242ed59d13e608ee7d4955ddbb9ff253b4c
55e89393d5473d66a8ef17e0c2ae47d06f829004b0ef798c83e93cf53907a4e5

HTTP Headers

GET /upload/vod/2022-05-12/16523577622.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:10 GMT
Content-Type: image/jpeg
Content-Length: 192660
Last-Modified: Tue, 15 Nov 2022 10:48:34 GMT
Connection: keep-alive
ETag: "63736e82-2f094"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image

120.52.95.240

200 OK

678 kB

URL HTTP/2
p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
IP
120.52.95.240:0
ASN
#133119 China Unicom IP network

File type
GIF image data, version 89a, 270 x 160\012- data
Size
678 kB (677521 bytes)
Hash
94051cb1d1b77200b4462281a864b96e
e5b468a1b2f4bbdda1b6a3a0df2dcce6b3de7e06
d44d0d2dd188024b60ec38cb3f3ea10c080690175e923f90c9c2a2e862670c84

HTTP Headers

GET /img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image HTTP/1.1
Host: p26.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:07 GMT
content-type: image/gif
content-length: 677521
set-cookie: hccesp_lttk=AAAAAgAAAAAAAAAFAAAAAQAAAAeBwwi0wpEfjG78HL89gOGn0DSTm1z293qAg5S2eWiyiAAAAAAAAAAAAAAAQC3AQAfGJcHVoBD+JcpAEM69gO6+/0uivfw3Oh+z6GzMw3HQXNjPb2m6asGCXN0R3MF3jsflT9rLZ99Ny2QlKLI=; Expires=Sun, 26 Nov 2023 14:57:07 GMT; path=/;
server: openresty
age: 13346282
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 30 Dec 2021 00:07:35 GMT
nw-session-id: 2021123008073501015013614530ADE9B0dprsv01tt
nw-session-trace: 2021-12-30T08:07:35.194015393+08:00 68
x-bdcdn-cache-status: TCP_HIT
x-ccdn-cachettl: 31536000
x-length: 677521
x-powered-by: ImageX
x-response-date: Thu, 30 Dec 2021 08:07:35 GMT
x-response-lb: image
x-tt-logid: 2021123008073501015013614530ADE9B0
nginx-hit: 1
server-timing: cdn-cache;desc=HIT, edge;dur=4
via: CHN-HElangfang-AREACUCC1-CACHE24[4],CHN-HElangfang-AREACUCC1-CACHE35[0,TCP_HIT,1],CHN-TJ-GLOBAL1-CACHE60[39],CHN-TJ-GLOBAL1-CACHE35[0,TCP_HIT,36]
x-hcs-proxy-type: 1
x-tt-trace-host: 016a2077e03b2041825c42669e9a23cec5ee04519515486308eb42b81315658df6aa5ed29ad219c7d25626d5b022cced5274c18183adcd43889f65e87a17fde2315b0226a7e5f07d4c19094125051b3e74699be800dd629619bc2141d5fb81fc89ccc76230d7d3e4f731a9d881f3cb16c4
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
accept-ranges: bytes
access-control-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2021-12-12/163928882117.jpg

137.175.72.61

200 OK

367 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/163928882117.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 774x483, components 3\012- data
Size
367 kB (367385 bytes)
Hash
144ea54b2d24cf67d5ef288e237e34fc
620179c8fca0e4c3be02f1b9c75070565d97bcb7
e2526d0e2f250cfb38f0584c3b726bfa05032c11592976e4eab57ba08bf29b05

HTTP Headers

GET /upload/vod/2021-12-12/163928882117.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:10 GMT
Content-Type: image/jpeg
Content-Length: 367385
Last-Modified: Tue, 15 Nov 2022 10:50:46 GMT
Connection: keep-alive
ETag: "63736f06-59b19"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-05-13/16524479128.jpg

137.175.72.61

200 OK

462 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-13/16524479128.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 873x546, components 3\012- data
Size
462 kB (461799 bytes)
Hash
9b8c7dd90de4d5db8d143517fb44b7b5
e2a976e79d6a48b3fd249c0209daeb4e4ecc7ffb
ea06fa261e40b0d069cbeb9fadee0e73e920fd2d6e3c83e1cca94d2f2d0a78bb

HTTP Headers

GET /upload/vod/2022-05-13/16524479128.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:10 GMT
Content-Type: image/jpeg
Content-Length: 461799
Last-Modified: Tue, 15 Nov 2022 10:51:35 GMT
Connection: keep-alive
ETag: "63736f37-70be7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-01-30/164351545011.jpg

137.175.72.61

200 OK

21 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-01-30/164351545011.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 538x356, components 3\012- data
Size
21 kB (20661 bytes)
Hash
7df431a42de911a8f7a970cd15e56f12
b30fe0853b961e9ce73d6c8b75e616ab41f0bf9c
d51b8c3cc29cf08b7a76e6c01a2176ae3a1718c2e12bf4e753d084e8c7e400cf

HTTP Headers

GET /upload/vod/2022-01-30/164351545011.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:11 GMT
Content-Type: image/jpeg
Content-Length: 20661
Last-Modified: Tue, 15 Nov 2022 10:57:24 GMT
Connection: keep-alive
ETag: "63737094-50b5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2021-12-12/16392868814.jpg

137.175.72.61

200 OK

244 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/16392868814.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 739x462, components 3\012- data
Size
244 kB (243739 bytes)
Hash
185cd389bfbf621c8e8b3a57168bec3f
38d2a4fd4fa53b6a1a0285931b7059063290bc7f
675b247d0cf2ccadd778280c4200f7b80731a7fa388538a6ff982c33f99fbd29

HTTP Headers

GET /upload/vod/2021-12-12/16392868814.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:11 GMT
Content-Type: image/jpeg
Content-Length: 243739
Last-Modified: Tue, 15 Nov 2022 10:50:59 GMT
Connection: keep-alive
ETag: "63736f13-3b81b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2021-12-13/16393698094.jpg

137.175.72.61

200 OK

63 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-13/16393698094.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x533, components 3\012- data
Size
63 kB (62905 bytes)
Hash
3babefcb616c0b719a8e47c99b6b435e
0e166bf30e4ccf20b261d6b2d4c2fc4ef49ad3b9
070905b6567376f9ba83fb281a06c4eb7433362607e25181b4d3ae24af475fb4

HTTP Headers

GET /upload/vod/2021-12-13/16393698094.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:11 GMT
Content-Type: image/jpeg
Content-Length: 62905
Last-Modified: Tue, 15 Nov 2022 10:48:33 GMT
Connection: keep-alive
ETag: "63736e81-f5b9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2021-12-12/163928814415.jpg

137.175.72.61

200 OK

392 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/163928814415.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 814x508, components 3\012- data
Size
392 kB (392438 bytes)
Hash
6386502eda17bcdcbb8a042ebf29a8b3
61c38a81aab8576b2696cf050a198bd46c182583
62d39323d2d067b993bb3791ccbbcd019d23004c30456f615f06392cf6d8faee

HTTP Headers

GET /upload/vod/2021-12-12/163928814415.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:11 GMT
Content-Type: image/jpeg
Content-Length: 392438
Last-Modified: Tue, 15 Nov 2022 10:50:47 GMT
Connection: keep-alive
ETag: "63736f07-5fcf6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2021-12-12/163928619412.jpg

137.175.72.61

200 OK

372 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/163928619412.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 749x468, components 3\012- data
Size
372 kB (371911 bytes)
Hash
84e8e3f312f5cbb4b428b93ec029e874
6c3e610ccead6d4c29aa0cfe434553e7f795f7fd
b118b2bac2d477cc921f84704004836f7d51f846186a0b1d76253cdcaef74a8f

HTTP Headers

GET /upload/vod/2021-12-12/163928619412.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:11 GMT
Content-Type: image/jpeg
Content-Length: 371911
Last-Modified: Tue, 15 Nov 2022 10:46:35 GMT
Connection: keep-alive
ETag: "63736e0b-5acc7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2021-12-12/163928684210.jpg

137.175.72.61

200 OK

349 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/163928684210.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 988x617, components 3\012- data
Size
349 kB (349052 bytes)
Hash
d135d7e52f6ad9684c52b2cda6b9b675
da00a614bb55328d4ac4424c98fc52830007e67f
017a53ae762b48f64d63df53cd8643d4c0fd78524c236eaa1fd8e1e5d110e597

HTTP Headers

GET /upload/vod/2021-12-12/163928684210.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:11 GMT
Content-Type: image/jpeg
Content-Length: 349052
Last-Modified: Tue, 15 Nov 2022 10:51:43 GMT
Connection: keep-alive
ETag: "63736f3f-5537c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-05-12/165235776310.jpg

137.175.72.61

200 OK

983 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-12/165235776310.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 1777x1000, components 3\012- data
Size
983 kB (982944 bytes)
Hash
9ae5738a44474252fc489c5d7a692126
3dd7f557a843ab731821a891caa6fe3e12c2f1a0
61a992312f92c2cb345f5b22468de7f235ccc50f456961d4eb4543a576c61a62

HTTP Headers

GET /upload/vod/2022-05-12/165235776310.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:08 GMT
Content-Type: image/jpeg
Content-Length: 982944
Last-Modified: Tue, 15 Nov 2022 10:48:29 GMT
Connection: keep-alive
ETag: "63736e7d-effa0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-01-21/16427415961.jpg

137.175.72.61

200 OK

45 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-01-21/16427415961.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 658x438, components 3\012- data
Size
45 kB (45203 bytes)
Hash
1cbe0c6671389df4a1255d621c3c128f
f855f5115a207d4404d16178f4300ad84d8bfd46
bae480ad0dfe46b3ebee54e0be148b614a6bdbf1ab8164620d56a93329ff8e93

HTTP Headers

GET /upload/vod/2022-01-21/16427415961.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:12 GMT
Content-Type: image/jpeg
Content-Length: 45203
Last-Modified: Tue, 15 Nov 2022 10:46:46 GMT
Connection: keep-alive
ETag: "63736e16-b093"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-01-23/16429204853.jpg

137.175.72.61

200 OK

38 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-01-23/16429204853.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 938x634, components 3\012- data
Size
38 kB (37536 bytes)
Hash
aeecc5edad9ec3acd1ddf61b040e9c31
8f109b958ef65b7cf7e90293e60feabe1e327998
1bf46b0fe421f7108a86f291ff5121f45c22b7c0c4854ecc7d8d5fbe9e6ee593

HTTP Headers

GET /upload/vod/2022-01-23/16429204853.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:12 GMT
Content-Type: image/jpeg
Content-Length: 37536
Last-Modified: Tue, 15 Nov 2022 10:47:04 GMT
Connection: keep-alive
ETag: "63736e28-92a0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2021-12-13/16393698108.jpg

137.175.72.61

200 OK

84 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-13/16393698108.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1046x660, components 3\012- data
Size
84 kB (83539 bytes)
Hash
913b6ea05c26826377cac7a57e529fcb
8ae1c38a9cae3ad22d6dc45983d7faeca4b9e01d
150ae1c0b55e8740bcc7e098dd575c2aa54c9a9765902e5b251279d870d2b488

HTTP Headers

GET /upload/vod/2021-12-13/16393698108.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:12 GMT
Content-Type: image/jpeg
Content-Length: 83539
Last-Modified: Tue, 15 Nov 2022 11:24:34 GMT
Connection: keep-alive
ETag: "637376f2-14653"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-09-01/16620057333.jpg

137.175.72.61

200 OK

277 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-09-01/16620057333.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 1594x897, components 3\012- data
Size
277 kB (276941 bytes)
Hash
ad2a2212d840983805ef57dc5ca8dce1
3a18199ba4ed992ddb4596495d9b5a34bf72f94f
2268273be36a32192f3745f030a80ec3d11ed8d03d6d37573e6a0fec8a99b42e

HTTP Headers

GET /upload/vod/2022-09-01/16620057333.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:12 GMT
Content-Type: image/jpeg
Content-Length: 276941
Last-Modified: Tue, 15 Nov 2022 10:54:06 GMT
Connection: keep-alive
ETag: "63736fce-439cd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-07-20/16583211837.jpg

137.175.72.61

200 OK

351 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-07-20/16583211837.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x513, components 3\012- data
Size
351 kB (351106 bytes)
Hash
65420069ef9f7e9a57712d1f5057d687
868a2c552949d0b0ded645c398b0ce0146b5491f
80607cc199744ec5258419c2b0f551d647b15a2c1bfdf89210f9eba2594de5a1

HTTP Headers

GET /upload/vod/2022-07-20/16583211837.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:12 GMT
Content-Type: image/jpeg
Content-Length: 351106
Last-Modified: Tue, 15 Nov 2022 10:53:46 GMT
Connection: keep-alive
ETag: "63736fba-55b82"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2021-12-13/16393695029.jpg

137.175.72.61

200 OK

59 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-13/16393695029.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 720x480, components 3\012- data
Size
59 kB (59196 bytes)
Hash
773a50daf0bfa7126e1a02284f16250d
1d6d0c7b970f8f64589c67085edfbe92b912eb87
ca06e86e54a33b99582ca13d695a2a358d66c8e354f9574c013485740eb04c35

HTTP Headers

GET /upload/vod/2021-12-13/16393695029.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:12 GMT
Content-Type: image/jpeg
Content-Length: 59196
Last-Modified: Tue, 15 Nov 2022 10:53:39 GMT
Connection: keep-alive
ETag: "63736fb3-e73c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

kjimg10.360buyimg.com/ott/jfs/t1/120993/16/33030/1021535/6380d2dbE2ee6e05e/c45dd20fdac2727b.gif

182.140.218.3

200 OK

1.0 MB

URL HTTP/2
kjimg10.360buyimg.com/ott/jfs/t1/120993/16/33030/1021535/6380d2dbE2ee6e05e/c45dd20fdac2727b.gif
IP
182.140.218.3:0
ASN
#38283 CHINANET SiChuan Telecom Internet Data Center

File type
GIF image data, version 89a, 960 x 60\012- data
Size
1.0 MB (1021535 bytes)
Hash
3ee27568f25223c8d290eb4003e1916f
78a1cc6c8e4bca6cb26f7f2ae899ad5bc5154b7d
9d019eccd2bc0f713cab4e42e37f9f3d8fbb022526850ea87248a09bd1c215a4

HTTP Headers

GET /ott/jfs/t1/120993/16/33030/1021535/6380d2dbE2ee6e05e/c45dd20fdac2727b.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 14:57:07 GMT
content-type: image/gif
content-length: 1021535
cache-control: max-age=315360000
expires: Mon, 22 Nov 2032 14:51:41 GMT
last-modified: Fri, 25 Nov 2022 14:36:11 GMT
age: 86727
via: http/1.1 ORI-CLOUD-HUN-MIX-25 (jcs [cRs f ]), http/1.1 SCchengdu-CT-11-MIX-27 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1669387901977-0-0-0-12-12;200;200-1669467423366-0-0-0-1-1;200-1669474627805-0-0-0-1-1
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2021-12-13/16393693601.jpg

137.175.72.61

200 OK

191 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-13/16393693601.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 680x454, components 3\012- data
Size
191 kB (190649 bytes)
Hash
4494e73afc8d41bc0e99e5a3ae50bd00
6991f1dcc15d59f0c3f2dd74c3b2517a777256b3
53ae6be0d77aa77b01c113b90116dde5c5b714fc6b07d78ae62072b17aedfa35

HTTP Headers

GET /upload/vod/2021-12-13/16393693601.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:12 GMT
Content-Type: image/jpeg
Content-Length: 190649
Last-Modified: Tue, 15 Nov 2022 11:02:56 GMT
Connection: keep-alive
ETag: "637371e0-2e8b9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2021-12-13/16393696693.jpg

137.175.72.61

200 OK

139 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-13/16393696693.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x587, components 3\012- data
Size
139 kB (138673 bytes)
Hash
a14701247d0c639ca6cbd7e58503af10
e8e1fef6493ad46c28c5ab50abae2cbe40ea96bd
ab0533c598b3b2a20bcd42b511b791adf3bc5ed00cc09b376d430f3c2ab63d90

HTTP Headers

GET /upload/vod/2021-12-13/16393696693.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:12 GMT
Content-Type: image/jpeg
Content-Length: 138673
Last-Modified: Tue, 15 Nov 2022 10:51:38 GMT
Connection: keep-alive
ETag: "63736f3a-21db1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-05-13/16524479126.jpg

137.175.72.61

200 OK

203 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-13/16524479126.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size
203 kB (203341 bytes)
Hash
89d8ca56d1d85a9f3602ff90b3dbe50e
1ae15b5916f5ab082037b7bf4a885cb306d79e42
834e624afafed7f85eda76b9b0a610da297315f9f866aaceb8c39cd6430a714b

HTTP Headers

GET /upload/vod/2022-05-13/16524479126.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 26 Nov 2022 14:57:12 GMT
Content-Type: image/jpeg
Content-Length: 203341
Last-Modified: Tue, 15 Nov 2022 10:48:11 GMT
Connection: keep-alive
ETag: "63736e6b-31a4d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

kjimg10.360buyimg.com/ott/jfs/t1/222610/4/20743/688878/6380d41fEdd27fc60/810ef977e1cd11c0.gif

182.140.218.3

200 OK

689 kB

URL HTTP/2
kjimg10.360buyimg.com/ott/jfs/t1/222610/4/20743/688878/6380d41fEdd27fc60/810ef977e1cd11c0.gif
IP
182.140.218.3:0
ASN
#38283 CHINANET SiChuan Telecom Internet Data Center

File type
GIF image data, version 89a, 960 x 60\012- data
Size
689 kB (688878 bytes)
Hash
38adb06da8d7db34d62dfc1760cda2dd
862c5ecedd5add094b8dfb22c3087b09493a312a
89521c87c1fe061e63fb523bb11f2a328e9202574d73aa4c4e17de8a8f301c58

HTTP Headers

GET /ott/jfs/t1/222610/4/20743/688878/6380d41fEdd27fc60/810ef977e1cd11c0.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 14:57:07 GMT
content-type: image/gif
content-length: 688878
cache-control: max-age=315360000
expires: Mon, 22 Nov 2032 14:51:35 GMT
last-modified: Fri, 25 Nov 2022 14:41:35 GMT
age: 86732
via: http/1.1 ORI-CLOUD-HUN-MIX-21 (jcs [cHs f ]), http/1.1 SCchengdu-CT-11-MIX-27 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1669387895392-0-0-20-62-62;200;200-1669442108435-0-0-0-3-3;200-1669474627801-0-0-0-7-7
X-Firefox-Spdy: h2

img.u1662.com/images/637c9e75ac84359a7f268ae4.gif

185.239.226.23

302 Found

0 B

URL HTTP/2
img.u1662.com/images/637c9e75ac84359a7f268ae4.gif
IP
185.239.226.23:0
ASN
#134835 Starry Network Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/637c9e75ac84359a7f268ae4.gif HTTP/1.1
Host: img.u1662.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6
cache-control: max-age=3600
X-Firefox-Spdy: h2

img.1170555.com/images/637e12abc967c48ec27be3df.gif

185.239.226.23

302 Found

0 B

URL HTTP/2
img.1170555.com/images/637e12abc967c48ec27be3df.gif
IP
185.239.226.23:0
ASN
#134835 Starry Network Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/637e12abc967c48ec27be3df.gif HTTP/1.1
Host: img.1170555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3
cache-control: max-age=3600
X-Firefox-Spdy: h2

img.u2765.com/images/637c9dccac84359a7f268ae1.gif

185.239.226.23

302 Found

0 B

URL HTTP/2
img.u2765.com/images/637c9dccac84359a7f268ae1.gif
IP
185.239.226.23:0
ASN
#134835 Starry Network Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/637c9dccac84359a7f268ae1.gif HTTP/1.1
Host: img.u2765.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/50372422c79c43218a1f1a337e6e6727
cache-control: max-age=3600
X-Firefox-Spdy: h2

img.9675x.com/images/637f23088d97bc67605fd916.gif

185.239.226.23

302 Found

0 B

URL HTTP/2
img.9675x.com/images/637f23088d97bc67605fd916.gif
IP
185.239.226.23:0
ASN
#134835 Starry Network Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/637f23088d97bc67605fd916.gif HTTP/1.1
Host: img.9675x.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/087453e6696a47efaee2f34d49758e2f
cache-control: max-age=3600
X-Firefox-Spdy: h2

img.1200555.com/images/637e1290c967c48ec27be3de.gif

185.239.226.23

302 Found

0 B

URL HTTP/2
img.1200555.com/images/637e1290c967c48ec27be3de.gif
IP
185.239.226.23:0
ASN
#134835 Starry Network Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/637e1290c967c48ec27be3de.gif HTTP/1.1
Host: img.1200555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6
cache-control: max-age=3600
X-Firefox-Spdy: h2

www.moneyziyouwm.com/o.js

104.21.235.134

200 OK

0 B

URL HTTP/2
www.moneyziyouwm.com/o.js
IP
104.21.235.134:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /o.js HTTP/1.1
Host: www.moneyziyouwm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 14:57:05 GMT
content-type: text/plain; charset=utf-8
access-control-allow-credentials: true
access-control-allow-headers: Origin, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: POST, GET,PUT, DELETE, UPDATE
access-control-allow-origin: 
cache-control: max-age=14400
cf-cache-status: HIT
age: 5782
last-modified: Sat, 26 Nov 2022 13:20:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xN5kfuUwhhhAP6lBxE6liWh9y9esFJuNW8VoUN09eaQxpwUadATF%2FmJXbncXAnyWOrxWnjtADxkddUzQaeyK9GoQTlx30otPKPVfn%2BbsyegC37WWhRMklU8dahyFeBn%2FDOnXbnO1Gw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770379774f28757a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

wap.mgivkqk.cn/sc/2065?n=uitleqom

47.246.44.172

200 OK

0 B

URL HTTP/2
wap.mgivkqk.cn/sc/2065?n=uitleqom
IP
47.246.44.172:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sc/2065?n=uitleqom HTTP/1.1
Host: wap.mgivkqk.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: text/javascript; charset=utf-8
date: Sat, 26 Nov 2022 14:57:05 GMT
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
access-control-allow-origin: *
cache-control: max-age=1800
pragma: max-age=1800
strict-transport-security: max-age=31536000
via: cache34.l2ot7-1[156,0], cache6.us13[225,0], cache1.se1[311,0]
timing-allow-origin: *, *
eagleid: 2ff62c9516694746257555837e, 2ff62c9516694746257555837e
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (37)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations