r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2258cd6b877a3aca8f4c84074e65ac4b
4e46c70941f8e497e8afc8d078644e7f81761a1c
faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16279
Expires: Mon, 16 Jan 2023 12:40:47 GMT
Date: Mon, 16 Jan 2023 08:09:28 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3063227f59d1935298b0620fa7919145
478e1d8bef04b1f95381cac01829c03b6779d420
619281d3b9753bc6d2845786da75e8566687362769517aacf90f953ffbb8407c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "619281D3B9753BC6D2845786DA75E8566687362769517AACF90F953FFBB8407C"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8265
Expires: Mon, 16 Jan 2023 10:27:13 GMT
Date: Mon, 16 Jan 2023 08:09:28 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d6e2abd68203014e8e24d4a9e20e980a
5edbbb1a36083d5077b90b82e7aa10049e90c5d6
88cf8dae194a5e92a8c36a4c54ae71a609eaaed6e99d3986b3834c40d2fceeaa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88CF8DAE194A5E92A8C36A4C54AE71A609EAAED6E99D3986B3834C40D2FCEEAA"
Last-Modified: Sun, 15 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17278
Expires: Mon, 16 Jan 2023 12:57:26 GMT
Date: Mon, 16 Jan 2023 08:09:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 16 Jan 2023 07:42:09 GMT
content-type: application/json
age: 1639
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4olHL721JgkZlbHfNSyck9TJkS/2VIjKpwiOnq3Ui22MVlUuja1k4vRc4Npqj8vb6GRhKwG+g1E=
x-amz-request-id: 9W4S83DMG6AM8XE2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 16 Jan 2023 07:44:30 GMT
age: 1498
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
58249.net/html/163977/164033.html
207.60.203.116301 Moved Permanently 0 B URL HTTP/1.1 58249.net/html/163977/164033.html
IP 207.60.203.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /html/163977/164033.html HTTP/1.1
Host: 58249.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.58249.net/html/163977/164033.html
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:28 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 16 Jan 2023 07:33:46 GMT
age: 2143
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.58249.net/html/163977/164033.html
207.60.203.116200 OK 528 B URL HTTP/1.1 www.58249.net/html/163977/164033.html
IP 207.60.203.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (834), with CRLF line terminators
Hash 44fc0057c93561f2b4dac84795ec5913
49179ce4d621fa321ab9d33a78c85fc83adb1e76
e0a9e4f40d5418d40531bb12821bea5bb1972a824b79feee06989ae840881321
GET /html/163977/164033.html HTTP/1.1
Host: www.58249.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 16 Jan 2023 08:09:34 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e5f9cfd32ba0e755eba2eba2bca5bc3c
012c01ac7a06da9f57e0e1c24658a4bd40e82518
ffd7fc715a11f6579f953c2f0f65128000733620fcc777cd0a4c5bb895c64ad2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2088
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 08:09:29 GMT
Etag: "63c3c226-1d7"
Last-Modified: Mon, 16 Jan 2023 07:34:41 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.58249.net/common.js
207.60.203.116200 OK 676 B IP 207.60.203.116:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1293), with no line terminators
Hash f9f32de8cf433e2006db8e87cca2bfbd
816b8e176a34a403ec76a01a8f7b8c4d4b25b8ca
692ee11acd3f9f4269c339a6b5124caa9b6eb2938a9e54c160d081fbc0a357e2
GET /common.js HTTP/1.1
Host: www.58249.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.58249.net/html/163977/164033.html
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 16 Jan 2023 08:09:34 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
44.230.240.8101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.230.240.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: we1RAMQP7XoPYcEqCjMHjw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rlp45r2jjK/YEjXhBfU+Bpe57r0=
www.58249.net/tj.js
207.60.203.116200 OK 258 B IP 207.60.203.116:0
File type ASCII text, with CRLF line terminators
Hash 242231561cfe56644b27d4a99dab3707
229dab6a4df40555671564eb2298003b2dd25f25
d25a43f1930ed0a397dc1f1cf346f349e94620f28f2acba94571e7c5278533af
GET /tj.js HTTP/1.1
Host: www.58249.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.58249.net/html/163977/164033.html
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 16 Jan 2023 08:09:34 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.58249.net/favicon.ico
207.60.203.116200 OK 528 B URL HTTP/1.1 www.58249.net/favicon.ico
IP 207.60.203.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (834), with CRLF line terminators
Hash 44fc0057c93561f2b4dac84795ec5913
49179ce4d621fa321ab9d33a78c85fc83adb1e76
e0a9e4f40d5418d40531bb12821bea5bb1972a824b79feee06989ae840881321
GET /favicon.ico HTTP/1.1
Host: www.58249.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.58249.net/html/163977/164033.html
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 16 Jan 2023 08:09:34 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash c5e6e256d863cc1b1f0399667938ec31
4f814a099bce3cb84da10aa0754cc74d4bac46ea
634c405da1158fe50127eb3c4e79f9829e026c0675530f9081ef149b1dde8b94
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:30 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 20 Jan 2023 07:15:29 GMT
ETag: "4f814a099bce3cb84da10aa0754cc74d4bac46ea"
Last-Modified: Mon, 16 Jan 2023 07:15:30 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1797
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78a55e8c6e5a1c02-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bb14ddc44f6abeb228d80ec70356acf6
3a895ba7a0a46a992135fee5edee2a4fb6b183b7
86daa192a29013190cb7b8939b463dd0d7d442fa434a14471047925819e9ab3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "86DAA192A29013190CB7B8939B463DD0D7D442FA434A14471047925819E9AB3F"
Last-Modified: Sat, 14 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21596
Expires: Mon, 16 Jan 2023 14:09:26 GMT
Date: Mon, 16 Jan 2023 08:09:30 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16996
Expires: Mon, 16 Jan 2023 12:52:47 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16996
Expires: Mon, 16 Jan 2023 12:52:47 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16996
Expires: Mon, 16 Jan 2023 12:52:47 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16996
Expires: Mon, 16 Jan 2023 12:52:47 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa81e129b-3fb3-4b30-a6fc-04ac1926b5c8.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa81e129b-3fb3-4b30-a6fc-04ac1926b5c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0c1d929710bbf5d3a500cff064fa28e5
f76fade4eba5e5740d1261a2bce7776719ee477f
bb0b45ede28406534c236881abe011a1b8162a1bcb4cbe61320c613fec5d0010
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa81e129b-3fb3-4b30-a6fc-04ac1926b5c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7986
x-amzn-requestid: 366be46e-97f4-4bdc-8341-5bf87438ad86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbPvEezoAMF6ng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47264-7eef208b3ec703b82d792537;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qfBDjRpkhNx6ijJvTvPJFwvyjzTPnsPFHYFBK6wYwrUk1dwyCo2UCw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 22:03:31 GMT
age: 36360
etag: "f76fade4eba5e5740d1261a2bce7776719ee477f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2fb3ba8-a85e-42ba-b607-87ced36844b2.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2fb3ba8-a85e-42ba-b607-87ced36844b2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 542f87ebb35e170451b610e4b700bcb1
2259cdebacc4c9f07aad838eec494863d4273ad1
85001f2cf33f3fc98d4cdcc7aef38611e34aea3a791d8acb0a5946c4619398eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2fb3ba8-a85e-42ba-b607-87ced36844b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5766
x-amzn-requestid: b6a8d7ee-ff35-4720-8d2e-ba2b8db6edfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbP4GDQIAMFTSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47265-6022a62f69d8f938458d18a0;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YcIDYSEtEIIfGauNxD9V1tuSCAPDq9OaaAATRTOC3Sjlb-72IA0ScQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 22:02:24 GMT
age: 36427
etag: "2259cdebacc4c9f07aad838eec494863d4273ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3564c3f8-6384-4420-a3b3-d060b8324eef.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3564c3f8-6384-4420-a3b3-d060b8324eef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba954510928a547a0b65833f87b0acf1
5746f59a27f97ca73d2c241c1580000957074c54
960d0c8bcb3085d3b5be0ad0f08597160cde3e2945aaad9a59a4434ccc0fd9f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3564c3f8-6384-4420-a3b3-d060b8324eef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7596
x-amzn-requestid: 225cbfa3-2597-4998-9b8a-a8888d1799f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbQgGPxIAMFUfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47269-33398b305db48e6801f0f323;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NQPO4JTEgixpxf277NbMfvdB46jSxutEUmCZtVE0Zilp1mkw7jGdIA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 21:54:30 GMT
age: 36901
etag: "5746f59a27f97ca73d2c241c1580000957074c54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c941e9c-910c-4cd7-a013-a4dca3c5db2b.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c941e9c-910c-4cd7-a013-a4dca3c5db2b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4fcbed1f27bccb1f8b6fe4c9efde16f
2b2b272f1712319a5de86f8fac3f73b23e5ef4b0
d33384b6a4f1f5a5ee73643dd86161fe59dfe9d27af4483ffef2e28693e62ee6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c941e9c-910c-4cd7-a013-a4dca3c5db2b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3845
x-amzn-requestid: 4b8fa830-dad5-4f44-addd-2fcee42f417e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: excEMFt1oAMFeOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a6e7-703ffebe0297428c35eabdb6;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:10:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wMmYR9yEPelW_Q5_tnImorkseC1tr0EcDvNHeYBpNWB6l47og9HC5Q==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 04:54:34 GMT
age: 11697
etag: "2b2b272f1712319a5de86f8fac3f73b23e5ef4b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6288fb14-98ed-45e9-92f6-6fabe4d7cf2f.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6288fb14-98ed-45e9-92f6-6fabe4d7cf2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a14364fe2ad784ef5db2ea66dcf18dba
3274bc2a0b6e41d6f44e31ab0e233f79677079d3
40ffbf3dd157214eb918c6babf69b94f657f354337001f0b7e06930bf6a47aae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6288fb14-98ed-45e9-92f6-6fabe4d7cf2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7291
x-amzn-requestid: 153fdafd-e094-4261-8202-065208ed543e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbOMGuxoAMFkJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4725a-68ba19037f23dae033513080;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dCzcLSv-R9QxYnx_d6iQJBWnYuZIIsHlwdKj4N_8yNlNHiSQ7RDDVQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 21:45:02 GMT
age: 37469
etag: "3274bc2a0b6e41d6f44e31ab0e233f79677079d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08647b23-df38-4ed1-bdbd-a4fba997c933.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08647b23-df38-4ed1-bdbd-a4fba997c933.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cff4cbad17919648f62b3582f49c404b
65b8056061916928e309bb983129353a577c2b89
f6ba13b6fd5a6a39f0a34b406b39471f02c6f5fd72813db64585a8e795ec44a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08647b23-df38-4ed1-bdbd-a4fba997c933.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9304
x-amzn-requestid: c14aa47a-3e94-491a-95ab-beae1f5bdb9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbKtFrIoAMFt5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47244-3a6b3c4b4b35ba8f57aa449a;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: quy8cULp0c0o6cHatiXz8R9t9hvQyus52_hOWSReahePmcxb6hOT4A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 21:54:26 GMT
age: 36905
etag: "65b8056061916928e309bb983129353a577c2b89"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c4c3a8e43cc84fc57bdf23fc3ee10e94
e5d9d1f6590428a652c9bb000a589eb4aab6f73d
80b9fb88706212fe036aed3853ba9907ae46bedac1b172294c4c2d9e11116405
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "80B9FB88706212FE036AED3853BA9907AE46BEDAC1B172294C4C2D9E11116405"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10267
Expires: Mon, 16 Jan 2023 11:00:38 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2023/01/fzpsdysz52m.jpg
104.22.12.214200 OK 8.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/fzpsdysz52m.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 193297c90512c9886ed6728bf902949a
a9f66dc889e2c99572767e15c7c01f68adc79793
f02da85f7c25bf587ade019cde6f9d1942a977bbb9f6826a1f2329feddad9602
GET /upload/vod/2023/01/fzpsdysz52m.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/webp
content-length: 8118
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8828
content-disposition: inline; filename="fzpsdysz52m.webp"
etag: "63c390f7-227c"
last-modified: Sun, 15 Jan 2023 05:36:55 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1196
accept-ranges: bytes
server: cloudflare
cf-ray: 78a55e9228d8fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/4osse0tvnrp.jpg
104.22.12.214200 OK 5.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/4osse0tvnrp.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 32aa580ddd8b9d01e4f8578240deee8a
c0952f1ff5500dd16850731580c80ce3b60a94be
502f9ffd6e2195ebcda464528b921328f7fae9b14411439ed43638f8a984ca02
GET /upload/vod/2023/01/4osse0tvnrp.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/webp
content-length: 5586
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6582
content-disposition: inline; filename="4osse0tvnrp.webp"
etag: "63c39112-19b6"
last-modified: Sun, 15 Jan 2023 05:37:22 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1196
accept-ranges: bytes
server: cloudflare
cf-ray: 78a55e9228e0fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/ta5rjvfgzhc.jpg
104.22.12.214200 OK 8.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/ta5rjvfgzhc.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 61920e1e202852fe96a885eeb5edc3f1
6cbaffc5e06ad11f0b4428c27052f579b3b1a24a
171cc38ff671a8c4675544da82947015084be88fecc0b32a828ba6a0cc8ca5be
GET /upload/vod/2023/01/ta5rjvfgzhc.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/webp
content-length: 8734
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9520
content-disposition: inline; filename="ta5rjvfgzhc.webp"
etag: "63c3910d-2530"
last-modified: Sun, 15 Jan 2023 05:37:17 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1196
accept-ranges: bytes
server: cloudflare
cf-ray: 78a55e9228defac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/pgbyxdmp2pl.jpg
104.22.12.214200 OK 6.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/pgbyxdmp2pl.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c3331889062468b99f10e9cd3e5a01b2
6a330a76ed96d293005459bb5f8871a21afe6849
d5d310fb9ca5806a88f9a431b131833eb30e13311ffff581fba1e011f812dc9b
GET /upload/vod/2023/01/pgbyxdmp2pl.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/webp
content-length: 6830
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7875
content-disposition: inline; filename="pgbyxdmp2pl.webp"
etag: "63c39117-1ec3"
last-modified: Sun, 15 Jan 2023 05:37:27 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1196
accept-ranges: bytes
server: cloudflare
cf-ray: 78a55e9228e2fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/jfereb0uqvy.jpg
104.22.12.214200 OK 3.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/jfereb0uqvy.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 530dff6e7811185027ef193aa475a8b8
7c5ab34b3c750888645687d9244c15fdfa8a91ec
23bbe37840b9e7026dcc50ead3a6f40bbbfebfcd90666846e6af4a0b1eaf3c6b
GET /upload/vod/2023/01/jfereb0uqvy.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/webp
content-length: 3390
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=5102
content-disposition: inline; filename="jfereb0uqvy.webp"
etag: "63c3911b-13ee"
last-modified: Sun, 15 Jan 2023 05:37:31 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1196
accept-ranges: bytes
server: cloudflare
cf-ray: 78a55e9228e3fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/fyozx10ixty.jpg
104.22.12.214200 OK 7.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/fyozx10ixty.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 14fb91d344a3e8e7f0357be97ff3ea58
9c7c6bbc90d2d181f05938343dc0257ca57a4992
b6f81b1070fc8ea957cf3ac026bf0fa05f1ebccbe99686b1538523246dc0ab13
GET /upload/vod/2023/01/fyozx10ixty.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/webp
content-length: 7794
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8687
content-disposition: inline; filename="fyozx10ixty.webp"
etag: "63c39109-21ef"
last-modified: Sun, 15 Jan 2023 05:37:13 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1196
accept-ranges: bytes
server: cloudflare
cf-ray: 78a55e9238f8fac4-OSL
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c4c3a8e43cc84fc57bdf23fc3ee10e94
e5d9d1f6590428a652c9bb000a589eb4aab6f73d
80b9fb88706212fe036aed3853ba9907ae46bedac1b172294c4c2d9e11116405
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "80B9FB88706212FE036AED3853BA9907AE46BEDAC1B172294C4C2D9E11116405"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10267
Expires: Mon, 16 Jan 2023 11:00:38 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c4c3a8e43cc84fc57bdf23fc3ee10e94
e5d9d1f6590428a652c9bb000a589eb4aab6f73d
80b9fb88706212fe036aed3853ba9907ae46bedac1b172294c4c2d9e11116405
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "80B9FB88706212FE036AED3853BA9907AE46BEDAC1B172294C4C2D9E11116405"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10267
Expires: Mon, 16 Jan 2023 11:00:38 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2023/01/h4044jizmzk.jpg
104.22.12.214200 OK 6.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/h4044jizmzk.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d6d490bcca3fa36771b388e84861a69a
318a909f79530ef0e52d718d6a01d0d6780bda3d
ec94053a73da63f5525f036e59f19882adf80f9d9b408882de9ef4d8fc6c3785
GET /upload/vod/2023/01/h4044jizmzk.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/webp
content-length: 6226
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8946
content-disposition: inline; filename="h4044jizmzk.webp"
etag: "63c390f0-22f2"
last-modified: Sun, 15 Jan 2023 05:36:48 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1196
accept-ranges: bytes
server: cloudflare
cf-ray: 78a55e92690ffac4-OSL
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c4c3a8e43cc84fc57bdf23fc3ee10e94
e5d9d1f6590428a652c9bb000a589eb4aab6f73d
80b9fb88706212fe036aed3853ba9907ae46bedac1b172294c4c2d9e11116405
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "80B9FB88706212FE036AED3853BA9907AE46BEDAC1B172294C4C2D9E11116405"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10267
Expires: Mon, 16 Jan 2023 11:00:38 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2023/01/0xesaew4jdv.jpg
104.22.12.214200 OK 6.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/0xesaew4jdv.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2be2cb3efd21769d15488865b4ce53a2
fb07ce7c1cb4d747607b92dc9b03af2de4bc6310
9c0deb73d57bffc46440a6d180d86074a93014d4fdd51ad18b9408505cf4a07e
GET /upload/vod/2023/01/0xesaew4jdv.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/webp
content-length: 6486
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7670
content-disposition: inline; filename="0xesaew4jdv.webp"
etag: "63c39104-1df6"
last-modified: Sun, 15 Jan 2023 05:37:08 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1196
accept-ranges: bytes
server: cloudflare
cf-ray: 78a55e928927fac4-OSL
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c4c3a8e43cc84fc57bdf23fc3ee10e94
e5d9d1f6590428a652c9bb000a589eb4aab6f73d
80b9fb88706212fe036aed3853ba9907ae46bedac1b172294c4c2d9e11116405
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "80B9FB88706212FE036AED3853BA9907AE46BEDAC1B172294C4C2D9E11116405"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10267
Expires: Mon, 16 Jan 2023 11:00:38 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2023/01/0m2g1ae0www.jpg
104.22.12.214200 OK 7.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/0m2g1ae0www.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fdb5c315f3e7c200c618bc7e1042b5ae
7c35795bbb5bb7e637b232295f8040941b942fcf
96ab2ee13b91db49a186175fae39c1667e4923e4ee5940de25f2fef11fd40cf2
GET /upload/vod/2023/01/0m2g1ae0www.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/webp
content-length: 7004
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7960
content-disposition: inline; filename="0m2g1ae0www.webp"
etag: "63c390fb-1f18"
last-modified: Sun, 15 Jan 2023 05:36:59 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1196
accept-ranges: bytes
server: cloudflare
cf-ray: 78a55e928931fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/cmiqi1jk1i2.jpg
104.22.12.214200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/cmiqi1jk1i2.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 8fdd7d06ab80e0d7d84d79a482d4efdf
248cd435c1e6dbf94a9512fe9def681dfbe66f4a
7df4f4b0a05a79b681c885840ec1ce83db3f2d5219206ecdb2b09eb702a8c2ad
GET /upload/vod/2023/01/cmiqi1jk1i2.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 10531
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11162, status=webp_bigger
etag: "63c39100-2b9a"
last-modified: Sun, 15 Jan 2023 05:37:04 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1196
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e92993efac4-OSL
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?70459debd0fd4d6991d2bbc576b337be
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?70459debd0fd4d6991d2bbc576b337be
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash dcb3a82493f9d7e73c5e31f579275719
424b5dfc71bf3170aa6d3cbe89b559abe41be756
22a679cc9e73758660211b33470829630d3f9079742663d8245ac3b2c92dbb4d
GET /hm.js?70459debd0fd4d6991d2bbc576b337be HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.58249.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Mon, 16 Jan 2023 08:09:30 GMT
Etag: dcda473e85be9d5b6f89f8296293189b
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=BCAF3BB668A822F1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4cbdd095b701dbf65fd231bc3d1725d2
7ff0888c0fa621b088840a04eea364533745c0b7
f47908cfe62c68edc00860433b28966a895fdc2bdb4c9d456831142602172a59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F47908CFE62C68EDC00860433B28966A895FDC2BDB4C9D456831142602172A59"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3818
Expires: Mon, 16 Jan 2023 09:13:09 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/ztpcqysudge1202ztpcqysudge5733138.jpg
104.22.12.214200 OK 5.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/ztpcqysudge1202ztpcqysudge5733138.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ea841b9411c65d80125775f8fc87e751
e4e00a0461d45ce5d60205dcda78d610a40d5df8
86351a4994dc3ca5ad66e411063f4aa5680613a548804f3741c0934b6ebd2315
GET /upload/vod/2020/05-01/12/ztpcqysudge1202ztpcqysudge5733138.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 5189
last-modified: Fri, 01 May 2020 04:02:57 GMT
etag: "5eab9f71-1445"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238e9fac4-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 80aa82292598a03c7f79cbe5d0ce1f96
9953dad9534897367a020c32480edc20097833f1
f96c37f129d06dd2ce4824d52ef1514358eec4766f4848ae4ad8971f1f8f9ae3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F96C37F129D06DD2CE4824D52EF1514358EEC4766F4848AE4AD8971F1F8F9AE3"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7201
Expires: Mon, 16 Jan 2023 10:09:32 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 80aa82292598a03c7f79cbe5d0ce1f96
9953dad9534897367a020c32480edc20097833f1
f96c37f129d06dd2ce4824d52ef1514358eec4766f4848ae4ad8971f1f8f9ae3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F96C37F129D06DD2CE4824D52EF1514358EEC4766F4848AE4AD8971F1F8F9AE3"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7225
Expires: Mon, 16 Jan 2023 10:09:56 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4cbdd095b701dbf65fd231bc3d1725d2
7ff0888c0fa621b088840a04eea364533745c0b7
f47908cfe62c68edc00860433b28966a895fdc2bdb4c9d456831142602172a59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F47908CFE62C68EDC00860433B28966A895FDC2BDB4C9D456831142602172A59"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13677
Expires: Mon, 16 Jan 2023 11:57:28 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4cbdd095b701dbf65fd231bc3d1725d2
7ff0888c0fa621b088840a04eea364533745c0b7
f47908cfe62c68edc00860433b28966a895fdc2bdb4c9d456831142602172a59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F47908CFE62C68EDC00860433B28966A895FDC2BDB4C9D456831142602172A59"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7545
Expires: Mon, 16 Jan 2023 10:15:16 GMT
Date: Mon, 16 Jan 2023 08:09:31 GMT
Connection: keep-alive
2k.qfbj2.com/template/web/app1.js
23.224.221.53200 OK 962 B URL HTTP/2 2k.qfbj2.com/template/web/app1.js
IP 23.224.221.53:0
File type HTML document, Unicode text, UTF-8 text
Hash 6236c600cc7f87298258e97bbc42c3ea
716ec29cccef5d6074e792fde8ebd4aebaada8c2
87369450cbd8e0d9679d79dd2228305a31077f6f761afb83dc954321fcd56174
GET /template/web/app1.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
content-length: 962
last-modified: Mon, 16 Jan 2023 08:07:03 GMT
etag: "63c505a7-3c2"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/app2.js
23.224.221.53200 OK 976 B URL HTTP/2 2k.qfbj2.com/template/web/app2.js
IP 23.224.221.53:0
File type HTML document, Unicode text, UTF-8 text
Hash 36f58754832aea1c5c62ae569890044b
7799f529217bb54e5f88f07e180cd5407d1e49ed
23abb72ef5c413f6549c6819863f9a4de942c9d0e5c10d3340c983bc8e99f26f
GET /template/web/app2.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
content-length: 976
last-modified: Sun, 15 Jan 2023 13:00:54 GMT
etag: "63c3f906-3d0"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/app3.js
23.224.221.53200 OK 958 B URL HTTP/2 2k.qfbj2.com/template/web/app3.js
IP 23.224.221.53:0
File type HTML document, Unicode text, UTF-8 text
Hash 3d6b17fba4a5b66ef20ea1499386e054
5a9ec8cf86349a4b3262afefd1b9e97f67879217
3024a3d21308de44b93839414c338aa0780d8ae28d4e8b8be730107406c32e2b
GET /template/web/app3.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
content-length: 958
last-modified: Mon, 16 Jan 2023 07:00:58 GMT
etag: "63c4f62a-3be"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/1ejapd2djqn12021ejapd2djqn5633134.jpg
104.22.12.214200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/1ejapd2djqn12021ejapd2djqn5633134.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e01522b88464a6c88d2f330fd12f4145
c57c772b4f7a81bdc2d01690cedc4bb3482eccb2
304a29c320048957b84a27638d08fa907a8710404257276cb406ad632f9da4e5
GET /upload/vod/2020/05-01/12/1ejapd2djqn12021ejapd2djqn5633134.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 10526
last-modified: Fri, 01 May 2020 04:02:56 GMT
etag: "5eab9f70-291e"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238e8fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/yvk0ut3ydvl1203yvk0ut3ydvl0233162.jpg
104.22.12.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/yvk0ut3ydvl1203yvk0ut3ydvl0233162.jpg
IP 104.22.12.214:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash a79b670af7d0d32b839dfaa0b00a6ec9
f6ff271101a1d0cb4cc2280a6c3b1203ca9acd63
bd1e41e8fad2a7ad1236fb350d9c4f1ac98b5465f1fb6608c02062fc360885a7
GET /upload/vod/2020/05-01/12/yvk0ut3ydvl1203yvk0ut3ydvl0233162.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 11306
last-modified: Fri, 01 May 2020 04:03:02 GMT
etag: "5eab9f76-2c2a"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238f0fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/je31vaozrus1203je31vaozrus0433170.jpg
104.22.12.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/je31vaozrus1203je31vaozrus0433170.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1c2b0232fe815a26b46e1d5fc4f7be40
dc67d5aba7d7c9b433c8bc7c16eded6e9ec77bae
1b6e39af83a71e654803452ba4b5efb03861c970185616b8c2bd3c1aa7d375ca
GET /upload/vod/2020/05-01/12/je31vaozrus1203je31vaozrus0433170.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 10727
last-modified: Fri, 01 May 2020 04:03:04 GMT
etag: "5eab9f78-29e7"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238f2fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/ady15s3ydgg1202ady15s3ydgg5833142.jpg
104.22.12.214200 OK 12 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/ady15s3ydgg1202ady15s3ydgg5833142.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3c5ebcb12d46922ba0696b8f6b050c83
b2327b8d8af699053e9679aa59f921f54c8a071a
c9e6622112e590aaa19bf7977a49a8c20b00becc093028747b7ce08e1d33ae2d
GET /upload/vod/2020/05-01/12/ady15s3ydgg1202ady15s3ydgg5833142.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 12537
last-modified: Fri, 01 May 2020 04:02:58 GMT
etag: "5eab9f72-30f9"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238ebfac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/032r2sewwkh1202032r2sewwkh5933146.jpg
104.22.12.214200 OK 13 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/032r2sewwkh1202032r2sewwkh5933146.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 70a334e944a1cff4434b581ecdd1ea93
14c5adddc21c9893e9e97859dc048ee1162578ea
bbb2ad332e6f6cd25c3cfb589b71914cfa78d308d7d4b44d18aa9e0cb8ea0c66
GET /upload/vod/2020/05-01/12/032r2sewwkh1202032r2sewwkh5933146.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 12909
last-modified: Fri, 01 May 2020 04:02:59 GMT
etag: "5eab9f73-326d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238edfac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/anx2b2hmlei1203anx2b2hmlei0533178.jpg
104.22.12.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/anx2b2hmlei1203anx2b2hmlei0533178.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f910f6d5824418f3f5044e92025f4f87
5fd391618cc0ca539f8298edba34a4189896b828
59e459c7d9a6aa81058826b90e229363ba70509009d23b994f7d52696e978249
GET /upload/vod/2020/05-01/12/anx2b2hmlei1203anx2b2hmlei0533178.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 10834
last-modified: Fri, 01 May 2020 04:03:06 GMT
etag: "5eab9f7a-2a52"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238f6fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/eie2cxh1zsf1202eie2cxh1zsf5533130.jpg
104.22.12.214200 OK 7.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/eie2cxh1zsf1202eie2cxh1zsf5533130.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1c503a4821a471469efe11b21eef6cfd
916cacc742f44687575628a8acf24025ca2d47a2
c6ce8777cab7aa6ff84c41809dd022f53c0a79ebea0b650bfe3805ef98c5e8da
GET /upload/vod/2020/05-01/12/eie2cxh1zsf1202eie2cxh1zsf5533130.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 7579
last-modified: Fri, 01 May 2020 04:02:55 GMT
etag: "5eab9f6f-1d9b"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9228e7fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/2q3muh30etz12022q3muh30etz5433122.jpg
104.22.12.214200 OK 16 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/2q3muh30etz12022q3muh30etz5433122.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 872caea810c576d9d88075fc7cf6ae5d
af07951980edcc0be4212eb7e1ee186c0a6a70f9
25c1f50a1fae66ca92af84dce12224c2123ddc57389107fb686d0f022da304f0
GET /upload/vod/2020/05-01/12/2q3muh30etz12022q3muh30etz5433122.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 16461
last-modified: Fri, 01 May 2020 04:02:54 GMT
etag: "5eab9f6e-404d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9228e5fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/jvsqbakopco1203jvsqbakopco0033154.jpg
104.22.12.214200 OK 9.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/jvsqbakopco1203jvsqbakopco0033154.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2b6a299e29ce1b0a675e21a508386530
fb04b70dced24f88e4f464f9a9b19824ed503ebf
94594ccf1aa0ba7277463c3c380f8a4e88bbf3ed9984b3d8756f01f8901bf112
GET /upload/vod/2020/05-01/12/jvsqbakopco1203jvsqbakopco0033154.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 9447
last-modified: Fri, 01 May 2020 04:03:00 GMT
etag: "5eab9f74-24e7"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238eefac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/35saeelqe1j120335saeelqe1j0533174.jpg
104.22.12.214200 OK 13 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/35saeelqe1j120335saeelqe1j0533174.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6c5de594fd589e4a4afd445614cca904
1661982badac7f251cca199e59b9583705106b39
ddc7bc15e385d0bf702fce2f8a405660f08ac0445283f5f2613e2324df0f6004
GET /upload/vod/2020/05-01/12/35saeelqe1j120335saeelqe1j0533174.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 13297
last-modified: Fri, 01 May 2020 04:03:05 GMT
etag: "5eab9f79-33f1"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238f4fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/qujsyds2xab1202qujsyds2xab5433126.jpg
104.22.12.214200 OK 12 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/qujsyds2xab1202qujsyds2xab5433126.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7352b3c7152620dddc5ffcc57067523a
97c8b1251094fc4131c879d0c6bd32242ff5d2d6
c2e18dbcef37d8c39759cf274f83a13a0ee3522b2e49dc92de7e8250cd4945d4
GET /upload/vod/2020/05-01/12/qujsyds2xab1202qujsyds2xab5433126.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 12210
last-modified: Fri, 01 May 2020 04:02:55 GMT
etag: "5eab9f6f-2fb2"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9228e6fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/0bxaqpo4cpv12030bxaqpo4cpv0633182.jpg
104.22.12.214200 OK 13 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/0bxaqpo4cpv12030bxaqpo4cpv0633182.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 362adf8b224c517fbd7567392b92ca24
ba8c3cf7cb7fb449f127a8046b841675d624c7d1
e73a95c08f0343862e4419cbd397edc3789ed6e12eddc9c4996539b703d40a47
GET /upload/vod/2020/05-01/12/0bxaqpo4cpv12030bxaqpo4cpv0633182.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 13399
last-modified: Fri, 01 May 2020 04:03:06 GMT
etag: "5eab9f7a-3457"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238f5fac4-OSL
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2037749495&si=70459debd0fd4d6991d2bbc576b337be&v=1.3.0&lv=1&sn=27137&r=0&ww=1280&u=http%3A%2F%2Fwww.58249.net%2Fhtml%2F163977%2F164033.html&tt=%E4%B8%B9%E4%B8%9C%E7%A0%8D%E5%86%85%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2037749495&si=70459debd0fd4d6991d2bbc576b337be&v=1.3.0&lv=1&sn=27137&r=0&ww=1280&u=http%3A%2F%2Fwww.58249.net%2Fhtml%2F163977%2F164033.html&tt=%E4%B8%B9%E4%B8%9C%E7%A0%8D%E5%86%85%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2037749495&si=70459debd0fd4d6991d2bbc576b337be&v=1.3.0&lv=1&sn=27137&r=0&ww=1280&u=http%3A%2F%2Fwww.58249.net%2Fhtml%2F163977%2F164033.html&tt=%E4%B8%B9%E4%B8%9C%E7%A0%8D%E5%86%85%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.58249.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 16 Jan 2023 08:09:31 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=D7D7C27191121948; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/lphursh0iwi1203lphursh0iwi1133206.jpg
104.22.12.214200 OK 5.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/lphursh0iwi1203lphursh0iwi1133206.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash fc85843d01c46233cdf88c001a7748d5
0fff557f8ee738dff7205f2e9397d9a08df474ba
d038ef71ebdf460e92cdef443184920c4edaeae0516d42a1a41ee19a33405f9b
GET /upload/vod/2020/05-01/12/lphursh0iwi1203lphursh0iwi1133206.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 5633
last-modified: Fri, 01 May 2020 04:03:11 GMT
etag: "5eab9f7f-1601"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238f7fac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/gin3th4mcyw1203gin3th4mcyw0133158.jpg
104.22.12.214200 OK 8.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/gin3th4mcyw1203gin3th4mcyw0133158.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 261x196, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c1aa9dda8cf53703e4095bb987e9b7d1
32e5615deb16e8674dbf759727383975ea156a46
a159766e4c00ea2149040b3659756ceb911fb34556bbc194a8036776462c3433
GET /upload/vod/2020/05-01/12/gin3th4mcyw1203gin3th4mcyw0133158.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 8208
last-modified: Fri, 01 May 2020 04:03:01 GMT
etag: "5eab9f75-2010"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238effac4-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/05-01/12/d0bcrearbsi1203d0bcrearbsi0333166.jpg
104.22.12.214200 OK 13 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/05-01/12/d0bcrearbsi1203d0bcrearbsi0333166.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ef45f2069344c975717ce3b4471b6fcb
008757c074d2260c1e86482c883550a3d5d31cb5
55b09246490792c5ec024d00db6a7f0f1dc87e1ad5a2ac3778720bfa37c3f0dc
GET /upload/vod/2020/05-01/12/d0bcrearbsi1203d0bcrearbsi0333166.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 12573
last-modified: Fri, 01 May 2020 04:03:03 GMT
etag: "5eab9f77-311d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a55e9238f1fac4-OSL
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 9015fb0df23f6ee54a4f603f062c0777
1cd8509ccc9cd33034c5fc86ac0d8881b2746396
9e49c60574359df459422fa3e84a1b6780cae9be210db7688ae0527108e10f6d
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Fri, 20 Jan 2023 06:40:31 GMT
ETag: "1cd8509ccc9cd33034c5fc86ac0d8881b2746396"
Last-Modified: Mon, 16 Jan 2023 06:40:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 31
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78a55e9778a81c02-OSL
2k.qfbj2.com/template/web/GG/5115960-60.gif
23.224.221.53200 OK 313 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/5115960-60.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 313 kB (312864 bytes)
Hash e7593fc8dcb539808b00a5eebc62716a
f052b6589fd43358438fc4796ef0ab89c7d2bf38
2b7c34d61d22b1ff5c859b5fb207dd8626027ccef57d75543efd9490fae77b82
GET /template/web/GG/5115960-60.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 312864
last-modified: Tue, 10 Jan 2023 13:17:36 GMT
etag: "63bd6570-4c620"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
9030a.cc/1008-960x60.gif
154.85.10.21301 Moved Permanently 0 B IP 154.85.10.21:0
ASN #211392 Dream Cloud Innovation Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1008-960x60.gif HTTP/1.1
Host: 9030a.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: Keep-Alive
X-NoCache: this
Date: Mon, 16 Jan 2023 16:37:36 GMT
Location: https://9030a.cc/1008-960x60.gif
X-Via: 1.1 localhost.localdomain (random:85111 Fikker/Webcache/3.7.8)
ttzytp3.com/upload/vod/20230109-1/2247f4ae4c8dbbfbd1858fd86425659e.jpg
23.224.136.188200 OK 183 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/2247f4ae4c8dbbfbd1858fd86425659e.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x535, components 3\012- data
Size 183 kB (182610 bytes)
Hash 8c35f659faa6ea3ccca35693b7810056
96271f2837589aba79f6cfb6a957a241e3224c43
742c5f87865177630e40a11d70b27864e8fe162dd0fa11bcd8af2da85f92a0f7
GET /upload/vod/20230109-1/2247f4ae4c8dbbfbd1858fd86425659e.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 16 Jan 2023 08:09:31 GMT
Content-Type: image/jpeg
Content-Length: 182610
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:18 GMT
ETag: "63bc011e-2c952"
Accept-Ranges: bytes
2k.qfbj2.com/template/web/GG/227.gif
23.224.221.53200 OK 477 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/227.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 477 kB (477289 bytes)
Hash 760cc21f91ee02e848650627ffa47ae2
22df8e62d12977ffd032aba17e5fd7632032633f
2b36a60cb734e5ebcaa9ad4d93f914157e563da89c4e08231bd02b72678875bd
GET /template/web/GG/227.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 477289
last-modified: Fri, 14 Oct 2022 15:40:26 GMT
etag: "634982ea-74869"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/x.jpg
23.224.221.53200 OK 9.2 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/x.jpg
IP 23.224.221.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /template/web/GG/x.jpg HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Thu, 02 Jun 2022 15:47:42 GMT
etag: "6298db9e-23ce"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/k16.gif
23.224.221.53200 OK 35 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k16.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 788b44c904a7b3a60753805c4763385a
b1f2664a0e3259acd09324e70d41dc0901cc6a8c
bcde8e39467e6c7540e7c1606161eea9a61e860f90616a0e05b6d0d2db0b86e1
GET /template/web/GG/k16.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 34559
last-modified: Sat, 04 Jun 2022 02:42:10 GMT
etag: "629ac682-86ff"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230109-1/960daeb9a9ca426836f9338ecd3098f5.jpg
23.224.136.188200 OK 178 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/960daeb9a9ca426836f9338ecd3098f5.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x535, components 3\012- data
Size 178 kB (178350 bytes)
Hash 22dacfa2646c6263aa05735f18d41c8f
52781f29ce84f272c5e6868302692ef72cf57441
dc5e84a966767f955487960fff73faaecb599573c0dc15f76561ae433ec00ddf
GET /upload/vod/20230109-1/960daeb9a9ca426836f9338ecd3098f5.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 16 Jan 2023 08:09:31 GMT
Content-Type: image/jpeg
Content-Length: 178350
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:24 GMT
ETag: "63bc0124-2b8ae"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230109-1/e7dafa941bc707cb57cc600da89fe1f2.jpg
23.224.136.188200 OK 160 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/e7dafa941bc707cb57cc600da89fe1f2.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x500, components 3\012- data
Size 160 kB (160441 bytes)
Hash 83f51ff235be5281abf73b9c1dd7916a
f49fdbfb132396803c13fa7b0b74b66969e0e3dc
b8ff7bc7d660d686545dc032478d00e68ce7701761da9b8cc3f3febdc4d4d56e
GET /upload/vod/20230109-1/e7dafa941bc707cb57cc600da89fe1f2.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 16 Jan 2023 08:09:31 GMT
Content-Type: image/jpeg
Content-Length: 160441
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:17 GMT
ETag: "63bc011d-272b9"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230109-1/b7e5e4659d1df754a80536cb1f08a872.jpg
23.224.136.188200 OK 189 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/b7e5e4659d1df754a80536cb1f08a872.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x540, components 3\012- data
Size 189 kB (188719 bytes)
Hash edf10c4f51aaee7c2e45075dcb5a13a5
0f19456d8bcbc7e6d8748456bfc37db8b1b2505f
d25353e5768bb1e59c2bdeebbba2777b41d2cbc2c7ccf33bd11e8ff4ec18c26d
GET /upload/vod/20230109-1/b7e5e4659d1df754a80536cb1f08a872.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 16 Jan 2023 08:09:31 GMT
Content-Type: image/jpeg
Content-Length: 188719
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:23 GMT
ETag: "63bc0123-2e12f"
Accept-Ranges: bytes
2k.qfbj2.com/template/web/GG/31.gif
23.224.221.53200 OK 108 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/31.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 96 x 96\012- data
Size 108 kB (108160 bytes)
Hash 8765a4504945e44a16e9fe1c643802bf
a830d6cad304c1007e82fc742cc7855fff8d6a7c
d4ce24af068e48c2339af354f585f37940cc318d83110e313056ebc0d4058b4b
GET /template/web/GG/31.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 108160
last-modified: Wed, 09 Mar 2022 10:15:26 GMT
etag: "62287e3e-1a680"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/d5.gif
23.224.221.53200 OK 100 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/d5.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 025124b1ea32550544628c7205331a35
6015322cd2faae4cc93266267838878350ac5c70
b1f29051a416097599fa35479620adab7e3f3b5dac8d18c19147eff65955db21
GET /template/web/GG/d5.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 99494
last-modified: Wed, 16 Mar 2022 16:12:20 GMT
etag: "62320c64-184a6"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230109-1/a623ab70f53485456cb1d3c52639b962.jpg
23.224.136.188200 OK 189 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/a623ab70f53485456cb1d3c52639b962.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 189 kB (189098 bytes)
Hash 4995876c3072a4f1685a77d4085d8874
3e43642d31d730f904185b486e1ccdab4db513e4
9178097894c08ae8aa1c4b87c6e63ccf59ecd03a7919bbd475960b3a0188f7e5
GET /upload/vod/20230109-1/a623ab70f53485456cb1d3c52639b962.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 16 Jan 2023 08:09:31 GMT
Content-Type: image/jpeg
Content-Length: 189098
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:29 GMT
ETag: "63bc0129-2e2aa"
Accept-Ranges: bytes
2k.qfbj2.com/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
23.224.221.53404 Not Found 146 B URL HTTP/2 2k.qfbj2.com/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
IP 23.224.221.53:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://2k.qfbj2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 16 Jan 2023 08:09:32 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
2k.qfbj2.com/template/meizhuama/images/video-play.png
23.224.221.53200 OK 1.6 kB URL HTTP/2 2k.qfbj2.com/template/meizhuama/images/video-play.png
IP 23.224.221.53:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/meizhuama/images/video-play.png HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:32 GMT
content-type: image/png
content-length: 1567
last-modified: Sun, 06 Mar 2022 14:17:50 GMT
etag: "6224c28e-61f"
expires: Wed, 15 Feb 2023 08:09:32 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230109-1/e481641ed82df8d116f44aa0680b0f19.jpg
23.224.136.188200 OK 232 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/e481641ed82df8d116f44aa0680b0f19.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 232 kB (231694 bytes)
Hash 2a505ab0b7dcfb2f7a96552670d0f5b8
4b9db0deacaf1fefb38e55f802422b7828d47cfd
09dfedea4bce0f588a2478c1b8d4874453fc6131f09b6bdaa2f7455412c48e03
GET /upload/vod/20230109-1/e481641ed82df8d116f44aa0680b0f19.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 16 Jan 2023 08:09:31 GMT
Content-Type: image/jpeg
Content-Length: 231694
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:17 GMT
ETag: "63bc011d-3890e"
Accept-Ranges: bytes
2k.qfbj2.com/template/meizhuama/css/ate.css
23.224.221.53200 OK 39 kB URL HTTP/2 2k.qfbj2.com/template/meizhuama/css/ate.css
IP 23.224.221.53:0
Hash 6df408a8bd17beb7d7181463db2cbc7f
0a73e6bb785f6c534c41bf666c5f78349e5e2b0e
f50f2189e38a9a624f9e92b2cda48d9886febbd6257e117545acf57272b29e19
GET /template/meizhuama/css/ate.css HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: text/css
last-modified: Tue, 13 Sep 2022 05:55:21 GMT
vary: Accept-Encoding
etag: W/"63201b49-13021"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230109-1/a176c43f6301026dabe81571b71d4d61.jpg
23.224.136.188200 OK 166 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/a176c43f6301026dabe81571b71d4d61.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 166 kB (165578 bytes)
Hash 090b7ea459b484bd2a88847525b0eba6
f568bea344bb2d10954ee6f84effb54448157a5f
a7c65e2b0517696a22f131a4dec4a4340e0c437acce52d4e4308b7b124ccf47a
GET /upload/vod/20230109-1/a176c43f6301026dabe81571b71d4d61.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 16 Jan 2023 08:09:32 GMT
Content-Type: image/jpeg
Content-Length: 165578
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 09:09:49 GMT
ETag: "63bbd9dd-286ca"
Accept-Ranges: bytes
2k.qfbj2.com/template/web/GG/k6.gif
23.224.221.53200 OK 53 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k6.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 74d864001115d3b123c552156accfbef
11ae3aef174b8fab213faa40b1b985f77dada46f
9001f1548a09cf89715469dc8d009f7aebb1a459d261c73a2f35d252bf88b4c8
GET /template/web/GG/k6.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 53324
last-modified: Fri, 27 May 2022 05:30:58 GMT
etag: "62906212-d04c"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/k4.gif
23.224.221.53200 OK 114 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k4.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 114 kB (114030 bytes)
Hash 79cf722c45cb4e5b3e7da0cfff829c98
71558743109d39b3163e3e873111641615c6f80c
37336e1d469f511d19c69cd7e3576ef2665204c7304e0b8dd2ec051dd78309e3
GET /template/web/GG/k4.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 114030
last-modified: Fri, 27 May 2022 05:30:56 GMT
etag: "62906210-1bd6e"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a10411067687c693a42dade6961830c7
62c30d4a3502452c3b720a79dcc9c1bae470a4c8
e7abdcb5da1ae19c45bf987d707a3f283eea73316b31f4b1bbe9d09f4de8fadf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E7ABDCB5DA1AE19C45BF987D707A3F283EEA73316B31F4B1BBE9D09F4DE8FADF"
Last-Modified: Sun, 15 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21565
Expires: Mon, 16 Jan 2023 14:08:57 GMT
Date: Mon, 16 Jan 2023 08:09:32 GMT
Connection: keep-alive
2k.qfbj2.com/template/web/GG/d10.gif
23.224.221.53200 OK 119 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/d10.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 119 kB (119145 bytes)
Hash 03611dd134898d951bd6479076eee32b
4aef7215e5d6206ededff3fff78d735064e6fbb5
9c3ea4fa33413bfe2175b5e9eac750617538bafe475a84367d0c6d693c75c076
GET /template/web/GG/d10.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 119145
last-modified: Sat, 23 Apr 2022 04:49:11 GMT
etag: "62638547-1d169"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/dipiao.js
23.224.221.53200 OK 74 kB URL HTTP/2 2k.qfbj2.com/template/web/dipiao.js
IP 23.224.221.53:0
Hash cb0e40e704b28bb92ee9f272427bbd9e
7703a67b9bcd1c3ae0ac6643c6e5c1b79ee79937
2823c94175071649a9abb49b8ca9790a491413baadbbaae155cb3a5123802fa9
GET /template/web/dipiao.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
last-modified: Sun, 15 May 2022 14:24:29 GMT
vary: Accept-Encoding
etag: W/"62810d1d-81a"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
js.users.51.la/21273067.js
103.143.19.103200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21273067.js
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash cfcc5c0f08c9a6462e6df16aa6478f07
720c84b3ccebf991458af7705d0bb0c41365b8ac
817c678f9b62b0db6f870cc391b17261be96bb9c428199372176794583f9691f
GET /21273067.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Mon, 16 Jan 2023 08:09:32 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=bd95441e394d1c094dd; path=/
HWWAFSESTIME=1673856569885; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
2k.qfbj2.com/template/web/GG/a06.gif
23.224.221.53200 OK 111 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/a06.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 108 x 108\012- data
Size 111 kB (110624 bytes)
Hash e3240f80fa3623e4bc4675c955beb241
fb5f06e85933d6e6a8e0f98e28c16b44844b3ae3
d595e4b9e1341db392c7d348474e94c200802c5e35290b7e4f9a4a4ad653bd1d
GET /template/web/GG/a06.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 110624
last-modified: Sat, 18 Jun 2022 04:10:23 GMT
etag: "62ad502f-1b020"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/k7.gif
23.224.221.53200 OK 104 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k7.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 71 x 71\012- data
Size 104 kB (104461 bytes)
Hash 9e38a9cebde88f45563c4aae36723d3a
126439ba503fc1757864c12e086fd0f1a165a4bc
93054ef4224e847d308892f23ca8d0bf210d5ba26d8c39502eb7016efd97501d
GET /template/web/GG/k7.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 104461
last-modified: Fri, 27 May 2022 05:30:59 GMT
etag: "62906213-1980d"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230109-1/fa13cdac6b680755b682c98c319e2030.jpg
23.224.136.188200 OK 160 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/fa13cdac6b680755b682c98c319e2030.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x535, components 3\012- data
Size 160 kB (160439 bytes)
Hash 5df1db47d2b7c2ad2b43eca84a1cba6e
7094adceae1c7d41124211128a4b99e865637756
c6697a9ff10ebb6b830452f6e14abebd0400147edd20c44eb85052069f152043
GET /upload/vod/20230109-1/fa13cdac6b680755b682c98c319e2030.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 16 Jan 2023 08:09:32 GMT
Content-Type: image/jpeg
Content-Length: 160439
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 09:09:49 GMT
ETag: "63bbd9dd-272b7"
Accept-Ranges: bytes
2k.qfbj2.com/template/meizhuama/js/jquery.min.js
23.224.221.53200 OK 110 kB URL HTTP/2 2k.qfbj2.com/template/meizhuama/js/jquery.min.js
IP 23.224.221.53:0
Size 110 kB (110253 bytes)
Hash 1c6d36e42b0a463fd3c817feb7a21c49
f1da79def5f462272fc86baf789bc0ba5e57425d
f7ff2d81caa3c1b76fb0218d4067c6324f7621a1a83da706371681fac010c478
GET /template/meizhuama/js/jquery.min.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
last-modified: Fri, 02 Dec 2022 14:33:00 GMT
vary: Accept-Encoding
etag: W/"638a0c9c-1538f"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/xx2.js
23.224.221.53200 OK 102 kB URL HTTP/2 2k.qfbj2.com/template/web/xx2.js
IP 23.224.221.53:0
Size 102 kB (102533 bytes)
Hash 2351c39f23fdea632a19b8041e04d610
127e23ac2612191ea74030ce887dc6cd4300ba6c
d2dd6f01ca18f190a7482f8e0b869d133d0506a850d8b86d07bed8f01060adbb
GET /template/web/xx2.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 07:20:37 GMT
vary: Accept-Encoding
etag: W/"63c4fac5-822"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/a08.gif
23.224.221.53200 OK 80 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/a08.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 3b6a5179b4a06bb8c98cab3aeaa698ed
c798dc8b16e3feaf91392cfa1cf839b4556fc243
64d5d65c65f47564411cce16d70dcca2aa83d5ad212ac46d3d9d0ba4ab8aee96
GET /template/web/GG/a08.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 80545
last-modified: Sat, 18 Jun 2022 04:10:24 GMT
etag: "62ad5030-13aa1"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?7a63494bcb7782c2d15cc8728f4c5059
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?7a63494bcb7782c2d15cc8728f4c5059
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash 5d9c132084e1b17d8a2e2ea4c1bb4c48
af4b5657748ba0d66e1136ee53a1c1db0953e32f
04d2a4c57184cad0d4b5f080b973f44be86edc1e3439a9791c5a5216112d0d50
GET /hm.js?7a63494bcb7782c2d15cc8728f4c5059 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Mon, 16 Jan 2023 08:09:32 GMT
Etag: c06e1071bbafaf3f9fafcaf264b685fe
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=E028F617D435341A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
2k.qfbj2.com/template/web/GG/k1.gif
23.224.221.53200 OK 167 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k1.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 167 kB (167104 bytes)
Hash 9387415ad469299bf6e3bb5c1bbc77e2
cc52974b6ed2239afbbd4088c675fceb0d75cd22
912ce0aceb7de66266542ec85454be033b0a285c975dd7fc8f0d43eecb8716ce
GET /template/web/GG/k1.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 167104
last-modified: Fri, 27 May 2022 05:30:54 GMT
etag: "6290620e-28cc0"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/7.gif
23.224.221.53200 OK 159 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/7.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 100 x 100\012- data
Size 159 kB (159399 bytes)
Hash 7c1ced688d2af934a1800ae8d89a226f
558b8353f1d66992ce01a67ba66af0ac966877bc
5acf95935750544793683da337ec48ecbadd4ecfe5c1b714ad47c97b5849c02f
GET /template/web/GG/7.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 159399
last-modified: Fri, 11 Mar 2022 16:19:12 GMT
etag: "622b7680-26ea7"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/meizhuama/fonts/iconfont.woff
23.224.221.53200 OK 525 B URL HTTP/2 2k.qfbj2.com/template/meizhuama/fonts/iconfont.woff
IP 23.224.221.53:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/meizhuama/fonts/iconfont.woff HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://2k.qfbj2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:32 GMT
content-type: font/woff
content-length: 525
last-modified: Sun, 06 Mar 2022 14:12:36 GMT
etag: "6224c154-20d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/d2.gif
23.224.221.53200 OK 162 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/d2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 162 kB (161572 bytes)
Hash 64c0f3edc7b3bfd2a2c009f3b93ebd7d
70dee1bf54047d14220328f8ab47d299a679a519
ca5ada5bab699078f3ecdb2a2b569bcef9b8b34f6773d2197c0658a55fad5d25
GET /template/web/GG/d2.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 161572
last-modified: Wed, 16 Mar 2022 16:12:17 GMT
etag: "62320c61-27724"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
z4a.net/images/2022/12/12/960x60e449023c0081ea79.gif
104.21.234.234200 OK 320 kB URL HTTP/2 z4a.net/images/2022/12/12/960x60e449023c0081ea79.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 320 kB (319606 bytes)
Hash 443ba779af0bf3944718aa7e4e2038a5
7054a327b7d5a805a510fab7bb2b35d5cd2ec9ca
1461a63340b84e5c64f250e3ca4d3153df4cf60a1226eb2107bf37c5cfcdd8ee
GET /images/2022/12/12/960x60e449023c0081ea79.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:32 GMT
content-type: image/gif
content-length: 319606
expires: Thu, 14 Dec 2023 13:41:28 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2831284
last-modified: Wed, 14 Dec 2022 13:41:28 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uPHZk%2B8XAEuqgvxeTTcVMEQzAiBRMcziahIk99c2se%2BBzfbC90%2F3vAmyhwTAdyNtf5j5%2BVCHhASo%2BR3IpoTC%2BT58OQ6tSeeEQifWbzotf4E2%2B9Cs8sqXG%2Fcl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78a55e996d4adc8f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/dh2.js
23.224.221.53200 OK 144 kB URL HTTP/2 2k.qfbj2.com/template/web/dh2.js
IP 23.224.221.53:0
Size 144 kB (143649 bytes)
Hash 7fe95dc43c98fdbb40e14e871030e705
f0a53a5f34b53f7cc84c93666ba1ae8c94926318
bcd784594e8eb6593894f9f555bb327a9cd9b98fab011ccd7bfda1aea87eade7
GET /template/web/dh2.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 08:09:01 GMT
vary: Accept-Encoding
etag: W/"63c5061d-3635"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
z4a.net/images/2022/11/01/960x60.gif
104.21.234.234200 OK 578 kB URL HTTP/2 z4a.net/images/2022/11/01/960x60.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 578 kB (577945 bytes)
Hash 6ae710163cd11c12a73a693024c46410
43041b87b2040371a052bf1f83d401c263a32178
42da405262416c9fbaa04b2718406d4ea93501bfb99774fae4956b6eab7c1831
GET /images/2022/11/01/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:32 GMT
content-type: image/gif
content-length: 577945
expires: Thu, 30 Nov 2023 00:12:54 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 4089398
last-modified: Wed, 30 Nov 2022 00:12:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ahZNj76468GsxNE3PSshKiRdgJLSLIBXGQ6CS6Ceq%2BivueUc61yeeo32MPh1Ozy2kiWN1TTSTSGTXSsnbCETPRAl%2BNx8DBixLRa%2FzGpRRmHSYmrdmnB1%2FOvC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78a55e996d40dc8f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/zyxf.js
23.224.221.53200 OK 157 kB URL HTTP/2 2k.qfbj2.com/template/web/zyxf.js
IP 23.224.221.53:0
Size 157 kB (157415 bytes)
Hash 750c19988cffe1251bd871d7960ef3b2
1782da50d18d2dc7c5b1edb09064a67f5f813234
2df0a7c1a15466be19d66ee61d5c8a1f3c7ebd2e339bf828a2d7f04eafc050f1
GET /template/web/zyxf.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 16:30:20 GMT
vary: Accept-Encoding
etag: W/"63c42a1c-1b64"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/t2.gif
23.224.221.53200 OK 254 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/t2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 254 kB (253670 bytes)
Hash bace60a0adc9bdd54f7c83058456a847
4867fd68497b7db5c4e5bbdde781cf098dbabd22
17a4f7b3d5caf413211515976326969951cc1bb9a3e32a9caa885fd6e3109368
GET /template/web/GG/t2.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 253670
last-modified: Tue, 10 May 2022 09:20:01 GMT
etag: "627a2e41-3dee6"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/t1.gif
23.224.221.53200 OK 221 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/t1.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 221 kB (221303 bytes)
Hash 633e79a4d76e09af28eb7617340a6330
0aaef1ed9eed51ca839c4b8e88ca4988e27ec6cb
7363c1c913be071eb6240c6600c17b65e81b092944bb5f14c7013b5f96190fb3
GET /template/web/GG/t1.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 221303
last-modified: Tue, 10 May 2022 09:20:00 GMT
etag: "627a2e40-36077"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/dh1.js
23.224.221.53200 OK 259 kB URL HTTP/2 2k.qfbj2.com/template/web/dh1.js
IP 23.224.221.53:0
Size 259 kB (259276 bytes)
Hash 2845751ff585a0fff3063f9981586999
91d6f5df9cd5e03ba1cf95f1f18a0043c51ba321
6e2055baf3174c8a5de4e106dbf67c4148c9de9cd17414442274b3b4976a4ec7
GET /template/web/dh1.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 08:08:26 GMT
vary: Accept-Encoding
etag: W/"63c505fa-335e"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/dp1.gif
23.224.221.53200 OK 141 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/dp1.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 141 kB (141174 bytes)
Hash 2846430b1663c942a9d2a92c559667cd
2b7d07a004fa13af572b8d5d6317594c1eee9eec
b1357936607e4478fa840a29b58e6714f0063f4a90e28571bd8c8be4e175d74e
GET /template/web/GG/dp1.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:32 GMT
content-type: image/gif
content-length: 141174
last-modified: Mon, 25 Apr 2022 12:29:49 GMT
etag: "6266943d-22776"
expires: Wed, 15 Feb 2023 08:09:32 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/5.gif
23.224.221.53200 OK 292 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/5.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 256 x 256\012- data
Size 292 kB (291780 bytes)
Hash c41af62e6356770c1f7df79bbb3e1db5
0f765c11424aaa51365ec92c18ff4f75a972da5a
0b8a47216bb974bf8ce36542085e3dfb1b5fcf476efd4da2b630c4a325580de4
GET /template/web/GG/5.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 291780
last-modified: Wed, 11 May 2022 08:12:54 GMT
etag: "627b7006-473c4"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/55.gif
23.224.221.53200 OK 834 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/55.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 140 x 206\012- data
Size 834 kB (834244 bytes)
Hash 3965598665b057b276ed86263c36f334
f8374496c56ad6cd140a9bd009b0637c8ce91a35
5efcea93fd0c2cb8059ea79144c6bfb6b094b5810e21cf6e2168ef51ac2fd36a
GET /template/web/GG/55.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 834244
last-modified: Wed, 11 May 2022 08:28:17 GMT
etag: "627b73a1-cbac4"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/122.gif
23.224.221.53200 OK 301 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/122.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 301 kB (301024 bytes)
Hash 924fb352713ee10f6f4bce3167ccce13
127a437f7a5020f7e7c08b6c6465be55dcb32e0c
6e04c7ee887495ce8805d38b200ca217c28b5e83655f4e7f4e8f8f8e28b872bf
GET /template/web/GG/122.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 301024
last-modified: Wed, 09 Mar 2022 10:04:32 GMT
etag: "62287bb0-497e0"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/
23.224.221.53200 OK 374 kB IP 23.224.221.53:0
Size 374 kB (374198 bytes)
Hash b6cc29256d3e01e91bfc621b96d3ebae
5a41fe198b1fdd62b9fde2c44e92d91194955aca
61d2e0dc84d7e2a773d970b62c62bbf072f2a3c7de623cd05a5ed75a4ad8d593
GET / HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.58249.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:30 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/meizhuama/css/zui.css
23.224.221.53200 OK 305 kB URL HTTP/2 2k.qfbj2.com/template/meizhuama/css/zui.css
IP 23.224.221.53:0
Size 305 kB (304892 bytes)
Hash 0fdca5ea2d6283e0ed8a5b222cddf47d
36973f6fe738d410d662db1c2b63120a1783c19a
8e9bc4140820ffc4e6b343d9de5718b43d57030cce524060e59d5b8310eff223
GET /template/meizhuama/css/zui.css HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 10:25:31 GMT
vary: Accept-Encoding
etag: W/"637ca39b-1b92c"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/k19.gif
23.224.221.53200 OK 288 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k19.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 140 x 140\012- data
Size 288 kB (287575 bytes)
Hash e758cbb971464ca5059e4cdbc1a7601f
615032c5f3516cd6d685bde3c1214a5d05833cd1
df4ecca258502e6c66deb343d9fc8d0bf05e46927194a2e1bc6c652fb80ba71d
GET /template/web/GG/k19.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 287575
last-modified: Sat, 04 Jun 2022 02:42:13 GMT
etag: "629ac685-46357"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/d1.gif
23.224.221.53200 OK 320 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/d1.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 448 x 359\012- data
Size 320 kB (320301 bytes)
Hash 7d3239796daffe24e71eb0e44146f02b
533c9fe388fdb5cc5f807a7358dcd4d1b14bf817
7ae555d64a9c2cbf44806af21930c753b5dc3649be922206fc10ea83efa19523
GET /template/web/GG/d1.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:32 GMT
content-type: image/gif
content-length: 320301
last-modified: Wed, 11 May 2022 08:33:50 GMT
etag: "627b74ee-4e32d"
expires: Wed, 15 Feb 2023 08:09:32 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/dp2.gif
23.224.221.53200 OK 767 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/dp2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 767 kB (766938 bytes)
Hash 06f924cdbba4e6c4765765139a404682
7eaadc65f26a4fe45240e14f96c29aa53e721775
514dc1d00a06bed8dbb2a891aa73b6ff70cd32772f582df1c2c959c856d45a5d
GET /template/web/GG/dp2.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:32 GMT
content-type: image/gif
content-length: 766938
last-modified: Mon, 25 Apr 2022 12:29:50 GMT
etag: "6266943e-bb3da"
expires: Wed, 15 Feb 2023 08:09:32 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
kvevv.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
13.227.254.83200 OK 288 kB URL HTTP/1.1 kvevv.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
IP 13.227.254.83:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 288 kB (288397 bytes)
Hash e17bb688cfdae836ea866c47e92a022a
d748bb7b13696141ba768280a21d3dac482e3a0c
cb9affdc029bd6deb908ab9786fad62113c4ba28d2e9a8926cbed0c5e2c2aa6a
GET /fee6dc0783e7085f6b3452a1155d4b4a.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 288397
Connection: keep-alive
Date: Sat, 24 Dec 2022 08:26:22 GMT
Last-Modified: Sat, 24 Dec 2022 08:23:21 GMT
ETag: "e17bb688cfdae836ea866c47e92a022a"
Cache-Control: public, max-age=31536000
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 4e3c79d06b4e17a0f3b574740ddc8206.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SIN52-C3
X-Amz-Cf-Id: CvxVrDEg04EBTqBzFP5mU1bgYxpase-D0unWKaAlq97QYay4qRPOxg==
Age: 1986191
2k.qfbj2.com/template/web/GG/dp4.gif
23.224.221.53200 OK 747 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/dp4.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 747 kB (746571 bytes)
Hash 84e8edecf6c28c8218e0a7b1ad9ea414
3897e6bf1a2292c59b45e44d2b9c38e45f8f9a6f
356abb92d87698d59a4af16304d13e760b032739634c495fba68568e82d5c1ce
GET /template/web/GG/dp4.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:32 GMT
content-type: image/gif
content-length: 746571
last-modified: Mon, 25 Apr 2022 12:29:52 GMT
etag: "62669440-b644b"
expires: Wed, 15 Feb 2023 08:09:32 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/meizhuama/fonts/iconfont.ttf
23.224.221.53200 OK 1.2 kB URL HTTP/2 2k.qfbj2.com/template/meizhuama/fonts/iconfont.ttf
IP 23.224.221.53:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
GET /template/meizhuama/fonts/iconfont.ttf HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:32 GMT
content-type: application/octet-stream
content-length: 1163
last-modified: Sun, 06 Mar 2022 14:17:48 GMT
etag: "6224c28c-48b"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/a13.gif
23.224.221.53200 OK 674 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/a13.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 393 x 262\012- data
Size 674 kB (673882 bytes)
Hash 8f0aa6d32c03c602b0480194b2efdf4a
a2dfc596103bf743c9cf389e2b7a481a8bbedc96
2a54a439ea081c5418030b63dd4e0f247ff7089b1d7ba67a0fe6e2abcf466658
GET /template/web/GG/a13.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 673882
last-modified: Mon, 20 Jun 2022 04:59:33 GMT
etag: "62affeb5-a485a"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/2.gif
23.224.221.53200 OK 620 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 300 x 200\012- data
Size 620 kB (620010 bytes)
Hash 8171edd386b6abd105c0ff0e740330d9
7914e2b95f29d65b0ffb8e6daf7f54dc14da0ae0
5044971fcc4e0c4837e7e586b858fba8257feeed88812253aa9ee2396915c40a
GET /template/web/GG/2.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 620010
last-modified: Wed, 11 May 2022 08:12:37 GMT
etag: "627b6ff5-975ea"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/01.gif
23.224.221.53200 OK 562 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/01.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 380 x 570\012- data
Size 562 kB (561983 bytes)
Hash 311afec7a9e7d370b46adf41a45905e7
5460c5036e11ecf12f30d921e4dc811ad56f8b30
39da990b80811f9e29f4b4c1b9a0e7fc4f4b60a42c1f5d949b1ae1a9bbe80eb9
GET /template/web/GG/01.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: image/gif
content-length: 561983
last-modified: Wed, 11 May 2022 08:12:48 GMT
etag: "627b7000-8933f"
expires: Wed, 15 Feb 2023 08:09:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/ppll.gif
23.224.221.53200 OK 965 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/ppll.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 480 x 270\012- data
Size 965 kB (965446 bytes)
Hash 5f87eaa078aeb58fbe6a932225fe00e2
d155153be18e5b37704fa2b046751373a23bd708
55f2f4507e307aa3a6f26e06744510894d6a35a5289600b60120ddfca84e1cf9
GET /template/web/GG/ppll.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:32 GMT
content-type: image/gif
content-length: 965446
last-modified: Thu, 01 Dec 2022 04:59:54 GMT
etag: "638834ca-ebb46"
expires: Wed, 15 Feb 2023 08:09:32 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
13.227.254.86200 OK 919 kB URL HTTP/2 kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP 13.227.254.86:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 919 kB (918679 bytes)
Hash 956582dd3aa22ca9b19bdd1d5e091e24
c2d80e05f59981f6ed58a8231f502bd990894d6b
88e686882e64a0e199c79bd83b7102885b67242b5d0b49a1f37674c0bb3ddd8e
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kzerr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 918679
last-modified: Mon, 19 Dec 2022 07:54:21 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 15 Jan 2023 12:17:06 GMT
etag: "956582dd3aa22ca9b19bdd1d5e091e24"
x-cache: Hit from cloudfront
via: 1.1 ce37b125bad795f4918cd50b3f95260a.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: NuZJDg5ECYz06X29V2AqENBrADfmWeMA0fKtBrGDC01UfVobvSJsww==
age: 71548
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?959981931bea09b9a10c9c552a50e761
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?959981931bea09b9a10c9c552a50e761
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 4a26e996a73ca17639bd00460e6bb8ad
e00ec93ea9349cfd705aec6f2ab3a3031177d94e
af88cdc8811d1a3af8fa91595ea8db9f3d0ba851b71be2d98ce2471d6a85a689
GET /hm.js?959981931bea09b9a10c9c552a50e761 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Mon, 16 Jan 2023 08:09:32 GMT
Etag: c9407c666753cd4881f7d42edc9af630
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=FAD2009F01697502; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?86ea3af34e71a9d5eae3e3255c8ace53
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?86ea3af34e71a9d5eae3e3255c8ace53
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash c8a7446e57ab95b1cb31f0c9647678fb
9600135972b85d1ff9c8e3e91a8411c8c4dbdf02
96a7eb6a629013863b6e1d636e3c7cd0783658e9eed001dc1f796149528b8178
GET /hm.js?86ea3af34e71a9d5eae3e3255c8ace53 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Mon, 16 Jan 2023 08:09:32 GMT
Etag: 257a9af9c54c6d100043f767293bfb55
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=1C94D8552266798B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash cad7dec7aa89d3e3a0d7944e97df895b
fe151dd539db9ff102388c48e92d885c4cc47f07
01b5da4065a4fb19988c3664ff285d52e39b9627d6b9acf3eed8e77c84e9384e
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 20 Jan 2023 07:27:31 GMT
ETag: "fe151dd539db9ff102388c48e92d885c4cc47f07"
Last-Modified: Mon, 16 Jan 2023 07:27:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1291
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78a55e9ffa33b511-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 0bd09d4044005dabf1bfbae8d04c2446
3de70bbd7142344c04b0fe81037b31f58cb4a083
50843b6f9a8acbc3ce27b6835ff2d91c9390527394ee53169b5fe11461906358
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 20 Jan 2023 04:16:54 GMT
ETag: "3de70bbd7142344c04b0fe81037b31f58cb4a083"
Last-Modified: Mon, 16 Jan 2023 04:16:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1875
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78a55e9ff9ed0b45-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 0bd09d4044005dabf1bfbae8d04c2446
3de70bbd7142344c04b0fe81037b31f58cb4a083
50843b6f9a8acbc3ce27b6835ff2d91c9390527394ee53169b5fe11461906358
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 20 Jan 2023 04:16:54 GMT
ETag: "3de70bbd7142344c04b0fe81037b31f58cb4a083"
Last-Modified: Mon, 16 Jan 2023 04:16:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1875
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78a55e9ffc02b50f-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ccd79c1771c5db65d14db77ddbac6c7
74e3cd1ab2ff547953e138f258466adbd589ea64
a85a052f02504598d3cd20958d75679f1ce1930f226b1b174602e2cc030c002e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A85A052F02504598D3CD20958D75679F1CE1930F226B1B174602E2CC030C002E"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17079
Expires: Mon, 16 Jan 2023 12:54:12 GMT
Date: Mon, 16 Jan 2023 08:09:33 GMT
Connection: keep-alive
kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
13.227.254.55200 OK 396 kB URL HTTP/2 kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
IP 13.227.254.55:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 396 kB (395600 bytes)
Hash 5155d4f34bc2f7e77b9fe8e854d9e96f
408ed373dd26d934ee70f30b0e47a9dc8049983f
db9f393331e2d56fe7da37b7822590b82524e2dde508848299877daeae1df3be
GET /f7fd72d8ade7e262c4b4f656dd460724.gif HTTP/1.1
Host: kzehh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 395600
date: Tue, 20 Dec 2022 23:20:07 GMT
last-modified: Sat, 17 Dec 2022 11:55:02 GMT
etag: "5155d4f34bc2f7e77b9fe8e854d9e96f"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 003b6042285e886f3f4d6afd190f633c.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 7S36u76C9H1BKOnUYPCNVKIknHWcv1HgUJriuZti9FL0t8QHGgJLLg==
age: 2278165
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash c139d63da3f2f9b493be8184262ece02
a7ec79e4412a643740696466673be43c7c92f32a
eec37bfac6715b5e3b0907a8a44a59bcab9086dd36a960c04c23e91d6567b624
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 15 Jan 2023 03:23:06 GMT
Expires: Sun, 22 Jan 2023 03:23:05 GMT
Etag: "a7ec79e4412a643740696466673be43c7c92f32a"
Cache-Control: max-age=500611,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78a55e9fed07b51e-OSL
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1219735078&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27138&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1219735078&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27138&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1219735078&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27138&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 16 Jan 2023 08:09:33 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=F541CC5E21DF60B5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 522804e75775bbf1ae746d6d79eccad9
ba7670abfbadbe62ed05296ff4ead890de45523b
92f4d778e2965c8654d758ef90e89ec3ea7c93129db20363dd220826dafbb06c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 14 Jan 2023 23:53:07 GMT
Expires: Sat, 21 Jan 2023 23:53:06 GMT
Etag: "ba7670abfbadbe62ed05296ff4ead890de45523b"
Cache-Control: max-age=488012,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78a55ea19fbeb527-OSL
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1095958967&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27139&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1095958967&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27139&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1095958967&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27139&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 16 Jan 2023 08:09:33 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=00F3BB3B21625626; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
rootnetworksdv.ocsp-certum.com/
95.101.10.193200 OK 1.5 kB URL HTTP/1.1 rootnetworksdv.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 4accfc4cdc3677b1d486c73d37c0fbbb
c4a64556d36798a2f3000201b13692c4ef0523da
eea0c915d7bb624b4786818798b2fba3719df18f06b405347a6bebb27f8010ac
POST / HTTP/1.1
Host: rootnetworksdv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1490
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=863
Date: Mon, 16 Jan 2023 08:09:33 GMT
Connection: keep-alive
X-N: S
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash f01073b2c1c5e34412b042202aeaf3c6
e36b4e6549a90ba2ea5832e05255015d49432dd5
6adfbfabd143d26dc721e9d9bc1d6326c006b3b5fc5be8ebb2d2f56a18564dc5
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 20 Jan 2023 06:03:36 GMT
ETag: "e36b4e6549a90ba2ea5832e05255015d49432dd5"
Last-Modified: Mon, 16 Jan 2023 06:03:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 972
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78a55ea1fc95b511-OSL
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1247453779&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27139&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1247453779&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27139&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1247453779&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27139&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 16 Jan 2023 08:09:33 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=23FC85B0BD94B1D1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
104.110.17.24200 OK 489 kB URL HTTP/2 dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 489 kB (488987 bytes)
Hash 6a7d54ecdc2d1cce357d304db217ccec
03a803d54b6a1dd16cba5d73bf4e732d8b7be263
7cd4479b97a015f11a04b2d7d94fbe78030a7e0e3de457bf72abdbf53235c7d8
GET /images/0105c12000ae3a0t3DD7A.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 488987
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=6920780
expires: Thu, 06 Apr 2023 10:35:53 GMT
date: Mon, 16 Jan 2023 08:09:33 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e2196ca4e764ebbd0e6c41794071c9df
ca6b97e0f3c10d8fa6a7328d7a264bd3685d25d9
d1de5753632c74fcbd7d85801951b3d7ab1b2950bdd40f65d20f9ec71d14b008
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 06:26:17 GMT
Expires: Fri, 20 Jan 2023 06:26:16 GMT
Etag: "ca6b97e0f3c10d8fa6a7328d7a264bd3685d25d9"
Cache-Control: max-age=338802,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78a55ea1e830b527-OSL
rootnetworksdv.ocsp-certum.com/
95.101.10.193200 OK 1.5 kB URL HTTP/1.1 rootnetworksdv.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 4accfc4cdc3677b1d486c73d37c0fbbb
c4a64556d36798a2f3000201b13692c4ef0523da
eea0c915d7bb624b4786818798b2fba3719df18f06b405347a6bebb27f8010ac
POST / HTTP/1.1
Host: rootnetworksdv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1490
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Mon, 16 Jan 2023 08:09:33 GMT
Connection: keep-alive
X-N: S
ocsp.r2m02.amazontrust.com/
143.204.48.16200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 143.204.48.16:0
Hash 0e86077a6f36768ac9a6056d5cc08199
8094a09facfa26b6b4f60c5b7893c375a024efce
fb79a533910a8a62fa43f7d700f79ec430edec69707aa0a0220629fb191d4bd8
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 16 Jan 2023 08:09:33 GMT
Last-Modified: Mon, 16 Jan 2023 06:47:54 GMT
Server: ECS (dcb/7EC8)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: t20rwWsgvKONlMI52br5sjTwtgMTYMjV6bLlN6G6L8djxMPZdexNyw==
Age: 4899
8499683.com/8499/zzxx/960x60.gif
198.16.51.55200 OK 291 kB URL HTTP/2 8499683.com/8499/zzxx/960x60.gif
IP 198.16.51.55:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 291 kB (290572 bytes)
Hash 57aeaeed8e55b2a1e23b348d9d73f9d5
381bc182c18210ba33ebe13cbf8f20f297d33c16
e10903ca99193ba8ffd6c5f74753461cf070e75026e73fda3c040496f8dcfdb6
GET /8499/zzxx/960x60.gif HTTP/1.1
Host: 8499683.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:33 GMT
content-type: image/gif
content-length: 290572
last-modified: Sat, 24 Dec 2022 13:23:32 GMT
etag: "46f0c-5f092cf097c3f"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a25e37dd9a7f7137d51a9a6be387c5b9
d6c8a6340a66eb65a9c2c6d445338ca9e8602168
5e9c7e36e6ebb8348f7b9c2a4ce6f4813fdb9bb1a3f041f6f1109c2f3b920a40
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E9C7E36E6EBB8348F7B9C2A4CE6F4813FDB9BB1A3F041F6F1109C2F3B920A40"
Last-Modified: Mon, 16 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5135
Expires: Mon, 16 Jan 2023 09:35:08 GMT
Date: Mon, 16 Jan 2023 08:09:33 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 0c1d87aa83224df0599891827c7ab190
ac019d9c41bd9517bc91d08dcea5e5404df53789
c942c37d8435cbfe22c1ac668eabe7b11cfdce5a7fcbce300652adc698091fdc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 03:26:12 GMT
Expires: Fri, 20 Jan 2023 03:26:11 GMT
Etag: "ac019d9c41bd9517bc91d08dcea5e5404df53789"
Cache-Control: max-age=327997,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78a55ea258cbb527-OSL
kvemm.com/ec9fcd758df74f805f29f72e8545d13b.gif
13.227.254.6200 OK 902 kB URL HTTP/2 kvemm.com/ec9fcd758df74f805f29f72e8545d13b.gif
IP 13.227.254.6:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 902 kB (902313 bytes)
Hash 8b4a95ea7cfbb7fb4d2b18efca5145f3
d2966ecbeb7369620cce5dbcd15d0fe591d79648
dd5ff25f4d6931bd3d2ef86c1a8901853ee2503fd2d6edb264a61abb37c2b002
GET /ec9fcd758df74f805f29f72e8545d13b.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 902313
date: Sun, 15 Jan 2023 14:36:32 GMT
last-modified: Thu, 15 Dec 2022 02:17:25 GMT
etag: "8b4a95ea7cfbb7fb4d2b18efca5145f3"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 322d4a6b5dc93fed92dc98b4eacf25ca.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: bERV_o3ZhsC59Qjvgl-_vaQWgn1tCGj7gVnXTGQmmZzp0sgSxon66w==
age: 63181
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 7e481b1cd89664a3a7d65f16945befe1
5e2e1721ce0f304eeb97abff086b5d37d90de7cb
503b5c521b0ecf0b315c2764e6bfdc0b073a0d5c0b6b34b846958aeabc6fc205
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 01:27:04 GMT
Expires: Fri, 20 Jan 2023 01:27:03 GMT
Etag: "5e2e1721ce0f304eeb97abff086b5d37d90de7cb"
Cache-Control: max-age=320849,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78a55ea2a921b527-OSL
dvcasha2.ocsp-certum.com/
95.101.10.107200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash 9bf68e6456dde22be96d7494a817b1f5
8962a4f484ff1ce40d12f936b6cd4937a41e19b2
a238e5b9f91ebb12fad346785dba3b78a20df5b2f541ac8ba3b8a62416e546c3
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=883
Date: Mon, 16 Jan 2023 08:09:34 GMT
Connection: keep-alive
X-N: S
image.tnmvgr.cn/oms.1511122.com/1672811733462-960x60.gif
47.246.44.206200 OK 109 kB URL HTTP/1.1 image.tnmvgr.cn/oms.1511122.com/1672811733462-960x60.gif
IP 47.246.44.206:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 109 kB (109246 bytes)
Hash e573c37ce1ba8b57e8dfb8fcd43368c9
f5da3a1479bfd18c820893899b5b478df5d02d3c
d9f97dfc186d336e8a5da72bffc7b70378bf87f68de9af20d59a8b88ff271d53
GET /oms.1511122.com/1672811733462-960x60.gif HTTP/1.1
Host: image.tnmvgr.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/gif
Content-Length: 109246
Connection: keep-alive
Date: Mon, 16 Jan 2023 07:28:38 GMT
x-oss-request-id: 63C4FCA5F2D9593937FF821B
Vary: Origin
x-oss-cdn-auth: success
Accept-Ranges: bytes
ETag: "E573C37CE1BA8B57E8DFB8FCD43368C9"
Last-Modified: Wed, 04 Jan 2023 05:55:33 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5454499210466108819
x-oss-storage-class: Standard
Content-MD5: 5XPDfOG6i1fo37j81DNoyQ==
x-oss-server-time: 4
Ali-Swift-Global-Savetime: 1673854118
Via: cache10.l2de2[0,0,304-0,H], cache1.l2de2[0,0], cache7.se1[0,0,200-0,H], cache5.se1[2,0]
Age: 2456
X-Cache: HIT TCP_MEM_HIT dirn:11:250808292
X-Swift-SaveTime: Mon, 16 Jan 2023 07:57:50 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9916738565740617690e
hm.baidu.com/hm.js?23623cf5f4a21b97670aa94e566ea294
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?23623cf5f4a21b97670aa94e566ea294
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash efe14dbd05fe7ebeee465580343658a4
9efbb30b5e1d1c9eb4a089f14ae092359b977579
3e1bbe2cab3e38bc985cbd0b2721eced32d639c76cc245c4d4d0b2142111c924
GET /hm.js?23623cf5f4a21b97670aa94e566ea294 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Mon, 16 Jan 2023 08:09:33 GMT
Etag: 39f4903cb2447371cdbc868e6e62db0b
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=FF03D205CC36EBC6; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 51767ae0112eb76589eee618fb0c6f2c
0a394e356b11c629bc887342debf541a2f67e270
7437ca9db65ed64608b5758217833aef7305e2a2d32b23f423277a2fcc0cb5fa
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 16 Jan 2023 08:06:27 GMT
last-modified: Sat, 14 Jan 2023 05:47:54 GMT
expires: Sat, 21 Jan 2023 05:47:53 GMT
etag: "0a394e356b11c629bc887342debf541a2f67e270"
cache-control: max-age=602848,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 78a55a16a9e8bbbf-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1673856387
via: cache15.l2de2[0,0,304-0,H], cache23.l2de2[0,0], cache1.se1[22,22,200-0,H], cache4.se1[24,0], cache7.se1[25,0]
age: 187
x-cache: HIT TCP_REFRESH_HIT dirn:11:447127169
x-swift-savetime: Mon, 16 Jan 2023 08:09:34 GMT
x-swift-cachetime: 1613
timing-allow-origin: *, *
eagleid: 2ff62c9b16738565741677718e, 2ff62c9b16738565741677718e
dvcasha2.ocsp-certum.com/
95.101.10.107200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash b4c57585b7bd8b35cc02fcfd90182ac6
848ddeff87794d72a45ffad39f51dce9da141186
475daeab2293722d37ce1530bf085834350100e29472760f3a24eb0afce8f340
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Mon, 16 Jan 2023 08:09:34 GMT
Connection: keep-alive
X-N: S
kzeoo.com/0e243abb7057b68d7362544cbbe032ba.gif
172.83.155.45200 OK 270 kB URL HTTP/2 kzeoo.com/0e243abb7057b68d7362544cbbe032ba.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Size 270 kB (270145 bytes)
Hash 2e0432b5ead77702ac433d71c5caeeb4
91f7f7320673eb770bd2b82c82d898fa6ed5de97
63ccf288b83f2c2d1995165c5f15cf3980c947cff737800d8119cdad406d3c7a
GET /0e243abb7057b68d7362544cbbe032ba.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:33 GMT
content-type: image/gif
content-length: 270145
last-modified: Wed, 26 Oct 2022 13:37:18 GMT
etag: "6359380e-41f41"
expires: Mon, 16 Jan 2023 20:09:33 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 484426
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hX5Ar9%2FK0fcxx9TfXtPiqStyxeq73j0fAX2UgwSCDfcT50s5Ttt7Ear4wk3SNqP2UW59IkiU1UuNe9vSWBxRsdPBc6qQxnmFjhoPuVVVl9R0UfqxmfbVPSmDeJvh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7879ecc4fbb4c549-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
172.83.155.45200 OK 99 kB URL HTTP/2 kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Hash 5057019842032cd72cc53fc9db8984cb
74c23172056bd1ad95120490f8b9a72c78d0bbfc
0b2c55edc45ae48aa65a39d3af468422e36476fab2a6c30e37d40bc9df0cba65
GET /241ffcf0a5007067dad148a90c317e01.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:33 GMT
content-type: image/gif
content-length: 99372
last-modified: Tue, 10 Jan 2023 09:17:01 GMT
etag: "63bd2d0d-1842c"
expires: Mon, 16 Jan 2023 20:09:33 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 16516
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=805qOdGly9PZv2yJnww7cBphigafsRz5TjFYMEKAITUGNEPDjMmpl9%2FbS%2FGY2NpxTW6w%2BT2CYYzi6PzGTkBOD%2FkWQjWFwsOEd2Gn2JOQJj1FQRX9HIcDAQ7iikix"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7875e7c30b80841f-YVR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 84a8d2894eef6f8a804bb9b343c4fabc
cd50eedf4019d84c39746cace6e0562fbb3efb1b
38a2a267aac8ddb7f54978c66be16151f869a5e015cdcf5e58b9aa96f4011f43
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5366
Cache-Control: max-age=141311
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 08:09:34 GMT
Etag: "63c47647-2d7"
Expires: Tue, 17 Jan 2023 23:24:45 GMT
Last-Modified: Sun, 15 Jan 2023 21:55:19 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 727
dvcasha2.ocsp-certum.com/
95.101.10.107200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash 8d7d32b8336d32c994631709e85b2acc
b15d47d2ba29277fe4390481ae140d3dc3ebd18e
e9825f33da1cf6513003371bd2c5abe8bfea346bcd7bf5e8a2c6b7c7a2e4c4f4
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Mon, 16 Jan 2023 08:09:34 GMT
Connection: keep-alive
X-N: S
383guanggao.oss-cn-shenzhen.aliyuncs.com/200X200.gif
120.77.166.67200 OK 137 kB URL HTTP/1.1 383guanggao.oss-cn-shenzhen.aliyuncs.com/200X200.gif
IP 120.77.166.67:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 200 x 200\012- data
Size 137 kB (136945 bytes)
Hash 77e56e44521598151bbc814814005448
204207c707cae73d562c4c8fcb1e8467eeabf2eb
a1275ab8c911c61150c5f68b2da51d30a146929e2c9478ab1a68db88a086ff6f
GET /200X200.gif HTTP/1.1
Host: 383guanggao.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: image/gif
Content-Length: 136945
Connection: keep-alive
x-oss-request-id: 63C5063D511B143835663527
Accept-Ranges: bytes
ETag: "77E56E44521598151BBC814814005448"
Last-Modified: Thu, 08 Dec 2022 07:20:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6164053056264850434
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: d+VuRFIVmBUbvIFIFABUSA==
x-oss-server-time: 3
img.1151555.com/images/63a1b20f7c2b41a439f0ec4c.gif
38.54.37.233302 Found 343 kB URL HTTP/2 img.1151555.com/images/63a1b20f7c2b41a439f0ec4c.gif
IP 38.54.37.233:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 343 kB (343002 bytes)
Hash ce862703bd3a6fd9e7acc3c32453fe84
c27754e24547e935314ba986477cd326628af7e4
eb9f779660b2713488854f27a211239724bb29b842e939424ec882b51520350b
GET /images/63a1b20f7c2b41a439f0ec4c.gif HTTP/1.1
Host: img.1151555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2017115939&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27140&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2017115939&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27140&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2017115939&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=27140&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 16 Jan 2023 08:09:34 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=BB67A2EBFC402092; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
2k.qfbj2.com/template/web/zxbf.js
23.224.221.53200 OK 371 kB URL HTTP/2 2k.qfbj2.com/template/web/zxbf.js
IP 23.224.221.53:0
Size 371 kB (370640 bytes)
Hash b205423311a75ac28236b9d429ab4d17
4c01c3ae139492213d535a49309cb5efaac9e81b
d0b8cc9216f3a30b00f1ce0a7ab68efeae85bff0de646834d21b4cbbdf8ffc6e
GET /template/web/zxbf.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 07:02:24 GMT
vary: Accept-Encoding
etag: W/"63c4f680-1477"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
kzeoo.com/47e02a59b814807a640ae615b82c06ac.gif
172.83.155.45200 OK 214 kB URL HTTP/2 kzeoo.com/47e02a59b814807a640ae615b82c06ac.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Size 214 kB (213551 bytes)
Hash 38a577005d8da64f084a3f6624619e55
d271b81103a0c053eaaf5ba802158a2d7ea8e3c1
23d0f1ac9f00f07722d9b6496672e1e08e1e6657d5b6b36542f14d87f15eaa43
GET /47e02a59b814807a640ae615b82c06ac.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:33 GMT
content-type: image/gif
content-length: 213551
last-modified: Wed, 14 Sep 2022 11:24:46 GMT
etag: "6321b9fe-3422f"
expires: Mon, 16 Jan 2023 20:09:33 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 488075
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kFlknUC2JT1kASh9GfSPNJti166kBLiT7O9HrLeuitTpn9VT3e9xWjqzpLdX%2BF2BqJ7i5fKgtHMWVRaOlkv2vxKFA9ITe%2BynFf5cly75KpiXRtollUOP6vEa7atf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7885dcc6ced8281f-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 8d9e76bd004347b674e9deec3e8632d2
46ee2b600b8a761f34444d902e503270838e9876
e644c3f62d7b3f6d38f814114f8ea956e74b863dfbc1cf3653e5fddaf15e2355
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Fri, 20 Jan 2023 04:28:43 GMT
ETag: "46ee2b600b8a761f34444d902e503270838e9876"
Last-Modified: Mon, 16 Jan 2023 04:28:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1748
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78a55ea7890d1c02-OSL
3718896ccc.com/c76b6b83f68449898dbeba8d3afeeb17.gif
45.61.212.56200 OK 429 kB URL HTTP/1.1 3718896ccc.com/c76b6b83f68449898dbeba8d3afeeb17.gif
IP 45.61.212.56:0
File type GIF image data, version 89a, 750 x 100\012- data
Size 429 kB (428715 bytes)
Hash 8210df04bd6396b170b8feb016ae687f
e3a485ecef81f1464cefb0c321c8747190e8b762
cf47ae179a9a0a1a8d7f149af54bc698aca7eca03a0b2436eb929eb908637738
GET /c76b6b83f68449898dbeba8d3afeeb17.gif HTTP/1.1
Host: 3718896ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63c4f987-68aab"
Date: Mon, 16 Jan 2023 07:21:25 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 16 Jan 2023 07:15:19 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-26
Content-Length: 428715
n0499.com/52398d62c1cf48fa95ec0fa704653940.gif
20.210.214.253200 OK 101 kB URL HTTP/1.1 n0499.com/52398d62c1cf48fa95ec0fa704653940.gif
IP 20.210.214.253:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 101 kB (100964 bytes)
Hash 27d1de97ac93e08c23d38839c165962c
020372b65036c38287bf286a45dafd0cbd3a0538
57d082becc6ff907404430333320f5d87607b761c5b8647a13f339a20ca2f30d
GET /52398d62c1cf48fa95ec0fa704653940.gif HTTP/1.1
Host: n0499.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 08 Jan 2023 13:53:34 GMT
ETag: W/"63bacade-433f6"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
2k.qfbj2.com/template/web/xx3.js
23.224.221.53200 OK 301 kB URL HTTP/2 2k.qfbj2.com/template/web/xx3.js
IP 23.224.221.53:0
Size 301 kB (300973 bytes)
Hash d278945943f6fb9b009537df7073f9f5
0d15c4d7e7792cfc69e21b3d9313d0726aaa49d1
85e536f4482e98ad341a2c87af4d9610e875f91cb589a45ce786e05719edc22f
GET /template/web/xx3.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 07:20:47 GMT
vary: Accept-Encoding
etag: W/"63c4facf-15a5"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
1865366ccc.com/7b6de5866506450c825e02fdffc35b6a.gif
103.170.15.103200 OK 684 kB URL HTTP/1.1 1865366ccc.com/7b6de5866506450c825e02fdffc35b6a.gif
IP 103.170.15.103:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 684 kB (684143 bytes)
Hash ed37cb5d680ff52e6a6b5e102538b151
c71e5c83de0a4d1c0c6022d545f69c52dc4cfc2f
e14d54ea73e107930500243ac6068be527aeedd1f698110bc8bb7a599e38b069
GET /7b6de5866506450c825e02fdffc35b6a.gif HTTP/1.1
Host: 1865366ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63a9c6fc-a706f"
Date: Mon, 26 Dec 2022 16:13:37 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 26 Dec 2022 16:08:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-33
Content-Length: 684143
9030a.cc/1008-960x60.gif
154.85.10.21200 OK 245 kB IP 154.85.10.21:0
ASN #211392 Dream Cloud Innovation Limited
File type GIF image data, version 89a, 960 x 60\012- data
Size 245 kB (245135 bytes)
Hash b6eb4d9fd04fe63a7687677a8036e237
eac3cedc645a39478dc6ad3ec6ea97db621174b8
6b61596ae15b088b70b49d17c7b47eaffaa5f235c9215459334b85039af7f008
GET /1008-960x60.gif HTTP/1.1
Host: 9030a.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Tue, 04 Oct 2022 14:45:04 GMT
Accept-Ranges: bytes
ETag: "5c7ab8e3ffd7d81:0"
Server: Microsoft-IIS/8.5
Date: Mon, 16 Jan 2023 08:09:31 GMT
Content-Length: 245135
X-Via: 1.1 localhost.localdomain (random:85111 Fikker/Webcache/3.7.8)
Set-Cookie: fikker-tkjk-8I2E=6AJN4WT7BW0g0mIaVuK7h92mbGRsXQjs; expires=Mon, 16 Jan 2023 18:37:38 GMT; max-age=7200; path=/
fikker-tkjk-8I2E=6AJN4WT7BW0g0mIaVuK7h92mbGRsXQjs; expires=Mon, 16 Jan 2023 18:37:38 GMT; domain=.cc; max-age=7200; path=/
p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7PJmjpJPGJOiavFpnSj4iclWL0ZIe8L7lRTY2TqJMia0N38/0
43.129.255.47200 OK 206 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7PJmjpJPGJOiavFpnSj4iclWL0ZIe8L7lRTY2TqJMia0N38/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 206 kB (205622 bytes)
Hash 8a22a6888c325aa3acf83e7cedfe35e7
37da1ea976724d35c1c32ae18d7924192184ba32
2e90b20d4c2067ff68444790955d65d2745365cf025c486c8c2b685696faeeaa
GET /qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7PJmjpJPGJOiavFpnSj4iclWL0ZIe8L7lRTY2TqJMia0N38/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Mon, 16 Jan 2023 08:09:33 GMT
content-type: image/gif
content-length: 205622
vary: Accept,Origin
last-modified: Sat, 31 Dec 2022 07:19:17 GMT
cache-control: max-age=2592000
x-delay: 34095 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 205622
chid: 0
fid: 0
x-nws-log-uuid: 8ef61ad2-219b-4b08-ac8a-e30a23920d5c
X-Firefox-Spdy: h2
ky891.oss-cn-shenzhen.aliyuncs.com/891-960x80.gif
120.77.167.202200 OK 299 kB URL HTTP/1.1 ky891.oss-cn-shenzhen.aliyuncs.com/891-960x80.gif
IP 120.77.167.202:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 299 kB (298872 bytes)
Hash 563418030c4388ccb5df09d7a956b3aa
bc52680b1b525e7fe8cc17a64903035e00cbc37f
476d03d56758f426d0cd7541718e28ddcffc1a5336cd728f07f82606bed1f4f6
GET /891-960x80.gif HTTP/1.1
Host: ky891.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: image/gif
Content-Length: 298872
Connection: keep-alive
x-oss-request-id: 63C5063D8A5A143938949DC6
Accept-Ranges: bytes
ETag: "563418030C4388CCB5DF09D7A956B3AA"
Last-Modified: Mon, 02 Jan 2023 14:12:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6427100620931530640
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: VjQYAwxDiMy13wnXqVazqg==
x-oss-server-time: 2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 0ce3ec1d119ba3dc0dbdd1fbe612dcd6
366bb95abdd0595d694e9311580902371ed55c05
39f10927a58d21b7d8e12dae6d635952b96b37b9d7dd13b3cb033c512bd1a829
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 15:05:07 GMT
Expires: Fri, 20 Jan 2023 15:05:06 GMT
Etag: "366bb95abdd0595d694e9311580902371ed55c05"
Cache-Control: max-age=369930,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78a55ea7e88cb527-OSL
ia.51.la/go1?id=21273067&rt=1673856573403&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1673856573403&tt=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252F2k.qfbj2.com%252F&pu=http%253A%252F%252Fwww.58249.net%252F
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=21273067&rt=1673856573403&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1673856573403&tt=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252F2k.qfbj2.com%252F&pu=http%253A%252F%252Fwww.58249.net%252F
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21273067&rt=1673856573403&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1673856573403&tt=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252F2k.qfbj2.com%252F&pu=http%253A%252F%252Fwww.58249.net%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: CloudWAF
Date: Mon, 16 Jan 2023 08:09:35 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=6e77a46f470584f9c38; path=/
HWWAFSESTIME=1673856573602; path=/
sz88.oss-cn-shenzhen.aliyuncs.com/js/js1911-200x200.gif
120.77.166.72200 OK 225 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/js/js1911-200x200.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 200 x 200\012- data
Size 225 kB (225026 bytes)
Hash d0ec0f9c3f6bea10c3932dc6c67e95f3
d90ff84ffd8c75172e3d72f5fbc641e8cba869c6
1237fd778d6bb08a35af656bdcb2cbec947f6a725014ec7775d6509644deab90
GET /js/js1911-200x200.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 16 Jan 2023 08:09:34 GMT
Content-Type: image/gif
Content-Length: 225026
Connection: keep-alive
x-oss-request-id: 63C5063EB1F52537300E4644
Accept-Ranges: bytes
ETag: "D0EC0F9C3F6BEA10C3932DC6C67E95F3"
Last-Modified: Mon, 19 Dec 2022 08:37:35 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16580088513556850248
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 0OwPnD9r6hDDky3Gxn6V8w==
x-oss-server-time: 1
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0330fd56019fc53794f22d29f6214fc9
e998019a4040f3874966ef3d053d0c4af0d57a76
2b250946864278881483388dca8eb8f2f5ec4b2b63a5202f0eafb421848e45df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2B250946864278881483388DCA8EB8F2F5EC4B2B63A5202F0EAFB421848E45DF"
Last-Modified: Sun, 15 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18586
Expires: Mon, 16 Jan 2023 13:19:21 GMT
Date: Mon, 16 Jan 2023 08:09:35 GMT
Connection: keep-alive
gtm-cn-j6730u6sd0b.gtm-a3b8.com/ky960x60.gif
211.97.85.106200 OK 400 kB URL HTTP/1.1 gtm-cn-j6730u6sd0b.gtm-a3b8.com/ky960x60.gif
IP 211.97.85.106:0
ASN #140886 UNICOM Guangxi province network
File type GIF image data, version 89a, 960 x 60\012- data
Size 400 kB (399450 bytes)
Hash 4e1e4b8f46ac2e67539d5881785ba29a
7d3c9c963087ffc8c196cb7e67629342027a8a45
4c9cc489a2e26500ace73c53ce05bdfa52876a8700b7e9e73c1554187acefb0d
GET /ky960x60.gif HTTP/1.1
Host: gtm-cn-j6730u6sd0b.gtm-a3b8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Thu, 29 Dec 2022 12:09:17 GMT
Etag: "4e1e4b8f46ac2e67539d5881785ba29a"
Content-Type: image/gif
Date: Fri, 13 Jan 2023 03:21:30 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 10945751995987991778
x-cos-request-id: NjNjMGNlM2FfNjA1MGI3MDlfMjYwYzZfMmNiZmJiNw==
Content-Length: 399450
Accept-Ranges: bytes
X-NWS-LOG-UUID: 6132226564939360411
Connection: keep-alive
X-Cache-Lookup: Cache Hit
vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
47.75.19.55200 OK 300 kB URL HTTP/1.1 vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
IP 47.75.19.55:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 300 kB (299985 bytes)
Hash 5d7118c19a9bd8ff78641a72cb481144
5cf8f1709330929db0f38141e5e18518a2ddcb12
ebd1f7b5795943f0b6e779047bfd82e03c020056e9ae9f4a4f8b400d3835cd85
GET /sstu/st.gif HTTP/1.1
Host: vns86.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 16 Jan 2023 08:09:33 GMT
Content-Type: image/gif
Content-Length: 299985
Connection: keep-alive
x-oss-request-id: 63C5063D0E14E43936B14C57
Accept-Ranges: bytes
ETag: "5D7118C19A9BD8FF78641A72CB481144"
Last-Modified: Tue, 10 Jan 2023 09:27:44 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5878332609690177558
x-oss-storage-class: Standard
x-oss-version-id: CAEQRhiBgIDwy4PsrBgiIGVlOTJjOGM4NTBkZDQ5NTBhMzAzYjhiYTJjYjQ0NTI5
Content-MD5: XXEYwZqb2P94ZBpyy0gRRA==
x-oss-server-time: 2
2588qq.com/d886c72a6ae146a2982d664e0b475bdc.gif
103.170.15.87200 OK 56 kB URL HTTP/1.1 2588qq.com/d886c72a6ae146a2982d664e0b475bdc.gif
IP 103.170.15.87:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 128 x 128\012- data
Hash e3a860a8bf4b00e84a27972b6ce1db47
793298288e10a3ae6301660202ccb2f00101e72b
3d2acfe0d4c487ba9bae5ce18996052ca4ed0422e40df5e8032b9665164b5bf1
GET /d886c72a6ae146a2982d664e0b475bdc.gif HTTP/1.1
Host: 2588qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63b5258b-d95a"
Date: Wed, 04 Jan 2023 07:17:46 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 04 Jan 2023 07:06:51 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-17
Content-Length: 55642
sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
120.77.166.72200 OK 394 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 394 kB (394237 bytes)
Hash 03123a07739f511b3306d13415cd72b1
6dbf38767657a15b922e4d153f46fe4829e012cb
72b3fa6461c39eace9c154e56b66b437457ecde50ae7c615cd923e442d058cdd
GET /js960x80%20.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 16 Jan 2023 08:09:34 GMT
Content-Type: image/gif
Content-Length: 394237
Connection: keep-alive
x-oss-request-id: 63C5063EEAA5E232375CC659
Accept-Ranges: bytes
ETag: "03123A07739F511B3306D13415CD72B1"
Last-Modified: Tue, 20 Dec 2022 14:44:22 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13376170837400656090
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: AxI6B3OfURszBtE0Fc1ysQ==
x-oss-server-time: 1
595tuchuang.com/960x80.gif
183.255.106.36200 OK 145 kB URL HTTP/1.1 595tuchuang.com/960x80.gif
IP 183.255.106.36:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 145 kB (144990 bytes)
Hash 9fd5431ae14d05e144a79a04b928ad1d
43ca6652416a1403dc5a96d779d414330edbe411
f56b12228d407bfd1f7d17582733a92443a012dc7005b9b9896e9b8b3dc13c2c
GET /960x80.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:34 GMT
Content-Type: image/gif
Content-Length: 144990
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:28:21 GMT
ETag: "63a309f5-2365e"
Expires: Wed, 01 Feb 2023 07:17:46 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
baidu6image6sina38.com/pics/960x80.gif
202.79.168.156200 OK 610 kB URL HTTP/2 baidu6image6sina38.com/pics/960x80.gif
IP 202.79.168.156:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 960 x 80\012- data
Size 610 kB (610044 bytes)
Hash b27497b12ab8408c575804f5bae22bc2
210a46c5811435945b2ef6227c9eb22a13cd6f78
3f1563e29b1a848d447a38d9890301b760076756cbc5ae594273a3aa59d7664b
GET /pics/960x80.gif HTTP/1.1
Host: baidu6image6sina38.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:34 GMT
content-type: image/gif
content-length: 610044
last-modified: Sun, 15 Jan 2023 08:30:56 GMT
etag: "63c3b9c0-94efc"
expires: Wed, 15 Feb 2023 08:09:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn-jinjutupian-cdn.com/jj/640-100.gif
172.247.80.60200 OK 71 kB URL HTTP/2 cdn-jinjutupian-cdn.com/jj/640-100.gif
IP 172.247.80.60:0
File type GIF image data, version 89a, 640 x 100\012- data
Hash cdc759f1218c304fd70a17ee805fdd2b
0a4c54b190aebcd416d0785abb0643d51bf78bd9
d4b0f1eef2faf4601d707cec784124302ad79833c2b422c204739d8c30de0ab0
GET /jj/640-100.gif HTTP/1.1
Host: cdn-jinjutupian-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:35 GMT
content-type: image/gif
content-length: 70615
last-modified: Wed, 28 Dec 2022 16:09:36 GMT
etag: "63ac6a40-113d7"
expires: Tue, 14 Feb 2023 15:45:10 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
baidu6image6sina38.com/pics/960x160.gif
202.79.168.156200 OK 1.1 MB URL HTTP/2 baidu6image6sina38.com/pics/960x160.gif
IP 202.79.168.156:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 960 x 160\012- data
Size 1.1 MB (1072940 bytes)
Hash 218522b7d7aafbbec214d830e5083e63
e1b3acc2834522983092148ae0a8655b54c8e94c
b41b23a889d2b8ce6d476e9e695f881a1d9dee8e5fcee0ef054ff4a245ae14fc
GET /pics/960x160.gif HTTP/1.1
Host: baidu6image6sina38.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:33 GMT
content-type: image/gif
content-length: 1072940
last-modified: Sun, 15 Jan 2023 08:34:00 GMT
etag: "63c3ba78-105f2c"
expires: Wed, 15 Feb 2023 08:09:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash f5b561fed0b9818f1521e973efb885a0
5b7ac6bfd10aedc6b648ce7a1ba270e0478fa477
f215e800eb3da36b65c83ea5be1e7167fadeca9500e1d41e94c5edbbfd578b56
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 08:09:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 20 Jan 2023 07:14:02 GMT
ETag: "5b7ac6bfd10aedc6b648ce7a1ba270e0478fa477"
Last-Modified: Mon, 16 Jan 2023 07:14:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2018
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78a55eb23c261c02-OSL
kjimg10.360buyimg.com/ott/jfs/t1/210264/36/28769/261706/63c40ce4F018da279/0cd2d88a30820fae.gif
121.226.246.3200 OK 262 kB URL HTTP/2 kjimg10.360buyimg.com/ott/jfs/t1/210264/36/28769/261706/63c40ce4F018da279/0cd2d88a30820fae.gif
IP 121.226.246.3:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 262 kB (261706 bytes)
Hash 7d4eac7dbbbf42145efd6e690ca6ceaa
20bde37450862bbfacc42d03bdf0469cda302689
7fa365adc4aaad2cdaff59ad5b435a3d1f739edf02ba1c8fe0b0c5e829890474
GET /ott/jfs/t1/210264/36/28769/261706/63c40ce4F018da279/0cd2d88a30820fae.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:36 GMT
content-type: image/gif
content-length: 261706
cache-control: max-age=15552000
expires: Fri, 14 Jul 2023 14:26:46 GMT
last-modified: Sun, 15 Jan 2023 14:25:40 GMT
age: 63770
via: http/1.1 ORI-CLOUD-HUZ-MIX-23 (jcs [cMsSfW]), http/1.1 SQ-CT-1-MIX-22 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1673792806748-0-0-2-135-135;200;200-1673792806734-0-0-0-223-223;200-1673856576475-0-0-0-2-2
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/dbxf.js
23.224.221.53200 OK 0 B URL HTTP/2 2k.qfbj2.com/template/web/dbxf.js
IP 23.224.221.53:0
GET /template/web/dbxf.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 17:25:27 GMT
vary: Accept-Encoding
etag: W/"63bef107-7ab"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/xx1.js
23.224.221.53200 OK 0 B URL HTTP/2 2k.qfbj2.com/template/web/xx1.js
IP 23.224.221.53:0
GET /template/web/xx1.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 07:20:19 GMT
vary: Accept-Encoding
etag: W/"63c4fab3-12f6"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/app.js
23.224.221.53200 OK 0 B URL HTTP/2 2k.qfbj2.com/template/web/app.js
IP 23.224.221.53:0
GET /template/web/app.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 08:09:31 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 08:05:11 GMT
vary: Accept-Encoding
etag: W/"63c50537-321e"
expires: Mon, 16 Jan 2023 20:09:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
n0600.com/a06905fba15d4ef59ebcb392ebefd40a.gif
20.210.212.139200 OK 0 B URL HTTP/2 n0600.com/a06905fba15d4ef59ebcb392ebefd40a.gif
IP 20.210.212.139:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /a06905fba15d4ef59ebcb392ebefd40a.gif HTTP/1.1
Host: n0600.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 08:09:33 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Wed, 04 Jan 2023 10:10:45 GMT
etag: W/"63b550a5-54d22"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2