r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6b6481bf5f33b42cdd966d49d8b70107
03ed01a9dc82a7efaf3706691249d811f64719a4
1e42a2cd7e7ef655d17dea6423dff85d3f57111d9bd08d2f829535aa462eb11c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1E42A2CD7E7EF655D17DEA6423DFF85D3F57111D9BD08D2F829535AA462EB11C"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13887
Expires: Fri, 21 Oct 2022 12:19:25 GMT
Date: Fri, 21 Oct 2022 08:27:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 21 Oct 2022 07:52:20 GMT
Expires: Fri, 21 Oct 2022 08:00:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MG9DdLAgLNXJmZbOtEjC1TqKht8AXm9wypd4NR8_Di0fV9PuCj8qmw==
Age: 2138
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9dc4f23f82148797f6d8041bdda3c7f7
6841ded3e2dd94fd762316d01efd43f7aafb8354
e229db1854a85b320cee574e805210f3adf5797136ea820c0a0ce9abcd63d4dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E229DB1854A85B320CEE574E805210F3ADF5797136EA820C0A0CE9ABCD63D4DD"
Last-Modified: Thu, 20 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13843
Expires: Fri, 21 Oct 2022 12:18:41 GMT
Date: Fri, 21 Oct 2022 08:27:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3tIg3uUHbh4AdfcMedY7z2dk2Z2GBXTeJA2t78jiu89CZibTwL/Vv+GhEzAb+KCKx6MQATPIr+A=
x-amz-request-id: FDHQYBSB0YDTKYH6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 21 Oct 2022 07:37:05 GMT
age: 3053
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 21 Oct 2022 08:27:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
169uu.com/
98.126.88.66200 OK 22 kB IP 98.126.88.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1244), with CRLF line terminators
Hash ced7ded51df7fb87bec48dbec4dbe670
9dcdde0a4f5b0b571fb8469d8654d5fb60aec38f
b184bcff478b8ee5eea1c0db6b218f7e9d83cf2a61cc9d1a16d8bf655e88fe25
GET / HTTP/1.1
Host: 169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: PHP/5.6.40, ASP.NET
Date: Sat, 22 Oct 2022 00:14:28 GMT
Content-Length: 22259
169uu.com/template/m1938pc1/static/js/jquery.lazyload.min.js
98.126.88.66200 OK 1.3 kB URL HTTP/1.1 169uu.com/template/m1938pc1/static/js/jquery.lazyload.min.js
IP 98.126.88.66:0
File type ASCII text, with very long lines (3309)
Hash 62d0260bdd78825fb7e249cd382c2e09
902ca48d91e7fd41d0af16e601f467963ee3f97f
2bbb81cc4d5e2b05338ef7a7b464d5ffbe86dc95b8f5a7ef8157ea51c68dee3c
GET /template/m1938pc1/static/js/jquery.lazyload.min.js HTTP/1.1
Host: 169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 19 Jan 2022 10:08:19 GMT
Accept-Ranges: bytes
ETag: "802b857b1cdd81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:29 GMT
Content-Length: 1298
169uu.com/template/m1938pc1/css/common.css?v=1123
98.126.88.66200 OK 1.5 kB URL HTTP/1.1 169uu.com/template/m1938pc1/css/common.css?v=1123
IP 98.126.88.66:0
Hash 779d5b53121174b79cdbb136e05952e0
d6a91bcd796cdd53cec4807736c3c9c3e580d4c3
780646a9fd19b2175dd7125dcc03ee65ccd41c501b6160017a9090d74b6261e6
GET /template/m1938pc1/css/common.css?v=1123 HTTP/1.1
Host: 169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sun, 16 Oct 2022 23:51:47 GMT
Accept-Ranges: bytes
ETag: "802b8440bae1d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:29 GMT
Content-Length: 1532
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 21 Oct 2022 07:43:40 GMT
Cache-Control: max-age=3600
Expires: Fri, 21 Oct 2022 08:37:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WxLGI3e21FZq9z3cbGw3a6KRvjeILeBxY-n3HaVmr4WcBwbynjX5gg==
Age: 2659
169uu.com/template/m1938pc1/static/js/bootstrap.min.js
98.126.88.66200 OK 11 kB URL HTTP/1.1 169uu.com/template/m1938pc1/static/js/bootstrap.min.js
IP 98.126.88.66:0
File type ASCII text, with very long lines (39553)
Hash dbc18ae27127afa1f06646df85495ff5
f4ba19e5bf3be87288a1ba196428a8a8c776cc52
de8cc1e95a20abfbfbc66a2fa4e6f0c27d6bfbcaff7e93d95b8393bca0485168
GET /template/m1938pc1/static/js/bootstrap.min.js HTTP/1.1
Host: 169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 19 Jan 2022 10:08:26 GMT
Accept-Ranges: bytes
ETag: "049b17f1cdd81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:29 GMT
Content-Length: 10939
169uu.com/template/m1938pc1/static/js/jquery.min.js
98.126.88.66200 OK 34 kB URL HTTP/1.1 169uu.com/template/m1938pc1/static/js/jquery.min.js
IP 98.126.88.66:0
File type ASCII text, with very long lines (32077)
Hash 0de0fe71c1cfd6943f8ea16438da3bef
df59321eec40d168bf2ee932fe63518a6bb96c71
0c4ed111e892c7f931537f659e434670a5818ac7f28c980807308bc0b40e7ea2
GET /template/m1938pc1/static/js/jquery.min.js HTTP/1.1
Host: 169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 19 Jan 2022 10:08:19 GMT
Accept-Ranges: bytes
ETag: "802b857b1cdd81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:29 GMT
Content-Length: 33835
169uu.com/template/m1938pc1/css/style.css?v=2
98.126.88.66200 OK 7.8 kB URL HTTP/1.1 169uu.com/template/m1938pc1/css/style.css?v=2
IP 98.126.88.66:0
File type assembler source, Unicode text, UTF-8 text
Hash eacee1d918bcf52045273f54431a199d
d317468a871661329f5e0f64cb79827f339e6025
d5460744beca5573c6bf85d9bc4c01787ab3f88fb8ae59defe8ba00e42a07dd6
GET /template/m1938pc1/css/style.css?v=2 HTTP/1.1
Host: 169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Oct 2022 08:45:26 GMT
Accept-Ranges: bytes
ETag: "0d753cd4e2d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:29 GMT
Content-Length: 7813
169uu.com/template/m1938pc1/images/loading.svg
98.126.88.66200 OK 506 B URL HTTP/1.1 169uu.com/template/m1938pc1/images/loading.svg
IP 98.126.88.66:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash bb36cf278bc5f407c3a64054c13dbbdf
ecd02eea9d41f6282fcaaffc84dbefc1fedb58a2
fa5ecaba8e7048ec0475ac862bec89853e8c87e84475e199f8657d6e89065dff
GET /template/m1938pc1/images/loading.svg HTTP/1.1
Host: 169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 19 Jan 2022 10:08:30 GMT
Accept-Ranges: bytes
ETag: "e4f936821cdd81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:29 GMT
Content-Length: 506
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b25d775158640aaa288f5d7a5f031494
0d13d1cec093dc92ff48d0eb665391545a5473e2
f7fe2d0d41a3d01ec4b1998f1f57bc668bee569c4a6a715c2d57fb46282d40b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7FE2D0D41A3D01EC4B1998F1F57BC668BEE569C4A6A715C2D57FB46282D40B5"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21539
Expires: Fri, 21 Oct 2022 14:26:59 GMT
Date: Fri, 21 Oct 2022 08:28:00 GMT
Connection: keep-alive
www.169uu.com/gbi.jpg
98.126.88.66200 OK 9.2 kB IP 98.126.88.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /gbi.jpg HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sun, 16 Oct 2022 12:50:22 GMT
Accept-Ranges: bytes
ETag: "3a4484da5de1d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:29 GMT
Content-Length: 9166
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b25d775158640aaa288f5d7a5f031494
0d13d1cec093dc92ff48d0eb665391545a5473e2
f7fe2d0d41a3d01ec4b1998f1f57bc668bee569c4a6a715c2d57fb46282d40b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7FE2D0D41A3D01EC4B1998F1F57BC668BEE569C4A6A715C2D57FB46282D40B5"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21539
Expires: Fri, 21 Oct 2022 14:26:59 GMT
Date: Fri, 21 Oct 2022 08:28:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a5dd4f71f4ddd5be9201466ed7a6c423
1d0832fb6e227d42137d319f728c8bc1414c816f
1edffa6a320210fccbd0e5fa6dbdaa45561678a75a66639985f02791c8283b40
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6573
Cache-Control: max-age=91699
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 08:28:00 GMT
Etag: "63510196-1d7"
Expires: Sat, 22 Oct 2022 09:56:19 GMT
Last-Modified: Thu, 20 Oct 2022 08:06:46 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
169uu.com/template/m1938pc1/fonts/fee269d34c5f4e6c95218498a142533f.woff
98.126.88.66404 Not Found 1.2 kB URL HTTP/1.1 169uu.com/template/m1938pc1/fonts/fee269d34c5f4e6c95218498a142533f.woff
IP 98.126.88.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
GET /template/m1938pc1/fonts/fee269d34c5f4e6c95218498a142533f.woff HTTP/1.1
Host: 169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://169uu.com/template/m1938pc1/css/style.css?v=2
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:30 GMT
Content-Length: 1163
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash dbdd73673a314ab1685204d6ebc085a7
c369b695a1c124e1f4d1a2d7a3cbd724af5a294b
7855a5c3e980f4bc05e6bfd392f7f7f730b4f6ad4d756259528bd1c9d9a5703e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 01:06:38 GMT
Expires: Fri, 28 Oct 2022 01:06:37 GMT
Etag: "c369b695a1c124e1f4d1a2d7a3cbd724af5a294b"
Cache-Control: max-age=577716,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e059a950b45-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash dbdd73673a314ab1685204d6ebc085a7
c369b695a1c124e1f4d1a2d7a3cbd724af5a294b
7855a5c3e980f4bc05e6bfd392f7f7f730b4f6ad4d756259528bd1c9d9a5703e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 01:06:38 GMT
Expires: Fri, 28 Oct 2022 01:06:37 GMT
Etag: "c369b695a1c124e1f4d1a2d7a3cbd724af5a294b"
Cache-Control: max-age=577716,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e05ace1b4f3-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash dd836313ffa5f1a3c81dfd8e7bd8a43e
d1a6cdce49c4fb2fe8109cc0c0d4cf21803c75d5
dbf3f046f822fce3cfd3aadb01dd7a6ae22e662bc1d661956b06ea78d4f0a545
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 17:45:34 GMT
Expires: Thu, 27 Oct 2022 17:45:33 GMT
Etag: "d1a6cdce49c4fb2fe8109cc0c0d4cf21803c75d5"
Cache-Control: max-age=551252,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e05cfa6b4ee-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 9721ebf7c51d4b6983304ac31a611229
f1520dfe649102839a7ba3d309d42f0f32cb9c8b
91224ec4d26331e63303728ec9a8e081c844c4a7cdd727624e823bd36dc9ed15
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 01:23:14 GMT
Expires: Fri, 28 Oct 2022 01:23:13 GMT
Etag: "f1520dfe649102839a7ba3d309d42f0f32cb9c8b"
Cache-Control: max-age=578712,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e05dbda1c0a-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash dfe33a77225baa32764a9e38ad36627e
f8f969067d7dba1a64c4e32b992045c47a054923
406ead72a84cc89181228c2d941e96baed2b4a5fc904e7b9a2e1cd371c5a1424
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 07:55:35 GMT
Expires: Thu, 27 Oct 2022 07:55:34 GMT
Etag: "f8f969067d7dba1a64c4e32b992045c47a054923"
Cache-Control: max-age=515853,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e062814b4ee-OSL
push.services.mozilla.com/
52.41.253.170101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.253.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pX79jmvFCSsg6naBjsgWAQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ufG5H/ZU36m3fegbfsTsqbRDKiw=
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1f33c597144e62688603b9c395964f2d
b6877ca0a6227587203b3f5f9a4ca76ef4698718
2d308fba28ff7bac707dfe9de1eee0a6e61152b9102954a6e5efd485976a3e2b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 05:17:06 GMT
Expires: Wed, 26 Oct 2022 05:17:05 GMT
Etag: "b6877ca0a6227587203b3f5f9a4ca76ef4698718"
Cache-Control: max-age=419944,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e058a010b06-OSL
169uu.com/template/m1938pc1/fonts/iconfont.woff
98.126.88.66200 OK 2.9 kB URL HTTP/1.1 169uu.com/template/m1938pc1/fonts/iconfont.woff
IP 98.126.88.66:0
File type Web Open Font Format, TrueType, length 2924, version 1.0\012- data
Hash 1b05b2b67ca6e3fe976ed8d2d1aa31d5
c7055832382daf713a911d67501e26873db045f8
ac1718a88630db8d2fd67997ad9796acdc8a6a88361b2b7058832caeec4fb22d
GET /template/m1938pc1/fonts/iconfont.woff HTTP/1.1
Host: 169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://169uu.com/template/m1938pc1/css/style.css?v=2
HTTP/1.1 200 OK
Content-Type: font/x-woff
Last-Modified: Wed, 19 Jan 2022 10:08:25 GMT
Accept-Ranges: bytes
ETag: "8450527f1cdd81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:30 GMT
Content-Length: 2924
www.169uu.com/kygj.jpg
98.126.88.66200 OK 57 kB IP 98.126.88.66:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.1 (Windows), datetime=2022:09:26 19:29:49], baseline, precision 8, 960x60, components 3\012- data
Hash f2a26990656f51599eb600cd9a825b4d
efbb1bdbc9d9fd757c31fcebaf35641d16eb87f2
b8db7b67b7c5621128fc25f6fe0afb016227ed97e2dd00195dc474e6a751a095
GET /kygj.jpg HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 26 Sep 2022 14:16:27 GMT
Accept-Ranges: bytes
ETag: "df711e91b2d1d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:29 GMT
Content-Length: 57249
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 3156d013ba4bb54093d71f32a0e540c0
4fbcea64dd51d88533cd4c39d674b04d995b56ca
56c297de5304740510fa9649541dad8de403357b9db3918e1f802dbd64680225
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 18 Oct 2022 15:48:20 GMT
Expires: Tue, 25 Oct 2022 15:48:19 GMT
Etag: "4fbcea64dd51d88533cd4c39d674b04d995b56ca"
Cache-Control: max-age=371418,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e06eb5b0b06-OSL
www.169uu.com/tb4.gif
98.126.88.66200 OK 123 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 80 x 80\012- data
Size 123 kB (122692 bytes)
Hash 3485b1f8e311f03afc74171ccf06fddf
7f03faffc6c6cd5c96f6f898693168a0b1232b49
b93daa0e4e6eab8256117493d0d6d5243a2f19548203607942018703d6165655
GET /tb4.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Sat, 27 Aug 2022 12:44:51 GMT
Accept-Ranges: bytes
ETag: "fcb4eacc12bad81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:29 GMT
Content-Length: 122692
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 567707234a64102f467353a35ad19c60
4cd4f69b56ad3f81906f84957c39298ca9e5488b
e21dc5dc33153db64eaed3e388f4da74fa33a387a99c66358adf2a59f8e97591
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 12:02:27 GMT
Expires: Thu, 27 Oct 2022 12:02:26 GMT
Etag: "4cd4f69b56ad3f81906f84957c39298ca9e5488b"
Cache-Control: max-age=530665,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e05faf40b45-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash f5e345038219e4c26d105df7bff06ae4
c61a4f2d8ca8b53ac046e44101f8f3d90315d3e0
fb355a861fbfcd264705801de5ba560a859df00a8c9c4fb7519684faa2fa8529
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 02:45:57 GMT
Expires: Fri, 28 Oct 2022 02:45:56 GMT
Etag: "c61a4f2d8ca8b53ac046e44101f8f3d90315d3e0"
Cache-Control: max-age=583675,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e063c351c0a-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 143996f89acb011749ff32ad41fbf756
00c1ddfaef83907cc4279358b2c279ab6cd69654
512a82126cab885050811eaaf3524f3080f874335f771fe17ddc7dac99b8de0c
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 25 Oct 2022 07:15:31 GMT
ETag: "00c1ddfaef83907cc4279358b2c279ab6cd69654"
Last-Modified: Fri, 21 Oct 2022 07:15:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 999
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75d89e07af28b506-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 143996f89acb011749ff32ad41fbf756
00c1ddfaef83907cc4279358b2c279ab6cd69654
512a82126cab885050811eaaf3524f3080f874335f771fe17ddc7dac99b8de0c
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 25 Oct 2022 07:15:31 GMT
ETag: "00c1ddfaef83907cc4279358b2c279ab6cd69654"
Last-Modified: Fri, 21 Oct 2022 07:15:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 999
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75d89e07af26b506-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 26ff903c86abf5064618b425a4796bb2
477efd8a3acdf4cafb47d20fa0f5c944d6a83d5a
4a4aadb4c0492dc2c6b34256207a9a60114ea11fae301db2748ecb12b097b7d0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 14:29:07 GMT
Expires: Thu, 27 Oct 2022 14:29:06 GMT
Etag: "477efd8a3acdf4cafb47d20fa0f5c944d6a83d5a"
Cache-Control: max-age=539465,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e060d4ab4f3-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 143996f89acb011749ff32ad41fbf756
00c1ddfaef83907cc4279358b2c279ab6cd69654
512a82126cab885050811eaaf3524f3080f874335f771fe17ddc7dac99b8de0c
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 25 Oct 2022 07:15:31 GMT
ETag: "00c1ddfaef83907cc4279358b2c279ab6cd69654"
Last-Modified: Fri, 21 Oct 2022 07:15:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 999
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75d89e07af311c06-OSL
n7181.com/10981b6c5bec41a78b15193c5b98aaa8.gif
103.170.15.98200 OK 21 kB URL HTTP/1.1 n7181.com/10981b6c5bec41a78b15193c5b98aaa8.gif
IP 103.170.15.98:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 150 x 150\012- data
Hash f74565f3d3cbb75a45b7244a0630c6a6
ef246835d5edd6f74f74f6e167411db109ce937d
f8f3822c285bcd1423d0cfc0112717cffd9d100562467dc2699c9a4ba345b12f
GET /10981b6c5bec41a78b15193c5b98aaa8.gif HTTP/1.1
Host: n7181.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6347a52a-5308"
Date: Fri, 14 Oct 2022 03:23:33 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 13 Oct 2022 05:42:02 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-28
Content-Length: 21256
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 3156d013ba4bb54093d71f32a0e540c0
4fbcea64dd51d88533cd4c39d674b04d995b56ca
56c297de5304740510fa9649541dad8de403357b9db3918e1f802dbd64680225
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 18 Oct 2022 15:48:20 GMT
Expires: Tue, 25 Oct 2022 15:48:19 GMT
Etag: "4fbcea64dd51d88533cd4c39d674b04d995b56ca"
Cache-Control: max-age=371418,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e068899b4ee-OSL
www.169uu.com/960.gif
98.126.88.66200 OK 25 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 1020 x 60\012- data
Hash edb0e0745fe1ce51b71b2dcfec486c58
03e96bdda66106f9f76a721c4520af213c3c5c77
1d659201aba0c958e20c651c65627563827a97fa0d4969c8737f9d0f3e52374f
GET /960.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 14 Feb 2022 10:11:26 GMT
Accept-Ranges: bytes
ETag: "09bb8398b21d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:30 GMT
Content-Length: 24836
www.169uu.com/ra128.gif
98.126.88.66200 OK 135 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 128 x 128\012- data
Size 135 kB (134739 bytes)
Hash 701c024999933248af0c74576d1af0c7
af15d6a4e70ef05b803cdb342f76b06a8da7f3af
49f6abba9d38924c442620a4ceeecba59a48970932f991e3d2f2c3a87802bc0a
GET /ra128.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Sun, 25 Sep 2022 13:46:46 GMT
Accept-Ranges: bytes
ETag: "5d5f2c41e5d0d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:29 GMT
Content-Length: 134739
n7312.com/cc523f348513405fa801c9b4ff62bf6a.gif
45.61.212.56200 OK 30 kB URL HTTP/1.1 n7312.com/cc523f348513405fa801c9b4ff62bf6a.gif
IP 45.61.212.56:0
File type GIF image data, version 89a, 180 x 180\012- data
Hash c75065e9b2cdd6327ec4bcd5564139dd
942a4075f3561f09179d6a332eebfdca981601b0
2ca8007b97da4aa8dfe8e89950cd97d6c804f17d4d9cb51e0f7492335412724c
GET /cc523f348513405fa801c9b4ff62bf6a.gif HTTP/1.1
Host: n7312.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "631f109b-748c"
Date: Thu, 06 Oct 2022 17:50:52 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 12 Sep 2022 10:57:31 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-26
Content-Length: 29836
pic.picnewsss.com/tu-2022290039/120-120.gif
23.225.139.251200 OK 9.8 kB URL HTTP/2 pic.picnewsss.com/tu-2022290039/120-120.gif
IP 23.225.139.251:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash d5108c52b1e5111e1135c65b828ecddf
2b20ca658db1936d28a3315989e4c0622bb25741
38ce508a86be7215ec2c3b2c39512599b3259928e4206c4c062aadaa72cba6d3
GET /tu-2022290039/120-120.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Fri, 21 Oct 2022 07:19:09 GMT
etag: "1666338067"
expires: Sun, 20 Nov 2022 07:19:09 GMT
last-modified: Fri, 21 Oct 2022 07:41:07 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 9820
X-Firefox-Spdy: h2
n6579.com/e148b24c24bc478992ebb8f60c6bd2f0.png
45.61.212.222200 OK 72 kB URL HTTP/1.1 n6579.com/e148b24c24bc478992ebb8f60c6bd2f0.png
IP 45.61.212.222:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 0648e9d6710a7b0983a7146e0b403573
e431d5175ea33bbfd6f9af1fb3c9914872d79a35
8da4dd1361cf5dc8b93b3002da41c390081d1ccf0d186c3492513af10c4690b6
GET /e148b24c24bc478992ebb8f60c6bd2f0.png HTTP/1.1
Host: n6579.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6347a58c-1181f"
Date: Fri, 14 Oct 2022 06:19:43 GMT
Content-Type: image/png
Server: nginx
Last-Modified: Thu, 13 Oct 2022 05:43:40 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-22
Content-Length: 71711
www.169uu.com/8499960.gif
98.126.88.66200 OK 143 kB URL HTTP/1.1 www.169uu.com/8499960.gif
IP 98.126.88.66:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 143 kB (142771 bytes)
Hash 50e1ecc2ba3db0fcf6b081ba3a499ca2
e89fc9c43132ff33900430842817bd1455533b46
7571359d9da05ec6286c8846ff10f0cda1ed6da94bd7af990b03d427bd66b218
GET /8499960.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Tue, 13 Sep 2022 05:05:02 GMT
Accept-Ranges: bytes
ETag: "0132a612ec7d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:30 GMT
Content-Length: 142771
vjnhby.com/a92aa27591fa4e59aea14a2cf214eb5b.png
45.61.212.164200 OK 33 kB URL HTTP/2 vjnhby.com/a92aa27591fa4e59aea14a2cf214eb5b.png
IP 45.61.212.164:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash ee1bc6b1c1336cdd67d4ab2d506a32d2
d41da7c0ad3d18427338441d112019b8c19a26c1
3a04d95ac386a81d422f3d04a11047536497843ef43a21858d5ee09ca99974c1
GET /a92aa27591fa4e59aea14a2cf214eb5b.png HTTP/1.1
Host: vjnhby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "634be923-80a4"
server: nginx
date: Wed, 19 Oct 2022 17:31:32 GMT
content-type: image/png
last-modified: Sun, 16 Oct 2022 11:21:07 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us5-cdnb-04
content-length: 32932
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 00c2bb70902b76ab3388a690aaefc24e
29a87d9e1e32ebf8fb537101ebc4b5ab531d5373
2e1526906c637c477ba43b35d046c4f8cd70c85369031d7addf256640a99b18c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2414
Cache-Control: max-age=133639
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 08:28:00 GMT
Etag: "6351b5a9-2d7"
Expires: Sat, 22 Oct 2022 21:35:19 GMT
Last-Modified: Thu, 20 Oct 2022 20:55:05 GMT
Server: ECS (amb/6BC3)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 00c2bb70902b76ab3388a690aaefc24e
29a87d9e1e32ebf8fb537101ebc4b5ab531d5373
2e1526906c637c477ba43b35d046c4f8cd70c85369031d7addf256640a99b18c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2414
Cache-Control: max-age=133639
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 08:28:00 GMT
Etag: "6351b5a9-2d7"
Expires: Sat, 22 Oct 2022 21:35:19 GMT
Last-Modified: Thu, 20 Oct 2022 20:55:05 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 00c2bb70902b76ab3388a690aaefc24e
29a87d9e1e32ebf8fb537101ebc4b5ab531d5373
2e1526906c637c477ba43b35d046c4f8cd70c85369031d7addf256640a99b18c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6259
Cache-Control: max-age=137484
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 08:28:00 GMT
Etag: "6351b5a9-2d7"
Expires: Sat, 22 Oct 2022 22:39:24 GMT
Last-Modified: Thu, 20 Oct 2022 20:55:05 GMT
Server: ECS (amb/6BB2)
X-Cache: HIT
Content-Length: 727
p3.douyinpic.com/obj/tos-cn-i-dy/d706ff0f49324bccb28661696cadfa0a
47.246.44.229200 OK 198 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/d706ff0f49324bccb28661696cadfa0a
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 200 x 250\012- data
Size 198 kB (197560 bytes)
Hash a1407de1e6eae6231a3748ac04c19a5c
aa7c1ebfbfbcc5b7d6d4a21c8bf26cd3c98f64c8
388bf273bb2250d348bf916c48a74c48b6c71937a6e0cf82d9a638e0b2c5bb98
GET /obj/tos-cn-i-dy/d706ff0f49324bccb28661696cadfa0a HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 197560
date: Sun, 16 Oct 2022 08:03:45 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sun, 16 Oct 2022 06:33:07 GMT
nw-session-id: 202210161433070102090950663330FF30c679z03dy
nw-session-trace: 2022-10-16T14:33:07.490952426+08:00 27
x-bdcdn-cache-status: TCP_HIT
x-length: 197560
x-powered-by: ImageX
x-response-date: Sun, 16 Oct 2022 14:33:07 GMT
x-tt-logid: 202210161433070102090950663330FF30
via: n132-082-163, cache15.l2de2[0,0,206-0,H], cache4.l2de2[1,0], cache4.l2de2[1,0], cache2.se1[0,0,200-0,H], cache5.se1[2,0]
x-request-ip: fdbd:dc03:8:577::15
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01713454d6c7f98b3a61040842078bd46dd31995af0898aa531add38a080777e8efcae3e2cb3f8b898a140d7c261299f36b4787c5d58bf6b9aa49c58bdf5b3d0d45e6e4600dd0e3c85824daf7a348ea0d3db0c655591a91e3c9bc51c2950c6abfb
x-response-lb: image
ali-swift-global-savetime: 1665907425
age: 433455
x-cache: HIT TCP_HIT dirn:6:171799104
x-swift-savetime: Sun, 16 Oct 2022 11:57:37 GMT
x-swift-cachetime: 31521968
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916663408808706478e
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/2473687480af4253ac93495f70c926af
47.246.44.229200 OK 666 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/2473687480af4253ac93495f70c926af
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 100\012- data
Size 666 kB (665540 bytes)
Hash 11c88e59cc38a5c805b39ebad80848da
5c4fac58436da6fb3c3302f58cdaf55f99f22e9a
85c4fc5979d43ef11d1ac1fc5ef30eba33639b1f86e7f7dd599f682aeb9124a2
GET /obj/tos-cn-i-dy/2473687480af4253ac93495f70c926af HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 665540
date: Sun, 16 Oct 2022 02:30:45 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sat, 15 Oct 2022 08:59:26 GMT
nw-session-id: 202210151659260102101860363ADADC0Eb6mss01dy
nw-session-trace: 2022-10-15T16:59:26.352617536+08:00 65
x-bdcdn-cache-status: TCP_HIT
x-length: 665540
x-powered-by: ImageX
x-response-date: Sat, 15 Oct 2022 16:59:26 GMT
x-tt-logid: 202210151659260102101860363ADADC0E
via: n150-056-076, cache17.l2de2[0,0,206-0,H], cache4.l2de2[1,0], cache4.l2de2[1,0], cache3.se1[0,0,200-0,H], cache5.se1[2,0]
x-request-ip: fdbd:dc02:19:491::165
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 019161ef80556ca2d3099d7fd291dcef5e20654ec14e5903cc0b63ffc94ae39e6ea1cc73448097f3944ec049a711e3e8af6e8b71681addef7abb9b0b603c62e9b7164b12fbcb344651afd10fec35c0d1d85919a62bf6ea3e53e166dec8d10de7c5
x-response-lb: image
ali-swift-global-savetime: 1665887445
age: 453435
x-cache: HIT TCP_HIT dirn:1:330626402 mlen:0
x-swift-savetime: Tue, 18 Oct 2022 20:25:56 GMT
x-swift-cachetime: 31298689
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916663408808736481e
X-Firefox-Spdy: h2
pic.picnewsss.com/tu-2022290039/1200-60.gif
23.225.139.251200 OK 281 kB URL HTTP/2 pic.picnewsss.com/tu-2022290039/1200-60.gif
IP 23.225.139.251:0
File type GIF image data, version 89a, 1200 x 60\012- data
Size 281 kB (281407 bytes)
Hash ce75219022fdacb903408dda1e0e9b3b
ee6f759c387adb97a9e738fb6e4be040a9cd6561
be6230bfd834a47f2ce8677f71a0eed4a2361ddb7d8e04a74b23bff694a78f5f
GET /tu-2022290039/1200-60.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Fri, 21 Oct 2022 04:48:19 GMT
etag: "1666327700"
expires: Sun, 20 Nov 2022 04:48:19 GMT
last-modified: Fri, 21 Oct 2022 04:48:20 GMT
server: nginx
x-cache: HIT, policy, disk
content-length: 281407
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/67235ef2abc64f40870afe31f988bda0
47.246.44.229200 OK 124 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/67235ef2abc64f40870afe31f988bda0
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 200 x 250\012- data
Size 124 kB (123528 bytes)
Hash 676f24a88ee35927a562ecc232a0cf35
c93d2c72920419ba215a0b656a726c7583a1e87d
0a76603ccfe0079f4f62a282cea120bf7ca8118ebd54bb417393f324c48b694c
GET /obj/tos-cn-i-dy/67235ef2abc64f40870afe31f988bda0 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 123528
date: Sun, 16 Oct 2022 07:48:07 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sun, 16 Oct 2022 06:25:16 GMT
nw-session-id: 202210161425160101351601670B473E7Bfmk4t01dy
nw-session-trace: 2022-10-16T14:25:16.702831338+08:00 38
x-bdcdn-cache-status: TCP_HIT
x-length: 123528
x-powered-by: ImageX
x-response-date: Sun, 16 Oct 2022 14:25:16 GMT
x-tt-logid: 202210161425160101351601670B473E7B
via: n150-050-074, cache16.l2de2[0,0,206-0,H], cache10.l2de2[1,0], cache10.l2de2[1,0], cache2.se1[0,0,200-0,H], cache5.se1[2,0]
x-request-ip: fdbd:dc02:20:751::154
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 0178520ad27bd5d1cf50b17ae5b59e240a0bd7bbf86efafe9e0aeb0908f6dfc12a7969374f80277137713b91c2e7f61b65ca641fe509dcc995411326d054abe358929b327d6c377bfa8efa6a041b97f25dbb7e0a0fc039d928eb79ad9e4562a1e9
x-response-lb: image
ali-swift-global-savetime: 1665906488
age: 434392
x-cache: HIT TCP_HIT dirn:6:171798953
x-swift-savetime: Sun, 16 Oct 2022 11:57:37 GMT
x-swift-cachetime: 31521031
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916663408808866486e
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/cde6206cda4c49fe84e88feaebbb339d
47.246.44.229200 OK 463 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/cde6206cda4c49fe84e88feaebbb339d
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 160\012- data
Size 463 kB (462949 bytes)
Hash b215c52b27fb5b6e6a2c031cb92bd84e
36ff0b6ac8bacdb0e3430c08b5530f5bcc5d1675
e2f1259b3dfd688071dfe5d1bd5cce322bf7ca7e56580850d28ed050b183fa5d
GET /obj/tos-cn-i-dy/cde6206cda4c49fe84e88feaebbb339d HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 462949
date: Fri, 21 Oct 2022 08:14:02 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Fri, 21 Oct 2022 06:54:03 GMT
nw-session-id: 20221021145403010175088203133647BFg8x9501dy
nw-session-trace: 2022-10-21T14:54:03.925831916+08:00 46
x-bdcdn-cache-status: TCP_HIT
x-length: 462949
x-powered-by: ImageX
x-response-date: Fri, 21 Oct 2022 14:54:03 GMT
x-tt-logid: 20221021145403010175088203133647BF
via: n150-056-038, cache19.l2de2[0,0,206-0,H], cache21.l2de2[1,0], cache21.l2de2[1,0], cache5.se1[22,21,200-0,M], cache5.se1[23,0]
x-request-ip: fdbd:dc02:22:48::233
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: parent_hit
x-tt-trace-host: 01477cc639149ce33dae3abb200256c8a8f78259b41dd33e8c08bfaa48eb0eb1b9c850c856e8517a40266491016e94a1a12c8b622770df3b92a3df767e1ec91d8d3a7594fbf8aa3248593b8b76d1e03d52b287f611d3f1d361aebe035dd775b94e
x-response-lb: image
ali-swift-global-savetime: 1666340042
age: 838
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Fri, 21 Oct 2022 08:28:00 GMT
x-swift-cachetime: 31535162
timing-allow-origin: *, *
access-control-allow-origin: *
server-timing: inner; dur=10, cdn-cache;desc=MISS,edge;dur=0,origin;dur=245
eagleid: 2ff62c9916663408808596459e
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 00c2bb70902b76ab3388a690aaefc24e
29a87d9e1e32ebf8fb537101ebc4b5ab531d5373
2e1526906c637c477ba43b35d046c4f8cd70c85369031d7addf256640a99b18c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=131225
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 08:28:00 GMT
Etag: "6351b5a9-2d7"
Expires: Sat, 22 Oct 2022 20:55:06 GMT
Last-Modified: Thu, 20 Oct 2022 20:55:05 GMT
Server: nginx
Content-Length: 727
www.169uu.com/pfdsp.gif
98.126.88.66200 OK 197 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 512 x 512\012- data
Size 197 kB (196951 bytes)
Hash 3d7167db97416ef41af64af52a01d040
061138fa7d15aa04a6cc7aa9c3dee1aa8286231e
29c78ca33dbc94192155953862a62841ed5e3ce2e015eb26c957a8767c241661
GET /pfdsp.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Thu, 15 Sep 2022 08:49:24 GMT
Accept-Ranges: bytes
ETag: "744c30ee0c8d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:30 GMT
Content-Length: 196951
p3.douyinpic.com/obj/tos-cn-i-dy/a985985b1ad549bfad87f5fbf439b637
47.246.44.229200 OK 274 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/a985985b1ad549bfad87f5fbf439b637
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 200 x 200\012- data
Size 274 kB (273715 bytes)
Hash 861dfe01844a99e30fe199070510d06d
aca4c3d0899d413ebf1e3068a677b88de75339a7
0374e9aba033b4e4330adb7b81dd0a7663c9a85952f21a0e0d4fa6cd548218a6
GET /obj/tos-cn-i-dy/a985985b1ad549bfad87f5fbf439b637 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 273715
date: Thu, 15 Sep 2022 06:37:13 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 15 Sep 2022 06:22:25 GMT
nw-session-id: 2022091514222501021004914525741E544465r01dy
nw-session-trace: 2022-09-15T14:22:25.84893536+08:00 16
x-bdcdn-cache-status: TCP_HIT
x-length: 273715
x-powered-by: ImageX
x-response-date: Thu, 15 Sep 2022 14:22:25 GMT
x-tt-logid: 2022091514222501021004914525741E54
via: n204-098-222, cache20.l2de2[0,0,206-0,H], cache21.l2de2[2,0], cache21.l2de2[2,0], cache5.se1[0,0,200-0,H], cache5.se1[2,0]
x-request-ip: fdbd:dc01:27:681::36
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01fe8538bf26489b235fc90d90b5963b5f889705ab1eaa0996020a921ad3764f74df83d6e44f3f05a96d2cd6b40b7b4827a723faa25b73bf9c66878ef998b9e89dccfde326a30c5aa5d9d3072503eeff91217299919619479f71f92fdbce318e54
x-response-lb: image
ali-swift-global-savetime: 1663223834
age: 3117046
x-cache: HIT TCP_HIT dirn:1:437076453
x-swift-savetime: Thu, 15 Sep 2022 18:42:02 GMT
x-swift-cachetime: 31492512
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916663408809926551e
X-Firefox-Spdy: h2
www.169uu.com/tb5.gif
98.126.88.66200 OK 192 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 192 kB (192402 bytes)
Hash 77ee015eb0fd8accfa384edb32d2de46
4d50345781eae375a82ce1069e6877ad34a38543
2a7a50b069763eca5621b3b84940cf047ee6e82b136e3b639270b318d9a769db
GET /tb5.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 22 Jul 2022 08:44:01 GMT
Accept-Ranges: bytes
ETag: "3994c630a79dd81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:30 GMT
Content-Length: 192402
www.169uu.com/tb7.gif
98.126.88.66200 OK 193 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 326 x 217\012- data
Size 193 kB (193237 bytes)
Hash a15551773d50ba1bc1c91f1ac0e7a45f
603c163ea29d202ec5019fecaf202962892d6500
dac04d049696b8e58a9d9ccc2c2e90f480ad925f796df8ddb5a87f10250bc39e
GET /tb7.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 22 Jul 2022 08:44:00 GMT
Accept-Ranges: bytes
ETag: "111ba630a79dd81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:30 GMT
Content-Length: 193237
n5738.com/9ac3da6a09f34d2d83abfa320eb407d0.gif
45.61.212.56200 OK 113 kB URL HTTP/1.1 n5738.com/9ac3da6a09f34d2d83abfa320eb407d0.gif
IP 45.61.212.56:0
File type GIF image data, version 89a, 320 x 185\012- data
Size 113 kB (113076 bytes)
Hash 293a0887f1ab0b9517c19b77d51626dd
74adbd76d248f6cfc5cffdfaaaaaf942b69b080b
e14931a1bebe13bda41f170c97f7c45f725c13854e3a907c1648a403818326eb
GET /9ac3da6a09f34d2d83abfa320eb407d0.gif HTTP/1.1
Host: n5738.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "631f10a6-1b9b4"
Date: Fri, 14 Oct 2022 09:02:35 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 12 Sep 2022 10:57:42 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-26
Content-Length: 113076
n3839.com/ead9f8832d8343fe95df898429f59614.gif
103.170.15.106200 OK 62 kB URL HTTP/1.1 n3839.com/ead9f8832d8343fe95df898429f59614.gif
IP 103.170.15.106:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 320 x 185\012- data
Hash a39609b18140975f8099754386591e3c
5758379628e0102c65a87bd04cbe5158e43a94b0
fcd1a2d3584bb5dd209871dca8cef09495c9b1a3651ee204f87319e9b4a670de
GET /ead9f8832d8343fe95df898429f59614.gif HTTP/1.1
Host: n3839.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6347a727-f205"
Date: Thu, 13 Oct 2022 06:18:20 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 13 Oct 2022 05:50:31 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-36
Content-Length: 61957
n3839.com/3ed47082261249a0bea0cf1156500a1e.gif
103.170.15.106200 OK 88 kB URL HTTP/1.1 n3839.com/3ed47082261249a0bea0cf1156500a1e.gif
IP 103.170.15.106:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 320 x 185\012- data
Hash 8d00fbc4b81285815eb1358ff6562dee
3b35d424783d0c9f64bafbfa7e427949115a4e15
1a1af43abebdc6ae261953807be21deea00014561de8652a974e518c1958639e
GET /3ed47082261249a0bea0cf1156500a1e.gif HTTP/1.1
Host: n3839.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6347a51b-15974"
Date: Thu, 13 Oct 2022 06:31:28 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 13 Oct 2022 05:41:47 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-36
Content-Length: 88436
n7181.com/bfd75828bf6e4d24b4401b17b2c7b530.gif
103.170.15.98200 OK 495 kB URL HTTP/1.1 n7181.com/bfd75828bf6e4d24b4401b17b2c7b530.gif
IP 103.170.15.98:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 560 x 70\012- data
Size 495 kB (494662 bytes)
Hash e4ece4bba12fff4d86124fe59fc4e4dd
5f157919174ddd4ff1daf164b0f368e9eba0c8df
a00b87974d3b15159bbddda1416c91beb2b8a700c01186ddd4d3cc8488d8781d
GET /bfd75828bf6e4d24b4401b17b2c7b530.gif HTTP/1.1
Host: n7181.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6347a510-78c46"
Date: Fri, 14 Oct 2022 03:23:33 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 13 Oct 2022 05:41:36 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-28
Content-Length: 494662
www.169uu.com/tb8.gif
98.126.88.66200 OK 80 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 3b6a5179b4a06bb8c98cab3aeaa698ed
c798dc8b16e3feaf91392cfa1cf839b4556fc243
64d5d65c65f47564411cce16d70dcca2aa83d5ad212ac46d3d9d0ba4ab8aee96
GET /tb8.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Thu, 22 Sep 2022 17:06:56 GMT
Accept-Ranges: bytes
ETag: "02681b8a5ced81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:31 GMT
Content-Length: 80545
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14432
Expires: Fri, 21 Oct 2022 12:28:33 GMT
Date: Fri, 21 Oct 2022 08:28:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14432
Expires: Fri, 21 Oct 2022 12:28:33 GMT
Date: Fri, 21 Oct 2022 08:28:01 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 4976b4a62510d76c27b24270069be948
995d3b7291678d909d500e1085679531f1cd1868
e742ca4b06b857e7ecfcb81e1c4642958b2a6ab09439a6971ebe14b987753bfe
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:01 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 07:42:50 GMT
Expires: Fri, 28 Oct 2022 07:42:49 GMT
Etag: "995d3b7291678d909d500e1085679531f1cd1868"
Cache-Control: max-age=601487,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e0b98a50b06-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14432
Expires: Fri, 21 Oct 2022 12:28:33 GMT
Date: Fri, 21 Oct 2022 08:28:01 GMT
Connection: keep-alive
www.169uu.com/19cc960.gif
98.126.88.66200 OK 600 kB URL HTTP/1.1 www.169uu.com/19cc960.gif
IP 98.126.88.66:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 600 kB (600380 bytes)
Hash 608883a967066ad6247da966f195f994
212111740ff076f0973ef6d808a60035cc8efd19
e40287f0abe9ad05ec569bd24a20e0227ecbe69d568a6350ef84e5c6912393fe
GET /19cc960.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Thu, 20 Oct 2022 09:12:44 GMT
Accept-Ranges: bytes
ETag: "0ee41c64e4d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:29 GMT
Content-Length: 600380
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c6ab9a31e082a0c0eaab2a0f526495a
c30e9954dcef66d4f14ac8618ebf2a1da0b3e12a
ca3a602c8af7b3e87957e54910663ea2bb72d008e14719af0f9fd7bd1a949f3e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6551
x-amzn-requestid: 4deffe4d-e687-436e-938c-f8128bb84376
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zql_MG5QoAMFahg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6340e9fa-66d4e2210fda5a80155f2466;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 03:09:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V5ilfg4GVL-HvWbuZrvFkZynDNCZDiBVNTDWjLdr2ZCLjH04NW3yqw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 07:24:29 GMT
age: 3812
etag: "c30e9954dcef66d4f14ac8618ebf2a1da0b3e12a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F322fee8a-3a93-43f6-9bdf-ebca30a9ff7c.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F322fee8a-3a93-43f6-9bdf-ebca30a9ff7c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 193ab40cc1419fd40a5a4959e4ed691e
6a0968a6985802ce9a3d1b9d76401b8593692e95
118d7cd24eb412689bc6107f97789eee92cb4f37ec2c62fe9547afb5ef628dcb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F322fee8a-3a93-43f6-9bdf-ebca30a9ff7c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7815
x-amzn-requestid: 4bf14142-9610-4ae4-b69c-e87efb86de91
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aBroJElEoAMFYog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634a2633-2266df2c0cc277aa0485580e;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 03:17:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: jmVbSGQHrCkVhtHYRPMIUcWsTtT1DxepWbb0s2EkDxTjDG3-ROGClg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 05:45:21 GMT
age: 9760
etag: "6a0968a6985802ce9a3d1b9d76401b8593692e95"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bd5e942443ffd011faf10dc88d92081
beff4ae9e24599addce8a961c955788045c56645
2c59d984971e73d497975032c23700b5602fccf403f4683a8047f5f42d4e261f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10973
x-amzn-requestid: 081470ca-0107-4052-be55-9c713105bb27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUr-TEKPoAMFZfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c05b-17199f8c0fc0fb7443a902f1;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:40:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: h8elwC37DfS3PoG9NuRyfp-bqOoLi9KWeSWvwuY4mFMGG4HHC3jZAg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 22:17:34 GMT
age: 36627
etag: "beff4ae9e24599addce8a961c955788045c56645"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d369f8641d3489521afd62e112136f5b
088a3290733195efeb1d79dcc995c22b603bece0
b18601499cbb7bbcc1eaa464cec12c0287f8fab52a89e97973bd78fcb26ea918
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9195
x-amzn-requestid: e40418b8-2272-44a3-83d6-9465798793ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKLEk4oAMFsSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-34994aca1e13dcab306bf1a4;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86MQ2WBrOZ2pH88f27PxZ9f8tuu_9u6qNzyr4LZz6-yNbfjJdjgr0w==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 21:48:08 GMT
age: 38393
etag: "088a3290733195efeb1d79dcc995c22b603bece0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F805d0def-ef24-430d-863a-03ece27a794b.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F805d0def-ef24-430d-863a-03ece27a794b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 007fdbdba95c9016fb61e4b024ea0af5
edc05293c9801a5bcf95b83af32b95bb01438015
9fcd7213a66462fc9ad5d42365066b4dc5ff3b21c55350131cfc6771a51c9988
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F805d0def-ef24-430d-863a-03ece27a794b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12415
x-amzn-requestid: 52f3bcfa-c0c3-43c4-bfeb-31b2dfecd9f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aB6gUG6xoAMFexw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634a3e01-3a5bd5e7303c67ae5c47f73d;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 04:58:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5Z6W7ohSh26RdI4JbCGiMQObDCt8LCCdFpjV2nqVXJPanrVqZsMHWA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 13:06:58 GMT
age: 69663
etag: "edc05293c9801a5bcf95b83af32b95bb01438015"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8fd73-9b5d-4b49-bb7c-ad83d6ee29a7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8fd73-9b5d-4b49-bb7c-ad83d6ee29a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2bd9e504ae33c774e41c4035c72dc29d
9103503978d592ebcd1d06db2fb4701b2340ed7d
563f0bfead286f83690e08c1f27358b99b367f866996a5c46b89638dc0db1033
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8fd73-9b5d-4b49-bb7c-ad83d6ee29a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9193
x-amzn-requestid: 54aaa73e-c50d-4168-8751-1412c88a548e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aVBttFGVIAMFgXg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351e324-106401f979f891a158187003;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 00:09:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xGO7Lb8Zdn6K1VQNiK6CGv1VNPJ8LQIvMvIU6-UiviPR5ndzhwZryA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 00:23:21 GMT
etag: "9103503978d592ebcd1d06db2fb4701b2340ed7d"
content-type: image/jpeg
age: 29080
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.169uu.com/tb10.gif
98.126.88.66200 OK 75 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 200 x 200\012- data
Hash d22916c67c4fa10ec002d7510d251f66
808541d87c7a038058205fb55d7fe7470c49af28
6e9f841b23232e619b1457963ea9403d34a57e61cec64c7ba5b9bb8529099dbb
GET /tb10.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Thu, 22 Sep 2022 17:07:28 GMT
Accept-Ranges: bytes
ETag: "e2ca81cba5ced81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:31 GMT
Content-Length: 75067
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 4976b4a62510d76c27b24270069be948
995d3b7291678d909d500e1085679531f1cd1868
e742ca4b06b857e7ecfcb81e1c4642958b2a6ab09439a6971ebe14b987753bfe
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:01 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 07:42:50 GMT
Expires: Fri, 28 Oct 2022 07:42:49 GMT
Etag: "995d3b7291678d909d500e1085679531f1cd1868"
Cache-Control: max-age=601487,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e0b99511c0a-OSL
www.169uu.com/bet320.gif
98.126.88.66200 OK 51 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 320 x 190\012- data
Hash 30c05c5840f8a4047cadeaa14c08f744
90f0d31cab928a59c606e6f0f48915cda14c8f83
d364a83d90d4f8895139311c38605e8d0f73ada6b82ef6d8f46b69f96dc1d274
GET /bet320.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Sun, 16 Oct 2022 13:37:50 GMT
Accept-Ranges: bytes
ETag: "1cb8797c64e1d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:31 GMT
Content-Length: 50971
n5319.com/9660181560014bdeb4b47ac31f4e3472.gif
103.170.15.106200 OK 738 kB URL HTTP/1.1 n5319.com/9660181560014bdeb4b47ac31f4e3472.gif
IP 103.170.15.106:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 70\012- data
Size 738 kB (738093 bytes)
Hash 815aa9168c0fd6457bb1e9ad28facade
49d4732b828ede8a6b9cd54fbe68d8e93c32978d
f60cde1fae6462e33e470d8e7f56cac5e0840a1968915414c5a3cd384e3fa087
GET /9660181560014bdeb4b47ac31f4e3472.gif HTTP/1.1
Host: n5319.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "631f1090-b432d"
Date: Fri, 07 Oct 2022 12:36:32 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 12 Sep 2022 10:57:20 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-36
Content-Length: 738093
www.169uu.com/tb11.gif
98.126.88.66200 OK 398 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 180 x 180\012- data
Size 398 kB (397727 bytes)
Hash 1de37195ea80dbe24f90727c3998f0a0
cbcb8876070bfd3983faf77e716a851e7f930e2b
3f9532821fe1c9f1093a42527e281f2eba898a28a9502c956c209775ace1fb30
GET /tb11.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Thu, 22 Sep 2022 17:07:09 GMT
Accept-Ranges: bytes
ETag: "93e0e7bfa5ced81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:30 GMT
Content-Length: 397727
www.169uu.com/8499320.gif
98.126.88.66200 OK 224 kB URL HTTP/1.1 www.169uu.com/8499320.gif
IP 98.126.88.66:0
File type GIF image data, version 89a, 320 x 190\012- data
Size 224 kB (224514 bytes)
Hash f4c4fc4e2bd5ecabec47ba40ab2c5c2f
6bc77b6a7d0c411e32f6f04578ec02b91435c41b
9e99f149c1e14dc2432c24ddeba19d8154d5cd1f88fd8d03e63c35f4013a2a00
GET /8499320.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Sun, 16 Oct 2022 13:45:22 GMT
Accept-Ranges: bytes
ETag: "9e5eab8965e1d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:31 GMT
Content-Length: 224514
u0079.com/02dbd5449bfd481a8559f6ff549b5bb2.gif
20.24.102.75200 OK 212 kB URL HTTP/1.1 u0079.com/02dbd5449bfd481a8559f6ff549b5bb2.gif
IP 20.24.102.75:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 212 kB (212090 bytes)
Hash 7748134fdc0cc1835a47a2e1f3f3f18e
45c533fb73f4d6cc4f882fdaa1bf8c7cf72c6cb6
ae6f83fd285258413481d2a4a15128dd099e1369bc01b35ec35f33784ef59627
GET /02dbd5449bfd481a8559f6ff549b5bb2.gif HTTP/1.1
Host: u0079.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:00 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 16 Oct 2022 11:12:55 GMT
ETag: W/"634be737-3f4d0"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
95659331957.com/67bc9dcca6914cdeaf38b80cb4f0a634.gif
45.61.212.56200 OK 580 kB URL HTTP/1.1 95659331957.com/67bc9dcca6914cdeaf38b80cb4f0a634.gif
IP 45.61.212.56:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 580 kB (580315 bytes)
Hash 1a429adb0604b6dd52d269910a16df11
0e6e0b7135822c02ae159c14a1b4aebfa75b0982
819a4224605c47089d7456012a957beef9f0a59191a8a63e4c0aefa6c3ece6b7
Analyzer Verdict Alert quad9 Sinkholed
GET /67bc9dcca6914cdeaf38b80cb4f0a634.gif HTTP/1.1
Host: 95659331957.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6347a577-8dadb"
Date: Fri, 14 Oct 2022 03:29:43 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 13 Oct 2022 05:43:19 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-26
Content-Length: 580315
www.169uu.com/252.gif
98.126.88.66200 OK 22 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 200 x 100\012- data
Hash 9877d859ee80b33dd5ef616579994741
09c7ccbe06572c9ab7638df2181aa4b331505c7a
9465c33dba0c4a8f1f8e2f22db7f1c3060182c41654f96672794a99f89c119e3
GET /252.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Sat, 07 May 2022 13:47:16 GMT
Accept-Ranges: bytes
ETag: "04a65f61862d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:31 GMT
Content-Length: 21558
www.169uu.com/tb9.gif
98.126.88.66200 OK 230 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 230 kB (230102 bytes)
Hash 7b537144e5c643cce76053cd4b23357c
0d69f73fe409641ccca83ddcc8487cecea3753e9
74ee9e4b7f3b6e1fd9f94653248ea5584f94de4f9a47e009c6624d14c070ed99
GET /tb9.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Thu, 22 Sep 2022 17:06:31 GMT
Accept-Ranges: bytes
ETag: "e476a4a9a5ced81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:31 GMT
Content-Length: 230102
hm.baidu.com/hm.js?fbb7e8b302a6ffdf7325d4958b51e7c7
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?fbb7e8b302a6ffdf7325d4958b51e7c7
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash dfa3602dfe22fc460991d8dc2145e881
5ad443fb815e884f248aa07a780bf87f1fdaf1fe
2a2325606216ac0d5570903d6661c3ff80fe6cdfa796d9d4a0ac4066c24bcccc
GET /hm.js?fbb7e8b302a6ffdf7325d4958b51e7c7 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11329
Content-Type: application/javascript
Date: Fri, 21 Oct 2022 08:28:01 GMT
Etag: c00dba240f7a4d3448c8775b9a362505
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8D9CA39AF580C84E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
www.169uu.com/253.gif
98.126.88.66200 OK 213 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 600 x 350\012- data
Size 213 kB (212947 bytes)
Hash 0d38476bae9ce2a19e7baf47c0305e96
89511dca1e6b1266e418afb29ab7194f0e9b1d2a
1f79e978236e81f405e186385cb24d1e71352a7f1c7ad15fa59d4d7cd14a67ec
GET /253.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Sat, 07 May 2022 13:47:26 GMT
Accept-Ranges: bytes
ETag: "02b5bfc1862d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:31 GMT
Content-Length: 212947
hm.baidu.com/hm.js?b80522d91e8bac373bffa6d8507deed7
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?b80522d91e8bac373bffa6d8507deed7
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash 0b6d4511d07149bc5dbe1dbb9826e7a6
e0e5e751a68c60d5edbccb4ca57c951b5961fe77
a13f6c84849acf6ecd205339fe37d719b576fb3e8cc2a93bfc8a3f65f8abb4c4
GET /hm.js?b80522d91e8bac373bffa6d8507deed7 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11329
Content-Type: application/javascript
Date: Fri, 21 Oct 2022 08:28:01 GMT
Etag: b530a035789830eb2ce6898f5cd8b5c0
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A7F905505D5A7798; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
www.169uu.com/251.gif
98.126.88.66200 OK 678 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 270 x 160\012- data
Size 678 kB (677521 bytes)
Hash 94051cb1d1b77200b4462281a864b96e
e5b468a1b2f4bbdda1b6a3a0df2dcce6b3de7e06
d44d0d2dd188024b60ec38cb3f3ea10c080690175e923f90c9c2a2e862670c84
GET /251.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Sat, 07 May 2022 13:46:50 GMT
Accept-Ranges: bytes
ETag: "01e6e61862d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:31 GMT
Content-Length: 677521
hnr.svdpgmt.cn/j/156935
203.107.60.95200 OK 6.1 kB IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type ASCII text, with very long lines (1107)
Hash e4c9a0ead134f2a7ea5a4a31a7303b4c
475773e71d01c38140d3ad34c0d457b8d7ec8b59
e10988ac98429200bcfc55a02e1ce21c272182b3870f9e915090df85c49c892e
GET /j/156935 HTTP/1.1
Host: hnr.svdpgmt.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:01 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=9ea79d43acbee887758b922bf35305769a2dfdeb5c208264035a03e2ddf96120; Path=/; HttpOnly
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Content-Encoding: gzip
Vary: Accept-Encoding
hm.baidu.com/hm.js?01c1fa948560a0c7e30f7858b732d8ec
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?01c1fa948560a0c7e30f7858b732d8ec
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash 3411f10f74a2fdb9355547570b4db4b2
748d262e1ff573c01ead5b7e203ffb64f9e3d599
4f0d24ff2fdc28b97049c71e0d2e7fb3a15e55e21996e8d037b9dad4a3458e1e
GET /hm.js?01c1fa948560a0c7e30f7858b732d8ec HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11329
Content-Type: application/javascript
Date: Fri, 21 Oct 2022 08:28:01 GMT
Etag: 8a95d5aea32f2c54c301deffebb95561
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=F9E4FC79F3EE4FC6; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?71ee2868d55df0e2975eb376098651cb
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?71ee2868d55df0e2975eb376098651cb
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 3b962e7d617c2a93a81f69af213bd37b
289a878f6e4c77bcc916718418940e0b2dc120e3
37969c6a2f9669350301cb7e28e9d55d52d31723fd79fc5bcf84b21c3ca0d659
GET /hm.js?71ee2868d55df0e2975eb376098651cb HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Fri, 21 Oct 2022 08:28:01 GMT
Etag: e1f31ed9f01bd98c8dc0388dae454534
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=819F50C5CFEB4C78; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?166e3ca93b3ec424128484b55f16cbeb
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?166e3ca93b3ec424128484b55f16cbeb
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash c3fa12acf527ccb7389a24f7e397367a
c103a7a7edd18620dac491d76e080b10e9d27dcd
0574bc3e710b3c73aed7d1466cdf24f81426dcc87704a3cea8c624c015a88fe2
GET /hm.js?166e3ca93b3ec424128484b55f16cbeb HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11329
Content-Type: application/javascript
Date: Fri, 21 Oct 2022 08:28:01 GMT
Etag: f6eb292a14ab375e40eedf923bae5a90
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=45CA89DD819A51E6; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
www.169uu.com/250.gif
98.126.88.66200 OK 525 kB IP 98.126.88.66:0
File type GIF image data, version 89a, 200 x 113\012- data
Size 525 kB (524580 bytes)
Hash b9fc8498d3720ec18cf65af42ea078c9
bb1907e1ac1324a3940b2dc8bda0260805da131b
d7d83489063efff93341cd4f9470f92c4524ee43563be8ea026e84df650d0e3d
GET /250.gif HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Sat, 07 May 2022 13:47:04 GMT
Accept-Ranges: bytes
ETag: "03c3eef1862d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:31 GMT
Content-Length: 524580
hm.baidu.com/hm.js?86961013e4dcc06728bf0416a5f4c506
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?86961013e4dcc06728bf0416a5f4c506
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (618)
Hash 19889255482e9b22248e742357cd88ee
7ca47d303b4c6a560bceefc4bee61c4f62ed20ef
3a67d859f28a1e6727befe6de7f8168c8e8dfe0c8b20c6ccc7681e083645dd19
GET /hm.js?86961013e4dcc06728bf0416a5f4c506 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11331
Content-Type: application/javascript
Date: Fri, 21 Oct 2022 08:28:01 GMT
Etag: 22c30db0c0798ddcfcdd095dedf2e168
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D0D4E163C752E341; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=236052805&si=fbb7e8b302a6ffdf7325d4958b51e7c7&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=236052805&si=fbb7e8b302a6ffdf7325d4958b51e7c7&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=236052805&si=fbb7e8b302a6ffdf7325d4958b51e7c7&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 21 Oct 2022 08:28:01 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=6ED07413A8B274B5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1420761230&si=b80522d91e8bac373bffa6d8507deed7&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1420761230&si=b80522d91e8bac373bffa6d8507deed7&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1420761230&si=b80522d91e8bac373bffa6d8507deed7&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 21 Oct 2022 08:28:01 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=07180470065B9894; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hnr.svdpgmt.cn/j/156936
203.107.60.95200 OK 6.1 kB IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type ASCII text, with very long lines (1107)
Hash fad43c2fd6c1cad73bf8f3696d28cd1a
01eb6ebf26ca309b4839ef27f379db2f4b6761f2
2f3329b9a14be5189a628db2aab1ad651c1e60ab641c543b75c24766867ad410
GET /j/156936 HTTP/1.1
Host: hnr.svdpgmt.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:01 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=44f1a082fd36f5e7006e873a4019cbfb38a39bc416be86da54c8c38d059c3fb7; Path=/; HttpOnly
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
www.169uu.com/bg.jpg
98.126.88.66200 OK 213 kB IP 98.126.88.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 1920x956, components 3\012- data
Size 213 kB (213188 bytes)
Hash aef0d944ee72606e7c5bd24ee7fbd66b
0b6c2b9e20d14c73c1d0926639b5624a721a416b
73b5d24dd32938284a2063a73cf76bb4e9e14febcb712695629f51f6de5fb2a5
GET /bg.jpg HTTP/1.1
Host: www.169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Wed, 19 Jan 2022 10:08:30 GMT
Accept-Ranges: bytes
ETag: "34f243821cdd81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:30 GMT
Content-Length: 213188
hm.baidu.com/hm.js?8808c453e04941cefdf86ca964a5377b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?8808c453e04941cefdf86ca964a5377b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash 2803ea4ae94e7d4b51a2c6ac931ef7ab
eab8b929fc37a791912168c26815a5c76aaf44fa
2024e9184763110b136a15415e805ceafa124086bdfb08a6cc8c59289ab6e73e
GET /hm.js?8808c453e04941cefdf86ca964a5377b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11329
Content-Type: application/javascript
Date: Fri, 21 Oct 2022 08:28:01 GMT
Etag: d7229944a736ab52f7519ef87c295dea
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=3938CB90A9278725; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=671957647&si=01c1fa948560a0c7e30f7858b732d8ec&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=671957647&si=01c1fa948560a0c7e30f7858b732d8ec&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=671957647&si=01c1fa948560a0c7e30f7858b732d8ec&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 21 Oct 2022 08:28:02 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=63175C688AF09D94; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=775210424&si=166e3ca93b3ec424128484b55f16cbeb&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=775210424&si=166e3ca93b3ec424128484b55f16cbeb&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=775210424&si=166e3ca93b3ec424128484b55f16cbeb&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 21 Oct 2022 08:28:02 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=04D1209EAEE99451; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1060405695&si=71ee2868d55df0e2975eb376098651cb&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1060405695&si=71ee2868d55df0e2975eb376098651cb&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1060405695&si=71ee2868d55df0e2975eb376098651cb&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 21 Oct 2022 08:28:02 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=616AE1E01322F78F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=942982267&si=86961013e4dcc06728bf0416a5f4c506&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=942982267&si=86961013e4dcc06728bf0416a5f4c506&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=942982267&si=86961013e4dcc06728bf0416a5f4c506&v=1.2.97&lv=1&sn=47984&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 21 Oct 2022 08:28:02 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=98304EB2E64E1980; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5d7d4dc82a4f543c0cd86524778af03e
018f59f9105a7112f4141c0bc42bc8b7bad3f61b
16ed95d590c7c5a70a835503d91c90360d0afd275d7e957ff7a9efcc0e261562
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 18 Oct 2022 04:07:47 GMT
Expires: Tue, 25 Oct 2022 04:07:46 GMT
Etag: "018f59f9105a7112f4141c0bc42bc8b7bad3f61b"
Cache-Control: max-age=329383,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e12e9631c0a-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 297f50e18653c68ba2005b34dd4cd494
5b27b86e4035e42edfb552d772008dc51e94f8ad
4ba2bfaf4fef4421a6e0e908cbf9b8a807c16e6b1e937b828321557ae8494015
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 07:40:53 GMT
Expires: Thu, 27 Oct 2022 07:40:52 GMT
Etag: "5b27b86e4035e42edfb552d772008dc51e94f8ad"
Cache-Control: max-age=514969,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e12d8f30b06-OSL
hm.baidu.com/hm.js?8149876294d86d0ed1db82fd8e72baf2
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?8149876294d86d0ed1db82fd8e72baf2
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash f13a2b7b16f25bcd9165454001bec1f8
70828744aaec8f37853288591c48ce211cfebbe0
19bc540d87877476080719e2c88de9d6d8057a7a50b2696094a4a7d68e2cf6fb
GET /hm.js?8149876294d86d0ed1db82fd8e72baf2 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11329
Content-Type: application/javascript
Date: Fri, 21 Oct 2022 08:28:02 GMT
Etag: 004c7b7203eb398583f9f7547cafee6c
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=38F009C65D15EFE2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?71a181015cd087dce6fc3f1a27416d20
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?71a181015cd087dce6fc3f1a27416d20
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash f9bc588f1a5a18c78f74e6b6493d500e
3c8baf19a343520f36d199ddea583073650e0ab9
5e964c6a8259b1cd7761074bebf803cf5984cfc0fd92f58f9414426d11044177
GET /hm.js?71a181015cd087dce6fc3f1a27416d20 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11329
Content-Type: application/javascript
Date: Fri, 21 Oct 2022 08:28:02 GMT
Etag: bb66f3e4f45d1b0346e94ea77b3715e7
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=FEAB336BD7DA16F8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?0b30f9881f6a871b43d6ef23ab7e401a
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?0b30f9881f6a871b43d6ef23ab7e401a
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash 36abd3fab8d212d1e6276575ff36b912
cd2e18f7b7936020b20a921eba993232e5a94f2a
77a199325999616d8083263f68a885d372708a62f429f3f9567974d069b1f0b6
GET /hm.js?0b30f9881f6a871b43d6ef23ab7e401a HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11329
Content-Type: application/javascript
Date: Fri, 21 Oct 2022 08:28:02 GMT
Etag: 5bb88d43728f2dc05eae10f7ba7d04c1
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8FBD3CB5B7CEEB6C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1147640032&si=8808c453e04941cefdf86ca964a5377b&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1147640032&si=8808c453e04941cefdf86ca964a5377b&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1147640032&si=8808c453e04941cefdf86ca964a5377b&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 21 Oct 2022 08:28:02 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=A244DF36E1F7D4F6; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 297f50e18653c68ba2005b34dd4cd494
5b27b86e4035e42edfb552d772008dc51e94f8ad
4ba2bfaf4fef4421a6e0e908cbf9b8a807c16e6b1e937b828321557ae8494015
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 07:40:53 GMT
Expires: Thu, 27 Oct 2022 07:40:52 GMT
Etag: "5b27b86e4035e42edfb552d772008dc51e94f8ad"
Cache-Control: max-age=514969,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e148ac91c0a-OSL
kmr.mjnbrt.xyz/mnrt/kmrr.png
23.224.92.244200 OK 85 kB URL HTTP/1.1 kmr.mjnbrt.xyz/mnrt/kmrr.png
IP 23.224.92.244:0
File type PNG image data, 2084 x 2084, 8-bit/color RGBA, non-interlaced\012- data
Hash 3c80359bedd35432aea1539a1edcd122
62b0eb9a7eef9b048ab55e3e8d8486a43d5ef8db
74df8ccb6d42d5ee40aaffccd0246978eca881c260c8505afb9f71f85fe17ee2
Analyzer Verdict Alert quad9 Sinkholed
GET /mnrt/kmrr.png HTTP/1.1
Host: kmr.mjnbrt.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 21 Oct 2022 08:28:02 GMT
Content-Type: image/png
Content-Length: 84560
Last-Modified: Thu, 20 Oct 2022 08:39:59 GMT
Connection: keep-alive
ETag: "6351095f-14a50"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 0b2d0e884ab0fc43017b255643a5357e
4c67049782b96fb58359e27a3a1092e4e996e99f
1cd23b5c328f2439a1ec6286d675e71e705fc4353cc78ae62fa13588294dd8d0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 21:54:47 GMT
Expires: Thu, 27 Oct 2022 21:54:46 GMT
Etag: "4c67049782b96fb58359e27a3a1092e4e996e99f"
Cache-Control: max-age=566202,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e177e4e0b06-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 0b2d0e884ab0fc43017b255643a5357e
4c67049782b96fb58359e27a3a1092e4e996e99f
1cd23b5c328f2439a1ec6286d675e71e705fc4353cc78ae62fa13588294dd8d0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 21:54:47 GMT
Expires: Thu, 27 Oct 2022 21:54:46 GMT
Etag: "4c67049782b96fb58359e27a3a1092e4e996e99f"
Cache-Control: max-age=566202,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e179b930b45-OSL
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1619036624&si=8149876294d86d0ed1db82fd8e72baf2&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1619036624&si=8149876294d86d0ed1db82fd8e72baf2&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1619036624&si=8149876294d86d0ed1db82fd8e72baf2&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 21 Oct 2022 08:28:03 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=D289C901D1BA65EC; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1553089827&si=71a181015cd087dce6fc3f1a27416d20&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1553089827&si=71a181015cd087dce6fc3f1a27416d20&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1553089827&si=71a181015cd087dce6fc3f1a27416d20&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 21 Oct 2022 08:28:03 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=BDC6B9FDE8C4CB0D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1136585447&si=0b30f9881f6a871b43d6ef23ab7e401a&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1136585447&si=0b30f9881f6a871b43d6ef23ab7e401a&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1136585447&si=0b30f9881f6a871b43d6ef23ab7e401a&v=1.2.97&lv=1&sn=47985&r=0&ww=1280&ct=!!&u=http%3A%2F%2F169uu.com%2F&tt=uu%E5%85%8D%E8%B4%B9%E5%9C%A8%E7%BA%BF%E7%94%B5%E5%BD%B1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 21 Oct 2022 08:28:03 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E4E08766B601C266; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4d4f4c4949f70ff944430155cdc87972
5ecbf416e27c95a4f401324f32d34be864fa10c0
49620d89e04480853d7168a593342fc0d58d2d716acf648a1b3c1ecf02f4017e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 14:37:16 GMT
Expires: Thu, 27 Oct 2022 14:37:15 GMT
Etag: "5ecbf416e27c95a4f401324f32d34be864fa10c0"
Cache-Control: max-age=539951,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e17ea7db4f3-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 0b2d0e884ab0fc43017b255643a5357e
4c67049782b96fb58359e27a3a1092e4e996e99f
1cd23b5c328f2439a1ec6286d675e71e705fc4353cc78ae62fa13588294dd8d0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 21:54:47 GMT
Expires: Thu, 27 Oct 2022 21:54:46 GMT
Etag: "4c67049782b96fb58359e27a3a1092e4e996e99f"
Cache-Control: max-age=566202,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e178d751c0a-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4d4f4c4949f70ff944430155cdc87972
5ecbf416e27c95a4f401324f32d34be864fa10c0
49620d89e04480853d7168a593342fc0d58d2d716acf648a1b3c1ecf02f4017e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 14:37:16 GMT
Expires: Thu, 27 Oct 2022 14:37:15 GMT
Etag: "5ecbf416e27c95a4f401324f32d34be864fa10c0"
Cache-Control: max-age=539951,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e17dea50b06-OSL
gnrty.kmjkwe.xyz/iubjfawp/bjkafw613.gif
23.224.92.244200 OK 198 kB URL HTTP/1.1 gnrty.kmjkwe.xyz/iubjfawp/bjkafw613.gif
IP 23.224.92.244:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 198 kB (198479 bytes)
Hash 671293479316a9d7e101f03804395de8
0cf6237db1dcb897700fff248b377847b69b23e0
833d9cb61a4f0dcf062185cc8c6f7e5efeb25e8b009cee7c27ee41e95db896ba
GET /iubjfawp/bjkafw613.gif HTTP/1.1
Host: gnrty.kmjkwe.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 21 Oct 2022 08:28:02 GMT
Content-Type: image/gif
Content-Length: 198479
Last-Modified: Thu, 20 Oct 2022 08:39:58 GMT
Connection: keep-alive
ETag: "6351095e-3074f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 6e8f94358cf75380001af1182e395a24
93229d45f227cfb03180c21a2e255774ff55954e
1e963b0ccaec79bbb605f4e28cbe4cb6534014faac23388aa7badc9459d76218
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 20 Oct 2022 19:45:28 GMT
Expires: Thu, 27 Oct 2022 19:45:27 GMT
Etag: "93229d45f227cfb03180c21a2e255774ff55954e"
Cache-Control: max-age=558443,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75d89e181f97b4ee-OSL
gnrty.kmjkwe.xyz/kmnbhevhfjrtetd/d.gif
23.224.92.244200 OK 91 kB URL HTTP/1.1 gnrty.kmjkwe.xyz/kmnbhevhfjrtetd/d.gif
IP 23.224.92.244:0
File type GIF image data, version 89a, 600 x 200\012- data
Hash f32acea08cf381eb422e9fd2437bb611
57f4855043f3cb3a1e3fb80a7644ff460aac09da
6c4ff7aff5ad6cd0e5acdf8d65fcf77205e15f3fd539d5887b2164356e4a6d45
GET /kmnbhevhfjrtetd/d.gif HTTP/1.1
Host: gnrty.kmjkwe.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 21 Oct 2022 08:28:02 GMT
Content-Type: image/gif
Content-Length: 90993
Last-Modified: Thu, 20 Oct 2022 08:39:58 GMT
Connection: keep-alive
ETag: "6351095e-16371"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pdl.ixelrsd.cn/stats.php?adsid=5967576&planid=30584&uid=11964&siteid=null&plantype=cpv&zoneid=156935&adtplid=19&sep=10
203.107.60.95200 OK 20 B URL HTTP/1.1 pdl.ixelrsd.cn/stats.php?adsid=5967576&planid=30584&uid=11964&siteid=null&plantype=cpv&zoneid=156935&adtplid=19&sep=10
IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /stats.php?adsid=5967576&planid=30584&uid=11964&siteid=null&plantype=cpv&zoneid=156935&adtplid=19&sep=10 HTTP/1.1
Host: pdl.ixelrsd.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=a6cae077c2cd4ba12f9df0f093415ea87f826f32ccee19c0520aec8de88602ec; Path=/; HttpOnly
Server: nginx
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
pdl.ixelrsd.cn/effect.php?type=ecv&planid=30273&adsid=5964461&zoneid=156936&uid=11964&adtplid=1001&plantype=cpv
203.107.60.95200 OK 20 B URL HTTP/1.1 pdl.ixelrsd.cn/effect.php?type=ecv&planid=30273&adsid=5964461&zoneid=156936&uid=11964&adtplid=1001&plantype=cpv
IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /effect.php?type=ecv&planid=30273&adsid=5964461&zoneid=156936&uid=11964&adtplid=1001&plantype=cpv HTTP/1.1
Host: pdl.ixelrsd.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=13b492e426fba29b52759b0950cf0fd1048dde14aea98f116ecff675845efce4; Path=/; HttpOnly
Server: nginx
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
pdl.ixelrsd.cn/effect.php?type=ecv&planid=30584&adsid=5967576&zoneid=156935&uid=11964&adtplid=19&plantype=cpv
203.107.60.95200 OK 20 B URL HTTP/1.1 pdl.ixelrsd.cn/effect.php?type=ecv&planid=30584&adsid=5967576&zoneid=156935&uid=11964&adtplid=19&plantype=cpv
IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /effect.php?type=ecv&planid=30584&adsid=5967576&zoneid=156935&uid=11964&adtplid=19&plantype=cpv HTTP/1.1
Host: pdl.ixelrsd.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=cf55eee99cbf053b9e7058975de466e894483dc1fa2d6d9aa582ecb006646d6b; Path=/; HttpOnly
Server: nginx
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
ome.wdgixex.cn/c.php?s=JnpvbmVpZD0xNTY5MzYmc2l0ZWlkPSZ1aWQ9MTE5NjQmYWRzaWQ9NTk2NDQ2MSZwbGFuaWQ9MzAyNzMmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRmhodTEyMi5jb20lMkYxLmh0bWwlM0ZjaGFubmVsQ29kZSUzRGZrMjkmdnRpbWU9MjAyMi0xMC0yMSAxNjoyODowMSZpcD05MS45MC40Mi4xNTQ=;d471961906e8f30f9f32e35d5fb071ed;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj0meD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGMTY5dXUuY29tJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD11dSVFNSU4NSU4RCVFOCVCNCVCOSVFNSU5QyVBOCVFNyVCQSVCRiVFNyU5NCVCNSVFNSVCRCVCMSZsPWVuLVVTJmM9MSZoPTExNzk=
203.107.60.95200 OK 20 B URL HTTP/1.1 ome.wdgixex.cn/c.php?s=JnpvbmVpZD0xNTY5MzYmc2l0ZWlkPSZ1aWQ9MTE5NjQmYWRzaWQ9NTk2NDQ2MSZwbGFuaWQ9MzAyNzMmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRmhodTEyMi5jb20lMkYxLmh0bWwlM0ZjaGFubmVsQ29kZSUzRGZrMjkmdnRpbWU9MjAyMi0xMC0yMSAxNjoyODowMSZpcD05MS45MC40Mi4xNTQ=;d471961906e8f30f9f32e35d5fb071ed;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj0meD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGMTY5dXUuY29tJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD11dSVFNSU4NSU4RCVFOCVCNCVCOSVFNSU5QyVBOCVFNyVCQSVCRiVFNyU5NCVCNSVFNSVCRCVCMSZsPWVuLVVTJmM9MSZoPTExNzk=
IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /c.php?s=JnpvbmVpZD0xNTY5MzYmc2l0ZWlkPSZ1aWQ9MTE5NjQmYWRzaWQ9NTk2NDQ2MSZwbGFuaWQ9MzAyNzMmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRmhodTEyMi5jb20lMkYxLmh0bWwlM0ZjaGFubmVsQ29kZSUzRGZrMjkmdnRpbWU9MjAyMi0xMC0yMSAxNjoyODowMSZpcD05MS45MC40Mi4xNTQ=;d471961906e8f30f9f32e35d5fb071ed;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj0meD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGMTY5dXUuY29tJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD11dSVFNSU4NSU4RCVFOCVCNCVCOSVFNSU5QyVBOCVFNyVCQSVCRiVFNyU5NCVCNSVFNSVCRCVCMSZsPWVuLVVTJmM9MSZoPTExNzk= HTTP/1.1
Host: ome.wdgixex.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST,GET,OPTIONS
Set-Cookie: aliyungf_tc=8bb36cad4ab15af2610fdb724550c6b7e0b1c2a029ae4f3f2530103a11004ec5; Path=/; HttpOnly
region=%E6%8C%AA%E5%A8%81%2F%2F%E5%85%B6%E5%AE%83; expires=Wed, 19-Apr-2023 08:28:03 GMT; Max-Age=15552000; path=/
visitnum=1; expires=Fri, 28-Oct-2022 08:28:03 GMT; Max-Age=604800; path=/
11964_30273=re; expires=Fri, 21-Oct-2022 13:28:03 GMT; Max-Age=18000; path=/
do2click_30273=5964461%7C30273%7C11964%7C156936%7C; expires=Fri, 21-Oct-2022 11:28:03 GMT; Max-Age=10800; path=/
doEffect_30273=5964461%7C30273%7C11964%7C156936%7C; expires=Fri, 28-Oct-2022 08:28:03 GMT; Max-Age=604800; path=/
P3P: CP="Powered by Www.Zyiis.Com 2005-2016"
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
ome.wdgixex.cn/c.php?s=JnpvbmVpZD0xNTY5MzUmc2l0ZWlkPSZ1aWQ9MTE5NjQmYWRzaWQ9NTk2NzU3NiZwbGFuaWQ9MzA1ODQmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRnR0dHoueHpnYm5vLmNvbSUyRjExJTJGJnZ0aW1lPTIwMjItMTAtMjEgMTY6Mjg6MDEmaXA9OTEuOTAuNDIuMTU0;7d4d34970ea7cfe95f9ab750ba142d10;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj0meD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGMTY5dXUuY29tJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD11dSVFNSU4NSU4RCVFOCVCNCVCOSVFNSU5QyVBOCVFNyVCQSVCRiVFNyU5NCVCNSVFNSVCRCVCMSZsPWVuLVVTJmM9MSZoPTEwNTk=
203.107.60.95200 OK 20 B URL HTTP/1.1 ome.wdgixex.cn/c.php?s=JnpvbmVpZD0xNTY5MzUmc2l0ZWlkPSZ1aWQ9MTE5NjQmYWRzaWQ9NTk2NzU3NiZwbGFuaWQ9MzA1ODQmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRnR0dHoueHpnYm5vLmNvbSUyRjExJTJGJnZ0aW1lPTIwMjItMTAtMjEgMTY6Mjg6MDEmaXA9OTEuOTAuNDIuMTU0;7d4d34970ea7cfe95f9ab750ba142d10;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj0meD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGMTY5dXUuY29tJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD11dSVFNSU4NSU4RCVFOCVCNCVCOSVFNSU5QyVBOCVFNyVCQSVCRiVFNyU5NCVCNSVFNSVCRCVCMSZsPWVuLVVTJmM9MSZoPTEwNTk=
IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /c.php?s=JnpvbmVpZD0xNTY5MzUmc2l0ZWlkPSZ1aWQ9MTE5NjQmYWRzaWQ9NTk2NzU3NiZwbGFuaWQ9MzA1ODQmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRnR0dHoueHpnYm5vLmNvbSUyRjExJTJGJnZ0aW1lPTIwMjItMTAtMjEgMTY6Mjg6MDEmaXA9OTEuOTAuNDIuMTU0;7d4d34970ea7cfe95f9ab750ba142d10;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj0meD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGMTY5dXUuY29tJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD11dSVFNSU4NSU4RCVFOCVCNCVCOSVFNSU5QyVBOCVFNyVCQSVCRiVFNyU5NCVCNSVFNSVCRCVCMSZsPWVuLVVTJmM9MSZoPTEwNTk= HTTP/1.1
Host: ome.wdgixex.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST,GET,OPTIONS
Set-Cookie: aliyungf_tc=345ac9286d72b4ea017ea6f42385ff711397ef5c259aef85e1a53430f1f1641a; Path=/; HttpOnly
region=%E6%8C%AA%E5%A8%81%2F%2F%E5%85%B6%E5%AE%83; expires=Wed, 19-Apr-2023 08:28:03 GMT; Max-Age=15552000; path=/
visitnum=1; expires=Fri, 28-Oct-2022 08:28:03 GMT; Max-Age=604800; path=/
11964_30584=re; expires=Fri, 21-Oct-2022 13:28:03 GMT; Max-Age=18000; path=/
do2click_30584=5967576%7C30584%7C11964%7C156935%7C; expires=Fri, 21-Oct-2022 11:28:03 GMT; Max-Age=10800; path=/
doEffect_30584=5967576%7C30584%7C11964%7C156935%7C; expires=Fri, 28-Oct-2022 08:28:03 GMT; Max-Age=604800; path=/
P3P: CP="Powered by Www.Zyiis.Com 2005-2016"
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172
203.107.60.95200 OK 727 B URL HTTP/1.1 kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172
IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 783cc119a0f7a9011e903e7fe6832f22
2d7ec6bd4a5d9dc19a935048a5624a6357df5842
39ff2d9297f05eb036275ee306204390da33c110e973e39da10cdc588f49d505
GET /tj.html?type=cnzz&id=1279999172 HTTP/1.1
Host: kmr.wdjptto.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=b2dba51121b031affd9df2f11e521e2843d874a1a9ec10f813e93016e466f629; Path=/; HttpOnly
Last-Modified: Wed, 25 Nov 2020 10:32:42 GMT
Vary: Accept-Encoding
ETag: W/"5fbe32ca-694"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip
kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172
203.107.60.95200 OK 727 B URL HTTP/1.1 kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172
IP 203.107.60.95:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 783cc119a0f7a9011e903e7fe6832f22
2d7ec6bd4a5d9dc19a935048a5624a6357df5842
39ff2d9297f05eb036275ee306204390da33c110e973e39da10cdc588f49d505
GET /tj.html?type=cnzz&id=1279999172 HTTP/1.1
Host: kmr.wdjptto.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 08:28:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=3df82ae1e67eba7c5f70747cddd2c17d436c2b203d1e266850e54d085bf0f5d3; Path=/; HttpOnly
Last-Modified: Wed, 25 Nov 2020 10:32:42 GMT
Vary: Accept-Encoding
ETag: W/"5fbe32ca-694"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip
169uu.com/template/m1938pc1/images/favicon.ico
98.126.88.66200 OK 270 kB URL HTTP/1.1 169uu.com/template/m1938pc1/images/favicon.ico
IP 98.126.88.66:0
File type MS Windows icon resource - 1 icon, 256x256, 32 bits/pixel\012- data
Size 270 kB (270398 bytes)
Hash a5422c94d8de46bb64e7a93482115546
543722dd1fde2ee5786476ae141cd679c5e66cd4
bc50ad74860150a60fb51ded8fbb77ed6bf693623d3232b045860f3de4511fbd
GET /template/m1938pc1/images/favicon.ico HTTP/1.1
Host: 169uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://169uu.com/
Cookie: Hm_lvt_fbb7e8b302a6ffdf7325d4958b51e7c7=1666340894; Hm_lpvt_fbb7e8b302a6ffdf7325d4958b51e7c7=1666340894; Hm_lvt_b80522d91e8bac373bffa6d8507deed7=1666340894; Hm_lpvt_b80522d91e8bac373bffa6d8507deed7=1666340894; tcpvsd=1666340894080; Hm_lvt_01c1fa948560a0c7e30f7858b732d8ec=1666340894; Hm_lpvt_01c1fa948560a0c7e30f7858b732d8ec=1666340894; Hm_lvt_166e3ca93b3ec424128484b55f16cbeb=1666340894; Hm_lpvt_166e3ca93b3ec424128484b55f16cbeb=1666340894; Hm_lvt_71ee2868d55df0e2975eb376098651cb=1666340894; Hm_lpvt_71ee2868d55df0e2975eb376098651cb=1666340894; Hm_lvt_86961013e4dcc06728bf0416a5f4c506=1666340894; Hm_lpvt_86961013e4dcc06728bf0416a5f4c506=1666340894; Hm_lvt_8808c453e04941cefdf86ca964a5377b=1666340895; Hm_lpvt_8808c453e04941cefdf86ca964a5377b=1666340895; Hm_lvt_8149876294d86d0ed1db82fd8e72baf2=1666340895; Hm_lpvt_8149876294d86d0ed1db82fd8e72baf2=1666340895; Hm_lvt_71a181015cd087dce6fc3f1a27416d20=1666340895; Hm_lpvt_71a181015cd087dce6fc3f1a27416d20=1666340895; Hm_lvt_0b30f9881f6a871b43d6ef23ab7e401a=1666340895; Hm_lpvt_0b30f9881f6a871b43d6ef23ab7e401a=1666340895
HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Sat, 23 Jul 2022 14:27:44 GMT
Accept-Ranges: bytes
ETag: "7899995fa09ed81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 22 Oct 2022 00:14:33 GMT
Content-Length: 270398
img.2599u.com/images/635241fe5fe50f0585d3ef8b.gif
23.225.228.58302 Found 0 B URL HTTP/2 img.2599u.com/images/635241fe5fe50f0585d3ef8b.gif
IP 23.225.228.58:0
GET /images/635241fe5fe50f0585d3ef8b.gif HTTP/1.1
Host: img.2599u.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/cde6206cda4c49fe84e88feaebbb339d
cache-control: max-age=86400
X-Firefox-Spdy: h2
img.byznc.xyz/images/634ba3ca67dbb25448502088.gif
23.225.222.18302 Found 0 B URL HTTP/2 img.byznc.xyz/images/634ba3ca67dbb25448502088.gif
IP 23.225.222.18:0
GET /images/634ba3ca67dbb25448502088.gif HTTP/1.1
Host: img.byznc.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/67235ef2abc64f40870afe31f988bda0
cache-control: max-age=86400
X-Firefox-Spdy: h2
img.999996.co/images/6322c0e7136c30cff133c82e.gif
23.225.222.18302 Found 0 B URL HTTP/2 img.999996.co/images/6322c0e7136c30cff133c82e.gif
IP 23.225.222.18:0
GET /images/6322c0e7136c30cff133c82e.gif HTTP/1.1
Host: img.999996.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/a985985b1ad549bfad87f5fbf439b637
cache-control: max-age=86400
X-Firefox-Spdy: h2
img.999996.co/images/63256a91c94db207ca1ccbe8.gif
23.225.222.18302 Found 0 B URL HTTP/2 img.999996.co/images/63256a91c94db207ca1ccbe8.gif
IP 23.225.222.18:0
GET /images/63256a91c94db207ca1ccbe8.gif HTTP/1.1
Host: img.999996.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/2473687480af4253ac93495f70c926af
cache-control: max-age=86400
X-Firefox-Spdy: h2
img.x973.xyz/images/634ba59c67dbb25448502089.gif
23.225.222.2302 Found 0 B URL HTTP/2 img.x973.xyz/images/634ba59c67dbb25448502089.gif
IP 23.225.222.2:0
GET /images/634ba59c67dbb25448502089.gif HTTP/1.1
Host: img.x973.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://169uu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/d706ff0f49324bccb28661696cadfa0a
cache-control: max-age=86400
X-Firefox-Spdy: h2