www.needtakehave.com/darkfairie/images/Customer/Billing/Address/Verification/secure/customer/center/Amazon.com/error.php/
160.124.198.239 632 B URL www.needtakehave.com/darkfairie/images/Customer/Billing/Address/Verification/secure/customer/center/Amazon.com/error.php/
IP 160.124.198.239:0
ASN #132839 POWER LINE DATACENTER
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (950), with CRLF line terminators
Hash 0dbc7c3b1814289575662bec135f1a2f
b4b5dd96386ad4d4738fa608529e669ca267437b
1bd88bba7ec37e41f0e72f19f348e585f2bdc4a4e8b35602de45f81e891eb7e3
GET /darkfairie/images/Customer/Billing/Address/Verification/secure/customer/center/Amazon.com/error.php/ HTTP/1.1
Host: www.needtakehave.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 21 Apr 2023 07:40:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.needtakehave.com/tj.js
160.124.198.239200 OK 527 B URL GET HTTP/1.1 www.needtakehave.com/tj.js
IP 160.124.198.239:80
ASN #132839 POWER LINE DATACENTER
Requested by http://www.needtakehave.com/darkfairie/images/Customer/Billing/Address/Verification/secure/customer/center/Amazon.com/error.php/
File type ASCII text, with CRLF line terminators
Hash 2900162af1ae7e07b2afd8502cc7b273
b18266f51858cd1c454bc287f06d17880bfe5fc7
d2c4389aa9188b3bb5a7e8891c35e534e673b911a32d4ff919cbeb41d719c98c
GET /tj.js HTTP/1.1
Host: www.needtakehave.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.needtakehave.com/darkfairie/images/Customer/Billing/Address/Verification/secure/customer/center/Amazon.com/error.php/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 21 Apr 2023 07:40:50 GMT
Content-Type: application/x-javascript
Content-Length: 527
Connection: keep-alive
www.needtakehave.com/common.js
160.124.198.239 488 B URL www.needtakehave.com/common.js
IP 160.124.198.239:0
ASN #132839 POWER LINE DATACENTER
File type ASCII text, with very long lines (1070), with no line terminators
Hash 66727ff0dfbb60524ea3558215acb178
ffb76bb5d96ade10e2d28bb03f01f8343758482e
e25fb87e42cbff74ec7a4830aa7dcb8cbec882250139e1c933109960f397d87e
GET /common.js HTTP/1.1
Host: www.needtakehave.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.needtakehave.com/darkfairie/images/Customer/Billing/Address/Verification/secure/customer/center/Amazon.com/error.php/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 21 Apr 2023 07:40:50 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.trust-provider.cn/
47.246.44.205 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 5b9eafe11bc0907078797c294779f4bf
b15e95dfd6d3678348647c732c206387e709f9e9
63ae7b20a78bf49778cfdb184d7b7ef3751f5d506ab1877ead04464c8eb8ffb7
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Fri, 09 Jun 2023 10:51:43 GMT
last-modified: Tue, 06 Jun 2023 18:48:49 GMT
expires: Tue, 13 Jun 2023 18:48:48 GMT
etag: "b15e95dfd6d3678348647c732c206387e709f9e9"
cache-control: max-age=584360,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb1
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7d48d22b68c81c2e-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1686307903
via: cache21.l2de2[32,32,304-0,M], cache3.l2de2[34,0], cache2.se1[0,0,200-0,H], cache3.se1[1,0], cache5.se1[3,0]
age: 1
x-cache: HIT TCP_MEM_HIT dirn:3:155186753
x-swift-savetime: Fri, 09 Jun 2023 10:51:43 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9916863079043825700e, 2ff62c9916863079043825700e
www.needtakehave.com/favicon.ico
160.124.198.239 1.2 kB URL www.needtakehave.com/favicon.ico
IP 160.124.198.239:0
ASN #132839 POWER LINE DATACENTER
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.needtakehave.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.needtakehave.com/darkfairie/images/Customer/Billing/Address/Verification/secure/customer/center/Amazon.com/error.php/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 21 Apr 2023 07:40:51 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Wed, 26 Apr 2023 07:40:51 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.haoniuyingshi9780.top/template/1/images/logo.png
172.67.186.106 15 kB URL www.haoniuyingshi9780.top/template/1/images/logo.png
IP 172.67.186.106:0
File type PNG image data, 513 x 156, 8-bit/color RGBA, non-interlaced\012- data
Hash 9941dc8ee01b6399b0c2413ce284f0c0
1d1d7ef55139d96e47f86d424330904786a203e7
1c0443009ed4337673219db7c67db08a704b1d757cd65dc43f194f166ab57cc7
GET /template/1/images/logo.png HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/png
content-length: 15130
last-modified: Sat, 15 Apr 2023 09:48:42 GMT
etag: "643a72fa-3b1a"
expires: Sun, 09 Jul 2023 10:51:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BHm%2F06YRuS3Co53M6Elnc3%2FKBSEBLALgpYUPJvAO%2Bf9gO21M64yqr3rx%2BFtLT98K5tmonscWiG%2Ft9g0ZyWbGo%2BMt%2ByONXM1ryIIie5fnoTc1mAuZOHT2kO%2BHTTLwSLAlQDEHRwbNdUWlPdeZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d240799b0b3d-OSL
alt-svc: h3=":443"; ma=86400
sta2.imgclh.com/imgs/2023/04/03/8fc08c0346fcc0a4.gif
172.67.197.136 141 kB URL sta2.imgclh.com/imgs/2023/04/03/8fc08c0346fcc0a4.gif
IP 172.67.197.136:0
File type GIF image data, version 89a, 960 x 100\012- data
Size 141 kB (140774 bytes)
Hash f0e441ef3131255acdf935206c0d3635
03e14b2f6c54d3342f389fe5d773ee05e8b809fd
8d23939f6175a7229124ae55c8cd5920f2550138ee3ca273d4c708787d3090af
GET /imgs/2023/04/03/8fc08c0346fcc0a4.gif HTTP/1.1
Host: sta2.imgclh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 140774
last-modified: Mon, 03 Apr 2023 09:16:52 GMT
etag: "642a9984-225e6"
expires: Wed, 28 Jun 2023 12:35:17 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 944189
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eChDgAqiAgMCrQll%2BOlHubk1K8h4SRjdlMtOe7aEyIgl7XpinMwjfcK2iP%2FZCx4PI7LCxnMwu%2FbyXwU2IRL7PZEHvym3iNnCeTDyg7pUa182Pn0l6lLKaJty%2BU6LrxJbZYY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d2445dd6069b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.haoniuyingshi9780.top/template/1/static/css/swiper.min.css
172.67.186.106200 OK 3.4 kB URL GET HTTP/3 www.haoniuyingshi9780.top/template/1/static/css/swiper.min.css
IP 172.67.186.106:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGoogle Trust Services LLC
Subjecthaoniuyingshi9780.top
FingerprintC5:AB:74:9F:FF:88:E2:60:16:6F:EC:B8:0E:F2:44:FF:4C:59:6C:F3
ValidityFri, 02 Jun 2023 06:39:26 GMT - Thu, 31 Aug 2023 06:39:25 GMT
File type ASCII text, with very long lines (17459)
Hash 6af34d0737ad0ca608111771cf74cc79
15d0417baa08a741c6aee19fdfbf4813635f98f8
47b0e7129add982c0e394f0dfa8d9621e6c9e4126859b26e1ad25c18def0d812
GET /template/1/static/css/swiper.min.css HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:46 GMT
content-type: text/css
last-modified: Sat, 13 Nov 2021 12:48:34 GMT
vary: Accept-Encoding
etag: W/"618fb422-455f"
expires: Fri, 09 Jun 2023 22:51:46 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yok1qIIHWz2P%2Bqdzl1GKfgjIZzP3Z4sL87sms3hs2SYVUzEZ3YanGajRVfHKA1H68FpUXrkuOqIPtirdXZi5rpEGm5NDs8vDbSpX0ubEi9cT87MeOrxVWC6DLrtu9n8hS81fx9PNjuKcxyPt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d48d24049700b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash 25a13f3a0a2c8678cdffd9b18e840879
4e33acdb321a86ff15f15c20f5e49524995c90ca
e10d5fc17195a4cc118e8b6c5bd97fb83b263f99120b7efd57e67fa8b1d4935d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Jun 2023 02:16:28 GMT
Expires: Thu, 15 Jun 2023 02:16:27 GMT
Etag: "4e33acdb321a86ff15f15c20f5e49524995c90ca"
Cache-Control: max-age=487397,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d2446e04fac0-OSL
www.haoniuyingshi9780.top/template/1/tp/yptp/y3.gif
172.67.186.106 67 kB URL www.haoniuyingshi9780.top/template/1/tp/yptp/y3.gif
IP 172.67.186.106:0
File type GIF image data, version 89a, 960 x 60\012- data
Hash e0f20c3626cccf9e26c0d8969d2032f8
5b076b7a6a320d326920affcb3945737ef7e91e3
da30a87446a82d8a33d0ef3b40665bfa5396b98f9029e636b2f8517655475bbc
GET /template/1/tp/yptp/y3.gif HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 66982
last-modified: Sun, 26 Jun 2022 16:40:36 GMT
etag: "62b88c04-105a6"
expires: Sun, 09 Jul 2023 10:51:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VEV1xGUQcZA0Hm%2B30%2FujpeytJOew86MWN%2FUcPoJEG4KpKbBH19eI38yqjAPUlj8%2Ffu3sPfJlpA0b1Ucc7%2FGn20Ws%2BvPvLHhOzy4JrapQ576BnYrKfMuSUzD2dZzAgzRt2cfZse1xFTUDLrM2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d240ea380b3d-OSL
alt-svc: h3=":443"; ma=86400
www.haoniuyingshi9780.top/template/1/tp/zbdtp/a1.gif
172.67.186.106200 OK 70 kB URL GET HTTP/3 www.haoniuyingshi9780.top/template/1/tp/zbdtp/a1.gif
IP 172.67.186.106:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGoogle Trust Services LLC
Subjecthaoniuyingshi9780.top
FingerprintC5:AB:74:9F:FF:88:E2:60:16:6F:EC:B8:0E:F2:44:FF:4C:59:6C:F3
ValidityFri, 02 Jun 2023 06:39:26 GMT - Thu, 31 Aug 2023 06:39:25 GMT
File type GIF image data, version 89a, 960 x 120\012- data
Hash 70b900242fdade2c9b1be5742d96f0f0
a5d5f1d689289683caccb6552356be7759051cab
8a9c1d22ef7b0c76959e0be485db3db50fe2fcec85e77286124a0d842951e1c1
GET /template/1/tp/zbdtp/a1.gif HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 69896
last-modified: Sun, 26 Jun 2022 16:41:40 GMT
etag: "62b88c44-11108"
expires: Sun, 09 Jul 2023 10:51:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j%2F3j61pDxpA2pXlXFwkDDddd2CT83ZJJE13wyTbT1w93qBA%2Fo5l4Rk7w3iBWJI%2FPOPO%2FBJ7k32o%2Fga4GH%2Bc618t%2B0ordYiLRepsHfySbapt9TFeW3T66SsCfPB%2BbMBDdE6VipPGBShtHX56Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d240ea310b3d-OSL
alt-svc: h3=":443"; ma=86400
www.haoniuyingshi9780.top/template/1/tp/zbdtp/a4.gif
172.67.186.106200 OK 86 kB URL GET HTTP/3 www.haoniuyingshi9780.top/template/1/tp/zbdtp/a4.gif
IP 172.67.186.106:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGoogle Trust Services LLC
Subjecthaoniuyingshi9780.top
FingerprintC5:AB:74:9F:FF:88:E2:60:16:6F:EC:B8:0E:F2:44:FF:4C:59:6C:F3
ValidityFri, 02 Jun 2023 06:39:26 GMT - Thu, 31 Aug 2023 06:39:25 GMT
File type GIF image data, version 89a, 640 x 200\012- data
Hash 2fb46fbac4465a3915ee2482b2223c25
6bb17db9f8c5517bfe21f4a54480c3fec3629adb
56eed647be7230eb7ba9fd7f3cee377e9636395207e26479ba10de9cecf8f637
GET /template/1/tp/zbdtp/a4.gif HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 86199
last-modified: Sun, 26 Jun 2022 16:41:40 GMT
etag: "62b88c44-150b7"
expires: Sun, 09 Jul 2023 10:51:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E34NiFO8Uds9%2F9LhOCtgxfhMiiGm9zvfOYYIXgm80FYIKqZjcDYTJtK90A6863871jCzxIzCX9jYGD0G7gS43PxOTjQE%2BWYr%2BQGCzQIf8aMA%2BmXovwkAvRa0u4rxzjC4yHYVfod8r4Ur%2Bdks"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d240ea340b3d-OSL
alt-svc: h3=":443"; ma=86400
www.haoniuyingshi9780.top/template/1/tp/ad/100X100.gif
172.67.186.106200 OK 74 kB URL GET HTTP/3 www.haoniuyingshi9780.top/template/1/tp/ad/100X100.gif
IP 172.67.186.106:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGoogle Trust Services LLC
Subjecthaoniuyingshi9780.top
FingerprintC5:AB:74:9F:FF:88:E2:60:16:6F:EC:B8:0E:F2:44:FF:4C:59:6C:F3
ValidityFri, 02 Jun 2023 06:39:26 GMT - Thu, 31 Aug 2023 06:39:25 GMT
File type GIF image data, version 89a, 100 x 100\012- data
Hash 60ef912b81459e301b692ab85ec83bc2
ee81be8bcacd826483e47c228ee19754e4b25b89
cbc2a42e0a215c851fac163738fa9739b29be158ffc51e81844e1bc2cc427dd1
GET /template/1/tp/ad/100X100.gif HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 73679
last-modified: Sat, 03 Sep 2022 08:44:36 GMT
etag: "631313f4-11fcf"
expires: Sun, 09 Jul 2023 10:51:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OnNkEy4Koic0Yhzg3yXvezGnNPmvs2HnGnFgtCkIpWprnpuvFT6AoEXrsHVXOU2quhaLzZ69WL4gYzlcaavrftB4odhZ2MkqqMlguiYKa6LZLhDC6jN3mPuG8f6nj%2Fxv1IACp28xPj6MJ%2FsY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d240ea3a0b3d-OSL
alt-svc: h3=":443"; ma=86400
www.haoniuyingshi9780.top/template/1/tp/yptp/y4.gif
172.67.186.106200 OK 135 kB URL GET HTTP/3 www.haoniuyingshi9780.top/template/1/tp/yptp/y4.gif
IP 172.67.186.106:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGoogle Trust Services LLC
Subjecthaoniuyingshi9780.top
FingerprintC5:AB:74:9F:FF:88:E2:60:16:6F:EC:B8:0E:F2:44:FF:4C:59:6C:F3
ValidityFri, 02 Jun 2023 06:39:26 GMT - Thu, 31 Aug 2023 06:39:25 GMT
File type GIF image data, version 89a, 650 x 200\012- data
Size 135 kB (134963 bytes)
Hash 49ebeb91c6dbf5eaf2e519a85e6156ca
6c5f849fd2a5593f0c1e04d0d45249d221a5bcb4
8af438fa2e1adfe8be24973c3b497bbf5b3205357dd6832701dedfbcb0c90c2f
GET /template/1/tp/yptp/y4.gif HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 134963
last-modified: Sun, 26 Jun 2022 16:40:38 GMT
etag: "62b88c06-20f33"
expires: Sun, 09 Jul 2023 10:51:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DoifQQEWNYza4ZEDvfn%2BuRlTHKr%2Fzh3pvMqrzyRKT5xJyVbBfAu764kL7ZaS6NRzWaoctg6Kjh8sVdHufCj0YEsefku1Ju6msieHSNCb%2Fa28J7KSaX4OSnYJyyrIhnpSb9MDX1dcW5yYBZzI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d240ea350b3d-OSL
alt-svc: h3=":443"; ma=86400
www.haoniuyingshi9780.top/template/1/tp/yptp/y1.gif
172.67.186.106 105 kB URL www.haoniuyingshi9780.top/template/1/tp/yptp/y1.gif
IP 172.67.186.106:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 105 kB (105007 bytes)
Hash 8addcd5a8672c743ab9d7c3728939025
ec5378c74c297e54484cf0f6e955cb27fe036b05
9a9675e295a3047370252c4fa1323fbcd71d8357e22d74b1cbed41178f76e2c3
GET /template/1/tp/yptp/y1.gif HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 105007
last-modified: Sun, 26 Jun 2022 16:40:34 GMT
etag: "62b88c02-19a2f"
expires: Sun, 09 Jul 2023 10:51:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jQiMPgDREsjy6ww%2FxXxfryYL5c5wzcKMrs8gq7i1biRi4KnWIuyjVNG9aDgR9i0%2Fry0CPSW08sXhUrxZx88j3QeF65oZ92JDZyVBprG2n5K6pqoo8V275o5kxKbVcTAX1I3yk9A1rNiAPgm4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d240ea300b3d-OSL
alt-svc: h3=":443"; ma=86400
www.haoniuyingshi9780.top/template/1/tp/yptp/y5.gif
172.67.186.106200 OK 105 kB URL GET HTTP/3 www.haoniuyingshi9780.top/template/1/tp/yptp/y5.gif
IP 172.67.186.106:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGoogle Trust Services LLC
Subjecthaoniuyingshi9780.top
FingerprintC5:AB:74:9F:FF:88:E2:60:16:6F:EC:B8:0E:F2:44:FF:4C:59:6C:F3
ValidityFri, 02 Jun 2023 06:39:26 GMT - Thu, 31 Aug 2023 06:39:25 GMT
File type GIF image data, version 89a, 960 x 120\012- data
Size 105 kB (104937 bytes)
Hash 97ccd094e782c64495d9b3438b4b98a5
31421a4dad004c0710884cc8b1c9b4a6db6aaff4
1278e36837250a306cd5669deec1b6e57c7d4a9379c87147865c1e88e9a23344
GET /template/1/tp/yptp/y5.gif HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 104937
last-modified: Sun, 26 Jun 2022 16:40:40 GMT
etag: "62b88c08-199e9"
expires: Sun, 09 Jul 2023 10:51:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BxkCYClWaENDltTfQh2xT9uoR9OmL3uAA0eKhJy8jQ8iNvC3rTMHiKz9Jnio0w3DRcSWDFok55g7SDIUKdYnHFhc32x1yuGt3YeAkOoILddtnjg8SbWYwKyMl%2FxVatorKsssSPGrDLZa9r%2Fa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d240ea370b3d-OSL
alt-svc: h3=":443"; ma=86400
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash 5f8142000c0919d14f2302f5aa20f9db
6b397b31ddc7d0dad2d8b849f5c6d1d3426436db
dd9ac1aea32fbd7fd7c3e0b045266f9672cdf59ccb4148343800bf750ee5b055
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Jun 2023 20:20:15 GMT
Expires: Tue, 13 Jun 2023 20:20:14 GMT
Etag: "6b397b31ddc7d0dad2d8b849f5c6d1d3426436db"
Cache-Control: max-age=379106,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d2446ddb0b61-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g3
104.18.20.226 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 104.18.20.226:0
Hash ce0e085df771f251a8d54ec491e5b52f
366ea30861348a5dd5350518f1a562395d0ed8f7
d412ae8081e7b0cb8fc836d7a60643aac4d484a87e3b8eeeb8a352394791721c
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Tue, 13 Jun 2023 07:34:47 GMT
ETag: "366ea30861348a5dd5350518f1a562395d0ed8f7"
Last-Modified: Fri, 09 Jun 2023 07:34:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d48d245ae34b4f9-OSL
www.haoniuyingshi9780.top/template/1/tp/yptp/y6.gif
172.67.186.106200 OK 175 kB URL GET HTTP/3 www.haoniuyingshi9780.top/template/1/tp/yptp/y6.gif
IP 172.67.186.106:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGoogle Trust Services LLC
Subjecthaoniuyingshi9780.top
FingerprintC5:AB:74:9F:FF:88:E2:60:16:6F:EC:B8:0E:F2:44:FF:4C:59:6C:F3
ValidityFri, 02 Jun 2023 06:39:26 GMT - Thu, 31 Aug 2023 06:39:25 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 175 kB (174979 bytes)
Hash 393f3a0903be09ce5308f2214cb6f267
abc58cb591a767ad3f35ee50a636b737ec69e1dc
008f2fc4c5561fefc90714a30ab629f086302dd848cb3a7dfde80f1f6a71338a
GET /template/1/tp/yptp/y6.gif HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 174979
last-modified: Sun, 26 Jun 2022 16:40:42 GMT
etag: "62b88c0a-2ab83"
expires: Sun, 09 Jul 2023 10:51:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tZVYCN2KYE3GSyt3EeW8IX60q7O1yfCqgKyTmgr3VEAslmk893H6OvE%2FJI9ra0FmOvLKJV9iDEeP4XprgPug6wFbj4m2OJGZLIIyJGDDjHInDN9k3ynO6LjKICQfm5indruO0mzyM5npLILX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d2413a860b3d-OSL
alt-svc: h3=":443"; ma=86400
www.haoniuyingshi9780.top/template/1/static/css/style.css
172.67.186.106 13 kB URL www.haoniuyingshi9780.top/template/1/static/css/style.css
IP 172.67.186.106:0
File type assembler source, Unicode text, UTF-8 text, with very long lines (350), with CRLF line terminators
Hash 0e420343241be96d21c698be4cf1a7d5
400a7ee5dabdb8d588a905d7694a7e6685150376
185f42ca21ab4c5761237bc476d390d0208ed2d54c36f30c7feb6ad450e9510b
GET /template/1/static/css/style.css HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: text/css
last-modified: Wed, 19 Apr 2023 04:03:38 GMT
vary: Accept-Encoding
etag: W/"643f681a-10afe"
expires: Fri, 09 Jun 2023 22:51:46 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ADv93W14Xl6bVTgNAUf05nf9kMbrH3IQJDaxfqbcfC%2BzlXW4u0gSjlr1Xna1MY%2FjY8dpHb7uFzFFTIS%2Fe68Y2zMkF7w5Te4ylbWj7XkjrvhteDS6gvLQAlN4T6QpDKSVt3T3KnWX5Y37wQ7b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d48d240598f0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dvcasha2.ocsp-certum.com/
23.36.79.17 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 22b1a6cead4c91526287fdb37faf487e
a26781ccf8351ff4843f9fa639c249abc1dda838
a7839a1951807cc5d7effefffc1fb7fff960ddbfe81d1ff24ff8b27fb919b4f4
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Fri, 09 Jun 2023 10:51:47 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686307907573_388255501_75178006_9922_319_0_0_-";dur=1
dvcasha2.ocsp-certum.com/
23.36.79.17 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 65acf77ac7f37f859bc74e9508d56b55
3737414e9e2f12082727cba05de35a474018430c
b619ebc196a3ae7174151cdf2690df42104ce276507588044d33298980d5c782
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Fri, 09 Jun 2023 10:51:47 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686307907615_388255501_75178123_10620_401_0_0_-";dur=1
www.haoniuyingshi9780.top/template/1/tp/zbdtp/a2.gif
172.67.186.106200 OK 612 kB URL GET HTTP/3 www.haoniuyingshi9780.top/template/1/tp/zbdtp/a2.gif
IP 172.67.186.106:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGoogle Trust Services LLC
Subjecthaoniuyingshi9780.top
FingerprintC5:AB:74:9F:FF:88:E2:60:16:6F:EC:B8:0E:F2:44:FF:4C:59:6C:F3
ValidityFri, 02 Jun 2023 06:39:26 GMT - Thu, 31 Aug 2023 06:39:25 GMT
File type GIF image data, version 89a, 640 x 150\012- data
Size 612 kB (611850 bytes)
Hash 6ed3dcf7e739969e0d5460b5f07e661f
1954523b227b8fa235e3eed0948749ae7af2f9f5
f97cf559b37c6f33ecef4712c699e88217c64aa85abbf919fa772daaf3a49e0a
GET /template/1/tp/zbdtp/a2.gif HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 611850
last-modified: Sun, 26 Jun 2022 15:29:12 GMT
etag: "62b87b48-9560a"
expires: Sun, 09 Jul 2023 10:51:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E18%2FEUvnhEOCeAyphQIBAofavH1kVOg6vY0nbZh6j0HxNAw8om8Ma4YAsEX7xoZCbGmVNAE4QIJWDI7bAIMKDIxhCyaPApJPvUAcOUqgtqQHFlBhtfT8yhlxDv1SnZxe9jDyaJJhPA84a4ow"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d240ea360b3d-OSL
alt-svc: h3=":443"; ma=86400
www.haoniuyingshi9780.top/template/1/tp/zbdtp/a3.gif
172.67.186.106 691 kB URL www.haoniuyingshi9780.top/template/1/tp/zbdtp/a3.gif
IP 172.67.186.106:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 691 kB (691201 bytes)
Hash e777fbf270544cb526b587f6c9e7b370
d2c75be6512b6a1279e91d5d6d99fa18920ef878
13a0a7ac347346c7bf57699606465257d349ff14861dfa911ef397bfcbda91b2
GET /template/1/tp/zbdtp/a3.gif HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 691201
last-modified: Sun, 26 Jun 2022 15:29:18 GMT
etag: "62b87b4e-a8c01"
expires: Sun, 09 Jul 2023 10:51:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rn3ZYdqU316fYT2poU7bXxdE7VLqT%2BcdTnhHSthSse%2FH23yM6jLVToRnyIrmeF34w%2FrNzJ7Y7TQhQTdwZMcZPk5akaoFpNFvpDyNh1KOT0mwvYtyi75H82KhdXiKHgUsANeeGGBQgPE3XFEh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d240ea2b0b3d-OSL
alt-svc: h3=":443"; ma=86400
dvcasha2.ocsp-certum.com/
23.36.79.17 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 01e96873d6f3afcd05454291327e5206
ecc50ac85fd146055fa319a692253f93b0fb7711
6230827697494065fe701e4c308c178af3fbb0631a834389815504ff64191109
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=846
Date: Fri, 09 Jun 2023 10:51:47 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686307907615_388255501_75178124_11706_522_0_0_-";dur=1
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 72123cab9c00029ab4c89d4aa3d86b91
7929512b90bd617faef44cd0f465a8977bcca7a9
70d8c7a049c87016f36c107ea5f4407c15e52c1a4bbcae2acd06e2a93d5eecc2
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 13 Jun 2023 09:12:11 GMT
ETag: "7929512b90bd617faef44cd0f465a8977bcca7a9"
Last-Modified: Fri, 09 Jun 2023 09:12:12 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2157
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d48d247cfadb4f3-OSL
pic1.semaobf1.com/20220525/CA32FBEB45E678EC/CA32FBEB45E678EC.jpg
109.122.211.24 8.7 kB URL pic1.semaobf1.com/20220525/CA32FBEB45E678EC/CA32FBEB45E678EC.jpg
IP 109.122.211.24:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 083ee804f89a409467932cab3c798ff6
c02446c0a52be9a76767cc9646e3fca9221cfd8a
a009b3cab27ff245ba5c77739622c9afb16c27f4d40fdb9c76f971249ff22d6e
GET /20220525/CA32FBEB45E678EC/CA32FBEB45E678EC.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:47 GMT
Content-Type: image/jpeg
Content-Length: 8716
Last-Modified: Wed, 07 Sep 2022 12:54:10 GMT
Connection: keep-alive
ETag: "63189472-220c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220525/CD165A5BF1F90F08/CD165A5BF1F90F08.jpg
109.122.211.24200 OK 8.8 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/CD165A5BF1F90F08/CD165A5BF1F90F08.jpg
IP 109.122.211.24:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ff3ab816d90be6d6af922e33c0381563
3c3c649e318e712f8ebe487cc959346447a06338
30ff2fd1771dbd51132c887f59d4f5393812f802910cced8fed81f2902715996
GET /20220525/CD165A5BF1F90F08/CD165A5BF1F90F08.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:47 GMT
Content-Type: image/jpeg
Content-Length: 8764
Last-Modified: Wed, 07 Sep 2022 12:52:37 GMT
Connection: keep-alive
ETag: "63189415-223c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
8388tp.com/tp/980x60.gif
154.83.27.182200 OK 60 kB IP 154.83.27.182:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerLet's Encrypt
Subject8388tp.com
Fingerprint8A:DF:4D:27:E6:00:94:BE:CA:5C:CC:C0:24:7E:DE:A1:80:C1:C6:7E
ValidityTue, 28 Mar 2023 09:45:41 GMT - Mon, 26 Jun 2023 09:45:40 GMT
File type GIF image data, version 89a, 980 x 61\012- data
Hash 2ba7349622b60057c41d48576fe5939d
1e2f5c45487179792c6f01bd3aeeee4dd03d97be
a3b3d9deae6d11647d4b5f693f32f4f823f1e9ffd9cb202010c2ae6447cada07
GET /tp/980x60.gif HTTP/1.1
Host: 8388tp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 09 Jun 2023 10:40:48 GMT
Content-Type: image/gif
Content-Length: 60278
Connection: keep-alive
Last-Modified: Wed, 12 Apr 2023 07:51:28 GMT
ETag: "64366300-eb76"
Expires: Fri, 16 Jun 2023 09:05:48 GMT
Cache-Control: max-age=2592000
Via: 154.83.27.178
CDN-Cache: HIT
Accept-Ranges: bytes
img.1382a.xyz/images/647cfc9d932fd87e9e9daef2.gif
103.166.246.24 0 B URL img.1382a.xyz/images/647cfc9d932fd87e9e9daef2.gif
IP 103.166.246.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/647cfc9d932fd87e9e9daef2.gif HTTP/1.1
Host: img.1382a.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=1800
location: https://img.mengzhan28.top/loveimgmoe/ea/b7/6426fa1c27ec65ebc7a0eab7.gif
X-Firefox-Spdy: h2
ocsp.buypass.com/
23.36.76.200 1.7 kB IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
Hash 6fde6021869b710dd039dfc1977167c9
15251d127ff92a159fbb1edfde6fd008e9fee3cb
5775fab38fe529cf30b2d3df72f9be0ca4d42b48ba6a7b10de0b970f05afbac2
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 2fd0ede2-7ed3-4515-af36-29b05c6cd0b0
Content-Length: 1701
Date: Fri, 09 Jun 2023 10:51:47 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686307907935_388254916_31079769_5218_623_0_0_-";dur=1
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash fa2edb665a14de3fedb535c5d6845999
0d9f59cced2977cbb508ca62b08430c187e0385e
88e883d7181df5dfb9a5e6b501b59006b257f344e000c97e63465555c8a4d362
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:48 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Jun 2023 17:14:54 GMT
Expires: Thu, 15 Jun 2023 17:14:53 GMT
Etag: "0d9f59cced2977cbb508ca62b08430c187e0385e"
Cache-Control: max-age=540853,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d249492afac0-OSL
dvcasha2.ocsp-certum.com/
23.36.79.17 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 1fdcfd0235189fd19a10f9c9a37391ce
8d1b321c47e6f7626a121c22fd365985cfea486e
d9bb91a3aa79e027da5fb8d11271aa8e141a578ea54575e55231598071e54f40
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=845
Date: Fri, 09 Jun 2023 10:51:48 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686307907969_388255501_75178405_10021_322_0_0_-";dur=1
pic1.semaobf1.com/20220510/898018F3FD435468/898018F3FD435468.jpg
109.122.211.24 33 kB URL pic1.semaobf1.com/20220510/898018F3FD435468/898018F3FD435468.jpg
IP 109.122.211.24:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3\012- data
Hash 86b8a770e79a3ac16b55fd17986f3654
a84c2be0cea9f49111c59496144c232ec031418b
c74f5c42a7eb4012d45dc2b6d45f21504511fd16375f7edaef91948430305a2c
GET /20220510/898018F3FD435468/898018F3FD435468.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:47 GMT
Content-Type: image/jpeg
Content-Length: 32681
Last-Modified: Wed, 07 Sep 2022 13:13:34 GMT
Connection: keep-alive
ETag: "631898fe-7fa9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
xo.imgwawawa.vip/xo/xo120av.gif
162.250.140.226 570 kB URL xo.imgwawawa.vip/xo/xo120av.gif
IP 162.250.140.226:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 570 kB (569804 bytes)
Hash 191902ddeb2004b36af31d0be89d8c09
2946b327898354bb8f4675be1a22c2e63dec8d69
ce7a7a27b5d2c285e85a4c306f4f6e21141137b3f592e56bb7a1317babacad97
GET /xo/xo120av.gif HTTP/1.1
Host: xo.imgwawawa.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:47 GMT
Content-Type: image/gif
Content-Length: 569804
Connection: keep-alive
Last-Modified: Thu, 16 Mar 2023 22:31:03 GMT
ETag: "641398a7-8b1cc"
Expires: Sat, 08 Jul 2023 11:13:32 GMT
Cache-Control: max-age=2592000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
img.mengzhan28.top/loveimgmoe/ea/b7/6426fa1c27ec65ebc7a0eab7.gif
104.26.6.100 453 kB URL img.mengzhan28.top/loveimgmoe/ea/b7/6426fa1c27ec65ebc7a0eab7.gif
IP 104.26.6.100:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 453 kB (453068 bytes)
Hash 78e489cfa5928f3c7b3491d808eea938
4651530964a8c481daae8ebc7aeb186e962d4bbc
6f39b580ed16e54e84be7cb45ed96c0d853a0625b51743bb8544d9c1d81f7ecf
GET /loveimgmoe/ea/b7/6426fa1c27ec65ebc7a0eab7.gif HTTP/1.1
Host: img.mengzhan28.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:48 GMT
content-type: image/png
content-length: 453068
cache-control: max-age=16070400
last-modified: Thu, 08 Jun 2023 09:23:54 GMT
cf-cache-status: HIT
age: 74140
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uHGTRGweiXLAZeRr5P0nF3y%2BnJCGtKUyqnIjoJ3or096O%2BvMk%2Bk8IUOfwk2Q%2F%2BaW1qdeGHBYrYGLUkSHFbRb1fLOTsvK115DGcHRQkCu93ncQNz8j37FG7%2FWtXNUXwESukz3og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 7d48d249bfabfab8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
js.users.51.la/21298467.js
42.236.73.40200 OK 2.3 kB URL GET HTTP/1.1 js.users.51.la/21298467.js
IP 42.236.73.40:443
ASN #4837 CHINA UNICOM China169 Backbone
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT
File type ASCII text, with very long lines (4898), with no line terminators
Hash cf0fa295a09a1e451b762bb63884d803
32744a117ddadc60307681be5c3766b3ada42247
5b8446744df0dd22d70240458e29421e3e06b448bb04e9db96e98405fd9b719f
GET /21298467.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 09 Jun 2023 10:51:48 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Cache-Control: no-store
Access-Control-Allow-Origin: *, *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
1cdn.8b4v.cn/wns96080a.gif
42.236.89.74 374 kB URL 1cdn.8b4v.cn/wns96080a.gif
IP 42.236.89.74:0
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 960 x 80\012- data
Size 374 kB (374505 bytes)
Hash 61f0a03d052a9fa7c45384a259b5ba2e
d4ee20f085c53882170bf84dedc1f41995e1bd40
e1861e6ff229839c7d15fb0b166069fe773aad508c8d174661a7437e2b45632b
GET /wns96080a.gif HTTP/1.1
Host: 1cdn.8b4v.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Thu, 13 Apr 2023 06:46:54 GMT
Etag: "61f0a03d052a9fa7c45384a259b5ba2e"
Content-Type: image/gif
Date: Sun, 04 Jun 2023 19:36:39 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 8121941456025080816
x-cos-request-id: NjQ3Y2U3YzdfNzU3ZTQwOV8yZWJmY19kNDRjOGYw
Content-Length: 374505
Accept-Ranges: bytes
X-NWS-LOG-UUID: 15379686402130270715
Connection: keep-alive
X-Cache-Lookup: Cache Hit
Cache-Control: max-age=3600
uu3531uu.com/6b6c4101b455403ba373ae5ca973d112.gif
103.170.15.106 684 kB URL uu3531uu.com/6b6c4101b455403ba373ae5ca973d112.gif
IP 103.170.15.106:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 684 kB (683707 bytes)
Hash f49046a5e6117c50b0d0acf38d5771fd
ff89f0896c5bbbbe248aceccfc404f8282df55a6
656acf8e658dd3ae0a4fff74ac88c58c6d06687b1ccb379a9a211c439f095493
GET /6b6c4101b455403ba373ae5ca973d112.gif HTTP/1.1
Host: uu3531uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "64563e9d-a6ebb"
Date: Mon, 05 Jun 2023 03:28:46 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sat, 06 May 2023 11:48:45 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-36
Content-Length: 683707
3p8801.co/xx/960x180.gif
142.4.117.122 380 kB IP 142.4.117.122:0
File type GIF image data, version 89a, 960 x 180\012- data
Size 380 kB (380151 bytes)
Hash fe764cb8f0d2241c37ae5a4308f97aec
8fef4c49f912b0a20e2455522ca634bd98cae414
51bbdd9d621a9f02ad69dc5296dae127dfd60f0005f296bf7bc9e28a71b6c8c2
GET /xx/960x180.gif HTTP/1.1
Host: 3p8801.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 380151
last-modified: Tue, 07 Mar 2023 10:50:19 GMT
etag: "640716eb-5ccf7"
expires: Sun, 09 Jul 2023 10:51:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash 3c6ecca04d76a9b19372202623a69187
d1bd89b285a5d11fb98177d63be49863ef280cf0
1a126e648a3e17583ff647188b2a4dc43701ba3e8257dded73609074a28437ab
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:48 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 09 Jun 2023 09:17:02 GMT
Expires: Fri, 16 Jun 2023 09:17:01 GMT
Etag: "d1bd89b285a5d11fb98177d63be49863ef280cf0"
Cache-Control: max-age=599022,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d24baae1fac0-OSL
u55011.com/c92552651a92f9a6dd0abbbd0c871d25.gif
45.151.135.43200 OK 379 kB URL GET HTTP/2 u55011.com/c92552651a92f9a6dd0abbbd0c871d25.gif
IP 45.151.135.43:443
ASN #201106 Spartan Host Ltd
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerLet's Encrypt
Subjectu55011.com
FingerprintB4:E5:26:06:C5:A0:0E:B1:9D:5D:4B:47:AB:55:62:42:12:44:A9:B5
ValidityWed, 10 May 2023 13:05:44 GMT - Tue, 08 Aug 2023 13:05:43 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 379 kB (379124 bytes)
Hash b2838aa5b81ed9695a7e0fe0246ef70a
8e05bad50515e39644662d0b0e129466257e997c
2f683cc2f4c30845ec141f830b4f45ba4b6c15421d4e035a4478e4ce188c1ac0
GET /c92552651a92f9a6dd0abbbd0c871d25.gif HTTP/1.1
Host: u55011.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 379124
last-modified: Thu, 11 May 2023 14:31:19 GMT
etag: "645cfc37-5c8f4"
expires: Fri, 07 Jul 2023 07:51:41 GMT
cache-control: max-age=2592000
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
mross022.com/bb7f858c0dad171784517c02e7bff891.gif
45.151.135.43 374 kB URL mross022.com/bb7f858c0dad171784517c02e7bff891.gif
IP 45.151.135.43:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 374 kB (373739 bytes)
Hash 5a95e6e7e766c8182da57c63be2d74aa
05d3bb1e7694cc7e19b8ad33becc1f795200b02e
8b5db8afc46d038454fe425c5b6fa8e5e90524fe1da1a3f1b1e7c6338d3a80a3
GET /bb7f858c0dad171784517c02e7bff891.gif HTTP/1.1
Host: mross022.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 373739
last-modified: Sun, 14 May 2023 08:34:58 GMT
etag: "64609d32-5b3eb"
expires: Fri, 09 Jun 2023 22:51:47 GMT
cache-control: max-age=43200
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
1cdn.8b4v.cn/xpj96080a.gif
42.236.89.74 272 kB URL 1cdn.8b4v.cn/xpj96080a.gif
IP 42.236.89.74:0
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 960 x 80\012- data
Size 272 kB (272151 bytes)
Hash 43a32492f5f0cac9660c7ab9d28ced1f
74dc58aad3d5ffc74d5536abda35d554edbd6aa5
b66bc61c4e4348cadf72790bf397b4bb70921196b0c9fb5935c280c354214450
GET /xpj96080a.gif HTTP/1.1
Host: 1cdn.8b4v.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Thu, 13 Apr 2023 06:41:22 GMT
Etag: "43a32492f5f0cac9660c7ab9d28ced1f"
Content-Type: image/gif
Date: Sun, 04 Jun 2023 10:18:59 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 15860531176344592078
x-cos-request-id: NjQ3YzY1MTNfMzU1N2U0MDlfMjAyYjJfZDMzNWQ1NA==
Content-Length: 272151
Accept-Ranges: bytes
X-NWS-LOG-UUID: 10470702099143104097
Connection: keep-alive
X-Cache-Lookup: Cache Hit
Cache-Control: max-age=3600
mross033.com/3926e27b41bff9ce2b6af510d5d52105.gif
45.151.135.43200 OK 382 kB URL GET HTTP/2 mross033.com/3926e27b41bff9ce2b6af510d5d52105.gif
IP 45.151.135.43:443
ASN #201106 Spartan Host Ltd
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerLet's Encrypt
Subjectmross033.com
Fingerprint3B:6D:88:5E:56:87:87:40:30:B5:39:F1:DD:53:95:06:37:EC:89:D3
ValidityFri, 19 May 2023 10:46:20 GMT - Thu, 17 Aug 2023 10:46:19 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 382 kB (381888 bytes)
Hash c88373bd0efb6f3708b29b5fcb34b5ba
19250c35c574fae85be9c7b2e1d430300c736eba
8a538cce0fd5a1fd4eafa42e17fd0b551a1e7fa08c57df8a883b64e979bf3ed6
GET /3926e27b41bff9ce2b6af510d5d52105.gif HTTP/1.1
Host: mross033.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 381888
last-modified: Tue, 25 Apr 2023 10:43:17 GMT
etag: "6447aec5-5d3c0"
expires: Fri, 09 Jun 2023 22:51:47 GMT
cache-control: max-age=43200
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
u25022.com/8d62ac139591ff0c5f17d4c5f1ff3cf6.gif
45.151.135.43 566 kB URL u25022.com/8d62ac139591ff0c5f17d4c5f1ff3cf6.gif
IP 45.151.135.43:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 566 kB (565615 bytes)
Hash 6a2c609ad0c46bb1b8d9cd39eacde625
45de0f50f86b45dd6fd4a1c764d47e2640126bf3
8eb8f61188f2555f5f7f0a934ebbae9e9ab703a3dc0b23191bdc7c147eb12140
GET /8d62ac139591ff0c5f17d4c5f1ff3cf6.gif HTTP/1.1
Host: u25022.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:47 GMT
content-type: image/gif
content-length: 565615
last-modified: Sun, 14 May 2023 08:27:12 GMT
etag: "64609b60-8a16f"
expires: Fri, 09 Jun 2023 22:51:47 GMT
cache-control: max-age=43200
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
facaiimage.com/vip/960-120.gif
52.140.54.230 985 kB URL facaiimage.com/vip/960-120.gif
IP 52.140.54.230:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 120\012- data
Size 985 kB (984588 bytes)
Hash e30b71cd2447e8c217d4bc72fd1328c7
a01e636b18b1367a4e6a056570ab0d80e66f022c
666504acc91ff172ba7a73cfcec81a3cae044e2220495f155e41eaeefe8b9571
GET /vip/960-120.gif HTTP/1.1
Host: facaiimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 984588
Content-Type: image/gif
Date: Thu, 08 Jun 2023 11:53:23 GMT
ETag: "1686225203"
Expires: Sat, 08 Jul 2023 11:53:23 GMT
Last-Modified: Thu, 08 Jun 2023 11:53:23 GMT
Server: nginx
Strict-Transport-Security: max-age=31536000
X-Cache: HIT, policy, memory
oss-cn-shenzhen.aliyun06062023.com/imgs/y96060_1.gif
172.247.170.197 157 kB URL oss-cn-shenzhen.aliyun06062023.com/imgs/y96060_1.gif
IP 172.247.170.197:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 157 kB (157267 bytes)
Hash 8e9c3e77855c8e70895f70d5345ba224
40dbe02858024e3f553bdb7ec94e38bfec1648e1
3e15783fcb462dd6e4fe58bfd578ab0591eb3330a9bd41364a59421a598c13a2
GET /imgs/y96060_1.gif HTTP/1.1
Host: oss-cn-shenzhen.aliyun06062023.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
ETag: "647da3ed-26653"
Server: nginx
Date: Mon, 05 Jun 2023 12:32:51 GMT
Content-Type: image/gif
Last-Modified: Mon, 05 Jun 2023 08:59:25 GMT
Expires: Wed, 05 Jul 2023 12:32:51 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 339538
X-Cache: HIT from ac web server
Content-Length: 157267
u1077.com/23fb7928540b41af825f090ccd3edb68.gif
103.170.15.51200 OK 275 kB URL GET HTTP/2 u1077.com/23fb7928540b41af825f090ccd3edb68.gif
IP 103.170.15.51:443
ASN #7483 Skycloud Computing co., Ltd.
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerSectigo Limited
Subjectu1077.com
Fingerprint1F:25:A3:02:EC:12:0A:DA:01:DC:46:2D:79:0E:BC:6B:38:67:34:C8
ValiditySat, 29 Oct 2022 00:00:00 GMT - Sun, 29 Oct 2023 23:59:59 GMT
File type GIF image data, version 89a, 480 x 60\012- data
Size 275 kB (274664 bytes)
Hash d7555bd6a51de954aca541a1dc4b3ffc
b86d01481b211a9e23bad62b965ce68cdf5e65d6
b07420d94529e7f33e57eee8755a46c48f97ec8ad432474f7fea5b87022893a2
GET /23fb7928540b41af825f090ccd3edb68.gif HTTP/1.1
Host: u1077.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=86400
etag: "6478776c-430e8"
server: nginx
date: Thu, 08 Jun 2023 11:32:25 GMT
content-type: image/gif
last-modified: Thu, 01 Jun 2023 10:48:12 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-41
content-length: 274664
X-Firefox-Spdy: h2
sezantp.oss-cn-hongkong.aliyuncs.com/bt96080a.gif
47.56.33.36 214 kB URL sezantp.oss-cn-hongkong.aliyuncs.com/bt96080a.gif
IP 47.56.33.36:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 214 kB (213969 bytes)
Hash fbfdcc7b40b93f021c65a01a8f7a4360
6c449805780129472654fc44ffbe7bf313a2f658
1617a4d235b7b2b32acdf481353bd43b9275c31a18832f54940ff9d7629676ce
GET /bt96080a.gif HTTP/1.1
Host: sezantp.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Fri, 09 Jun 2023 10:51:47 GMT
Content-Type: image/gif
Content-Length: 213969
Connection: keep-alive
x-oss-request-id: 64830443FDBA0C38381BCEA7
Accept-Ranges: bytes
ETag: "FBFDCC7B40B93F021C65A01A8F7A4360"
Last-Modified: Thu, 16 Mar 2023 07:31:35 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9142938679064989336
x-oss-storage-class: Standard
Content-MD5: +/3Me0C5PwIcZaAaj3pDYA==
x-oss-server-time: 3
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash ea58056040025316009ec8a48505f918
9af2d8e0bcdf47ec4167618be1bbb64def85f3ca
c7b545f9d1d1a718c48a0c74445bcdb2e8cbdea590f82b5deffccc2a9e6235cc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Jun 2023 08:42:17 GMT
Expires: Wed, 14 Jun 2023 08:42:16 GMT
Etag: "9af2d8e0bcdf47ec4167618be1bbb64def85f3ca"
Cache-Control: max-age=423626,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d2513ec8fac0-OSL
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash 0a9b5b0e0a813164ba76188a5b003006
60ad297f87615d2ad4cc23ebe9968057ff8ec984
7b8a4bbf29c2e9f67063845b1d7e5d42dc4f1f2bf39f4af27345d6ecb19d7db1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Jun 2023 23:31:17 GMT
Expires: Mon, 12 Jun 2023 23:31:16 GMT
Etag: "60ad297f87615d2ad4cc23ebe9968057ff8ec984"
Cache-Control: max-age=304166,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d2529fbafac0-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 1da8dc2935032ad2176aa31b50cca8ca
0f51c1f3eef2ccd5f883b8232182a8fd4ae6f89c
ee0af8ccc7a78fa6af13a933654d0b5ea5726365f9682ca27bb00eb75912f87a
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 13 Jun 2023 09:44:33 GMT
ETag: "0f51c1f3eef2ccd5f883b8232182a8fd4ae6f89c"
Last-Modified: Fri, 09 Jun 2023 09:44:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d48d253689cb4f9-OSL
shouptt.cn/960x60-3.gif
218.66.171.247200 OK 624 kB IP 218.66.171.247:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerLet's Encrypt
Subjectshouptt.cn
Fingerprint19:63:93:B7:C6:DE:2E:8B:E5:8D:88:B5:D5:23:29:BE:76:43:53:1C
ValidityTue, 30 May 2023 08:26:29 GMT - Mon, 28 Aug 2023 08:26:28 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 624 kB (624239 bytes)
Hash 0c2b3fdb8fe3d7d704f0cbc849a30108
d55ddccd9418fba968679a15b5a68fc88d5595e8
1cb854c08b3ea3a6f921f05d9c80a65377184ea5e8ac97b1389fc4bf75c2ed13
GET /960x60-3.gif HTTP/1.1
Host: shouptt.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NgxFence
date: Fri, 09 Jun 2023 10:51:48 GMT
content-type: image/gif
content-length: 624239
last-modified: Sun, 16 Apr 2023 07:11:46 GMT
x-rgw-object-type: Normal
etag: "0c2b3fdb8fe3d7d704f0cbc849a30108"
x-amz-request-id: tx000000000000000084a4a-006476d9c0-3dcc3-default
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: *
access-control-allow-headers: *
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
static.qwahk.com/960x60.gif
154.39.80.127 187 kB URL static.qwahk.com/960x60.gif
IP 154.39.80.127:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 187 kB (186717 bytes)
Hash d5c7abafee220d36ad4c23f76d8d428c
31825dedcd230ec6c31b3654c89e3cd35124d327
c25d50eea7fe6b832b3b5a1b3735f5cd9cdd3feb917ca24e9ac82c83bc7ad8b2
GET /960x60.gif HTTP/1.1
Host: static.qwahk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Methods: *
Access-Control-Allow-Orign: *
Content-Length: 186717
Content-Type: image/gif;charset=UTF-8
Date: Thu, 27 Apr 2023 06:30:17 GMT
ETag: "1686306382"
Last-Modified: Fri, 09 Jun 2023 10:26:22 GMT
Server: PWS/8.3.1.0.8
Via: 1.1 dianxun232:2 (W), 1.1 PSmgshxSJC1cd36:13 (W)
X-Cache: HIT, server, memory
X-Px: ms PSmgshxSJC1cd36SJC,ms dianxun232000(origin)
X-Reqid: 2019214167228180202304271430178SIVBGrYsampled
X-Ws-Request-Id: 644a1679_PSmgshxSJC1cd36_4616-20202
img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg
47.246.44.252 2.7 kB URL img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg
IP 47.246.44.252:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type ISO Media, AVIF Image\012- data
Hash 0c56af387054efc8e7d36693bf57fdc1
a3c43f4c457ade57a6eefefe922f3c85a505a055
c694944ef8ff768c5fa07282f8df5727a531342e625416cfe0797139f8b07359
GET /imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg HTTP/1.1
Host: img.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: image/avif
content-length: 2725
date: Mon, 05 Jun 2023 03:29:24 GMT
last-modified: Sat, 03 Jun 2023 09:51:18 GMT
picasso-ret-code: SUCCESS
picasso-cache-info: HIT
request-time: 0.068
traceid: 2ff6329816859357642607574e
cache-control: max-age=31536000
ali-swift-global-savetime: 1685935764
via: cache39.l2us1[0,0,200-0,H], cache28.l2us1[0,0], cache1.se1[0,0,200-0,H], cache4.se1[2,0]
access-control-allow-origin: *
age: 372146
x-cache: HIT TCP_MEM_HIT dirn:11:114354436
x-swift-savetime: Tue, 06 Jun 2023 02:55:28 GMT
x-swift-cachetime: 31451636
s-rt: 2
timing-allow-origin: *
eagleid: 2ff62c9816863079101004173e
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash 8e5e8d129204dfb8c323cd524ea4470f
13cde069ee6bdf385ea441e8a57e9a8c460f9102
7ca339e7e397c83bbda39ae89b78679b80712fb583903d134ba7f2b8709d8e5e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Jun 2023 00:15:26 GMT
Expires: Tue, 13 Jun 2023 00:15:25 GMT
Etag: "13cde069ee6bdf385ea441e8a57e9a8c460f9102"
Cache-Control: max-age=306814,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d2552b10fac0-OSL
pic1.semaobf1.com/20220510/9B8203B7022BBE01/9B8203B7022BBE01.jpg
109.122.211.24 31 kB URL pic1.semaobf1.com/20220510/9B8203B7022BBE01/9B8203B7022BBE01.jpg
IP 109.122.211.24:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3\012- data
Hash 267de01f49722921fed22a5d40daae73
5fc7839a184beecbdd061317370b079cad65e4f1
b0e7b4cf7eb05e6e105b22c7508f130872e17376265492b428eb6cce65efa9b1
GET /20220510/9B8203B7022BBE01/9B8203B7022BBE01.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: image/jpeg
Content-Length: 30752
Last-Modified: Wed, 07 Sep 2022 14:18:12 GMT
Connection: keep-alive
ETag: "6318a824-7820"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
openai-75050.gzc.vod.tencent-cloud.com/openaiassets_845336ca80754d6c0cc00307d88520d1.gif
43.156.255.174 1.1 kB URL openai-75050.gzc.vod.tencent-cloud.com/openaiassets_845336ca80754d6c0cc00307d88520d1.gif
IP 43.156.255.174:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 4 x 4\012- data
Hash 845336ca80754d6c0cc00307d88520d1
2fba01f9b116d45af426591113289a532f0cb931
6723dd61debb18f765a49a7ea34875b8144c4eabed0892bfc1d142cccf3c0a7a
GET /openaiassets_845336ca80754d6c0cc00307d88520d1.gif HTTP/1.1
Host: openai-75050.gzc.vod.tencent-cloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: NWSs
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: image/gif
Content-Length: 1103
Connection: keep-alive
Ip: 0.0.0.0
x-cos-storage-class: STANDARD_IA
x-cos-hash-crc64ecma: 2811848431419591179
Content-Disposition: attachment; filename*="UTF-8''openaiassets_845336ca80754d6c0cc00307d88520d1.gif"
ETag: "2fba01f9b116d45af426591113289a532f0cb931"
x-cos-object-type: normal
Accept-Ranges: bytes
Last-Modified: Wed, 10 May 2023 11:42:58 GMT
X-NWS-LOG-UUID: f7fb8104-c04b-411f-97e5-52995d9fd263
88885aaa.com/9afd3688393245e4ab8c8fb708e9e874.gif
103.170.15.96 739 kB URL 88885aaa.com/9afd3688393245e4ab8c8fb708e9e874.gif
IP 103.170.15.96:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 739 kB (738702 bytes)
Hash a8601033be5a80806bf825cb781b4954
b622626b2bd8550f9631f49258938c53ac30597a
87bbcc2c1cd8bae1e8f3cf8fe66f7ed5cd724ed7afcd4c841919e793871186c7
GET /9afd3688393245e4ab8c8fb708e9e874.gif HTTP/1.1
Host: 88885aaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "64310ca1-b458e"
Date: Sat, 03 Jun 2023 11:49:55 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sat, 08 Apr 2023 06:41:37 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-26
Content-Length: 738702
pic1.semaobf1.com/20220510/EAA4980978DBB777/EAA4980978DBB777.jpg
109.122.211.24 82 kB URL pic1.semaobf1.com/20220510/EAA4980978DBB777/EAA4980978DBB777.jpg
IP 109.122.211.24:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3\012- data
Hash 67e5e63e0b43fdf986cab13b0896ae70
1882dbd04c8bf320b2994dc717d08bea837c79d2
4ff492a313584386260cafb60fed880fecf448c3df6af7d02e4216db285828c3
GET /20220510/EAA4980978DBB777/EAA4980978DBB777.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: image/jpeg
Content-Length: 82240
Last-Modified: Wed, 07 Sep 2022 13:20:16 GMT
Connection: keep-alive
ETag: "63189a90-14140"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220510/3DCCC607AC8C7967/3DCCC607AC8C7967.jpg
109.122.211.24200 OK 79 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/3DCCC607AC8C7967/3DCCC607AC8C7967.jpg
IP 109.122.211.24:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3\012- data
Hash 606716101ef713cfa36aa34b875f8f6d
95a59018a62e40c11b2ae5ff7ac6859c254d8b56
9ec5b093c73616b62ce801536b55a37ccf704e761ae85cfefd14fdd86879de84
GET /20220510/3DCCC607AC8C7967/3DCCC607AC8C7967.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: image/jpeg
Content-Length: 78926
Last-Modified: Wed, 07 Sep 2022 13:01:28 GMT
Connection: keep-alive
ETag: "63189628-1344e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
s2.loli.net/2023/05/31/bdfwy2PVloiNWqC.jpg
172.67.69.40 17 kB URL s2.loli.net/2023/05/31/bdfwy2PVloiNWqC.jpg
IP 172.67.69.40:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 336x221, components 3\012- data
Hash bf724c2b3ed499f956945bf840f46c4a
544261f064a723adf025102eda79367d71bca08e
0e4ab9ea4554a1e83571f4851b38904ac8caaa93b8d1cddb10f7c79346d60ce8
GET /2023/05/31/bdfwy2PVloiNWqC.jpg HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:50 GMT
content-type: image/jpeg
content-length: 16836
last-modified: Wed, 31 May 2023 11:30:20 GMT
etag: "64772fcc-41c4"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2FGhXhWrcAeiqSUe%2FA%2BYTUbWnceKkGhlfqraC3F%2BaqhHqOtr%2Ft9Jn13pbJxP2JXRZ7MTdubSWqUv4%2BWE1RTN0FU3Q1lYLCDT00i1ln8LJdyxQjokfhFthGhXYpFH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d48d2587e0ab503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pic1.semaobf1.com/20220510/64879423DD71A5D9/64879423DD71A5D9.jpg
109.122.211.24 50 kB URL pic1.semaobf1.com/20220510/64879423DD71A5D9/64879423DD71A5D9.jpg
IP 109.122.211.24:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3\012- data
Hash 5eeddb288a01fb307b23a581f61d0c99
9ac5eb5131ef7eee543d80b557ad76765201eb26
09511a02da983b0f9f47b16dbc3a5adc36ea0f9fa8689acf263f58c2db6d858f
GET /20220510/64879423DD71A5D9/64879423DD71A5D9.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: image/jpeg
Content-Length: 50438
Last-Modified: Wed, 07 Sep 2022 13:00:28 GMT
Connection: keep-alive
ETag: "631895ec-c506"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
s2.loli.net/2023/05/31/TasOeNKw3Pd4kpq.jpg
172.67.69.40 36 kB URL s2.loli.net/2023/05/31/TasOeNKw3Pd4kpq.jpg
IP 172.67.69.40:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 602x401, components 3\012- data
Hash a06f7570d766e103bd6b7a2e8f7e282d
7743d4a99e2a9d31087cf0ac7ea6e24b8ea02d48
fc760678ae416445a237f11ea518c27e7836f7a4c0870ae8776b3ad3004b706a
GET /2023/05/31/TasOeNKw3Pd4kpq.jpg HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:50 GMT
content-type: image/jpeg
content-length: 36326
last-modified: Wed, 31 May 2023 11:03:25 GMT
etag: "6477297d-8de6"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mXZtwhn%2FWWPuvYzCwNCr4ry%2FvwyyYlVDuzUhxHLbDFcXpWcEbKGF4JntOzn1L%2BW%2F80sX654%2FEEDqfOobyg3PHAYIuDKsFFfP5QBKG%2BNgJYumJmkEXMbohgHjdIPF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d48d258ae58b503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
sycdn.pic-726-baidu.com/images/2023/06/03/guochan11629.jpg
172.67.25.105200 OK 25 kB URL GET HTTP/2 sycdn.pic-726-baidu.com/images/2023/06/03/guochan11629.jpg
IP 172.67.25.105:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint42:43:94:40:DA:A7:6A:08:47:F1:8F:EF:01:A2:7E:C1:C7:7C:E1:0E
ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x450, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e9060a4a7c75c5a82bf75f8f4171bee2
6a313c24acb383d2d1f722b73c4ceeaf0b42a6e0
f315a107c709b89cecb8181e7f974948333a338e440ce93946e27fe7180812dc
GET /images/2023/06/03/guochan11629.jpg HTTP/1.1
Host: sycdn.pic-726-baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:50 GMT
content-type: image/webp
content-length: 24748
access-control-allow-origin: *
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=54908
content-disposition: inline; filename="guochan11629.webp"
etag: "64767b9b-d67c"
expires: Mon, 03 Jul 2023 20:35:57 GMT
last-modified: Tue, 30 May 2023 22:41:31 GMT
strict-transport-security: max-age=31536000
vary: Accept
access-control-allow-credentials: : true
cf-cache-status: HIT
age: 483353
accept-ranges: bytes
server: cloudflare
cf-ray: 7d48d25a4b36b509-OSL
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 87dbbed0bc4d9e5bee3b8b8d46604e6f
3b4785d81de307f781507cd7758ec2869bfe893f
85a36d53cc99e1b75a2a0759db20c7798f9253629b4fecf4bad7b6dad763782a
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 07:04:35 GMT
ETag: "3b4785d81de307f781507cd7758ec2869bfe893f"
Last-Modified: Fri, 09 Jun 2023 07:04:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3155
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d48d25a6aebb4f3-OSL
pic1.semaobf1.com/20220510/3BDED47BB611F497/3BDED47BB611F497.jpg
109.122.211.24200 OK 30 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/3BDED47BB611F497/3BDED47BB611F497.jpg
IP 109.122.211.24:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3\012- data
Hash 7654720c06c07c0f6395539bb537cdf4
264ef4d82811eb5835d25703552446054d65bf3c
1853f55350517ca37ed9e1b43ff2be383c4c0385f37ce74839dc410208d8331a
GET /20220510/3BDED47BB611F497/3BDED47BB611F497.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: image/jpeg
Content-Length: 30047
Last-Modified: Wed, 07 Sep 2022 14:22:50 GMT
Connection: keep-alive
ETag: "6318a93a-755f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220525/50B2C1F4F4C88632/50B2C1F4F4C88632.jpg
109.122.211.24 10 kB URL pic1.semaobf1.com/20220525/50B2C1F4F4C88632/50B2C1F4F4C88632.jpg
IP 109.122.211.24:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1e6fc42c467e1db4771ddb1ff1bd270d
caf162926ad9da9ed5ab07424f3d74e15c809bdb
05316b71454c1937a0a4071e9a00c183b39f8991020706a9f3d77cc2a878030d
GET /20220525/50B2C1F4F4C88632/50B2C1F4F4C88632.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: image/jpeg
Content-Length: 9997
Last-Modified: Wed, 07 Sep 2022 12:52:42 GMT
Connection: keep-alive
ETag: "6318941a-270d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.trust-provider.cn/
47.246.44.205 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 77965e9b0b62c77b4da801a8d75767be
6d53fa2bfa368afde8deeae7d4350a0b53f35530
df18bb5dafeaae81f13941261396964dc01016445a6ed21246bdd50a6fd0d58c
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Fri, 09 Jun 2023 10:51:50 GMT
last-modified: Thu, 08 Jun 2023 02:25:11 GMT
expires: Thu, 15 Jun 2023 02:25:10 GMT
etag: "6d53fa2bfa368afde8deeae7d4350a0b53f35530"
cache-control: max-age=595905,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7d48d25b0dd03a6a-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1686307910
via: cache4.l2de2[39,39,304-0,M], cache7.l2de2[40,0], cache7.se1[61,60,200-0,H], cache3.se1[63,0], cache5.se1[64,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:5:39648524
x-swift-savetime: Fri, 09 Jun 2023 10:51:50 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9916863079108435584e, 2ff62c9916863079108435584e
www.tupku.top/lm/031815-80.gif
188.114.97.1 1.6 MB URL www.tupku.top/lm/031815-80.gif
IP 188.114.97.1:0
File type GIF image data, version 89a, 500 x 281\012- data
Size 1.6 MB (1626999 bytes)
Hash 17244f3a8b60a0f7b291f5621c873713
c523f5d5b60d2eabc9084e9ba5803647ac08c2cd
4aed8c090aa7bff3de4c028efced6a87dd7645bc15d265cdddf106f3f5dd9435
GET /lm/031815-80.gif HTTP/1.1
Host: www.tupku.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:50 GMT
content-type: image/gif
content-length: 1626999
last-modified: Thu, 07 Jul 2022 15:13:11 GMT
etag: "62c6f807-18d377"
expires: Sun, 02 Jul 2023 03:04:10 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 632851
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NiL4VaCqAuMW61GZ0kepq1rliaSoziywsPO2gaQWKQ%2BB3foQjTKewKBHt9tBfWYH75vjC9clBiAo9x8mlEc2pYRNXSHBVs1tKCt5HG46YaOQGQ2syFS3W3%2BJs1Yrh3yg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d25a5b3c0b49-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pic1.semaobf1.com/20220510/597920888C9F9C6C/597920888C9F9C6C.jpg
109.122.211.24200 OK 76 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/597920888C9F9C6C/597920888C9F9C6C.jpg
IP 109.122.211.24:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3\012- data
Hash bb4adc3dfb809949bb798070c46156f3
0fb171d719af164955cf359dcf90f8e7c48259b7
c367e60ae0cca1cbf4f4b284fc478fb6a1df981615c887c61f919258caa9c3b7
GET /20220510/597920888C9F9C6C/597920888C9F9C6C.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: image/jpeg
Content-Length: 76194
Last-Modified: Wed, 07 Sep 2022 13:01:17 GMT
Connection: keep-alive
ETag: "6318961d-129a2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220510/B5C34EAF4F39C248/B5C34EAF4F39C248.jpg
109.122.211.24 78 kB URL pic1.semaobf1.com/20220510/B5C34EAF4F39C248/B5C34EAF4F39C248.jpg
IP 109.122.211.24:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3\012- data
Hash 046ad49ec4165a5f29727369f4b667f3
0ab508b3c2e77766f4c471df4cfc6c3797b9a797
b190fe1d6dccca16cf7fe257e0964eec89f2c8c77eaa8ef5357dfad4925f6fac
GET /20220510/B5C34EAF4F39C248/B5C34EAF4F39C248.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: image/jpeg
Content-Length: 77500
Last-Modified: Wed, 07 Sep 2022 12:52:44 GMT
Connection: keep-alive
ETag: "6318941c-12ebc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
lbfm.lbpictupian.com/upload/vod/2023/06/vu1pfi3wqrc.jpg
104.22.12.214200 OK 7.9 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/vu1pfi3wqrc.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a74f94b43750a2483f32565832c8f784
72a7757b7a803ffeb69918b03a0b4bc19b368217
8ad6d1d76c8fbe08416cdcdfb63980baec918bce74a09b378b0eb8ba6def88ba
GET /upload/vod/2023/06/vu1pfi3wqrc.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:50 GMT
content-type: image/webp
content-length: 7886
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9000
content-disposition: inline; filename="vu1pfi3wqrc.webp"
etag: "647b49ac-2328"
last-modified: Sat, 03 Jun 2023 14:09:48 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d48d2598968b50c-OSL
X-Firefox-Spdy: h2
www.haoniuyingshi9780.top/template/1/static/fonts/font_593233_jsu8tlct5shpk3xr.woff
172.67.186.106 13 kB URL www.haoniuyingshi9780.top/template/1/static/fonts/font_593233_jsu8tlct5shpk3xr.woff
IP 172.67.186.106:0
File type Web Open Font Format, TrueType, length 13408, version 1.0\012- data
Hash 99af6debcdaba3e7ffe01b4c3cbccacb
4efda64b06cd7c294f6214623bcb634f3def3bd1
1106aebd6819da7203324abc443186658c8f54180a460ccc5b83553c5ce34f72
GET /template/1/static/fonts/font_593233_jsu8tlct5shpk3xr.woff HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/template/1/static/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: font/woff
content-length: 13408
last-modified: Sat, 13 Nov 2021 12:13:58 GMT
etag: "618fac06-3460"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fSDMiCkNhKH7Z1PDZuLTY4n07cIDozv9%2Fn39RsJLRxlw3NGQGdr2EuuPYMZprEvWxTB0CCENLteu3cEWOh8bf2y6RJOEiNRxmoU6uS1uoq%2FjJeHplD3KLagS3KWOIuKpAB%2BsxQKZISQY9JZP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d259fd780b3d-OSL
alt-svc: h3=":443"; ma=86400
pic1.semaobf1.com/20220525/E9373E849BE60F2A/E9373E849BE60F2A.jpg
109.122.211.24200 OK 7.5 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220525/E9373E849BE60F2A/E9373E849BE60F2A.jpg
IP 109.122.211.24:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8fdaca518e2f53172577707a94794fde
751744c8f856141dd8c5b6211d7f08b0210d3927
34cbd615cd90f0af5c411d2755d82d5d48c310df7c4a22d872ac617a6d262c52
GET /20220525/E9373E849BE60F2A/E9373E849BE60F2A.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:50 GMT
Content-Type: image/jpeg
Content-Length: 7537
Last-Modified: Wed, 07 Sep 2022 12:57:39 GMT
Connection: keep-alive
ETag: "63189543-1d71"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
lbfm.lbpictupian.com/upload/vod/2023/05/ybgfcxo5xsy.jpg
104.22.12.214200 OK 5.3 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/05/ybgfcxo5xsy.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 57c4e1a04c7cb373651ade13eeac6d81
3847857e31647110716d4caee6806a17348ba3c8
fdfb0cdd5b9cd3a2fd724e8f86d6cf4227a2045e75a4e1527e946cb2ac850fb0
GET /upload/vod/2023/05/ybgfcxo5xsy.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:50 GMT
content-type: image/webp
content-length: 5302
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6447
content-disposition: inline; filename="ybgfcxo5xsy.webp"
etag: "64635b33-192f"
last-modified: Tue, 16 May 2023 10:30:11 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d48d259a994b50c-OSL
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 87dbbed0bc4d9e5bee3b8b8d46604e6f
3b4785d81de307f781507cd7758ec2869bfe893f
85a36d53cc99e1b75a2a0759db20c7798f9253629b4fecf4bad7b6dad763782a
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 07:04:35 GMT
ETag: "3b4785d81de307f781507cd7758ec2869bfe893f"
Last-Modified: Fri, 09 Jun 2023 07:04:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3156
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d48d25c4dadb4f3-OSL
lbfm.lbpictupian.com/upload/vod/2023/05/lxsqit3xfpk.jpg
104.22.12.214 10 kB URL lbfm.lbpictupian.com/upload/vod/2023/05/lxsqit3xfpk.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 611d1979d8225a8d3f4ba65b3bc025d1
3f24700bfdcb8e1165d76d50f12eb4eae2932726
4d3531e3f9a9b44ad22d8884b666d4dbc5c7699a59d9ce09d8d46044efec7216
GET /upload/vod/2023/05/lxsqit3xfpk.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/webp
content-length: 10052
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10627
content-disposition: inline; filename="lxsqit3xfpk.webp"
etag: "6465e06f-2983"
last-modified: Thu, 18 May 2023 08:23:11 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d48d2599982b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/05/kkanz00ou3m.jpg
104.22.12.214 7.4 kB URL lbfm.lbpictupian.com/upload/vod/2023/05/kkanz00ou3m.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fb6848d5d6b73751e0e7bb86e27d9857
7daf493e4748f892deff7c9ca0b4168a1be5ac18
3c575637e416339cbe8b42d93fae05dc91a0d03f4eca5d2852e32653d91cd8df
GET /upload/vod/2023/05/kkanz00ou3m.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/webp
content-length: 7384
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8658
content-disposition: inline; filename="kkanz00ou3m.webp"
etag: "6465ede6-21d2"
last-modified: Thu, 18 May 2023 09:20:38 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d48d259997db50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/05/pmt2rb5gksa.jpg
104.22.12.214 6.7 kB URL lbfm.lbpictupian.com/upload/vod/2023/05/pmt2rb5gksa.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 24616638c9cfe31426703b18a6b99419
bff4816e68f0e5901211dfb202e276c9af44d019
0f8954b9c74a3420b36c6d41a9f3bbdad580762e15b506ea15084ac0b6ba8f89
GET /upload/vod/2023/05/pmt2rb5gksa.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/webp
content-length: 6694
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8795
content-disposition: inline; filename="pmt2rb5gksa.webp"
etag: "64524ac0-225b"
last-modified: Wed, 03 May 2023 11:51:28 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d48d259b9adb50c-OSL
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 9e10541cf779d784732725309a6780b0
ab09fcd20420e1b4d2865e601f2ec438f9b5b375
5429a10bd8d09b3c0187caf75c4f2f550555e0573c056f3fee4ad878aef665d0
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 13 Jun 2023 07:42:08 GMT
ETag: "ab09fcd20420e1b4d2865e601f2ec438f9b5b375"
Last-Modified: Fri, 09 Jun 2023 07:42:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1061
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d48d25c7de2b4f3-OSL
aa558866aa.com/29b6e96db6a043d29beb9cd3e5757c0a.gif
103.170.15.91 459 kB URL aa558866aa.com/29b6e96db6a043d29beb9cd3e5757c0a.gif
IP 103.170.15.91:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 459 kB (458890 bytes)
Hash 0d9ad28c5daf9529a41a915bc83b15e3
8d19d6430caf76c6008672013af3021cb1c4288a
646a48b96f107a014723f4110c31191a2f456b89b2e0e9b148b4e74c6a1dd7e6
GET /29b6e96db6a043d29beb9cd3e5757c0a.gif HTTP/1.1
Host: aa558866aa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "64427c7c-7008a"
Date: Wed, 07 Jun 2023 09:03:20 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 21 Apr 2023 12:07:24 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-21
Content-Length: 458890
lbfm.lbpictupian.com/upload/vod/2023/05/n021mxg2kli.jpg
104.22.12.214200 OK 12 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/05/n021mxg2kli.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash febe97dc64e479ad50d2667c61f20015
1bcb4a2c81539de313a93eb9e26d25d69c012ea2
c6a7d164775b5975c1ae8e88580403b317425de04448fad72a3c2b47df15abf5
GET /upload/vod/2023/05/n021mxg2kli.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 11869
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12474, status=webp_bigger
etag: "645b1d49-30ba"
last-modified: Wed, 10 May 2023 04:27:53 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d259a99bb50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/04/w1l44e5sygv.jpg
104.22.12.214200 OK 7.1 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/04/w1l44e5sygv.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 190b574964eb4dfad9555081a2a01d38
cf324b691dbf64e3359e30c915a5fe7a54c540ed
4b3def84d4877de30a4faf815a060bd1c2c363dabc8fbb7202207cb8777efda6
GET /upload/vod/2023/04/w1l44e5sygv.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/webp
content-length: 7092
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8225
content-disposition: inline; filename="w1l44e5sygv.webp"
etag: "643139ac-2021"
last-modified: Sat, 08 Apr 2023 09:53:48 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d48d259fa44b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/04/4z1njvh0wz4.jpg
104.22.12.214200 OK 7.5 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/04/4z1njvh0wz4.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 24cc90227a27343cea9c60338354c72f
f7292f3cd4e0d4a9e95f55b8a0d12e70b174fb91
9a070fdd0895e0847ccad2ae73c2befced01b06f867e98f17dc6ebd9155698fe
GET /upload/vod/2023/04/4z1njvh0wz4.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/webp
content-length: 7524
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8586
content-disposition: inline; filename="4z1njvh0wz4.webp"
etag: "643bd8c5-218a"
last-modified: Sun, 16 Apr 2023 11:15:17 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d48d259ea22b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/gkg31je4wik.jpg
104.22.12.214 9.5 kB URL lbfm.lbpictupian.com/upload/vod/2023/06/gkg31je4wik.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d30ff91676c6482fd87172fa102a215f
f88b7065e27636f2a96c80142c395c7ee3dfea37
5f668a38eb6dbd3d8316cd8b2050c4c473dd48c0edb6f0f5a1f54b4187c0701d
GET /upload/vod/2023/06/gkg31je4wik.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 9538
last-modified: Fri, 09 Jun 2023 10:06:42 GMT
etag: "6482f9b2-2542"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d2597954b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/jt5z1kp5h3b.jpg
104.22.12.214 8.9 kB URL lbfm.lbpictupian.com/upload/vod/2023/06/jt5z1kp5h3b.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 633b5246ac6bb8365a35548d7ecdd4e0
0e81625ef3faf07c50319f1a6362d1e171a68c9a
1d09a343a5529234e56029fe8eb4e42adbdbeb0612a48bbe345378803aad2911
GET /upload/vod/2023/06/jt5z1kp5h3b.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 8929
last-modified: Fri, 09 Jun 2023 10:07:03 GMT
etag: "6482f9c7-22e1"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d259795ab50c-OSL
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 87dbbed0bc4d9e5bee3b8b8d46604e6f
3b4785d81de307f781507cd7758ec2869bfe893f
85a36d53cc99e1b75a2a0759db20c7798f9253629b4fecf4bad7b6dad763782a
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 07:04:35 GMT
ETag: "3b4785d81de307f781507cd7758ec2869bfe893f"
Last-Modified: Fri, 09 Jun 2023 07:04:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3156
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d48d25cbb35b524-OSL
lbfm.lbpictupian.com/upload/vod/2023/06/eztlii5fvof.jpg
104.22.12.214200 OK 12 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/eztlii5fvof.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6f57584c49a60914ce39fad25a79c9e9
95de41f87caa9cb71c83e8a6bf0b187217e13f47
8a1deb3de06121c2152f52aee44d6fc1b3b8cde1885807757d060e5488dde632
GET /upload/vod/2023/06/eztlii5fvof.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 11656
last-modified: Fri, 09 Jun 2023 10:06:27 GMT
etag: "6482f9a3-2d88"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d2597946b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/j4k5o52ycls.jpg
104.22.12.214200 OK 11 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/j4k5o52ycls.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8e063474a7a6f72c0f50835a9f20fa97
1453cd51e424ac76ec6da9e001a766a0bb39485c
342bfce624a4546ba973596469a1a9c6540858e125435db0a83b2ff6a29b01bd
GET /upload/vod/2023/06/j4k5o52ycls.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 10610
last-modified: Fri, 09 Jun 2023 10:06:14 GMT
etag: "6482f996-2972"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d2597939b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/eebou4wci42.jpg
104.22.12.214 8.4 kB URL lbfm.lbpictupian.com/upload/vod/2023/06/eebou4wci42.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 339d16bcd43300c9de827c2ef4cefb91
ef1efc51e7cece183c237fc2c803bfb58677c2c7
b737399278c2056f8d4945ab9229e547cc8e8456abf893af51a578895240ac87
GET /upload/vod/2023/06/eebou4wci42.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 8358
last-modified: Fri, 09 Jun 2023 10:06:34 GMT
etag: "6482f9aa-20a6"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d259794eb50c-OSL
X-Firefox-Spdy: h2
lxbd2.com/f1067f057f9f3415205bc5de44bd7d5b.gif
172.83.155.45 57 kB URL lxbd2.com/f1067f057f9f3415205bc5de44bd7d5b.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Hash 6a0178169521a422f15a823baccdf4ea
e6afa7d5f446474cf5a6a84b397e68b4429a8bf5
aca290990353c483218ff9c73e3bf6015bb3df13186d9444a28e81de26cfd976
GET /f1067f057f9f3415205bc5de44bd7d5b.gif HTTP/1.1
Host: lxbd2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:50 GMT
content-type: image/gif
content-length: 57111
last-modified: Fri, 31 Mar 2023 06:50:28 GMT
etag: "642682b4-df17"
expires: Fri, 09 Jun 2023 22:51:50 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 148254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o81pSmUIO%2Fx93asJ47W8HPT0n%2Bkcbr%2BWT7oqnkCTbgIOapAp1HrxcxDjuf0EQWBPrMVnA0OvUKZ2wTPvXCrEqQT0E6ag8X0iggqmAs4B5oPmc%2FjvhwbcbsXwyML9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7d17158c0a4cc37b-SEA
alt-svc: h3=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/j5alttrordt.jpg
104.22.12.214 8.6 kB URL lbfm.lbpictupian.com/upload/vod/2023/06/j5alttrordt.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash faa6c60df3aee98c3f576eca3d4cc740
4d890ec8dfe0300996d74b78490f2fe78a77449c
68d221fe8ce2f55afc3fdd85a335d8151a9e38a747fcf60cbf87034f223b19b4
GET /upload/vod/2023/06/j5alttrordt.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 8617
last-modified: Fri, 09 Jun 2023 10:06:38 GMT
etag: "6482f9ae-21a9"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d2597953b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/4nseys4br0o.jpg
104.22.12.214200 OK 7.5 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/4nseys4br0o.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f42501cc69c0001258dec97fc0090a3c
0063c0c99d691f1268d24ad798d6f9a953924608
35e4a4a6e37fe7f9bf43f18083a6379a223974526f2227467597c0f7f3e3c9fd
GET /upload/vod/2023/06/4nseys4br0o.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 7490
last-modified: Fri, 09 Jun 2023 10:06:58 GMT
etag: "6482f9c2-1d42"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d2597959b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/vmvcqjfhgez.jpg
104.22.12.214 11 kB URL lbfm.lbpictupian.com/upload/vod/2023/06/vmvcqjfhgez.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 401d74077b295301beb3ff5729474526
ebc28cbc4aaeb7c20a9b7ee355dfbb4a084481cf
22da9609e7962783a1284f2bac099d2adf8813c19b5dbc7e59e8c8ec245ed2d1
GET /upload/vod/2023/06/vmvcqjfhgez.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 10748
last-modified: Fri, 09 Jun 2023 10:06:45 GMT
etag: "6482f9b5-29fc"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d2597955b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/ymbrbizmnvh.jpg
104.22.12.214200 OK 9.5 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/ymbrbizmnvh.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b2737a060fc501efa80922887cb52f40
7ae2e8461c6f4da503c0537b75e148aa3d10de91
158d015a2b1957e60586a20738029b693f64f5d851fbd29e06629c738f254b6c
GET /upload/vod/2023/06/ymbrbizmnvh.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 9504
last-modified: Fri, 09 Jun 2023 10:06:53 GMT
etag: "6482f9bd-2520"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d2597956b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/y1ygtbrvmx0.jpg
104.22.12.214200 OK 8.7 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/y1ygtbrvmx0.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 0a22e7b4343d13a421104f0818c483e7
4881b2fbac7f820fe1015e8def841df147a97306
93a8247c72916e0da3745ce2e55b581b04408b83ec74ff6d93cffe575182112a
GET /upload/vod/2023/06/y1ygtbrvmx0.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 8702
last-modified: Fri, 09 Jun 2023 10:07:08 GMT
etag: "6482f9cc-21fe"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d259895fb50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/sp0b2vwlfnm.jpg
104.22.12.214 13 kB URL lbfm.lbpictupian.com/upload/vod/2023/06/sp0b2vwlfnm.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 70cdb5d1b63f78ef58926b2ba7f4e07d
9664bb37e5ddbc88f038c211bef84838c775949c
eb75ace22803568c31efe8e99fd41af0f233b511d38e10b8ed31522323511807
GET /upload/vod/2023/06/sp0b2vwlfnm.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 13045
last-modified: Fri, 09 Jun 2023 10:06:23 GMT
etag: "6482f99f-32f5"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d259d9f4b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/x1ztr5tadhe.jpg
104.22.12.214 13 kB URL lbfm.lbpictupian.com/upload/vod/2023/06/x1ztr5tadhe.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4fa191f0d786b20479ca28e3551e2970
dee285b4d5092c07be37b6823f056ff417e70bb7
1bed8212592967551c9141eaf71abd7f1d5bf9bc1d1639b412734365c600b60e
GET /upload/vod/2023/06/x1ztr5tadhe.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 12749
last-modified: Fri, 09 Jun 2023 10:06:18 GMT
etag: "6482f99a-31cd"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d259d9fcb50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/40nltfr2ejm.jpg
104.22.12.214 15 kB URL lbfm.lbpictupian.com/upload/vod/2023/06/40nltfr2ejm.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5815ab9d6576cd902fc45c96cb272e9b
1460e71b0c3f51f3263dcaaa5d24d88e157d9fca
5215095d2b32b5a9d04c3904f6328ed577bb3d7c4a7bf6f49a86e8a30db9486c
GET /upload/vod/2023/06/40nltfr2ejm.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 14925
last-modified: Fri, 09 Jun 2023 10:06:31 GMT
etag: "6482f9a7-3a4d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d2597949b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/heqkmnmke5l.jpg
104.22.12.214200 OK 11 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/heqkmnmke5l.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 09e14a0815af3c41b06e4bf81b5e3409
7a6d28b2ddf14480b980cef616aa4ee46c19427b
e0acd2610be45a4cea2257fcf113eb608581e0c12d12c321979cf9cb128fffa1
GET /upload/vod/2023/06/heqkmnmke5l.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 11314
last-modified: Fri, 09 Jun 2023 10:06:04 GMT
etag: "6482f98c-2c32"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d259fa35b50c-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/06/xsligfjqjr1.jpg
104.22.12.214 13 kB URL lbfm.lbpictupian.com/upload/vod/2023/06/xsligfjqjr1.jpg
IP 104.22.12.214:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8865b181f5c499dd797fe8d379c34dbf
10f71d209ea3e979c66a79c9e3f1d55e0fe93ab9
a6aafb3ed010bae4356b222fef26e54ac5fee34f56e7eceed3e44a19bcefbe1a
GET /upload/vod/2023/06/xsligfjqjr1.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 13054
last-modified: Fri, 09 Jun 2023 10:06:08 GMT
etag: "6482f990-32fe"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d259fa3eb50c-OSL
X-Firefox-Spdy: h2
pic1.semaobf1.com/20220525/44E55E21C2ED6282/44E55E21C2ED6282.jpg
109.122.211.24 12 kB URL pic1.semaobf1.com/20220525/44E55E21C2ED6282/44E55E21C2ED6282.jpg
IP 109.122.211.24:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f2446300bb102be416dbc9243e7f1dca
d20ffb0c62a3c014a306a427858cdaf886492cb9
6ed086ca26a1a5b40a07ec7fa51415e266c2e60c214748ae41d237d712b185ba
GET /20220525/44E55E21C2ED6282/44E55E21C2ED6282.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: image/jpeg
Content-Length: 11762
Last-Modified: Wed, 07 Sep 2022 12:52:57 GMT
Connection: keep-alive
ETag: "63189429-2df2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220525/2F5AC7756EE242C2/2F5AC7756EE242C2.jpg
109.122.211.24 8.6 kB URL pic1.semaobf1.com/20220525/2F5AC7756EE242C2/2F5AC7756EE242C2.jpg
IP 109.122.211.24:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6dba1502db5871eecc4b278973a009a9
1315ce96dae244433bf5673e9dd078a46491ae16
f1a1cef03bdfa651bb699dafbf3fb40b1d64c7515eb869fd3aefd7317f58b685
GET /20220525/2F5AC7756EE242C2/2F5AC7756EE242C2.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: image/jpeg
Content-Length: 8589
Last-Modified: Wed, 07 Sep 2022 12:52:25 GMT
Connection: keep-alive
ETag: "63189409-218d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
lbfm.lbpictupian.com/upload/vod/2023/06/q5gsv5a0m2l.jpg
104.22.12.214200 OK 9.2 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/06/q5gsv5a0m2l.jpg
IP 104.22.12.214:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4b404c627739e00ae16def74df34a923
e23b37b5d3930e73316328fc6f459b4fd9d25a74
f42eeab88840f08d3330b8ff5d8549ef7ce9bfb245f49fa24c795b18fbe8ddb7
GET /upload/vod/2023/06/q5gsv5a0m2l.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/jpeg
content-length: 9174
last-modified: Fri, 09 Jun 2023 10:06:00 GMT
etag: "6482f988-23d6"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d48d259fa39b50c-OSL
X-Firefox-Spdy: h2
pic1.semaobf1.com/20220525/BA875B14017E8588/BA875B14017E8588.jpg
109.122.211.23 9.0 kB URL pic1.semaobf1.com/20220525/BA875B14017E8588/BA875B14017E8588.jpg
IP 109.122.211.23:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8954f56a55a5a3af58a671c24ca30cdd
e49c29e3b6ce3c8553e55b15f1ba8e0d55f638a2
91bc59cb7b12bf97a0e37f05ed5f6abecebe7d79466174ae1955922417922256
GET /20220525/BA875B14017E8588/BA875B14017E8588.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: image/jpeg
Content-Length: 9037
Last-Modified: Wed, 07 Sep 2022 12:54:50 GMT
Connection: keep-alive
ETag: "6318949a-234d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220510/CC691DDC4B7B150F/CC691DDC4B7B150F.jpg
109.122.211.24200 OK 78 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/CC691DDC4B7B150F/CC691DDC4B7B150F.jpg
IP 109.122.211.24:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3\012- data
Hash 9e7017613577a0c9b874868ae0bbf4d6
aa216f2611a4385ffea07e88a3788e6ea0296128
ed733fa9a033abe8f95c36692f2866c3570b4c9f7850ebcc04b6d639e3f2c6b3
GET /20220510/CC691DDC4B7B150F/CC691DDC4B7B150F.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: image/jpeg
Content-Length: 78357
Last-Modified: Wed, 07 Sep 2022 12:55:55 GMT
Connection: keep-alive
ETag: "631894db-13215"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220525/D4C6166FF5188309/D4C6166FF5188309.jpg
109.122.211.24 12 kB URL pic1.semaobf1.com/20220525/D4C6166FF5188309/D4C6166FF5188309.jpg
IP 109.122.211.24:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1dd18e4c5db96b5873dfd281491ddbfe
62e3a6d1047bcdd823f40b18ed17b3467f363585
f94be4ae7c50dd6d9aebb5902e3b0494895a56acbc648c3511a4d5b1b5de915f
GET /20220525/D4C6166FF5188309/D4C6166FF5188309.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: image/jpeg
Content-Length: 11794
Last-Modified: Wed, 07 Sep 2022 12:54:33 GMT
Connection: keep-alive
ETag: "63189489-2e12"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220510/678F3485EF10C6D2/678F3485EF10C6D2.jpg
109.122.211.24200 OK 76 kB URL GET HTTP/1.1 pic1.semaobf1.com/20220510/678F3485EF10C6D2/678F3485EF10C6D2.jpg
IP 109.122.211.24:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3\012- data
Hash bde62ad9a5a7e973b59ee12e84319584
9dcb37e15d578edee07bd8e197807319fe0f59e6
f9912fe172ddac319ce11eaf34e7235c71a6e2f102ee9b64e7af6eed1c0079ab
GET /20220510/678F3485EF10C6D2/678F3485EF10C6D2.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: image/jpeg
Content-Length: 76370
Last-Modified: Wed, 07 Sep 2022 12:55:04 GMT
Connection: keep-alive
ETag: "631894a8-12a52"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220510/D504CCE360AB7BC2/D504CCE360AB7BC2.jpg
109.122.211.23 78 kB URL pic1.semaobf1.com/20220510/D504CCE360AB7BC2/D504CCE360AB7BC2.jpg
IP 109.122.211.23:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 600x400, components 3\012- data
Hash d2b76d5ce38c4a70460e41123ad4ba6d
35684fc457d1b72246f906120208894dc1de09a7
20abac70bcb72efe14ef3878d1ca85a871a5f80860f33368c3e45b4f8c3d21d4
GET /20220510/D504CCE360AB7BC2/D504CCE360AB7BC2.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: image/jpeg
Content-Length: 78032
Last-Modified: Wed, 07 Sep 2022 13:01:18 GMT
Connection: keep-alive
ETag: "6318961e-130d0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ia.51.la/go1?id=21298467&rt=1686307909562&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%2594%25E6%259C%2588%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25BB%25BC%25E5%2590%2588%25E7%25BB%25BC%25E5%2590%2588%25E7%25BD%2591%25E7%25AB%2599%252C%25E4%25B9%2585%25E4%25B9%2585%25E5%258B%2589%25E8%25B4%25B9%25E6%2580%25A7%25E4%25BA%25A4%25E7%2589%2587%252C%25E4%25B9%2585%25E4%25B9%2585ll%25E8%25A7%2586%25E9%25A2%2591&ing=1&ekc=&sid=1686307909562&tt=%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%2594%25E6%259C%2588%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25BB%25BC%25E5%2590%2588%25E7%25BB%25BC%25E5%2590%2588%25E7%25BD%2591%25E7%25AB%2599%252C%25E4%25B9%2585%25E4%25B9%2585%25E5%258B%2589%25E8%25B4%25B9%25E6%2580%25A7%25E4%25BA%25A4%25E7%2589%2587%252C%25E4%25B9%2585%25E4%25B9%2585ll%25E8%25A7%2586%25E9%25A2%2591&kw=%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%2594%25E6%259C%2588%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25BB%25BC%25E5%2590%2588%25E7%25BB%25BC%25E5%2590%2588%25E7%25BD%2591%25E7%25AB%2599%252C%25E4%25B9%2585%25E4%25B9%2585%25E5%258B%2589%25E8%25B4%25B9%25E6%2580%25A7%25E4%25BA%25A4%25E7%2589%2587%252C%25E4%25B9%2585%25E4%25B9%2585ll%25E8%25A7%2586%25E9%25A2%2591&cu=https%253A%252F%252Fwww.haoniuyingshi9780.top%252F&pu=http%253A%252F%252Fwww.needtakehave.com%252F
42.236.73.38 0 B URL ia.51.la/go1?id=21298467&rt=1686307909562&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%2594%25E6%259C%2588%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25BB%25BC%25E5%2590%2588%25E7%25BB%25BC%25E5%2590%2588%25E7%25BD%2591%25E7%25AB%2599%252C%25E4%25B9%2585%25E4%25B9%2585%25E5%258B%2589%25E8%25B4%25B9%25E6%2580%25A7%25E4%25BA%25A4%25E7%2589%2587%252C%25E4%25B9%2585%25E4%25B9%2585ll%25E8%25A7%2586%25E9%25A2%2591&ing=1&ekc=&sid=1686307909562&tt=%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%2594%25E6%259C%2588%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25BB%25BC%25E5%2590%2588%25E7%25BB%25BC%25E5%2590%2588%25E7%25BD%2591%25E7%25AB%2599%252C%25E4%25B9%2585%25E4%25B9%2585%25E5%258B%2589%25E8%25B4%25B9%25E6%2580%25A7%25E4%25BA%25A4%25E7%2589%2587%252C%25E4%25B9%2585%25E4%25B9%2585ll%25E8%25A7%2586%25E9%25A2%2591&kw=%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%2594%25E6%259C%2588%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25BB%25BC%25E5%2590%2588%25E7%25BB%25BC%25E5%2590%2588%25E7%25BD%2591%25E7%25AB%2599%252C%25E4%25B9%2585%25E4%25B9%2585%25E5%258B%2589%25E8%25B4%25B9%25E6%2580%25A7%25E4%25BA%25A4%25E7%2589%2587%252C%25E4%25B9%2585%25E4%25B9%2585ll%25E8%25A7%2586%25E9%25A2%2591&cu=https%253A%252F%252Fwww.haoniuyingshi9780.top%252F&pu=http%253A%252F%252Fwww.needtakehave.com%252F
IP 42.236.73.38:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21298467&rt=1686307909562&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%2594%25E6%259C%2588%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25BB%25BC%25E5%2590%2588%25E7%25BB%25BC%25E5%2590%2588%25E7%25BD%2591%25E7%25AB%2599%252C%25E4%25B9%2585%25E4%25B9%2585%25E5%258B%2589%25E8%25B4%25B9%25E6%2580%25A7%25E4%25BA%25A4%25E7%2589%2587%252C%25E4%25B9%2585%25E4%25B9%2585ll%25E8%25A7%2586%25E9%25A2%2591&ing=1&ekc=&sid=1686307909562&tt=%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%2594%25E6%259C%2588%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25BB%25BC%25E5%2590%2588%25E7%25BB%25BC%25E5%2590%2588%25E7%25BD%2591%25E7%25AB%2599%252C%25E4%25B9%2585%25E4%25B9%2585%25E5%258B%2589%25E8%25B4%25B9%25E6%2580%25A7%25E4%25BA%25A4%25E7%2589%2587%252C%25E4%25B9%2585%25E4%25B9%2585ll%25E8%25A7%2586%25E9%25A2%2591&kw=%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%2594%25E6%259C%2588%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25BB%25BC%25E5%2590%2588%25E7%25BB%25BC%25E5%2590%2588%25E7%25BD%2591%25E7%25AB%2599%252C%25E4%25B9%2585%25E4%25B9%2585%25E5%258B%2589%25E8%25B4%25B9%25E6%2580%25A7%25E4%25BA%25A4%25E7%2589%2587%252C%25E4%25B9%2585%25E4%25B9%2585ll%25E8%25A7%2586%25E9%25A2%2591&cu=https%253A%252F%252Fwww.haoniuyingshi9780.top%252F&pu=http%253A%252F%252Fwww.needtakehave.com%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Content-Length: 0
Date: Fri, 09 Jun 2023 10:51:12 GMT
ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash dfed4bd35ff14cf82f0f5ba8da463eb8
771463040c6b4930eac7bcb28451d555a7b6e4c9
6a54cc5b38ed350ad735c741a100dfa298492027ca8a18956c33486e8817dd7a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Jun 2023 17:13:12 GMT
Expires: Wed, 14 Jun 2023 17:13:11 GMT
Etag: "771463040c6b4930eac7bcb28451d555a7b6e4c9"
Cache-Control: max-age=454279,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d25fdce1fac0-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 242a4e575462d3265ef38f7c2c31f880
114e35813e0cb1fb8801c162b1410f67727788b3
ee9f8cab185463bcb58a68307b3a1ce0460b525d07433bb40901c9f46a1404f3
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 08:13:25 GMT
ETag: "114e35813e0cb1fb8801c162b1410f67727788b3"
Last-Modified: Fri, 09 Jun 2023 08:13:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1421
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d48d261ce5fb4f3-OSL
kjimg10.360buyimg.com/ott/jfs/t1/96065/36/27822/335945/6380d2bdE11ab9724/63ce772bd832571a.gif
121.226.246.3200 OK 336 kB URL GET HTTP/2 kjimg10.360buyimg.com/ott/jfs/t1/96065/36/27822/335945/6380d2bdE11ab9724/63ce772bd832571a.gif
IP 121.226.246.3:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGlobalSign nv-sa
Subject*.jd.com
Fingerprint5A:48:DE:DD:DD:AC:15:DB:65:A5:0E:C3:10:7A:20:72:69:B2:BF:0A
ValidityTue, 18 Oct 2022 07:17:10 GMT - Sun, 19 Nov 2023 06:52:17 GMT
File type GIF image data, version 89a, 960 x 120\012- data
Size 336 kB (335945 bytes)
Hash a06fd13e48fb3e56ab6f4eae12348936
566f987d71d4bbe364a9f4fac9c023ea22a6db96
f5b462a221b9c085081817a50cfd0dfd07e72655b3d0c9939568d4b08ed93eb4
GET /ott/jfs/t1/96065/36/27822/335945/6380d2bdE11ab9724/63ce772bd832571a.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/gif
content-length: 335945
cache-control: max-age=15552000
expires: Sun, 03 Dec 2023 14:25:39 GMT
last-modified: Fri, 25 Nov 2022 14:35:41 GMT
age: 246372
via: http/1.1 ORI-CLOUD-HUZ-MIX-30 (jcs [cHs f ]), http/1.1 SQ-CT-1-MIX-23 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1686061539799-0-0-16-100-100;200;200-1686225654541-0-0-1-4-4;200-1686307911016-0-0-0-2-2
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash a1f4865e9936dd3b4627dbfc06db22e0
3a9f583a56186ce31e7056ca9f9f99c91525a8d3
1ed9fad6255abf2f8a1dd834a724443ce5525da4a186ea9c4abd802c5d2025be
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 08:43:10 GMT
ETag: "3a9f583a56186ce31e7056ca9f9f99c91525a8d3"
Last-Modified: Fri, 09 Jun 2023 08:43:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2265
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d48d2631b52b524-OSL
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash 7520a307d0ac37a954f2157c4b51e683
892ee7808f6184362f0b64c69d74410d4be59e55
598c41ddbc78e99a8384f41c868e64d7333e018fc3fcd07bd2944378c686466c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Jun 2023 05:47:25 GMT
Expires: Thu, 15 Jun 2023 05:47:24 GMT
Etag: "892ee7808f6184362f0b64c69d74410d4be59e55"
Cache-Control: max-age=499749,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d263380dfac0-OSL
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash 7520a307d0ac37a954f2157c4b51e683
892ee7808f6184362f0b64c69d74410d4be59e55
598c41ddbc78e99a8384f41c868e64d7333e018fc3fcd07bd2944378c686466c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Jun 2023 05:47:25 GMT
Expires: Thu, 15 Jun 2023 05:47:24 GMT
Etag: "892ee7808f6184362f0b64c69d74410d4be59e55"
Cache-Control: max-age=499749,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d2634c9a0afe-OSL
img12.360buyimg.com/jdsurvey/jfs/t1/115307/8/36306/533150/6456477aF6d5fe402/3103d4828a484bf1.gif
163.171.134.109200 OK 533 kB URL GET HTTP/2 img12.360buyimg.com/jdsurvey/jfs/t1/115307/8/36306/533150/6456477aF6d5fe402/3103d4828a484bf1.gif
IP 163.171.134.109:443
ASN #54994 QUANTILNETWORKS
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGlobalSign nv-sa
Subject*.jd.com
Fingerprint23:53:09:4B:9F:54:15:EF:B9:E1:44:6E:54:3C:25:BB:88:15:17:4F
ValidityWed, 19 Oct 2022 09:39:14 GMT - Sun, 19 Nov 2023 06:52:17 GMT
File type GIF image data, version 89a, 640 x 200\012- data
Size 533 kB (533150 bytes)
Hash bbbd377627943f924b0862a4c17a1c8a
997c7ab673b375689ea558f2e0794f4f705ad0ed
25ec74a55ea92ddbf33ea87be1b82679498a4387d88c5e7542ec08e42589d4a6
GET /jdsurvey/jfs/t1/115307/8/36306/533150/6456477aF6d5fe402/3103d4828a484bf1.gif HTTP/1.1
Host: img12.360buyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/gif
content-length: 533150
expires: Sat, 25 Nov 2023 05:10:43 GMT
server: nginx
cache-control: max-age=15552000
last-modified: Sat, 06 May 2023 12:26:34 GMT
via: http/1.1 ORI-CLOUD-HUZ-MIX-20 (jcs [cMsSfW]), http/1.1 AHwuhu-UNI-1-MIX-174 (jcs [cHs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1684614551234-0-0-17-76-76;200;200-1684614551235-0-0-0-125-125;200-1684989659531-0-0-0-4-4
age: 1
x-via: 1.1 dianxun232:5 (Cdn Cache Server V2.0), 1.1 PSdgflkfFRA1hb199:2 (Cdn Cache Server V2.0), 1.1 PS-ARN-016FX94:9 (Cdn Cache Server V2.0)
x-ws-request-id: 64830448_PS-ARN-01C8L93_38146-5873
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash 7520a307d0ac37a954f2157c4b51e683
892ee7808f6184362f0b64c69d74410d4be59e55
598c41ddbc78e99a8384f41c868e64d7333e018fc3fcd07bd2944378c686466c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Jun 2023 05:47:25 GMT
Expires: Thu, 15 Jun 2023 05:47:24 GMT
Etag: "892ee7808f6184362f0b64c69d74410d4be59e55"
Cache-Control: max-age=499784,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d2648e180b61-OSL
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash 7520a307d0ac37a954f2157c4b51e683
892ee7808f6184362f0b64c69d74410d4be59e55
598c41ddbc78e99a8384f41c868e64d7333e018fc3fcd07bd2944378c686466c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Jun 2023 05:47:25 GMT
Expires: Thu, 15 Jun 2023 05:47:24 GMT
Etag: "892ee7808f6184362f0b64c69d74410d4be59e55"
Cache-Control: max-age=499749,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d26478f4fac0-OSL
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash 7520a307d0ac37a954f2157c4b51e683
892ee7808f6184362f0b64c69d74410d4be59e55
598c41ddbc78e99a8384f41c868e64d7333e018fc3fcd07bd2944378c686466c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Jun 2023 05:47:25 GMT
Expires: Thu, 15 Jun 2023 05:47:24 GMT
Etag: "892ee7808f6184362f0b64c69d74410d4be59e55"
Cache-Control: max-age=500574,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d264adfd0afe-OSL
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash c1f33b36646ae145ed6062aba89ff830
8231e92567290146220cd4849095a1771aab4c12
9bdee348d1157efd7fbeada5bce402b72e23fece78c69eab760192616a265db1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Jun 2023 17:18:18 GMT
Expires: Wed, 14 Jun 2023 17:18:17 GMT
Etag: "8231e92567290146220cd4849095a1771aab4c12"
Cache-Control: max-age=454988,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d48d2656996fac0-OSL
ocsp.buypass.com/
23.36.76.200 1.7 kB IP 23.36.76.200:0
ASN #20940 Akamai International B.V.
Hash 8ae22d8c6c466f9d0d7c50bd50944b8e
7d42ba1fe50fa3644838fc2d8dd96dd228485ef1
19a50e5671b70ae6c78b55a200390776a6badd128ffe2d03399aaa5150748f94
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 35ce106a-cc95-4a0a-9634-84f2c0d36afb
Content-Length: 1701
Date: Fri, 09 Jun 2023 10:51:52 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686307912550_388254916_31079786_5179_473_0_0_-";dur=1
kjimg10.360buyimg.com/ott/jfs/t1/101524/9/17022/1296026/63819a6aE15dba17e/de7d4f3da0976d66.gif
121.226.246.3 1.3 MB URL kjimg10.360buyimg.com/ott/jfs/t1/101524/9/17022/1296026/63819a6aE15dba17e/de7d4f3da0976d66.gif
IP 121.226.246.3:0
Certificate IssuerGlobalSign nv-sa
Subject*.jd.com
Fingerprint5A:48:DE:DD:DD:AC:15:DB:65:A5:0E:C3:10:7A:20:72:69:B2:BF:0A
ValidityTue, 18 Oct 2022 07:17:10 GMT - Sun, 19 Nov 2023 06:52:17 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.3 MB (1296026 bytes)
Hash 5f356028e5e94176f56a75568e49ae20
3796c4c950687811a1d1f80fd9e31e718bda0f85
c6d85123315be8a70786b6699f59eecff590bc8fbf1a48a477bcb2cacd660320
GET /ott/jfs/t1/101524/9/17022/1296026/63819a6aE15dba17e/de7d4f3da0976d66.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/gif
content-length: 1296026
cache-control: max-age=15552000
expires: Tue, 05 Dec 2023 01:14:34 GMT
last-modified: Sat, 26 Nov 2022 04:47:38 GMT
age: 121037
via: http/1.1 ORI-CLOUD-HUZ-MIX-24 (jcs [cRs f ]), http/1.1 SQ-CT-1-MIX-23 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1686186874694-0-0-0-99-99;200;200-1686288284929-0-0-0-1-1;200-1686307911529-0-0-0-1-1
X-Firefox-Spdy: h2
u1010.com/de8aa26c3b91403bb8df9a76c231d424.gif
103.170.15.51200 OK 44 kB URL GET HTTP/2 u1010.com/de8aa26c3b91403bb8df9a76c231d424.gif
IP 103.170.15.51:443
ASN #7483 Skycloud Computing co., Ltd.
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerSectigo Limited
Subjectu1010.com
FingerprintBE:0F:E7:A1:5E:32:BF:CE:5A:07:8B:ED:FF:AB:0C:F7:87:1F:D8:5E
ValiditySat, 29 Oct 2022 00:00:00 GMT - Sun, 29 Oct 2023 23:59:59 GMT
File type GIF image data, version 89a, 250 x 250\012- data
Hash 6f42531b65d344c893a679937afcac43
8f80785997c717f24e8ece9b63ac9b7120c77829
a7b14524415b5cde082ec929eb1840475e7ed735a853ee57fb6fa09de60ddd77
GET /de8aa26c3b91403bb8df9a76c231d424.gif HTTP/1.1
Host: u1010.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=86400
etag: "64086ab0-ab8f"
server: nginx
date: Thu, 08 Jun 2023 12:16:51 GMT
content-type: image/gif
last-modified: Wed, 08 Mar 2023 11:00:00 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-41
content-length: 43919
X-Firefox-Spdy: h2
kjimg10.360buyimg.com/ott/jfs/t20250608/101872/12/40553/887332/6482aa35Fc6eb04c3/3a8d7e158dfb0b83.gif
121.226.246.3 887 kB URL kjimg10.360buyimg.com/ott/jfs/t20250608/101872/12/40553/887332/6482aa35Fc6eb04c3/3a8d7e158dfb0b83.gif
IP 121.226.246.3:0
Certificate IssuerGlobalSign nv-sa
Subject*.jd.com
Fingerprint5A:48:DE:DD:DD:AC:15:DB:65:A5:0E:C3:10:7A:20:72:69:B2:BF:0A
ValidityTue, 18 Oct 2022 07:17:10 GMT - Sun, 19 Nov 2023 06:52:17 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 887 kB (887332 bytes)
Hash 0660ebfed414f47907fbb5fa2caa496b
566b01d0ce27f12ce9c269990afc0ed1f61dc485
bd91842e95bd8863ea86156202de193faffffb6a368cd2f2dfbe9f4b025e066d
GET /ott/jfs/t20250608/101872/12/40553/887332/6482aa35Fc6eb04c3/3a8d7e158dfb0b83.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:51 GMT
content-type: image/gif
content-length: 887332
cache-control: max-age=15552000
expires: Wed, 06 Dec 2023 07:21:11 GMT
last-modified: Fri, 09 Jun 2023 04:27:33 GMT
age: 12640
via: http/1.1 ORI-CLOUD-HUZ-MIX-30 (jcs [cRs f ]), http/1.1 SQ-CT-1-MIX-17 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1686295271836-0-0-1-38-38;200;200-1686299127770-0-0-0-1-1;200-1686307911756-0-0-0-1-1
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.17 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 2a116a4c5b71a7f215c3254315efafd0
210c41ded22dac7dad7c86c177ea1167b90e8482
8c29eaa36a3814aea198de76245e6824e5927f5a298dad2f8737c8723c983cbe
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=843
Date: Fri, 09 Jun 2023 10:51:52 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686307912730_388255501_75178507_10347_336_0_0_-";dur=1
dvcasha2.ocsp-certum.com/
23.36.79.17 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 2a116a4c5b71a7f215c3254315efafd0
210c41ded22dac7dad7c86c177ea1167b90e8482
8c29eaa36a3814aea198de76245e6824e5927f5a298dad2f8737c8723c983cbe
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=873
Date: Fri, 09 Jun 2023 10:51:52 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686307912729_388255501_75178461_11014_385_0_0_-";dur=1
dvcasha2.ocsp-certum.com/
23.36.79.17 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash af7df0020304d7fb61862f65696f27d9
b9405658f0108fa3fe63b1687ad9b83aa730adac
766c08ba8cbe081f5b4cc94bdc02bc1a8b5c5479274b4fae2a81019bcde467df
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=867
Date: Fri, 09 Jun 2023 10:51:52 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686307912731_388255501_75179523_9885_245_0_0_-";dur=1
img.siwapay.com:5278/cvjpg/2ygR39JZ.jpg
108.165.238.182 69 kB URL img.siwapay.com:5278/cvjpg/2ygR39JZ.jpg
IP 108.165.238.182:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Lavc59.3.102", baseline, precision 8, 680x453, components 3\012- data
Hash 79b6c3494440481f1ceebd9c97650e35
d02beba1abb53311b5e90a1aace57d077697ac7d
9343fdf9bfe4933f2cc29fb8b1f70fc9ef625941e88a4757690bbc0e9dea50e0
GET /cvjpg/2ygR39JZ.jpg HTTP/1.1
Host: img.siwapay.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 68806
last-modified: Wed, 19 Apr 2023 19:51:46 GMT
etag: "64404652-10cc6"
x-cache-server: s194
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
X-Firefox-Spdy: h2
img.siwapay.com:5278/cvjpg/0XGuUPmj.jpg
108.165.238.182200 OK 24 kB URL GET HTTP/2 img.siwapay.com:5278/cvjpg/0XGuUPmj.jpg
IP 108.165.238.182:5278
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerSectigo Limited
Subject*.siwapay.com
Fingerprint3C:40:2A:7E:D7:3F:32:1D:95:9F:0A:44:C0:48:92:45:59:D5:B5:06
ValidityFri, 02 Dec 2022 00:00:00 GMT - Sat, 02 Dec 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Generated by Snipaste", baseline, precision 8, 401x670, components 3\012- data
Hash be2516cfceec877a7e9babf37f916481
f5fdffe370a07507831da33cbb646dd9453a9f3b
c97a24cd39083653532bab79ebabe7f77cd3daf88fd8f9ac499a4e1a00990799
GET /cvjpg/0XGuUPmj.jpg HTTP/1.1
Host: img.siwapay.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 23633
last-modified: Tue, 28 Mar 2023 05:49:02 GMT
etag: "64227fce-5c51"
x-cache-server: s194, s74
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.17 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 2a116a4c5b71a7f215c3254315efafd0
210c41ded22dac7dad7c86c177ea1167b90e8482
8c29eaa36a3814aea198de76245e6824e5927f5a298dad2f8737c8723c983cbe
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=862
Date: Fri, 09 Jun 2023 10:51:52 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686307912797_388255501_75193172_11292_521_0_0_-";dur=1
dvcasha2.ocsp-certum.com/
23.36.79.17 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 5c45cecf9a9b8d966e0d002ad17359b5
d2c45339c0710e820e6b824b61597c3b4c198fd6
f7ec00141859b66cc4a1c7018f370110e62fa8a9560df125c553d1a059859a09
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Fri, 09 Jun 2023 10:51:52 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686307912797_388255501_75193170_10589_342_0_0_-";dur=1
img.siwapay.com:5278/cvjpg/4l2H1UpK.jpg
108.165.238.182 61 kB URL img.siwapay.com:5278/cvjpg/4l2H1UpK.jpg
IP 108.165.238.182:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Software: Snipaste", baseline, precision 8, 1160x600, components 3\012- data
Hash 1b2306cf1edf32e8df66f1c2070658d3
0e58dbbcd898c1f7440479fda7e68efb261aa247
dcf62545ce765b7c6d0d400eaf40953d98fc90991b2d6a58911e7324ec568bd8
GET /cvjpg/4l2H1UpK.jpg HTTP/1.1
Host: img.siwapay.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 60831
last-modified: Sun, 14 May 2023 06:49:05 GMT
etag: "64608461-ed9f"
x-cache-server: s194, s74
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
X-Firefox-Spdy: h2
img.siwapay.com:5278/cvjpg/tB1zEkmw.jpg
108.165.238.182200 OK 40 kB URL GET HTTP/2 img.siwapay.com:5278/cvjpg/tB1zEkmw.jpg
IP 108.165.238.182:5278
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerSectigo Limited
Subject*.siwapay.com
Fingerprint3C:40:2A:7E:D7:3F:32:1D:95:9F:0A:44:C0:48:92:45:59:D5:B5:06
ValidityFri, 02 Dec 2022 00:00:00 GMT - Sat, 02 Dec 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Generated by Snipaste", baseline, precision 8, 790x641, components 3\012- data
Hash 8d3b3781ff44eab17071900b05f556a9
3efccc9c9f0276785b83ddf9fdae3bfddff71435
4d5d8c9b654e48fb589b05d78b7ae095c80719708c3b3df5008f1003028a36ea
GET /cvjpg/tB1zEkmw.jpg HTTP/1.1
Host: img.siwapay.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 39965
last-modified: Mon, 03 Apr 2023 13:54:41 GMT
etag: "642adaa1-9c1d"
x-cache-server: s194, s74
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
X-Firefox-Spdy: h2
img.siwapay.com:5278/cvjpg/fXzvIbrt.jpg
108.165.238.182 90 kB URL img.siwapay.com:5278/cvjpg/fXzvIbrt.jpg
IP 108.165.238.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 77d1aca2bf779e2605b81a5b3a188f36
929e93e2acc3f6851a1ed1972e892b6011c2b986
88675a5148c375cb87963b2ad82685c3f55c5112a28f71831e49474c1a736288
GET /cvjpg/fXzvIbrt.jpg HTTP/1.1
Host: img.siwapay.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 90423
last-modified: Tue, 23 May 2023 07:30:06 GMT
etag: "646c6b7e-16137"
x-cache-server: s194
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
X-Firefox-Spdy: h2
img.siwapay.com:5278/cvjpg/7j4AaWXv.jpg
108.165.238.182 22 kB URL img.siwapay.com:5278/cvjpg/7j4AaWXv.jpg
IP 108.165.238.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Generated by Snipaste", baseline, precision 8, 452x681, components 3\012- data
Hash d9693ebad43b719107778f9bffdbfca7
1197c4c83740f99a551e3b630852a2ddfae28752
4d3b0afdab12ab2482ce802eac4e982c89e3d410267c221de5d95ec4597eec04
GET /cvjpg/7j4AaWXv.jpg HTTP/1.1
Host: img.siwapay.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 21495
last-modified: Fri, 24 Mar 2023 10:19:45 GMT
etag: "641d7941-53f7"
x-cache-server: s194
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
X-Firefox-Spdy: h2
img.lytuchuang10.com/upload/vod/20230326-1/c480420a9126c767d49e9a79a8f349bc.jpg
154.12.54.73 168 kB URL img.lytuchuang10.com/upload/vod/20230326-1/c480420a9126c767d49e9a79a8f349bc.jpg
IP 154.12.54.73:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 680x453, components 3\012- data
Size 168 kB (168190 bytes)
Hash e9a6a2f5e65aab3a5d154e1f56956981
be48fa42e334e254f4d4571235e5849b2cdaa32d
42a4e7113d1332ddb8b75143b6b1431cb44d41423be9b66ea8ca0f0741345167
GET /upload/vod/20230326-1/c480420a9126c767d49e9a79a8f349bc.jpg HTTP/1.1
Host: img.lytuchuang10.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 09 Jun 2023 10:51:52 GMT
Content-Type: image/jpeg
Content-Length: 168190
Last-Modified: Sat, 25 Mar 2023 18:20:09 GMT
Connection: keep-alive
ETag: "641f3b59-290fe"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.siwapay.com:5278/cvjpg/IbAdozDw.jpg
108.165.238.182 212 kB URL img.siwapay.com:5278/cvjpg/IbAdozDw.jpg
IP 108.165.238.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x804, components 3\012- data
Size 212 kB (212518 bytes)
Hash 1e2ea7576466c1f15bb659448071877d
bf10ee084d3ec9993358b7932ba9f6801a1ad297
81194f7fcd79ead0ffbe131975b66e902784cf1c97f18c5d50b8c06049e6f009
GET /cvjpg/IbAdozDw.jpg HTTP/1.1
Host: img.siwapay.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 212518
last-modified: Fri, 19 May 2023 20:41:43 GMT
etag: "6467df07-33e26"
x-cache-server: s194
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
X-Firefox-Spdy: h2
img.siwapay.com:5278/cvjpg/himkEVw1.jpg
108.165.238.182200 OK 276 kB URL GET HTTP/2 img.siwapay.com:5278/cvjpg/himkEVw1.jpg
IP 108.165.238.182:5278
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerSectigo Limited
Subject*.siwapay.com
Fingerprint3C:40:2A:7E:D7:3F:32:1D:95:9F:0A:44:C0:48:92:45:59:D5:B5:06
ValidityFri, 02 Dec 2022 00:00:00 GMT - Sat, 02 Dec 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x807, components 3\012- data
Size 276 kB (275511 bytes)
Hash 04a8df994edbe61c93dc74b24f9a05ab
5a2ac91f6a680bfe50d81c106ac85ba6d144988d
8e3a867a4807bbe6cf264c10e3ade2d00fdbb99e136887ffe91354483adb1dc9
GET /cvjpg/himkEVw1.jpg HTTP/1.1
Host: img.siwapay.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 275511
last-modified: Sat, 20 May 2023 03:04:10 GMT
etag: "646838aa-43437"
x-cache-server: s194
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
X-Firefox-Spdy: h2
img.aosikaimge.com/20230420/Hs7BIB7G/1.jpg
166.0.195.51 129 kB URL img.aosikaimge.com/20230420/Hs7BIB7G/1.jpg
IP 166.0.195.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 1200x806, components 3\012- data
Size 129 kB (128629 bytes)
Hash 9af8d6425e399cceec1e8f486fa0e98a
7a710f12f4e2fa646a7d1ee85372ca79fae42a54
6f3f1740c42d8f90320dc35c35cc9bde0ac639eba1db224bfb39194390d66643
GET /20230420/Hs7BIB7G/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 128629
last-modified: Wed, 19 Apr 2023 17:30:55 GMT
etag: "6440254f-1f675"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img.aosikaimge.com/20230507/7izQtHSa/1.jpg
166.0.195.51 8.7 kB URL img.aosikaimge.com/20230507/7izQtHSa/1.jpg
IP 166.0.195.51:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash fc8a364662ba83c1a2eb3ca11a12ccdc
667e7af59ce9f53b1d67bd7c185f8caad30896c2
5749ba386db349236b4969e429842a3518d1a488ca62fa5940b0cb1bffa07a2b
GET /20230507/7izQtHSa/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 8710
last-modified: Sun, 07 May 2023 11:30:52 GMT
etag: "64578bec-2206"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img.siwapay.com:5278/cvjpg/Kkc4E8TF.jpg
108.165.238.182200 OK 448 kB URL GET HTTP/2 img.siwapay.com:5278/cvjpg/Kkc4E8TF.jpg
IP 108.165.238.182:5278
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerSectigo Limited
Subject*.siwapay.com
Fingerprint3C:40:2A:7E:D7:3F:32:1D:95:9F:0A:44:C0:48:92:45:59:D5:B5:06
ValidityFri, 02 Dec 2022 00:00:00 GMT - Sat, 02 Dec 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Size 448 kB (448154 bytes)
Hash 4430a355d4fc33de664f9a0bdd712f50
988fc5f952793aafb5b17c68183c12a590235d28
5b299cd1ece6f8df530329838c7f4eb59419d6d19895b65a58f3106c98176120
GET /cvjpg/Kkc4E8TF.jpg HTTP/1.1
Host: img.siwapay.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 448154
last-modified: Sun, 30 Apr 2023 07:51:15 GMT
etag: "644e1df3-6d69a"
x-cache-server: s194
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
X-Firefox-Spdy: h2
img.siwazywimg2.com:5278/cvjpg/zovJRBfq.jpg
108.165.238.182 262 kB URL img.siwazywimg2.com:5278/cvjpg/zovJRBfq.jpg
IP 108.165.238.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x807, components 3\012- data
Size 262 kB (262511 bytes)
Hash e631614b7ce161ad2a084bf5a4f9ac19
a5e4c0694225161bb96604ed3a3766a8c8b29a2a
54d961b8370b9f08d1d0397aeebd6e9f51f3f3b28d4c86eff5100a8836e40ad7
GET /cvjpg/zovJRBfq.jpg HTTP/1.1
Host: img.siwazywimg2.com:5278
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 262511
last-modified: Fri, 05 May 2023 06:23:28 GMT
etag: "6454a0e0-4016f"
x-cache-server: s194
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
X-Firefox-Spdy: h2
img.aosikaimge.com/20230606/O0d84haR/1.jpg
166.0.195.51200 OK 23 kB URL GET HTTP/2 img.aosikaimge.com/20230606/O0d84haR/1.jpg
IP 166.0.195.51:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
FingerprintAE:25:6E:2D:01:4E:2A:74:4F:91:BD:2B:32:AF:0F:A0:1D:14:6B:DE
ValidityTue, 29 Nov 2022 14:37:17 GMT - Thu, 28 Dec 2023 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 400x225, components 3\012- data
Hash 723809d757799473ac87f2d9024a997a
c3f7bfcfbd6c337a58e6f20e8ea656b1744d75f1
5818c31591483133a13abc230fa66e24474aebb3296f84a5ee357b5b0e1cabb1
GET /20230606/O0d84haR/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:53 GMT
content-type: image/jpeg
content-length: 23112
last-modified: Tue, 06 Jun 2023 14:24:40 GMT
etag: "647f41a8-5a48"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img.aosikaimge.com/20230326/oM73TLpI/1.jpg
166.0.195.51 162 kB URL img.aosikaimge.com/20230326/oM73TLpI/1.jpg
IP 166.0.195.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 840x472, components 3\012- data
Size 162 kB (162111 bytes)
Hash 9fc578ed841b16275f094d062aae1cb3
d63922ac377c7e38732408453b708cd0bfbd43d5
d65ae09e88608058116b2b6b3b04db4f19954d38677df42873fbd8a17c541b3d
GET /20230326/oM73TLpI/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 162111
last-modified: Sun, 26 Mar 2023 14:45:44 GMT
etag: "64205a98-2793f"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img.aosikaimge.com/20230518/fCCDeS5b/1.jpg
166.0.195.51 174 kB URL img.aosikaimge.com/20230518/fCCDeS5b/1.jpg
IP 166.0.195.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 174 kB (173913 bytes)
Hash 509fc54e90a3850e1fe6175ffb0523ea
8d787c66f2d5aeb467dbd44aa0ef8225ec0cfd67
87e3309558d20800ca543329b44183054c93ce52131b68a7471e0558ba9af8df
GET /20230518/fCCDeS5b/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:53 GMT
content-type: image/jpeg
content-length: 173913
last-modified: Thu, 18 May 2023 11:37:17 GMT
etag: "64660ded-2a759"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img.aosikaimge.com/20230606/SwZeGykj/1.jpg
166.0.195.51 194 kB URL img.aosikaimge.com/20230606/SwZeGykj/1.jpg
IP 166.0.195.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 194 kB (194215 bytes)
Hash 1d980d30f0bd5485698748af430bc773
8ae593d58ed5210c0f08e0cd1fc234985b26f8bb
a55186b5e74bbe390de97cd3086a374bd399eac6e35f2c6ac7d59e6602f77ba4
GET /20230606/SwZeGykj/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:53 GMT
content-type: image/jpeg
content-length: 194215
last-modified: Tue, 06 Jun 2023 17:17:07 GMT
etag: "647f6a13-2f6a7"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img.aosikaimge.com/20230505/r7wATsQ9/1.jpg
166.0.195.51200 OK 258 kB URL GET HTTP/2 img.aosikaimge.com/20230505/r7wATsQ9/1.jpg
IP 166.0.195.51:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
FingerprintAE:25:6E:2D:01:4E:2A:74:4F:91:BD:2B:32:AF:0F:A0:1D:14:6B:DE
ValidityTue, 29 Nov 2022 14:37:17 GMT - Thu, 28 Dec 2023 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 820x462, components 3\012- data
Size 258 kB (257668 bytes)
Hash 877b5346222a3367d5060140a6e457af
891276ddc855bb623a6d576e583c6bb8ee78f68c
eeb4b0da348c547713b3ecac714335f5ce6176668821a674313e341a6d7cbba4
GET /20230505/r7wATsQ9/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:52 GMT
content-type: image/jpeg
content-length: 257668
last-modified: Fri, 05 May 2023 10:53:33 GMT
etag: "6454e02d-3ee84"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img.aosikaimge.com/20230325/y6tDL8S8/1.jpg
166.0.195.51200 OK 242 kB URL GET HTTP/2 img.aosikaimge.com/20230325/y6tDL8S8/1.jpg
IP 166.0.195.51:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerUnizeto Technologies S.A.
Subject*.aosikaimge.com
FingerprintAE:25:6E:2D:01:4E:2A:74:4F:91:BD:2B:32:AF:0F:A0:1D:14:6B:DE
ValidityTue, 29 Nov 2022 14:37:17 GMT - Thu, 28 Dec 2023 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, height=2175, bps=0, width=3217], baseline, precision 8, 680x453, components 3\012- data
Size 242 kB (241798 bytes)
Hash 3297a5ad9c8d55fa7abdb5b07f26d826
c5ba32964a53f5eddacf85ceec7aa31be2179e21
29f0bd320466cfd1f86d40a9b1c202ae5345132821b18ba4ab0ec7e844d41f59
GET /20230325/y6tDL8S8/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:53 GMT
content-type: image/jpeg
content-length: 241798
last-modified: Sat, 25 Mar 2023 16:58:50 GMT
etag: "641f284a-3b086"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
sp0.baidu.com/9_Q4simg2RQJ8t7jm9iCKT-xh_/s.gif?r=http%3A%2F%2Fwww.needtakehave.com%2F&l=https://www.haoniuyingshi9780.top/
104.193.88.77200 OK 0 B URL GET HTTP/1.1 sp0.baidu.com/9_Q4simg2RQJ8t7jm9iCKT-xh_/s.gif?r=http%3A%2F%2Fwww.needtakehave.com%2F&l=https://www.haoniuyingshi9780.top/
IP 104.193.88.77:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5
ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /9_Q4simg2RQJ8t7jm9iCKT-xh_/s.gif?r=http%3A%2F%2Fwww.needtakehave.com%2F&l=https://www.haoniuyingshi9780.top/ HTTP/1.1
Host: sp0.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Fri, 09 Jun 2023 10:51:54 GMT
d.drtyujgsg.xyz/ty/sv?gp=c74deYHWBMSbewe7Gmsn8cIticSe/WebN86VQyVqrIyrFghXSeM36Yz8gEr3avQO85QWYQm7nUBPlr+TbJ+lksmJ8ML08MC4xWg0F23a81UOH61yE36WYya+iQCbKcVcQbu6h8Y37skXvgNR7stAD2cgaFJz1y3wPsi2Oup7L4bhiYQPxOa4bJCzXpI+3DML&u_fv=0&u_url=aHR0cCUzQSUyRiUyRnd3dy5uZWVkdGFrZWhhdmUuY29tJTJG&r_url=aHR0cHMlM0ElMkYlMkZ3d3cuaGFvbml1eWluZ3NoaTk3ODAudG9wJTJG&u_sw=1280&u_sh=1024&u_scd=24&plat=Linux%20x86_64&os=Linux%20x86_64&lang=en-US&enjc=11&u_bw=1280&u_bh=400&iv=arzbw.1686307908&u_utz=0&yd=ZGNjPSZkY2w9JmNwbj0mZ3ZkPSZncnI9JmN0PTEmZGlpdD0mZGl0PSZjbW49
23.225.154.19200 OK 1 B URL GET HTTP/2 d.drtyujgsg.xyz/ty/sv?gp=c74deYHWBMSbewe7Gmsn8cIticSe/WebN86VQyVqrIyrFghXSeM36Yz8gEr3avQO85QWYQm7nUBPlr+TbJ+lksmJ8ML08MC4xWg0F23a81UOH61yE36WYya+iQCbKcVcQbu6h8Y37skXvgNR7stAD2cgaFJz1y3wPsi2Oup7L4bhiYQPxOa4bJCzXpI+3DML&u_fv=0&u_url=aHR0cCUzQSUyRiUyRnd3dy5uZWVkdGFrZWhhdmUuY29tJTJG&r_url=aHR0cHMlM0ElMkYlMkZ3d3cuaGFvbml1eWluZ3NoaTk3ODAudG9wJTJG&u_sw=1280&u_sh=1024&u_scd=24&plat=Linux%20x86_64&os=Linux%20x86_64&lang=en-US&enjc=11&u_bw=1280&u_bh=400&iv=arzbw.1686307908&u_utz=0&yd=ZGNjPSZkY2w9JmNwbj0mZ3ZkPSZncnI9JmN0PTEmZGlpdD0mZGl0PSZjbW49
IP 23.225.154.19:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerSectigo Limited
Subjectd.dfghaqea.xyz
Fingerprint31:DE:CA:34:51:01:DA:AE:67:65:CC:27:86:69:F3:D4:33:6D:21:6B
ValidityWed, 04 Jan 2023 00:00:00 GMT - Thu, 04 Jan 2024 23:59:59 GMT
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
Analyzer Verdict Alert quad9 Sinkholed
GET /ty/sv?gp=c74deYHWBMSbewe7Gmsn8cIticSe/WebN86VQyVqrIyrFghXSeM36Yz8gEr3avQO85QWYQm7nUBPlr+TbJ+lksmJ8ML08MC4xWg0F23a81UOH61yE36WYya+iQCbKcVcQbu6h8Y37skXvgNR7stAD2cgaFJz1y3wPsi2Oup7L4bhiYQPxOa4bJCzXpI+3DML&u_fv=0&u_url=aHR0cCUzQSUyRiUyRnd3dy5uZWVkdGFrZWhhdmUuY29tJTJG&r_url=aHR0cHMlM0ElMkYlMkZ3d3cuaGFvbml1eWluZ3NoaTk3ODAudG9wJTJG&u_sw=1280&u_sh=1024&u_scd=24&plat=Linux%20x86_64&os=Linux%20x86_64&lang=en-US&enjc=11&u_bw=1280&u_bh=400&iv=arzbw.1686307908&u_utz=0&yd=ZGNjPSZkY2w9JmNwbj0mZ3ZkPSZncnI9JmN0PTEmZGlpdD0mZGl0PSZjbW49 HTTP/1.1
Host: d.drtyujgsg.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:50 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.haoniuyingshi9780.top/
172.67.186.106200 OK 410 kB URL GET HTTP/2 www.haoniuyingshi9780.top/
IP 172.67.186.106:443
Requested by http://www.needtakehave.com/darkfairie/images/Customer/Billing/Address/Verification/secure/customer/center/Amazon.com/error.php/
Certificate IssuerGoogle Trust Services LLC
Subjecthaoniuyingshi9780.top
FingerprintC5:AB:74:9F:FF:88:E2:60:16:6F:EC:B8:0E:F2:44:FF:4C:59:6C:F3
ValidityFri, 02 Jun 2023 06:39:26 GMT - Thu, 31 Aug 2023 06:39:25 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (936)
Size 410 kB (409455 bytes)
Hash c8bfc58a68322c92f0befc074e5c1869
d9a8aa3391a8dd0e4526d92a8cc157d1f02bb249
a6c0036b7f9c9cdada4eb9f84fc6e6e2f1e4d82e976b2b34633bb171b9e3d06a
GET / HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.needtakehave.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:46 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oh6XeoEYcUcEPEy8lwXDvzMo9cVcFccYK5ql0M9DT2ur5%2BoTv0uG6%2BIcavkeeLYbwUdKnAqWCfzEcvX7ZopplODv73oPyPOtAb5fnjv4HOhTn%2BL%2BmehWyiAbMZ%2FQh7pRqvRUD62UOvVxiUeG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d48d2367ca3b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.haoniuyingshi9780.top/template/1/static/css/white.css
172.67.186.106200 OK 11 kB URL GET HTTP/3 www.haoniuyingshi9780.top/template/1/static/css/white.css
IP 172.67.186.106:443
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerGoogle Trust Services LLC
Subjecthaoniuyingshi9780.top
FingerprintC5:AB:74:9F:FF:88:E2:60:16:6F:EC:B8:0E:F2:44:FF:4C:59:6C:F3
ValidityFri, 02 Jun 2023 06:39:26 GMT - Thu, 31 Aug 2023 06:39:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /template/1/static/css/white.css HTTP/1.1
Host: www.haoniuyingshi9780.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 09 Jun 2023 10:51:46 GMT
content-type: text/css
last-modified: Thu, 20 Apr 2023 10:49:20 GMT
vary: Accept-Encoding
etag: W/"644118b0-2b6f"
expires: Fri, 09 Jun 2023 22:51:46 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UMOoomZybM1K0ZSjQSmih6hRl9ehWCjn%2BMsyAoU%2BHgUizXeZQgrNhhRYwH5gBvZKDqOr%2BpnKprX6tdDtscwgRULGhdnQccbFqoS7YfYue6qOZMr7wgQR0D1yJMXitjLJX%2F1wjeDa00AqHPRR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d48d24069900b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.tz26.xyz:6188/n.js
0.0.0.0 0 B IP 0.0.0.0:0
Requested by http://www.needtakehave.com/darkfairie/images/Customer/Billing/Address/Verification/secure/customer/center/Amazon.com/error.php/
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttz26.xyz
FingerprintE6:92:B7:A2:91:D5:EE:E3:40:81:CE:4A:15:B3:98:FF:27:91:48:81
ValiditySun, 05 Mar 2023 00:00:00 GMT - Mon, 04 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /n.js HTTP/1.1
Host: www.tz26.xyz:6188
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.needtakehave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:44 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
v.vhqweree.xyz/ty/DCBB94AD-5546-6600-33-ECC08E648C8D.blpha
0.0.0.0 0 B URL GET v.vhqweree.xyz/ty/DCBB94AD-5546-6600-33-ECC08E648C8D.blpha
IP 0.0.0.0:0
Requested by https://www.haoniuyingshi9780.top/
Certificate IssuerSectigo Limited
Subjectv.vfsdgjrr.xyz
Fingerprint05:2D:08:7A:8D:E7:79:7D:B1:16:3C:43:9A:4D:FF:68:AC:E9:5B:A5
ValidityWed, 04 Jan 2023 00:00:00 GMT - Thu, 04 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /ty/DCBB94AD-5546-6600-33-ECC08E648C8D.blpha HTTP/1.1
Host: v.vhqweree.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haoniuyingshi9780.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 10:51:49 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Fri, 09 Jun 2023 10:51:49 GMT
expires: Fri, 09 Jun 2023 11:06:49 GMT
cache-control: max-age=900
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2