r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2857be6f18459c7a4a7f00f6cd6076f1
570609086d72a9be57cde7bfefd25663c1035fba
bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F"
Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18336
Expires: Sat, 18 Mar 2023 11:24:57 GMT
Date: Sat, 18 Mar 2023 06:19:21 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 443a700f85619f4fd8a548421c5c23e2
a58764a07feafb2bb4b340c020b5104c55b35195
0bc80613f3d493ea081bf5672ab76f6f33a1dcc0710fe1431de83c46d7e8d31d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0BC80613F3D493EA081BF5672AB76F6F33A1DCC0710FE1431DE83C46D7E8D31D"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5574
Expires: Sat, 18 Mar 2023 07:52:15 GMT
Date: Sat, 18 Mar 2023 06:19:21 GMT
Connection: keep-alive
kidahora.net/news/2017/1116/89510.shtml
38.53.112.198301 Moved Permanently 0 B URL HTTP/1.1 kidahora.net/news/2017/1116/89510.shtml
IP 38.53.112.198:0
ASN #398823 PEGTECHINC-AP-02
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /news/2017/1116/89510.shtml HTTP/1.1
Host: kidahora.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 18 Mar 2023 06:19:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.kidahora.net/news/2017/1116/89510.shtml
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 29fdbcd53b5646cfcdd46510063734c4
85e3ceda5ef130219f4fe8a31e52e2690c8f7d8e
24c27586332c016685e6231fec5836e921048d8aaefbcd4cd6f88969f9d91e18
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 18 Mar 2023 05:26:53 GMT
content-type: application/json
age: 3148
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash eddc2a353d39e5ce5c30d7e90b3ed6a5
305e86e4b966344c135c50af9a6509ffd3a83e9e
bd775c38c2e11f1baedde5d92ab17ceaf4c2067f8ea996595a66801758a71813
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD775C38C2E11F1BAEDDE5D92AB17CEAF4C2067F8EA996595A66801758A71813"
Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3063
Expires: Sat, 18 Mar 2023 07:10:24 GMT
Date: Sat, 18 Mar 2023 06:19:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: zzBKz/KlLpL74nbYRcYmNksr4rQRIQ7+oydFlTL6W13sCNWIYCCyQK1218UHkmbhfzahpIuiAmY=
x-amz-request-id: 6QGWJNW9X5N4QKBG
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 18 Mar 2023 05:51:49 GMT
age: 1652
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:21 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.kidahora.net/news/2017/1116/89510.shtml
38.53.112.198200 OK 706 B URL HTTP/1.1 www.kidahora.net/news/2017/1116/89510.shtml
IP 38.53.112.198:0
ASN #398823 PEGTECHINC-AP-02
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (828), with CRLF line terminators
Hash 3d91d1e83ed9d13225ab1365beea3802
c0f97ffc2631b12726c71de6b7b3e7d6233edda3
94788fc4eccded6cdc68ce8369822f425e12e15ab2c0d0260d2b3e758c30aea2
GET /news/2017/1116/89510.shtml HTTP/1.1
Host: www.kidahora.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 18 Mar 2023 06:19:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Pragma, Content-Type, Content-Length, Cache-Control, Expires, Backoff, Alert, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 18 Mar 2023 06:14:32 GMT
age: 289
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.kidahora.net/common.js
38.53.112.198200 OK 1.1 kB URL HTTP/1.1 www.kidahora.net/common.js
IP 38.53.112.198:0
ASN #398823 PEGTECHINC-AP-02
File type HTML document, ASCII text, with very long lines (389), with CRLF line terminators
Hash 0a31bc706868a19e39ba1e3397a32a86
107dc27d7202aa36da8eb5b5bb38fdb3f751d8ab
29b0bbc5629c3637a395e0eb536b297cfa14a80c220b18b4767e563f7f81cb31
GET /common.js HTTP/1.1
Host: www.kidahora.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kidahora.net/news/2017/1116/89510.shtml
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 18 Mar 2023 06:19:25 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0a4b141e90b0fb22cf6d10a6a4fd360d
37b081be1a69edb97a7c562b71474f4d7405d94e
5db17bb0a40658845e03d8237a69458a0576d955006ee224930b0310179af9af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DB17BB0A40658845E03D8237A69458A0576D955006EE224930B0310179AF9AF"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10586
Expires: Sat, 18 Mar 2023 09:15:48 GMT
Date: Sat, 18 Mar 2023 06:19:22 GMT
Connection: keep-alive
www.kidahora.net/tj.js
38.53.112.198200 OK 522 B IP 38.53.112.198:0
ASN #398823 PEGTECHINC-AP-02
File type ASCII text, with CRLF line terminators
Hash fe5c46184afd0da8627a66380c732d70
95dfe13828b91614030653bd00c161830d1ef131
e6dc4a07e18db6566d1668fb7bf1d3dbfb642e1fdb26637bc3740d2e520ed3ff
GET /tj.js HTTP/1.1
Host: www.kidahora.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kidahora.net/news/2017/1116/89510.shtml
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 18 Mar 2023 06:19:26 GMT
Content-Type: application/x-javascript
Content-Length: 522
Connection: keep-alive
push.services.mozilla.com/
52.42.6.116101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.6.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 62B/Iq2ASh/yAsQusgGKfA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BX+q+JZkQ1EKSESaPJLfui7R+Ag=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 537185c954c2585fa76522ba7ab024a0
6b8ed4d8b528e1ba3dc4ba2d82969514d8f03edb
11682cf1ba33c3c302c52235513b4cae34711998c6d9b9f0a614e0cc5284682f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "11682CF1BA33C3C302C52235513B4CAE34711998C6D9B9F0A614E0CC5284682F"
Last-Modified: Fri, 17 Mar 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 18 Mar 2023 12:19:22 GMT
Date: Sat, 18 Mar 2023 06:19:22 GMT
Connection: keep-alive
www.kidahora.net/favicon.ico
38.53.112.198200 OK 1.2 kB URL HTTP/1.1 www.kidahora.net/favicon.ico
IP 38.53.112.198:0
ASN #398823 PEGTECHINC-AP-02
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.kidahora.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kidahora.net/news/2017/1116/89510.shtml
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 18 Mar 2023 06:19:26 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Thu, 23 Mar 2023 06:19:26 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
api.share.baidu.com/s.gif?l=http://www.kidahora.net/news/2017/1116/89510.shtml
182.61.240.101200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.kidahora.net/news/2017/1116/89510.shtml
IP 182.61.240.101:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.kidahora.net/news/2017/1116/89510.shtml HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kidahora.net/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Sat, 18 Mar 2023 06:19:22 GMT
ocsp.globalsign.com/gsrsaovsslca2018
151.101.194.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.194.133:0
Hash b2d75b48d7ec662853d4366edfb3be75
33edad52b0670c2d4237167f41815cfb0e217744
879c8f1659b00dd49844fc9310395ecf8e8874dcdf5b190576e5c5db06fd09a3
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 22 Mar 2023 04:50:43 GMT
ETag: "33edad52b0670c2d4237167f41815cfb0e217744"
Last-Modified: Sat, 18 Mar 2023 04:50:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 18 Mar 2023 06:19:22 GMT
Age: 5318
X-Served-By: cache-qpg1274-QPG, cache-bma1639-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 146, 1
X-Timer: S1679120363.824907,VS0,VE1
ocsp.globalsign.com/gsrsaovsslca2018
151.101.194.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.194.133:0
Hash b2d75b48d7ec662853d4366edfb3be75
33edad52b0670c2d4237167f41815cfb0e217744
879c8f1659b00dd49844fc9310395ecf8e8874dcdf5b190576e5c5db06fd09a3
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 22 Mar 2023 04:50:43 GMT
ETag: "33edad52b0670c2d4237167f41815cfb0e217744"
Last-Modified: Sat, 18 Mar 2023 04:50:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 18 Mar 2023 06:19:22 GMT
Age: 5318
X-Served-By: cache-qpg1274-QPG, cache-bma1622-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 146, 1
X-Timer: S1679120363.825131,VS0,VE1
www.apippmv11.com/news/index.html
202.95.22.212200 OK 265 B URL HTTP/2 www.apippmv11.com/news/index.html
IP 202.95.22.212:0
ASN #64050 BGPNET Global ASN
File type HTML document, Unicode text, UTF-8 text
Hash 3970b3cffd67b9b4bdcc2154cffe2958
4f8816bfc62b2f9b8a152a0af67f353e36dbc48c
69640311e134d689ce0bef7113a700d3b5403a0e835ffc24969b0e1a1497dc0b
GET /news/index.html HTTP/1.1
Host: www.apippmv11.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kidahora.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:22 GMT
content-type: text/html
content-length: 265
last-modified: Sun, 12 Mar 2023 06:43:01 GMT
etag: "640d7475-109"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 07f286a366f13064311163e489b395f3
bc68820ac9d8586efc7a3d304371557cb3c01e2c
ae5df509a7a4fff45d660fd4e0e6ce36d29e50f2d0003ce54b04a28ad247a78d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AE5DF509A7A4FFF45D660FD4E0E6CE36D29E50F2D0003CE54B04A28AD247A78D"
Last-Modified: Fri, 17 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21583
Expires: Sat, 18 Mar 2023 12:19:06 GMT
Date: Sat, 18 Mar 2023 06:19:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7339
Expires: Sat, 18 Mar 2023 08:21:42 GMT
Date: Sat, 18 Mar 2023 06:19:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7339
Expires: Sat, 18 Mar 2023 08:21:42 GMT
Date: Sat, 18 Mar 2023 06:19:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7339
Expires: Sat, 18 Mar 2023 08:21:42 GMT
Date: Sat, 18 Mar 2023 06:19:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a465734-2031-4538-bcbc-9d828ea81250.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a465734-2031-4538-bcbc-9d828ea81250.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7f53bb1fb90c97461035e7f9f7f7837e
961b5fcbca5b49ca9136e74931253bb300aa1985
dad960991444a4cbd8841e5c673b0e4337bdeb8c18672b5cfadb93d4ac70e8d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a465734-2031-4538-bcbc-9d828ea81250.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11673
x-amzn-requestid: 3675d2d9-47ab-4712-9511-0ad7570dd3cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eNfFXSIAMFbhQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd89-53c9817044fda17b212f0237;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: RYqMTTPdmeDjKu7jhuuUFEn4Y420mbCQcZ8LN-vI9oBJ8LBkZEv0Ig==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ef8f66c83aecd87910ce2e1153544a20.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:05:35 GMT
age: 29628
etag: "961b5fcbca5b49ca9136e74931253bb300aa1985"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash be71491cee9b47dc3ffb23b4fdff25b3
79c7d22c8df6d305f46c5779ccb9f25169d4d111
e785896e5840fb901ddd0118bef3ccad6b59a96d8eef0e8ccd9c95a3c261ba45
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8487
x-amzn-requestid: 92381f1a-0140-47e9-a971-594a7de36c3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BkEcBGizoAMFgOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640b1ab3-1a54b65a5d7083e62dcb85ab;Sampled=0
x-amzn-remapped-date: Fri, 10 Mar 2023 11:55:31 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Nn4eV-UeuWZ02ANOxzTUSgE4UODtaZxeIjp8UJfU8PgUny2shFaDjQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:31:05 GMT
age: 28098
etag: "79c7d22c8df6d305f46c5779ccb9f25169d4d111"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1533684819dcbf9e77684c19eb86465
489f8f036efd23ce36085af127af7d6c794fe00b
9154a471013bd0972fad93ea4eeaf4b23f66dd1534e0d9cc302263aca0f94bd1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12424
x-amzn-requestid: 64a89fbe-4ac0-4059-a481-37c30ae36928
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eOuEG2oAMF1Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd91-0492160f3e8196a23fc53eda;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: fJ69Feo_qMrPnZBgPErMqw7a4tPeWoSguSxko3NtVWgQGmwa8HtG3A==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 f268a165a18929fd0a24a3189fbd16b2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 21:56:52 GMT
age: 30151
etag: "489f8f036efd23ce36085af127af7d6c794fe00b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d212de894f514eafa8a4e23e62280b70
b20a7f2b27c085f47a4d6ddaf7f1971876f11885
1ba6c03f75b3aa49d0636fca0007d0365c8db744ae8fb769f5c7e04991711fd6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10531
x-amzn-requestid: b03ec37f-181a-450e-8b8b-42e1ddbd2372
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eOlENToAMF02A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd90-4ed78f345679ff700e5a0e99;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: thbvnsI_Ezwk-Gtqk654INjkVN55KLTlUeW-lL-t114v9AMxOMy75Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 0ec9ddba08fcd99386924593dbdbd44a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:05:32 GMT
age: 29631
etag: "b20a7f2b27c085f47a4d6ddaf7f1971876f11885"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?52bdc5bfbf75ae45f0f06f1c2b94552b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?52bdc5bfbf75ae45f0f06f1c2b94552b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 61ea39381cc94ed66f9ca511afd99c30
cf93861c345fde97e106f4c2086670d9b9659448
c570fffbb3eafec9285da95d18174288db2665976a10c2545521c78a312c91ff
GET /hm.js?52bdc5bfbf75ae45f0f06f1c2b94552b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kidahora.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 18 Mar 2023 06:19:23 GMT
Etag: ef8c357a8a8b23e421d25bb59c11be4f
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=CB2333863CAEE7C1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6cd7e988-cef3-421d-a3f7-6e7bb3d462c9.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6cd7e988-cef3-421d-a3f7-6e7bb3d462c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60c152a9fdaee2f1241fb177e8bcefb6
7d96bfc520d420a1a0c74f35b2cedab88bd0cd6c
0677e32d75f4ecf648fb94beb03d2d1bd4fe287229edafc15ca46127ecdc0323
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6cd7e988-cef3-421d-a3f7-6e7bb3d462c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4331
x-amzn-requestid: 85202af3-45e8-4226-854e-2c4c330e87b3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eNgFfhoAMFYYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd89-5bece74801b3b57a45fa34f7;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: IWIQhxI63akTU84yTMUbtiexOpEYoPsuBvDS-870L3m4NgVBLH6F_A==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ac463f3377446e4c603deca30feb744a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 21:53:12 GMT
age: 30371
etag: "7d96bfc520d420a1a0c74f35b2cedab88bd0cd6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff784a508-c4b6-43b8-aef0-aed98e41fff2.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff784a508-c4b6-43b8-aef0-aed98e41fff2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8895f37f5abd28598cae47303ec912d2
c5bc2c1ef3a7819b9456fff476ffa2f93b954b0a
e79cca3d8a87088262492024fe4c0d36d8b93dd88634e7ba75911d1393237008
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff784a508-c4b6-43b8-aef0-aed98e41fff2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7328
x-amzn-requestid: 7eee08f8-01f6-42d0-b3ef-e16a608a68be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8fJvFm0IAMFdtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414df0a-162212b7401ed34b32d72f4c;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:43:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 33aU7E0NjvdpycUQep53iVSFiH3tMHR2pC-RbLG3J331abNcCNzeRw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 f958a3846d80a3925f664b320dfad9c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 21:57:44 GMT
age: 30099
etag: "c5bc2c1ef3a7819b9456fff476ffa2f93b954b0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?09a7b5e821ba0c7841e240d5bfe840c4
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?09a7b5e821ba0c7841e240d5bfe840c4
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash 544a1de6fc6a4a9b7b06178f207f8773
b1b80474994f32abd1cb731a1a29bd00d15cf0cd
b3d133c6272f44120e542cf4f58a4a42797512d6f708974870e4d727269fd34e
GET /hm.js?09a7b5e821ba0c7841e240d5bfe840c4 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kidahora.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11254
Content-Type: application/javascript
Date: Sat, 18 Mar 2023 06:19:23 GMT
Etag: e05541b25664da5fc19bc874fa5c92a8
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6E4F9E0B9EAAF0CE; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
lbfm.lbpictupian.com/upload/vod/2023/03/y1jeyg2hka5.jpg
172.67.28.138200 OK 9.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/y1jeyg2hka5.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a803d20eee5d40a48247be656f415d55
827a75c6e8083ed5a43f84f4a5e194dbac75b7a4
e47a9649a6ca96cc17a6819d2566435317ac61df0700223493f9ad401c70f79f
GET /upload/vod/2023/03/y1jeyg2hka5.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 9480
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10134
content-disposition: inline; filename="y1jeyg2hka5.webp"
etag: "6413c908-2796"
last-modified: Fri, 17 Mar 2023 01:57:28 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 19
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22db8ab4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/dimnb4t0qve.jpg
172.67.28.138200 OK 7.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/dimnb4t0qve.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fe41df4314e11021a990843f2768e558
8c0dcff45b55d5c563b49a2f505b9f84d291f3c8
42fd016a39d8b145956437e27d2ac22c105abf709936ac102b7f29fdebf0cf35
GET /upload/vod/2023/03/dimnb4t0qve.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 7624
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8765
content-disposition: inline; filename="dimnb4t0qve.webp"
etag: "6413c8e7-223d"
last-modified: Fri, 17 Mar 2023 01:56:55 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 19
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22db7eb4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/deiqft0eice.jpg
172.67.28.138200 OK 7.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/deiqft0eice.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 44395fb6283b12d450e23450676fc1a6
ed6ca4a67fc3af0531639daaf4df69742cee36f3
788fff4ca7ded66749f7bcbd988f7582dbe3297ce993e07b0e7e5c71406a5379
GET /upload/vod/2023/03/deiqft0eice.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 7736
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9334
content-disposition: inline; filename="deiqft0eice.webp"
etag: "6413c8ff-2476"
last-modified: Fri, 17 Mar 2023 01:57:19 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 19
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22db88b4f9-OSL
X-Firefox-Spdy: h2
www.ppmv104.xyz/
202.95.22.196200 OK 9.5 kB IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
Hash f8e72fb07a64a51edfab7d9dde5ed3c7
5309e71f49c0df0dbaeb36147ead2a56ef709ce6
d6ccfa28132890c6f51a4b59a2b8eda46cb6c7d961f2be3a76a0ffa57d24d785
GET / HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apippmv11.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/d3lnavznsgf.jpg
172.67.28.138200 OK 9.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/d3lnavznsgf.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fe0810ebc3f6e6d73287f0aa3886ce27
80aeae1929ca6e0d2e479ca5307ba68c4c2e74eb
68a14d829619585e9a129babc8c1541a76fd875d61a033b1c9aa893574326d96
GET /upload/vod/2023/03/d3lnavznsgf.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 9242
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10006
content-disposition: inline; filename="d3lnavznsgf.webp"
etag: "6413c902-2716"
last-modified: Fri, 17 Mar 2023 01:57:22 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 19
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22db89b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/ixsb142zdud.jpg
172.67.28.138200 OK 5.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/ixsb142zdud.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d214231c200f09857a4cd09bc16b5935
97cf121608d4c8db2b5ee3c5b8cc7073bb840fa9
b6ca500bb0909084a9abcd4d974499461900594a93964cd57240302aadfbf233
GET /upload/vod/2023/03/ixsb142zdud.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 5064
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6880
content-disposition: inline; filename="ixsb142zdud.webp"
etag: "6413c90d-1ae0"
last-modified: Fri, 17 Mar 2023 01:57:33 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 19
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22eb8bb4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/vlhbt4yg2pn.jpg
172.67.28.138200 OK 5.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/vlhbt4yg2pn.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dbd2ae96c2aea1f790b05bf98423dcc8
d1b6d7d8217806d9186e5225eaa40572baaf075d
dc45d378e56db2b127060bb9404d9fcc04d0bde2b3c74a1173a4447ed9ba6cea
GET /upload/vod/2023/03/vlhbt4yg2pn.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 5612
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7200
content-disposition: inline; filename="vlhbt4yg2pn.webp"
etag: "6413c8cd-1c20"
last-modified: Fri, 17 Mar 2023 01:56:29 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 19
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22db7cb4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/rfjy0e2h12i.jpg
172.67.28.138200 OK 9.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/rfjy0e2h12i.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9b08bfaeec088469cee5a79bb055a916
32aac3d222ad0f557a44f54752453ba5ad0ab392
e8f424d8637f94f29f0169c2741baa7f29a26ed897e150ea1da3bc768f7819f6
GET /upload/vod/2023/03/rfjy0e2h12i.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 9220
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10032
content-disposition: inline; filename="rfjy0e2h12i.webp"
etag: "6413c8ec-2730"
last-modified: Fri, 17 Mar 2023 01:57:00 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 19
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22db80b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/ff3r5pbvj2p.jpg
172.67.28.138200 OK 5.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/ff3r5pbvj2p.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f0b967d60d7f1e6af556b7c9d293e202
eb03622513e6d2f93c897c341b2056adef47f2e6
b211bbd4e2b55d71ed4ce1190cc67c61909db08c333021e74d3041f88de88058
GET /upload/vod/2023/03/ff3r5pbvj2p.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 5726
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8357
content-disposition: inline; filename="ff3r5pbvj2p.webp"
etag: "6413c8f2-20a5"
last-modified: Fri, 17 Mar 2023 01:57:06 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 19
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22db83b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/ojhnpmtm40w.jpg
172.67.28.138200 OK 8.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/ojhnpmtm40w.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 54b72481f2f50b32eb0a41b7dd42e264
d968ef73b948a8ce33f36ad53c18b7b04726a2a3
bd670ba5d836340a411b9a3b04d33e18114515fecac7f681cfdb83d791903673
GET /upload/vod/2023/03/ojhnpmtm40w.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 8846
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9740
content-disposition: inline; filename="ojhnpmtm40w.webp"
etag: "6413c8f7-260c"
last-modified: Fri, 17 Mar 2023 01:57:11 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 19
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22db86b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/putxw0mhwcr.jpg
172.67.28.138200 OK 4.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/putxw0mhwcr.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e3b124a63ec7e8305931023d3873c020
17ba930ea5a03d75c30f9bddb8ae227e4b0bfb6c
2b2e1fa093890f63bd4cbd9186a72e7654ccaa8d1266d70bf82bcf70ea2cb2c7
GET /upload/vod/2023/03/putxw0mhwcr.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 4764
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7100
content-disposition: inline; filename="putxw0mhwcr.webp"
etag: "6413c8d1-1bbc"
last-modified: Fri, 17 Mar 2023 01:56:33 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 19
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22eb9bb4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/olfeegifzzg.jpg
172.67.28.138200 OK 12 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/olfeegifzzg.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a6941c76e443b5b7ea8145d8fa765f82
970cf37c6943f0b1ed8d4dd89ae976ed0f6e1c0e
ff2a33e4f9fd2d53f3018c75bf3887a44ffd07a66357e47f69c8f083cd326aa7
GET /upload/vod/2023/03/olfeegifzzg.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 11670
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=12855
content-disposition: inline; filename="olfeegifzzg.webp"
etag: "6413cd0d-3237"
last-modified: Fri, 17 Mar 2023 02:14:37 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 586
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22fb9fb4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/yz1jb5tjomr.jpg
172.67.28.138200 OK 7.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/yz1jb5tjomr.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 25c15fae13260670540fb5faa2b989e4
9a706ed5fb5aa5f53621d7681ec4aa2edca9d80d
00020855e57a67df8582c4a8973f1372c6a5c0f18486503067dc4d7281e30c04
GET /upload/vod/2023/03/yz1jb5tjomr.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 7106
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8239
content-disposition: inline; filename="yz1jb5tjomr.webp"
etag: "6413cd08-202f"
last-modified: Fri, 17 Mar 2023 02:14:32 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 586
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22fb9eb4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/esnwjsbtcg1.jpg
172.67.28.138200 OK 6.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/esnwjsbtcg1.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7bd4470c24ef905f46a7da9909debd35
74d1eb7aead11b1dfd01042bd46bb093448f7b8a
11a60ff1866b75ff7b1824f2952412278fe0f1faf17967db8d74d4bc6df96c6d
GET /upload/vod/2023/03/esnwjsbtcg1.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 6934
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8122
content-disposition: inline; filename="esnwjsbtcg1.webp"
etag: "6413cd01-1fba"
last-modified: Fri, 17 Mar 2023 02:14:25 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 990
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22eb9db4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/4wbcns4u0c0.jpg
172.67.28.138200 OK 8.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/4wbcns4u0c0.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 60b7730bf344569fdbc8b3c7173e340e
44217aa9b699139059aa1077cf2f214616c919cd
521459e20f31add2a98fd8d4541eb52d5041e55a09380bc34f4d914e4ed9cb23
GET /upload/vod/2023/03/4wbcns4u0c0.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 8372
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9970
content-disposition: inline; filename="4wbcns4u0c0.webp"
etag: "6413cd1b-26f2"
last-modified: Fri, 17 Mar 2023 02:14:51 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 586
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22fba6b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/a1fafhzcpnm.jpg
172.67.28.138200 OK 6.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/a1fafhzcpnm.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b793198b82040091906853a6e9674ba5
8897840143ae3198a5730868b778c70ad25e2912
0d484a4fe3514bbbe29aff1e45c7a29b207fa55ab69de9363b0c1a4d330ead83
GET /upload/vod/2023/03/a1fafhzcpnm.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:23 GMT
content-type: image/webp
content-length: 6062
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8325
content-disposition: inline; filename="a1fafhzcpnm.webp"
etag: "6413cd16-2085"
last-modified: Fri, 17 Mar 2023 02:14:46 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 586
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22fba4b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/h0rebc13l12.jpg
172.67.28.138200 OK 9.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/h0rebc13l12.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4d4510adad3d3e45f1a892a04552514b
14703da149397c5c12a26d0bc80f25a628586635
b0690500afb9d2cc0eeb5fe411340e8e1edb73f8252f53c09aea72c6487d23d1
GET /upload/vod/2023/03/h0rebc13l12.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 9098
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10198
content-disposition: inline; filename="h0rebc13l12.webp"
etag: "6413cd11-27d6"
last-modified: Fri, 17 Mar 2023 02:14:41 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 587
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22fba0b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/ttbh1e1yln5.jpg
172.67.28.138200 OK 7.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/ttbh1e1yln5.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 744d428efaefc22d9610cb3b3ff2c3c9
35035a9cb1cbaf3da0f14c74af7a5d5cf8e7d75b
13a407559f2b4539b3b3bb997251dae03924fdd1d8ccd4209b18f378d846711e
GET /upload/vod/2023/03/ttbh1e1yln5.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 7114
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10057
content-disposition: inline; filename="ttbh1e1yln5.webp"
etag: "64114312-2749"
last-modified: Wed, 15 Mar 2023 04:01:22 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1444
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22fbabb4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/ckvurt5z5rb.jpg
172.67.28.138200 OK 8.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/ckvurt5z5rb.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 15ad76ee7b0058002988129ebb769e15
0730ad536b5473b2cec0457f78848d270c3ada83
fc913f00c5aad61c6634b70c8971906f8b8942acf956058a97d7f7183591e850
GET /upload/vod/2023/03/ckvurt5z5rb.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 8404
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9714
content-disposition: inline; filename="ckvurt5z5rb.webp"
etag: "6411430e-25f2"
last-modified: Wed, 15 Mar 2023 04:01:18 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1444
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22fbaab4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/o0ranhv2mce.jpg
172.67.28.138200 OK 8.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/o0ranhv2mce.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 13970e58e8428a3cb9ada8569d1a0888
1a8842a4cde8734d3b01906d601dd5d0b369e5c3
537b8dae3f1b4725c99575ece8c2463c8a3454f23de5cce95eb9289268e7b030
GET /upload/vod/2023/03/o0ranhv2mce.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 8258
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9544
content-disposition: inline; filename="o0ranhv2mce.webp"
etag: "6413ccfc-2548"
last-modified: Fri, 17 Mar 2023 02:14:20 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 587
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22eb9ab4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/ijgb5bw3r1g.jpg
172.67.28.138200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/ijgb5bw3r1g.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 54965456672cd6d9d411a79a98d6f162
baf1885ea7cad260459b02afc2a15825d7ae392a
f587b20e3a16e2fc5f26060d803138e9308511ce7f5e21b99c8c44902b999ced
GET /upload/vod/2023/03/ijgb5bw3r1g.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 10282
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11066
content-disposition: inline; filename="ijgb5bw3r1g.webp"
etag: "64114316-2b3a"
last-modified: Wed, 15 Mar 2023 04:01:26 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1444
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22fbb1b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/rcwpmengrnr.jpg
172.67.28.138200 OK 8.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/rcwpmengrnr.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 938876f3a7f937c310db772c0725af91
ea22305a0f1aaac8f92ad960715a2d9a3b79b9e4
36939ea43d355d6ad411fb1df0f3443df553c266dcb5f006022480e1aeb08722
GET /upload/vod/2023/03/rcwpmengrnr.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 8498
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9741
content-disposition: inline; filename="rcwpmengrnr.webp"
etag: "64114319-260d"
last-modified: Wed, 15 Mar 2023 04:01:29 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1444
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d22fbb6b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/mcljzu00d2w.jpg
172.67.28.138200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/mcljzu00d2w.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 7cdb00fcc1eb1663764f98e533eeecd8
2756f259a54ff393927b2cffead21f1a1b660bfd
22aae391d612845a3e8d91d552ca8ff71f3dc876607fa7b0bd0efbba75563aa6
GET /upload/vod/2023/03/mcljzu00d2w.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/jpeg
content-length: 10055
cf-bgj: imgq:85,h2pri
cf-polished: origSize=10765, status=webp_bigger
etag: "6411431e-2a0d"
last-modified: Wed, 15 Mar 2023 04:01:34 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1444
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a9b5d230bb8b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/mgalcf0ercd.jpg
172.67.28.138200 OK 9.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/mgalcf0ercd.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1a8bb6ffe64d73012e553244e351aaf6
713747bc05cf775929525be914141e11bec9bf6a
1e3ffcb238e9b09c2d05c9e10cda803d33194edee2ddd31b6bf1c5e212caa4ef
GET /upload/vod/2023/03/mgalcf0ercd.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 9318
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11810
content-disposition: inline; filename="mgalcf0ercd.webp"
etag: "64114322-2e22"
last-modified: Wed, 15 Mar 2023 04:01:38 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1444
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d230bbbb4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/gezawdyz2va.jpg
172.67.28.138200 OK 7.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/gezawdyz2va.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ceebef972764894e4dad498ec89150b8
1cc5540ace092a96e5142aa9d35f52e42f08e245
54202bdb594a9cfc29defa33317d1a8b06d6b4004c6ad7b172a9029ee0aff93a
GET /upload/vod/2023/03/gezawdyz2va.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 7600
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8576
content-disposition: inline; filename="gezawdyz2va.webp"
etag: "6413c8d6-2180"
last-modified: Fri, 17 Mar 2023 01:56:38 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 20
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d230bbfb4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/doto41lmbsx.jpg
172.67.28.138200 OK 7.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/doto41lmbsx.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2d304c0ce39d3e996451bd40c31ba940
cfa5e400212b45e9e37f3ffb9f7a777017924b9b
a8c57d7cb84e642c0ed0a849ff7eefdf8934d6b9e9032fcc9325505492435144
GET /upload/vod/2023/03/doto41lmbsx.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 7290
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8755
content-disposition: inline; filename="doto41lmbsx.webp"
etag: "64114326-2233"
last-modified: Wed, 15 Mar 2023 04:01:42 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1444
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d230bbdb4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/da1xrxwtulx.jpg
172.67.28.138200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/da1xrxwtulx.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9b197018b34eb520d28578c129830cb9
0bf841d9cfa58d16831ee6cf3ef51af14fabb281
43f084843d4c50af761c94f0cf44a90652c34dc811bc08aae4f755d495861b25
GET /upload/vod/2023/03/da1xrxwtulx.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 10900
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11822
content-disposition: inline; filename="da1xrxwtulx.webp"
etag: "6413c8dd-2e2e"
last-modified: Fri, 17 Mar 2023 01:56:45 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 20
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d230bc2b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/tvlxg03htsv.jpg
172.67.28.138200 OK 9.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/tvlxg03htsv.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c680354c9a701d23736510867fcad606
0351f071abbb1449f673d1b30ff19898c1f168dc
ff88f8ff5974fb83991091aa2dab9cd77a977d7453b92dfce45e0919d37a5fc0
GET /upload/vod/2023/03/tvlxg03htsv.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 9378
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10273
content-disposition: inline; filename="tvlxg03htsv.webp"
etag: "6413c8d9-2821"
last-modified: Fri, 17 Mar 2023 01:56:41 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 20
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d230bc0b4f9-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/03/1w4o2pjcxnw.jpg
172.67.28.138200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/03/1w4o2pjcxnw.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae1bf8c4f39e9e2a49dc8d4b704fd665
2ad01bae4357a548e8693c030e92ae7eeb1f0f8f
94a4c8faee38c52196ff11a5a3bc8494d6f62d7b9df3b23e7bebde5c280c0de8
GET /upload/vod/2023/03/1w4o2pjcxnw.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/webp
content-length: 10262
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11286
content-disposition: inline; filename="1w4o2pjcxnw.webp"
etag: "6413c8e2-2c16"
last-modified: Fri, 17 Mar 2023 01:56:50 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 20
accept-ranges: bytes
server: cloudflare
cf-ray: 7a9b5d230bc4b4f9-OSL
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1655311625&si=52bdc5bfbf75ae45f0f06f1c2b94552b&v=1.3.0&lv=1&sn=48128&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Fnews%2F2017%2F1116%2F89510.shtml&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1655311625&si=52bdc5bfbf75ae45f0f06f1c2b94552b&v=1.3.0&lv=1&sn=48128&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Fnews%2F2017%2F1116%2F89510.shtml&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1655311625&si=52bdc5bfbf75ae45f0f06f1c2b94552b&v=1.3.0&lv=1&sn=48128&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Fnews%2F2017%2F1116%2F89510.shtml&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kidahora.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 18 Mar 2023 06:19:23 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=837CB8529F1A7405; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
fmlb.netlbtu.com/images/2021/7/30/dmm2380.jpg
45.89.208.114301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2380.jpg
IP 45.89.208.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /images/2021/7/30/dmm2380.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/images/2021/7/30/dmm2380.jpg
fmlb.netlbtu.com/images/2021/7/30/dmm2382.jpg
45.89.208.114301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2382.jpg
IP 45.89.208.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /images/2021/7/30/dmm2382.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/images/2021/7/30/dmm2382.jpg
fmlb.netlbtu.com/images/2021/7/30/dmm2381.jpg
45.89.208.114301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2381.jpg
IP 45.89.208.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /images/2021/7/30/dmm2381.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/images/2021/7/30/dmm2381.jpg
fmlb.netlbtu.com/images/2021/7/30/dmm2379.jpg
45.89.208.114301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2379.jpg
IP 45.89.208.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /images/2021/7/30/dmm2379.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/images/2021/7/30/dmm2379.jpg
fmlb.netlbtu.com/images/2021/7/30/dmm2383.jpg
45.89.208.114301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2383.jpg
IP 45.89.208.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /images/2021/7/30/dmm2383.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/images/2021/7/30/dmm2383.jpg
fmlb.netlbtu.com/images/2021/7/30/dmm2385.jpg
45.89.208.114301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2385.jpg
IP 45.89.208.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /images/2021/7/30/dmm2385.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/images/2021/7/30/dmm2385.jpg
www.ppmv104.xyz/static/images/1.gif
202.95.22.196200 OK 254 B URL HTTP/2 www.ppmv104.xyz/static/images/1.gif
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /static/images/1.gif HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: image/gif
content-length: 254
last-modified: Sat, 11 Mar 2023 09:32:29 GMT
etag: "640c4aad-fe"
expires: Mon, 17 Apr 2023 06:19:24 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=295905825&si=09a7b5e821ba0c7841e240d5bfe840c4&v=1.3.0&lv=1&sn=48129&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Fnews%2F2017%2F1116%2F89510.shtml&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=295905825&si=09a7b5e821ba0c7841e240d5bfe840c4&v=1.3.0&lv=1&sn=48129&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Fnews%2F2017%2F1116%2F89510.shtml&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=295905825&si=09a7b5e821ba0c7841e240d5bfe840c4&v=1.3.0&lv=1&sn=48129&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Fnews%2F2017%2F1116%2F89510.shtml&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kidahora.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 18 Mar 2023 06:19:24 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E08B925B4F17C4F2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
fmlb.netlbtu.com/images/2021/7/30/dmm2384.jpg
45.89.208.114301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2384.jpg
IP 45.89.208.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /images/2021/7/30/dmm2384.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/images/2021/7/30/dmm2384.jpg
www.ppmv104.xyz/js/top.js?adv=0.44582150753696315
202.95.22.196200 OK 588 B URL HTTP/2 www.ppmv104.xyz/js/top.js?adv=0.44582150753696315
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type HTML document, Unicode text, UTF-8 text
Hash add2d43fff1c9780af62656ec0de51f9
64adda4327ef9df8a60df4e760c19089370dc028
eb83c04e1e660929de5d79020e70557b8bb2e7783d100e72faa7ce2e3aff45e6
GET /js/top.js?adv=0.44582150753696315 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: application/javascript
content-length: 588
last-modified: Sat, 31 Dec 2022 06:13:26 GMT
etag: "63afd306-24c"
expires: Sat, 18 Mar 2023 18:19:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash e66d52f7ab6cc4f67f10a85818750e01
3ca8d5f0ca4a8447c420a6b28451d029beaf8676
67872666131e90a4d44be66e7a4c8c852a38ea7db166ce99dc9494c8d746dfec
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=493
Date: Sat, 18 Mar 2023 06:19:24 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash b763a1275eaff1a144e763e8fa365743
7db37956e75f68dc125ccf28457c0f6e0e5f7408
e40740ed952ca37da183973ada5fb5d37316222971cba8dcfa36c603d80686c3
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=449
Date: Sat, 18 Mar 2023 06:19:24 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash b763a1275eaff1a144e763e8fa365743
7db37956e75f68dc125ccf28457c0f6e0e5f7408
e40740ed952ca37da183973ada5fb5d37316222971cba8dcfa36c603d80686c3
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=449
Date: Sat, 18 Mar 2023 06:19:24 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash e66d52f7ab6cc4f67f10a85818750e01
3ca8d5f0ca4a8447c420a6b28451d029beaf8676
67872666131e90a4d44be66e7a4c8c852a38ea7db166ce99dc9494c8d746dfec
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=395
Date: Sat, 18 Mar 2023 06:19:24 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash b763a1275eaff1a144e763e8fa365743
7db37956e75f68dc125ccf28457c0f6e0e5f7408
e40740ed952ca37da183973ada5fb5d37316222971cba8dcfa36c603d80686c3
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=471
Date: Sat, 18 Mar 2023 06:19:24 GMT
Connection: keep-alive
X-N: S
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 31d40b3b45c8c74aa3a1431542daffbe
4e9fe70573e3dcbb20b4a16b408e23c5a5842568
4314aca541dfae925b889d72a5be38b9aff3b7358a0cee38baec85a7b8b7f347
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 06:19:25 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 17 Mar 2023 11:47:12 GMT
Expires: Fri, 24 Mar 2023 11:47:11 GMT
Etag: "4e9fe70573e3dcbb20b4a16b408e23c5a5842568"
Cache-Control: max-age=537465,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a9b5d2a68d8b527-OSL
www.ppmv104.xyz/template/m1938pc/css/zui.css
202.95.22.196200 OK 20 kB URL HTTP/2 www.ppmv104.xyz/template/m1938pc/css/zui.css
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
Hash 7592e22eeef09b8b05265d2c59503a26
39353834d810020be9f8291afeb5b74a361dc8a8
c337466f4ed7eb960feb0170e12e02a404401bf2dc509d386ba3b0be6dc522ed
GET /template/m1938pc/css/zui.css HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 12:08:14 GMT
vary: Accept-Encoding
etag: W/"6370de2e-15b6c"
expires: Sat, 18 Mar 2023 18:19:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 8581e52fdef70a28b4d3fba1bcb091db
e63b092313f6184758982364a110f75748b2c6f7
976a15d3bcd785ebf1e8b1febe5930b83ee51b7d68c47a4933bc08cb8f8e4df7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 06:19:25 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 17 Mar 2023 09:24:49 GMT
Expires: Fri, 24 Mar 2023 09:24:48 GMT
Etag: "e63b092313f6184758982364a110f75748b2c6f7"
Cache-Control: max-age=528922,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a9b5d2b396bb527-OSL
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 3e1301c5788d393afecfbbacfdaeb7a4
c782f86b94d79426c97a71231d2dfa856d05d587
54a2f73f8e03c36326416e95052328883ee92ebf50b93760fe89d74f17483132
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 06:19:25 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Thu, 16 Mar 2023 22:08:47 GMT
Expires: Thu, 23 Mar 2023 22:08:46 GMT
Etag: "c782f86b94d79426c97a71231d2dfa856d05d587"
Cache-Control: max-age=488360,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a9b5d2a7b3b1bfa-OSL
fmlb.netlbtu.com/images/2021/7/30/dmm2381.jpg
45.89.208.114200 OK 95 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2381.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 960x540, components 3\012- data
Hash 471c69d36a870db86ce0cfc14a3a8f89
1787d50efbf75583784a0fd44f906d4499b4f3fa
6b05adfe4f38d2507a6efe2e3436c186e72eebe3cd3384637b7d6e914e5ebbc7
GET /images/2021/7/30/dmm2381.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: image/jpeg
Content-Length: 94607
Last-Modified: Wed, 09 Nov 2022 11:56:51 GMT
Connection: keep-alive
ETag: "636b9583-1718f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.ppmv104.xyz/template/m1938pc/static/js/jquery.min.js
202.95.22.196200 OK 40 kB URL HTTP/2 www.ppmv104.xyz/template/m1938pc/static/js/jquery.min.js
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
Hash d05e83ec5f9ee474a6c8f2f791e13f99
45c95b28ee5bdf73ba6728096610ca2204c7dfcd
8b3fd8ca27c3e3fddb1e0408804b0d03cbb5226e81cf4ea8d0002a97ab39a43f
GET /template/m1938pc/static/js/jquery.min.js HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 14:07:34 GMT
vary: Accept-Encoding
etag: W/"61d99aa6-17b8b"
expires: Sat, 18 Mar 2023 18:19:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 645292a9d3b6167eccfb2117f6491351
b614349598e4eb7510b127bd538de549991fde21
d3eefc9268e841081ca0b2e40376ca8d38609a987e9b5c31d883427bec451c71
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 06:19:25 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 17 Mar 2023 11:24:23 GMT
Expires: Fri, 24 Mar 2023 11:24:22 GMT
Etag: "b614349598e4eb7510b127bd538de549991fde21"
Cache-Control: max-age=536096,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a9b5d2aeb6e0b41-OSL
fmlb.netlbtu.com/images/2021/7/30/dmm2382.jpg
45.89.208.114200 OK 114 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2382.jpg
IP 45.89.208.114:0
File type JPEG image data, Exif Standard: [\012- TIFF image data, big-endian, direntries=2], baseline, precision 8, 960x540, components 3\012- data
Size 114 kB (114302 bytes)
Hash a672c11c0cef57625e25a896be0912ab
234edeea46d5c48131109a169a11148198ad5d3d
26beda92687b1659918590e3e6a2f584d854392c16a95c11e22675306cbfabb4
GET /images/2021/7/30/dmm2382.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: image/jpeg
Content-Length: 114302
Last-Modified: Wed, 09 Nov 2022 12:04:33 GMT
Connection: keep-alive
ETag: "636b9751-1be7e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.ppmv104.xyz/js/wz.js?adv=0.459635034008115
202.95.22.196200 OK 2.4 kB URL HTTP/2 www.ppmv104.xyz/js/wz.js?adv=0.459635034008115
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
Hash 6001ae717235c330bf4a7fc0bca534e2
90b958f0648266ddcfd35beeecaed6d25eb4a729
a78c9eaf8fedc6be0c1e2ccf050415af0f091b55e6f1999aff6c43b8291c47b8
GET /js/wz.js?adv=0.459635034008115 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: application/javascript
last-modified: Mon, 13 Mar 2023 04:43:35 GMT
vary: Accept-Encoding
etag: W/"640ea9f7-d35"
expires: Sat, 18 Mar 2023 18:19:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
fmlb.netlbtu.com/images/2021/7/30/dmm2385.jpg
45.89.208.114200 OK 137 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2385.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 96x96, segment length 16, Exif Standard: [\012- TIFF image data, big-endian, direntries=2], comment: "Lavc57.80.100", baseline, precision 8, 960x540, components 3\012- data
Size 137 kB (137138 bytes)
Hash 3bde8b43b479f070f86d32c697a02978
84079c89fd36de5bb2468a2b963ffc06c1e23fc6
c691e6b83dfec7751e8f8fd09571bd625c5586b3fde96caceaa60f8ebe2f13c2
GET /images/2021/7/30/dmm2385.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: image/jpeg
Content-Length: 137138
Last-Modified: Wed, 09 Nov 2022 11:42:51 GMT
Connection: keep-alive
ETag: "636b923b-217b2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/images/2021/7/30/dmm2383.jpg
45.89.208.114200 OK 140 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2383.jpg
IP 45.89.208.114:0
File type JPEG image data, Exif Standard: [\012- TIFF image data, big-endian, direntries=2], baseline, precision 8, 960x540, components 3\012- data
Size 140 kB (139881 bytes)
Hash 6e983ac097c07f9363efab284a4e1b03
45de439464c606ad782c985d49f1f9b1a4c9c8ae
00965faee418c162b41bf480b1d5ada4dd60c50d268b20211d18d5dbf7e1c750
GET /images/2021/7/30/dmm2383.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: image/jpeg
Content-Length: 139881
Last-Modified: Wed, 09 Nov 2022 11:42:00 GMT
Connection: keep-alive
ETag: "636b9208-22269"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/images/2021/7/30/dmm2379.jpg
45.89.208.114200 OK 161 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2379.jpg
IP 45.89.208.114:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 960x540, components 3\012- data
Size 161 kB (161411 bytes)
Hash 0ae7e4448a272b32f90ebbfdeef1d43b
794b545a2b2b2d5ccb09ae9066ee2f65ef75fd2c
e6ab7bedf0666ad1d2f12e2940eb4fee414b51644ac96ea82e81d3788b2eff45
GET /images/2021/7/30/dmm2379.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: image/jpeg
Content-Length: 161411
Last-Modified: Wed, 09 Nov 2022 11:57:24 GMT
Connection: keep-alive
ETag: "636b95a4-27683"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/images/2021/7/30/dmm2380.jpg
45.89.208.114200 OK 201 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2380.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, height=1013, bps=146, orientation=upper-left, width=1800], baseline, precision 8, 960x540, components 3\012- data
Size 201 kB (200620 bytes)
Hash ec16531a2dd72a472329e630da9dc62b
ad0a4d94a059753a76f30f20981bc58e1745c5c3
94dd569cb24735d376a31a42f28f9db790aab08e5ea9e9d68a954f811df1a594
GET /images/2021/7/30/dmm2380.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:24 GMT
Content-Type: image/jpeg
Content-Length: 200620
Last-Modified: Wed, 09 Nov 2022 11:40:09 GMT
Connection: keep-alive
ETag: "636b9199-30fac"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sv1.stor.petaexpress.com/dfegfegeg/1.jpg
199.180.101.114200 OK 14 kB URL HTTP/1.1 sv1.stor.petaexpress.com/dfegfegeg/1.jpg
IP 199.180.101.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 650x96, components 3\012- data
Hash db2dbdc216703ec86bc6d75d652e7007
a2610252e80c359f3026f6bf3b744c23c3d4cb98
48dc2e5f86c223bdcfdf820eeb1ddef2840c9789dabd79ef2cf8bd67b0f22eb8
GET /dfegfegeg/1.jpg HTTP/1.1
Host: sv1.stor.petaexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 18 Mar 2023 06:19:25 GMT
Content-Type: image/jpeg
Content-Length: 14485
Connection: keep-alive
Accept-Ranges: bytes
Etag: "db2dbdc216703ec86bc6d75d652e7007"
Last-Modified: Fri, 23 Dec 2022 09:12:12 GMT
x-qs-request-id: 450f8197b8fe621d
x-qs-storage-class: STANDARD
fmlb.netlbtu.com/images/2021/7/30/dmm2384.jpg
45.89.208.114200 OK 126 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2021/7/30/dmm2384.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 960x540, components 3\012- data
Size 126 kB (125715 bytes)
Hash 501a6149156e7fbce1ce134319fa6be1
d772bfaff8290da42abd3353edf4b6dcb479933d
36e05c1d64f17a2ac781dc49cad294cadcac9b280b8feef6633d54216bbc524c
GET /images/2021/7/30/dmm2384.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 18 Mar 2023 06:19:25 GMT
Content-Type: image/jpeg
Content-Length: 125715
Last-Modified: Wed, 09 Nov 2022 11:59:31 GMT
Connection: keep-alive
ETag: "636b9623-1eb13"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
587tuchuang.com/587z80.gif
23.224.27.253200 OK 910 B URL HTTP/1.1 587tuchuang.com/587z80.gif
IP 23.224.27.253:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (910), with no line terminators
Hash e8ae4ec69b239d2db3d6e9d283f26630
f5c61691bc61987fc19c39078dc8288fb65534fb
0db0f56a05da7531c1a5d61c6dc129b353cb3f337b993d0b909fb89d92db0ab1
GET /587z80.gif HTTP/1.1
Host: 587tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 910
Pragma: no-cache
Cache-control: no-store
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 475870024a8ad3afd6e71c4d5a28176f
93912d9f0414c3af3f1051e6969fd9d3e502ee17
a3f2395e5633175f493d4593c7a60da93fd4a7a1ba6e2238d139b10e4babba13
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Sat, 18 Mar 2023 06:19:25 GMT
Connection: keep-alive
X-N: S
www.ppmv104.xyz/template/m1938pc/images/video-mask.png
202.95.22.196200 OK 107 B URL HTTP/2 www.ppmv104.xyz/template/m1938pc/images/video-mask.png
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type PNG image data, 1 x 46, 8-bit gray+alpha, non-interlaced\012- data
Hash 6a5ee87ff75437cb480df839f36004fd
eac66370f99601cb7febef320c9540d4593cd856
c9b6925bdd64dab63151c3106347fefb8c500d87ac3d87d9a82e9a1c561233aa
GET /template/m1938pc/images/video-mask.png HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:25 GMT
content-type: image/png
content-length: 107
last-modified: Tue, 04 Jan 2022 15:14:24 GMT
etag: "61d46450-6b"
expires: Mon, 17 Apr 2023 06:19:25 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv104.xyz/template/m1938pc/images/video-play.png
202.95.22.196200 OK 1.6 kB URL HTTP/2 www.ppmv104.xyz/template/m1938pc/images/video-play.png
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/m1938pc/images/video-play.png HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:25 GMT
content-type: image/png
content-length: 1567
last-modified: Tue, 04 Jan 2022 15:14:22 GMT
etag: "61d4644e-61f"
expires: Mon, 17 Apr 2023 06:19:25 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
n0633.com/d260b0f22810492180427089c4deb092.gif
67.21.86.202200 OK 127 kB URL HTTP/1.1 n0633.com/d260b0f22810492180427089c4deb092.gif
IP 67.21.86.202:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 127 kB (126639 bytes)
Hash c15d09d052e98e5509afe7028333f70a
63784c690b5612ef5c43e4ccc28914f6ff7f4330
c18beea0bcde5dc44fb4a01beb05711a7b2bb11ec01b6c4a163070dfa7570b4d
GET /d260b0f22810492180427089c4deb092.gif HTTP/1.1
Host: n0633.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 06:19:25 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 08 Mar 2023 10:37:30 GMT
ETag: W/"6408656a-5c246"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
img.1611a.com/images/6403517aa35fc702b43a02bb.gif
3.36.126.81302 Found 0 B URL HTTP/2 img.1611a.com/images/6403517aa35fc702b43a02bb.gif
IP 3.36.126.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/6403517aa35fc702b43a02bb.gif HTTP/1.1
Host: img.1611a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=600
location: https://cdn.sm.cn/ac2138f79d3ab200a25919c9cb225988/2131e95216781985904594193e6b39
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash b7eab4f3ca9725a0d58d2f3310593b14
94acf26b510646ed91e2f6fa26cacbf1781ae2da
7bf51aba498e075e3680e210e0f17d8baf66aa8ec23b39dbd569d713291a893a
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=323
Date: Sat, 18 Mar 2023 06:19:25 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash b7eab4f3ca9725a0d58d2f3310593b14
94acf26b510646ed91e2f6fa26cacbf1781ae2da
7bf51aba498e075e3680e210e0f17d8baf66aa8ec23b39dbd569d713291a893a
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=235
Date: Sat, 18 Mar 2023 06:19:26 GMT
Connection: keep-alive
X-N: S
link.imgapp.top/images/63ba73b1a92cd2097e833f9d.gif
3.36.126.81302 Found 0 B URL HTTP/2 link.imgapp.top/images/63ba73b1a92cd2097e833f9d.gif
IP 3.36.126.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/63ba73b1a92cd2097e833f9d.gif HTTP/1.1
Host: link.imgapp.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=600
location: https://zzpic-1255305554.cos.ap-beijing.myqcloud.com/zhuanzh/c3b6d9b0-ff33-43ec-b774-4f9cf64711c5.gif
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 30f09b34963ccbab11ed6947d84121ad
a545a4b799a4bf84747f5235fa3f8b23905fa752
a08895acc3019e7f2a57a89e56e7c6906a13ba01a01a4faef80f0280f983c36f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A08895ACC3019E7F2A57A89E56E7C6906A13BA01A01A4FAEF80F0280F983C36F"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18095
Expires: Sat, 18 Mar 2023 11:21:01 GMT
Date: Sat, 18 Mar 2023 06:19:26 GMT
Connection: keep-alive
www.ppmv104.xyz/js/250/2.js?adv=0.05975788786053271
202.95.22.196200 OK 459 B URL HTTP/2 www.ppmv104.xyz/js/250/2.js?adv=0.05975788786053271
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (309)
Hash 5c4b1abefaabadd8470d188e2459a102
1b3f93bfe26e99bf0577da666d87c4d17ddd059d
acd886236c472de9b4ea9724aa9917f165ca0e740697c8e5ce4351c62c461d5c
GET /js/250/2.js?adv=0.05975788786053271 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:26 GMT
content-type: application/javascript
content-length: 459
last-modified: Sun, 12 Mar 2023 03:03:52 GMT
etag: "640d4118-1cb"
expires: Sat, 18 Mar 2023 18:19:26 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
tupkku.top/logotp/tiangx01.gif
104.21.51.97200 OK 193 kB URL HTTP/2 tupkku.top/logotp/tiangx01.gif
IP 104.21.51.97:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 193 kB (192700 bytes)
Hash 1f96742e79c464754770d21b824c422e
2eacc04050d6b364ca38e67f740f5019ba609d72
90b4a34013848befc26d1e21f30afa75bb896fb8775cfb283e0d1f4d9bc1a294
GET /logotp/tiangx01.gif HTTP/1.1
Host: tupkku.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:26 GMT
content-type: image/gif
content-length: 192700
last-modified: Sun, 19 Jun 2022 13:11:00 GMT
etag: "62af2064-2f0bc"
expires: Sun, 16 Apr 2023 00:16:37 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 108084
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rhRv0ovHZfFWTa1eyXcvIGmujc%2FgC4aDlnsBbNr4ATrTDYPobxqoavuvCLuipDn3AVywLfq%2B5JfNlU4MFqjdAcrtB4sffvKgB05eJu3MmUId20RwXx6V0nRSJ92B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7a9b5d310feab51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
8499483.com/8499/960x80.gif
172.247.109.214200 OK 367 kB URL HTTP/2 8499483.com/8499/960x80.gif
IP 172.247.109.214:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 367 kB (366944 bytes)
Hash bde9cbff38e305f40a245a7cf87bd85a
4aaa627b0db260ac7f97a9223e93b1e2f35caba4
375eaceb954016306188bd02f6cc229f71c8e1ef337e99b6ec0a98fad9b3eb7e
GET /8499/960x80.gif HTTP/1.1
Host: 8499483.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:25 GMT
content-type: image/gif
content-length: 366944
last-modified: Sat, 24 Dec 2022 13:20:16 GMT
etag: "59960-5f092c35018ba"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
661aaa.us/7ab13ae93f314a7884e4e115f3a77088.gif
103.170.15.100200 OK 485 kB URL HTTP/1.1 661aaa.us/7ab13ae93f314a7884e4e115f3a77088.gif
IP 103.170.15.100:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 485 kB (485287 bytes)
Hash d380a647f953c9a1c3973d06622da8e9
7ea4c5413441c6287df52aceaffbf0ecabf013c3
2a8319f5970f1a6285054d399614ace55bac9b3195f69a9abe1eeb08c6dd03f2
GET /7ab13ae93f314a7884e4e115f3a77088.gif HTTP/1.1
Host: 661aaa.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63f72bcb-767a7"
Date: Thu, 09 Mar 2023 08:47:22 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 23 Feb 2023 09:03:07 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-30
Content-Length: 485287
link.imgapp.top/images/63ba73b0a92cd2097e833f93.gif
3.36.126.81302 Found 0 B URL HTTP/2 link.imgapp.top/images/63ba73b0a92cd2097e833f93.gif
IP 3.36.126.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/63ba73b0a92cd2097e833f93.gif HTTP/1.1
Host: link.imgapp.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=600
location: https://cdn.sm.cn/d63b4f53e8b6efce3d76e926aaf795d6/2131e92816782835221364415e94e0
X-Firefox-Spdy: h2
www.ppmv104.xyz/js/250/3.js?adv=0.10458835713714543
202.95.22.196200 OK 486 B URL HTTP/2 www.ppmv104.xyz/js/250/3.js?adv=0.10458835713714543
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (369)
Hash 4ce206cd22ea1ac05c3d229b392d2896
a8ca9dd8fb48bce78ccb44933d0c722401419fb3
c03b31145986256c54d4bcbfc2a0de7d1c5592b4ffb0517311bd0228ea4e39d9
GET /js/250/3.js?adv=0.10458835713714543 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:26 GMT
content-type: application/javascript
content-length: 486
last-modified: Sat, 19 Nov 2022 10:19:33 GMT
etag: "6378adb5-1e6"
expires: Sat, 18 Mar 2023 18:19:26 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv104.xyz/js/xx3.js?adv=0.5252938918650705
202.95.22.196200 OK 360 B URL HTTP/2 www.ppmv104.xyz/js/xx3.js?adv=0.5252938918650705
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3e24852309978d1690e8c4809f989280
f590486d685ac8d4d2eba4f5fe1f3bf0beb723e7
a503f4a1ccd24a5e31dbfbbf18825476012481b775f1606f01275c0af15d1e58
GET /js/xx3.js?adv=0.5252938918650705 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:26 GMT
content-type: application/javascript
content-length: 360
last-modified: Sat, 19 Nov 2022 10:18:53 GMT
etag: "6378ad8d-168"
expires: Sat, 18 Mar 2023 18:19:26 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 844a89d7fd37e9d8398e1f3630afbe86
78b901b9001fc7b9feb020c8ce2dcbda7c246e10
baca3385cd1a675ba252f8287288e92d2ef0682b9adac23869ac32f1d75771dc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 06:19:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 17 Mar 2023 15:22:08 GMT
Expires: Fri, 24 Mar 2023 15:22:07 GMT
Etag: "78b901b9001fc7b9feb020c8ce2dcbda7c246e10"
Cache-Control: max-age=550360,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a9b5d326f0db527-OSL
228tuchuang.com/960x80.gif
23.224.27.254200 OK 124 kB URL HTTP/2 228tuchuang.com/960x80.gif
IP 23.224.27.254:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 124 kB (123970 bytes)
Hash 83735404f4ab51b1abaad368fe9563cb
49009970fdcebba47b2dfa21efe27724adb4a5de
d6e4e3d48c2872e139be81a41b2b1abe0bb552f2c60df118f723afb33245a216
GET /960x80.gif HTTP/1.1
Host: 228tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:26 GMT
content-type: image/gif
content-length: 123970
last-modified: Fri, 03 Mar 2023 06:49:37 GMT
etag: "64019881-1e442"
expires: Sun, 02 Apr 2023 06:52:45 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
server: cdn
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv104.xyz/js/250/4.js?adv=0.1368815428444683
202.95.22.196200 OK 486 B URL HTTP/2 www.ppmv104.xyz/js/250/4.js?adv=0.1368815428444683
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (369)
Hash 4ce206cd22ea1ac05c3d229b392d2896
a8ca9dd8fb48bce78ccb44933d0c722401419fb3
c03b31145986256c54d4bcbfc2a0de7d1c5592b4ffb0517311bd0228ea4e39d9
GET /js/250/4.js?adv=0.1368815428444683 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:26 GMT
content-type: application/javascript
content-length: 486
last-modified: Sat, 19 Nov 2022 10:19:41 GMT
etag: "6378adbd-1e6"
expires: Sat, 18 Mar 2023 18:19:26 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6179642f15f0180db651960e040dabe7
0a89ad681141a13a84b0d7e59c0ae22083c0c0eb
ba072a3a8cc894f0f51fac034a9d7969a550104751af2ea883213ce41c9c734f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA072A3A8CC894F0F51FAC034A9D7969A550104751AF2EA883213CE41C9C734F"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 18 Mar 2023 12:19:26 GMT
Date: Sat, 18 Mar 2023 06:19:26 GMT
Connection: keep-alive
img.8578a.com/images/6403522ea35fc702b43a02bc.gif
3.36.126.81302 Found 0 B URL HTTP/2 img.8578a.com/images/6403522ea35fc702b43a02bc.gif
IP 3.36.126.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/6403522ea35fc702b43a02bc.gif HTTP/1.1
Host: img.8578a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=600
location: https://image.uc.cn/s/wemedia/s/upload/2023/ABZp241gr8r9v4u/bae765ef8d1c45e35d92e3ef35e71c98.gif
X-Firefox-Spdy: h2
ldbbs.ldmnq.com/bbs/topic/attachment/2022-12/bc165155-d46e-437b-9f89-24c7a0cc8d3f.gif
120.52.95.237200 OK 491 kB URL HTTP/1.1 ldbbs.ldmnq.com/bbs/topic/attachment/2022-12/bc165155-d46e-437b-9f89-24c7a0cc8d3f.gif
IP 120.52.95.237:0
ASN #133119 China Unicom IP network
File type GIF image data, version 89a, 960 x 120\012- data
Size 491 kB (491162 bytes)
Hash fd27f78b00490403bf67a1eda5e2edf4
49a86f17845d35b454bc4fd6ccc7975e380b0f50
59bb4f824e82e2b2140bc8e33c5e22c261d6d1f03799853a364d643f62378ef1
GET /bbs/topic/attachment/2022-12/bc165155-d46e-437b-9f89-24c7a0cc8d3f.gif HTTP/1.1
Host: ldbbs.ldmnq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 06:19:25 GMT
Content-Type: image/gif
Content-Length: 491162
Connection: keep-alive
Server: openresty
CloudServiceDiscount: CDN
Content-Encoding: utf-8
ETag: "fd27f78b00490403bf67a1eda5e2edf4"
Last-Modified: Mon, 19 Dec 2022 11:41:51 GMT
x-amz-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSzc2EZF35e77lPFkfgNO6oVvVI8z0Bg
x-amz-request-id: 00000185D8B31F209811FE81B2DE70DE
x-amz-storage-class: STANDARD_IA
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
via: CHN-HElangfang-AREACUCC1-CACHE8[5],CHN-HElangfang-AREACUCC1-CACHE35[0,TCP_HIT,3],CHN-TJ-GLOBAL1-CACHE112[4],CHN-TJ-GLOBAL1-CACHE30[0,TCP_HIT,3]
x-hcs-proxy-type: 1
X-CCDN-CacheTTL: 2592000
nginx-hit: 1
Age: 2237976
Accept-Ranges: bytes
228tuchuang.com/200x200.gif
23.224.27.254200 OK 104 kB URL HTTP/2 228tuchuang.com/200x200.gif
IP 23.224.27.254:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 104 kB (104271 bytes)
Hash 2f45e48916f1e750c83b98f9c8efad93
3ee9d1329036656e058168d2e23d4027edb6169d
3c2e307d9bdf786f1542a8b7508f107896ea3f1565d8f6ba9928f4d8c34cb3e7
GET /200x200.gif HTTP/1.1
Host: 228tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:26 GMT
content-type: image/gif
content-length: 104271
last-modified: Wed, 08 Feb 2023 11:35:35 GMT
etag: "63e38907-1974f"
expires: Sun, 02 Apr 2023 06:52:45 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
server: cdn
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
u1011.com/248ce4efbb9e4dfabbaf151a6654c27a.gif
103.170.15.20200 OK 44 kB URL HTTP/2 u1011.com/248ce4efbb9e4dfabbaf151a6654c27a.gif
IP 103.170.15.20:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 250 x 250\012- data
Hash 6f42531b65d344c893a679937afcac43
8f80785997c717f24e8ece9b63ac9b7120c77829
a7b14524415b5cde082ec929eb1840475e7ed735a853ee57fb6fa09de60ddd77
GET /248ce4efbb9e4dfabbaf151a6654c27a.gif HTTP/1.1
Host: u1011.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "6408692b-ab8f"
server: nginx
date: Wed, 08 Mar 2023 11:06:33 GMT
content-type: image/gif
last-modified: Wed, 08 Mar 2023 10:53:31 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-10
content-length: 43919
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.194.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.194.133:0
Hash 92977e1a8fafaf2cbdc9d466e1c1b4f7
656e9521f9c6df06f696fad95c21b3260d90b8a0
a004e8368440c12b6691e582bdf24bd61fa959bff3727cbb81a51dabc8ef7710
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 22 Mar 2023 05:44:01 GMT
ETag: "656e9521f9c6df06f696fad95c21b3260d90b8a0"
Last-Modified: Sat, 18 Mar 2023 05:44:02 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 18 Mar 2023 06:19:27 GMT
Age: 2125
X-Served-By: cache-qpg1247-QPG, cache-bma1648-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 7, 1
X-Timer: S1679120367.066819,VS0,VE1
www.ppmv104.xyz/js/250/5.js?adv=0.9158217378723168
202.95.22.196200 OK 391 B URL HTTP/2 www.ppmv104.xyz/js/250/5.js?adv=0.9158217378723168
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (307)
Hash ce3429662dbe84129c4b2a1460ca4862
b2b548548841c1f012aedc45e0d0966bb57c07eb
18a4fdd52784c146851e9e315e70d54e838dcaa02db2cca08f5f92924fe33978
GET /js/250/5.js?adv=0.9158217378723168 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:26 GMT
content-type: application/javascript
content-length: 391
last-modified: Sun, 12 Mar 2023 03:03:07 GMT
etag: "640d40eb-187"
expires: Sat, 18 Mar 2023 18:19:26 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.194.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.194.133:0
Hash 619a53a5c312f11c284a9f7f7167f6a1
dc7a9e234097c89fc98bb1ce92a8091aeb0171b8
2dc0ccd3e2796a10ca8620921f6cc1dc0b09728eb53afa61deb01aa9a9e5fb42
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 22 Mar 2023 05:22:00 GMT
ETag: "dc7a9e234097c89fc98bb1ce92a8091aeb0171b8"
Last-Modified: Sat, 18 Mar 2023 05:22:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 18 Mar 2023 06:19:27 GMT
Age: 3445
X-Served-By: cache-qpg1277-QPG, cache-bma1673-BMA
X-Cache: HIT, MISS
X-Cache-Hits: 20, 0
X-Timer: S1679120367.911421,VS0,VE198
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.194.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.194.133:0
Hash 619a53a5c312f11c284a9f7f7167f6a1
dc7a9e234097c89fc98bb1ce92a8091aeb0171b8
2dc0ccd3e2796a10ca8620921f6cc1dc0b09728eb53afa61deb01aa9a9e5fb42
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 22 Mar 2023 05:22:00 GMT
ETag: "dc7a9e234097c89fc98bb1ce92a8091aeb0171b8"
Last-Modified: Sat, 18 Mar 2023 05:22:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 18 Mar 2023 06:19:27 GMT
Age: 3445
X-Served-By: cache-qpg1277-QPG, cache-bma1630-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 20, 1
X-Timer: S1679120367.943391,VS0,VE166
image.uc.cn/s/wemedia/s/upload/2023/ABZp241gr8r9v4u/bae765ef8d1c45e35d92e3ef35e71c98.gif
47.246.44.230200 OK 479 kB URL HTTP/2 image.uc.cn/s/wemedia/s/upload/2023/ABZp241gr8r9v4u/bae765ef8d1c45e35d92e3ef35e71c98.gif
IP 47.246.44.230:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 200 x 200\012- data
Size 479 kB (479032 bytes)
Hash 7f8ee4f985772f6a9c0256ae8b86186d
69a2b0b1d7e19fb38d21533fd22eff1bcf1f9abd
f3458aa5d6e2c3ba4a261dedd7a76da61915b7b2911d19b05cf23d6b04b40117
GET /s/wemedia/s/upload/2023/ABZp241gr8r9v4u/bae765ef8d1c45e35d92e3ef35e71c98.gif HTTP/1.1
Host: image.uc.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/GIF
content-length: 244592
date: Fri, 17 Mar 2023 06:11:12 GMT
x-image-resized: 1
cache-control: max-age=432000
access-control-allow-origin: *
ali-swift-global-savetime: 1679033472
via: cache23.l2sg2[0,0,200-0,H], cache40.l2sg2[0,0], cache2.se1[0,0,200-0,H], cache7.se1[1,0]
age: 66
x-cache: HIT TCP_MEM_HIT dirn:3:62586427
x-swift-savetime: Fri, 17 Mar 2023 06:23:09 GMT
x-swift-cachetime: 431283
timing-allow-origin: *
eagleid: 2ff62c9b16791203670628008e
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.194.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.194.133:0
Hash 56c94161d13a5b861d7d4f69a70f646e
7c684b9e0e8a3233552cd3bffe0a3e039c59b010
3f805694b570fe7bc1899fd5ca878afe9b889c63fcbe72743bec88d006675d23
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 22 Mar 2023 05:13:39 GMT
ETag: "7c684b9e0e8a3233552cd3bffe0a3e039c59b010"
Last-Modified: Sat, 18 Mar 2023 05:13:40 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 18 Mar 2023 06:19:27 GMT
Age: 3947
X-Served-By: cache-qpg1224-QPG, cache-bma1648-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 84, 1
X-Timer: S1679120367.264204,VS0,VE1
taiwtp1.com/xin/96080.gif
220.128.218.220200 OK 122 kB URL HTTP/2 taiwtp1.com/xin/96080.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 960 x 80\012- data
Size 122 kB (122193 bytes)
Hash 4293cc73ff1bcc11cfb9a5582a08c8f5
a3307ecff7a2be9d0740c530d6325ff1ed355b8c
ee86f9a233f1b754a8c67ec8b9120f4c5b4df290396ca690d41d54e5b2d528b5
GET /xin/96080.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:11:58 GMT
content-type: image/gif
content-length: 122193
last-modified: Thu, 20 Oct 2022 07:11:02 GMT
etag: "6350f486-1dd51"
expires: Mon, 17 Apr 2023 06:11:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
595tuchuang.com/960x80.gif
14.128.34.140200 OK 145 kB URL HTTP/1.1 595tuchuang.com/960x80.gif
IP 14.128.34.140:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 960 x 80\012- data
Size 145 kB (144990 bytes)
Hash 9fd5431ae14d05e144a79a04b928ad1d
43ca6652416a1403dc5a96d779d414330edbe411
f56b12228d407bfd1f7d17582733a92443a012dc7005b9b9896e9b8b3dc13c2c
GET /960x80.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 06:19:26 GMT
Content-Type: image/gif
Content-Length: 144990
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:28:21 GMT
ETag: "63a309f5-2365e"
Expires: Tue, 11 Apr 2023 08:48:33 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
www.ppmv104.xyz/js/250/6.js?adv=0.10515431068453052
202.95.22.196200 OK 454 B URL HTTP/2 www.ppmv104.xyz/js/250/6.js?adv=0.10515431068453052
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (366)
Hash fb969bfaceb99f1da30a8eeef7ef3f9c
d30202994b3fbd393bfa93cea12ddc7cf445ac0a
befa9bb57dc5ce8dce7d72153b95becb0b1408e127d7d4ccfe122da80928a2e6
GET /js/250/6.js?adv=0.10515431068453052 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:27 GMT
content-type: application/javascript
content-length: 454
last-modified: Sat, 19 Nov 2022 10:19:55 GMT
etag: "6378adcb-1c6"
expires: Sat, 18 Mar 2023 18:19:27 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv104.xyz/js/xx4.js?adv=0.5862253205533966
202.95.22.196200 OK 808 B URL HTTP/2 www.ppmv104.xyz/js/xx4.js?adv=0.5862253205533966
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 7dfa22eddfdf6c259cd6379d3448f00e
d48d3893af5465c9a1030cea4e8b00b07d517ed4
f8d1da1b271d3cebdf68b620bbc1fef17a6059e7fa12b8b55e5bf1005d9ce42d
GET /js/xx4.js?adv=0.5862253205533966 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:27 GMT
content-type: application/javascript
content-length: 808
last-modified: Sat, 11 Mar 2023 09:34:05 GMT
etag: "640c4b0d-328"
expires: Sat, 18 Mar 2023 18:19:27 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
595tuchuang.com/200x200.gif
14.128.34.140200 OK 121 kB URL HTTP/1.1 595tuchuang.com/200x200.gif
IP 14.128.34.140:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 200 x 200\012- data
Size 121 kB (120651 bytes)
Hash bcfac2c4bf0f55f93b33272c31e1464b
60beb5e6b64c209a42d4a3b34c4913bf2cd76951
880b113a7ba644ede38fb18c53dd5de953103fd5c7bc1d9d73cade1160be5a4b
GET /200x200.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 06:19:26 GMT
Content-Type: image/gif
Content-Length: 120651
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 15:19:57 GMT
ETag: "63d68e9d-1d74b"
Expires: Tue, 11 Apr 2023 08:48:36 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
cdn.jsdelivr.net/gh/wanli8899/August@main/head/yuepao960X160.gif
104.16.86.20200 OK 210 kB URL HTTP/2 cdn.jsdelivr.net/gh/wanli8899/August@main/head/yuepao960X160.gif
IP 104.16.86.20:0
File type GIF image data, version 89a, 960 x 160\012- data
Size 210 kB (209562 bytes)
Hash e42537f39970a680706efec4d24379a3
834a6cbafe7f6743bd823ec5a7acdbbba90f237d
8ec6c208b1375d57c8dda661fb095de6daae0e15c4f34998064837fcfd269dc1
GET /gh/wanli8899/August@main/head/yuepao960X160.gif HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:27 GMT
content-type: image/gif
content-length: 209562
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: main
x-jsd-version-type: branch
etag: W/"3329a-g0psuv5/Z0O9gj7Fp6zbu6kPI30"
x-served-by: cache-fra-eddf8230137-FRA, cache-jnb7027-JNB
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xQuhNAkLKfh430WXfRwbdYQ%2B42HSEkuLQlQjG5%2BTGlbeK2tOu3LJAN1opAMbUeAix5h3S7rzvW1yu3PCD1P0uIKynN7vZz2OECFoLFeSUmjz7XHktycKqXShC6RhSVytZXs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7a9b5d397cdab527-OSL
X-Firefox-Spdy: h2
www.ppmv104.xyz/ads/piaofu.js?adv=0.22227993528162626
202.95.22.196404 Not Found 146 B URL HTTP/2 www.ppmv104.xyz/ads/piaofu.js?adv=0.22227993528162626
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /ads/piaofu.js?adv=0.22227993528162626 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sat, 18 Mar 2023 06:19:27 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g3
151.101.194.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 151.101.194.133:0
Hash 62cfefcaa5b6fcd8d06634d6dadb9a6d
5d7521ae87229440f243b7d2397f57500053f85c
11f7515dbe59a2b3b96c1eb3327a34a8d9498ad46f152113486e6029faff24b9
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1461
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 22 Mar 2023 04:28:22 GMT
ETag: "5d7521ae87229440f243b7d2397f57500053f85c"
Last-Modified: Sat, 18 Mar 2023 04:28:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 18 Mar 2023 06:19:28 GMT
Age: 2947
X-Served-By: cache-qpg1272-QPG, cache-bma1673-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 13, 1
X-Timer: S1679120368.149483,VS0,VE1
www.ppmv104.xyz/js/tongji.js?adv=0.28758556632197774
202.95.22.196200 OK 254 B URL HTTP/2 www.ppmv104.xyz/js/tongji.js?adv=0.28758556632197774
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
Hash 33bfe88fe108264906550fc71fee999b
ffcdd93706a63369148ac4df56096976d2540d5c
9d2d61329c0baa529f4d56116bf456f787f01d0194ff9c711afb6280a739562e
GET /js/tongji.js?adv=0.28758556632197774 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:28 GMT
content-type: application/javascript
content-length: 254
last-modified: Sun, 01 Jan 2023 09:06:32 GMT
etag: "63b14d18-fe"
expires: Sat, 18 Mar 2023 18:19:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?6391490fe039c3b8b30b2a81c74234a1
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?6391490fe039c3b8b30b2a81c74234a1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 27675c46f31fafa57322cb4d312688e1
3559c4a7efbef8248bfff4d58a23c74794ce3adc
35d37f364a5866f49c0f54bfd4a1cbf39688dbc00753db578bee4f78becea1fb
GET /hm.js?6391490fe039c3b8b30b2a81c74234a1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 18 Mar 2023 06:19:28 GMT
Etag: 41310a7961dec0c525c7d19ad1c1e36d
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B6D0BCE317F819AF; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5200bc18508b847bda34c9fdce224364
b1dd3f4a415de4b4f20eacad0e3ac5d8d4e17b6e
64e29fdac65b7af12df9e939b007b4555761309576d5e744d48fb21e412cfd2c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64E29FDAC65B7AF12DF9E939B007B4555761309576D5E744D48FB21E412CFD2C"
Last-Modified: Thu, 16 Mar 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6722
Expires: Sat, 18 Mar 2023 08:11:30 GMT
Date: Sat, 18 Mar 2023 06:19:28 GMT
Connection: keep-alive
8924tutututu.oss-accelerate.aliyuncs.com/8924-150x150zx.gif
47.254.187.183200 OK 134 kB URL HTTP/1.1 8924tutututu.oss-accelerate.aliyuncs.com/8924-150x150zx.gif
IP 47.254.187.183:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 150 x 150\012- data
Size 134 kB (133613 bytes)
Hash e57b5f97083fad6c1d7b17a59a1a2a66
d8340909630bba8ec702df6647b63ca2451c3b43
b4237c21b35605809bb572e991c599d850f2bff1ce00f9734dee99a0de56044e
GET /8924-150x150zx.gif HTTP/1.1
Host: 8924tutututu.oss-accelerate.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 18 Mar 2023 06:19:28 GMT
Content-Type: image/gif
Content-Length: 133613
Connection: keep-alive
x-oss-request-id: 641557F0FE7752EC9991349C
Accept-Ranges: bytes
ETag: "E57B5F97083FAD6C1D7B17A59A1A2A66"
Last-Modified: Thu, 23 Feb 2023 10:46:01 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1868432114133866069
x-oss-storage-class: Standard
x-oss-ec: 0048-00000103
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 5Xtflwg/rWwdexelmhoqZg==
x-oss-server-time: 3
hm.baidu.com/hm.js?889fe9c05f7b0f2db8ba49f0651b6f40
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?889fe9c05f7b0f2db8ba49f0651b6f40
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 50a82f90348448f26bf9ac67103f9366
6fa167be988b27a4b8220dc8c27f15ae40377aa1
22e580ca55203af623e8e374d7e477d4e780d73e0a8000ce09dd6ca3358e3646
GET /hm.js?889fe9c05f7b0f2db8ba49f0651b6f40 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 18 Mar 2023 06:19:28 GMT
Etag: ec113ff59841d7875ca6a3e9accd14b8
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A9DC5762220AA9FA; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
www.ppmv104.xyz/js/250/1.js?adv=0.8219012203411393
202.95.22.196200 OK 1.1 kB URL HTTP/2 www.ppmv104.xyz/js/250/1.js?adv=0.8219012203411393
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
Hash 2622c268ea15397d0c40679eebdf4a7e
adddf59e2c783c536947305780d193620bf80ef8
caa2e38fd9921792bd5c5d18ec21204640f83a491a975e1fbc97bf389d894d04
GET /js/250/1.js?adv=0.8219012203411393 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:25 GMT
content-type: application/javascript
last-modified: Sun, 12 Mar 2023 07:39:22 GMT
vary: Accept-Encoding
etag: W/"640d81aa-662"
expires: Sat, 18 Mar 2023 18:19:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?ff71eabd2efc2666b0ecc7fda86ac140
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?ff71eabd2efc2666b0ecc7fda86ac140
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 21ac84e0e28414ffb99ce258a244b06c
d70cf39b7beec3752175ec19cafac4919de27199
d139c16111a17b7a71cd89410f1babbcf4e2430744ea2140589b5145087dce2e
GET /hm.js?ff71eabd2efc2666b0ecc7fda86ac140 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 18 Mar 2023 06:19:28 GMT
Etag: 52ed8f7ff68db0c43034a029ba429b1f
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=61E58719F2F1A021; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
si1.go2yd.com/get-image/0xmAGT9KS9C
163.171.140.79200 OK 118 kB URL HTTP/2 si1.go2yd.com/get-image/0xmAGT9KS9C
IP 163.171.140.79:0
ASN #54994 QUANTILNETWORKS
File type GIF image data, version 89a, 640 x 200\012- data
Size 118 kB (117593 bytes)
Hash c4caa37b717580e8594587f32ca86470
a645ec82581a0b18f67444b62a062059adf78aa6
208bafb1df6fa8b7929896b30415514e2dc59312332ec26aff058767fa81f269
GET /get-image/0xmAGT9KS9C HTTP/1.1
Host: si1.go2yd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:28 GMT
content-type: image/gif
content-length: 117593
server: Tengine
x-application-context: application
x-kss-request-id: 9a211df897c146b99866a236ff549e2f
etag: "c4caa37b717580e8594587f32ca86470"
content-md5: xMqje3F1gOhZRYfzLKhkcA==
last-modified: Thu, 10 Feb 2022 15:30:06 GMT
accept-ranges: bytes
age: 1
x-via: 1.1 PSbjwjBGP2ih137:4 (Cdn Cache Server V2.0), 1.1 PSzjnbsxkx232:7 (Cdn Cache Server V2.0), 1.1 tb118:13 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1cc96:12 (Cdn Cache Server V2.0)
x-ws-request-id: 641557f0_PShlamstdAMS1se91_40066-41287
access-control-allow-origin: *
ws-s2h-acc-level: 1
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 727 B IP 192.229.221.95:0
Hash 22e2a707c2feeb8ec6e8f6c0be681445
12fd82de480224640520b0b12bd819bef019ae48
22f079a1af41910b659da8b66c3d2f581935933d3dc3e48d98877d8f0fb731ac
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5907
Cache-Control: max-age=113169
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 06:19:28 GMT
Etag: "641457ee-2d7"
Expires: Sun, 19 Mar 2023 13:45:37 GMT
Last-Modified: Fri, 17 Mar 2023 12:07:10 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 727
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1449567492&si=889fe9c05f7b0f2db8ba49f0651b6f40&su=https%3A%2F%2Fwww.apippmv11.com%2F&v=1.3.0&lv=1&sn=48133&r=0&ww=1280&u=https%3A%2F%2Fwww.ppmv104.xyz%2F&tt=PPMv%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1449567492&si=889fe9c05f7b0f2db8ba49f0651b6f40&su=https%3A%2F%2Fwww.apippmv11.com%2F&v=1.3.0&lv=1&sn=48133&r=0&ww=1280&u=https%3A%2F%2Fwww.ppmv104.xyz%2F&tt=PPMv%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1449567492&si=889fe9c05f7b0f2db8ba49f0651b6f40&su=https%3A%2F%2Fwww.apippmv11.com%2F&v=1.3.0&lv=1&sn=48133&r=0&ww=1280&u=https%3A%2F%2Fwww.ppmv104.xyz%2F&tt=PPMv%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 18 Mar 2023 06:19:28 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=78DDA1AF6455FF7B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=578707616&si=6391490fe039c3b8b30b2a81c74234a1&su=https%3A%2F%2Fwww.apippmv11.com%2F&v=1.3.0&lv=1&sn=48133&r=0&ww=1280&u=https%3A%2F%2Fwww.ppmv104.xyz%2F&tt=PPMv%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=578707616&si=6391490fe039c3b8b30b2a81c74234a1&su=https%3A%2F%2Fwww.apippmv11.com%2F&v=1.3.0&lv=1&sn=48133&r=0&ww=1280&u=https%3A%2F%2Fwww.ppmv104.xyz%2F&tt=PPMv%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=578707616&si=6391490fe039c3b8b30b2a81c74234a1&su=https%3A%2F%2Fwww.apippmv11.com%2F&v=1.3.0&lv=1&sn=48133&r=0&ww=1280&u=https%3A%2F%2Fwww.ppmv104.xyz%2F&tt=PPMv%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 18 Mar 2023 06:19:28 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=038CC70CAC9097E7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1795542815&si=ff71eabd2efc2666b0ecc7fda86ac140&su=https%3A%2F%2Fwww.apippmv11.com%2F&v=1.3.0&lv=1&sn=48133&r=0&ww=1280&u=https%3A%2F%2Fwww.ppmv104.xyz%2F&tt=PPMv%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1795542815&si=ff71eabd2efc2666b0ecc7fda86ac140&su=https%3A%2F%2Fwww.apippmv11.com%2F&v=1.3.0&lv=1&sn=48133&r=0&ww=1280&u=https%3A%2F%2Fwww.ppmv104.xyz%2F&tt=PPMv%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1795542815&si=ff71eabd2efc2666b0ecc7fda86ac140&su=https%3A%2F%2Fwww.apippmv11.com%2F&v=1.3.0&lv=1&sn=48133&r=0&ww=1280&u=https%3A%2F%2Fwww.ppmv104.xyz%2F&tt=PPMv%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 18 Mar 2023 06:19:28 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=96D9CEB62BFE5AE2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.ppmv104.xyz/js/piaofu.js?adv=0.6395107202044082
202.95.22.196200 OK 271 kB URL HTTP/2 www.ppmv104.xyz/js/piaofu.js?adv=0.6395107202044082
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
Size 271 kB (271143 bytes)
Hash 1c5645e7274114b48213c8772a42e8f3
09165e0a40f5eaf4b2dc0807a455019156e31379
28cd83496c85941a3fbb5303b0429259ab1d253cd69e16820c425e26bc1f83a6
GET /js/piaofu.js?adv=0.6395107202044082 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:27 GMT
content-type: application/javascript
last-modified: Sat, 11 Mar 2023 15:29:27 GMT
vary: Accept-Encoding
etag: W/"640c9e57-15aa"
expires: Sat, 18 Mar 2023 18:19:27 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.sm.cn/d63b4f53e8b6efce3d76e926aaf795d6/2131e92816782835221364415e94e0
115.223.32.96200 OK 320 kB URL HTTP/2 cdn.sm.cn/d63b4f53e8b6efce3d76e926aaf795d6/2131e92816782835221364415e94e0
IP 115.223.32.96:0
ASN #134771 WENZHOU, ZHEJIANG Province, P.R.China.
File type GIF image data, version 89a, 200 x 200\012- data
Size 320 kB (320396 bytes)
Hash f1bd2e508413c6089ec9fcf6954b2196
b60c7b6b05a282a58ecde182ce2ac5a5a2ac087a
16df1f845970a1b49b6309d0af3dfabe40e54bb3a9bac381a2dac8ff1f9a6ff3
GET /d63b4f53e8b6efce3d76e926aaf795d6/2131e92816782835221364415e94e0 HTTP/1.1
Host: cdn.sm.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 320396
date: Sun, 12 Mar 2023 06:07:33 GMT
x-oss-request-id: 640D6C25AB8D903431B8A3DD
x-oss-cdn-auth: success
accept-ranges: bytes
etag: "1089FE8F5C23F9AC703404DF5259B36C-1"
last-modified: Wed, 08 Mar 2023 13:52:02 GMT
x-oss-object-type: Multipart
x-oss-hash-crc64ecma: 13156096847948656585
x-oss-storage-class: Standard
x-oss-server-time: 25
ali-swift-global-savetime: 1678601253
via: cache44.l2cn2656[41,41,200-0,M], cache41.l2cn2656[42,0], cache11.cn1407[0,0,200-0,H], cache8.cn1407[1,0]
age: 519115
x-cache: HIT TCP_MEM_HIT dirn:13:835316474
x-swift-savetime: Sun, 12 Mar 2023 06:07:33 GMT
x-swift-cachetime: 2592000
cache-control: max-age=2592000,s-maxage=2592000,public,immutable
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 73df201c16791203681651171e
X-Firefox-Spdy: h2
cdn.sm.cn/ac2138f79d3ab200a25919c9cb225988/2131e95216781985904594193e6b39
115.223.32.96200 OK 187 kB URL HTTP/2 cdn.sm.cn/ac2138f79d3ab200a25919c9cb225988/2131e95216781985904594193e6b39
IP 115.223.32.96:0
ASN #134771 WENZHOU, ZHEJIANG Province, P.R.China.
File type GIF image data, version 89a, 960 x 60\012- data
Size 187 kB (186826 bytes)
Hash 8c4c80ba990fdfb812bd64fb62d487a5
e89cc2b30fcbc2075f0a2a30b4ce8630912a7790
26dcbf4abd4e16c6e9cc128812b6046bf540df5027fc181b92cd6412f938d257
GET /ac2138f79d3ab200a25919c9cb225988/2131e95216781985904594193e6b39 HTTP/1.1
Host: cdn.sm.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 186826
date: Tue, 07 Mar 2023 14:16:36 GMT
x-oss-request-id: 6407474408F5D23334DF9222
x-oss-cdn-auth: success
accept-ranges: bytes
etag: "123AC1D65DF808583819B524347166AE-1"
last-modified: Tue, 07 Mar 2023 14:16:31 GMT
x-oss-object-type: Multipart
x-oss-hash-crc64ecma: 7693321962206005774
x-oss-storage-class: Standard
x-oss-server-time: 18
ali-swift-global-savetime: 1678198596
via: cache28.l2cn2656[51,51,200-0,M], cache1.l2cn2656[53,0], cache12.cn1407[0,0,200-0,H], cache8.cn1407[2,0]
age: 921772
x-cache: HIT TCP_MEM_HIT dirn:12:934396365
x-swift-savetime: Tue, 07 Mar 2023 14:16:36 GMT
x-swift-cachetime: 2592000
cache-control: max-age=2592000,s-maxage=2592000,public,immutable
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 73df201c16791203681651175e
X-Firefox-Spdy: h2
p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
123.6.111.114200 OK 678 kB URL HTTP/2 p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
IP 123.6.111.114:0
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 270 x 160\012- data
Size 678 kB (677521 bytes)
Hash 94051cb1d1b77200b4462281a864b96e
e5b468a1b2f4bbdda1b6a3a0df2dcce6b3de7e06
d44d0d2dd188024b60ec38cb3f3ea10c080690175e923f90c9c2a2e862670c84
GET /img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image HTTP/1.1
Host: p26.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:28 GMT
content-type: image/gif
content-length: 677521
server: openresty
imagex-fmt: gif2gif
last-modified: Thu, 30 Dec 2021 00:07:35 GMT
nw-session-id: 2021123008073501015013614530ADE9B0dprsv01tt
nw-session-trace: 2021-12-30T08:07:35.194015393+08:00 68
x-bdcdn-cache-status: TCP_HIT
x-length: 677521
x-powered-by: ImageX
x-response-date: Thu, 30 Dec 2021 08:07:35 GMT
x-response-lb: image
x-tt-logid: 2021123008073501015013614530ADE9B0
server-timing: cdn-cache;desc=HIT, edge;dur=13
x-tt-trace-host: 016a2077e03b2041825c42669e9a23cec5ee04519515486308eb42b81315658df6aa5ed29ad219c7d25626d5b022cced5274c18183adcd43889f65e87a17fde2315b0226a7e5f07d4c19094125051b3e74699be800dd629619bc2141d5fb81fc89ccc76230d7d3e4f731a9d881f3cb16c4
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
via: CHN-HAzhengzhou-AREACUCC3-CACHE46[13],CHN-HAzhengzhou-AREACUCC3-CACHE35[0,TCP_HIT,11],CHN-TJ-GLOBAL1-CACHE97[17],CHN-TJ-GLOBAL1-CACHE35[0,TCP_HIT,11]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 31536000
nginx-hit: 1
age: 27034236
cache-control: max-age=31536000
accept-ranges: bytes
access-control-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2
fadacaitp.com/68-250-250.gif
20.239.64.84200 OK 0 B URL HTTP/2 fadacaitp.com/68-250-250.gif
IP 20.239.64.84:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /68-250-250.gif HTTP/1.1
Host: fadacaitp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:26 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Sun, 25 Dec 2022 07:04:58 GMT
etag: W/"63a7f61a-49d2a"
expires: Sun, 16 Apr 2023 13:56:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
zzpic-1255305554.cos.ap-beijing.myqcloud.com/zhuanzh/c3b6d9b0-ff33-43ec-b774-4f9cf64711c5.gif
82.156.94.13200 OK 0 B URL HTTP/1.1 zzpic-1255305554.cos.ap-beijing.myqcloud.com/zhuanzh/c3b6d9b0-ff33-43ec-b774-4f9cf64711c5.gif
IP 82.156.94.13:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
GET /zhuanzh/c3b6d9b0-ff33-43ec-b774-4f9cf64711c5.gif HTTP/1.1
Host: zzpic-1255305554.cos.ap-beijing.myqcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 488987
Connection: keep-alive
Accept-Ranges: bytes
Date: Sat, 18 Mar 2023 06:19:28 GMT
ETag: "6a7d54ecdc2d1cce357d304db217ccec"
Last-Modified: Sat, 11 Mar 2023 17:25:45 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 2220855577311214356
x-cos-request-id: NjQxNTU3ZjBfN2U0ZTQ0MGJfMWExYV8xM2U1NmJiOQ==
www.ppmv104.xyz/js/250.js?adv=0.4529246002285531
202.95.22.196200 OK 0 B URL HTTP/2 www.ppmv104.xyz/js/250.js?adv=0.4529246002285531
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
GET /js/250.js?adv=0.4529246002285531 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:25 GMT
content-type: application/javascript
last-modified: Mon, 13 Mar 2023 04:38:41 GMT
vary: Accept-Encoding
etag: W/"640ea8d1-f0d"
expires: Sat, 18 Mar 2023 18:19:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.ppmv104.xyz/js/xx1.js?adv=0.7576213185827775
202.95.22.196200 OK 0 B URL HTTP/2 www.ppmv104.xyz/js/xx1.js?adv=0.7576213185827775
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
GET /js/xx1.js?adv=0.7576213185827775 HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: application/javascript
last-modified: Mon, 13 Mar 2023 04:27:29 GMT
vary: Accept-Encoding
etag: W/"640ea631-e35"
expires: Sat, 18 Mar 2023 18:19:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.ppmv104.xyz/template/m1938pc/css/ate.css
202.95.22.196200 OK 0 B URL HTTP/2 www.ppmv104.xyz/template/m1938pc/css/ate.css
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
GET /template/m1938pc/css/ate.css HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: text/css
last-modified: Tue, 04 Jan 2022 15:13:26 GMT
vary: Accept-Encoding
etag: W/"61d46416-126e4"
expires: Sat, 18 Mar 2023 18:19:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
fadacaitp.com/68-960-250.gif
20.239.64.84200 OK 0 B URL HTTP/2 fadacaitp.com/68-960-250.gif
IP 20.239.64.84:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /68-960-250.gif HTTP/1.1
Host: fadacaitp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 18 Mar 2023 06:19:25 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Sun, 25 Dec 2022 07:04:55 GMT
etag: W/"63a7f617-6d922"
expires: Sun, 16 Apr 2023 13:56:11 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.ppmv104.xyz/template/m1938pc/static/js/jquery.lazyload.min.js
202.95.22.196200 OK 0 B URL HTTP/2 www.ppmv104.xyz/template/m1938pc/static/js/jquery.lazyload.min.js
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
GET /template/m1938pc/static/js/jquery.lazyload.min.js HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 14:08:24 GMT
vary: Accept-Encoding
etag: W/"61d99ad8-d35"
expires: Sat, 18 Mar 2023 18:19:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.ppmv104.xyz/template/m1938pc/static/js/base1.js
202.95.22.196200 OK 0 B URL HTTP/2 www.ppmv104.xyz/template/m1938pc/static/js/base1.js
IP 202.95.22.196:0
ASN #64050 BGPNET Global ASN
GET /template/m1938pc/static/js/base1.js HTTP/1.1
Host: www.ppmv104.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv104.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 06:19:24 GMT
content-type: application/javascript
last-modified: Sat, 31 Dec 2022 07:21:11 GMT
vary: Accept-Encoding
etag: W/"63afe2e7-153a"
expires: Sat, 18 Mar 2023 18:19:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2