www.css-web-templates.com/
1.4 kB URL www.css-web-templates.com/
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (344), with CRLF line terminators
Hash 72dec65b89ec4081edcacf465f58c860
13a5105f999bdf17ceec0cfa8ba1f43b1aa5fc6f
d2d9b76cff46f9bb46feaadd3d5fda1c27ac011d6b2849b16c72986b5519a6b6
GET / HTTP/1.1
Host: www.css-web-templates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:10:41 GMT
Content-Length: 1390
Content-Type: text/html
Server: nginx
www.css-web-templates.com/imp/8b789be7a358b7beb856192cd79778a1/confirmer.php
1.4 kB URL User Request GET www.css-web-templates.com/imp/8b789be7a358b7beb856192cd79778a1/confirmer.php
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (344), with CRLF line terminators
Hash 72dec65b89ec4081edcacf465f58c860
13a5105f999bdf17ceec0cfa8ba1f43b1aa5fc6f
d2d9b76cff46f9bb46feaadd3d5fda1c27ac011d6b2849b16c72986b5519a6b6
GET /imp/8b789be7a358b7beb856192cd79778a1/confirmer.php HTTP/1.1
Host: www.css-web-templates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:10:41 GMT
Content-Length: 1390
Content-Type: text/html
Server: nginx
www.css-web-templates.com/common.js
200 OK 11 kB URL GET HTTP/1.1 www.css-web-templates.com/common.js
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Requested by http://www.css-web-templates.com/imp/8b789be7a358b7beb856192cd79778a1/confirmer.php
File type ASCII text, with very long lines (10674), with no line terminators
Hash c84678eaedee3a7edec51de02a22bf4b
3314502a54cb2344d4a4be5bc6176333bade7a77
f66216326b1aa4aa89ba2b3b88a19931f7786374904bac62fa9a6a6f4d0678fb
GET /common.js HTTP/1.1
Host: www.css-web-templates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.css-web-templates.com/imp/8b789be7a358b7beb856192cd79778a1/confirmer.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:10:42 GMT
Content-Length: 10674
Content-Type: application/x-javascript
Server: nginx
www.css-web-templates.com/tj.js
200 OK 6.1 kB URL GET HTTP/1.1 www.css-web-templates.com/tj.js
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Requested by http://www.css-web-templates.com/imp/8b789be7a358b7beb856192cd79778a1/confirmer.php
File type ASCII text, with very long lines (4898), with CRLF line terminators
Hash 6ec698ad2e98563649057ac471edb204
2620c50ed656d55257643757864bfb7b9f3ac9f4
5b17b916341d0e5a8ebdaa0d9d631f5b8fa8b503510e05097107fb6dc6168f40
GET /tj.js HTTP/1.1
Host: www.css-web-templates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.css-web-templates.com/imp/8b789be7a358b7beb856192cd79778a1/confirmer.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:10:42 GMT
Content-Length: 6080
Content-Type: application/x-javascript
Server: nginx
www.css-web-templates.com/favicon.ico
200 OK 1.4 kB URL GET HTTP/1.1 www.css-web-templates.com/favicon.ico
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Requested by http://www.css-web-templates.com/imp/8b789be7a358b7beb856192cd79778a1/confirmer.php
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (344), with CRLF line terminators
Hash 72dec65b89ec4081edcacf465f58c860
13a5105f999bdf17ceec0cfa8ba1f43b1aa5fc6f
d2d9b76cff46f9bb46feaadd3d5fda1c27ac011d6b2849b16c72986b5519a6b6
GET /favicon.ico HTTP/1.1
Host: www.css-web-templates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.css-web-templates.com/imp/8b789be7a358b7beb856192cd79778a1/confirmer.php
Cookie: __tins__21590577=%7B%22sid%22%3A%201686312415244%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201686314215244%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:10:42 GMT
Content-Length: 1390
Content-Type: text/html
Server: nginx
ia.51.la/go1?id=21590577&rt=1686312415244&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E6%2595%2585%25E4%25BA%258B%25EF%25BC%259A%25E6%259D%2591%25E9%2587%258C%25E7%259A%2584%25E4%25BA%25BA%25E9%2583%25BD%25E8%25AF%25B4%25EF%25BC%258C%25E7%25BA%25A2%25E8%25B1%2586%25E6%2598%25AF%25E4%25B8%25AA%25E7%2596%25AF%25E5%25A5%25B3%25E4%25BA%25BA%25EF%25BC%258C%25E4%25BD%2586%25E6%2588%2591%25E5%258D%25B4%25E8%25AF%25B4%25EF%25BC%258C%25E5%25A5%25B9%25E6%2598%25AF%25E6%2588%2591%25E8%25A7%2581%25E8%25BF%2587%25E6%259C%2580%25E6%25B8%25A9&ing=1&ekc=&sid=1686312415244&tt=%25E6%259E%25A3%25E5%25BA%2584%25E8%2580%2590%25E6%2582%25A6%25E6%259C%25BA%25E6%25A2%25B0%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=(%25E7%25A7%2591%25E6%2599%25AE%25E4%25B8%258B)%25E4%25BA%259A%25E6%25B4%25B2AV%25E4%25B9%2585%25E4%25B9%2585%25E6%2597%25A0%25E7%25A0%2581%25E7%25B2%25BE%25E5%2593%2581%25E5%25BD%25B1%25E8%25A7%2586%252C%25E5%25A5%25BD%25E7%259C%258B%25E5%25A4%25A7%25E4%25BD%2586%25E4%25BA%25BA%25E6%2596%2587%25E8%2589%25BA%25E6%259C%25AF%252C%25E5%2585%258D%25E8%25B4%25B9A%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%258718%25E7%25A6%2581%25E7%25BD%2591%25E7%25AB%2599APP&cu=http%253A%252F%252Fwww.css-web-templates.com%252Fimp%252F8b789be7a358b7beb856192cd79778a1%252Fconfirmer.php&pu=
200 0 B URL GET HTTP/1.1 ia.51.la/go1?id=21590577&rt=1686312415244&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E6%2595%2585%25E4%25BA%258B%25EF%25BC%259A%25E6%259D%2591%25E9%2587%258C%25E7%259A%2584%25E4%25BA%25BA%25E9%2583%25BD%25E8%25AF%25B4%25EF%25BC%258C%25E7%25BA%25A2%25E8%25B1%2586%25E6%2598%25AF%25E4%25B8%25AA%25E7%2596%25AF%25E5%25A5%25B3%25E4%25BA%25BA%25EF%25BC%258C%25E4%25BD%2586%25E6%2588%2591%25E5%258D%25B4%25E8%25AF%25B4%25EF%25BC%258C%25E5%25A5%25B9%25E6%2598%25AF%25E6%2588%2591%25E8%25A7%2581%25E8%25BF%2587%25E6%259C%2580%25E6%25B8%25A9&ing=1&ekc=&sid=1686312415244&tt=%25E6%259E%25A3%25E5%25BA%2584%25E8%2580%2590%25E6%2582%25A6%25E6%259C%25BA%25E6%25A2%25B0%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=(%25E7%25A7%2591%25E6%2599%25AE%25E4%25B8%258B)%25E4%25BA%259A%25E6%25B4%25B2AV%25E4%25B9%2585%25E4%25B9%2585%25E6%2597%25A0%25E7%25A0%2581%25E7%25B2%25BE%25E5%2593%2581%25E5%25BD%25B1%25E8%25A7%2586%252C%25E5%25A5%25BD%25E7%259C%258B%25E5%25A4%25A7%25E4%25BD%2586%25E4%25BA%25BA%25E6%2596%2587%25E8%2589%25BA%25E6%259C%25AF%252C%25E5%2585%258D%25E8%25B4%25B9A%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%258718%25E7%25A6%2581%25E7%25BD%2591%25E7%25AB%2599APP&cu=http%253A%252F%252Fwww.css-web-templates.com%252Fimp%252F8b789be7a358b7beb856192cd79778a1%252Fconfirmer.php&pu=
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.css-web-templates.com/imp/8b789be7a358b7beb856192cd79778a1/confirmer.php
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21590577&rt=1686312415244&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E6%2595%2585%25E4%25BA%258B%25EF%25BC%259A%25E6%259D%2591%25E9%2587%258C%25E7%259A%2584%25E4%25BA%25BA%25E9%2583%25BD%25E8%25AF%25B4%25EF%25BC%258C%25E7%25BA%25A2%25E8%25B1%2586%25E6%2598%25AF%25E4%25B8%25AA%25E7%2596%25AF%25E5%25A5%25B3%25E4%25BA%25BA%25EF%25BC%258C%25E4%25BD%2586%25E6%2588%2591%25E5%258D%25B4%25E8%25AF%25B4%25EF%25BC%258C%25E5%25A5%25B9%25E6%2598%25AF%25E6%2588%2591%25E8%25A7%2581%25E8%25BF%2587%25E6%259C%2580%25E6%25B8%25A9&ing=1&ekc=&sid=1686312415244&tt=%25E6%259E%25A3%25E5%25BA%2584%25E8%2580%2590%25E6%2582%25A6%25E6%259C%25BA%25E6%25A2%25B0%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=(%25E7%25A7%2591%25E6%2599%25AE%25E4%25B8%258B)%25E4%25BA%259A%25E6%25B4%25B2AV%25E4%25B9%2585%25E4%25B9%2585%25E6%2597%25A0%25E7%25A0%2581%25E7%25B2%25BE%25E5%2593%2581%25E5%25BD%25B1%25E8%25A7%2586%252C%25E5%25A5%25BD%25E7%259C%258B%25E5%25A4%25A7%25E4%25BD%2586%25E4%25BA%25BA%25E6%2596%2587%25E8%2589%25BA%25E6%259C%25AF%252C%25E5%2585%258D%25E8%25B4%25B9A%25E7%25BA%25A7%25E6%25AF%259B%25E7%2589%258718%25E7%25A6%2581%25E7%25BD%2591%25E7%25AB%2599APP&cu=http%253A%252F%252Fwww.css-web-templates.com%252Fimp%252F8b789be7a358b7beb856192cd79778a1%252Fconfirmer.php&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.css-web-templates.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Content-Length: 0
Date: Fri, 09 Jun 2023 12:06:17 GMT
news1.66j890.com/?time=1686312416.html
200 OK 980 B URL GET HTTP/2 news1.66j890.com/?time=1686312416.html
IP
ASN #38186 Forewin Telecom Group Limited, ISP at
Requested by http://www.css-web-templates.com/imp/8b789be7a358b7beb856192cd79778a1/confirmer.php
Certificate IssuerLet's Encrypt
Subjectnews2.66j891.com
Fingerprint37:CE:BE:F2:50:DA:FE:FF:56:1A:6C:BE:D7:81:65:BB:9F:E1:28:78
ValidityFri, 02 Jun 2023 04:43:27 GMT - Thu, 31 Aug 2023 04:43:26 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (696)
Hash 0a73ccb25e5c62576fee1c998d533e21
e1f978fdab621d383a4f5cc13a139649a9035187
86fa33e9264d00a301dbdc28c6f8383f69e572c49da722be60b8428ebe2a9bab
GET /?time=1686312416.html HTTP/1.1
Host: news1.66j890.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.css-web-templates.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:06:57 GMT
content-type: text/html
content-length: 980
last-modified: Wed, 31 May 2023 11:40:56 GMT
etag: "64773248-3d4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash 6d57db620bf52b8b4be83eaf75c5ca6b
42790b3b7100dff0fb0dff1ad01ef9d24ba015a0
15f1c64c5b0faa2b84c8ab0d2c6fd1526cf1fecc3ee6c5bf1dd787c051f824a7
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:06:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 13 Jun 2023 10:41:48 GMT
ETag: "42790b3b7100dff0fb0dff1ad01ef9d24ba015a0"
Last-Modified: Fri, 09 Jun 2023 10:41:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 282
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4940621ac9b512-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash 6d57db620bf52b8b4be83eaf75c5ca6b
42790b3b7100dff0fb0dff1ad01ef9d24ba015a0
15f1c64c5b0faa2b84c8ab0d2c6fd1526cf1fecc3ee6c5bf1dd787c051f824a7
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:06:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 13 Jun 2023 10:41:48 GMT
ETag: "42790b3b7100dff0fb0dff1ad01ef9d24ba015a0"
Last-Modified: Fri, 09 Jun 2023 10:41:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 282
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4940622a9bb4ee-OSL
g.alicdn.com/de/prismplayer/2.13.2/skins/default/aliplayer-min.css
200 OK 4.5 kB URL GET HTTP/2 g.alicdn.com/de/prismplayer/2.13.2/skins/default/aliplayer-min.css
IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGlobalSign nv-sa
Subject*.tbcdn.cn
Fingerprint62:88:3B:F1:01:21:46:73:DD:01:B6:4D:D1:6A:68:18:8A:B4:B6:B1
ValidityFri, 22 Jul 2022 07:30:04 GMT - Sun, 06 Aug 2023 03:46:01 GMT
File type ASCII text, with very long lines (26820), with no line terminators
Hash 6cc43fb3bf500430fd5392e202167177
e9a72a4e213262ac469e5fd0df7668e97a81a271
273cf46368f6d6ac3d516b27149dd7862f564f1d79150d28d94e519d0fab59df
GET /de/prismplayer/2.13.2/skins/default/aliplayer-min.css HTTP/1.1
Host: g.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: text/css
content-length: 4512
date: Fri, 09 Jun 2023 07:15:25 GMT
vary: Accept-Encoding
x-oss-request-id: 6482D18D4EB01C3337C3B754
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13141875986604137387
x-oss-storage-class: Standard
cache-control: max-age=2592000,s-maxage=86400
content-md5: bMQ/s79QBDD9U5LiAhZxdw==
x-oss-server-time: 35
content-encoding: gzip
access-control-allow-origin: *
x-bucket-code: 3
ali-swift-global-savetime: 1686294925
via: cache19.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache1.l2de2[1,0], cache3.se1[0,0,200-0,H], cache2.se1[1,0]
age: 17492
x-cache: HIT TCP_MEM_HIT dirn:2:452057369
x-swift-savetime: Fri, 09 Jun 2023 07:24:24 GMT
x-swift-cachetime: 85861
timing-allow-origin: *
eagleid: 2ff62c9616863124176054625e
X-Firefox-Spdy: h2
g.alicdn.com/de/prismplayer/2.13.2/aliplayer-min.js
200 OK 134 kB URL GET HTTP/2 g.alicdn.com/de/prismplayer/2.13.2/aliplayer-min.js
IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGlobalSign nv-sa
Subject*.tbcdn.cn
Fingerprint62:88:3B:F1:01:21:46:73:DD:01:B6:4D:D1:6A:68:18:8A:B4:B6:B1
ValidityFri, 22 Jul 2022 07:30:04 GMT - Sun, 06 Aug 2023 03:46:01 GMT
File type ASCII text, with very long lines (65480)
Size 134 kB (134009 bytes)
Hash e0856199474714076fe4ae5d137f50fb
5918d2be482cd7dc69d1f43e1c4994c6f36a03e6
02f8ca7c536295aa33e838b53f861ec4ce2e8ae7296b5a442312adb129c9f552
GET /de/prismplayer/2.13.2/aliplayer-min.js HTTP/1.1
Host: g.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 134009
date: Thu, 08 Jun 2023 13:38:16 GMT
vary: Accept-Encoding
x-oss-request-id: 6481D9C88DA3F63834452F96
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3483136681144186461
x-oss-storage-class: Standard
cache-control: max-age=2592000,s-maxage=86400
content-md5: 4IVhmUdHFAdv5K5dE39Q+w==
x-oss-server-time: 64
content-encoding: gzip
access-control-allow-origin: *
x-bucket-code: 3
ali-swift-global-savetime: 1686231496
via: cache17.l2de2[0,0,200-0,H], cache8.l2de2[1,0], cache8.l2de2[1,0], cache4.se1[0,0,200-0,H], cache2.se1[1,0]
age: 80921
x-cache: HIT TCP_MEM_HIT dirn:2:184484691
x-swift-savetime: Thu, 08 Jun 2023 13:44:33 GMT
x-swift-cachetime: 86023
timing-allow-origin: *
eagleid: 2ff62c9616863124176134641e
X-Firefox-Spdy: h2
66j877.com:1689/web.php/index/config
200 OK 1.3 kB URL GET HTTP/2 66j877.com:1689/web.php/index/config
IP
ASN #56046 China Mobile communications corporation
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject66j877.com
Fingerprint7C:26:C7:A8:45:F9:D8:94:A8:E2:2A:43:70:F6:77:6B:6F:D0:37:2A
ValidityWed, 31 May 2023 10:15:51 GMT - Tue, 29 Aug 2023 10:15:50 GMT
File type JSON data\012- , ASCII text, with very long lines (1811), with no line terminators
Hash ef7423eebea6e3a04814e3ff1099fccf
daaf102ed599221d892ba91fa49b56e714bb0a17
691f78dad6679f346c8f46fa2d1df89a91bf30ac0a686c9f9977f426ca5b450b
GET /web.php/index/config HTTP/1.1
Host: 66j877.com:1689
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://news1.66j890.com
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:07:01 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
news1.66j890.com/static/img/appTitle-hei.b0074eb7.png
200 OK 33 kB URL GET HTTP/2 news1.66j890.com/static/img/appTitle-hei.b0074eb7.png
IP
ASN #38186 Forewin Telecom Group Limited, ISP at
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subjectnews2.66j891.com
Fingerprint37:CE:BE:F2:50:DA:FE:FF:56:1A:6C:BE:D7:81:65:BB:9F:E1:28:78
ValidityFri, 02 Jun 2023 04:43:27 GMT - Thu, 31 Aug 2023 04:43:26 GMT
File type PNG image data, 1364 x 159, 8-bit/color RGBA, non-interlaced\012- data
Hash b0074eb7cf06b53a88faf88a631e51c1
bd1eb397fff877a8d4669fb3bb1cca32617b17e4
9699100da3fff36fa5b4ab2eac02c8d5f70a0f17fc7e4e26fddb8397b4ade7d0
GET /static/img/appTitle-hei.b0074eb7.png HTTP/1.1
Host: news1.66j890.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/?time=1686312416.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:07:00 GMT
content-type: image/png
content-length: 32941
last-modified: Wed, 31 May 2023 11:40:56 GMT
etag: "64773248-80ad"
expires: Sun, 09 Jul 2023 12:07:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g3
1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g3
IP
Hash d7efd7ca545729364b4a92d0af8d4238
f283a57cdc81ff2e2ec1fc54a0a8daeb098ec37a
ae527cf57e870ca239ed71cf551603fc52e1ef3d8ccbb279a79d025e409a79cb
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:07:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Tue, 13 Jun 2023 08:44:55 GMT
ETag: "f283a57cdc81ff2e2ec1fc54a0a8daeb098ec37a"
Last-Modified: Fri, 09 Jun 2023 08:44:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2120
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d494078ad19b512-OSL
img.mengzhan28.top/loveimgmoe/ea/82/6328a0aa67592c272fc6ea82.png
200 OK 48 kB URL GET HTTP/2 img.mengzhan28.top/loveimgmoe/ea/82/6328a0aa67592c272fc6ea82.png
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGoogle Trust Services LLC
Subjectmengzhan28.top
Fingerprint68:21:66:FE:9F:A9:A6:83:A2:CD:8E:D5:D4:EE:3F:03:B3:01:B9:8A
ValidityThu, 08 Jun 2023 07:25:25 GMT - Wed, 06 Sep 2023 07:25:24 GMT
File type PNG image data, 718 x 366, 8-bit/color RGBA, non-interlaced\012- data
Hash b6ca08feb232daa3ec2924972af40098
c1d6f273f47bbba4b76edd30f3c508e859dd165a
f23c0acc92a078344407bf421824f7cec5021fee32866650f25d495b8a9d3ef5
GET /loveimgmoe/ea/82/6328a0aa67592c272fc6ea82.png HTTP/1.1
Host: img.mengzhan28.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 12:07:01 GMT
content-type: image/png
content-length: 47509
cache-control: max-age=16070400
last-modified: Tue, 06 Jun 2023 10:36:42 GMT
cf-cache-status: HIT
age: 2098
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WZAYdw%2BHc22UcROZ%2BlH3%2Bozb7iloWKTKGnLmitXrYo%2B2MTsJXMjTWzMj33lNGJR%2FATzMO8necbGzcs9rkoy0sRKgXRurlhT0nvU2BNU6Fk4bZMncptmDqboCMxMil9a28xgm%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 7d494078edecb51e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
news1.66j890.com/static/loading.gif
200 OK 7.3 kB URL GET HTTP/2 news1.66j890.com/static/loading.gif
IP
ASN #38186 Forewin Telecom Group Limited, ISP at
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subjectnews2.66j891.com
Fingerprint37:CE:BE:F2:50:DA:FE:FF:56:1A:6C:BE:D7:81:65:BB:9F:E1:28:78
ValidityFri, 02 Jun 2023 04:43:27 GMT - Thu, 31 Aug 2023 04:43:26 GMT
File type GIF image data, version 89a, 100 x 100\012- data
Hash e70fee8ccf8e67c55c269b1775ca6555
69c7d7b7768400e694706b75fab95a1c06105b64
b838c8ce96424a1ec09ab8f5a683cb86ed3e020e3e101449335e1452e9844835
GET /static/loading.gif HTTP/1.1
Host: news1.66j890.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/?time=1686312416.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:07:00 GMT
content-type: image/gif
content-length: 7347
last-modified: Wed, 31 May 2023 11:40:56 GMT
etag: "64773248-1cb3"
expires: Sun, 09 Jul 2023 12:07:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.1385a.xyz/images/634f6a11b00402dc89b1a227.gif
302 Found 0 B URL GET HTTP/2 img.1385a.xyz/images/634f6a11b00402dc89b1a227.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject1385a.xyz
FingerprintEA:9A:42:B1:F4:12:09:E8:0D:1B:C6:27:A7:EB:49:67:71:4F:20:49
ValidityWed, 10 May 2023 09:17:49 GMT - Tue, 08 Aug 2023 09:17:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/634f6a11b00402dc89b1a227.gif HTTP/1.1
Host: img.1385a.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=1800
location: https://img.mengzhan28.top/loveimgmoe/a2/27/634f6a11b00402dc89b1a227.gif
X-Firefox-Spdy: h2
img.1385a.xyz/images/6261810ba2147d0648e95c87.gif
302 Found 0 B URL GET HTTP/2 img.1385a.xyz/images/6261810ba2147d0648e95c87.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject1385a.xyz
FingerprintEA:9A:42:B1:F4:12:09:E8:0D:1B:C6:27:A7:EB:49:67:71:4F:20:49
ValidityWed, 10 May 2023 09:17:49 GMT - Tue, 08 Aug 2023 09:17:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/6261810ba2147d0648e95c87.gif HTTP/1.1
Host: img.1385a.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=1800
location: https://img.mengzhan28.top/loveimgmoe/5c/87/6261810ba2147d0648e95c87.gif
X-Firefox-Spdy: h2
66j620.com/common.php?val=6666j8888&t=0.03887997153698952?v=07472447591184523
200 OK 858 B URL GET HTTP/2 66j620.com/common.php?val=6666j8888&t=0.03887997153698952?v=07472447591184523
IP
ASN #38186 Forewin Telecom Group Limited, ISP at
Requested by http://www.css-web-templates.com/imp/8b789be7a358b7beb856192cd79778a1/confirmer.php
Certificate IssuerLet's Encrypt
Subject66j620.com
FingerprintB6:33:C2:86:04:8F:53:61:1E:7C:BD:96:78:C4:6F:D3:39:E1:5A:EA
ValidityFri, 26 May 2023 06:15:12 GMT - Thu, 24 Aug 2023 06:15:11 GMT
Hash 7989e0d72f54d0e988eef2cec2ee4d45
d393a77fb203e02f342a243ad3d89158a0c3614e
3145ce7b49acbdfb9547e0a875d2e9049b3df6773c5147ddb8f272b165439ec0
GET /common.php?val=6666j8888&t=0.03887997153698952?v=07472447591184523 HTTP/1.1
Host: 66j620.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.css-web-templates.com
DNT: 1
Connection: keep-alive
Referer: http://www.css-web-templates.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:06:56 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: POST,GET,OPTIONS,DELETE
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Content-Length,Accept-Encoding,X-Requested-with, Origin
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
img.1385a.xyz/images/63b518c440d5eccf5990f80b.gif
302 Found 0 B URL GET HTTP/2 img.1385a.xyz/images/63b518c440d5eccf5990f80b.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject1385a.xyz
FingerprintEA:9A:42:B1:F4:12:09:E8:0D:1B:C6:27:A7:EB:49:67:71:4F:20:49
ValidityWed, 10 May 2023 09:17:49 GMT - Tue, 08 Aug 2023 09:17:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/63b518c440d5eccf5990f80b.gif HTTP/1.1
Host: img.1385a.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=1800
location: https://img.mengzhan28.top/loveimgmoe/5c/83/62617dcda2147d0648e95c83.gif
X-Firefox-Spdy: h2
img.1385a.xyz/images/634f6a10b00402dc89b1a222.gif
302 Found 0 B URL GET HTTP/2 img.1385a.xyz/images/634f6a10b00402dc89b1a222.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject1385a.xyz
FingerprintEA:9A:42:B1:F4:12:09:E8:0D:1B:C6:27:A7:EB:49:67:71:4F:20:49
ValidityWed, 10 May 2023 09:17:49 GMT - Tue, 08 Aug 2023 09:17:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/634f6a10b00402dc89b1a222.gif HTTP/1.1
Host: img.1385a.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=1800
location: https://img.mengzhan28.top/loveimgmoe/a2/22/634f6a10b00402dc89b1a222.gif
X-Firefox-Spdy: h2
img.1385a.xyz/images/634f6a10b00402dc89b1a226.gif
302 Found 0 B URL GET HTTP/2 img.1385a.xyz/images/634f6a10b00402dc89b1a226.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject1385a.xyz
FingerprintEA:9A:42:B1:F4:12:09:E8:0D:1B:C6:27:A7:EB:49:67:71:4F:20:49
ValidityWed, 10 May 2023 09:17:49 GMT - Tue, 08 Aug 2023 09:17:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/634f6a10b00402dc89b1a226.gif HTTP/1.1
Host: img.1385a.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=1800
location: https://img.mengzhan28.top/loveimgmoe/a2/26/634f6a10b00402dc89b1a226.gif
X-Firefox-Spdy: h2
img.mengzhan28.top/loveimgmoe/5c/87/6261810ba2147d0648e95c87.gif
200 OK 56 kB URL GET HTTP/3 img.mengzhan28.top/loveimgmoe/5c/87/6261810ba2147d0648e95c87.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGoogle Trust Services LLC
Subjectmengzhan28.top
Fingerprint68:21:66:FE:9F:A9:A6:83:A2:CD:8E:D5:D4:EE:3F:03:B3:01:B9:8A
ValidityThu, 08 Jun 2023 07:25:25 GMT - Wed, 06 Sep 2023 07:25:24 GMT
File type GIF image data, version 89a, 640 x 200\012- data
Hash 2006e569d447c3b9333b77c8cd358cd5
52bc905491f1853e5db4caffc9ab774fe8c585c1
ef170697496c29dfe85f544672b7ef64a0e93bff4caf3940dea4d388f44eb324
GET /loveimgmoe/5c/87/6261810ba2147d0648e95c87.gif HTTP/1.1
Host: img.mengzhan28.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 12:07:01 GMT
content-type: image/png
content-length: 55462
cache-control: max-age=16070400
last-modified: Thu, 08 Jun 2023 13:38:19 GMT
cf-cache-status: HIT
age: 2098
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2eWhqIMcDZNzI015wqfPHGTUoQKU6MnZwf81zlEtt%2BzSlbVNTMkiM45BAlVKI5Uyr25sbBPtK3dpzxr4BpJRuNL%2BhJCy2aCTf53NlyB7ZRiumSjEri1PblF215e7OyzNf0%2FhYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 7d49407c8a46b4f4-OSL
alt-svc: h3=":443"; ma=86400
img.mengzhan28.top/loveimgmoe/5c/86/62618106a2147d0648e95c86.gif
200 OK 86 kB URL GET HTTP/3 img.mengzhan28.top/loveimgmoe/5c/86/62618106a2147d0648e95c86.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGoogle Trust Services LLC
Subjectmengzhan28.top
Fingerprint68:21:66:FE:9F:A9:A6:83:A2:CD:8E:D5:D4:EE:3F:03:B3:01:B9:8A
ValidityThu, 08 Jun 2023 07:25:25 GMT - Wed, 06 Sep 2023 07:25:24 GMT
File type GIF image data, version 89a, 640 x 200\012- data
Hash c0c649c7ca082b8623f033519620dda3
c3fa7158def3c85206ca58d140f2d16233e8ae76
0f5b0903ddc21bc0580595c3a2dfc61b6faaecf7a21db94f2d8ba5f3894d0d33
GET /loveimgmoe/5c/86/62618106a2147d0648e95c86.gif HTTP/1.1
Host: img.mengzhan28.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 12:07:01 GMT
content-type: image/png
content-length: 85571
cache-control: max-age=16070400
last-modified: Thu, 08 Jun 2023 13:38:19 GMT
cf-cache-status: HIT
age: 2098
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yWzAHlq7dYb%2BxaxZMM5v27a1NpEeOLoLovMn61zaOfJfZ%2BIzL3qf4%2FQ9JG%2BuVweI01NPTKfUEcYAS9vfRmu13nIbwAEs1pTOWDzPe30A3HIH3Y0UWltHfxFmThJyHwpwQikjsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 7d49407c8a48b4f4-OSL
alt-svc: h3=":443"; ma=86400
img.mengzhan28.top/loveimgmoe/a2/27/634f6a11b00402dc89b1a227.gif
200 OK 260 kB URL GET HTTP/3 img.mengzhan28.top/loveimgmoe/a2/27/634f6a11b00402dc89b1a227.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGoogle Trust Services LLC
Subjectmengzhan28.top
Fingerprint68:21:66:FE:9F:A9:A6:83:A2:CD:8E:D5:D4:EE:3F:03:B3:01:B9:8A
ValidityThu, 08 Jun 2023 07:25:25 GMT - Wed, 06 Sep 2023 07:25:24 GMT
File type GIF image data, version 89a, 960 x 480\012- data
Size 260 kB (259781 bytes)
Hash 32d1442c0dc7cc0bb6978148da210d35
7bc2130a8ef8beac5631b9f30b7b98075a1ff1a9
55369b42727bdeda5976d0ed0e70fc4f60b3069b591afb3b6fb9aee64e69dd8a
GET /loveimgmoe/a2/27/634f6a11b00402dc89b1a227.gif HTTP/1.1
Host: img.mengzhan28.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 12:07:01 GMT
content-type: image/png
content-length: 259781
cache-control: max-age=16070400
last-modified: Thu, 08 Jun 2023 13:38:19 GMT
cf-cache-status: HIT
age: 2098
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5DtYgb0Y%2F5miQGclUoNq1XAoyF8YQ7psWlZMXOL50msZQT8Cucr6BgXu90IwiwxJkGGj0a6WnUpwDvL98Qhsp26wtL%2BXTv2k7FYPGuFlrpgKCMqgs6l%2FZn9kqc6SGk%2BW8sie7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 7d49407c8a41b4f4-OSL
alt-svc: h3=":443"; ma=86400
img.mengzhan28.top/loveimgmoe/a2/22/634f6a10b00402dc89b1a222.gif
200 OK 186 kB URL GET HTTP/3 img.mengzhan28.top/loveimgmoe/a2/22/634f6a10b00402dc89b1a222.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGoogle Trust Services LLC
Subjectmengzhan28.top
Fingerprint68:21:66:FE:9F:A9:A6:83:A2:CD:8E:D5:D4:EE:3F:03:B3:01:B9:8A
ValidityThu, 08 Jun 2023 07:25:25 GMT - Wed, 06 Sep 2023 07:25:24 GMT
File type GIF image data, version 89a, 100 x 260\012- data
Size 186 kB (185876 bytes)
Hash 431d04e3f51f9d30512785453beb79f1
8b39e192e14e3936ce1fa97aa324d924d2a3e03c
914d80f52c4e6340675ab356eb4e3f91f8474a7cb0252ea8ce85d662ab1b788e
GET /loveimgmoe/a2/22/634f6a10b00402dc89b1a222.gif HTTP/1.1
Host: img.mengzhan28.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 12:07:01 GMT
content-type: image/png
content-length: 185876
cache-control: max-age=16070400
last-modified: Thu, 08 Jun 2023 13:38:19 GMT
cf-cache-status: HIT
age: 2098
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ULYYPGWjQ%2BdEEFiQbIFGXriD%2F6WMLNgIqEbxnGxLmJsHfM5DlxCTi9kSv5%2B6m8aCvxzydxTRRn2yVqVZV0%2BuFccdeqXD8Vxxr%2FJv%2FMN1joLPYvr4T58BNSS1JcECQQvJTCfm9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 7d49407cdacfb4f4-OSL
alt-svc: h3=":443"; ma=86400
img.mengzhan28.top/loveimgmoe/a2/26/634f6a10b00402dc89b1a226.gif
200 OK 134 kB URL GET HTTP/3 img.mengzhan28.top/loveimgmoe/a2/26/634f6a10b00402dc89b1a226.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGoogle Trust Services LLC
Subjectmengzhan28.top
Fingerprint68:21:66:FE:9F:A9:A6:83:A2:CD:8E:D5:D4:EE:3F:03:B3:01:B9:8A
ValidityThu, 08 Jun 2023 07:25:25 GMT - Wed, 06 Sep 2023 07:25:24 GMT
File type GIF image data, version 89a, 960 x 80\012- data
Size 134 kB (134435 bytes)
Hash 7983f1391ce543dd42fe6815d4ebbbe8
995823a395eb624d4a4daa1f858450c4902983aa
3599d08f3f52194a3e55e304a11c154b0d3c356ada4e1bcc1a93e152abd298bc
GET /loveimgmoe/a2/26/634f6a10b00402dc89b1a226.gif HTTP/1.1
Host: img.mengzhan28.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 12:07:01 GMT
content-type: image/png
content-length: 134435
cache-control: max-age=16070400
last-modified: Thu, 08 Jun 2023 13:38:15 GMT
cf-cache-status: HIT
age: 2098
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GkpWdu82cLKZ2q%2FeJVfRMOHjvS2Qz1ApsYyYA4KtvsjGGhDxH5EE5%2FO0zPJrzCEmvK0RbzKQN3nmOyrGrSCV7Vnq9jLU8TfslW545jd07tKB%2BY16RCrZXizQEwUkXYYw9Cak1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 7d49407cdaccb4f4-OSL
alt-svc: h3=":443"; ma=86400
img.mengzhan28.top/loveimgmoe/5c/83/62617dcda2147d0648e95c83.gif
200 OK 1.0 MB URL GET HTTP/3 img.mengzhan28.top/loveimgmoe/5c/83/62617dcda2147d0648e95c83.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGoogle Trust Services LLC
Subjectmengzhan28.top
Fingerprint68:21:66:FE:9F:A9:A6:83:A2:CD:8E:D5:D4:EE:3F:03:B3:01:B9:8A
ValidityThu, 08 Jun 2023 07:25:25 GMT - Wed, 06 Sep 2023 07:25:24 GMT
File type GIF image data, version 89a, 960 x 240\012- data
Size 1.0 MB (1031440 bytes)
Hash 6217e697e5bcdcf05bce5b844cda6ddc
3aab263cdc8a2cee991e34701689b7b497f92e75
d0f2fe7b11ea4b5daae1619e4c8307b7df14866c79f6ded60ba0401bf8350d46
GET /loveimgmoe/5c/83/62617dcda2147d0648e95c83.gif HTTP/1.1
Host: img.mengzhan28.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 09 Jun 2023 12:07:01 GMT
content-type: image/png
content-length: 1031440
cache-control: max-age=16070400
last-modified: Thu, 08 Jun 2023 13:38:19 GMT
cf-cache-status: HIT
age: 2098
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1mgafqRUEjaj8%2BSU2HbkgA018xXf4zmBg5ad4vnppwg2h9C%2BKu2Zhau0uo2pypAXEEXrpTqUW3hLptfiWb40FW%2B%2FqRO8C7IQWy%2BnPemxVjy3tSLsX28%2FWae62UVDqtr1d8NAQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 7d49407c9a5eb4f4-OSL
alt-svc: h3=":443"; ma=86400
abc748596aaa.vip/9820/960-80A.gif
200 OK 56 kB URL GET HTTP/1.1 abc748596aaa.vip/9820/960-80A.gif
IP
ASN #136933 Gigabitbank Global
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject9304hhh999.vip
Fingerprint25:2C:62:29:71:BC:BA:71:F1:AA:44:A0:0E:CD:E5:A9:74:2E:77:1B
ValiditySun, 14 May 2023 04:38:23 GMT - Sat, 12 Aug 2023 04:38:22 GMT
File type GIF image data, version 89a, 980 x 60\012- data
Hash 361aed34798f98db26e7c50462c4b8c5
5ef04619670d41dbbe05e4fa0df9ddd54445d2cd
3a462d3a0fa3dc9d6e8ad5a69e6ec75418b618e0ff6a6abc4bef899a96874e57
GET /9820/960-80A.gif HTTP/1.1
Host: abc748596aaa.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Wed, 09 Nov 2022 12:29:16 GMT
Accept-Ranges: bytes
ETag: "2ac34ee236f4d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 28 May 2023 11:21:16 GMT
Content-Length: 55633
768guangg1.oss-cn-guangzhou.aliyuncs.com/vip80.gif
200 OK 202 kB URL GET HTTP/1.1 768guangg1.oss-cn-guangzhou.aliyuncs.com/vip80.gif
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGlobalSign nv-sa
Subject*.oss-cn-shenzhen.aliyuncs.com
Fingerprint83:92:B0:4C:5C:51:15:BB:A3:78:1F:CF:E8:53:1F:23:D6:94:8F:5C
ValidityMon, 30 Jan 2023 02:31:11 GMT - Sat, 02 Mar 2024 02:31:10 GMT
File type GIF image data, version 89a, 960 x 80\012- data
Size 202 kB (201828 bytes)
Hash 0ffdf64783f6a6ca7d5273dee681ef23
900757d89d008d92c43ce0aa035c1c84e867b4e9
a8075421e4647269a7f58ae6d51ebbd79a4c54c1e62243ba2e92be93b612b390
GET /vip80.gif HTTP/1.1
Host: 768guangg1.oss-cn-guangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Fri, 09 Jun 2023 12:07:01 GMT
Content-Type: image/gif
Content-Length: 201828
Connection: keep-alive
x-oss-request-id: 648315E5659AC339372A110F
Accept-Ranges: bytes
ETag: "0FFDF64783F6A6CA7D5273DEE681EF23"
Last-Modified: Sat, 04 Mar 2023 08:09:36 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3255087339911631825
x-oss-storage-class: Standard
Content-MD5: D/32R4P2psp9UnPe5oHvIw==
x-oss-server-time: 1
dvcasha2.ocsp-certum.com/
1.6 kB URL dvcasha2.ocsp-certum.com/
IP
ASN #20940 Akamai International B.V.
Hash 2befad02e5036a25e2f55a5c4e692d68
bc8e20d6cb98ed232fa1cac2645dc5f187a76229
0a315110592c8ea2836d67502796c5dd3ade2b50b04f439b877021b96901dcc2
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=419
Date: Fri, 09 Jun 2023 12:07:02 GMT
Connection: keep-alive
Server-Timing: ak_p; desc="1686312422429_1600457405_123588258_858_423_0_0_-";dur=1
cdn.dcloud.net.cn/img/shadow-grey.png
200 OK 136 B URL GET HTTP/1.1 cdn.dcloud.net.cn/img/shadow-grey.png
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerUnizeto Technologies S.A.
Subject*.dcloud.net.cn
FingerprintA8:B8:F7:1E:26:84:E3:26:06:CC:91:1D:77:1A:92:3D:D3:10:E2:12
ValidityThu, 21 Jul 2022 09:36:41 GMT - Sat, 19 Aug 2023 00:00:00 GMT
File type PNG image data, 1 x 6, 4-bit colormap, non-interlaced\012- data
Hash 5a962adf74d92ae702467b3f47976547
36f74049375584e3fa69b5ef87e9572336ff9e7a
ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f
GET /img/shadow-grey.png HTTP/1.1
Host: cdn.dcloud.net.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 12:07:02 GMT
Content-Type: image/png
Content-Length: 136
Last-Modified: Thu, 06 Jun 2019 06:42:07 GMT
Connection: close
ETag: "5cf8b5bf-88"
Expires: Fri, 09 Jun 2023 14:07:02 GMT
Cache-Control: max-age=7200
Set-Cookie: __uni__uid=CgIBX2SDFeZKUyVEwrCcAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none
Accept-Ranges: bytes
lxbd2.com/457848ec4c4ba3a5a998e9d4ef376953.gif
200 OK 334 kB URL GET HTTP/2 lxbd2.com/457848ec4c4ba3a5a998e9d4ef376953.gif
IP
ASN #201106 Spartan Host Ltd
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subjectlxbd2.com
FingerprintBD:68:BB:10:EC:8E:2A:1F:A1:F9:FA:FF:FA:77:AD:C7:B1:FE:FE:D2
ValiditySat, 27 May 2023 09:34:51 GMT - Fri, 25 Aug 2023 09:34:50 GMT
File type GIF image data, version 89a, 960 x 80\012- data
Size 334 kB (334447 bytes)
Hash 951b69336d9c15a474f41f1570950b3d
dbeb8fd225c80ce43707842386496340cd8d9bb4
76cce8df402fc0d22d11148e2c3234c754729790550a898bf49b5040b6c0e27a
GET /457848ec4c4ba3a5a998e9d4ef376953.gif HTTP/1.1
Host: lxbd2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 12:07:02 GMT
content-type: image/gif
content-length: 334447
last-modified: Fri, 31 Mar 2023 06:51:27 GMT
etag: "642682ef-51a6f"
expires: Sat, 10 Jun 2023 00:07:02 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 76019
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0MYlJZNdtQ4Nm7fCZ%2FizK7x%2BBcTIWIQ2RJ4PxsiVL0tLcEfThGeWSJNYa6RMTIbXjI2GGIOWo%2B0jEypd%2BBbiOnxEqi9O9a8HE1gnUHL5ubfm8bADaCjqAi9z45VW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7d17a4caeec9682f-SEA
alt-svc: h3=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.cn/
471 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 6ce360080eaceb3270054d0760203e3a
e77556b910592232c25bd7a86f8dfba0f27d91b6
6ced0c43fdde511149b6fee759822971e16da0e7c3a63b08aeed85ba581394b4
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Fri, 09 Jun 2023 12:07:03 GMT
Ali-Swift-Global-Savetime: 1686312424
Via: cache6.l2de2[530,529,200-0,M], cache6.l2de2[531,0], cache7.se1[553,553,200-0,M], cache7.se1[554,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Fri, 09 Jun 2023 12:07:04 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9b16863124234624076e
ocsp.globalsign.com/gsrsaovsslca2018
1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash a665457040b0f6db6f57cdefd56b0a38
67b7322e64cef7fbf40a4890de980c35543d85ca
c604326460f79fa49414e446dfc5331a4348af0c4b96d758a052d5ce8537debe
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 12:07:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 08:53:30 GMT
ETag: "67b7322e64cef7fbf40a4890de980c35543d85ca"
Last-Modified: Fri, 09 Jun 2023 08:53:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2099
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d49408b2e05b500-OSL
si1.go2yd.com/get-image/0xvvNgB8Gv4
200 OK 221 kB URL GET HTTP/2 si1.go2yd.com/get-image/0xvvNgB8Gv4
IP
ASN #136958 China Unicom Guangdong IP network
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerDigiCert Inc
Subject*.go2yd.com
Fingerprint10:D5:37:C8:91:A2:3A:14:E3:B5:69:9A:33:EE:0B:3E:78:78:29:98
ValidityThu, 23 Jun 2022 00:00:00 GMT - Sat, 15 Jul 2023 23:59:59 GMT
File type GIF image data, version 89a, 640 x 200\012- data
Size 221 kB (220584 bytes)
Hash ed1476e1024db859de214efcf4cb5293
316ac4a922515a7a76398e09c891a876c2eb5c95
fd556383f1fa01c663496b3b8c81cab19123f4614b4df4f300f963b516f5e0bc
GET /get-image/0xvvNgB8Gv4 HTTP/1.1
Host: si1.go2yd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: JSP3/2.0.14
date: Fri, 09 Jun 2023 12:07:04 GMT
content-type: image/gif
content-length: 220584
last-modified: Wed, 16 Feb 2022 12:37:53 GMT
etag: "ed1476e1024db859de214efcf4cb5293"
age: 18013
accept-ranges: bytes
x-application-context: application
x-kss-request-id: 4a15dd110fef49399b2aa255f7a6e9b8
content-md5: 7RR24QJNuFneIU789MtSkw==
timing-allow-origin: *
ohc-global-saved-time: Sun, 28 May 2023 23:11:04 GMT
ohc-cache-hit: gz3un63 [2], jnuncache87 [1], bdix166 [4]
ohc-file-size: 220584
x-cache-status: HIT
X-Firefox-Spdy: h2
kjimg10.360buyimg.com/ott/jfs/t1/46182/9/21860/1411145/63819a6eEcb8ec547/ae47a05d2165a957.gif
200 OK 1.4 MB URL GET HTTP/2 kjimg10.360buyimg.com/ott/jfs/t1/46182/9/21860/1411145/63819a6eEcb8ec547/ae47a05d2165a957.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGlobalSign nv-sa
Subject*.jd.com
Fingerprint5A:48:DE:DD:DD:AC:15:DB:65:A5:0E:C3:10:7A:20:72:69:B2:BF:0A
ValidityTue, 18 Oct 2022 07:17:10 GMT - Sun, 19 Nov 2023 06:52:17 GMT
File type GIF image data, version 89a, 960 x 80\012- data
Size 1.4 MB (1411145 bytes)
Hash 3e2a08c45f216f23995e08dc45ed0e86
c9390027ee4885cb509d8b2ad37d6daa9698631e
ffdceb96ee4670386b85d0e2389496569d7e5e9f16844c2f26e9656482a8f12f
GET /ott/jfs/t1/46182/9/21860/1411145/63819a6eEcb8ec547/ae47a05d2165a957.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 12:07:04 GMT
content-type: image/gif
content-length: 1411145
cache-control: max-age=15552000
expires: Sun, 03 Dec 2023 17:42:46 GMT
last-modified: Sat, 26 Nov 2022 04:47:42 GMT
age: 239058
via: http/1.1 ORI-CLOUD-HUZ-MIX-15 (jcs [cRs f ]), http/1.1 SQ-CT-1-MIX-15 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1686073366828-0-0-0-77-77;200;200-1686115972982-0-0-0-1-1;200-1686312424278-0-0-0-2-2
X-Firefox-Spdy: h2
kjimg10.360buyimg.com/ott/jfs/t1/222610/4/20743/688878/6380d41fEdd27fc60/810ef977e1cd11c0.gif
689 kB URL GET kjimg10.360buyimg.com/ott/jfs/t1/222610/4/20743/688878/6380d41fEdd27fc60/810ef977e1cd11c0.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerGlobalSign nv-sa
Subject*.jd.com
Fingerprint5A:48:DE:DD:DD:AC:15:DB:65:A5:0E:C3:10:7A:20:72:69:B2:BF:0A
ValidityTue, 18 Oct 2022 07:17:10 GMT - Sun, 19 Nov 2023 06:52:17 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 689 kB (688878 bytes)
Hash 38adb06da8d7db34d62dfc1760cda2dd
862c5ecedd5add094b8dfb22c3087b09493a312a
89521c87c1fe061e63fb523bb11f2a328e9202574d73aa4c4e17de8a8f301c58
GET /ott/jfs/t1/222610/4/20743/688878/6380d41fEdd27fc60/810ef977e1cd11c0.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 12:07:04 GMT
content-type: image/gif
content-length: 688878
cache-control: max-age=15552000
expires: Fri, 01 Dec 2023 03:12:12 GMT
last-modified: Fri, 25 Nov 2022 14:41:35 GMT
age: 464092
via: http/1.1 ORI-CLOUD-HUZ-MIX-23 (jcs [cHs f ]), http/1.1 SQ-CT-1-MIX-15 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1685848332517-0-0-1-66-66;200;200-1685872025746-0-0-0-5-5;200-1686312424381-0-0-0-1-1
X-Firefox-Spdy: h2
66j877.com:1689/web.php/index/base
200 OK 49 kB URL GET HTTP/2 66j877.com:1689/web.php/index/base
IP
ASN #56046 China Mobile communications corporation
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject66j877.com
Fingerprint7C:26:C7:A8:45:F9:D8:94:A8:E2:2A:43:70:F6:77:6B:6F:D0:37:2A
ValidityWed, 31 May 2023 10:15:51 GMT - Tue, 29 Aug 2023 10:15:50 GMT
File type JSON data\012- , ASCII text, with very long lines (48702), with no line terminators
Hash 663c35fafef850892fa3876dbec5e747
1a325f2ade2d7a5b11a27e27da5afbdcccdb9da8
d66fe61a63fdd6c72250d88f77e2b5fcca5b36351249e5ec070ff550b8000cec
GET /web.php/index/base HTTP/1.1
Host: 66j877.com:1689
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://news1.66j890.com
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:07:01 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
img.1385a.xyz/images/62618106a2147d0648e95c86.gif
302 Found 86 kB URL GET HTTP/2 img.1385a.xyz/images/62618106a2147d0648e95c86.gif
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject1385a.xyz
FingerprintEA:9A:42:B1:F4:12:09:E8:0D:1B:C6:27:A7:EB:49:67:71:4F:20:49
ValidityWed, 10 May 2023 09:17:49 GMT - Tue, 08 Aug 2023 09:17:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/62618106a2147d0648e95c86.gif HTTP/1.1
Host: img.1385a.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=1800
location: https://img.mengzhan28.top/loveimgmoe/5c/86/62618106a2147d0648e95c86.gif
X-Firefox-Spdy: h2
news1.66j890.com/static/js/chunk-vendors.b62adbd3.js
200 OK 550 kB URL GET HTTP/2 news1.66j890.com/static/js/chunk-vendors.b62adbd3.js
IP
ASN #38186 Forewin Telecom Group Limited, ISP at
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subjectnews2.66j891.com
Fingerprint37:CE:BE:F2:50:DA:FE:FF:56:1A:6C:BE:D7:81:65:BB:9F:E1:28:78
ValidityFri, 02 Jun 2023 04:43:27 GMT - Thu, 31 Aug 2023 04:43:26 GMT
Size 550 kB (549792 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/chunk-vendors.b62adbd3.js HTTP/1.1
Host: news1.66j890.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/?time=1686312416.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:06:57 GMT
content-type: application/javascript
last-modified: Wed, 31 May 2023 11:40:56 GMT
vary: Accept-Encoding
etag: W/"64773248-863a0"
expires: Sat, 10 Jun 2023 00:06:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
66j877.com:1689/web.php/index/type
200 OK 67 kB URL GET HTTP/2 66j877.com:1689/web.php/index/type
IP
ASN #56046 China Mobile communications corporation
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject66j877.com
Fingerprint7C:26:C7:A8:45:F9:D8:94:A8:E2:2A:43:70:F6:77:6B:6F:D0:37:2A
ValidityWed, 31 May 2023 10:15:51 GMT - Tue, 29 Aug 2023 10:15:50 GMT
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash f3d00d22b0547c0e860e44305f1d94b8
a5b6a341b10b13c3bd5dcb3f642ba150b9be13e7
9d6757b26b375375bc98972c380d2f3781d9adff2216aa56cad7ab1543d529d8
GET /web.php/index/type HTTP/1.1
Host: 66j877.com:1689
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://news1.66j890.com
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:07:01 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
news1.66j890.com/static/js/index.7713977f.js
200 OK 57 kB URL GET HTTP/2 news1.66j890.com/static/js/index.7713977f.js
IP
ASN #38186 Forewin Telecom Group Limited, ISP at
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subjectnews2.66j891.com
Fingerprint37:CE:BE:F2:50:DA:FE:FF:56:1A:6C:BE:D7:81:65:BB:9F:E1:28:78
ValidityFri, 02 Jun 2023 04:43:27 GMT - Thu, 31 Aug 2023 04:43:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/index.7713977f.js HTTP/1.1
Host: news1.66j890.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/?time=1686312416.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:06:57 GMT
content-type: application/javascript
last-modified: Wed, 31 May 2023 11:40:56 GMT
vary: Accept-Encoding
etag: W/"64773248-df7b"
expires: Sat, 10 Jun 2023 00:06:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
link.imgapp.top/images/6328a0aa67592c272fc6ea82.png
302 Found 48 kB URL GET HTTP/2 link.imgapp.top/images/6328a0aa67592c272fc6ea82.png
IP
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subjectimgapp.top
Fingerprint45:76:F9:B9:B1:DA:19:E8:20:46:3E:9B:A4:8A:AE:E8:17:5E:07:B2
ValidityTue, 28 Mar 2023 13:15:37 GMT - Mon, 26 Jun 2023 13:15:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/6328a0aa67592c272fc6ea82.png HTTP/1.1
Host: link.imgapp.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=1800
location: https://img.mengzhan28.top/loveimgmoe/ea/82/6328a0aa67592c272fc6ea82.png
X-Firefox-Spdy: h2
news1.66j890.com/static/js/pages-index-index.cb30b756.js
200 OK 5.0 kB URL GET HTTP/2 news1.66j890.com/static/js/pages-index-index.cb30b756.js
IP
ASN #38186 Forewin Telecom Group Limited, ISP at
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subjectnews2.66j891.com
Fingerprint37:CE:BE:F2:50:DA:FE:FF:56:1A:6C:BE:D7:81:65:BB:9F:E1:28:78
ValidityFri, 02 Jun 2023 04:43:27 GMT - Thu, 31 Aug 2023 04:43:26 GMT
File type Unicode text, UTF-8 text, with very long lines (5278), with no line terminators
Hash e0b70a865b5868044b7df512654cc57d
734097be735087b2fc8bc6ba78b3c1da9a3af72d
b72e0251ca5d9e7aea2de2ee0f6c7a3b5c6bbb4c16c5fd30c344e7cd4a41a284
GET /static/js/pages-index-index.cb30b756.js HTTP/1.1
Host: news1.66j890.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/?time=1686312416.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:06:58 GMT
content-type: application/javascript
last-modified: Wed, 31 May 2023 11:40:56 GMT
vary: Accept-Encoding
etag: W/"64773248-1398"
expires: Sat, 10 Jun 2023 00:06:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
66j877.com:1689/web.php/index/index
200 OK 47 kB URL GET HTTP/2 66j877.com:1689/web.php/index/index
IP
ASN #56046 China Mobile communications corporation
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject66j877.com
Fingerprint7C:26:C7:A8:45:F9:D8:94:A8:E2:2A:43:70:F6:77:6B:6F:D0:37:2A
ValidityWed, 31 May 2023 10:15:51 GMT - Tue, 29 Aug 2023 10:15:50 GMT
File type JSON data\012- , ASCII text, with very long lines (46860), with no line terminators
Hash 019566342e72a439e6a0a638e6dc41f9
eb7962b6b5a8460165c5eb45484b06c45e324a0f
acd953c62a6ea95dca763fe3492badc6381891dc2413a6530b13d30f2194e0c6
GET /web.php/index/index HTTP/1.1
Host: 66j877.com:1689
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://news1.66j890.com
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:07:02 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
news1.66j890.com/static/js/pages-detail-art~pages-detail-vod~pages-index-index~pages-play-play~pages-search-search~pages-type-a~3bdb0e93.b9637c6a.js
200 OK 51 kB URL GET HTTP/2 news1.66j890.com/static/js/pages-detail-art~pages-detail-vod~pages-index-index~pages-play-play~pages-search-search~pages-type-a~3bdb0e93.b9637c6a.js
IP
ASN #38186 Forewin Telecom Group Limited, ISP at
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subjectnews2.66j891.com
Fingerprint37:CE:BE:F2:50:DA:FE:FF:56:1A:6C:BE:D7:81:65:BB:9F:E1:28:78
ValidityFri, 02 Jun 2023 04:43:27 GMT - Thu, 31 Aug 2023 04:43:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/pages-detail-art~pages-detail-vod~pages-index-index~pages-play-play~pages-search-search~pages-type-a~3bdb0e93.b9637c6a.js HTTP/1.1
Host: news1.66j890.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/?time=1686312416.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:06:58 GMT
content-type: application/javascript
last-modified: Wed, 31 May 2023 11:40:56 GMT
vary: Accept-Encoding
etag: W/"64773248-c8ee"
expires: Sat, 10 Jun 2023 00:06:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
news1.66j890.com/static/index.63b34199.css
200 OK 96 kB URL GET HTTP/2 news1.66j890.com/static/index.63b34199.css
IP
ASN #38186 Forewin Telecom Group Limited, ISP at
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subjectnews2.66j891.com
Fingerprint37:CE:BE:F2:50:DA:FE:FF:56:1A:6C:BE:D7:81:65:BB:9F:E1:28:78
ValidityFri, 02 Jun 2023 04:43:27 GMT - Thu, 31 Aug 2023 04:43:26 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 98c3f2478e126911070b7d39b60e33aa
7876e4e482f948021e45fdf1ba6bfb507f747028
0cbe21cbd48de683ef65476d5eef01398e97cd11130758352c99f9eb5b266da6
GET /static/index.63b34199.css HTTP/1.1
Host: news1.66j890.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/?time=1686312416.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:06:57 GMT
content-type: text/css
last-modified: Wed, 31 May 2023 11:40:56 GMT
vary: Accept-Encoding
etag: W/"64773248-17884"
expires: Sat, 10 Jun 2023 00:06:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
66j877.com:1689/web.php/index/showType
200 OK 987 B URL GET HTTP/2 66j877.com:1689/web.php/index/showType
IP
ASN #56046 China Mobile communications corporation
Requested by https://news1.66j890.com/?time=1686312416.html
Certificate IssuerLet's Encrypt
Subject66j877.com
Fingerprint7C:26:C7:A8:45:F9:D8:94:A8:E2:2A:43:70:F6:77:6B:6F:D0:37:2A
ValidityWed, 31 May 2023 10:15:51 GMT - Tue, 29 Aug 2023 10:15:50 GMT
File type troff or preprocessor input, ASCII text, with very long lines (999), with no line terminators
Hash 67013c0c75f9c32dd712305c75279a8f
69bcc2f82f0f596e9dc07a51faefac8bfa0305e9
64f4cd3c313b84831e27403de86df596dda7244190b69da503e5e6f3f9881378
GET /web.php/index/showType HTTP/1.1
Host: 66j877.com:1689
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://news1.66j890.com
DNT: 1
Connection: keep-alive
Referer: https://news1.66j890.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
date: Fri, 09 Jun 2023 12:07:01 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
154.38.87.23
47.246.44.251
43.248.139.46
119.47.87.204
104.18.21.226
95.101.10.193