arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
156.250.217.13301 Moved Permanently 0 B URL User Request GET HTTP/1.1 arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
IP 156.250.217.13:80
ASN #132839 POWER LINE DATACENTER
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw== HTTP/1.1
Host: arminardalan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 29 Mar 2024 07:38:54 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
156.250.217.13 652 B URL User Request GET www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
IP 156.250.217.13:0
ASN #132839 POWER LINE DATACENTER
File type HTML document, ISO-8859 text, with very long lines (1169), with CRLF line terminators
Hash faf8fe56344d4b06e7f2029b5df3928e
74314935923f83b87c643bda6751d583c01b352f
6e2b1edf8b5c455a97a48f8509369e7bb5c18dbde9cb282ce8a167947ae67806
GET /yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw== HTTP/1.1
Host: www.arminardalan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:38:55 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.arminardalan.com/tj.js
156.250.217.13200 OK 937 B URL GET HTTP/1.1 www.arminardalan.com/tj.js
IP 156.250.217.13:80
ASN #132839 POWER LINE DATACENTER
Requested by http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
File type JavaScript source, ASCII text, with very long lines (404), with CRLF, LF line terminators
Hash eda0a4650f7cfc7e84cbf5d6382cde0b
1c35a418f6e1e39a073805670bf427c84f41a2a6
7ae5ce4b5257767a3908fea714107be44f0925a66f0b2821a952e664e91bba5b
GET /tj.js HTTP/1.1
Host: www.arminardalan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:38:56 GMT
Content-Type: application/x-javascript
Content-Length: 937
Connection: keep-alive
www.arminardalan.com/common.js
156.250.217.13200 OK 981 B URL GET HTTP/1.1 www.arminardalan.com/common.js
IP 156.250.217.13:80
ASN #132839 POWER LINE DATACENTER
Requested by http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
File type JavaScript source, ASCII text, with very long lines (1711)
Hash 75c2bac335fe4b1199bfc80a76a8f07c
3d011d0898b7721183ff812b535431c6b02287b3
38fb80dcc030ed1beabd3c988b63b3f56891d897c00591c53172b51fafc0dc94
GET /common.js HTTP/1.1
Host: www.arminardalan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:38:56 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.vip8258.top/h.js
47.246.44.243 710 B IP 47.246.44.243:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
Certificate IssuerTrustAsia Technologies, Inc.
Subjectvip8258.top
Fingerprint23:42:14:DC:C1:EB:32:C6:2A:AC:94:C0:8F:2C:EA:F3:0D:A9:6D:44
ValidityFri, 01 Sep 2023 00:00:00 GMT - Sat, 31 Aug 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (389)
Hash c3d0ce85ee1a9244d7068c0f793e1a1a
549687e6e80a1dd9a5755c93b6fc774445f2d764
4959d15ad258cdaa76b0716a4aa5b8500ccc2da67995f5d9f03c0279b8005305
GET /h.js HTTP/1.1
Host: www.vip8258.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.arminardalan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 29 Mar 2024 07:41:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Via: cache1.us13[70,0], ens-cache12.se2[165,0]
Timing-Allow-Origin: *, *
EagleId: 2ff62ca017116980842785556e, 2ff62ca017116980842785556e
www.arminardalan.com/favicon.ico
156.250.217.13200 OK 1.2 kB URL GET HTTP/1.1 www.arminardalan.com/favicon.ico
IP 156.250.217.13:80
ASN #132839 POWER LINE DATACENTER
Requested by http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.arminardalan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:38:57 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Wed, 03 Apr 2024 07:38:57 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
hm.baidu.com/hm.js?68e16e9f264ee875b11988c136a54a9d
103.235.46.191200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?68e16e9f264ee875b11988c136a54a9d
IP 103.235.46.191:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (617)
Hash cbde4b97a3934e5ded0efc923951f62f
604bebd918f4b0fcc875e05c221f88839d3eb5b7
8ea7fb32abeef12a86de1e383a5a2480e05a4e841fa6a8c1be31a306cd498f0c
GET /hm.js?68e16e9f264ee875b11988c136a54a9d HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.arminardalan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Fri, 29 Mar 2024 07:41:25 GMT
Etag: 691add649a3738571636fa9dd2a3df98
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=DF9B6BE54009087A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?038505e8a34cdccc0cfb217a5066f365
103.235.46.191200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?038505e8a34cdccc0cfb217a5066f365
IP 103.235.46.191:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (622)
Hash 1aefb7912968e9be3ad0b360d0aed46c
976db13c70c915c4e85703df43a4f4ac9cc07d1f
b696836e2040247381da3768fb54e81b20100ff05dd555ca8589c4724909ac44
GET /hm.js?038505e8a34cdccc0cfb217a5066f365 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.arminardalan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11260
Content-Type: application/javascript
Date: Fri, 29 Mar 2024 07:41:25 GMT
Etag: fe30f053c7d19f23abe67618190b6aa7
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=E51BDD962BA1AA2F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1562373406&si=68e16e9f264ee875b11988c136a54a9d&v=1.3.0&lv=1&sn=54955&r=0&ww=1280&u=http%3A%2F%2Fwww.arminardalan.com%2Fyee%2FcmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw%3D%3D&tt=%E6%B4%9B%E9%98%B3%E6%B7%98%E6%83%BA%E8%A3%85%E9%A5%B0%E6%9D%90%E6%96%99%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1562373406&si=68e16e9f264ee875b11988c136a54a9d&v=1.3.0&lv=1&sn=54955&r=0&ww=1280&u=http%3A%2F%2Fwww.arminardalan.com%2Fyee%2FcmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw%3D%3D&tt=%E6%B4%9B%E9%98%B3%E6%B7%98%E6%83%BA%E8%A3%85%E9%A5%B0%E6%9D%90%E6%96%99%E5%85%AC%E5%8F%B8
IP 103.235.46.191:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1562373406&si=68e16e9f264ee875b11988c136a54a9d&v=1.3.0&lv=1&sn=54955&r=0&ww=1280&u=http%3A%2F%2Fwww.arminardalan.com%2Fyee%2FcmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw%3D%3D&tt=%E6%B4%9B%E9%98%B3%E6%B7%98%E6%83%BA%E8%A3%85%E9%A5%B0%E6%9D%90%E6%96%99%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.arminardalan.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 29 Mar 2024 07:41:25 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=CADF2F6E035817E5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1295773107&si=038505e8a34cdccc0cfb217a5066f365&v=1.3.0&lv=1&sn=54956&r=0&ww=1280&u=http%3A%2F%2Fwww.arminardalan.com%2Fyee%2FcmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw%3D%3D&tt=%E6%B4%9B%E9%98%B3%E6%B7%98%E6%83%BA%E8%A3%85%E9%A5%B0%E6%9D%90%E6%96%99%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1295773107&si=038505e8a34cdccc0cfb217a5066f365&v=1.3.0&lv=1&sn=54956&r=0&ww=1280&u=http%3A%2F%2Fwww.arminardalan.com%2Fyee%2FcmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw%3D%3D&tt=%E6%B4%9B%E9%98%B3%E6%B7%98%E6%83%BA%E8%A3%85%E9%A5%B0%E6%9D%90%E6%96%99%E5%85%AC%E5%8F%B8
IP 103.235.46.191:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1295773107&si=038505e8a34cdccc0cfb217a5066f365&v=1.3.0&lv=1&sn=54956&r=0&ww=1280&u=http%3A%2F%2Fwww.arminardalan.com%2Fyee%2FcmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw%3D%3D&tt=%E6%B4%9B%E9%98%B3%E6%B7%98%E6%83%BA%E8%A3%85%E9%A5%B0%E6%9D%90%E6%96%99%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.arminardalan.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 29 Mar 2024 07:41:25 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=18EC79732C804975; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.lnhntv9940.top/template/1/images/logo.png
104.21.12.254200 OK 15 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/images/logo.png
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type PNG image data, 513 x 156, 8-bit/color RGBA, non-interlaced
Hash 9941dc8ee01b6399b0c2413ce284f0c0
1d1d7ef55139d96e47f86d424330904786a203e7
1c0443009ed4337673219db7c67db08a704b1d757cd65dc43f194f166ab57cc7
GET /template/1/images/logo.png HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:26 GMT
content-type: image/png
content-length: 15130
last-modified: Sat, 15 Apr 2023 09:48:42 GMT
etag: "643a72fa-3b1a"
expires: Sun, 28 Apr 2024 07:41:26 GMT
cache-control: max-age=2592000
cf-cache-status: BYPASS
set-cookie: sl-session=iWT4KSbCB2ad7d1yXGaBeA==; Path=/; Max-Age=86400; HttpOnly
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5etXYJsyAXwWFJsjWm2%2B47XHjjgmQlGQcSI43os8vRXMNpdhBFBf542Ayrwncy7v1G7j8mHxRk36rn7ExgZ3TmiC7%2FEZlEvbbtPVuXRLKUDuUfQyoVtlLdJ%2BZaJCr%2B7otaJVC5U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37ad49d5b505-OSL
alt-svc: h3=":443"; ma=86400
pic1.semaobf1.com/20220525/2F5AC7756EE242C2/2F5AC7756EE242C2.jpg
23.224.44.74200 OK 8.6 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/2F5AC7756EE242C2/2F5AC7756EE242C2.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 6dba1502db5871eecc4b278973a009a9
1315ce96dae244433bf5673e9dd078a46491ae16
f1a1cef03bdfa651bb699dafbf3fb40b1d64c7515eb869fd3aefd7317f58b685
GET /20220525/2F5AC7756EE242C2/2F5AC7756EE242C2.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 8589
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 18:00:06 GMT
Etag: "628d8fe1-218d"
Expires: Tue, 23 Apr 2024 18:00:06 GMT
Last-Modified: Sun, 24 Mar 2024 18:01:28 GMT
Server: nginx
X-Cache: HIT, policy, disk
pic1.semaobf1.com/20220510/71D46E0C2C99629F/71D46E0C2C99629F.jpg
23.224.44.74200 OK 12 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/71D46E0C2C99629F/71D46E0C2C99629F.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash bdc41b4034d78250abf07b454461b39e
17bae7496d0a297aeae87b36013495d19075d322
f6b9e58b473e4fb44afeed9338f0f282d5ba19c5abecd12f14c43e3c28ac6a68
GET /20220510/71D46E0C2C99629F/71D46E0C2C99629F.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 11628
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 18:05:09 GMT
Etag: "627a342b-2d6c"
Expires: Tue, 23 Apr 2024 18:05:09 GMT
Last-Modified: Sun, 24 Mar 2024 18:06:42 GMT
Server: nginx
X-Cache: HIT, policy, disk
www.lnhntv9940.top/template/1/tp/ad/100X100.gif
104.21.12.254200 OK 74 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/tp/ad/100X100.gif
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type GIF image data, version 89a, 100 x 100
Hash 60ef912b81459e301b692ab85ec83bc2
ee81be8bcacd826483e47c228ee19754e4b25b89
cbc2a42e0a215c851fac163738fa9739b29be158ffc51e81844e1bc2cc427dd1
GET /template/1/tp/ad/100X100.gif HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:26 GMT
content-type: image/gif
content-length: 73679
last-modified: Sat, 03 Sep 2022 08:44:36 GMT
etag: "631313f4-11fcf"
expires: Sun, 28 Apr 2024 07:41:26 GMT
cache-control: max-age=2592000
cf-cache-status: BYPASS
set-cookie: sl-session=1It5FybCB2a3VlCwv6DjwA==; Path=/; Max-Age=86400; HttpOnly
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G49N8hlmxK1LxjfuKh0DyYNZ8ebv%2BuYBtwanush%2FdGlvFrwy2mA871o9S%2BuzU7P0t4TIOfoiWm1I0iSSguG9UJ0AqwfEARCReN4mjiXDPBt5cLDRFh8Ai%2Bi3oWwT%2Bs%2BJMRYSta8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37ad69f4b505-OSL
alt-svc: h3=":443"; ma=86400
pic1.semaobf1.com/20220510/921BE0605F52B027/921BE0605F52B027.jpg
23.224.44.74200 OK 83 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/921BE0605F52B027/921BE0605F52B027.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3
Hash a7e5e9a698a8ab4fa9709b324c92a532
2e5c02a87e03dfe58bd1357eae9b9280670967e7
430517ea7963e9147580d4e6f3002ba77d97311e13eb22f00d14554c7e7c48f3
GET /20220510/921BE0605F52B027/921BE0605F52B027.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 83250
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:45:42 GMT
Etag: "622b17c3-14532"
Expires: Tue, 23 Apr 2024 17:45:42 GMT
Last-Modified: Sun, 24 Mar 2024 17:47:53 GMT
Server: nginx
X-Cache: HIT, policy, disk
pic1.semaobf1.com/20220510/1B6DE10C1E383D3A/1B6DE10C1E383D3A.jpg
23.224.44.74200 OK 80 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/1B6DE10C1E383D3A/1B6DE10C1E383D3A.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3
Hash 58398bee3d350518a29d3cb8616399fc
488e9d1b7597524d3547c4f0d589c9bf59b71035
5624deb5fea73bfd803cd7b2840c6dc6aca2ce18c4473dcc2e110c9c4943d5d1
GET /20220510/1B6DE10C1E383D3A/1B6DE10C1E383D3A.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 80533
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:29:25 GMT
Etag: "622b1761-13a95"
Expires: Tue, 23 Apr 2024 17:29:25 GMT
Last-Modified: Sun, 24 Mar 2024 17:29:31 GMT
Server: nginx
X-Cache: HIT, policy, disk
www.lnhntv9940.top/template/1/tp/yptp/y6.gif
104.21.12.254200 OK 175 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/tp/yptp/y6.gif
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type GIF image data, version 89a, 960 x 60
Size 175 kB (174979 bytes)
Hash 393f3a0903be09ce5308f2214cb6f267
abc58cb591a767ad3f35ee50a636b737ec69e1dc
008f2fc4c5561fefc90714a30ab629f086302dd848cb3a7dfde80f1f6a71338a
GET /template/1/tp/yptp/y6.gif HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:26 GMT
content-type: image/gif
content-length: 174979
last-modified: Sun, 26 Jun 2022 16:40:42 GMT
etag: "62b88c0a-2ab83"
expires: Sun, 28 Apr 2024 07:41:26 GMT
cache-control: max-age=2592000
cf-cache-status: BYPASS
set-cookie: sl-session=okGcCSbCB2ajHWHM+3to/g==; Path=/; Max-Age=86400; HttpOnly
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=87pFvPAAj%2FUuGp2FUlot1lnq%2FxDLpJcBO%2Bh6AmsLoZh4UQ4IKDxeVI%2B%2BIi9rLOqE80TemZPo4wZu57YR6iBQGPKdIeuvKjVDDjY%2F1Voj363jAHhWkM6h%2BSpVbx5kQjBsDjVZB80%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37adfa45b505-OSL
alt-svc: h3=":443"; ma=86400
www.lnhntv9940.top/template/1/tp/yptp/y3.gif
104.21.12.254200 OK 67 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/tp/yptp/y3.gif
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type GIF image data, version 89a, 960 x 60
Hash e0f20c3626cccf9e26c0d8969d2032f8
5b076b7a6a320d326920affcb3945737ef7e91e3
da30a87446a82d8a33d0ef3b40665bfa5396b98f9029e636b2f8517655475bbc
GET /template/1/tp/yptp/y3.gif HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:26 GMT
content-type: image/gif
content-length: 66982
last-modified: Sun, 26 Jun 2022 16:40:36 GMT
etag: "62b88c04-105a6"
expires: Sun, 28 Apr 2024 07:41:26 GMT
cache-control: max-age=2592000
cf-cache-status: BYPASS
set-cookie: sl-session=Mus6dSbCB2YW+760VCd3cA==; Path=/; Max-Age=86400; HttpOnly
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sFqh6ivadsBWwbjqBUoT4HgQ%2B%2FlXWKqg9vFlDOlGEDiTVicq7IWD0KDZRCAQhG6nofFKGNof6UBSQQU2alI9OxEPs82y8WLxzNV%2BO%2Fj%2B2KcKJDlXZlmytRi4FXgiOHvBWhMp%2FS0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37ad59f0b505-OSL
alt-svc: h3=":443"; ma=86400
www.lnhntv9940.top/template/1/tp/zbdtp/a1.gif
104.21.12.254200 OK 70 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/tp/zbdtp/a1.gif
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type GIF image data, version 89a, 960 x 120
Hash 70b900242fdade2c9b1be5742d96f0f0
a5d5f1d689289683caccb6552356be7759051cab
8a9c1d22ef7b0c76959e0be485db3db50fe2fcec85e77286124a0d842951e1c1
GET /template/1/tp/zbdtp/a1.gif HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:26 GMT
content-type: image/gif
content-length: 69896
last-modified: Sun, 26 Jun 2022 16:41:40 GMT
etag: "62b88c44-11108"
expires: Sun, 28 Apr 2024 07:41:26 GMT
cache-control: max-age=2592000
cf-cache-status: BYPASS
set-cookie: sl-session=kZkHaCbCB2aaIjKtUO7T1g==; Path=/; Max-Age=86400; HttpOnly
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tG3LC16Rb8ZrqoOv6CTQ0aBblrifd%2Fe%2F8%2FCKSS4108qiAZSoOuo9GO72tNihYM4VQd69IMErJWmC4CGgNMSoUcl0%2FWh8RrbEUTftNtPj0jrDlAA7FQHkWT8wlgNo0xbfn0qh3CQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37ad59ebb505-OSL
alt-svc: h3=":443"; ma=86400
js.users.51.la/21298467.js
47.246.44.240200 OK 4.9 kB URL GET HTTP/1.1 js.users.51.la/21298467.js
IP 47.246.44.240:443
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by https://www.lnhntv9940.top/
Certificate IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT
File type JavaScript source, ASCII text, with very long lines (4898), with no line terminators
Hash cf0fa295a09a1e451b762bb63884d803
32744a117ddadc60307681be5c3766b3ada42247
5b8446744df0dd22d70240458e29421e3e06b448bb04e9db96e98405fd9b719f
GET /21298467.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 29 Mar 2024 07:41:27 GMT
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Ali-Swift-Global-Savetime: 1711698087
Via: cache21.l2de2[469,469,200-0,M], cache6.l2de2[470,0], ens-cache5.se2[491,490,200-0,M], ens-cache11.se2[492,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Fri, 29 Mar 2024 07:41:27 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9f17116980866105218e
www.lnhntv9940.top/template/1/tp/yptp/y1.gif
104.21.12.254200 OK 105 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/tp/yptp/y1.gif
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type GIF image data, version 89a, 960 x 60
Size 105 kB (105007 bytes)
Hash 8addcd5a8672c743ab9d7c3728939025
ec5378c74c297e54484cf0f6e955cb27fe036b05
9a9675e295a3047370252c4fa1323fbcd71d8357e22d74b1cbed41178f76e2c3
GET /template/1/tp/yptp/y1.gif HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:27 GMT
content-type: image/gif
content-length: 105007
last-modified: Sun, 26 Jun 2022 16:40:34 GMT
etag: "62b88c02-19a2f"
expires: Sun, 28 Apr 2024 07:41:26 GMT
cache-control: max-age=2592000
cf-cache-status: BYPASS
set-cookie: sl-session=E83xeybCB2ZQVl7YxNxFhg==; Path=/; Max-Age=86400; HttpOnly
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kyy%2FZbf4Uql0IVkptf9qfm636YM2MC3sCdfN6dO%2Fi207KBg79EOovQaxP3r8GUj1WSXK2bcuAQG%2FrFsLxyU0gHP2x8T6hRkZ%2FHm4t8TLnWD50ekP8CNf51Opj%2FAWdfrazb%2FFOnM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37ad59f1b505-OSL
alt-svc: h3=":443"; ma=86400
www.lnhntv9940.top/template/1/tp/zbdtp/a3.gif
104.21.12.254200 OK 691 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/tp/zbdtp/a3.gif
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type GIF image data, version 89a, 640 x 200
Size 691 kB (691201 bytes)
Hash e777fbf270544cb526b587f6c9e7b370
d2c75be6512b6a1279e91d5d6d99fa18920ef878
13a0a7ac347346c7bf57699606465257d349ff14861dfa911ef397bfcbda91b2
GET /template/1/tp/zbdtp/a3.gif HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:26 GMT
content-type: image/gif
content-length: 691201
last-modified: Sun, 26 Jun 2022 15:29:18 GMT
etag: "62b87b4e-a8c01"
expires: Sun, 28 Apr 2024 07:41:26 GMT
cache-control: max-age=2592000
cf-cache-status: BYPASS
set-cookie: sl-session=A4usUCbCB2buSeRS4y9Q0A==; Path=/; Max-Age=86400; HttpOnly
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5YxWq8a3jcWOFo2IbijL3xySddukLbKXEfSxNZt4QWvJ1wq8G4n%2B%2Bl%2F7qXkfbrMzlTbjILf%2FWLEg%2FEk%2BWZ81%2F34Ru%2Bnp%2BdOCX6JO7naTvLJP6xwu%2FKBpC1UV1Gd6hRISX4xICRg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37ad59ecb505-OSL
alt-svc: h3=":443"; ma=86400
www.lnhntv9940.top/template/1/static/css/bootstrap.min.css
104.21.12.254200 OK 70 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/static/css/bootstrap.min.css
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type ASCII text, with very long lines (493)
Hash 6c4ee93275ed4a2d4b704ad569a6672b
79ffd21679dcbaaffac0e531dc7faca8657656b2
5b74f1a616d85e47d0b70269001c8d91d7707a5fa4beeeb13f636dfe86623df2
GET /template/1/static/css/bootstrap.min.css HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:26 GMT
content-type: text/css
last-modified: Mon, 23 May 2022 01:48:08 GMT
vary: Accept-Encoding
etag: W/"628ae7d8-221c3"
expires: Fri, 29 Mar 2024 19:41:26 GMT
cache-control: max-age=43200
cf-cache-status: BYPASS
set-cookie: sl-session=ipBuJCbCB2Zh1Knm5wGSOQ==; Path=/; Max-Age=86400; HttpOnly
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BlBuXAgm7JauV07JPTOADsMqQDMDcYemxjSd%2FDo8p9GnKJqCkMldSkX6zylGUXB%2Bu7FQm1dmw%2BUAh3hf3Hh4uRAH1nppp5qvroSDu9ppKFo3Bo054pNnhld2D31IT7%2Fn0cbhpZE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86be37ad49ccb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
pic1.semaobf1.com/20220510/4483FDEE3F43F0F5/4483FDEE3F43F0F5.jpg
23.224.44.74200 OK 4.8 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/4483FDEE3F43F0F5/4483FDEE3F43F0F5.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 213x160, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 1326a86a45ae2e8066287fd5a06bd5fd
22e51b930dba2339e8513d1032f5344061161d7a
30a40f5252ff0ddff0ad5739704a72c8b3ba572c0a44f3a84e65f0a01f4c6a35
GET /20220510/4483FDEE3F43F0F5/4483FDEE3F43F0F5.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 4795
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:46:14 GMT
Etag: "6279d2db-12bb"
Expires: Tue, 23 Apr 2024 17:46:14 GMT
Last-Modified: Sun, 24 Mar 2024 17:47:54 GMT
Server: nginx
X-Cache: HIT, policy, disk
pic1.semaobf1.com/20220525/21571969B14EC532/21571969B14EC532.jpg
23.224.44.74200 OK 7.8 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/21571969B14EC532/21571969B14EC532.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 6ce0e2675d3137f81e4f62d0878c8706
90afe0eb1f103830048b342cc72328444b217f41
313fbe333cd165de937986a5e5493fba91767488eefaafadf7bfb79908e6384f
GET /20220525/21571969B14EC532/21571969B14EC532.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 7844
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:14:24 GMT
Etag: "628d3281-1ea4"
Expires: Tue, 23 Apr 2024 17:14:24 GMT
Last-Modified: Sun, 24 Mar 2024 17:16:07 GMT
Server: nginx
X-Cache: HIT, policy, disk
www.lnhntv9940.top/template/1/static/css/style.css
104.21.12.254200 OK 95 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/static/css/style.css
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type assembler source, Unicode text, UTF-8 text, with very long lines (350), with CRLF line terminators
Hash 0e420343241be96d21c698be4cf1a7d5
400a7ee5dabdb8d588a905d7694a7e6685150376
185f42ca21ab4c5761237bc476d390d0208ed2d54c36f30c7feb6ad450e9510b
GET /template/1/static/css/style.css HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:27 GMT
content-type: text/css
last-modified: Wed, 19 Apr 2023 04:03:38 GMT
vary: Accept-Encoding
etag: W/"643f681a-10afe"
expires: Fri, 29 Mar 2024 19:41:27 GMT
cache-control: max-age=43200
cf-cache-status: BYPASS
set-cookie: sl-session=kNmRIifCB2asr9QAAztYPA==; Path=/; Max-Age=86400; HttpOnly
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jQE9SDDjRgySVjqhDLdJbqu75wZMsj96%2F%2BlaFBirmE20%2FKTyKk6arV6Lh%2BRXdahQYXK%2Fg6pC8ACs1za2xetlM7nEUhbZV6FzEsGZxFohUhz8HTBrgiYr2mk3%2FmQ0tpJSO73rNPI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86be37ad49d0b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.lnhntv9940.top/template/1/tp/zbdtp/a4.gif
104.21.12.254200 OK 86 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/tp/zbdtp/a4.gif
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type GIF image data, version 89a, 640 x 200
Hash 2fb46fbac4465a3915ee2482b2223c25
6bb17db9f8c5517bfe21f4a54480c3fec3629adb
56eed647be7230eb7ba9fd7f3cee377e9636395207e26479ba10de9cecf8f637
GET /template/1/tp/zbdtp/a4.gif HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:27 GMT
content-type: image/gif
content-length: 86199
last-modified: Sun, 26 Jun 2022 16:41:40 GMT
etag: "62b88c44-150b7"
expires: Sun, 28 Apr 2024 07:41:27 GMT
cache-control: max-age=2592000
cf-cache-status: BYPASS
set-cookie: sl-session=EJxZLCfCB2awn5alBVP+rg==; Path=/; Max-Age=86400; HttpOnly
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yKAbsJuIFQXyIWxIfDwV6hrOA3U2YonCCDvDAU68jMM74FuC2pBMawSt1ZPmrWScL0P8gbw6yZ5mIC9pbvEglGnkvawEeD1bc%2F1lr3GQZw8XW2jiAT%2B%2BNfYoVY7DQqYJdobxRjs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37ad59eeb505-OSL
alt-svc: h3=":443"; ma=86400
pic1.semaobf1.com/20220525/B6A644B2868BD89E/B6A644B2868BD89E.jpg
23.224.44.74200 OK 9.9 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/B6A644B2868BD89E/B6A644B2868BD89E.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 75c63ccf0ba5a38fcf70eefbf838c9a6
bb4ae1050682019f3c733e2985f60969a03cf221
df454ca37602418fd0b7347bb76e1534bb6d59e9eae1cdf41f818df081e618ff
GET /20220525/B6A644B2868BD89E/B6A644B2868BD89E.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 9910
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:53:04 GMT
Etag: "628d2fef-26b6"
Expires: Tue, 23 Apr 2024 17:53:04 GMT
Last-Modified: Sun, 24 Mar 2024 17:53:04 GMT
Server: nginx
X-Cache: HIT, policy, disk
pic1.semaobf1.com/20220525/D4C6166FF5188309/D4C6166FF5188309.jpg
23.224.44.74200 OK 12 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/D4C6166FF5188309/D4C6166FF5188309.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 1dd18e4c5db96b5873dfd281491ddbfe
62e3a6d1047bcdd823f40b18ed17b3467f363585
f94be4ae7c50dd6d9aebb5902e3b0494895a56acbc648c3511a4d5b1b5de915f
GET /20220525/D4C6166FF5188309/D4C6166FF5188309.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 11794
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:53:08 GMT
Etag: "628dd436-2e12"
Expires: Tue, 23 Apr 2024 17:53:08 GMT
Last-Modified: Sun, 24 Mar 2024 17:53:08 GMT
Server: nginx
X-Cache: HIT, policy, disk
pic1.semaobf1.com/20220510/3614A94D474CCD4F/3614A94D474CCD4F.jpg
23.224.44.74200 OK 66 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/3614A94D474CCD4F/3614A94D474CCD4F.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3
Hash 629f3fd918909b17cd026c1750a00c4f
4e49e978ac701e819645e47e536135afb8093496
20d9ee9b307b5eb7f04efc64bcb3be6026649cad8d600abce9bb694426b492ee
GET /20220510/3614A94D474CCD4F/3614A94D474CCD4F.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 65650
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:59:44 GMT
Etag: "622b19cb-10072"
Expires: Tue, 23 Apr 2024 17:59:44 GMT
Last-Modified: Sun, 24 Mar 2024 18:01:27 GMT
Server: nginx
X-Cache: HIT, policy, disk
sycdn.pic-726-baidu.com/uptu/20240314/xQtMNhRj/1.jpg
156.238.196.3200 OK 5.1 kB URL GET HTTP/1.1 sycdn.pic-726-baidu.com/uptu/20240314/xQtMNhRj/1.jpg
IP 156.238.196.3:443
ASN #50183 CenturyNetworks Ltd
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subjectddcdn.pic-726-baidu.com
FingerprintF2:9A:53:F9:71:77:6F:22:A4:8A:FB:D5:B1:25:2E:70:F6:A8:7A:B3
ValidityThu, 21 Mar 2024 08:44:56 GMT - Sun, 20 Apr 2025 08:44:55 GMT
File type JPEG image data, baseline, precision 8, 240x320, components 3
Hash b31bd480cfd558cac66afb01d62ce69f
5c9fbeaf76644fef0c51fb657f94633a7eab8b9e
ca8895f18ef282b9b6b186b91cc19404520110cda7e9d8154583881316f162a6
GET /uptu/20240314/xQtMNhRj/1.jpg HTTP/1.1
Host: sycdn.pic-726-baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 29 Mar 2024 07:41:27 GMT
Content-Type: image/jpeg
Content-Length: 5081
Connection: keep-alive
Last-Modified: Fri, 15 Mar 2024 17:09:10 GMT
ETag: "65f480b6-13d9"
Expires: Sat, 29 Mar 2025 07:41:27 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=31536000
access-control-allow-credentials: : true
Access-Control-Allow-Origin: *
X-Cache-Status: HIT
X-Cache-key: 172.247.187.219/uptu/20240314/xQtMNhRj/1.jpg
Accept-Ranges: bytes
pic1.semaobf1.com/20220525/FF1E6B90D438CF11/FF1E6B90D438CF11.jpg
23.224.44.74200 OK 10 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/FF1E6B90D438CF11/FF1E6B90D438CF11.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 27ac6e6d3b3b5196ed7f000ca4706041
7112c17a95d3a97dfff8d6891436993a698dd639
455918af18180a8ba6d508327d89102b551a88cc00a64bb9e20b5b58b46a1acb
GET /20220525/FF1E6B90D438CF11/FF1E6B90D438CF11.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 10521
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:29:22 GMT
Etag: "628d2ffe-2919"
Expires: Tue, 23 Apr 2024 17:29:22 GMT
Last-Modified: Sun, 24 Mar 2024 17:29:22 GMT
Server: nginx
X-Cache: HIT, policy, disk
pic1.semaobf1.com/20220525/7AE519CB810F17CF/7AE519CB810F17CF.jpg
23.224.44.74200 OK 11 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/7AE519CB810F17CF/7AE519CB810F17CF.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, baseline, precision 8, 320x240, components 3
Hash 689636a19be361d39d7aed8254a9a546
74af081718c9e5095f5e87219468a214067f29ae
66fa00b07c1fa6df469eb6056d3adb3a2b9f450f819ceb48301177e145e0ffa2
GET /20220525/7AE519CB810F17CF/7AE519CB810F17CF.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 10799
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:48:19 GMT
Etag: "628d41d8-2a2f"
Expires: Tue, 23 Apr 2024 17:48:19 GMT
Last-Modified: Sun, 24 Mar 2024 17:48:35 GMT
Server: nginx
X-Cache: HIT, policy, disk
www.lnhntv9940.top/template/1/static/fonts/font_593233_jsu8tlct5shpk3xr.woff
104.21.12.254200 OK 13 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/static/fonts/font_593233_jsu8tlct5shpk3xr.woff
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type Web Open Font Format, TrueType, length 13408, version 1.0
Hash 99af6debcdaba3e7ffe01b4c3cbccacb
4efda64b06cd7c294f6214623bcb634f3def3bd1
1106aebd6819da7203324abc443186658c8f54180a460ccc5b83553c5ce34f72
GET /template/1/static/fonts/font_593233_jsu8tlct5shpk3xr.woff HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/template/1/static/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:27 GMT
content-type: font/woff
content-length: 13408
last-modified: Sat, 13 Nov 2021 12:13:58 GMT
etag: "618fac06-3460"
cf-cache-status: BYPASS
set-cookie: sl-session=4hwpMCfCB2a7h4Bdky4t1A==; Path=/; Max-Age=86400; HttpOnly
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MuGr10Oj0HAZYLgH3R9Wzt7CaZBQhftHPPJZkTjW2LnfZTjkK30IRrfDy%2Bz%2Bd1qzuyNzVfGkDAFqY0clqkbsW8Wz7Oj14GYugwnvxNkubx6x6rVpXjUDO4t84t%2FuPWpF2mYrP04%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37b7b95eb505-OSL
alt-svc: h3=":443"; ma=86400
pic1.semaobf1.com/20220525/598689C695BA98E8/598689C695BA98E8.jpg
23.224.44.74200 OK 10 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/598689C695BA98E8/598689C695BA98E8.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 855c81dc35ba379567cf268be94dea24
d2d14d28022a99d6d19086de201dfff0d535ef91
4ae7683dd9e64e832a49c679eb5288544451cb75706bb8c077e23ecb724da32c
GET /20220525/598689C695BA98E8/598689C695BA98E8.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 10206
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:48:24 GMT
Etag: "628d69bd-27de"
Expires: Tue, 23 Apr 2024 17:48:24 GMT
Last-Modified: Sun, 24 Mar 2024 17:49:04 GMT
Server: nginx
X-Cache: HIT, policy, disk
sycdn.pic-726-baidu.com/images/2024/03/03/dongman203.jpg
156.238.196.3200 OK 114 kB URL GET HTTP/1.1 sycdn.pic-726-baidu.com/images/2024/03/03/dongman203.jpg
IP 156.238.196.3:443
ASN #50183 CenturyNetworks Ltd
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subjectddcdn.pic-726-baidu.com
FingerprintF2:9A:53:F9:71:77:6F:22:A4:8A:FB:D5:B1:25:2E:70:F6:A8:7A:B3
ValidityThu, 21 Mar 2024 08:44:56 GMT - Sun, 20 Apr 2025 08:44:55 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 560x420, components 3
Size 114 kB (113768 bytes)
Hash 301bd09d41ff5a05e2742057da87cff3
3350c413b863f2fff00c366cfe7c60d030551c55
d1ffaed5d4e564006968122449eae0a67f4c6387822b6e8c01c6cd7fb8916e43
GET /images/2024/03/03/dongman203.jpg HTTP/1.1
Host: sycdn.pic-726-baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 29 Mar 2024 07:41:27 GMT
Content-Type: image/jpeg
Content-Length: 113768
Connection: keep-alive
Last-Modified: Mon, 04 Mar 2024 10:43:45 GMT
ETag: "65e5a5e1-1bc68"
Expires: Sat, 29 Mar 2025 07:41:27 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=31536000
access-control-allow-credentials: : true
Access-Control-Allow-Origin: *
X-Cache-Status: HIT
X-Cache-key: 172.247.187.219/images/2024/03/03/dongman203.jpg
Accept-Ranges: bytes
pic1.semaobf1.com/20220525/7BDCDC14CD1F8F99/7BDCDC14CD1F8F99.jpg
23.224.44.74200 OK 13 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/7BDCDC14CD1F8F99/7BDCDC14CD1F8F99.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 15828cb8c959257ec041ed7b15d49f91
5ae4d1e24db98ca9ecc7c098749de70f47e651c8
a6f83a74fcf09f6e8f809ec8fcbf63989f751f10090f3356903c474e5e896f7a
GET /20220525/7BDCDC14CD1F8F99/7BDCDC14CD1F8F99.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 12990
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:53:05 GMT
Etag: "628d43d3-32be"
Expires: Tue, 23 Apr 2024 17:53:05 GMT
Last-Modified: Sun, 24 Mar 2024 17:53:05 GMT
Server: nginx
X-Cache: HIT, policy, disk
js.users.51.la/21809255.js
47.246.44.240200 OK 4.9 kB URL GET HTTP/1.1 js.users.51.la/21809255.js
IP 47.246.44.240:443
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by https://www.lnhntv9940.top/
Certificate IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT
File type JavaScript source, ASCII text, with very long lines (4898), with no line terminators
Hash e304e7c3365075fce43e66cd3d9e9f2c
0c3655e8ba6ad8f9e9c2cca83e1471853d1a8e88
8beb47e78a8ecaf5266561ff4fb0dc9b3d3db00d147340f0edfb5a467e4367b3
GET /21809255.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 29 Mar 2024 07:41:27 GMT
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Ali-Swift-Global-Savetime: 1711698087
Via: cache11.l2de2[283,282,200-0,M], cache4.l2de2[284,0], ens-cache18.se2[306,305,200-0,M], ens-cache11.se2[306,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Fri, 29 Mar 2024 07:41:27 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9f17116980876185626e
hm.baidu.com/hm.js?b11251cd006db848860fbaf90812cc73
103.235.46.191200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?b11251cd006db848860fbaf90812cc73
IP 103.235.46.191:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://www.lnhntv9940.top/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash f7800f9650d242cde00fbe1b5e9a63a4
aefd0295272c07079e2c3fea629c9bbb37683f09
8835f2d22114e8c7476d467d0ebea25a8025ae5949bdef65cee8d895fe724144
GET /hm.js?b11251cd006db848860fbaf90812cc73 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Fri, 29 Mar 2024 07:41:27 GMT
Etag: e61fbd0395408b73f480f198c89494b1
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9F1AC652485C9372; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg
47.246.44.250200 OK 2.7 kB URL GET HTTP/2 img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg
IP 47.246.44.250:443
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by https://www.lnhntv9940.top/
Certificate IssuerGlobalSign nv-sa
Subject*.tbcdn.cn
Fingerprint29:04:BE:E6:49:30:F7:DC:C0:BE:56:8F:B4:AC:24:9B:50:1A:F7:E2
ValidityTue, 26 Dec 2023 03:36:04 GMT - Tue, 30 Jul 2024 02:26:11 GMT
Hash 78cdf5f8995a77bde017c9afb00ff09c
892a0c961a111310a1c6a76f611edcfe0f5472d3
3724b8fd47d02379fa76d99f3ef90b3f3c108de19d4f0ae9899352dc7ffbebd3
GET /imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg HTTP/1.1
Host: img.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: image/avif
content-length: 2725
date: Thu, 21 Mar 2024 01:07:30 GMT
picasso-ret-code: SUCCESS
picasso-cache-info: HIT
request-time: 0.004
traceid: a3b5839c17109832502481952e
x-powered-by: Picasso
picasso-image-type: normal
picasso-fmt: jpg2avif
cache-control: max-age=31536000
ali-swift-global-savetime: 1710983250
via: cache16.l2us1[0,0,200-0,H], cache36.l2us1[1,0], ens-cache15.se2[0,0,200-0,H], ens-cache7.se2[1,0]
access-control-allow-origin: *
age: 714837
x-cache: HIT TCP_MEM_HIT dirn:11:5897177
x-swift-savetime: Thu, 28 Mar 2024 21:22:29 GMT
x-swift-cachetime: 30858301
s-rt: 2
vary: Accept
timing-allow-origin: *
eagleid: 2ff62c9b17116980879793735e
X-Firefox-Spdy: h2
sycdn.pic-726-baidu.com/images/2024/03/06/wuma1714.jpg
156.238.196.3200 OK 283 kB URL GET HTTP/1.1 sycdn.pic-726-baidu.com/images/2024/03/06/wuma1714.jpg
IP 156.238.196.3:443
ASN #50183 CenturyNetworks Ltd
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subjectddcdn.pic-726-baidu.com
FingerprintF2:9A:53:F9:71:77:6F:22:A4:8A:FB:D5:B1:25:2E:70:F6:A8:7A:B3
ValidityThu, 21 Mar 2024 08:44:56 GMT - Sun, 20 Apr 2025 08:44:55 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 960x540, components 3
Size 283 kB (282937 bytes)
Hash 8b7de8d23a0f6eb0627eb9f5c925eeb5
75d8e78bd6f69af78a75f176fd91981b1643a24a
501c0560552fee97ba5d34aff40671450b7de0e2df0b8e362307b08a57c5f973
GET /images/2024/03/06/wuma1714.jpg HTTP/1.1
Host: sycdn.pic-726-baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 29 Mar 2024 07:41:27 GMT
Content-Type: image/jpeg
Content-Length: 282937
Connection: keep-alive
Last-Modified: Mon, 04 Mar 2024 10:51:00 GMT
ETag: "65e5a794-45139"
Expires: Sat, 29 Mar 2025 07:41:27 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=31536000
access-control-allow-credentials: : true
Access-Control-Allow-Origin: *
X-Cache-Status: HIT
X-Cache-key: 172.247.187.219/images/2024/03/06/wuma1714.jpg
Accept-Ranges: bytes
pic1.semaobf1.com/20220510/EAA4980978DBB777/EAA4980978DBB777.jpg
23.224.44.74200 OK 82 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/EAA4980978DBB777/EAA4980978DBB777.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3
Hash 67e5e63e0b43fdf986cab13b0896ae70
1882dbd04c8bf320b2994dc717d08bea837c79d2
4ff492a313584386260cafb60fed880fecf448c3df6af7d02e4216db285828c3
GET /20220510/EAA4980978DBB777/EAA4980978DBB777.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 82240
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:59:13 GMT
Etag: "622b1766-14140"
Expires: Tue, 23 Apr 2024 17:59:13 GMT
Last-Modified: Sun, 24 Mar 2024 18:01:26 GMT
Server: nginx
X-Cache: HIT, policy, disk
www.lnhntv9940.top/template/1/tp/zbdtp/a2.gif
104.21.12.254200 OK 612 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/tp/zbdtp/a2.gif
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type GIF image data, version 89a, 640 x 150
Size 612 kB (611850 bytes)
Hash 6ed3dcf7e739969e0d5460b5f07e661f
1954523b227b8fa235e3eed0948749ae7af2f9f5
f97cf559b37c6f33ecef4712c699e88217c64aa85abbf919fa772daaf3a49e0a
GET /template/1/tp/zbdtp/a2.gif HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:27 GMT
content-type: image/gif
content-length: 611850
last-modified: Sun, 26 Jun 2022 15:29:12 GMT
etag: "62b87b48-9560a"
expires: Sun, 28 Apr 2024 07:41:27 GMT
cache-control: max-age=2592000
cf-cache-status: BYPASS
set-cookie: sl-session=K0GGZCfCB2Zo9zP3PvIVVw==; Path=/; Max-Age=86400; HttpOnly
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sAVmKBGUDN878MC2xfhH3jonZbMJpcj17UlCGBLZSnBNrpCKrAHyM04hfj3kTChIkkbt6iIp3nXGv5DHDY1AKlWBHyYbBPeEyob2anuTgOe5LQ0TmtvnzONXCBcu0LjWlWmzzsg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37ad69f6b505-OSL
alt-svc: h3=":443"; ma=86400
lbfm.lbpictupian.com/upload/vod/2024/03/yydgcvyy30t.jpg
172.67.28.138200 OK 6.5 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2024/03/yydgcvyy30t.jpg
IP 172.67.28.138:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerCloudflare, Inc.
Subjectlbpictupian.com
Fingerprint62:1A:47:3F:33:41:F6:6C:4A:C6:9D:E0:67:70:07:49:BA:F1:31:CB
ValidityTue, 02 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 89384e9ee52318623249f7b5a741aec7
497db79cb1a73d620e38d29794177df94ac9aa1b
4c09921e919781bea2887f980be05e4ea8360b837128c660cfd687aed0a8059c
GET /upload/vod/2024/03/yydgcvyy30t.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/webp
content-length: 6494
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7985
content-disposition: inline; filename="yydgcvyy30t.webp"
etag: "65ff7ff3-1f31"
last-modified: Sun, 24 Mar 2024 01:20:51 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 86be37b84c2c56cb-OSL
X-Firefox-Spdy: h2
sycdn.pic-726-baidu.com/images/2024/02/23/oumei199.jpg
156.238.196.3200 OK 151 kB URL GET HTTP/1.1 sycdn.pic-726-baidu.com/images/2024/02/23/oumei199.jpg
IP 156.238.196.3:443
ASN #50183 CenturyNetworks Ltd
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subjectddcdn.pic-726-baidu.com
FingerprintF2:9A:53:F9:71:77:6F:22:A4:8A:FB:D5:B1:25:2E:70:F6:A8:7A:B3
ValidityThu, 21 Mar 2024 08:44:56 GMT - Sun, 20 Apr 2025 08:44:55 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x563, components 3
Size 151 kB (151440 bytes)
Hash c74e3b8d182da6c456d6f87602217b08
e6a9a57ad125eda65126fd79373d176adbbe0ed8
7b06f255747735c388ffe10f7a7e1fedaeca778e50d54275f49c4d1987153ca8
GET /images/2024/02/23/oumei199.jpg HTTP/1.1
Host: sycdn.pic-726-baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 29 Mar 2024 07:41:27 GMT
Content-Type: image/jpeg
Content-Length: 151440
Connection: keep-alive
Last-Modified: Fri, 23 Feb 2024 17:02:15 GMT
ETag: "65d8cf97-24f90"
Expires: Sat, 29 Mar 2025 07:41:27 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=31536000
access-control-allow-credentials: : true
Access-Control-Allow-Origin: *
X-Cache-Status: HIT
X-Cache-key: 172.247.187.219/images/2024/02/23/oumei199.jpg
Accept-Ranges: bytes
pic1.semaobf1.com/20220510/BAE634B0543F1020/BAE634B0543F1020.jpg
23.224.44.74200 OK 112 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/BAE634B0543F1020/BAE634B0543F1020.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3
Size 112 kB (111922 bytes)
Hash 7391f70acdc25ba53c754d32f458352b
fa65ecb1b61ff6c6053a1f78f39fc71d5166912a
e566bea066deb51a178dbac355f0e1aaf8cf57a14b2e06ff17479b76664ebc36
GET /20220510/BAE634B0543F1020/BAE634B0543F1020.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 111922
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:34:47 GMT
Etag: "622b17ba-1b532"
Expires: Tue, 23 Apr 2024 17:34:47 GMT
Last-Modified: Sun, 24 Mar 2024 17:35:28 GMT
Server: nginx
X-Cache: HIT, policy, disk
pic1.semaobf1.com/20220525/2F34305F72BC36EE/2F34305F72BC36EE.jpg
23.224.44.74200 OK 9.6 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/2F34305F72BC36EE/2F34305F72BC36EE.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash fe459037f6ab935357d7343d7f3be0c2
f12e482aebed5248490b2239dc5c94db0c4d360d
f5011f92c8f5fa67499d0dd8be17f9bd989500bbca757e9d0ef9cf5e871b0d90
GET /20220525/2F34305F72BC36EE/2F34305F72BC36EE.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 9572
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:37:40 GMT
Etag: "628d31ef-2564"
Expires: Tue, 23 Apr 2024 17:37:40 GMT
Last-Modified: Sun, 24 Mar 2024 17:37:55 GMT
Server: nginx
X-Cache: HIT, policy, disk
pic1.semaobf1.com/20220510/5C16ED3277D6871E/5C16ED3277D6871E.jpg
23.224.44.74200 OK 34 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/5C16ED3277D6871E/5C16ED3277D6871E.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3
Hash 3f847002844055c4107334da17a63a85
02d6d668432d54a2126cb68d6158883b0ca9d331
e1174b0593aaeaed50f65a280aed6a32e95b29b5654e69332c9ab4e6749f44bc
GET /20220510/5C16ED3277D6871E/5C16ED3277D6871E.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 34319
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:38:32 GMT
Etag: "622b1738-860f"
Expires: Tue, 23 Apr 2024 17:38:32 GMT
Last-Modified: Sun, 24 Mar 2024 17:38:32 GMT
Server: nginx
X-Cache: HIT, policy, disk
img.qvrovkos.xyz/dyj/dyj0063/960-120.gif
137.175.46.30200 OK 57 kB URL GET HTTP/1.1 img.qvrovkos.xyz/dyj/dyj0063/960-120.gif
IP 137.175.46.30:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerLet's Encrypt
Subjectimg.qvrovkos.xyz
FingerprintF2:D3:E8:6F:51:2C:EE:4F:ED:2C:AD:4E:CA:47:57:C7:33:AF:AA:DA
ValidityTue, 19 Mar 2024 15:03:04 GMT - Mon, 17 Jun 2024 15:03:03 GMT
File type GIF image data, version 89a, 960 x 120
Hash 2ab1cb0e351dead4b98efdba5d8c2dcb
efd382437be70d3b0beb855b3500de688b454b19
a38b72ac78732a310a5a3296adf3c646cdbc7e2b9213ee7d01420398556f5a17
GET /dyj/dyj0063/960-120.gif HTTP/1.1
Host: img.qvrovkos.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 07:41:27 GMT
Content-Type: image/gif
Content-Length: 56649
Connection: keep-alive
Access-Control-Allow-Origin: *
Last-Modified: Wed, 29 Nov 2023 11:24:13 GMT
ETag: "1ebffc94b622da1:0"
X-Powered-By: ASP.NET
Server: nginx
X-Cache-Status: HIT
Accept-Ranges: bytes
pic1.semaobf1.com/20220525/9D2571CBE749EC74/9D2571CBE749EC74.jpg
23.224.44.74200 OK 9.6 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/9D2571CBE749EC74/9D2571CBE749EC74.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash f9b298e7a1b3b6fa8924a44805c155fe
d667f3fcd5b2336c8990137d5294ccf71dcf9a7b
e897df64d69fc9b8635523da1104503123e4c20c8129a85142a592c355d1c096
GET /20220525/9D2571CBE749EC74/9D2571CBE749EC74.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 9583
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:14:21 GMT
Etag: "628d6fa4-256f"
Expires: Tue, 23 Apr 2024 17:14:21 GMT
Last-Modified: Sun, 24 Mar 2024 17:16:07 GMT
Server: nginx
X-Cache: HIT, policy, disk
img.aosikaimge.com/20240313/j5OHlhA0/1.jpg
64.112.76.75200 OK 18 kB URL GET HTTP/1.1 img.aosikaimge.com/20240313/j5OHlhA0/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x180, components 3
Hash 6edd22f0bf38c9eed8fd491b97b02350
3ce9ec2c02e3f5bd8fb7a0ab9be50033370cc1c2
2a74bff159653fdc5036da0690103b9de8ac3f979757192f30a15e51e824cd0c
GET /20240313/j5OHlhA0/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 17727
Connection: keep-alive
Last-Modified: Wed, 13 Mar 2024 06:45:24 GMT
ETag: "65f14b84-453f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
lbfm.lbpictupian.com/upload/vod/2024/03/uwppn4gtdkr.jpg
172.67.28.138200 OK 8.1 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2024/03/uwppn4gtdkr.jpg
IP 172.67.28.138:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerCloudflare, Inc.
Subjectlbpictupian.com
Fingerprint62:1A:47:3F:33:41:F6:6C:4A:C6:9D:E0:67:70:07:49:BA:F1:31:CB
ValidityTue, 02 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp
Hash de20dc2097f556f24e003279533b230e
e69b0bc9db43b5dde2046f03f24854b7a20b3877
b7a799dde714cd6ecacb6b3df384916309d664d39d8bd2804f6a129f2c073ba6
GET /upload/vod/2024/03/uwppn4gtdkr.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/webp
content-length: 8054
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9286
content-disposition: inline; filename="uwppn4gtdkr.webp"
etag: "6605fd8a-2446"
last-modified: Thu, 28 Mar 2024 23:30:18 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 86be37b84c2756cb-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2024/03/ktniyrc0chq.jpg
172.67.28.138200 OK 11 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2024/03/ktniyrc0chq.jpg
IP 172.67.28.138:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerCloudflare, Inc.
Subjectlbpictupian.com
Fingerprint62:1A:47:3F:33:41:F6:6C:4A:C6:9D:E0:67:70:07:49:BA:F1:31:CB
ValidityTue, 02 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp
Hash ab0f8a7c323e48577c9785a5de3cc6ff
b660560072522a0018c412213001daa7dc591e97
19a7743d7a44954509d3295e0740458464f93cce536a962c8c249c2103719330
GET /upload/vod/2024/03/ktniyrc0chq.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/webp
content-length: 10806
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11482
content-disposition: inline; filename="ktniyrc0chq.webp"
etag: "65f7bdc3-2cda"
last-modified: Mon, 18 Mar 2024 04:06:27 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 86be37b84c2b56cb-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2024/02/ekyvrjjzrp1.jpg
172.67.28.138200 OK 5.5 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2024/02/ekyvrjjzrp1.jpg
IP 172.67.28.138:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerCloudflare, Inc.
Subjectlbpictupian.com
Fingerprint62:1A:47:3F:33:41:F6:6C:4A:C6:9D:E0:67:70:07:49:BA:F1:31:CB
ValidityTue, 02 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 13301816eb748723a7d0de95512bf37e
0d8912182547aad913346c88d14b274b1c873799
f66b3c09f15edff3f02fcc7b73ea31de0c0e64c55b018f3355b61507f3e166bf
GET /upload/vod/2024/02/ekyvrjjzrp1.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/webp
content-length: 5466
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7639
content-disposition: inline; filename="ekyvrjjzrp1.webp"
etag: "65cc0c8f-1dd7"
last-modified: Wed, 14 Feb 2024 00:42:55 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 86be37b84c2a56cb-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2024/03/0itk043quhv.jpg
172.67.28.138200 OK 9.1 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2024/03/0itk043quhv.jpg
IP 172.67.28.138:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerCloudflare, Inc.
Subjectlbpictupian.com
Fingerprint62:1A:47:3F:33:41:F6:6C:4A:C6:9D:E0:67:70:07:49:BA:F1:31:CB
ValidityTue, 02 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp
Hash a1af6fb00b2c93b3ebf4e859021b33a4
7b5acef675dfb4ba52e024e79d0b252400dce075
94b8912297a11287c25a26c4682b1b1574669e54de1cd86f13570222d523f156
GET /upload/vod/2024/03/0itk043quhv.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/webp
content-length: 9148
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9712
content-disposition: inline; filename="0itk043quhv.webp"
etag: "6603ad6e-25f0"
last-modified: Wed, 27 Mar 2024 05:23:58 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 86be37b85c3556cb-OSL
X-Firefox-Spdy: h2
pic1.semaobf1.com/20220525/11B3678D2D123188/11B3678D2D123188.jpg
23.224.44.74200 OK 12 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/11B3678D2D123188/11B3678D2D123188.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash ca1c17f993c703c8634fe53d0121ab1c
3e51f1a358c45786f711b3b23c4dff196598f52b
0324fa01672964516dc8a286dcc496abf9b001a53ef271ea01d343e15261422e
GET /20220525/11B3678D2D123188/11B3678D2D123188.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 11538
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:34:45 GMT
Etag: "628d5fae-2d12"
Expires: Tue, 23 Apr 2024 17:34:45 GMT
Last-Modified: Sun, 24 Mar 2024 17:35:28 GMT
Server: nginx
X-Cache: HIT, policy, disk
lbfm.lbpictupian.com/upload/vod/2024/02/yam3cvxrd3c.jpg
172.67.28.138200 OK 11 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2024/02/yam3cvxrd3c.jpg
IP 172.67.28.138:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerCloudflare, Inc.
Subjectlbpictupian.com
Fingerprint62:1A:47:3F:33:41:F6:6C:4A:C6:9D:E0:67:70:07:49:BA:F1:31:CB
ValidityTue, 02 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 3a3abe6bc69cc30ec77e09d4be3d8208
8ad5454928f80187d2e5f2fc304be95ab2d167fb
1c1e8979521a8bc871e685b07a1cd29b3f1e74bdbed66d6f31245907ab073b37
GET /upload/vod/2024/02/yam3cvxrd3c.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 11444
last-modified: Mon, 19 Feb 2024 04:33:03 GMT
etag: "65d2d9ff-2cb4"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37b84c2d56cb-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2024/03/mm2ro0uhqrd.jpg
172.67.28.138200 OK 13 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2024/03/mm2ro0uhqrd.jpg
IP 172.67.28.138:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerCloudflare, Inc.
Subjectlbpictupian.com
Fingerprint62:1A:47:3F:33:41:F6:6C:4A:C6:9D:E0:67:70:07:49:BA:F1:31:CB
ValidityTue, 02 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 309ac28810b0574e3247137e0730a1be
9b868d422c639b109e48a2fb947451bcef41928f
5231b0ba0d68e39230e464321d2ce9be2ae47801eb5a91c166ee666bc560cd87
GET /upload/vod/2024/03/mm2ro0uhqrd.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 12827
last-modified: Sun, 03 Mar 2024 06:02:53 GMT
etag: "65e4128d-321b"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37b84c2f56cb-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2024/02/21ewdrmccqf.jpg
172.67.28.138200 OK 11 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2024/02/21ewdrmccqf.jpg
IP 172.67.28.138:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerCloudflare, Inc.
Subjectlbpictupian.com
Fingerprint62:1A:47:3F:33:41:F6:6C:4A:C6:9D:E0:67:70:07:49:BA:F1:31:CB
ValidityTue, 02 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 41e11efe4e416c84fd3f8d6b2d890989
5857142674dd9f9f5f693dd1fc966c366d3986c9
2a8aecca336c163a733a0e70297f180174e526cb9315ccde97524a46a1decf2f
GET /upload/vod/2024/02/21ewdrmccqf.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 11373
last-modified: Wed, 14 Feb 2024 00:53:20 GMT
etag: "65cc0f00-2c6d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37b84c2e56cb-OSL
X-Firefox-Spdy: h2
pic1.semaobf1.com/20220510/1A649E01F8B0D149/1A649E01F8B0D149.jpg
23.224.44.74200 OK 48 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/1A649E01F8B0D149/1A649E01F8B0D149.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3
Hash 78b8339e37d55cc9f3ecdd6935115557
c534b736cdb34e90e807dc6ddc0c44162482924f
ff2027b5014e5662960347a00be87f96a342b3319a00530d11f9d3beee36b986
GET /20220510/1A649E01F8B0D149/1A649E01F8B0D149.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 47608
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:37:45 GMT
Etag: "622b18f3-b9f8"
Expires: Tue, 23 Apr 2024 17:37:45 GMT
Last-Modified: Sun, 24 Mar 2024 17:37:55 GMT
Server: nginx
X-Cache: HIT, policy, disk
hm.baidu.com/hm.js?b11251cd006db848860fbaf90812cc73
103.235.46.191200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?b11251cd006db848860fbaf90812cc73
IP 103.235.46.191:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://www.lnhntv9940.top/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 796007d2bf6aadc1263dc6c5d594f96c
8bfe947ccc5d0da3578b258e004198be2c3fd034
8f7efadc56b8c35aec93e4a809795e128281dbbdbb559604fbb889b6e12a0949
GET /hm.js?b11251cd006db848860fbaf90812cc73 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Fri, 29 Mar 2024 07:41:28 GMT
Etag: d9d963f72c81c9abc31b8c5b9a80e0ce
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=39B7B493E4A7BBAD; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
img.lytuchuang66.com/upload/vod/20240329-1/73f8cbc09f11a78800e724adced086b5.jpg
154.7.176.26200 OK 9.3 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/73f8cbc09f11a78800e724adced086b5.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3
Hash adac3cd32d24fb411dae234ff9b1c8f1
527beec58632d2855fdc9aabfebdf428cf261fb7
a9cbe4c4571030db643e965f489baebb599b7e158dd5225f28843d8d27939a22
GET /upload/vod/20240329-1/73f8cbc09f11a78800e724adced086b5.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 9269
last-modified: Fri, 29 Mar 2024 05:16:14 GMT
etag: "66064e9e-2435"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20220525/11E2D8EC9EFBB6AE/11E2D8EC9EFBB6AE.jpg
23.224.44.74200 OK 6.5 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/11E2D8EC9EFBB6AE/11E2D8EC9EFBB6AE.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 2f19845d77199668b3003a90278461a4
48df90f8e2954e1b77415a0252748c9a178496f4
c870ddcbba68bb3d6d301604335e3cec533a01940dd2e4c8fa72a2815f0132c9
GET /20220525/11E2D8EC9EFBB6AE/11E2D8EC9EFBB6AE.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 6463
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:29:43 GMT
Etag: "628d6528-193f"
Expires: Tue, 23 Apr 2024 17:29:43 GMT
Last-Modified: Sun, 24 Mar 2024 17:30:10 GMT
Server: nginx
X-Cache: HIT, policy, disk
pic1.semaobf1.com/20220525/CA32FBEB45E678EC/CA32FBEB45E678EC.jpg
23.224.44.74200 OK 8.7 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/CA32FBEB45E678EC/CA32FBEB45E678EC.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 083ee804f89a409467932cab3c798ff6
c02446c0a52be9a76767cc9646e3fca9221cfd8a
a009b3cab27ff245ba5c77739622c9afb16c27f4d40fdb9c76f971249ff22d6e
GET /20220525/CA32FBEB45E678EC/CA32FBEB45E678EC.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 8716
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 18:00:19 GMT
Etag: "628d47bd-220c"
Expires: Tue, 23 Apr 2024 18:00:19 GMT
Last-Modified: Sun, 24 Mar 2024 18:01:28 GMT
Server: nginx
X-Cache: HIT, policy, disk
pic1.semaobf1.com/20220525/92D144B21CF4D2AB/92D144B21CF4D2AB.jpg
23.224.44.74200 OK 8.8 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/92D144B21CF4D2AB/92D144B21CF4D2AB.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash d9d7cec9320d8d313df6ee00ecd1c29e
0fe0b270ad4ad4f321b37931b267ffb7077629b1
0f654433f465521d3523249b7c0d345f81ced83c9695f303fb84191b94369a38
GET /20220525/92D144B21CF4D2AB/92D144B21CF4D2AB.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 8763
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:53:21 GMT
Etag: "628d4f87-223b"
Expires: Tue, 23 Apr 2024 17:53:21 GMT
Last-Modified: Sun, 24 Mar 2024 17:53:21 GMT
Server: nginx
X-Cache: HIT, policy, disk
img.aosikaimge.com/20240329/rXopgtES/1.jpg
64.112.76.75200 OK 65 kB URL GET HTTP/1.1 img.aosikaimge.com/20240329/rXopgtES/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 620x348, components 3
Hash 7c9e2ccfce20b0c6f1031342573c62cd
c01e400c5050f051999d213071f8723f733b12ec
e82fa4ef24b80dbab6e00450e347892cace8e99dfa90f1389323ebd4eeebb746
GET /20240329/rXopgtES/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 65226
Connection: keep-alive
Last-Modified: Fri, 29 Mar 2024 04:38:46 GMT
ETag: "660645d6-feca"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
img.aosikaimge.com/20240329/l9rNfdHb/1.jpg
64.112.76.75200 OK 65 kB URL GET HTTP/1.1 img.aosikaimge.com/20240329/l9rNfdHb/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 620x348, components 3
Hash 2a3ab35a1cf347de44a5afaec1b1bcc6
eca78173700000ec812666de9e7efff23e315bf7
ffaf1f6ff37994fe0359656df89102525b776834a7d74ecaa9418a13bb8fc390
GET /20240329/l9rNfdHb/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 65436
Connection: keep-alive
Last-Modified: Fri, 29 Mar 2024 04:38:55 GMT
ETag: "660645df-ff9c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
pic1.semaobf1.com/20220510/5884D8732509C2AB/5884D8732509C2AB.jpg
23.224.44.74200 OK 84 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/5884D8732509C2AB/5884D8732509C2AB.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3
Hash 97e34f6bc0c48785bd0362de9eb80337
6827b672cfb681a9e8ba4ef1f011b59d3f8580a9
8d1b274d2df23f504041bc42ad12407b45872f0ce5ea8bac20b0ebd67052be7a
GET /20220510/5884D8732509C2AB/5884D8732509C2AB.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 83457
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:45:45 GMT
Etag: "622b1982-14601"
Expires: Tue, 23 Apr 2024 17:45:45 GMT
Last-Modified: Sun, 24 Mar 2024 17:47:53 GMT
Server: nginx
X-Cache: HIT, policy, disk
img.lytuchuang66.com/upload/vod/20240329-1/632ff9c4cf8221915bd8c2c59bef982c.jpg
154.7.176.26200 OK 11 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/632ff9c4cf8221915bd8c2c59bef982c.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, baseline, precision 8, 240x320, components 3
Hash 177858f23c81491a8e6e2407680e4b91
e06b0a514a2f54261625440d5c3f9899164d2f5a
fce05968ed45006b901724b682efb726ecedfcf34761741030a61afcd5bffc98
GET /upload/vod/20240329-1/632ff9c4cf8221915bd8c2c59bef982c.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 10668
last-modified: Fri, 29 Mar 2024 05:16:13 GMT
etag: "66064e9d-29ac"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.lytuchuang66.com/upload/vod/20240329-1/2de3d9323ce9d84378441244c7c58153.jpg
154.7.176.26200 OK 7.6 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/2de3d9323ce9d84378441244c7c58153.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, baseline, precision 8, 240x320, components 3
Hash 0f717229f845db770e475d35bd0f5bfd
38feebfbac46ef6449418065e26e856776b0212d
0d621cc9a83190ce8cb18c3b31cf32dcb4e1207420dbdb9e037560e9c60c25e8
GET /upload/vod/20240329-1/2de3d9323ce9d84378441244c7c58153.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 7606
last-modified: Fri, 29 Mar 2024 05:16:16 GMT
etag: "66064ea0-1db6"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.lytuchuang66.com/upload/vod/20240329-1/4a4fb320cc2c392f4d1a57c097c187c8.jpg
154.7.176.26200 OK 10 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/4a4fb320cc2c392f4d1a57c097c187c8.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3
Hash 23e2f4da18191e27aab5397c92a91309
8c015bce8e6392f36b8cb4004a4fd2d01df01388
3f30a6c6a53c046bf493b6a4cf17226966652f56ca2ffcdcc7d6d0096eb3e584
GET /upload/vod/20240329-1/4a4fb320cc2c392f4d1a57c097c187c8.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 10127
last-modified: Fri, 29 Mar 2024 05:16:13 GMT
etag: "66064e9d-278f"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=175062443&si=b11251cd006db848860fbaf90812cc73&su=http%3A%2F%2Fwww.arminardalan.com%2F&v=1.3.0&lv=1&sn=54958&r=0&ww=1280&u=https%3A%2F%2Fwww.lnhntv9940.top%2F&tt=%E4%B9%85%E4%B9%85%E5%A4%A9%E5%A4%A9%E8%BA%81%E7%8B%A0%E7%8B%A0%E8%BA%81%E5%A4%9C%E5%A4%9C%E7%88%BD%2C%E4%B9%85%E4%B9%85%E7%B2%BE%E5%93%81%E4%B8%AD%E6%96%87%E5%AD%97%E5%B9%95%E6%9C%89%E7%A0%81%2C%E5%9B%BD%E4%BA%A7%E5%AD%95%E5%A6%87%E4%B8%80%E7%BA%A7%E6%AF%9B%E7%89%87%E4%B9%85%E4%B9%85
103.235.46.191200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=175062443&si=b11251cd006db848860fbaf90812cc73&su=http%3A%2F%2Fwww.arminardalan.com%2F&v=1.3.0&lv=1&sn=54958&r=0&ww=1280&u=https%3A%2F%2Fwww.lnhntv9940.top%2F&tt=%E4%B9%85%E4%B9%85%E5%A4%A9%E5%A4%A9%E8%BA%81%E7%8B%A0%E7%8B%A0%E8%BA%81%E5%A4%9C%E5%A4%9C%E7%88%BD%2C%E4%B9%85%E4%B9%85%E7%B2%BE%E5%93%81%E4%B8%AD%E6%96%87%E5%AD%97%E5%B9%95%E6%9C%89%E7%A0%81%2C%E5%9B%BD%E4%BA%A7%E5%AD%95%E5%A6%87%E4%B8%80%E7%BA%A7%E6%AF%9B%E7%89%87%E4%B9%85%E4%B9%85
IP 103.235.46.191:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://www.lnhntv9940.top/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=175062443&si=b11251cd006db848860fbaf90812cc73&su=http%3A%2F%2Fwww.arminardalan.com%2F&v=1.3.0&lv=1&sn=54958&r=0&ww=1280&u=https%3A%2F%2Fwww.lnhntv9940.top%2F&tt=%E4%B9%85%E4%B9%85%E5%A4%A9%E5%A4%A9%E8%BA%81%E7%8B%A0%E7%8B%A0%E8%BA%81%E5%A4%9C%E5%A4%9C%E7%88%BD%2C%E4%B9%85%E4%B9%85%E7%B2%BE%E5%93%81%E4%B8%AD%E6%96%87%E5%AD%97%E5%B9%95%E6%9C%89%E7%A0%81%2C%E5%9B%BD%E4%BA%A7%E5%AD%95%E5%A6%87%E4%B8%80%E7%BA%A7%E6%AF%9B%E7%89%87%E4%B9%85%E4%B9%85 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 29 Mar 2024 07:41:28 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=49C4278FCC1B9BCB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
img.lytuchuang66.com/upload/vod/20240329-1/175675af53ea853c60cc31a99f2339d1.jpg
154.7.176.26200 OK 6.7 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/175675af53ea853c60cc31a99f2339d1.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, baseline, precision 8, 240x320, components 3
Hash 897a2138acdf788be29a41af0cb6f7df
fe4ed4a89b21d6fe432549af774f5eaf532e487c
742aae485cfcfdb06ee0815899437bea7602132181c67903d594734468c56284
GET /upload/vod/20240329-1/175675af53ea853c60cc31a99f2339d1.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 6677
last-modified: Fri, 29 Mar 2024 05:16:14 GMT
etag: "66064e9e-1a15"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.lytuchuang65.com/upload/vod/20240326-1/6ed91dca3105e71da81b9b906a96b425.jpg
154.7.176.25200 OK 9.5 kB URL GET HTTP/2 img.lytuchuang65.com/upload/vod/20240326-1/6ed91dca3105e71da81b9b906a96b425.jpg
IP 154.7.176.25:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerLet's Encrypt
Subjectimg.lytuchuang65.com
FingerprintD9:E9:33:AA:6D:BA:97:B8:6E:89:C8:67:91:A2:61:4E:8C:8C:23:F8
ValidityFri, 12 Jan 2024 00:30:12 GMT - Thu, 11 Apr 2024 00:30:11 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 286x381, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3
Hash 71cc7b0606e8eba024601404b59ef64f
3f6e6911d2ff02558399668c8ee285a2ca69bc46
b2cfa30b319244f1f75b3fae25a3e6034e7c6122cf009a6db1cdd490abb8ad93
GET /upload/vod/20240326-1/6ed91dca3105e71da81b9b906a96b425.jpg HTTP/1.1
Host: img.lytuchuang65.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 9536
last-modified: Tue, 26 Mar 2024 06:22:34 GMT
etag: "660269aa-2540"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.lytuchuang66.com/upload/vod/20240329-1/4036ac4ee05bfa911a510ef4e2e53535.jpg
154.7.176.26200 OK 9.8 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/4036ac4ee05bfa911a510ef4e2e53535.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, baseline, precision 8, 240x320, components 3
Hash 3db514fadb5cf9d139135ba3525da7b3
e9abbcdd3f928f85d16f3cdbc1709fa4e7aa3f90
f8496c5b2b795ec60ec91b4b59530a8df8500b91f8a2bdd5700a22148072b38b
GET /upload/vod/20240329-1/4036ac4ee05bfa911a510ef4e2e53535.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 9805
last-modified: Fri, 29 Mar 2024 05:16:18 GMT
etag: "66064ea2-264d"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.bootscdns.com/ajax/libs/jquery/3.6.4/jquery.js
104.21.19.164403 Forbidden 368 kB URL GET HTTP/3 cdn.bootscdns.com/ajax/libs/jquery/3.6.4/jquery.js
IP 104.21.19.164:443
Requested by http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
Certificate IssuerGoogle Trust Services LLC
Subjectbootscdns.com
FingerprintA1:B6:14:61:37:07:18:A3:71:5A:28:20:A5:55:43:8B:58:C4:0B:86
ValiditySat, 02 Mar 2024 15:08:53 GMT - Fri, 31 May 2024 15:08:52 GMT
File type HTML document, ASCII text, with very long lines (15782), with no line terminators
Size 368 kB (367500 bytes)
Hash 92abad993f51e496678464ccd6b3ea1f
3e586c2ca65ba3b22e2eba017d9aa9dde0bc8358
d516e4ce6e2684020fc523b2a8ebe9b6d90da54fd8b7263775cf4a4b64d0698c
GET /ajax/libs/jquery/3.6.4/jquery.js HTTP/1.1
Host: cdn.bootscdns.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.arminardalan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
date: Fri, 29 Mar 2024 07:41:24 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: X+Ennh6yPeNw2JRsZeX/8cyEH/AhQ+FM0ZcJrkCFP48bFK/0db1+Y26tVy4zTBd7wyXHrvSH3xGxAM3DB7/LNW0Q3BPr75T+503wWmeAHncttK2TuSCQSf+MHXjFhKwMlEh8okw9bOpWhtTe1vL8NQ==$7DhnpS99NQs8pROUHx97yw==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d7n%2F1AIEBaqCREmdtvJRmpPPZAqD%2BVn6afAFXeWimve%2FL9w5cQ8xBqYs0ZoTY57oq6Cg0gYbPTbbL0z57K05OVno5Vpo3EdCy7pxvfkAov%2BHx1%2BcZxAfqC5ZGsYJEtbGS2WOSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37a4ee3f56c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
img.aosikaimge.com/20240224/2WzNPu8a/1.jpg
64.112.76.75200 OK 15 kB URL GET HTTP/1.1 img.aosikaimge.com/20240224/2WzNPu8a/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 399x225, components 3
Hash 52491967bb8c23565688284ccfebe015
82cf56746d3e96f3e642806f805ed53bc6ec1419
4ac30d37bdad8d67d6a8bfb82fb7fd3c62f60248f610d9f3bea24cd90dddda23
GET /20240224/2WzNPu8a/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 15113
Connection: keep-alive
Last-Modified: Sat, 24 Feb 2024 06:43:41 GMT
ETag: "65d9901d-3b09"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
img.aosikaimge.com/20240329/dSbyz9TA/1.jpg
64.112.76.75200 OK 157 kB URL GET HTTP/1.1 img.aosikaimge.com/20240329/dSbyz9TA/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, baseline, precision 8, 800x541, components 3
Size 157 kB (156877 bytes)
Hash 06a149a4670fe5a4a5b1c951d63fadec
a58622cfbcc007dd74bb3ca59a0d4916ddf545fd
678bda90942e4fae1fed833a69cbd56e0c36357f940cf57a210a88a8dce9fb38
GET /20240329/dSbyz9TA/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 156877
Connection: keep-alive
Last-Modified: Fri, 29 Mar 2024 04:37:22 GMT
ETag: "66064582-264cd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
img.lytuchuang66.com/upload/vod/20240329-1/253af833f12fac38b03c3f093e51e1cc.jpg
154.7.176.26200 OK 12 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/253af833f12fac38b03c3f093e51e1cc.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, baseline, precision 8, 240x320, components 3
Hash a60e02d18bab95b8119381ee4f1ac2e9
7aaad8b3237181fe001e030b40e4f859f4efd053
85d3969f2bfc62d0f23f4899dfe59786c8291acf657485d015df8e56c0700ff3
GET /upload/vod/20240329-1/253af833f12fac38b03c3f093e51e1cc.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 11709
last-modified: Fri, 29 Mar 2024 05:16:19 GMT
etag: "66064ea3-2dbd"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.aosikaimge.com/20240221/DUQaSsXn/1.jpg
64.112.76.75200 OK 171 kB URL GET HTTP/1.1 img.aosikaimge.com/20240221/DUQaSsXn/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, baseline, precision 8, 800x538, components 3
Size 171 kB (171043 bytes)
Hash d4ce6c503144e4e59b2d7c46634cca45
ac958cab19d3ef0e0e6cba983b2fdd40011dd028
5ebd1589d9888ac78f7882365c6f13cb8e808e742d170d814e67c67289d64347
GET /20240221/DUQaSsXn/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 171043
Connection: keep-alive
Last-Modified: Wed, 21 Feb 2024 03:38:42 GMT
ETag: "65d57042-29c23"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
img.lytuchuang66.com/upload/vod/20240329-1/cefabef31b88ffd828f48e8d1a4f2cda.jpg
154.7.176.26200 OK 7.9 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/cefabef31b88ffd828f48e8d1a4f2cda.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, baseline, precision 8, 240x320, components 3
Hash 6fb08560db82a06d809a1e9113426d9e
0836e9420f6c546bd42fbb82c5ef4f2c79b960ca
8be3ba70150b56c11d561c8b6f8f37f400def5707f5a58ebd50bdfa67df5b974
GET /upload/vod/20240329-1/cefabef31b88ffd828f48e8d1a4f2cda.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 7912
last-modified: Fri, 29 Mar 2024 05:16:20 GMT
etag: "66064ea4-1ee8"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.aosikaimge.com/20240306/GYQ4AzBu/1.jpg
64.112.76.75200 OK 167 kB URL GET HTTP/1.1 img.aosikaimge.com/20240306/GYQ4AzBu/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, baseline, precision 8, 800x536, components 3
Size 167 kB (166874 bytes)
Hash 715b630f9324bf6c853066e48a3147fc
0a4085581bae45235e4d7ae3bf356d01c7a4827e
ac45466e25c88210ad6e67fb0dffdf47b05849144a8c277a4ab604f73c2f6f5e
GET /20240306/GYQ4AzBu/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 166874
Connection: keep-alive
Last-Modified: Wed, 06 Mar 2024 05:40:35 GMT
ETag: "65e801d3-28bda"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
img.lytuchuang60.com/upload/vod/20240304-1/8fce9b4459f7706026f3c57a70d96187.jpg
154.7.176.27200 OK 19 kB URL GET HTTP/2 img.lytuchuang60.com/upload/vod/20240304-1/8fce9b4459f7706026f3c57a70d96187.jpg
IP 154.7.176.27:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang60.com
FingerprintA2:77:10:C4:19:39:48:8B:ED:E1:D5:B6:48:51:E7:76:11:A5:AC:B9
ValidityFri, 12 Jan 2024 01:30:07 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, baseline, precision 8, 240x320, components 3
Hash 3b55955f5c53ddbb7e496ab3c769302d
ff6d9724f69fc7152917565f100f51bf6b645ab7
f1c67851ed97131552600b78a2b9fc78f3308980abc19847d725fe83efd60075
GET /upload/vod/20240304-1/8fce9b4459f7706026f3c57a70d96187.jpg HTTP/1.1
Host: img.lytuchuang60.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 18924
last-modified: Mon, 04 Mar 2024 06:44:24 GMT
etag: "65e56dc8-49ec"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.lytuchuang66.com/upload/vod/20240329-1/f7a33bd6ee80cda7853c2c6970cda0d8.jpg
154.7.176.26200 OK 12 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/f7a33bd6ee80cda7853c2c6970cda0d8.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3
Hash c44ed271469bb2d120bda2911fcfb1ce
8bb3efc937b9efea89feabda8e513afbff0c77cf
c5b6e38524a76cd54d77b0fb766f4896630e5018d460be287ac6f661266aa573
GET /upload/vod/20240329-1/f7a33bd6ee80cda7853c2c6970cda0d8.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 11998
last-modified: Fri, 29 Mar 2024 05:16:14 GMT
etag: "66064e9e-2ede"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.lytuchuang56.com/upload/vod/20240214-1/dbcb8ae6955e715133121793fc59c42d.jpg
154.7.176.25200 OK 10 kB URL GET HTTP/2 img.lytuchuang56.com/upload/vod/20240214-1/dbcb8ae6955e715133121793fc59c42d.jpg
IP 154.7.176.25:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang56.com
FingerprintCF:A0:42:13:AC:B5:64:0B:EE:03:53:57:86:3A:56:84:28:27:DB:D7
ValidityFri, 12 Jan 2024 01:30:03 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 300x225, components 3
Hash fa6e649336197df68fd3400ebaca7209
f6013cbb36d03dd25fd82b33ee594a9118e1f7ac
5ace3786505fd4c124113c09648d51fa1ea4403d29c8fe533647988fcb5c0219
GET /upload/vod/20240214-1/dbcb8ae6955e715133121793fc59c42d.jpg HTTP/1.1
Host: img.lytuchuang56.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 10347
last-modified: Wed, 14 Feb 2024 06:27:11 GMT
etag: "65cc5d3f-286b"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.lytuchuang57.com/upload/vod/20240217-1/237a080a3cdfd2e5a38e844a050cce4c.jpg
154.7.176.28200 OK 5.9 kB URL GET HTTP/2 img.lytuchuang57.com/upload/vod/20240217-1/237a080a3cdfd2e5a38e844a050cce4c.jpg
IP 154.7.176.28:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerLet's Encrypt
Subjectimg.lytuchuang57.com
FingerprintF5:81:18:9C:AA:E7:14:29:33:1E:EF:27:C4:4E:D9:01:B3:49:95:FE
ValidityFri, 12 Jan 2024 00:30:02 GMT - Thu, 11 Apr 2024 00:30:01 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x328, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3
Hash 09b1c1c065504595d5a0557273e54d00
d84fda1e31386ae25701d9267998ae9c6cd9031a
d2a92f1e7235a6bf7614cada7027fd2d7bd382ab8ac67fd445cccffb33ba57d0
GET /upload/vod/20240217-1/237a080a3cdfd2e5a38e844a050cce4c.jpg HTTP/1.1
Host: img.lytuchuang57.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 5860
last-modified: Sat, 17 Feb 2024 05:52:18 GMT
etag: "65d04992-16e4"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.lytuchuang66.com/upload/vod/20240329-1/a5ba7ac0e1d523c81a44c8cae35693ee.jpg
154.7.176.26200 OK 9.0 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/a5ba7ac0e1d523c81a44c8cae35693ee.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3
Hash 88e4f10982883339b186a512d49cd602
725847c7d7d2f3056cd2b6f4a355dd79e8abb685
b682f9d4b107eae4d3225f7c299473a63048d32756f77ea9608897b6203f3658
GET /upload/vod/20240329-1/a5ba7ac0e1d523c81a44c8cae35693ee.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 9032
last-modified: Fri, 29 Mar 2024 05:16:21 GMT
etag: "66064ea5-2348"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.lytuchuang66.com/upload/vod/20240329-1/e483415c71348188dcbaa72666aad6cb.jpg
154.7.176.26200 OK 9.2 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/e483415c71348188dcbaa72666aad6cb.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3
Hash bd086598fc1c38a725d1b901741a6a77
d289ba900072a9aa437b01e345db2357b3d8017b
537a46c48803b1fa643d420d0b085a1e45aa9061888cc68be6553bc722a91939
GET /upload/vod/20240329-1/e483415c71348188dcbaa72666aad6cb.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 9174
last-modified: Fri, 29 Mar 2024 05:16:20 GMT
etag: "66064ea4-23d6"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.lytuchuang66.com/upload/vod/20240329-1/905282542f839627475958f5c0ccf3a3.jpg
154.7.176.26200 OK 7.3 kB URL GET HTTP/2 img.lytuchuang66.com/upload/vod/20240329-1/905282542f839627475958f5c0ccf3a3.jpg
IP 154.7.176.26:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang66.com
FingerprintD3:94:56:6D:15:0A:36:43:00:0C:39:5E:1D:53:4F:F8:B7:23:CC:18
ValidityFri, 12 Jan 2024 01:30:14 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 286x381, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3
Hash fe09c5b61ddc904adf0d6958cd456168
14de074b5a544557d2f0cb984655ac044dbea8b8
7fefd0ebaee808b83efc347d16062cf38782ad3f05bfd4e63c482add7d167584
GET /upload/vod/20240329-1/905282542f839627475958f5c0ccf3a3.jpg HTTP/1.1
Host: img.lytuchuang66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 7347
last-modified: Fri, 29 Mar 2024 05:16:21 GMT
etag: "66064ea5-1cb3"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
ia.51.la/go1?id=21298467&rt=1711698087373&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B&ing=1&ekc=&sid=1711698087373&tt=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&kw=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&cu=https%253A%252F%252Fwww.lnhntv9940.top%252F&pu=http%253A%252F%252Fwww.arminardalan.com%252F
203.107.86.226200 0 B URL GET HTTP/1.1 ia.51.la/go1?id=21298467&rt=1711698087373&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B&ing=1&ekc=&sid=1711698087373&tt=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&kw=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&cu=https%253A%252F%252Fwww.lnhntv9940.top%252F&pu=http%253A%252F%252Fwww.arminardalan.com%252F
IP 203.107.86.226:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by https://www.lnhntv9940.top/
Certificate IssuerGlobalSign nv-sa
Subject*.51.la
Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79
ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21298467&rt=1711698087373&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B&ing=1&ekc=&sid=1711698087373&tt=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&kw=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&cu=https%253A%252F%252Fwww.lnhntv9940.top%252F&pu=http%253A%252F%252Fwww.arminardalan.com%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: aliyungf_tc=2e32c7c5252316450e29d04b3521023f4c27ae7aaf7a41ed082a3af4706f0c0e; Path=/; HttpOnly
acw_tc=ac11000117116980886101059ed54d5146725607128fbef5b14779935535f5;path=/;HttpOnly;Max-Age=1800
img.lytuchuang60.com/upload/vod/20240304-1/513c30275f1ad077756e0be65c6cedc2.jpg
154.7.176.27200 OK 9.1 kB URL GET HTTP/2 img.lytuchuang60.com/upload/vod/20240304-1/513c30275f1ad077756e0be65c6cedc2.jpg
IP 154.7.176.27:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerBuypass AS-983163327
Subjectimg.lytuchuang60.com
FingerprintA2:77:10:C4:19:39:48:8B:ED:E1:D5:B6:48:51:E7:76:11:A5:AC:B9
ValidityFri, 12 Jan 2024 01:30:07 GMT - Tue, 09 Jul 2024 21:59:00 GMT
File type JPEG image data, baseline, precision 8, 240x320, components 3
Hash 773d4b5b3e2dc1f834d05d452844480d
8bfd05d5d165ad65528c6f06487c2b1e7f947f95
b83bd66348d72b8966b153c473a6a28c2758cc9dc3e0f78f8a97875ed054eb01
GET /upload/vod/20240304-1/513c30275f1ad077756e0be65c6cedc2.jpg HTTP/1.1
Host: img.lytuchuang60.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 9132
last-modified: Mon, 04 Mar 2024 06:44:25 GMT
etag: "65e56dc9-23ac"
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
x-cache: hit
accept-ranges: bytes
X-Firefox-Spdy: h2
img.aosikaimge.com/20240226/Af7aFCut/1.jpg
64.112.76.75200 OK 256 kB URL GET HTTP/1.1 img.aosikaimge.com/20240226/Af7aFCut/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 840x472, components 3
Size 256 kB (256386 bytes)
Hash 607d36df3dec9b9d5f0418bc812de5ad
a95f36647ef15ff806e19270b1098617e7095e6f
8517e7445513fc566b5f6a497117a3a93e1de406c62ae0761978ba4ab8f5295e
GET /20240226/Af7aFCut/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 256386
Connection: keep-alive
Last-Modified: Mon, 26 Feb 2024 06:01:18 GMT
ETag: "65dc292e-3e982"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
img.aosikaimge.com/20240329/C7XuymTu/1.jpg
64.112.76.75200 OK 59 kB URL GET HTTP/1.1 img.aosikaimge.com/20240329/C7XuymTu/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 620x348, components 3
Hash 3ddce1ef8192168b2ea8c94482e5a11e
36539f00fe1c613da730c0cc47b48423503d92e8
6496a1a9be225fe85e95bde06e8913a0e167d74025e4179d4f788f67264f10fb
GET /20240329/C7XuymTu/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 58816
Connection: keep-alive
Last-Modified: Fri, 29 Mar 2024 04:38:57 GMT
ETag: "660645e1-e5c0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: EXPIRED
Accept-Ranges: bytes
img.aosikaimge.com/20240306/WxLuVHCO/1.jpg
64.112.76.75200 OK 108 kB URL GET HTTP/1.1 img.aosikaimge.com/20240306/WxLuVHCO/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, baseline, precision 8, 800x536, components 3
Size 108 kB (107753 bytes)
Hash 28ad14b2173786b7d1f512bf9fad74e5
646777f7f5a731f703189556f04ae75ba22d1c08
1c5c0b572708dfc169eefad2ecfb895d6eed506294b7c9c875253e09e23a6630
GET /20240306/WxLuVHCO/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 107753
Connection: keep-alive
Last-Modified: Wed, 06 Mar 2024 05:40:46 GMT
ETag: "65e801de-1a4e9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
img.aosikaimge.com/20240213/IybGaePG/1.jpg
64.112.76.75200 OK 149 kB URL GET HTTP/1.1 img.aosikaimge.com/20240213/IybGaePG/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, baseline, precision 8, 800x538, components 3
Size 149 kB (148906 bytes)
Hash 87b7ebdf09044ef47401f87aa55d415a
0726e5d5d77498b851560ae514cbf4827b5c87e8
e11bd526b6a7cbd0677ed391860cde15d4a6d0740c15f7bb4b3d95a435d5267f
GET /20240213/IybGaePG/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 148906
Connection: keep-alive
Last-Modified: Tue, 13 Feb 2024 04:39:53 GMT
ETag: "65caf299-245aa"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
ia.51.la/go1?id=21809255&rt=1711698087976&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B&ing=1&ekc=&sid=1711698087976&tt=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&kw=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&cu=https%253A%252F%252Fwww.lnhntv9940.top%252F&pu=http%253A%252F%252Fwww.arminardalan.com%252F
203.107.86.226200 0 B URL GET HTTP/1.1 ia.51.la/go1?id=21809255&rt=1711698087976&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B&ing=1&ekc=&sid=1711698087976&tt=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&kw=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&cu=https%253A%252F%252Fwww.lnhntv9940.top%252F&pu=http%253A%252F%252Fwww.arminardalan.com%252F
IP 203.107.86.226:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by https://www.lnhntv9940.top/
Certificate IssuerGlobalSign nv-sa
Subject*.51.la
Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79
ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21809255&rt=1711698087976&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B&ing=1&ekc=&sid=1711698087976&tt=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&kw=%25E4%25B9%2585%25E4%25B9%2585%25E5%25A4%25A9%25E5%25A4%25A9%25E8%25BA%2581%25E7%258B%25A0%25E7%258B%25A0%25E8%25BA%2581%25E5%25A4%259C%25E5%25A4%259C%25E7%2588%25BD%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E6%259C%2589%25E7%25A0%2581%252C%25E5%259B%25BD%25E4%25BA%25A7%25E5%25AD%2595%25E5%25A6%2587%25E4%25B8%2580%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%2587%25E4%25B9%2585%25E4%25B9%2585&cu=https%253A%252F%252Fwww.lnhntv9940.top%252F&pu=http%253A%252F%252Fwww.arminardalan.com%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: aliyungf_tc=c766a8570ddba5e357231a95348552fede451d45d3d348f89869cc28464c04ab; Path=/; HttpOnly
acw_tc=ac11000117116980886882970e601628aecd591bfb975df03296844a39ce90;path=/;HttpOnly;Max-Age=1800
img.aosikaimge.com/20240218/4LFilnex/1.jpg
64.112.76.75200 OK 168 kB URL GET HTTP/1.1 img.aosikaimge.com/20240218/4LFilnex/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, baseline, precision 8, 800x538, components 3
Size 168 kB (167610 bytes)
Hash b754c4c3ed43ace8a2ea7cd371de5a89
97a1e84c4a4897acee33030803914e6f286ee875
a41e00c8113f5d72ab12932e389f46fb308a904743486e1b2f2ba24c8b214f8b
GET /20240218/4LFilnex/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 167610
Connection: keep-alive
Last-Modified: Sun, 18 Feb 2024 04:27:32 GMT
ETag: "65d18734-28eba"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
img.aosikaimge.com/20240223/mqMai6i9/1.jpg
64.112.76.75200 OK 294 kB URL GET HTTP/1.1 img.aosikaimge.com/20240223/mqMai6i9/1.jpg
IP 64.112.76.75:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
Fingerprint01:17:A8:97:6F:41:76:64:F3:01:D7:3A:B7:32:D5:DD:8D:CF:5F:10
ValiditySat, 09 Dec 2023 15:34:17 GMT - Tue, 07 Jan 2025 15:34:16 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=2529, bps=0, PhotometricInterpretation=CMYK, orientation=upper-left, width=3762], baseline, precision 8, 800x538, components 3
Size 294 kB (294153 bytes)
Hash 02834dd138fe86438c4a10ca90c86cc8
132f3ba5086a3ab13f35580ec00ada636dd8c83b
3905da6350dbd7f810ede26d190080772016b29f5e79a3a0e0091d9186d33fa3
GET /20240223/mqMai6i9/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 29 Mar 2024 07:41:28 GMT
Content-Type: image/jpeg
Content-Length: 294153
Connection: keep-alive
Last-Modified: Fri, 23 Feb 2024 08:13:47 GMT
ETag: "65d853bb-47d09"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
img.siwazywimg2.com:5278/cvjpg/6sS3h8BM.jpg
64.112.77.2200 OK 44 kB URL GET HTTP/2 img.siwazywimg2.com:5278/cvjpg/6sS3h8BM.jpg
IP 64.112.77.2:5278
Requested by https://www.lnhntv9940.top/
Certificate IssuerSectigo Limited
Subjectimg.siwazywimg2.com
Fingerprint5F:FF:C0:83:CA:7E:76:01:01:58:CA:A0:FA:C9:99:7C:FB:AB:35:33
ValidityFri, 19 May 2023 00:00:00 GMT - Sat, 18 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 800x480, components 3
Hash 0986dcab4c27b85a68c139f70fc49944
55acf811aecfef35b2b59ddbd4f366db811443cf
7b4114f0296a611fc520be26d82e23a19267d13ea62b395603859a4c7355eef2
GET /cvjpg/6sS3h8BM.jpg HTTP/1.1
Host: img.siwazywimg2.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 43505
last-modified: Mon, 05 Feb 2024 09:34:55 GMT
etag: "65c0abbf-a9f1"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.siwazywimg2.com:5278/cvjpg/3H4aXExo.jpg
64.112.77.2200 OK 220 kB URL GET HTTP/2 img.siwazywimg2.com:5278/cvjpg/3H4aXExo.jpg
IP 64.112.77.2:5278
Requested by https://www.lnhntv9940.top/
Certificate IssuerSectigo Limited
Subjectimg.siwazywimg2.com
Fingerprint5F:FF:C0:83:CA:7E:76:01:01:58:CA:A0:FA:C9:99:7C:FB:AB:35:33
ValidityFri, 19 May 2023 00:00:00 GMT - Sat, 18 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, comment: "Description: Lavc59.37.100", baseline, precision 8, 1920x1080, components 3
Size 220 kB (220210 bytes)
Hash 999a79844c1d8370967d404adfdc1e8d
757fdbf13ce05f537cc06651ec948dff133253e4
db4b525ff2deeb66625a6948488e63d993d801e4b643770a1bb777b90dcb9031
GET /cvjpg/3H4aXExo.jpg HTTP/1.1
Host: img.siwazywimg2.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: image/jpeg
content-length: 220210
last-modified: Sun, 25 Feb 2024 15:39:02 GMT
etag: "65db5f16-35c32"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
zz.bdstatic.com/linksubmit/push.js
58.254.150.48200 OK 8.1 kB URL GET HTTP/2 zz.bdstatic.com/linksubmit/push.js
IP 58.254.150.48:443
ASN #136958 China Unicom Guangdong IP network
Requested by https://www.lnhntv9940.top/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type ASCII text, with very long lines (308), with no line terminators
Hash f9fc52ab67f035b8baf5d558714cc94d
37062a6fb1ef410d496137d44275738ae743c747
c31f2003f1c93ac1e34b09f376d97a65da6e110bf451cf1e0e50a7946c5e7212
GET /linksubmit/push.js HTTP/1.1
Host: zz.bdstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: JSP3/2.0.14
date: Fri, 29 Mar 2024 07:41:28 GMT
content-type: application/x-javascript
last-modified: Mon, 18 Mar 2024 04:01:25 GMT
etag: "65f7bc95-134"
cache-control: max-age=86400
content-encoding: br
age: 19437
accept-ranges: bytes
tracecode: 10510529890325293578032910
ohc-global-saved-time: Fri, 29 Mar 2024 02:17:31 GMT
ohc-cache-hit: gz3un54 [2], zhuzuncache52 [1]
ohc-response-time: 1 0 0 0 0 0
X-Firefox-Spdy: h2
sp0.baidu.com/9_Q4simg2RQJ8t7jm9iCKT-xh_/s.gif?r=http%3A%2F%2Fwww.arminardalan.com%2F&l=https://www.lnhntv9940.top/
183.240.99.24200 OK 0 B URL GET HTTP/1.1 sp0.baidu.com/9_Q4simg2RQJ8t7jm9iCKT-xh_/s.gif?r=http%3A%2F%2Fwww.arminardalan.com%2F&l=https://www.lnhntv9940.top/
IP 183.240.99.24:443
ASN #56040 China Mobile communications corporation
Requested by https://www.lnhntv9940.top/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /9_Q4simg2RQJ8t7jm9iCKT-xh_/s.gif?r=http%3A%2F%2Fwww.arminardalan.com%2F&l=https://www.lnhntv9940.top/ HTTP/1.1
Host: sp0.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Fri, 29 Mar 2024 07:41:31 GMT
165tchuang.com:3188/i/2023/11/18/6558c089a117a.gif
36.151.192.112200 OK 617 kB URL GET HTTP/1.1 165tchuang.com:3188/i/2023/11/18/6558c089a117a.gif
IP 36.151.192.112:3188
ASN #56046 China Mobile communications corporation
Requested by https://www.lnhntv9940.top/
Certificate IssuerLet's Encrypt
Subject165tchuang.com
Fingerprint02:C6:2B:17:28:3D:1F:7C:E6:71:05:FA:91:F8:CD:E6:7D:49:7C:CB
ValiditySun, 11 Feb 2024 12:47:50 GMT - Sat, 11 May 2024 12:47:49 GMT
File type GIF image data, version 89a, 960 x 120
Size 617 kB (616981 bytes)
Hash b25d4a46c98ba25ec81921113b81c3e7
93633aa49b147cdc13c2636826fd685c1783252b
2d390b7972e8e6e78fc27714554d69d8b9f6252ccc9aa366845ee88ebe894628
GET /i/2023/11/18/6558c089a117a.gif HTTP/1.1
Host: 165tchuang.com:3188
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 07:41:27 GMT
Content-Type: image/gif
Content-Length: 616981
Connection: keep-alive
Last-Modified: Sat, 18 Nov 2023 13:47:53 GMT
ETag: "6558c089-96a15"
Expires: Sat, 27 Apr 2024 15:27:54 GMT
Cache-Control: max-age=2592000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
www.lnhntv9940.top/
104.21.12.254200 OK 172 kB IP 104.21.12.254:443
Requested by http://www.arminardalan.com/yee/cmljaGFyZHN0ZXZlbnNAcGFyYWdvbi1jYy5jby51aw==
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type HTML document, ASCII text, with very long lines (28996)
Size 172 kB (171956 bytes)
Hash 9824b2b247470e70a6b77e68de999205
423465129e1b763750ab70cc52f7b151c53978e0
2e29dc44c98f03640f5ad2101b710f98a6ffd5b7c7830ec43fb2f9dfcef003a3
GET / HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.arminardalan.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 07:41:25 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: sl-session=PnC8UiXCB2b60YLIcooCcA==; Path=/; Max-Age=86400; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vYYP4Inpo4Tr1ZaYd2qyYPKFFmsRZBjFEv8GBaHBgcAjO6Wlnq0vR7EaWUEDX0cS9cju5YUxqcLdRjW1bgwaZs3%2BuuilaedDhU8jhytWwgk7G%2BiWhJLRw9TE55asMEK8hvwCHjY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86be37a61af4568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pic1.semaobf1.com/20220510/A52BDD1092C22773/A52BDD1092C22773.jpg
23.224.44.74200 OK 82 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/A52BDD1092C22773/A52BDD1092C22773.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3
Hash c2877ed58106a9104b7be707dbe9f6c6
8d8fd0d80dd933aa5eef812c3b2b75ef4994a7b2
f5f2adb11e360007f6f59fad59dca8947537bdc5f0c9d9e9de455b71ccd5e586
GET /20220510/A52BDD1092C22773/A52BDD1092C22773.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 82398
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:37:49 GMT
Etag: "622b1ab2-141de"
Expires: Tue, 23 Apr 2024 17:37:49 GMT
Last-Modified: Sun, 24 Mar 2024 17:37:55 GMT
Server: nginx
X-Cache: HIT, policy, disk
cs2.fovzr2.com/sh/to/85
0.0.0.0 0 B IP 0.0.0.0:0
Requested by https://www.lnhntv9940.top/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sh/to/85 HTTP/1.1
Host: cs2.fovzr2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lnhntv9940.top
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
s23gsg3.yiqle.com/wpvp39s412vm.php?vhiprqw=197
0.0.0.0 0 B URL GET s23gsg3.yiqle.com/wpvp39s412vm.php?vhiprqw=197
IP 0.0.0.0:0
Requested by https://www.lnhntv9940.top/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wpvp39s412vm.php?vhiprqw=197 HTTP/1.1
Host: s23gsg3.yiqle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lnhntv9940.top
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
www.lnhntv9940.top/template/1/common.js
104.21.12.254200 OK 364 B URL GET HTTP/3 www.lnhntv9940.top/template/1/common.js
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type JavaScript source, ASCII text, with very long lines (385), with no line terminators
Hash be78944a62da7f7543a2e1316e3512de
5adc90157cc5f84408bd2d68b2ac908195d2e93b
93912f80441e62bbf8fdbd65eb282bd3c09d6b66c4ed62f7fc056ca9222db00d
GET /template/1/common.js HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:26 GMT
content-type: application/javascript
last-modified: Tue, 14 Nov 2023 06:04:38 GMT
etag: W/"65530df6-16c"
expires: Fri, 29 Mar 2024 19:41:26 GMT
cache-control: max-age=43200
cf-cache-status: BYPASS
set-cookie: sl-session=wTJZJCbCB2bshy6nNFlwvg==; Path=/; Max-Age=86400; HttpOnly
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F3TEBv4wel5QaK7pOc0zYoGjWGCsVcRZpf%2By4jztZW5j8boVFndTTUEwtQ22LsnV4HHVh8NgBHbTPECqJYlDgr6ij5J2%2FgaViVQ%2FvFl9FLY0Q8AAL9PZkna0k5SKLHxZUihNTQs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86be37adfa48b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.lnhntv9940.top/template/1/static/css/swiper.min.css
104.21.12.254200 OK 18 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/static/css/swiper.min.css
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type ASCII text, with very long lines (17459)
Hash 6af34d0737ad0ca608111771cf74cc79
15d0417baa08a741c6aee19fdfbf4813635f98f8
47b0e7129add982c0e394f0dfa8d9621e6c9e4126859b26e1ad25c18def0d812
GET /template/1/static/css/swiper.min.css HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:26 GMT
content-type: text/css
last-modified: Sat, 13 Nov 2021 12:48:34 GMT
vary: Accept-Encoding
etag: W/"618fb422-455f"
expires: Fri, 29 Mar 2024 19:41:26 GMT
cache-control: max-age=43200
cf-cache-status: BYPASS
set-cookie: sl-session=3lFqaybCB2bgprZC3E+ypA==; Path=/; Max-Age=86400; HttpOnly
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EKgtpulA1AHPNDdMQS7kn5%2Ffucqop2GUQ2yRhOHWgCItJtoWx5cJ%2BEPNWYx8fwZMUDg8qcFwwoVi%2BGocAYs5jOZpGeVmCEbrvQjuqOKZZ8sZaKCu1DUXJEwx5OGKiHBdCiByWfo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86be37ad49cfb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
pic1.semaobf1.com/20220510/840B81E953EADD7E/840B81E953EADD7E.jpg
23.224.44.74200 OK 47 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/840B81E953EADD7E/840B81E953EADD7E.jpg
IP 23.224.44.74:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.semaobf1.com
Fingerprint64:09:42:CE:A9:3D:6B:67:8E:82:37:0B:7B:F9:EB:53:66:19:F8:4F
ValiditySun, 12 Nov 2023 10:50:02 GMT - Wed, 11 Dec 2024 10:50:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3
Hash dc1544b66c3d189290b6a1b805e866de
3dc235ae41b776780f72300933619c15603d742d
8289700ce3767717753c25cae0214fa911665f152b9efb73e21faeb4b7f818b0
GET /20220510/840B81E953EADD7E/840B81E953EADD7E.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 47195
Content-Type: image/jpeg
Date: Sun, 24 Mar 2024 17:37:35 GMT
Etag: "622b191f-b85b"
Expires: Tue, 23 Apr 2024 17:37:35 GMT
Last-Modified: Sun, 24 Mar 2024 17:37:55 GMT
Server: nginx
X-Cache: HIT, policy, disk
www.lnhntv9940.top/template/1/static/css/white.css
104.21.12.254200 OK 11 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/static/css/white.css
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /template/1/static/css/white.css HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:26 GMT
content-type: text/css
last-modified: Thu, 20 Apr 2023 10:49:20 GMT
vary: Accept-Encoding
etag: W/"644118b0-2b6f"
expires: Fri, 29 Mar 2024 19:41:26 GMT
cache-control: max-age=43200
cf-cache-status: BYPASS
set-cookie: sl-session=/ztLGCbCB2ZoNfBolxoFtA==; Path=/; Max-Age=86400; HttpOnly
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jka%2FNydKBXVSep9GI7%2B9tIxG9bPjw2IWfts7NJsAYG1qWCHNoMyUVndtK8KQhSJw5057ft%2BdUMu1LFD%2BN4xBOXZ%2BezZ29EcrTYcPJIg0b5JDMFkTeN6bQmTP%2BWgLAVBNV3BK2xo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86be37ad49d2b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.lnhntv9940.top/template/1/static/css/mm-content.css
104.21.12.254200 OK 7.4 kB URL GET HTTP/3 www.lnhntv9940.top/template/1/static/css/mm-content.css
IP 104.21.12.254:443
Requested by https://www.lnhntv9940.top/
Certificate IssuerGoogle Trust Services LLC
Subjectlnhntv9940.top
Fingerprint9A:1F:FD:57:A0:E2:E7:D3:A4:22:65:43:5D:CB:EC:71:F7:33:2D:CA
ValidityThu, 14 Mar 2024 05:17:45 GMT - Wed, 12 Jun 2024 05:17:44 GMT
File type ASCII text, with very long lines (8653), with no line terminators
Hash bef0dcf74b9cd98865a72d536b65bf6e
c052a4af29d6ee19798168ba4a159bf2a100aa06
b2c6ca17330bfb76ffb0e498e96edaa81fb2a1cd55189fdb6c55cd1e97c48fb6
GET /template/1/static/css/mm-content.css HTTP/1.1
Host: www.lnhntv9940.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 07:41:26 GMT
content-type: text/css
last-modified: Sun, 24 Jul 2022 09:28:42 GMT
vary: Accept-Encoding
etag: W/"62dd10ca-1ccd"
expires: Fri, 29 Mar 2024 19:41:26 GMT
cache-control: max-age=43200
cf-cache-status: BYPASS
set-cookie: sl-session=f0zbWCbCB2ZQylgoirdBsw==; Path=/; Max-Age=86400; HttpOnly
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xogbHDzraEK5b1ndtKeXXJS4iQngnaYQ8N7t3ARp7GXcVXxo0VbDzRO3w6S3WcfoEfmlttIDSKLX6dhNmQzjDBuh9CJvlH4ew%2Fldz%2FIlJm6j87WiDIzoxbIzH%2BRB7udMKHRfj6g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86be37ad49d4b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ggaotu.oss-ap-northeast-1.aliyuncs.com/042js/amjs960x80.gif
8.216.114.6200 OK 361 kB URL GET HTTP/1.1 ggaotu.oss-ap-northeast-1.aliyuncs.com/042js/amjs960x80.gif
IP 8.216.114.6:443
ASN #45102 Alibaba US Technology Co., Ltd.
Requested by https://www.lnhntv9940.top/
Certificate IssuerGlobalSign nv-sa
Subjectap-northeast-1.oss.aliyuncs.com
FingerprintC2:20:6D:58:38:4D:C4:77:FF:40:3A:54:C3:BF:38:60:70:26:02:AD
ValidityTue, 21 Nov 2023 02:46:15 GMT - Sun, 22 Dec 2024 02:46:14 GMT
File type GIF image data, version 89a, 960 x 80
Size 361 kB (360677 bytes)
Hash a11c50374c91b25d85344a1d938ae87a
76a5191089023042d82f06b908c8cff09f30e45f
d02e2896cdf0e2a2faa7174ea65a95b7fd9be7400ef4731ddec761f456821389
GET /042js/amjs960x80.gif HTTP/1.1
Host: ggaotu.oss-ap-northeast-1.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Fri, 29 Mar 2024 07:41:27 GMT
Content-Type: image/gif
Content-Length: 360677
Connection: keep-alive
x-oss-request-id: 660670A7F0D9403836832AA0
Accept-Ranges: bytes
ETag: "A11C50374C91B25D85344A1D938AE87A"
Last-Modified: Sat, 20 Jan 2024 12:17:14 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 18212817626169640956
x-oss-storage-class: Standard
x-oss-ec: 0048-00000113
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: oRxQN0yRsl2FNEodk4roeg==
x-oss-server-time: 1
gb.dyabgjaf.com/sh/to/18
0.0.0.0 0 B IP 0.0.0.0:0
Requested by https://www.lnhntv9940.top/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sh/to/18 HTTP/1.1
Host: gb.dyabgjaf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lnhntv9940.top
DNT: 1
Connection: keep-alive
Referer: https://www.lnhntv9940.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache