kidahora.net/focus/8.html
38.53.112.198301 Moved Permanently 0 B URL HTTP/1.1 kidahora.net/focus/8.html
IP 38.53.112.198:0
ASN #398823 PEGTECHINC-AP-02
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /focus/8.html HTTP/1.1
Host: kidahora.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 15 Jan 2023 04:11:03 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.kidahora.net/focus/8.html
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2258cd6b877a3aca8f4c84074e65ac4b
4e46c70941f8e497e8afc8d078644e7f81761a1c
faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19757
Expires: Sun, 15 Jan 2023 09:40:12 GMT
Date: Sun, 15 Jan 2023 04:10:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3063227f59d1935298b0620fa7919145
478e1d8bef04b1f95381cac01829c03b6779d420
619281d3b9753bc6d2845786da75e8566687362769517aacf90f953ffbb8407c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "619281D3B9753BC6D2845786DA75E8566687362769517AACF90F953FFBB8407C"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10679
Expires: Sun, 15 Jan 2023 07:08:54 GMT
Date: Sun, 15 Jan 2023 04:10:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 15 Jan 2023 03:42:05 GMT
content-type: application/json
age: 1730
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7bd85a261739c122eefb74ffddaec99
e2e059b0740592e8591d432249aafe5fcb8af23c
71bdd130b8d143f228542f678e91c98ab4e5844fb9f47b036e15372660be25fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71BDD130B8D143F228542F678E91C98AB4E5844FB9F47B036E15372660BE25FD"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3193
Expires: Sun, 15 Jan 2023 05:04:08 GMT
Date: Sun, 15 Jan 2023 04:10:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WjG34kEqpJWtUAGJmtG3Qa3L9koFPK7dwpuwQbCkqtFZ2ABuxjnGVUJdd7efd3yPR3dp76Gf1xsAqnIt5MpHXw==
x-amz-request-id: BCCVMNJ30CYCHEWG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 15 Jan 2023 03:44:00 GMT
age: 1615
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:55 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 15 Jan 2023 03:17:25 GMT
age: 3210
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.kidahora.net/focus/8.html
38.53.112.198200 OK 706 B URL HTTP/1.1 www.kidahora.net/focus/8.html
IP 38.53.112.198:0
ASN #398823 PEGTECHINC-AP-02
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (828), with CRLF line terminators
Hash 3d91d1e83ed9d13225ab1365beea3802
c0f97ffc2631b12726c71de6b7b3e7d6233edda3
94788fc4eccded6cdc68ce8369822f425e12e15ab2c0d0260d2b3e758c30aea2
GET /focus/8.html HTTP/1.1
Host: www.kidahora.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jan 2023 04:11:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c01ec61f7ca77158f474b3ab519c12fa
fc82ae0fcd73a83a980b75709a08e65239894e4a
f533e0fac9b92e79d4fbd6e70b42a83067de95f0a13cc737d7e5fa459baa4c54
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6215
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 04:10:55 GMT
Last-Modified: Sun, 15 Jan 2023 02:27:20 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.kidahora.net/common.js
38.53.112.198200 OK 1.1 kB URL HTTP/1.1 www.kidahora.net/common.js
IP 38.53.112.198:0
ASN #398823 PEGTECHINC-AP-02
File type HTML document, ASCII text, with very long lines (389), with CRLF line terminators
Hash e76fa239f5b91e17b93cd981eefbe2e5
bc493da2145c33b1bfd03dad664e1a3d54a800dc
cfefe4e361499d352ca75b1be29f9dda7e59f058c01e88af7424e6d6383c13c1
GET /common.js HTTP/1.1
Host: www.kidahora.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kidahora.net/focus/8.html
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jan 2023 04:11:04 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kidahora.net/tj.js
38.53.112.198200 OK 801 B IP 38.53.112.198:0
ASN #398823 PEGTECHINC-AP-02
File type ASCII text, with CRLF line terminators
Hash 49845246b5474410f84cc371860277be
e95c59cb06986e7604b3fd00940de0025a214213
16b39ec620fe9d8e17807a6248d8e14a2eb0b8eaa705ae03ec8ed023db214f65
GET /tj.js HTTP/1.1
Host: www.kidahora.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kidahora.net/focus/8.html
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jan 2023 04:11:04 GMT
Content-Type: application/x-javascript
Content-Length: 801
Connection: keep-alive
push.services.mozilla.com/
52.40.36.92101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.40.36.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: z5CZIGkzTHcL+yOVt3C7cQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7lvCQdPcFf0SXgVA00FytKZLYWk=
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dbffefc6a6f1924e4fa821e0d1cee2d3
2703bd685f13e364ff2a9c33d37ce12928ceb338
ce86c8d968a65dfefc726d724c14dfac250ea9efb6f7d0305ec33d18ec1b1c36
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CE86C8D968A65DFEFC726D724C14DFAC250EA9EFB6F7D0305EC33D18EC1B1C36"
Last-Modified: Sat, 14 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3405
Expires: Sun, 15 Jan 2023 05:07:41 GMT
Date: Sun, 15 Jan 2023 04:10:56 GMT
Connection: keep-alive
api.share.baidu.com/s.gif?l=http://www.kidahora.net/focus/8.html
180.101.212.103200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.kidahora.net/focus/8.html
IP 180.101.212.103:0
ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.kidahora.net/focus/8.html HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kidahora.net/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Sun, 15 Jan 2023 04:10:56 GMT
www.kidahora.net/favicon.ico
38.53.112.198200 OK 1.2 kB URL HTTP/1.1 www.kidahora.net/favicon.ico
IP 38.53.112.198:0
ASN #398823 PEGTECHINC-AP-02
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.kidahora.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kidahora.net/focus/8.html
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jan 2023 04:11:04 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Fri, 20 Jan 2023 04:11:04 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 3d719fc7a4bb0ce5d9f070e1956d7bd6
f0aa9b06c774b526210ac3ee9416159a39f134df
15f63cc9cf6f5d1bfb60fa2b11d22bdd29bcdc8064e2b8d5f66ce2e4042b47c1
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jan 2023 04:10:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 19 Jan 2023 01:57:05 GMT
ETag: "f0aa9b06c774b526210ac3ee9416159a39f134df"
Last-Modified: Sun, 15 Jan 2023 01:57:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2485
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 789bc3b889e7b51d-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 3d719fc7a4bb0ce5d9f070e1956d7bd6
f0aa9b06c774b526210ac3ee9416159a39f134df
15f63cc9cf6f5d1bfb60fa2b11d22bdd29bcdc8064e2b8d5f66ce2e4042b47c1
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jan 2023 04:10:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 19 Jan 2023 01:57:05 GMT
ETag: "f0aa9b06c774b526210ac3ee9416159a39f134df"
Last-Modified: Sun, 15 Jan 2023 01:57:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2485
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 789bc3b8a9efb51d-OSL
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dbffefc6a6f1924e4fa821e0d1cee2d3
2703bd685f13e364ff2a9c33d37ce12928ceb338
ce86c8d968a65dfefc726d724c14dfac250ea9efb6f7d0305ec33d18ec1b1c36
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CE86C8D968A65DFEFC726D724C14DFAC250EA9EFB6F7D0305EC33D18EC1B1C36"
Last-Modified: Sat, 14 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3405
Expires: Sun, 15 Jan 2023 05:07:41 GMT
Date: Sun, 15 Jan 2023 04:10:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7324
Expires: Sun, 15 Jan 2023 06:13:01 GMT
Date: Sun, 15 Jan 2023 04:10:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7324
Expires: Sun, 15 Jan 2023 06:13:01 GMT
Date: Sun, 15 Jan 2023 04:10:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7324
Expires: Sun, 15 Jan 2023 06:13:01 GMT
Date: Sun, 15 Jan 2023 04:10:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7324
Expires: Sun, 15 Jan 2023 06:13:01 GMT
Date: Sun, 15 Jan 2023 04:10:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7324
Expires: Sun, 15 Jan 2023 06:13:01 GMT
Date: Sun, 15 Jan 2023 04:10:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e68a8bb-322d-4bae-b7c5-1119e3ee275e.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e68a8bb-322d-4bae-b7c5-1119e3ee275e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12751079fc17bca8630a1ea2b4334a75
0d0bb45beee28e37376cfc3de11074c6f981ff99
15b949a3524291d6c8bd8ef759d3cdb29d6fafd43f3ffba408f6aa7be7c14e7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e68a8bb-322d-4bae-b7c5-1119e3ee275e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6024
x-amzn-requestid: 0c4e6a89-2fbc-42c8-ae1b-0cf608c134cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ewH9tFrJoAMFsVg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c32057-0731faff3ab762d4793376e7;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 21:36:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cj7k787MRulOroxH39ET_rGyzNtcYzkmPLCIex6J20yRQzUGPze_0A==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 21:54:12 GMT
age: 22605
etag: "0d0bb45beee28e37376cfc3de11074c6f981ff99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faef58504-f92f-4cd3-bd97-3b50a3784de1.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faef58504-f92f-4cd3-bd97-3b50a3784de1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98b4bbbd2711ea868a79154cf2b53000
a3688a7892c5abeac934a5d0a13d4a64c359a2c3
e1565fb3b967e5aefec75f9943780da4a0de245dbc67469402de845e5b028e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faef58504-f92f-4cd3-bd97-3b50a3784de1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3866
x-amzn-requestid: 150ed752-d450-42ed-8748-48624a9cf78a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ewH--H1HoAMFdOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3205f-2b3898bb5c798d6e53a6f9ca;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 21:36:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YGRk6PGntHmJCqC6oti7szi1nfUbxZoYksGLSr8KUO0mtfQa-MRKbg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 21:51:43 GMT
age: 22754
etag: "a3688a7892c5abeac934a5d0a13d4a64c359a2c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a23d61d610c7b55d943fcb2636a01b65
82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065
28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9539
x-amzn-requestid: eb427fd6-c342-4a22-af45-ecc528cf4a8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: epfDqEAZIAMFudQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0787d-4f61ecd2422081224869da76;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:15:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RRMRT2BC5p1x0Vh20ut0Kjbz2mnaNToUIbzIg9oczduvzYCckvFORA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 12:46:14 GMT
age: 55483
etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4f9b18a-acad-4584-bb09-000347f67b75.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4f9b18a-acad-4584-bb09-000347f67b75.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 63e6563cf37af474836f8d5d65cd2d0b
c2ad9366f32832bf2799f265683476713059e786
2d393d9ca4a3f4687b918bc2de654453a4fd3a5030da7322db97718905e1fbf9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4f9b18a-acad-4584-bb09-000347f67b75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7079
x-amzn-requestid: f8028d2a-bd1f-4b69-bec7-9c513d3b88b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etJfhESAIAMFRZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ef96-1c775bca6c8d1177720a5c0b;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 23:56:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6xA3ZxZHK9FxC5Uaji00Wsl_4mcNs-YElxNb0gGw6RRucCdkgKue_w==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 07:17:03 GMT
age: 75234
etag: "c2ad9366f32832bf2799f265683476713059e786"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc75c5357-d038-4ff3-8b8f-9b5f26db0a5e.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc75c5357-d038-4ff3-8b8f-9b5f26db0a5e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bda8a71e1e7a2173911de887bcab274
a05c3182c259756d1a5327d5a133320313565fc8
b00ae81aae4e5867010548c35737058b2ccfd9a6a6e2a061c729a71d04a5a1a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc75c5357-d038-4ff3-8b8f-9b5f26db0a5e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2965
x-amzn-requestid: 40c45a90-a37a-4266-8160-a1f28e1f1ccd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ej3IeG1GoAMFl1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63be389c-79eb438c525de999349c4a08;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 04:18:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6_EoyIEs60dBaJn9wuxAFVShqt-8Qb81cOHUFVmtqcE-V3mqLU8nnw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 21:54:18 GMT
age: 22599
etag: "a05c3182c259756d1a5327d5a133320313565fc8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2973663e-5260-4c6e-8a14-91348fef9f3e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2973663e-5260-4c6e-8a14-91348fef9f3e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccd9a6ee59820f0e819323256cdeebcf
4b7dc1d4fa669c62d8506add356364020c203c7b
4d55fcb90dddc5eae466cc9ce0c42b560b964e3c5c02f069f6a09695af996fe3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2973663e-5260-4c6e-8a14-91348fef9f3e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10319
x-amzn-requestid: e8b1b643-253f-4dee-ad0c-687d30b1a29f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eaWncHP5oAMFSRA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba6afc-412567503a6185391cf200f4;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 07:04:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4Qp2LOvEM-11PLwVbesAUWzO-z9b89zlVqdx_JAdL_imFo7pN9x4-Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 18:28:21 GMT
age: 34956
etag: "4b7dc1d4fa669c62d8506add356364020c203c7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?52bdc5bfbf75ae45f0f06f1c2b94552b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?52bdc5bfbf75ae45f0f06f1c2b94552b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 9ec126c495e08e172655b3f406bce54b
1168005fe7a3ac9265ce88bf856afa9be3d6b9bb
2d2d70bab6bc53de2b78299982267f0fea54cb48583df57bd6021ef28cf7df80
GET /hm.js?52bdc5bfbf75ae45f0f06f1c2b94552b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kidahora.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sun, 15 Jan 2023 04:10:57 GMT
Etag: 2a2c5897ff7a0d7f3acff11dc301f39e
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=BE5CC7818FEB9D15; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?1d17743632808b728a4c05b9d579a62a
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?1d17743632808b728a4c05b9d579a62a
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 352e1abcb3fd51fbfced651260311d62
32b25334684850d84482bdf617760f075529a30b
82c2870437c64611b9451554e9d4ec8d5e50d785d143a80cbfa3cc1d9ef70d6e
GET /hm.js?1d17743632808b728a4c05b9d579a62a HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kidahora.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Sun, 15 Jan 2023 04:10:57 GMT
Etag: 2b84ceb45ea07e3828971e2765807c1c
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=DD6B67A58E8DE058; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a1454437d9588cb1b5a26ac13f64feac
f1280e631575b77d8f76c2946589aed530094558
5fa8a527ecac0997c277d6b7216c4bfffbbbb25a5e1f0bb66def77e43e20763e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5FA8A527ECAC0997C277D6B7216C4BFFFBBBB25A5E1F0BB66DEF77E43E20763E"
Last-Modified: Fri, 13 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 15 Jan 2023 10:10:58 GMT
Date: Sun, 15 Jan 2023 04:10:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a1454437d9588cb1b5a26ac13f64feac
f1280e631575b77d8f76c2946589aed530094558
5fa8a527ecac0997c277d6b7216c4bfffbbbb25a5e1f0bb66def77e43e20763e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5FA8A527ECAC0997C277D6B7216C4BFFFBBBB25A5E1F0BB66DEF77E43E20763E"
Last-Modified: Fri, 13 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21560
Expires: Sun, 15 Jan 2023 10:10:18 GMT
Date: Sun, 15 Jan 2023 04:10:58 GMT
Connection: keep-alive
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=793097019&si=52bdc5bfbf75ae45f0f06f1c2b94552b&v=1.3.0&lv=1&sn=57493&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Ffocus%2F8.html&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=793097019&si=52bdc5bfbf75ae45f0f06f1c2b94552b&v=1.3.0&lv=1&sn=57493&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Ffocus%2F8.html&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=793097019&si=52bdc5bfbf75ae45f0f06f1c2b94552b&v=1.3.0&lv=1&sn=57493&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Ffocus%2F8.html&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kidahora.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 15 Jan 2023 04:10:58 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=D6EDC18B7048009D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1727230106&si=1d17743632808b728a4c05b9d579a62a&v=1.3.0&lv=1&sn=57493&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Ffocus%2F8.html&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1727230106&si=1d17743632808b728a4c05b9d579a62a&v=1.3.0&lv=1&sn=57493&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Ffocus%2F8.html&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1727230106&si=1d17743632808b728a4c05b9d579a62a&v=1.3.0&lv=1&sn=57493&r=0&ww=1280&u=http%3A%2F%2Fwww.kidahora.net%2Ffocus%2F8.html&tt=%E5%AE%9C%E9%83%BD%E7%9C%8B%E4%BE%97%E6%B1%BD%E8%BD%A6%E7%94%A8%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kidahora.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 15 Jan 2023 04:10:58 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=F224644AF8AF73B8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.ppmvapi111.com/news/index.html
107.148.45.217200 OK 238 B URL HTTP/2 www.ppmvapi111.com/news/index.html
IP 107.148.45.217:0
File type HTML document, Unicode text, UTF-8 text
Hash c5a0744a02e7ef02650037ea2b489d8a
8fd9cafb90c2337be68ee95342c6309e1dad30d9
de552b9cc5b8211553f862760677e027a9f166f5711066032976ffd68ac822b1
GET /news/index.html HTTP/1.1
Host: www.ppmvapi111.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kidahora.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:54 GMT
content-type: text/html
content-length: 238
last-modified: Sat, 14 Jan 2023 04:34:32 GMT
etag: "63c230d8-ee"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e40f03a7c1de044ad5f69f6f63de2e26
1aed36320bb52fdefc29030f172dc209272f162c
0f89b67594223daabed71cfdfd4f3c9320ba3bcade169b18d2ffd2425f62bbee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0F89B67594223DAABED71CFDFD4F3C9320BA3BCADE169B18D2FFD2425F62BBEE"
Last-Modified: Fri, 13 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 15 Jan 2023 10:10:59 GMT
Date: Sun, 15 Jan 2023 04:10:59 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c4c3a8e43cc84fc57bdf23fc3ee10e94
e5d9d1f6590428a652c9bb000a589eb4aab6f73d
80b9fb88706212fe036aed3853ba9907ae46bedac1b172294c4c2d9e11116405
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "80B9FB88706212FE036AED3853BA9907AE46BEDAC1B172294C4C2D9E11116405"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10772
Expires: Sun, 15 Jan 2023 07:10:32 GMT
Date: Sun, 15 Jan 2023 04:11:00 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c4c3a8e43cc84fc57bdf23fc3ee10e94
e5d9d1f6590428a652c9bb000a589eb4aab6f73d
80b9fb88706212fe036aed3853ba9907ae46bedac1b172294c4c2d9e11116405
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "80B9FB88706212FE036AED3853BA9907AE46BEDAC1B172294C4C2D9E11116405"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10772
Expires: Sun, 15 Jan 2023 07:10:32 GMT
Date: Sun, 15 Jan 2023 04:11:00 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2023/01/hkmnwobpwld.jpg
104.22.12.214200 OK 3.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/hkmnwobpwld.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f01c198b69f77a390af54f3b564eddfc
d0dd84c79bab4ac1d9a814c888c7c925d5dccdb6
da4edb8bb2f456a888a9ea2a397494af6fadf11f49048afc2c46fdf2195209c4
GET /upload/vod/2023/01/hkmnwobpwld.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 3072
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=5152
content-disposition: inline; filename="hkmnwobpwld.webp"
etag: "63bfcda6-1420"
last-modified: Thu, 12 Jan 2023 09:06:46 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 120
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaacc0b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/yrnm22luvd3.jpg
104.22.12.214200 OK 8.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/yrnm22luvd3.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffe216c7b00aeb300a9423b3667ef8ec
9f8b7e84e6a388001a6c407825a196c9cf4f925d
60b5737f3d986bd5f2a01f8c632a8ebf20cf65b822f6c87ed1c07c406aee5bb4
GET /upload/vod/2023/01/yrnm22luvd3.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 8316
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9499
content-disposition: inline; filename="yrnm22luvd3.webp"
etag: "63bfcdb3-251b"
last-modified: Thu, 12 Jan 2023 09:06:59 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 120
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaad00b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/yxu5p2b1xu5.jpg
104.22.12.214200 OK 9.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/yxu5p2b1xu5.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 94125e9c711d78b912e7b486871548fd
50c63f56fd24d7eb5f98e69d30b7190f7c04ef99
6f9da83516e76e5b92bae01a1ee7eee14772abcff630ff56645ec4a2ff209783
GET /upload/vod/2023/01/yxu5p2b1xu5.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 9098
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10695
content-disposition: inline; filename="yxu5p2b1xu5.webp"
etag: "63bfcdaa-29c7"
last-modified: Thu, 12 Jan 2023 09:06:50 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 120
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaace0b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/4omwo4y0kcg.jpg
104.22.12.214200 OK 8.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/4omwo4y0kcg.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 15e8b9d297a1ad9ceaa898916f29e9c1
9f194501da3682ec63395a60461c01891a49997a
f412c4194a33adbcc01dc1ca016d427146bcf449c0fe6395af90dcec995a6fa2
GET /upload/vod/2023/01/4omwo4y0kcg.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 8144
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9306
content-disposition: inline; filename="4omwo4y0kcg.webp"
etag: "63bfcdae-245a"
last-modified: Thu, 12 Jan 2023 09:06:54 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 120
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaacf0b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/gg3dx2kky0r.jpg
104.22.12.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/gg3dx2kky0r.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, progressive, precision 8, 240x320, components 3\012- data
Hash de4006587d9aad2527d1a81f01463ef9
8ec8badf2093b916531ccbcdcd9ee8ca5819d64f
16afcca8cda202c67321039695f8b0c09fc5afb56106e45221869b520aa9f2fd
GET /upload/vod/2023/01/gg3dx2kky0r.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 10655
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11210, status=webp_bigger
etag: "63bfcdbd-2bca"
last-modified: Thu, 12 Jan 2023 09:07:09 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 120
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cdaad20b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/4e5p5af2tit.jpg
104.22.12.214200 OK 8.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/4e5p5af2tit.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e432036b39a383568545262cee44b1eb
fcd1264bcf8ba5dbfd7e50659a102a619f9d556a
5e43b3f7bcb36ffa68aaca7c2e2e8b9d74185354b29be4644bbbb16cb8092d37
GET /upload/vod/2023/01/4e5p5af2tit.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 8112
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9931
content-disposition: inline; filename="4e5p5af2tit.webp"
etag: "63bfcdb8-26cb"
last-modified: Thu, 12 Jan 2023 09:07:04 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 120
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaad10b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/klgh23nwsdc.jpg
104.22.12.214200 OK 6.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/klgh23nwsdc.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f406ede8bb0dd36ff116d3668c93ebaf
b2b3f6c9eb43ce629d91d1c88c441bbb3cf3541c
41ad66bd83aa0e290eb3abe068655e73e418959bb301da29871a28192053efa7
GET /upload/vod/2023/01/klgh23nwsdc.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 6838
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8835
content-disposition: inline; filename="klgh23nwsdc.webp"
etag: "63bfcda2-2283"
last-modified: Thu, 12 Jan 2023 09:06:42 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 120
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaacb0b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/so15ls15bm2.jpg
104.22.12.214200 OK 7.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/so15ls15bm2.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e594f2f518a89834ecae7998f11ddd4d
d5329ed25510f01bbe3505cd68b604c622c9b022
562d7096e8dbe83d7bfbc955792707c2fe5d18f85700febf217911fe75dd8d8d
GET /upload/vod/2023/01/so15ls15bm2.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 7820
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8518
content-disposition: inline; filename="so15ls15bm2.webp"
etag: "63bfc014-2146"
last-modified: Thu, 12 Jan 2023 08:08:52 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaabe0b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/jll5jlky0cd.jpg
104.22.12.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/jll5jlky0cd.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash ede5ce25f7aa6e3da62537f71f45545d
e37ee91b188fdc4f9fe9a8ca19447de4899f1bbe
4b7e7cd5b558ef5f7510c9d7bb37114c1dbadb98ecda98a1e3debfffe36240c0
GET /upload/vod/2023/01/jll5jlky0cd.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 11205
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11651, status=webp_bigger
etag: "63bfb8b9-2d83"
last-modified: Thu, 12 Jan 2023 07:37:29 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cddae80b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/5nfmluhrj0l.jpg
104.22.12.214200 OK 8.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/5nfmluhrj0l.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 2a147ccae0d9107d5840c57848dc2486
c40c4ebe23bffcca7c824e306eb42f2701a327b9
f171fd0106337ba64f01d31075f8aed864ec5a73a7c4584f0c2af840e7600136
GET /upload/vod/2023/01/5nfmluhrj0l.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 8208
cf-bgj: imgq:85,h2pri
cf-polished: origSize=8634, status=webp_bigger
etag: "63bfb8b5-21ba"
last-modified: Thu, 12 Jan 2023 07:37:25 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cdaaae0b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/x32kwpp5pcl.jpg
104.22.12.214200 OK 6.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/x32kwpp5pcl.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c170e5574415e76d8d7d6fd7feeb2ece
869a78911fa6891e2f4d27fdca829607a3e93679
b603a338bdbc9a4f2c36953e48a04751d88ec8fb37b581d9e817b6a8040def75
GET /upload/vod/2023/01/x32kwpp5pcl.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 6728
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8311
content-disposition: inline; filename="x32kwpp5pcl.webp"
etag: "63bfb8ed-2077"
last-modified: Thu, 12 Jan 2023 07:38:21 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaaba0b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/qrg1tidsk4r.jpg
104.22.12.214200 OK 4.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/qrg1tidsk4r.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d8cfe6b3bb9959045d7c953f50bea9fb
637fafa72a78844ecbf81950583fdd9f90fd18b1
2ac1e659d0ac99aa74aa67dd4240e7c6cb43f127cece2a3aab7c2551861f4b03
GET /upload/vod/2023/01/qrg1tidsk4r.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 4720
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6949
content-disposition: inline; filename="qrg1tidsk4r.webp"
etag: "63bfc01e-1b25"
last-modified: Thu, 12 Jan 2023 08:09:02 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaabf0b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/y2fz2ydjc45.jpg
104.22.12.214200 OK 8.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/y2fz2ydjc45.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 744a89320a0e6ed603b9d2246cc51235
8e9536ae9f1ace82a40de04bb064e7f106278fd5
81e9c0bb3db96fc9028941d1a0cebee03311d5a8c74264b20db8c52406cec271
GET /upload/vod/2023/01/y2fz2ydjc45.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 8280
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10055
content-disposition: inline; filename="y2fz2ydjc45.webp"
etag: "63bfc026-2747"
last-modified: Thu, 12 Jan 2023 08:09:10 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaac10b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/uoejczhxu3v.jpg
104.22.12.214200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/uoejczhxu3v.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6774851a5890b5da7e3e4fe70ab64716
6fd3b2f82c2b1b8d07bb2863e62c685574cc846b
0fcc61c88b0a9797610eb5a4144fcb072e308144120bd448a0a07bdbd87c4345
GET /upload/vod/2023/01/uoejczhxu3v.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 10440
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10868
content-disposition: inline; filename="uoejczhxu3v.webp"
etag: "63bfd1e4-2a74"
last-modified: Thu, 12 Jan 2023 09:24:52 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaac90b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/13m3nsfwufi.jpg
104.22.12.214200 OK 4.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/13m3nsfwufi.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a7078d566ce49cec2224a9b1b29093b1
0717ab1a00a1582f68f8e24254df144152e9df77
f1651686176f44d68e0c06bc6cc3d8658ca817932ff98ab76960b6352e94beef
GET /upload/vod/2023/01/13m3nsfwufi.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 4622
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6715
content-disposition: inline; filename="13m3nsfwufi.webp"
etag: "63bfb8f1-1a3b"
last-modified: Thu, 12 Jan 2023 07:38:25 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaabc0b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/mejfmi2kpp5.jpg
104.22.12.214200 OK 14 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/mejfmi2kpp5.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 92b05ad7314f00a97bb3b78f29788825
abd5e22db24e5a880cb3c57d45edc611157c5fba
e6b465c2a3f7a907128f84901e44257cc40b745b495c358bfe84a3200512ebf9
GET /upload/vod/2023/01/mejfmi2kpp5.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 14051
cf-bgj: imgq:85,h2pri
cf-polished: origSize=14666, status=webp_bigger
etag: "63bfc011-394a"
last-modified: Thu, 12 Jan 2023 08:08:49 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cdaabd0b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/hk15ucinsyx.jpg
104.22.12.214200 OK 12 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/hk15ucinsyx.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x320, components 3\012- data
Hash c54d212e57575d96d148f745039cecb1
0529449656e0f8e1a835e383d5dd147d2f05f57e
9d640d980c78199acdc409b6858951c448d4cb78a6e0bcecaf95cae467d2f203
GET /upload/vod/2023/01/hk15ucinsyx.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 12194
cf-bgj: imgq:85,h2pri
cf-polished: origSize=13160, status=webp_bigger
etag: "63bfd1e9-3368"
last-modified: Thu, 12 Jan 2023 09:24:57 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cdaaca0b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/rpgnkgvviis.jpg
104.22.12.214200 OK 6.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/rpgnkgvviis.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0e35fcebd4034c7c08750826acf14eb9
812610b16965a74c28ed1b22dc0949540c551ab8
043748704dbb7dfa3090111035da7073b38d11c0fbf4cc5f2ce5757ac5761aa5
GET /upload/vod/2023/01/rpgnkgvviis.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 6400
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7824
content-disposition: inline; filename="rpgnkgvviis.webp"
etag: "63bfc02f-1e90"
last-modified: Thu, 12 Jan 2023 08:09:19 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaac30b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/gzrnwferpr4.jpg
104.22.12.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/gzrnwferpr4.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 0a0f338bee06f7f98c99c4ff42b1a750
b8a16449e3a714592df4ef46b0c0e5af77d23c64
dc8987838311661d5bf4d4368720558449da8ae25beeb2725764c77c9fa94a0d
GET /upload/vod/2023/01/gzrnwferpr4.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 10912
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11346, status=webp_bigger
etag: "63bfb8da-2c52"
last-modified: Thu, 12 Jan 2023 07:38:02 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cdaab30b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/eqvcdccnw5r.jpg
104.22.12.214200 OK 4.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/eqvcdccnw5r.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash becbce20caa9b1d62235f8766c822765
35cbc03ead6bb134e538c67f666a120cda66e3ba
8a9439c39d8901a4c69599a448f52d46598a82a6ea1df15bb0ff66a467302e0a
GET /upload/vod/2023/01/eqvcdccnw5r.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 4282
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6737
content-disposition: inline; filename="eqvcdccnw5r.webp"
etag: "63bfb8cd-1a51"
last-modified: Thu, 12 Jan 2023 07:37:49 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaab00b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/ejjr2efdwyf.jpg
104.22.12.214200 OK 13 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/ejjr2efdwyf.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash c56c3cdce37ba80d81676bc6d50055d6
1a9fa2cd0bfa23c68feb884c5efdb8ad4b216cd4
b4f575ac8e9ece8187ec3f5c1e2023d4e7a81f451af6e409b57d22180b83831a
GET /upload/vod/2023/01/ejjr2efdwyf.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 13313
cf-bgj: imgq:85,h2pri
cf-polished: origSize=13890, status=webp_bigger
etag: "63bfc021-3642"
last-modified: Thu, 12 Jan 2023 08:09:05 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cdaac00b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/mhnvtouptgi.jpg
104.22.12.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/mhnvtouptgi.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c7e6c38a01538830870ce5cb1780ed36
7273bfa006afa28106675142d2b488b44c235f09
482b1e986f4cd6f0b2f0dab686b274c9e0bd08f84cd9d3d7dfd78c4db6fe8cda
GET /upload/vod/2023/01/mhnvtouptgi.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 11296
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11615
content-disposition: inline; filename="mhnvtouptgi.webp"
etag: "63bfd1db-2d5f"
last-modified: Thu, 12 Jan 2023 09:24:43 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaac70b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/swlxhvodm1r.jpg
104.22.12.214200 OK 4.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/swlxhvodm1r.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5ab33385868aa9b7572177caa0e45cd9
308ed160c1b170a5d188616723a244e486830863
7d233a1791659b18fb6dba70428e5175239af614cdfadbbab36daa2abdac2904
GET /upload/vod/2023/01/swlxhvodm1r.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 4602
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6825
content-disposition: inline; filename="swlxhvodm1r.webp"
etag: "63bfb8d1-1aa9"
last-modified: Thu, 12 Jan 2023 07:37:53 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaab10b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/y3wcoq4gp3t.jpg
104.22.12.214200 OK 12 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/y3wcoq4gp3t.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x320, components 3\012- data
Hash 5ef9bbdf911df4a9150f857cbb400d34
727b29a68d8015f963fde5077a93f2da2fbdc4c2
238bc9106c89b17f02fc4e08a4e501d91b0d981ab2177a50749d3bb2274f913d
GET /upload/vod/2023/01/y3wcoq4gp3t.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 12284
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12817, status=webp_bigger
etag: "63bfd1d2-3211"
last-modified: Thu, 12 Jan 2023 09:24:34 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cdaac50b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/j0lreweuk2q.jpg
104.22.12.214200 OK 7.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/j0lreweuk2q.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 27d529c295c34b75402562e111605878
56f474c894ec763bd9d61e9482b5a5d6fcd3d408
34d32a2adf0f3a92caf4e0c34832d2fb409a52b7deee4749c8f2f7cdd13f8adb
GET /upload/vod/2023/01/j0lreweuk2q.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 7570
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8623
content-disposition: inline; filename="j0lreweuk2q.webp"
etag: "63bfb8e9-21af"
last-modified: Thu, 12 Jan 2023 07:38:17 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaab80b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/q0xdwwzkyrz.jpg
104.22.12.214200 OK 7.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/q0xdwwzkyrz.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 20be9c9d917c755f33959a7a2f66ff39
026f0bf21799e51a6923a3b46b855164a75b7f9a
c97ce0304bc40978739b27a75b33fba72428d63249da85625b554da330f525ab
GET /upload/vod/2023/01/q0xdwwzkyrz.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 7918
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8699
content-disposition: inline; filename="q0xdwwzkyrz.webp"
etag: "63bfd1cc-21fb"
last-modified: Thu, 12 Jan 2023 09:24:28 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaac40b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/err20cgajxw.jpg
104.22.12.214200 OK 8.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/err20cgajxw.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x320, components 3\012- data
Hash c2143038a08559074740b936de8e82b0
698fd1248c770a72bc9eb83a0509248cc64aaf29
87c892c9f024a265c7a0d6590a4b4f90e55c27e46961af4c62cf1ff5dc05abf7
GET /upload/vod/2023/01/err20cgajxw.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 8568
cf-bgj: imgq:85,h2pri
cf-polished: origSize=9050, status=webp_bigger
etag: "63bfd1e0-235a"
last-modified: Thu, 12 Jan 2023 09:24:48 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cdaac80b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/lna0p44tlh0.jpg
104.22.12.214200 OK 12 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/lna0p44tlh0.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 6238eef2733d30df41e4d73d583478d3
661e25a9bae014032a3c49c30064bbccdc5941c9
9f83a744dc7fc42484289c7c4842a6ab6818e6f95182e0a7965a725f57432038
GET /upload/vod/2023/01/lna0p44tlh0.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 12520
cf-bgj: imgq:85,h2pri
cf-polished: origSize=13106, status=webp_bigger
etag: "63bfc02a-3332"
last-modified: Thu, 12 Jan 2023 08:09:14 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cdaac20b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/dhrtfbpucxw.jpg
104.22.12.214200 OK 8.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/dhrtfbpucxw.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 120cdf2e7c5198d597f4a0b5402174d2
bf2406df7f77b6d35b3797bbc7e55a21d1abaf0c
530b782dd992cf5ab7409b79c317c7a56c73ca4b8f594bf791d64fbd9727bd30
GET /upload/vod/2023/01/dhrtfbpucxw.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 8684
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9942
content-disposition: inline; filename="dhrtfbpucxw.webp"
etag: "63bfb8df-26d6"
last-modified: Thu, 12 Jan 2023 07:38:07 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaab40b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/nohji3bg4fq.jpg
104.22.12.214200 OK 13 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/nohji3bg4fq.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x320, components 3\012- data
Hash a3f242880599850c93464743cabda1d1
5e1db683750e18fab3fbb4ae8a781051a9e60975
d6de6e539a9105f42608cffd7dcb7ace4509e6d2b1c439fa8908474807f6c9d9
GET /upload/vod/2023/01/nohji3bg4fq.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 13136
cf-bgj: imgq:85,h2pri
cf-polished: origSize=13760, status=webp_bigger
etag: "63bfd1d6-35c0"
last-modified: Thu, 12 Jan 2023 09:24:38 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cdaac60b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/pug2ijra1km.jpg
104.22.12.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/pug2ijra1km.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a963dcf121b3726b5509aa5c0918756b
521f697a5d54addeb772c2b0cc9d077397aa7a08
2ad7c868b8a95ca41ef5bc3aae4ef1226e30bd565ce584b4c356e208faad2e44
GET /upload/vod/2023/01/pug2ijra1km.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 10830
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11424
content-disposition: inline; filename="pug2ijra1km.webp"
etag: "63bfb8e4-2ca0"
last-modified: Thu, 12 Jan 2023 07:38:12 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaab70b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/4iljt5wgdl3.jpg
104.22.12.214200 OK 9.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/4iljt5wgdl3.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 5acd8bf2e201d45582eed5dcba5fd345
b4697034282012e3b42e9f2e1c87e2b713023875
a44fa463cee8f148a54326d184e3fe55db7830d9f086249c87361636798fffac
GET /upload/vod/2023/01/4iljt5wgdl3.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 9915
cf-bgj: imgq:85,h2pri
cf-polished: origSize=10412, status=webp_bigger
etag: "63bfb8c8-28ac"
last-modified: Thu, 12 Jan 2023 07:37:44 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cddae90b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/1twi4knghvg.jpg
104.22.12.214200 OK 6.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/1twi4knghvg.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d314ac059e0d33e4f54ebb0b6e9088ab
64a4a7e0a2fedbfaa5085ead88848a56a2a12872
c411d494140c88bbbd41b51a1e2e1c413e06f7fc5b9b80b63f09dc1cb472d984
GET /upload/vod/2023/01/1twi4knghvg.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 6316
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9093
content-disposition: inline; filename="1twi4knghvg.webp"
etag: "63bfb8d5-2385"
last-modified: Thu, 12 Jan 2023 07:37:57 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cdaab20b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/et3nvolxct5.jpg
104.22.12.214200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/et3nvolxct5.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2271f316994158c87910d2b811d78f4d
925b6988cd1842d7fe9b32df3414a5a206a28644
dea9dd0b10f7f5ab12f5e4d91399ecdc8f2de22eb9f065690175b0be8c529849
GET /upload/vod/2023/01/et3nvolxct5.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 10018
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11080
content-disposition: inline; filename="et3nvolxct5.webp"
etag: "63bfb8c0-2b48"
last-modified: Thu, 12 Jan 2023 07:37:36 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cddae50b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/kvwdvrkyfuf.jpg
104.22.12.214200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/kvwdvrkyfuf.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 6bfbd1a5daa18deb83e94db875bf02c5
88ecc8b831a18c53059107a4c3c62cb9115ea088
8f0ba4cc899691637b6029525b549a4db408054b4310d51341bcacfbbe22c8dc
GET /upload/vod/2023/01/kvwdvrkyfuf.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/jpeg
content-length: 10066
cf-bgj: imgq:85,h2pri
cf-polished: origSize=10527, status=webp_bigger
etag: "63bfb8bc-291f"
last-modified: Thu, 12 Jan 2023 07:37:32 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 789bc3cddae20b3d-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/42ejubodbzq.jpg
104.22.12.214200 OK 9.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/42ejubodbzq.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a174dbc3ae20127f00d41328be0131c2
5b18029347a3d26e5d13750673d4b45171c7f208
3740a0e30b8fe62b7d2ffe7f77019ed99768277a5fccebf87d82fb12ac9b31ac
GET /upload/vod/2023/01/42ejubodbzq.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:00 GMT
content-type: image/webp
content-length: 9384
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10318
content-disposition: inline; filename="42ejubodbzq.webp"
etag: "63bfb8c4-284e"
last-modified: Thu, 12 Jan 2023 07:37:40 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 789bc3cddae60b3d-OSL
X-Firefox-Spdy: h2
www.ppmv022.xyz/static/images/1.gif
107.148.45.244200 OK 254 B URL HTTP/2 www.ppmv022.xyz/static/images/1.gif
IP 107.148.45.244:0
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
Analyzer Verdict Alert quad9 Sinkholed
GET /static/images/1.gif HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:56 GMT
content-type: image/gif
content-length: 254
last-modified: Tue, 15 Nov 2022 08:35:43 GMT
etag: "63734f5f-fe"
expires: Tue, 14 Feb 2023 04:10:56 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv022.xyz/js/top.js?adv=0.6912464487808316
107.148.45.244200 OK 588 B URL HTTP/2 www.ppmv022.xyz/js/top.js?adv=0.6912464487808316
IP 107.148.45.244:0
File type HTML document, Unicode text, UTF-8 text
Hash add2d43fff1c9780af62656ec0de51f9
64adda4327ef9df8a60df4e760c19089370dc028
eb83c04e1e660929de5d79020e70557b8bb2e7783d100e72faa7ce2e3aff45e6
Analyzer Verdict Alert quad9 Sinkholed
GET /js/top.js?adv=0.6912464487808316 HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:57 GMT
content-type: application/javascript
content-length: 588
last-modified: Sat, 31 Dec 2022 06:13:26 GMT
etag: "63afd306-24c"
expires: Sun, 15 Jan 2023 16:10:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv022.xyz/js/xx1.js?adv=0.438261456357223
107.148.45.244200 OK 409 kB URL HTTP/2 www.ppmv022.xyz/js/xx1.js?adv=0.438261456357223
IP 107.148.45.244:0
Size 409 kB (408896 bytes)
Hash 9d1721162a676bab858799fd5c8a217e
3b2fb9550c401d54b462a78560a40249358cc699
cad21d8cd318a9ab61a42ebf832d184285df67e78d5785d37f7c648527398e16
Analyzer Verdict Alert quad9 Sinkholed
GET /js/xx1.js?adv=0.438261456357223 HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:57 GMT
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 13:56:31 GMT
vary: Accept-Encoding
etag: W/"63c0118f-f79"
expires: Sun, 15 Jan 2023 16:10:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4a2dd64b65a1640eca2e793e38dc3b42
ff3195f891213fe4b2ee0c73acfda5ee425a5955
b1bc322c15142f83e228312c7ec1f531bd8444731faa677be82cde1aa06a46a1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jan 2023 04:11:01 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 11:47:13 GMT
Expires: Fri, 20 Jan 2023 11:47:12 GMT
Etag: "ff3195f891213fe4b2ee0c73acfda5ee425a5955"
Cache-Control: max-age=458770,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 789bc3d62be30b39-OSL
xinchacha2dv.ocsp-certum.com/
95.101.10.193200 OK 1.5 kB URL HTTP/1.1 xinchacha2dv.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash ba1974941ee8efaa4fda06564c47bdc1
544e2b7ce5f90d829a53beead884142196cfd952
35895f06fd944e1b34c03b6edb13105bf063f5119f3d7c2557c7635746091d1c
POST / HTTP/1.1
Host: xinchacha2dv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1538
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=873
Date: Sun, 15 Jan 2023 04:11:01 GMT
Connection: keep-alive
X-N: S
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 3f8ed43a8163036a1185b01643cf75eb
e59749f32d9291bb4fc43c76d58e7c250a524541
974f9e0a0639e12926cf480614570ed157796d3fbd0011c66e363f41ceff461f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jan 2023 04:11:01 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 11:24:24 GMT
Expires: Fri, 20 Jan 2023 11:24:23 GMT
Etag: "e59749f32d9291bb4fc43c76d58e7c250a524541"
Cache-Control: max-age=457401,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 789bc3d7ac440b39-OSL
sv1.stor.petaexpress.com/dfegfegeg/1.jpg
199.180.101.114200 OK 14 kB URL HTTP/1.1 sv1.stor.petaexpress.com/dfegfegeg/1.jpg
IP 199.180.101.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 650x96, components 3\012- data
Hash db2dbdc216703ec86bc6d75d652e7007
a2610252e80c359f3026f6bf3b744c23c3d4cb98
48dc2e5f86c223bdcfdf820eeb1ddef2840c9789dabd79ef2cf8bd67b0f22eb8
GET /dfegfegeg/1.jpg HTTP/1.1
Host: sv1.stor.petaexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Jan 2023 04:11:01 GMT
Content-Type: image/jpeg
Content-Length: 14485
Connection: keep-alive
Accept-Ranges: bytes
Etag: "db2dbdc216703ec86bc6d75d652e7007"
Last-Modified: Fri, 23 Dec 2022 09:12:12 GMT
x-qs-request-id: 9d020e52b7818443
x-qs-storage-class: STANDARD
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 6cdbf2e3438a1df36b08c980ea428141
bbe67ab84253261e6097f2af6ec7f9c81f6d80ba
d02a886e6f2a06a3b8ff1f71a4606d4e09d65f308af0e7bba0113e3fa9bb8da3
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jan 2023 04:11:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 19 Jan 2023 01:04:16 GMT
ETag: "bbe67ab84253261e6097f2af6ec7f9c81f6d80ba"
Last-Modified: Sun, 15 Jan 2023 01:04:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2840
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 789bc3da6b8bb518-OSL
ldbbs.ldmnq.com/bbs/topic/images/2022-12/fe8be621-0064-4f6b-a049-12a9383fb388.gif
218.12.76.168200 OK 118 kB URL HTTP/1.1 ldbbs.ldmnq.com/bbs/topic/images/2022-12/fe8be621-0064-4f6b-a049-12a9383fb388.gif
IP 218.12.76.168:0
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 960 x 60\012- data
Size 118 kB (118121 bytes)
Hash caaa592fad00ee9d8db810c6fdf0741d
90c218822bb4e8237f8d7ba5ddf73e63ce80fd13
d8307cc1c162ce82416d8dcc966b31fbe2e6834c0e7eaecf021a98baf1a16083
GET /bbs/topic/images/2022-12/fe8be621-0064-4f6b-a049-12a9383fb388.gif HTTP/1.1
Host: ldbbs.ldmnq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 15 Jan 2023 04:11:01 GMT
Content-Type: image/gif
Content-Length: 118121
Connection: keep-alive
Server: openresty
Age: 2153094
CloudServiceDiscount: CDN
Content-Encoding: utf-8
ETag: "caaa592fad00ee9d8db810c6fdf0741d"
Last-Modified: Wed, 21 Dec 2022 06:06:06 GMT
X-CCDN-CacheTTL: 2592000
nginx-hit: 1
via: CHN-HEshijiazhuang-AREACUCC1-CACHE41[3],CHN-HEshijiazhuang-AREACUCC1-CACHE45[0,TCP_HIT,1],CHN-TJ-GLOBAL1-CACHE84[273],CHN-TJ-GLOBAL1-CACHE7[267,TCP_MISS,270]
x-amz-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCTyHQVjTG8D2o6c582FA8t4+ZByaQ0HW
x-amz-request-id: 00000185334A066E90100F774C8E3CB5
x-amz-storage-class: STANDARD_IA
x-hcs-proxy-type: 1
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Accept-Ranges: bytes
www.ppmv022.xyz/js/250/1.js?adv=0.5024351623959142
107.148.45.244200 OK 948 B URL HTTP/2 www.ppmv022.xyz/js/250/1.js?adv=0.5024351623959142
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (355)
Hash 494dd5f806d626fe98bf1807ff7534fe
066140a0274bbe3e57c2681b79fcd40aeaed7909
74b855f6342804cfc93e683252e5d820748d692ca91c6139312a1c1e2fc67ef8
Analyzer Verdict Alert quad9 Sinkholed
GET /js/250/1.js?adv=0.5024351623959142 HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:58 GMT
content-type: application/javascript
content-length: 948
last-modified: Sun, 01 Jan 2023 07:12:06 GMT
etag: "63b13246-3b4"
expires: Sun, 15 Jan 2023 16:10:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv022.xyz/template/m1938pc/images/video-mask.png
107.148.45.244200 OK 107 B URL HTTP/2 www.ppmv022.xyz/template/m1938pc/images/video-mask.png
IP 107.148.45.244:0
File type PNG image data, 1 x 46, 8-bit gray+alpha, non-interlaced\012- data
Hash 6a5ee87ff75437cb480df839f36004fd
eac66370f99601cb7febef320c9540d4593cd856
c9b6925bdd64dab63151c3106347fefb8c500d87ac3d87d9a82e9a1c561233aa
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/images/video-mask.png HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:58 GMT
content-type: image/png
content-length: 107
last-modified: Tue, 04 Jan 2022 15:14:24 GMT
etag: "61d46450-6b"
expires: Tue, 14 Feb 2023 04:10:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv022.xyz/template/m1938pc/images/video-play.png
107.148.45.244200 OK 1.6 kB URL HTTP/2 www.ppmv022.xyz/template/m1938pc/images/video-play.png
IP 107.148.45.244:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/images/video-play.png HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:58 GMT
content-type: image/png
content-length: 1567
last-modified: Tue, 04 Jan 2022 15:14:22 GMT
etag: "61d4644e-61f"
expires: Tue, 14 Feb 2023 04:10:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e00548bb76956eef1d0cbed42d142224
7e0b7a12940d4422ff44aaa722ba81c3c0adb85c
1dede95442a4a701d4c4da93d9952e948e7b219ecf3ed1b31255c07f28bc0b27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DEDE95442A4A701D4C4DA93D9952E948E7B219ECF3ED1B31255C07F28BC0B27"
Last-Modified: Fri, 13 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4283
Expires: Sun, 15 Jan 2023 05:22:25 GMT
Date: Sun, 15 Jan 2023 04:11:02 GMT
Connection: keep-alive
www.ppmv022.xyz/js/250/2.js?adv=0.6100156061244811
107.148.45.244200 OK 532 B URL HTTP/2 www.ppmv022.xyz/js/250/2.js?adv=0.6100156061244811
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (382)
Hash 06b1ee73f663b814b7d1acd3b01ec79f
6b5bdadc6d66e9fdcb8b9b8dc5ea1a0deb4dbb56
854e5c909093d5ab6e0c91203af3ed6021d249b3d5e2eed417ef0b132ec694c3
Analyzer Verdict Alert quad9 Sinkholed
GET /js/250/2.js?adv=0.6100156061244811 HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:58 GMT
content-type: application/javascript
content-length: 532
last-modified: Sat, 19 Nov 2022 10:19:26 GMT
etag: "6378adae-214"
expires: Sun, 15 Jan 2023 16:10:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash baff728f3d5cf89d7d41eab57b49d900
be079ce61e71ac81fb2ac2f9e4f8b4ffb4b42528
cc38fffd1b601516c306eac5a1791d55b9677979ae17b0947964b4bf95ff41e2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jan 2023 04:11:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 14 Jan 2023 10:05:44 GMT
Expires: Sat, 21 Jan 2023 10:05:43 GMT
Etag: "be079ce61e71ac81fb2ac2f9e4f8b4ffb4b42528"
Cache-Control: max-age=539080,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 789bc3debd6b0b55-OSL
www.ppmv022.xyz/js/250/3.js?adv=0.2200632146315017
107.148.45.244200 OK 486 B URL HTTP/2 www.ppmv022.xyz/js/250/3.js?adv=0.2200632146315017
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (369)
Hash 4ce206cd22ea1ac05c3d229b392d2896
a8ca9dd8fb48bce78ccb44933d0c722401419fb3
c03b31145986256c54d4bcbfc2a0de7d1c5592b4ffb0517311bd0228ea4e39d9
Analyzer Verdict Alert quad9 Sinkholed
GET /js/250/3.js?adv=0.2200632146315017 HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:59 GMT
content-type: application/javascript
content-length: 486
last-modified: Sat, 19 Nov 2022 10:19:33 GMT
etag: "6378adb5-1e6"
expires: Sun, 15 Jan 2023 16:10:59 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash a035ff852b7789bf67f44f396d801d5b
8d0426f787693edadfbdc2223f87f109b3b4d093
946025e1e0fd7230ce9fabcc30d23e7debc8bd686580e1406ac1ff52d6b487e8
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jan 2023 04:11:03 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sat, 14 Jan 2023 20:13:20 GMT
Expires: Sat, 21 Jan 2023 20:13:19 GMT
Etag: "8d0426f787693edadfbdc2223f87f109b3b4d093"
Cache-Control: max-age=575535,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 789bc3dffd8a0b4d-OSL
www.ppmv022.xyz/js/xx3.js?adv=0.38532428813952624
107.148.45.244200 OK 360 B URL HTTP/2 www.ppmv022.xyz/js/xx3.js?adv=0.38532428813952624
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3e24852309978d1690e8c4809f989280
f590486d685ac8d4d2eba4f5fe1f3bf0beb723e7
a503f4a1ccd24a5e31dbfbbf18825476012481b775f1606f01275c0af15d1e58
Analyzer Verdict Alert quad9 Sinkholed
GET /js/xx3.js?adv=0.38532428813952624 HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:59 GMT
content-type: application/javascript
content-length: 360
last-modified: Sat, 19 Nov 2022 10:18:53 GMT
etag: "6378ad8d-168"
expires: Sun, 15 Jan 2023 16:10:59 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ppmv022.xyz/js/250/4.js?adv=0.2020234976199754
107.148.45.244200 OK 486 B URL HTTP/2 www.ppmv022.xyz/js/250/4.js?adv=0.2020234976199754
IP 107.148.45.244:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (369)
Hash 4ce206cd22ea1ac05c3d229b392d2896
a8ca9dd8fb48bce78ccb44933d0c722401419fb3
c03b31145986256c54d4bcbfc2a0de7d1c5592b4ffb0517311bd0228ea4e39d9
Analyzer Verdict Alert quad9 Sinkholed
GET /js/250/4.js?adv=0.2020234976199754 HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:59 GMT
content-type: application/javascript
content-length: 486
last-modified: Sat, 19 Nov 2022 10:19:41 GMT
etag: "6378adbd-1e6"
expires: Sun, 15 Jan 2023 16:10:59 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash fb500ad0d01e067e0d519dfb8d2cc2a6
d3cc5f12eb4b2a7a64afc970d7aa6ff3881926be
69103382c6e7934c3d3dab244b64510f486bf87956ce3620d6318c7750a3a0c2
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jan 2023 04:11:03 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 22:45:45 GMT
Expires: Fri, 20 Jan 2023 22:45:44 GMT
Etag: "d3cc5f12eb4b2a7a64afc970d7aa6ff3881926be"
Cache-Control: max-age=498280,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 789bc3dd6b0fb50c-OSL
www.ppmv022.xyz/js/xx2.js?adv=0.20620371960639305
107.148.45.244200 OK 122 kB URL HTTP/2 www.ppmv022.xyz/js/xx2.js?adv=0.20620371960639305
IP 107.148.45.244:0
Size 122 kB (122514 bytes)
Hash 1a598044244f8e58e4b8edcbe58cc8dd
40a58e7aa6dafe5d97514fcc3761562741454481
b902cdce84839e9ec7d36389d617de256d58386fb4919b989bf8239e39d73cce
Analyzer Verdict Alert quad9 Sinkholed
GET /js/xx2.js?adv=0.20620371960639305 HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:58 GMT
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 08:02:03 GMT
vary: Accept-Encoding
etag: W/"63bd1b7b-434"
expires: Sun, 15 Jan 2023 16:10:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 903678a555dae12d47ea37b4d88338da
45ae87f57a85d999bc5affdf699744805e866fec
4257a1837ee3b7dcc791a609e15b99bd5e0ff63625945c6c8c0a9b8db3ae397a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4257A1837EE3B7DCC791A609E15B99BD5E0FF63625945C6C8C0A9B8DB3AE397A"
Last-Modified: Fri, 13 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 15 Jan 2023 10:11:03 GMT
Date: Sun, 15 Jan 2023 04:11:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b0cc31b58c07a1c8d45855ab8cd71084
bba5c17b1f93869ec7b94b8a6c3951d50eac1409
595943ef825ac2c50f3ffefeee213e23b09ed7c73c12207ff8ceac11d1204437
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "595943EF825AC2C50F3FFEFEEE213E23B09ED7C73C12207FF8CEAC11D1204437"
Last-Modified: Fri, 13 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6252
Expires: Sun, 15 Jan 2023 05:55:15 GMT
Date: Sun, 15 Jan 2023 04:11:03 GMT
Connection: keep-alive
www.ppmv022.xyz/js/wz.js?adv=0.25589123894703314
107.148.45.244200 OK 0 B URL HTTP/2 www.ppmv022.xyz/js/wz.js?adv=0.25589123894703314
IP 107.148.45.244:0
Analyzer Verdict Alert quad9 Sinkholed
GET /js/wz.js?adv=0.25589123894703314 HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:57 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:18:43 GMT
vary: Accept-Encoding
etag: W/"6378ad83-d33"
expires: Sun, 15 Jan 2023 16:10:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
fadacaitp.com/68-960-120.gif
20.194.197.101200 OK 0 B URL HTTP/2 fadacaitp.com/68-960-120.gif
IP 20.194.197.101:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /68-960-120.gif HTTP/1.1
Host: fadacaitp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:02 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Sun, 25 Dec 2022 07:04:53 GMT
etag: W/"63a7f615-6befc"
expires: Sun, 12 Feb 2023 02:50:19 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.bootscdn.net/ajax/libs/jquery/3.6.1/jquery.js
172.67.194.235200 OK 0 B URL HTTP/2 cdn.bootscdn.net/ajax/libs/jquery/3.6.1/jquery.js
IP 172.67.194.235:0
GET /ajax/libs/jquery/3.6.1/jquery.js HTTP/1.1
Host: cdn.bootscdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kidahora.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:10:56 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.3.33
last-modified: Sunday, 15-Jan-2023 04:10:56 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FeixqhIE7DUV%2FBLWkqI1XjHchG4491Bcve%2BhVDSYkTvtybuodhaDbLjTsr0dDa5fAGpWAc30BHa%2FwJ67MVzJfCxwLalMl%2FIQ0hKFTGyx4E1r6gNaeF9WR7D7t6temLQGXZGB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 789bc3b648520b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.ppmv022.xyz/template/m1938pc/css/ate.css
107.148.45.244200 OK 0 B URL HTTP/2 www.ppmv022.xyz/template/m1938pc/css/ate.css
IP 107.148.45.244:0
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/css/ate.css HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:56 GMT
content-type: text/css
last-modified: Tue, 04 Jan 2022 15:13:26 GMT
vary: Accept-Encoding
etag: W/"61d46416-126e4"
expires: Sun, 15 Jan 2023 16:10:56 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.ppmv022.xyz/template/m1938pc/static/js/jquery.lazyload.min.js
107.148.45.244200 OK 0 B URL HTTP/2 www.ppmv022.xyz/template/m1938pc/static/js/jquery.lazyload.min.js
IP 107.148.45.244:0
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/static/js/jquery.lazyload.min.js HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:56 GMT
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 14:08:24 GMT
vary: Accept-Encoding
etag: W/"61d99ad8-d35"
expires: Sun, 15 Jan 2023 16:10:56 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
8499583.com/8499/320x180.gif
198.16.51.55200 OK 0 B URL HTTP/2 8499583.com/8499/320x180.gif
IP 198.16.51.55:0
GET /8499/320x180.gif HTTP/1.1
Host: 8499583.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:03 GMT
content-type: image/gif
content-length: 188752
last-modified: Wed, 28 Dec 2022 08:15:26 GMT
etag: "2e150-5f0def882a9b5"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
339282bdb.com/3a6d5b19ebe640c2aa3a0d954584e13d.gif
103.170.15.99200 OK 0 B URL HTTP/1.1 339282bdb.com/3a6d5b19ebe640c2aa3a0d954584e13d.gif
IP 103.170.15.99:0
ASN #7483 Skycloud Computing co., Ltd.
Analyzer Verdict Alert quad9 Sinkholed
GET /3a6d5b19ebe640c2aa3a0d954584e13d.gif HTTP/1.1
Host: 339282bdb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63a2e8c4-8cf85"
Date: Fri, 30 Dec 2022 05:40:07 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 21 Dec 2022 11:06:44 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-29
Content-Length: 577413
www.ppmv022.xyz/
107.148.45.244200 OK 0 B IP 107.148.45.244:0
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmvapi111.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:56 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.ppmv022.xyz/js/wz2.js?adv=0.2613115210968098
107.148.45.244200 OK 0 B URL HTTP/2 www.ppmv022.xyz/js/wz2.js?adv=0.2613115210968098
IP 107.148.45.244:0
Analyzer Verdict Alert quad9 Sinkholed
GET /js/wz2.js?adv=0.2613115210968098 HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:57 GMT
content-type: application/javascript
last-modified: Sat, 19 Nov 2022 10:18:44 GMT
vary: Accept-Encoding
etag: W/"6378ad84-d6c"
expires: Sun, 15 Jan 2023 16:10:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
99883aaa.com/c0aaf969549441f3bca72296bf90ec44.gif
103.170.15.85200 OK 0 B URL HTTP/1.1 99883aaa.com/c0aaf969549441f3bca72296bf90ec44.gif
IP 103.170.15.85:0
ASN #7483 Skycloud Computing co., Ltd.
Analyzer Verdict Alert quad9 Sinkholed
GET /c0aaf969549441f3bca72296bf90ec44.gif HTTP/1.1
Host: 99883aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63a2e912-3bcc4"
Date: Fri, 23 Dec 2022 10:19:12 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 21 Dec 2022 11:08:02 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-15
Content-Length: 244932
www.ppmv022.xyz/template/m1938pc/static/js/jquery.min.js
107.148.45.244200 OK 0 B URL HTTP/2 www.ppmv022.xyz/template/m1938pc/static/js/jquery.min.js
IP 107.148.45.244:0
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/static/js/jquery.min.js HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:56 GMT
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 14:07:34 GMT
vary: Accept-Encoding
etag: W/"61d99aa6-17b8b"
expires: Sun, 15 Jan 2023 16:10:56 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.ppmv022.xyz/template/m1938pc/static/js/base1.js
107.148.45.244200 OK 0 B URL HTTP/2 www.ppmv022.xyz/template/m1938pc/static/js/base1.js
IP 107.148.45.244:0
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/static/js/base1.js HTTP/1.1
Host: www.ppmv022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 04:10:56 GMT
content-type: application/javascript
last-modified: Sat, 31 Dec 2022 07:21:11 GMT
vary: Accept-Encoding
etag: W/"63afe2e7-153a"
expires: Sun, 15 Jan 2023 16:10:56 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
8499483.com/8499/zzxx/960x100.gif
172.247.109.212200 OK 0 B URL HTTP/2 8499483.com/8499/zzxx/960x100.gif
IP 172.247.109.212:0
GET /8499/zzxx/960x100.gif HTTP/1.1
Host: 8499483.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ppmv022.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 15 Jan 2023 04:11:03 GMT
content-type: image/gif
content-length: 479036
last-modified: Sat, 24 Dec 2022 13:23:32 GMT
etag: "74f3c-5f092cf09552f"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2