r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 60e4edea7b5f4d19f3547a3bb2d5df57
3ee076bab4da3416c2c5808f730cb316c28baef7
763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3752
Expires: Sun, 02 Oct 2022 18:06:30 GMT
Date: Sun, 02 Oct 2022 17:03:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
18.165.201.103200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 17:03:12 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 675c3f96928d591debc37b54f2b16dc2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: jBU3PjtjXvTwcS3AM2L9CZClJOSgG4wWT5ZHrewNaXYPA4WvCfAlwQ==
Age: 46
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.95200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.95:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:33:17 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 eb3d2bd89447108973b8d2779fc789e4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: dbP0KstiJX65SX8xWTxuBWeOPPLQFEYvjqMP0VgdIXBwn_QxgoCm6w==
age: 48642
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:03:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
alamu.net/sg94?0zut_l=f8h4hhox&2dtx=1qpdw8w9okyliif6dgbavptxki9wvjhul+qgzimr0zbtk7tffrhdjnfhteldpstnuoe=
207.60.201.68301 Moved Permanently 0 B URL HTTP/1.1 alamu.net/sg94?0zut_l=f8h4hhox&2dtx=1qpdw8w9okyliif6dgbavptxki9wvjhul+qgzimr0zbtk7tffrhdjnfhteldpstnuoe=
IP 207.60.201.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sg94?0zut_l=f8h4hhox&2dtx=1qpdw8w9okyliif6dgbavptxki9wvjhul+qgzimr0zbtk7tffrhdjnfhteldpstnuoe= HTTP/1.1
Host: alamu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.alamu.net/sg94?0zut_l=f8h4hhox&2dtx=1qpdw8w9okyliif6dgbavptxki9wvjhul+qgzimr0zbtk7tffrhdjnfhteldpstnuoe=
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.103200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:32:56 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 02 Oct 2022 16:54:57 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4dd28c7d9439664c66fbf62f5cd00636.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: _AVCa5-VB6nB3D-1gjxD9nhnS4OLvgCv_XcZB0vxWmEkLksQgvfGsQ==
Age: 1865
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4eb30b4a4234809cf7d5f89fa1f6ceeb
797242aab2f13c820050aa9accd11b7b950cd177
ce9d833a0ac321a908184b655d6632c481f758a04a9c936a7c303bb253444146
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4489
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:03:58 GMT
Last-Modified: Sun, 02 Oct 2022 15:49:09 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
www.alamu.net/sg94?0zut_l=f8h4hhox&2dtx=1qpdw8w9okyliif6dgbavptxki9wvjhul+qgzimr0zbtk7tffrhdjnfhteldpstnuoe=
207.60.201.68200 OK 575 B URL HTTP/1.1 www.alamu.net/sg94?0zut_l=f8h4hhox&2dtx=1qpdw8w9okyliif6dgbavptxki9wvjhul+qgzimr0zbtk7tffrhdjnfhteldpstnuoe=
IP 207.60.201.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (941), with CRLF line terminators
Hash 12d45b0d28cbba0a5c07e0d775297f5d
c869c8e5cfac4c52413a227acdbe19a152afb84c
dfef9a96a760fc4cecd9e17a8fb3166ae43e7473c13286faa8d9a3339c6970fc
GET /sg94?0zut_l=f8h4hhox&2dtx=1qpdw8w9okyliif6dgbavptxki9wvjhul+qgzimr0zbtk7tffrhdjnfhteldpstnuoe= HTTP/1.1
Host: www.alamu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 17:04:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.alamu.net/common.js
207.60.201.68200 OK 675 B IP 207.60.201.68:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1293), with no line terminators
Hash 44feb06b08e9c4000128d8bd160863c3
071486b1a864dc3eecbcc077f4ee919d6c97c230
db92466ac94b8d6d077f4d51864bc6eccc55bff0eb9535c6faf38eb5d4389f44
GET /common.js HTTP/1.1
Host: www.alamu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alamu.net/sg94?0zut_l=f8h4hhox&2dtx=1qpdw8w9okyliif6dgbavptxki9wvjhul+qgzimr0zbtk7tffrhdjnfhteldpstnuoe=
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 17:04:03 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
54.148.190.4101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.190.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zZrjJIDKlSMjGDsgEYBYNA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ytoQd2lWqoRenmQnCOT/iW0NxAc=
www.alamu.net/tj.js
207.60.201.68200 OK 258 B IP 207.60.201.68:0
File type ASCII text, with CRLF line terminators
Hash ab9db58f5654642aab924ce7a263c9f8
0f3f72ccb0574dd242276210c843c5d5378e09d0
1ac92f6c2d36c750531a5edb1d2578557485eff6992c1d62f197fd85f1b165cf
GET /tj.js HTTP/1.1
Host: www.alamu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alamu.net/sg94?0zut_l=f8h4hhox&2dtx=1qpdw8w9okyliif6dgbavptxki9wvjhul+qgzimr0zbtk7tffrhdjnfhteldpstnuoe=
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 17:04:03 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.alamu.net/favicon.ico
207.60.201.68200 OK 1.2 kB URL HTTP/1.1 www.alamu.net/favicon.ico
IP 207.60.201.68:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.alamu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alamu.net/sg94?0zut_l=f8h4hhox&2dtx=1qpdw8w9okyliif6dgbavptxki9wvjhul+qgzimr0zbtk7tffrhdjnfhteldpstnuoe=
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 17:04:03 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Fri, 07 Oct 2022 17:04:03 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e4fa6d21ee4a15803e8a20e1b115b586
f882e0b13ae7a15185efd8e46796830f0cf26069
7adbe85ec60d64f4259cae7152cbcab467905d5a39b5e7a5dc4a3d608a45a862
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7ADBE85EC60D64F4259CAE7152CBCAB467905D5A39B5E7A5DC4A3D608A45A862"
Last-Modified: Sat, 01 Oct 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 02 Oct 2022 23:03:59 GMT
Date: Sun, 02 Oct 2022 17:03:59 GMT
Connection: keep-alive
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash a49933266ad3d036e6ac672c8b93f61f
0770d608c5cc9509127f2924e2746ab04a07c36a
f7a8726fd06c8559f81c9ace968894c7095a8e55931472375842749f897e1053
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:03:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 06 Oct 2022 13:30:01 GMT
ETag: "0770d608c5cc9509127f2924e2746ab04a07c36a"
Last-Modified: Sun, 02 Oct 2022 13:30:02 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2625
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753f03bf7c4fb509-OSL
a3.sjpa1.com/template/web/xx2.js
23.224.221.53200 OK 548 B URL HTTP/2 a3.sjpa1.com/template/web/xx2.js
IP 23.224.221.53:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 331ecfd48f300732a84dc6306b67b48a
9236828e9a1f9f659c18c27234502ec7879924ad
3cfb4c700e6880523a14bafa95989598a0600496b1f575a35238242362c1be47
GET /template/web/xx2.js HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: application/javascript
content-length: 548
last-modified: Thu, 29 Sep 2022 13:25:22 GMT
etag: "63359cc2-224"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/app1.js
23.224.221.53200 OK 934 B URL HTTP/2 a3.sjpa1.com/template/web/app1.js
IP 23.224.221.53:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 91fda29a3b8005ede744f365245c1cc9
c69e17320e5694dceefdbd65ab27b29bf0aa288c
52cc04b7d276bfc5f194b0b32002c3937cba6ba901a5e2008d6200df5f5810e8
GET /template/web/app1.js HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: application/javascript
content-length: 934
last-modified: Sat, 01 Oct 2022 08:39:55 GMT
etag: "6337fcdb-3a6"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/app2.js
23.224.221.53200 OK 1.0 kB URL HTTP/2 a3.sjpa1.com/template/web/app2.js
IP 23.224.221.53:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 3181c7cf5df0b7e46736267964424f5c
8769088e004391252c220a8e817fcb2fa1611ab9
599988ef24484520e6861adf18579abbde0756109cf5a0fb3c7495b8b1766b45
GET /template/web/app2.js HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: application/javascript
content-length: 1016
last-modified: Sun, 02 Oct 2022 14:19:54 GMT
etag: "63399e0a-3f8"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/app3.js
23.224.221.53200 OK 954 B URL HTTP/2 a3.sjpa1.com/template/web/app3.js
IP 23.224.221.53:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash fc6454376e16c5cbcfa4624da76b83ac
4161538c103d285721ad90c833b14ae1ffbba62d
f881d0505321af956f03e3810f283f5873d8a8011831a07f776563a95a36ddd0
GET /template/web/app3.js HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: application/javascript
content-length: 954
last-modified: Sun, 02 Oct 2022 13:08:33 GMT
etag: "63398d51-3ba"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.ttbfp8.com/upload/vod/20221001-1/a7769fbce0f700bf21138991adcf5a04.jpg
23.224.136.188200 OK 8.4 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/a7769fbce0f700bf21138991adcf5a04.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e818b0a0f8c087ffb093ada4eb33bcdb
a628e21e0ce76d225b500ba198664f7d58ae2e67
8bc2c05554eaab3b421362ea14c650a334b413ab7d60b61506cb78bdaf66995b
GET /upload/vod/20221001-1/a7769fbce0f700bf21138991adcf5a04.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 8427
Last-Modified: Sat, 01 Oct 2022 10:07:16 GMT
Connection: keep-alive
ETag: "63381154-20eb"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2935
Expires: Sun, 02 Oct 2022 17:52:55 GMT
Date: Sun, 02 Oct 2022 17:04:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2935
Expires: Sun, 02 Oct 2022 17:52:55 GMT
Date: Sun, 02 Oct 2022 17:04:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9dddb9d84a16a3004821d89836b83dc3
087521979efd5936416fd7f030779fa5725f0a8f
a6251ac43958031d765b5743d43e14bc04b1e465bed81f757c3609ee6f2bea66
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6871
x-amzn-requestid: e1fdb2ee-c0e7-4a0c-ae26-d968aef00503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEIOGp2IAMFxSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ce-24b26a8048ffd84071a2ad57;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:30 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -svKnYBuiMSdWObzJyNah9TDIi6IuPP6VMzEJWmn0zxoZbFmwpzkJw==
via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:33 GMT
age: 69327
etag: "087521979efd5936416fd7f030779fa5725f0a8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:00 GMT
age: 44580
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edded48f558f739287a040151349ef67
d63b6ba630736d32c364b0e6a369274b2389b7ff
33b4a459df0ba7b36b907ba96d74e08660cc75640c42a5748b97d18ec2e9d533
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11083
x-amzn-requestid: 53e2c961-bcc0-4977-8648-ee3c1aed9cde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHRFWfIAMFhlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3c7-070212d7386d5efa1b4aa8d3;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z1KmxHJh9QNfg5x0enkqOjbmiqHvg7nlQiMnuDuCRNWQUBFEiKELbw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:36 GMT
etag: "d63b6ba630736d32c364b0e6a369274b2389b7ff"
content-type: image/jpeg
age: 69324
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d657f8a-70bc-42c6-9aae-1127c4403047.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d657f8a-70bc-42c6-9aae-1127c4403047.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94d82ad8d70761f6ee1384b4183335f3
5d3389a965cfa45dab2202d89b40264368674e8a
ad495dc0ede3bfcbaebfd3bf2eb55fc5596cd7643a539e030ccce0b8a3bcf8dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d657f8a-70bc-42c6-9aae-1127c4403047.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8602
x-amzn-requestid: 89329169-bc7a-46b1-85fc-20383a85cae8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDf9GxzoAMFg0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cc-27952f8357fa25c956b1cd72;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YDfn3Xd8m6jaBrj_M9hs4dePku_eEhJbYv3NJSHjCdAWifhBkiKUhw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 22:21:15 GMT
age: 67365
etag: "5d3389a965cfa45dab2202d89b40264368674e8a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2935
Expires: Sun, 02 Oct 2022 17:52:55 GMT
Date: Sun, 02 Oct 2022 17:04:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6047192460abf4afd600948abb5e6ee1
6d6d52fb5024e7772dd45dd459bfe3ec90cb5ce4
d1fd21a5913f6831d2128c8e9e84767d9730bf9e779da5395dc31b82a10e32e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9340
x-amzn-requestid: e892265e-836d-4638-871f-0548eda57745
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDf8FCEoAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cc-7f39bb92066a75a90868dd03;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Sk1Dahp1gliiBIghSCZselE7-Fy45svrCk7TdmunOwNefSNqY1P1jA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:34 GMT
etag: "6d6d52fb5024e7772dd45dd459bfe3ec90cb5ce4"
content-type: image/jpeg
age: 69326
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 463bdcfbec5426e18ecef83b1c373b71
2e533332ee5c49143e58dad32ee3717a39179532
2c40befd28781482b9be249a792571612d68d7045324083d2c832fa5ec42f04b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4987
x-amzn-requestid: 763edd04-7f8d-42ae-8864-482be3549958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHpFs4oAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ca-2f7b67e85aa83b69183e62b5;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Zoggf30lA-Kvt5QYa-IdhGePHCNiphR7pfFiOaFvL8ZkWZIaiK4pA==
via: 1.1 f4367b41311e3e9a490d7461b7b85490.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:37 GMT
etag: "2e533332ee5c49143e58dad32ee3717a39179532"
content-type: image/jpeg
age: 69323
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2935
Expires: Sun, 02 Oct 2022 17:52:55 GMT
Date: Sun, 02 Oct 2022 17:04:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2935
Expires: Sun, 02 Oct 2022 17:52:55 GMT
Date: Sun, 02 Oct 2022 17:04:00 GMT
Connection: keep-alive
img.ttbfp8.com/upload/vod/20221001-1/bf9dc8bc580dcd679489f45190cb62eb.jpg
23.224.136.188200 OK 12 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/bf9dc8bc580dcd679489f45190cb62eb.jpg
IP 23.224.136.188:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 9d792ea98934cdcc88f6ebc2ac7b982e
e8fec3b9d6e03595d91f56518564ff345c33226d
eae8d115a5fd12798252ab9a387a45d4ae30b2c59feb73202cbca8e6ca785acc
GET /upload/vod/20221001-1/bf9dc8bc580dcd679489f45190cb62eb.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 11533
Last-Modified: Sat, 01 Oct 2022 10:07:11 GMT
Connection: keep-alive
ETag: "6338114f-2d0d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
a3.sjpa1.com/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
23.224.221.53404 Not Found 146 B URL HTTP/2 a3.sjpa1.com/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
IP 23.224.221.53:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://a3.sjpa1.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
a3.sjpa1.com/template/meizhuama/images/video-play.png
23.224.221.53200 OK 1.6 kB URL HTTP/2 a3.sjpa1.com/template/meizhuama/images/video-play.png
IP 23.224.221.53:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/meizhuama/images/video-play.png HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/png
content-length: 1567
last-modified: Sun, 06 Mar 2022 14:17:50 GMT
etag: "6224c28e-61f"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.ttbfp8.com/upload/vod/20221001-1/3185855dff0c0ad686ee2a3bd7bd5af1.jpg
23.224.136.188200 OK 154 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/3185855dff0c0ad686ee2a3bd7bd5af1.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 154 kB (153453 bytes)
Hash c2aa3400379d95ebf9d4df7e059c0b2c
b8fe79e2aa996999ebbd340690092984e8833181
283609136c2cb46d382159faf3d4a9b512697c4ac46d871af356d86e751745f7
GET /upload/vod/20221001-1/3185855dff0c0ad686ee2a3bd7bd5af1.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 153453
Last-Modified: Sat, 01 Oct 2022 10:07:16 GMT
Connection: keep-alive
ETag: "63381154-2576d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/7d39dd40ecf5343b656af806ac72c450.jpg
23.224.136.188200 OK 194 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/7d39dd40ecf5343b656af806ac72c450.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 194 kB (193666 bytes)
Hash beec7c4da9823c58e657cd2eaf9bc6c3
df9f5cddbda76dfb943a6b95c0a44a5e49b315a3
1fb0d909e755d50c9ecfd907107fc7f266aa1c36a794701fc5084dbfcd653c61
GET /upload/vod/20221001-1/7d39dd40ecf5343b656af806ac72c450.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 193666
Last-Modified: Sat, 01 Oct 2022 10:07:17 GMT
Connection: keep-alive
ETag: "63381155-2f482"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
a3.sjpa1.com/template/web/GG/k6.gif
23.224.221.53200 OK 53 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/k6.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 74d864001115d3b123c552156accfbef
11ae3aef174b8fab213faa40b1b985f77dada46f
9001f1548a09cf89715469dc8d009f7aebb1a459d261c73a2f35d252bf88b4c8
GET /template/web/GG/k6.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 53324
last-modified: Fri, 27 May 2022 05:30:58 GMT
etag: "62906212-d04c"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.ttbfp8.com/upload/vod/20221001-1/000d977e4b6c1931bc2947306814777f.jpg
23.224.136.188200 OK 190 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/000d977e4b6c1931bc2947306814777f.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 190 kB (190212 bytes)
Hash 04a6e2d03c6381d69cd16954a8b6af9e
7bf6307a122508cc4cf87afd52f30a6dbe967248
32c990b0f376b0511a57ca650fa67acea99f343a2ce6588a22d4baf7b86b0318
GET /upload/vod/20221001-1/000d977e4b6c1931bc2947306814777f.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 190212
Last-Modified: Sat, 01 Oct 2022 10:07:16 GMT
Connection: keep-alive
ETag: "63381154-2e704"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/6c831ab583094c3580936e6bfc3563e3.jpg
23.224.136.188200 OK 154 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/6c831ab583094c3580936e6bfc3563e3.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 154 kB (153714 bytes)
Hash 5595465c00e91a06b3bdec2c72a7ebfb
eefcd85a3601513599b82e67ac356725fe229fca
627f9ccd3a00029be0b1bbe924d51ed00ed43c9978cad8a45fb2be34e971ecb0
GET /upload/vod/20221001-1/6c831ab583094c3580936e6bfc3563e3.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 153714
Last-Modified: Sat, 01 Oct 2022 10:07:16 GMT
Connection: keep-alive
ETag: "63381154-25872"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/a04e141ce20c5cbc6066e3a5bc445fb9.jpg
23.224.136.188200 OK 180 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/a04e141ce20c5cbc6066e3a5bc445fb9.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 180 kB (179580 bytes)
Hash f7201a090c79063d4b3edb035a71bb21
1622ac01194071c56ddc02f188eb65841966f9f8
77044919305f6c49e8cad5db8ae1eca71bf2370613092517d985e45c3855a44b
GET /upload/vod/20221001-1/a04e141ce20c5cbc6066e3a5bc445fb9.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 179580
Last-Modified: Sat, 01 Oct 2022 10:07:11 GMT
Connection: keep-alive
ETag: "6338114f-2bd7c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
aoattsetp.vip/logotp/wt01.gif
172.67.194.142200 OK 479 kB URL HTTP/2 aoattsetp.vip/logotp/wt01.gif
IP 172.67.194.142:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 479 kB (479032 bytes)
Hash 7f8ee4f985772f6a9c0256ae8b86186d
69a2b0b1d7e19fb38d21533fd22eff1bcf1f9abd
f3458aa5d6e2c3ba4a261dedd7a76da61915b7b2911d19b05cf23d6b04b40117
GET /logotp/wt01.gif HTTP/1.1
Host: aoattsetp.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 479032
last-modified: Mon, 02 May 2022 08:41:22 GMT
etag: "626f9932-74f38"
expires: Sun, 23 Oct 2022 23:12:25 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 715243
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y0ZIQYSGNrjb%2BCj%2F0NrwQg%2B3PlB6BoCEqTfVofHgKbsSnQBNKFTNcuSULGt2qTkXLtEJYCs%2BM%2Bj43v3zsV3sW%2FZrz16MayTzA4ohwLuoY%2FwMv%2FS%2FfQdZJLDZsDvwZPMn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f03c5ab65b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b4a37f73d35976fd69bb1d2917317139
20eacc64a1d0878fadf270091330938b18287d92
978db0385efa86593d990efd125c814eb14b0306163369ad069ab372cea0f6dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "978DB0385EFA86593D990EFD125C814EB14B0306163369AD069AB372CEA0F6DC"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19109
Expires: Sun, 02 Oct 2022 22:22:29 GMT
Date: Sun, 02 Oct 2022 17:04:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3b0e6d1603769e297b88fd7c9c9699d8
9fffef93dbb3305fe21e3aae55a2d1c7b9035605
d70dcb4f9c8413346aa04e191c665aba6f046930cfc9e0b2c9e39f33a235cbc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D70DCB4F9C8413346AA04E191C665ABA6F046930CFC9E0B2C9E39F33A235CBC8"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7862
Expires: Sun, 02 Oct 2022 19:15:03 GMT
Date: Sun, 02 Oct 2022 17:04:01 GMT
Connection: keep-alive
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 6f3fc6f0019780ec4f560e519c4a00f3
486bcc3f1fc686f68e2402403df88828497549ce
af77db900f627368332dcc356fe2b6030457d3df861dcc513ae4a8469148c782
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Thu, 06 Oct 2022 14:25:09 GMT
ETag: "486bcc3f1fc686f68e2402403df88828497549ce"
Last-Modified: Sun, 02 Oct 2022 14:25:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1996
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753f03c66f08b509-OSL
img.ttbfp8.com/upload/vod/20221001-1/69ece41f0c69e49587f39509c3e80914.jpg
23.224.136.188200 OK 166 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/69ece41f0c69e49587f39509c3e80914.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 166 kB (165966 bytes)
Hash 9194bcc5e6f1395503d975e0845cb960
10aeb3fb790b35ab8b91a7eef447bcb9856fc3c4
e7ef3caf555023f8ad60925fd7957df9ce35a64449a86a6ae9ff4ecf9550fdef
GET /upload/vod/20221001-1/69ece41f0c69e49587f39509c3e80914.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 165966
Last-Modified: Sat, 01 Oct 2022 10:07:15 GMT
Connection: keep-alive
ETag: "63381153-2884e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7dfd6023f1624136aeedd9aec27b5aa1
80f441cb400af8aba035e07e91832bb8e5473ce3
9ebbe254ec38ac2794392a3d52d5a2c16cf133fc84734439872bfb3b57da7191
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9EBBE254EC38AC2794392A3D52D5A2C16CF133FC84734439872BFB3B57DA7191"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15041
Expires: Sun, 02 Oct 2022 21:14:42 GMT
Date: Sun, 02 Oct 2022 17:04:01 GMT
Connection: keep-alive
img.ttbfp8.com/upload/vod/20221001-1/19081d67cbf359c3b998df176c725b63.jpg
23.224.136.188200 OK 6.2 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/19081d67cbf359c3b998df176c725b63.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 479242328f54e3153963469a6b3369c1
d5f486221bcde68dbd2d87c137cdeca91683995e
9009deb6da557b47ac28c4570857178b0cb50a31deb9c338106bf38780b7b54f
GET /upload/vod/20221001-1/19081d67cbf359c3b998df176c725b63.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 6245
Last-Modified: Sat, 01 Oct 2022 10:07:15 GMT
Connection: keep-alive
ETag: "63381153-1865"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
a3.sjpa1.com/template/web/xx1.js
23.224.221.53200 OK 1.5 kB URL HTTP/2 a3.sjpa1.com/template/web/xx1.js
IP 23.224.221.53:0
Hash 66b0fa8734b10a786125d6de7b85fe06
75e6fa8a5bd18f6bfdaada557c3efd0fab411ce8
e899b63795f824dc12725c5e6768f02e7494f867b54fda63214444b168c24189
GET /template/web/xx1.js HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 12:31:59 GMT
vary: Accept-Encoding
etag: W/"6336e1bf-11be"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 16df86b76358ca69253efbc7b6cb2575
55a48fb8393acd8ecdcda83bbd1eb944cca6f669
8f6ff23d85ec239a6d37a2657eb69e1d3aabda6f6bdc7508feec3202b5c568d6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 12:02:25 GMT
Expires: Thu, 06 Oct 2022 12:02:24 GMT
Etag: "55a48fb8393acd8ecdcda83bbd1eb944cca6f669"
Cache-Control: max-age=326902,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 753f03c6ccdbb4f3-OSL
kvevv.com/dbb6158a2ca1378f4052d59ea53d1eac.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kvevv.com/dbb6158a2ca1378f4052d59ea53d1eac.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /dbb6158a2ca1378f4052d59ea53d1eac.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 02 Oct 2022 17:04:01 GMT
content-type: text/html
content-length: 162
location: https://kvhwww.top/dbb6158a2ca1378f4052d59ea53d1eac.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/zxbf.js
23.224.221.53200 OK 1.2 kB URL HTTP/2 a3.sjpa1.com/template/web/zxbf.js
IP 23.224.221.53:0
Hash b4d02ab4218bad72789c7e924b5bf067
569dc1a136be0437166074add7e81a7069fc3bd8
f05f1ced720ebda21f022851ac050a0ebdb5e7b97d1cb736100a2948c7c76f51
GET /template/web/zxbf.js HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: application/javascript
last-modified: Sun, 02 Oct 2022 14:20:36 GMT
vary: Accept-Encoding
etag: W/"63399e34-1481"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/k2.gif
23.224.221.53200 OK 32 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/k2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 0dbd3863b60a1e8e0a507a6092e3acbd
81f0cfad3a7369aa95b1b507a5ce46149cd4e4fe
d3829461b69847e6df417e8eb4c4046ae45864fbb7d3646e7b1346a861bd893e
GET /template/web/GG/k2.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 32381
last-modified: Fri, 27 May 2022 05:30:54 GMT
etag: "6290620e-7e7d"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/meizhuama/fonts/iconfont.woff
23.224.221.53200 OK 525 B URL HTTP/2 a3.sjpa1.com/template/meizhuama/fonts/iconfont.woff
IP 23.224.221.53:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/meizhuama/fonts/iconfont.woff HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://a3.sjpa1.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: font/woff
content-length: 525
last-modified: Sun, 06 Mar 2022 14:12:36 GMT
etag: "6224c154-20d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/8499.gif
23.224.221.53200 OK 267 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/8499.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 1200 x 120\012- data
Size 267 kB (267046 bytes)
Hash 63f83bffa55fbf71d3cf948d2cb4468f
8153f924500163b0085bbaa03920ab1a3c963d11
be41bf9a1445a132be908b20d133288479d0f425ffb0ca52b4c7b12c679361e5
GET /template/web/GG/8499.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 267046
last-modified: Thu, 22 Sep 2022 06:13:25 GMT
etag: "632bfd05-41326"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/31.gif
23.224.221.53200 OK 108 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/31.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 96 x 96\012- data
Size 108 kB (108160 bytes)
Hash 8765a4504945e44a16e9fe1c643802bf
a830d6cad304c1007e82fc742cc7855fff8d6a7c
d4ce24af068e48c2339af354f585f37940cc318d83110e313056ebc0d4058b4b
GET /template/web/GG/31.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 108160
last-modified: Wed, 09 Mar 2022 10:15:26 GMT
etag: "62287e3e-1a680"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/k4.gif
23.224.221.53200 OK 114 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/k4.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 114 kB (114030 bytes)
Hash 79cf722c45cb4e5b3e7da0cfff829c98
71558743109d39b3163e3e873111641615c6f80c
37336e1d469f511d19c69cd7e3576ef2665204c7304e0b8dd2ec051dd78309e3
GET /template/web/GG/k4.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 114030
last-modified: Fri, 27 May 2022 05:30:56 GMT
etag: "62906210-1bd6e"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.ttbfp8.com/upload/vod/20221001-1/f78df9f4ac3a9ed414eca2d55ab6cf74.jpg
23.224.136.188200 OK 168 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/f78df9f4ac3a9ed414eca2d55ab6cf74.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 168 kB (167892 bytes)
Hash 260110772e626689c677cce9e7b5f414
d088c846ed8644eff8476a598eb0cc8902dfd1d4
21d5bf124d22eacce862fdab2b1124c3301e2b82d0d2751bf69d0b3f0b678cd7
GET /upload/vod/20221001-1/f78df9f4ac3a9ed414eca2d55ab6cf74.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 167892
Last-Modified: Sat, 01 Oct 2022 10:07:14 GMT
Connection: keep-alive
ETag: "63381152-28fd4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/5ba8464698f3469d1e6e29f57cc6c8a6.jpg
23.224.136.188200 OK 167 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/5ba8464698f3469d1e6e29f57cc6c8a6.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x540, components 3\012- data
Size 167 kB (166941 bytes)
Hash 215ce797ce3e436a2b7cf78c9b6a9170
23fca369b26ca1be60d3b928ecb0c76f006ffcbe
9d08844664c7802589f342aad48d815d1b80ee3e8e18d5009501760a50ab08fc
GET /upload/vod/20221001-1/5ba8464698f3469d1e6e29f57cc6c8a6.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 166941
Last-Modified: Sat, 01 Oct 2022 10:07:14 GMT
Connection: keep-alive
ETag: "63381152-28c1d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
a3.sjpa1.com/template/web/xx3.js
23.224.221.53200 OK 1.4 kB URL HTTP/2 a3.sjpa1.com/template/web/xx3.js
IP 23.224.221.53:0
Hash a72fd753a061bdb2920e0972b9341051
98e9d08fbccb9f2a7f435f5f17f008dcb7e8021f
8888d07fd1b2cbd7cc55841dc59250e04c189a38e2fe2c5a53164e07a8ed6d62
GET /template/web/xx3.js HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 12:32:26 GMT
vary: Accept-Encoding
etag: W/"6336e1da-1042"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
img.ttbfp8.com/upload/vod/20220930-1/4cf60d14f17d1073e9bbdcbe594773ec.jpg
23.224.136.188200 OK 168 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20220930-1/4cf60d14f17d1073e9bbdcbe594773ec.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x535, components 3\012- data
Size 168 kB (168365 bytes)
Hash df9bfb2d72500123413c6356ec141495
33c1f265be4f1b68bf6be8acd0959780651ec8ba
929b49bddbb5338a291e208329f4cd6ca52c3eec2b673d9ac7e7e2e913ef484e
GET /upload/vod/20220930-1/4cf60d14f17d1073e9bbdcbe594773ec.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 168365
Last-Modified: Fri, 30 Sep 2022 09:42:41 GMT
Connection: keep-alive
ETag: "6336ba11-291ad"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/85e4c1c7158a207ee574db7107ec9dfb.jpg
23.224.136.188200 OK 173 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/85e4c1c7158a207ee574db7107ec9dfb.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 173 kB (172716 bytes)
Hash feed9f30a369b9d780672165d78068a0
c3133355b281d289120c6d82d1e9b1a100568504
d830e124a1e41ffbb1065f0ed48c6b36fa753628967b53bc9f29a2ac576c36e4
GET /upload/vod/20221001-1/85e4c1c7158a207ee574db7107ec9dfb.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:00 GMT
Content-Type: image/jpeg
Content-Length: 172716
Last-Modified: Sat, 01 Oct 2022 10:07:15 GMT
Connection: keep-alive
ETag: "63381153-2a2ac"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/6cd82c68a36a1bf46011bdf713d42c41.jpg
23.224.136.188200 OK 179 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/6cd82c68a36a1bf46011bdf713d42c41.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 179 kB (178866 bytes)
Hash 85466632c90a06c538f2d8d1e448335a
281abb3041f6684d956bb741de50ddf544cc3372
8a97782e3fb08649dc609fa95e1a1b53357fc3039c9a0a882867659b2e3e3d77
GET /upload/vod/20221001-1/6cd82c68a36a1bf46011bdf713d42c41.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 178866
Last-Modified: Sat, 01 Oct 2022 10:07:15 GMT
Connection: keep-alive
ETag: "63381153-2bab2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.js?674b1250ebe3357f3f326b242e6a4358
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?674b1250ebe3357f3f326b242e6a4358
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (629)
Hash 6bde214d95d84b579100d8eb4962161b
11897f54d74505c04eed8179ba4527a319d9980c
5c4bab9d4c90786aa2a78ca5a97ab41cda2ad947a184782bf8ba1accdeb554fd
GET /hm.js?674b1250ebe3357f3f326b242e6a4358 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alamu.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11342
Content-Type: application/javascript
Date: Sun, 02 Oct 2022 17:04:00 GMT
Etag: fbef456f100ca0f09176b46e713c6c18
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=C7AA944BE8C1E847; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f24fb55fce0945317531b9d3043ccaa5
82646aa7ce5c846eb2d122067dfb25e3fdd77ae8
424692237b4b88cbc7674cf689c3f6f99975320907ba10b16899be978e83b476
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "424692237B4B88CBC7674CF689C3F6F99975320907BA10B16899BE978E83B476"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1691
Expires: Sun, 02 Oct 2022 17:32:12 GMT
Date: Sun, 02 Oct 2022 17:04:01 GMT
Connection: keep-alive
kvhwww.top/dbb6158a2ca1378f4052d59ea53d1eac.gif
104.21.15.106200 OK 748 kB URL HTTP/2 kvhwww.top/dbb6158a2ca1378f4052d59ea53d1eac.gif
IP 104.21.15.106:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 748 kB (748104 bytes)
Hash e2cf99741cf5529379370d4362cc4b88
db37d8e502d68feb92f7297e0effc1f7ad140dd5
42001168f65e3424b81819e486ecc6393e4a26bd4710b96504255451491efc30
GET /dbb6158a2ca1378f4052d59ea53d1eac.gif HTTP/1.1
Host: kvhwww.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a3.sjpa1.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:04:01 GMT
content-type: image/gif
content-length: 748104
last-modified: Thu, 15 Sep 2022 12:34:54 GMT
etag: "63231bee-b6a48"
expires: Thu, 27 Oct 2022 10:04:06 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 457195
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U9vw0MyhobuZ9upTZ3KWLTGZZ8SGU0mYGd5NM5HNAMRGQo6tI5eQdA2oFkDfSW04hFS%2F9CsRlLYMOv%2Bs0OQ2KeCsuklRdJ1doEzeZdJAorRNqOBK4Z7Dk0EdDMqT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f03c7fa05b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvtfff.top/ad87e7a061a798b443a65981a71ace19.gif
172.67.149.70200 OK 819 kB URL HTTP/2 kvtfff.top/ad87e7a061a798b443a65981a71ace19.gif
IP 172.67.149.70:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 819 kB (819053 bytes)
Hash 9f7965309019772741cf242b359885de
bafd59037495682dfc57d59c640dacfd57daed71
e71e4ab4a558aeb761f7a8931bafb127506bec4ff389c242a00fb6f3955edbf5
GET /ad87e7a061a798b443a65981a71ace19.gif HTTP/1.1
Host: kvtfff.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a3.sjpa1.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:04:01 GMT
content-type: image/gif
content-length: 819053
last-modified: Fri, 16 Sep 2022 07:25:13 GMT
etag: "632424d9-c7f6d"
expires: Sat, 29 Oct 2022 09:29:12 GMT
cache-control: max-age=5356800
cf-cache-status: HIT
age: 286489
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m%2FaOqoRkCow7aDYdf0O0U%2Bs6xJZtlpBZwgyFg2OJBiXVxCPMBvy82Y7XavJCbLCUT5LS0PM5hSvGhp7M5vkxt31m7I4%2FguB0ovDHcs3jQPiZpkhpe2RXbb6eO1wO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f03c7fcf8b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e60754361c890cf99e9aefb25ac531db
32cf4f947740a6b0c70fa81d4068269d00d2b4ca
161885c6452344efd4bc7bfd0c380615f38bbd175fb355d10c90b4b46fde0657
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "161885C6452344EFD4BC7BFD0C380615F38BBD175FB355D10C90B4B46FDE0657"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6665
Expires: Sun, 02 Oct 2022 18:55:06 GMT
Date: Sun, 02 Oct 2022 17:04:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ee9fc7b5197f9eaf04390708ac17b9f4
20123b7a59ca53470a4709aa936edc71aa054956
7e8b7b2065ae9c0757cfc69dac80d9648a59c7ba142f6186459fed8777fb2f0e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E8B7B2065AE9C0757CFC69DAC80D9648A59C7BA142F6186459FED8777FB2F0E"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2553
Expires: Sun, 02 Oct 2022 17:46:34 GMT
Date: Sun, 02 Oct 2022 17:04:01 GMT
Connection: keep-alive
a3.sjpa1.com/template/web/GG/d10.gif
23.224.221.53200 OK 119 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/d10.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 119 kB (119145 bytes)
Hash 03611dd134898d951bd6479076eee32b
4aef7215e5d6206ededff3fff78d735064e6fbb5
9c3ea4fa33413bfe2175b5e9eac750617538bafe475a84367d0c6d693c75c076
GET /template/web/GG/d10.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 119145
last-modified: Sat, 23 Apr 2022 04:49:11 GMT
etag: "62638547-1d169"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/k14.gif
23.224.221.53200 OK 73 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/k14.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 6ce732040d4d9750ef120f2a4221f362
f3114f09ed27718c62d54d6fbe08847421429a00
bf4e102a698f9d805b4d4209c8ca62ca20565344a8949d0efeedc6a720026c5b
GET /template/web/GG/k14.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 73223
last-modified: Sat, 28 May 2022 04:43:32 GMT
etag: "6291a874-11e07"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/k20.gif
23.224.221.53200 OK 102 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/k20.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 124 x 124\012- data
Size 102 kB (101861 bytes)
Hash da1fca07307a6c03cdcfb2d47313113a
f28a95877fad9e725a287466984d496ef7d53afb
9529e1f4226891780f02c558b7b75427b86eb8afa9e5667fd6e8527abf322209
GET /template/web/GG/k20.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 101861
last-modified: Sat, 04 Jun 2022 02:42:14 GMT
etag: "629ac686-18de5"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/k7.gif
23.224.221.53200 OK 104 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/k7.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 71 x 71\012- data
Size 104 kB (104461 bytes)
Hash 9e38a9cebde88f45563c4aae36723d3a
126439ba503fc1757864c12e086fd0f1a165a4bc
93054ef4224e847d308892f23ca8d0bf210d5ba26d8c39502eb7016efd97501d
GET /template/web/GG/k7.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 104461
last-modified: Fri, 27 May 2022 05:30:59 GMT
etag: "62906213-1980d"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/11.gif
23.224.221.53200 OK 76 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/11.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 200 x 99\012- data
Hash b91a52dc89525aa53fa4cc9f51313fa5
04be88b70acd504b7bf5a9bb107b63da8c488639
91b59a9d450ebdc06502d1279ee2eef209a84a5d0434a46874a32c9bbc831ba9
GET /template/web/GG/11.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 76147
last-modified: Wed, 11 May 2022 08:23:40 GMT
etag: "627b728c-12973"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/a06.gif
23.224.221.53200 OK 111 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/a06.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 108 x 108\012- data
Size 111 kB (110624 bytes)
Hash e3240f80fa3623e4bc4675c955beb241
fb5f06e85933d6e6a8e0f98e28c16b44844b3ae3
d595e4b9e1341db392c7d348474e94c200802c5e35290b7e4f9a4a4ad653bd1d
GET /template/web/GG/a06.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 110624
last-modified: Sat, 18 Jun 2022 04:10:23 GMT
etag: "62ad502f-1b020"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/hf5.gif
23.224.221.53200 OK 171 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/hf5.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 960 x 70\012- data
Size 171 kB (171236 bytes)
Hash 520fabf1fb49a53846d582beea64350c
399df791c5a2244a6fc30543956bcbb62835dbd5
3d332e8626654196daff08c0993994ea65dfe34d960a9e703fba05ec89451401
GET /template/web/GG/hf5.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 171236
last-modified: Mon, 19 Sep 2022 07:12:32 GMT
etag: "63281660-29ce4"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/k1.gif
23.224.221.53200 OK 167 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/k1.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 167 kB (167104 bytes)
Hash 9387415ad469299bf6e3bb5c1bbc77e2
cc52974b6ed2239afbbd4088c675fceb0d75cd22
912ce0aceb7de66266542ec85454be033b0a285c975dd7fc8f0d43eecb8716ce
GET /template/web/GG/k1.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 167104
last-modified: Fri, 27 May 2022 05:30:54 GMT
etag: "6290620e-28cc0"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/7.gif
23.224.221.53200 OK 159 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/7.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 100 x 100\012- data
Size 159 kB (159399 bytes)
Hash 7c1ced688d2af934a1800ae8d89a226f
558b8353f1d66992ce01a67ba66af0ac966877bc
5acf95935750544793683da337ec48ecbadd4ecfe5c1b714ad47c97b5849c02f
GET /template/web/GG/7.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 159399
last-modified: Fri, 11 Mar 2022 16:19:12 GMT
etag: "622b7680-26ea7"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/d2.gif
23.224.221.53200 OK 162 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/d2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 162 kB (161572 bytes)
Hash 64c0f3edc7b3bfd2a2c009f3b93ebd7d
70dee1bf54047d14220328f8ab47d299a679a519
ca5ada5bab699078f3ecdb2a2b569bcef9b8b34f6773d2197c0658a55fad5d25
GET /template/web/GG/d2.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 161572
last-modified: Wed, 16 Mar 2022 16:12:17 GMT
etag: "62320c61-27724"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/k15.gif
23.224.221.53200 OK 142 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/k15.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 235 x 235\012- data
Size 142 kB (141895 bytes)
Hash 0642504c72f3cf9929cfb7544deaca87
16d7028c32010330f5c9f2f8e71a69c4c7bcc859
a102356e14a84a958f692e5e9c2c4d2aa9765bc4cbc3232f9108ec8b46d5b07b
GET /template/web/GG/k15.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 141895
last-modified: Sat, 28 May 2022 04:43:33 GMT
etag: "6291a875-22a47"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.ttbfp8.com/upload/vod/20220930-1/0f45354c650ea52e33b67b7b173707e5.jpg
23.224.136.188200 OK 166 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20220930-1/0f45354c650ea52e33b67b7b173707e5.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x534, components 3\012- data
Size 166 kB (166100 bytes)
Hash 81d54af59588db203d8d95ce55d126ca
689fdfb9220fb0a419781b70c4381aeaa790f48e
9d751eb5916d4adbbff29faeb3bf4801f081bc14faf3ea43eb227b8bb5c2fcc1
GET /upload/vod/20220930-1/0f45354c650ea52e33b67b7b173707e5.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 166100
Last-Modified: Fri, 30 Sep 2022 09:42:14 GMT
Connection: keep-alive
ETag: "6336b9f6-288d4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/5b50b2ad6a52bfbc7f07013011bfb50d.jpg
23.224.136.188200 OK 8.0 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/5b50b2ad6a52bfbc7f07013011bfb50d.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 4ab5cd26117ca9af4ac95491a9f36312
f7df3ae416727777f479939f4beab4c49a29c44c
317eed2e2dbba8e070f3d831dbaeef89e718edf01984136ac3f82685c7b8b6fe
GET /upload/vod/20221001-1/5b50b2ad6a52bfbc7f07013011bfb50d.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 8004
Last-Modified: Sat, 01 Oct 2022 10:07:03 GMT
Connection: keep-alive
ETag: "63381147-1f44"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/c4aef5a762a0b39c20d61c8e17424fbe.jpg
23.224.136.188200 OK 184 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/c4aef5a762a0b39c20d61c8e17424fbe.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 184 kB (183560 bytes)
Hash 17e4283d651aee0dfe49ab4debaa9b1b
9a240e0662882252b2e6ae7cb601e6820773998f
523de11a24552ad7e6515f9e2cbc5863f243b748432fe5ff88869814ebb2a90f
GET /upload/vod/20221001-1/c4aef5a762a0b39c20d61c8e17424fbe.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 183560
Last-Modified: Sat, 01 Oct 2022 10:07:15 GMT
Connection: keep-alive
ETag: "63381153-2cd08"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20220930-1/4b04a14fd874aa9caa5de88154cdf1c3.jpg
23.224.136.188200 OK 179 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20220930-1/4b04a14fd874aa9caa5de88154cdf1c3.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x534, components 3\012- data
Size 179 kB (179022 bytes)
Hash ed1fc8366eeed8d52682bf8a0e4eb480
cb66b371b483b0c665381b52b2ce5332fd99ba0b
01f7219f0c180158ad4a6e0ded6791425dddfea8fe602a999ffe3c5d7f203d25
GET /upload/vod/20220930-1/4b04a14fd874aa9caa5de88154cdf1c3.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 179022
Last-Modified: Fri, 30 Sep 2022 09:42:14 GMT
Connection: keep-alive
ETag: "6336b9f6-2bb4e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/459f55d0283ac7c964b71c3901a3b172.jpg
23.224.136.188200 OK 9.4 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/459f55d0283ac7c964b71c3901a3b172.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 94e943021684e8c524786e8028651888
fe4925be4528ebb7ab6622cd1e432a6d60491290
d993976be2103ba166fa8425c8c2291cb3dd10066231c3086ce1ea17104b5db4
GET /upload/vod/20221001-1/459f55d0283ac7c964b71c3901a3b172.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 9398
Last-Modified: Sat, 01 Oct 2022 10:07:03 GMT
Connection: keep-alive
ETag: "63381147-24b6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash a1b590547936d32a9e7d037be3a96b43
47832a99d1186476a8f9277dda509a841906838f
6d89b641d650db8fd5258937a36d707831229cfc82086df7d300a891454e700b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 18:36:25 GMT
Expires: Thu, 06 Oct 2022 18:36:24 GMT
Etag: "47832a99d1186476a8f9277dda509a841906838f"
Cache-Control: max-age=350542,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 753f03c76de8b4f3-OSL
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 05d2a9452950202b1e101ad508f015f3
00f3d90a47da526c92c6c03728e21630a9fc225b
5c175a11c4b6ba9c07e8ec3803216843e7e81edbc5e6bd2dfaa20c754d33ea4d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "5C175A11C4B6BA9C07E8EC3803216843E7E81EDBC5E6BD2DFAA20C754D33EA4D"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3101
Expires: Sun, 02 Oct 2022 17:55:42 GMT
Date: Sun, 02 Oct 2022 17:04:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f72ced0d5d3867c8e0064b365f7be4d6
6513f6723bbffe1ff124272fdd7740b5d38bd9cc
e5425a26cef16b5a7c46d3be459c03422cd54746bb50b1668e0160285053c3c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E5425A26CEF16B5A7C46D3BE459C03422CD54746BB50B1668E0160285053C3C2"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7329
Expires: Sun, 02 Oct 2022 19:06:10 GMT
Date: Sun, 02 Oct 2022 17:04:01 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 5d007122307ca0f57341cbe8bdcc7c52
691b19d3714103f6e70e1fd628c896944c641b9d
e6ed699e553b35f7dbaeec4e3230218863d6212e6b47024992ee0b549a29ed04
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 23:52:05 GMT
Expires: Thu, 06 Oct 2022 23:52:04 GMT
Etag: "691b19d3714103f6e70e1fd628c896944c641b9d"
Cache-Control: max-age=369482,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 753f03c7da2e0b3d-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 8d0635521d02ed989f67b9325bc8df05
2ba111f1122249c0de96e2d2d1b08d7d9d243774
8f727597711b65623d24347872e5486083e4da9cecb8df9b283970cd7b8a8554
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 06 Oct 2022 14:03:08 GMT
ETag: "2ba111f1122249c0de96e2d2d1b08d7d9d243774"
Last-Modified: Sun, 02 Oct 2022 14:03:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1932
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753f03c95e931c16-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 8d0635521d02ed989f67b9325bc8df05
2ba111f1122249c0de96e2d2d1b08d7d9d243774
8f727597711b65623d24347872e5486083e4da9cecb8df9b283970cd7b8a8554
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 06 Oct 2022 14:03:08 GMT
ETag: "2ba111f1122249c0de96e2d2d1b08d7d9d243774"
Last-Modified: Sun, 02 Oct 2022 14:03:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1932
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753f03c9594eb4f3-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 51c1cd6e61bb1758a74ce9daf20d5822
73f8146a7a589828b51566545006cc6d670f0eb7
be056c78d4b415d51e3aa1bd78972d583f81be762a79a48ee7db18c72d8c07a7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 30 Sep 2022 09:49:59 GMT
Expires: Fri, 07 Oct 2022 09:49:58 GMT
Etag: "73f8146a7a589828b51566545006cc6d670f0eb7"
Cache-Control: max-age=405356,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 753f03c918f2b4f3-OSL
a3.sjpa1.com/template/web/GG/dp1.gif
23.224.221.53200 OK 141 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/dp1.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 141 kB (141174 bytes)
Hash 2846430b1663c942a9d2a92c559667cd
2b7d07a004fa13af572b8d5d6317594c1eee9eec
b1357936607e4478fa840a29b58e6714f0063f4a90e28571bd8c8be4e175d74e
GET /template/web/GG/dp1.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 141174
last-modified: Mon, 25 Apr 2022 12:29:49 GMT
etag: "6266943d-22776"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/dp4.gif
23.224.221.53200 OK 747 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/dp4.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 747 kB (746571 bytes)
Hash 84e8edecf6c28c8218e0a7b1ad9ea414
3897e6bf1a2292c59b45e44d2b9c38e45f8f9a6f
356abb92d87698d59a4af16304d13e760b032739634c495fba68568e82d5c1ce
GET /template/web/GG/dp4.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 746571
last-modified: Mon, 25 Apr 2022 12:29:52 GMT
etag: "62669440-b644b"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/t2.gif
23.224.221.53200 OK 254 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/t2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 254 kB (253670 bytes)
Hash bace60a0adc9bdd54f7c83058456a847
4867fd68497b7db5c4e5bbdde781cf098dbabd22
17a4f7b3d5caf413211515976326969951cc1bb9a3e32a9caa885fd6e3109368
GET /template/web/GG/t2.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 253670
last-modified: Tue, 10 May 2022 09:20:01 GMT
etag: "627a2e41-3dee6"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 8d0635521d02ed989f67b9325bc8df05
2ba111f1122249c0de96e2d2d1b08d7d9d243774
8f727597711b65623d24347872e5486083e4da9cecb8df9b283970cd7b8a8554
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 06 Oct 2022 14:03:08 GMT
ETag: "2ba111f1122249c0de96e2d2d1b08d7d9d243774"
Last-Modified: Sun, 02 Oct 2022 14:03:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1932
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753f03c95b3cb4e8-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 740b65e64108ba9f1bb0d6278892931a
dc25cb981929042e1722de35ba666e50a43b02d9
0300cf0f10e9d607762953e448f06b85543b89acfe0145f47d7801628bff6a9f
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 06 Oct 2022 14:47:55 GMT
ETag: "dc25cb981929042e1722de35ba666e50a43b02d9"
Last-Modified: Sun, 02 Oct 2022 14:47:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2885
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753f03c97eb81c16-OSL
a3.sjpa1.com/template/meizhuama/fonts/iconfont.ttf
23.224.221.53200 OK 1.2 kB URL HTTP/2 a3.sjpa1.com/template/meizhuama/fonts/iconfont.ttf
IP 23.224.221.53:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
GET /template/meizhuama/fonts/iconfont.ttf HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:01 GMT
content-type: application/octet-stream
content-length: 1163
last-modified: Sun, 06 Mar 2022 14:17:48 GMT
etag: "6224c28c-48b"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.ttbfp8.com/upload/vod/20220930-1/332731a01b5d33066d2ced16e6155452.jpg
23.224.136.188200 OK 196 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20220930-1/332731a01b5d33066d2ced16e6155452.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x536, components 3\012- data
Size 196 kB (195842 bytes)
Hash 8b2d0bf925df72ee169b913ed62d1079
bc5edf20d2d310984dd115fd0171735c9e35fce9
98a8c31f7954cdadceea76831c96216a3f90cad15d8312afad602587175447c6
GET /upload/vod/20220930-1/332731a01b5d33066d2ced16e6155452.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 195842
Last-Modified: Fri, 30 Sep 2022 09:42:14 GMT
Connection: keep-alive
ETag: "6336b9f6-2fd02"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
a3.sjpa1.com/template/web/GG/t1.gif
23.224.221.53200 OK 221 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/t1.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 221 kB (221303 bytes)
Hash 633e79a4d76e09af28eb7617340a6330
0aaef1ed9eed51ca839c4b8e88ca4988e27ec6cb
7363c1c913be071eb6240c6600c17b65e81b092944bb5f14c7013b5f96190fb3
GET /template/web/GG/t1.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 221303
last-modified: Tue, 10 May 2022 09:20:00 GMT
etag: "627a2e40-36077"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/y4.gif
23.224.221.53200 OK 258 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/y4.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 258 kB (257689 bytes)
Hash bbdd0bdf651352117671a182ae649b36
0913dc12c9378d9d5bc6aeefdba042fad4f95e8a
c808633ff4d4c025ae4151460a6ab81b58837bc03584b7037b4ef2034cc8676c
GET /template/web/GG/y4.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 257689
last-modified: Tue, 10 May 2022 09:20:09 GMT
etag: "627a2e49-3ee99"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/55.gif
23.224.221.53200 OK 834 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/55.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 140 x 206\012- data
Size 834 kB (834244 bytes)
Hash 3965598665b057b276ed86263c36f334
f8374496c56ad6cd140a9bd009b0637c8ce91a35
5efcea93fd0c2cb8059ea79144c6bfb6b094b5810e21cf6e2168ef51ac2fd36a
GET /template/web/GG/55.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 834244
last-modified: Wed, 11 May 2022 08:28:17 GMT
etag: "627b73a1-cbac4"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
kvhiii.top/c70f7dd4a4c94432f7e7dfd8886c435b.gif
104.21.234.202200 OK 1.6 MB URL HTTP/2 kvhiii.top/c70f7dd4a4c94432f7e7dfd8886c435b.gif
IP 104.21.234.202:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.6 MB (1590489 bytes)
Hash 59648e1a4d52551c26255ff6bc625648
165fbacafad21065e9faa33c5e3752cd463549ad
eb53352fe423b9358ba49249e57fe3d55746d854c681f6c45baedb23eb2196e5
GET /c70f7dd4a4c94432f7e7dfd8886c435b.gif HTTP/1.1
Host: kvhiii.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a3.sjpa1.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:04:01 GMT
content-type: image/gif
content-length: 1590489
last-modified: Sun, 26 Jun 2022 12:04:30 GMT
etag: "62b84b4e-1844d9"
expires: Tue, 01 Nov 2022 15:07:18 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7003
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tPpUyUstddm7B7iqveqEIH59HyJS37OBp6HRX2h1aiS6X%2FShO0CbqEOBWiTNT5wMdxdbXJBgcbO3ghS%2Fzc9nAlT%2FqtnoRu0Atdy3tNJ%2Br47KrQkH9kgdBO4ELLyA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f03c92e95744f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/122.gif
23.224.221.53200 OK 301 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/122.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 301 kB (301024 bytes)
Hash 924fb352713ee10f6f4bce3167ccce13
127a437f7a5020f7e7c08b6c6465be55dcb32e0c
6e04c7ee887495ce8805d38b200ca217c28b5e83655f4e7f4e8f8f8e28b872bf
GET /template/web/GG/122.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 301024
last-modified: Wed, 09 Mar 2022 10:04:32 GMT
etag: "62287bb0-497e0"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kzeaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 02 Oct 2022 17:04:01 GMT
content-type: text/html
content-length: 162
location: https://kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/dipiao.js
23.224.221.53200 OK 1.4 kB URL HTTP/2 a3.sjpa1.com/template/web/dipiao.js
IP 23.224.221.53:0
Hash fa2ea15ddad6492504806ce4e2cccbf6
15e0465d23591952ea806ffcd5a23ab5c0289345
0d2788ec28984467ca3969d39e1225bba8a62041abf968692f6764a4542d8d55
GET /template/web/dipiao.js HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: application/javascript
last-modified: Sun, 15 May 2022 14:24:29 GMT
vary: Accept-Encoding
etag: W/"62810d1d-81a"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 167549af956c9333668019135e0b3bdd
38d59e4a7d80283d83695ed49a392905a1dc2c91
d5fe7e45e96fed3db82c835630eae0c0a054a93d34427fbb3f2ebe213437c6bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5FE7E45E96FED3DB82C835630EAE0C0A054A93D34427FBB3F2EBE213437C6BC"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16549
Expires: Sun, 02 Oct 2022 21:39:50 GMT
Date: Sun, 02 Oct 2022 17:04:01 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 4d7ada33a82c524a607b11fcc230c9c1
bfe83ecab3d32ff47e6d9de1b8540f722f09682d
08494da29b229279a10f2682280b2e7e992cb1aa43dd6912b7f3c5ac7b19bbbb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:04:01 GMT
Etag: "6338a923-2d7"
Server: ECS (amb/6BB7)
Content-Length: 727
a3.sjpa1.com/template/web/GG/a07.gif
23.224.221.53200 OK 356 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/a07.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 344 x 292\012- data
Size 356 kB (355956 bytes)
Hash 7fcc1b0bc144505a6445039f16e7ae84
c102af587f677b89bb65f7e850a4ca4b41a45456
409d94d159f6c851b76881b6937460458b25a246e45bf6ab98f34efd9474ede8
GET /template/web/GG/a07.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 355956
last-modified: Sat, 18 Jun 2022 04:10:23 GMT
etag: "62ad502f-56e74"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1258306882&si=674b1250ebe3357f3f326b242e6a4358&v=1.2.97&lv=1&sn=10171&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.alamu.net%2Fsg94%3F0zut_l%3Df8h4hhox%262dtx%3D1qpdw8w9okyliif6dgbavptxki9wvjhul%2Bqgzimr0zbtk7tffrhdjnfhteldpstnuoe%3D&tt=%E5%A4%A7%E5%BA%86%E5%B1%A0%E5%8C%A0%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1258306882&si=674b1250ebe3357f3f326b242e6a4358&v=1.2.97&lv=1&sn=10171&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.alamu.net%2Fsg94%3F0zut_l%3Df8h4hhox%262dtx%3D1qpdw8w9okyliif6dgbavptxki9wvjhul%2Bqgzimr0zbtk7tffrhdjnfhteldpstnuoe%3D&tt=%E5%A4%A7%E5%BA%86%E5%B1%A0%E5%8C%A0%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1258306882&si=674b1250ebe3357f3f326b242e6a4358&v=1.2.97&lv=1&sn=10171&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.alamu.net%2Fsg94%3F0zut_l%3Df8h4hhox%262dtx%3D1qpdw8w9okyliif6dgbavptxki9wvjhul%2Bqgzimr0zbtk7tffrhdjnfhteldpstnuoe%3D&tt=%E5%A4%A7%E5%BA%86%E5%B1%A0%E5%8C%A0%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alamu.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 02 Oct 2022 17:04:01 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=91927D37ADEF94FA; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?7a63494bcb7782c2d15cc8728f4c5059
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?7a63494bcb7782c2d15cc8728f4c5059
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (627)
Hash 391e39ad870ff0d71409e52725829f8d
fcec6bcb7ac8aaffe0595d77fc8215546d866657
bf5df5595e58e4d5489b69abf2cebd50e8c1f1de65af913d4f95c00c74ab4291
GET /hm.js?7a63494bcb7782c2d15cc8728f4c5059 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11340
Content-Type: application/javascript
Date: Sun, 02 Oct 2022 17:04:00 GMT
Etag: 9ee2fa2e1cd698fceae92306a5f182b6
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=897D608C055A3367; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
img.ttbfp8.com/upload/vod/20221001-1/f93ab25981439171fd2154b1df0f23c7.jpg
23.224.136.188200 OK 9.1 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/f93ab25981439171fd2154b1df0f23c7.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash e19296d6ca08c7ea3d7ccbe224133351
153d7558d6d79e80f6b5b2530d1f3cf18c6fc5da
377f2d5d7b4f2e93a2cbe1052dc0b11b502fe3fa526d57581d08b96a0dd21f4f
GET /upload/vod/20221001-1/f93ab25981439171fd2154b1df0f23c7.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 9101
Last-Modified: Sat, 01 Oct 2022 10:07:03 GMT
Connection: keep-alive
ETag: "63381147-238d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/4b2f4ceae092b17d64fe6573746fdc0f.jpg
23.224.136.188200 OK 10 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/4b2f4ceae092b17d64fe6573746fdc0f.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash bc6d660102135987cc34877032c1e2ec
fd73f41fe3ee59d7979ef2bc59b13959aeb7c947
281cad63f6929d24bc52a7d1a1615c17368fc831a19104ace72033c97ad0ee7e
GET /upload/vod/20221001-1/4b2f4ceae092b17d64fe6573746fdc0f.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 10185
Last-Modified: Sat, 01 Oct 2022 10:06:45 GMT
Connection: keep-alive
ETag: "63381135-27c9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/6de2bb70e19ecc0ed0b10012783d68f3.jpg
23.224.136.188200 OK 12 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/6de2bb70e19ecc0ed0b10012783d68f3.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash e80de91af42ad7c020eb5affd5926db2
96fa0f047eacd38991d6017a68967ba64a29ca3a
b47680546e23fcdaed784ed39edb0e368f8ce6cc373d49180a1a14411cd5e378
GET /upload/vod/20221001-1/6de2bb70e19ecc0ed0b10012783d68f3.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 11993
Last-Modified: Sat, 01 Oct 2022 10:07:03 GMT
Connection: keep-alive
ETag: "63381147-2ed9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/b53daabb368aed88c21e11af074f0740.jpg
23.224.136.188200 OK 11 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/b53daabb368aed88c21e11af074f0740.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 59b8e288157ffa401a282a5198bab434
7cb877160753ceaf6ab41608e04a8f76505f0de0
d6fb97d873e899248b2226aa0b45e061c4de2f3b581646724fc21ddb44c0b64b
GET /upload/vod/20221001-1/b53daabb368aed88c21e11af074f0740.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 10896
Last-Modified: Sat, 01 Oct 2022 10:06:45 GMT
Connection: keep-alive
ETag: "63381135-2a90"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/593aa4f36235941ff835fa6cccff7895.jpg
23.224.136.188200 OK 13 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/593aa4f36235941ff835fa6cccff7895.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 54d8a2fd23baaeb64640ebc093c22984
7d04fcaaaa47305e388d798823d7ed6227a7f51b
110fea9cbdf36b661913165123b7a297f7017845f4dcc048851baee1e86c15ae
GET /upload/vod/20221001-1/593aa4f36235941ff835fa6cccff7895.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 13336
Last-Modified: Sat, 01 Oct 2022 10:06:45 GMT
Connection: keep-alive
ETag: "63381135-3418"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/c8c9b16ffc1f022d72a6272a62fdc176.jpg
23.224.136.188200 OK 13 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/c8c9b16ffc1f022d72a6272a62fdc176.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 255926fc4ae17318fe576d1580b4e41f
e9be5090e2ad0adfe4c65ee8919d3119479c53f9
2cf0af4e60b0c444ae4b7e118fdf15bc89a5514ce58f9c2ba2d580d44d37dc6c
GET /upload/vod/20221001-1/c8c9b16ffc1f022d72a6272a62fdc176.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 13243
Last-Modified: Sat, 01 Oct 2022 10:06:45 GMT
Connection: keep-alive
ETag: "63381135-33bb"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 7e78f46d2d2a96d85cbf55dfdc78f1a4
4362d84dd688eef8cec9e380d9a611e6ee3757d6
e627a3473b77117b4e0d81224784304650da0b95440773f0230a2c686cd73d09
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 02 Oct 2022 06:28:35 GMT
Expires: Sun, 09 Oct 2022 06:28:34 GMT
Etag: "4362d84dd688eef8cec9e380d9a611e6ee3757d6"
Cache-Control: max-age=566072,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 753f03ca0d340b3d-OSL
kvhiii.top/ec9fcd758df74f805f29f72e8545d13b.gif
104.21.234.202200 OK 902 kB URL HTTP/2 kvhiii.top/ec9fcd758df74f805f29f72e8545d13b.gif
IP 104.21.234.202:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 902 kB (902313 bytes)
Hash 8b4a95ea7cfbb7fb4d2b18efca5145f3
d2966ecbeb7369620cce5dbcd15d0fe591d79648
dd5ff25f4d6931bd3d2ef86c1a8901853ee2503fd2d6edb264a61abb37c2b002
GET /ec9fcd758df74f805f29f72e8545d13b.gif HTTP/1.1
Host: kvhiii.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a3.sjpa1.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:04:01 GMT
content-type: image/gif
content-length: 902313
last-modified: Sat, 12 Mar 2022 15:17:28 GMT
etag: "622cb988-dc4a9"
expires: Fri, 21 Oct 2022 10:43:08 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 973253
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CJWaR0rZsGRNAKTuoIR2e0%2FEZEDQDHO103T6KTW%2FtHBqhbjgmdigJmf5f7P9YslVY5HNVuxD2ThHieW90RLsgwMqsg08psVasbLo0UufuMvZUEXPBu2M3ohRbEzW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f03c92e9a744f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 167549af956c9333668019135e0b3bdd
38d59e4a7d80283d83695ed49a392905a1dc2c91
d5fe7e45e96fed3db82c835630eae0c0a054a93d34427fbb3f2ebe213437c6bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5FE7E45E96FED3DB82C835630EAE0C0A054A93D34427FBB3F2EBE213437C6BC"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9921
Expires: Sun, 02 Oct 2022 19:49:22 GMT
Date: Sun, 02 Oct 2022 17:04:01 GMT
Connection: keep-alive
a3.sjpa1.com/template/web/GG/4.gif
23.224.221.53200 OK 279 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/4.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 200 x 113\012- data
Size 279 kB (279026 bytes)
Hash 42809e0a73309f01de7651ab3b712cb4
19a1658a10d4e8ca6831a824d4bccbb35dcbf113
da7e1e1332d196cde6cc3a7b9c758abb4493e9708799e7836551823dd399b13d
GET /template/web/GG/4.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 279026
last-modified: Wed, 11 May 2022 08:12:44 GMT
etag: "627b6ffc-441f2"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
js.users.51.la/21273067.js
103.143.19.103200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21273067.js
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash cfcc5c0f08c9a6462e6df16aa6478f07
720c84b3ccebf991458af7705d0bb0c41365b8ac
817c678f9b62b0db6f870cc391b17261be96bb9c428199372176794583f9691f
GET /21273067.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=e25f058fdb8769dac17; path=/
HWWAFSESTIME=1664730237155; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
a3.sjpa1.com/template/web/GG/a13.gif
23.224.221.53200 OK 674 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/a13.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 393 x 262\012- data
Size 674 kB (673882 bytes)
Hash 8f0aa6d32c03c602b0480194b2efdf4a
a2dfc596103bf743c9cf389e2b7a481a8bbedc96
2a54a439ea081c5418030b63dd4e0f247ff7089b1d7ba67a0fe6e2abcf466658
GET /template/web/GG/a13.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 673882
last-modified: Mon, 20 Jun 2022 04:59:33 GMT
etag: "62affeb5-a485a"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/2.gif
23.224.221.53200 OK 620 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 300 x 200\012- data
Size 620 kB (620010 bytes)
Hash 8171edd386b6abd105c0ff0e740330d9
7914e2b95f29d65b0ffb8e6daf7f54dc14da0ae0
5044971fcc4e0c4837e7e586b858fba8257feeed88812253aa9ee2396915c40a
GET /template/web/GG/2.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 620010
last-modified: Wed, 11 May 2022 08:12:37 GMT
etag: "627b6ff5-975ea"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/d1.gif
23.224.221.53200 OK 320 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/d1.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 448 x 359\012- data
Size 320 kB (320301 bytes)
Hash 7d3239796daffe24e71eb0e44146f02b
533c9fe388fdb5cc5f807a7358dcd4d1b14bf817
7ae555d64a9c2cbf44806af21930c753b5dc3649be922206fc10ea83efa19523
GET /template/web/GG/d1.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 320301
last-modified: Wed, 11 May 2022 08:33:50 GMT
etag: "627b74ee-4e32d"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/01.gif
23.224.221.53200 OK 562 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/01.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 380 x 570\012- data
Size 562 kB (561983 bytes)
Hash 311afec7a9e7d370b46adf41a45905e7
5460c5036e11ecf12f30d921e4dc811ad56f8b30
39da990b80811f9e29f4b4c1b9a0e7fc4f4b60a42c1f5d949b1ae1a9bbe80eb9
GET /template/web/GG/01.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 561983
last-modified: Wed, 11 May 2022 08:12:48 GMT
etag: "627b7000-8933f"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/d995a5c52443481491c98eda92383133
47.246.44.228200 OK 562 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/d995a5c52443481491c98eda92383133
IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 80\012- data
Size 562 kB (561802 bytes)
Hash 6992b4cd488bb4437ec954ab09a3fa00
e41fc5970be04ab5801e80ce785ff0832b305793
54d436cbf368311b0aa7bb497ac1b5a4330067953e11b4ad2da233e07e923d05
GET /obj/tos-cn-i-dy/d995a5c52443481491c98eda92383133 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 561802
date: Sun, 02 Oct 2022 06:30:46 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sun, 02 Oct 2022 02:23:20 GMT
nw-session-id: 202210021023200101351600233F7EC1BDc588f01dy
nw-session-trace: 2022-10-02T10:23:20.863256013+08:00 63
x-bdcdn-cache-status: TCP_HIT
x-length: 561802
x-powered-by: ImageX
x-response-date: Sun, 02 Oct 2022 10:23:20 GMT
x-tt-logid: 202210021023200101351600233F7EC1BD
via: n150-051-207, cache2.l2de2[0,0,206-0,H], cache26.l2de2[0,0], cache26.l2de2[2,0], cache1.se1[0,0,200-0,H], cache5.se1[1,0]
x-request-ip: fdbd:dc02:22:88::209
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 0142cac675061c51d3f41a0df0a308161ad5ff63bcb57b48a0c6e9beb2fa459b343a43936a10dbfb49e15a6a58360e8ffb69ffac4bfe2a5b27248307ef1462cb13ecab0aeb51d338b075dd4a5e6e2c7d0fb778dd991a102722086aa2516670756d
x-response-lb: image
ali-swift-global-savetime: 1664692246
age: 37995
x-cache: HIT TCP_MEM_HIT dirn:4:31144985 mlen:0
x-swift-savetime: Sun, 02 Oct 2022 11:46:20 GMT
x-swift-cachetime: 31517066
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916647302419574475e
X-Firefox-Spdy: h2
a3.sjpa1.com/template/web/GG/dp2.gif
23.224.221.53200 OK 767 kB URL HTTP/2 a3.sjpa1.com/template/web/GG/dp2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 767 kB (766938 bytes)
Hash 06f924cdbba4e6c4765765139a404682
7eaadc65f26a4fe45240e14f96c29aa53e721775
514dc1d00a06bed8dbb2a891aa73b6ff70cd32772f582df1c2c959c856d45a5d
GET /template/web/GG/dp2.gif HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: image/gif
content-length: 766938
last-modified: Mon, 25 Apr 2022 12:29:50 GMT
etag: "6266943e-bb3da"
expires: Tue, 01 Nov 2022 17:04:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
n3567.com/c76e316ab98a440eace558d0f711f5dd.gif
45.61.212.130200 OK 85 kB URL HTTP/1.1 n3567.com/c76e316ab98a440eace558d0f711f5dd.gif
IP 45.61.212.130:0
File type GIF image data, version 89a, 960 x 120\012- data
Hash f5f2f7208ebbd23dcbe9dbb4409ad056
d90b1874d8841d2772ecc54b134d90f0b6470d3c
a7ab10035ce878cf2d1dab2ae568f294b61a900e78d6fc040a929d1c1d9c8849
Analyzer Verdict Alert quad9 Sinkholed
GET /c76e316ab98a440eace558d0f711f5dd.gif HTTP/1.1
Host: n3567.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6326dfa0-14a7a"
Date: Wed, 28 Sep 2022 22:01:00 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 18 Sep 2022 09:06:40 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-30
Content-Length: 84602
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 9293a9465d9bbbafb82a050aeffa233e
2ea06e0db30d52b44913d3ad929f265b83829b63
c08fede64dc0a9dae8d85af6b38f40efb3f5005c9268303be23289682eee47a7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 02 Oct 2022 03:45:13 GMT
Expires: Sun, 09 Oct 2022 03:45:12 GMT
Etag: "2ea06e0db30d52b44913d3ad929f265b83829b63"
Cache-Control: max-age=556269,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 753f03cc6ea9b4f3-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c98fd2bda10e90ea4470fffffaf23b93
46cafeeaefbcbbb1f03adf454227ec87bdf3a1f2
5c606ef14c69c62f0eba7bfcd010b941a68e6a81627000219f095dfea8a816a6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 02 Oct 2022 10:48:01 GMT
Expires: Sun, 09 Oct 2022 10:48:00 GMT
Etag: "46cafeeaefbcbbb1f03adf454227ec87bdf3a1f2"
Cache-Control: max-age=581637,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 753f03cc6fc50b3d-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 3fd20d85e213ec554b4adce27fd55942
7bdd65010061c7448017f3eb933259fa3fb39527
a53a63ca6f429bace4d804b42f10485cc5726a03dc760ca4558ca19050bfb150
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 06 Oct 2022 15:09:47 GMT
ETag: "7bdd65010061c7448017f3eb933259fa3fb39527"
Last-Modified: Sun, 02 Oct 2022 15:09:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753f03cc2e3eb4f3-OSL
img.ttbfp8.com/upload/vod/20221001-1/7424b06869502598a6e5e9d27e10c3cc.jpg
23.224.136.188200 OK 10 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/7424b06869502598a6e5e9d27e10c3cc.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1beef0d16a8910302ff79ef9f56b883e
a71a83450a99371d337cd861b8a10be8efb735ac
d1b36201605e9d8c68a16d7befb93d57365af1ba199692e36e81558ce72fda6f
GET /upload/vod/20221001-1/7424b06869502598a6e5e9d27e10c3cc.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 10151
Last-Modified: Sat, 01 Oct 2022 10:05:02 GMT
Connection: keep-alive
ETag: "633810ce-27a7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/c67f89b91099ad5c55e6295e8b067fa3.jpg
23.224.136.188200 OK 7.1 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/c67f89b91099ad5c55e6295e8b067fa3.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 79060eba98313022743423497b3024f2
0f952e2ec383a0a3ecf0c04d9fa1371e9643aad3
323bed8e8ccb6aad1e49b1f24532c017d192cfd82f1c58b005a676fdf0cc28be
GET /upload/vod/20221001-1/c67f89b91099ad5c55e6295e8b067fa3.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 7056
Last-Modified: Sat, 01 Oct 2022 10:07:12 GMT
Connection: keep-alive
ETag: "63381150-1b90"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/ad4f2f29fa2c8170dc6ab4b9e77f3374.jpg
23.224.136.188200 OK 19 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/ad4f2f29fa2c8170dc6ab4b9e77f3374.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 336x189, components 3\012- data
Hash c8f748bd1e2535a1d0454714ad48bccb
85993f6caac907dd515c2e17dc5155797889ce74
9aea9801b6f8ebcad5650f187f947baa378b9c45f831997ddb47026746a69bbd
GET /upload/vod/20221001-1/ad4f2f29fa2c8170dc6ab4b9e77f3374.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/jpeg
Content-Length: 18785
Last-Modified: Sat, 01 Oct 2022 10:07:12 GMT
Connection: keep-alive
ETag: "63381150-4961"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/f3dc6b9a66ce28f5e23b0bc4514927b6.jpg
23.224.136.188200 OK 19 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/f3dc6b9a66ce28f5e23b0bc4514927b6.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 336x189, components 3\012- data
Hash 7de85a9f6127399dcfd6a18ac24843df
183eb5a7381566a1b7e7dd5f1b6c70fabc2c0872
06d609d9ab008b74570be8cd360193bbb470d9937c996f746b8e109b503686b0
GET /upload/vod/20221001-1/f3dc6b9a66ce28f5e23b0bc4514927b6.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/jpeg
Content-Length: 19340
Last-Modified: Sat, 01 Oct 2022 10:07:12 GMT
Connection: keep-alive
ETag: "63381150-4b8c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/572aa6db19e9e9065a1801f9aa5640b2.jpg
23.224.136.188200 OK 16 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/572aa6db19e9e9065a1801f9aa5640b2.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 336x189, components 3\012- data
Hash 06dcf03a408f30228d8d194f9e894af0
9796bd36c8a89af3a738ce3e4a231fcc811b5221
fddbe24fa4f772b51dcf1eb1c0f755e7f1bc414e77ae7c3c79345e52d23552e8
GET /upload/vod/20221001-1/572aa6db19e9e9065a1801f9aa5640b2.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/jpeg
Content-Length: 16481
Last-Modified: Sat, 01 Oct 2022 10:07:12 GMT
Connection: keep-alive
ETag: "63381150-4061"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.ttbfp8.com/upload/vod/20221001-1/a0468d4114a13b43956323aa54eead1b.jpg
23.224.136.188200 OK 20 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/a0468d4114a13b43956323aa54eead1b.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 336x189, components 3\012- data
Hash bc16f91c789447352f501f0f720234c0
5e508a9e36abb4df7dbf20abbc8cb0cae321c7d6
52d482bdfe85dff05caa0f5ac06e6f6af4501ed7d9d76ab16d1187ae58f0a720
GET /upload/vod/20221001-1/a0468d4114a13b43956323aa54eead1b.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/jpeg
Content-Length: 19849
Last-Modified: Sat, 01 Oct 2022 10:07:12 GMT
Connection: keep-alive
ETag: "63381150-4d89"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d167f8ccbdce6bff2c0a8e1da2f2b575
5545b8bc03fcd0da81c3e61c8d92b9c0f7100b9c
d532ca203b4554b8df29094de7147d4c8b871e78815b529e6e121b92a51c0dec
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "D532CA203B4554B8DF29094DE7147D4C8B871E78815B529E6E121B92A51C0DEC"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11799
Expires: Sun, 02 Oct 2022 20:20:41 GMT
Date: Sun, 02 Oct 2022 17:04:02 GMT
Connection: keep-alive
kveff.com/5acaa66e30e443214f59a6b31654a54e.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kveff.com/5acaa66e30e443214f59a6b31654a54e.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /5acaa66e30e443214f59a6b31654a54e.gif HTTP/1.1
Host: kveff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 02 Oct 2022 17:04:02 GMT
content-type: text/html
content-length: 162
location: https://kvtnnn.top/5acaa66e30e443214f59a6b31654a54e.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kveff.com/68a7807de3933bf7079116fa9df99e6f.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kveff.com/68a7807de3933bf7079116fa9df99e6f.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kveff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 02 Oct 2022 17:04:02 GMT
content-type: text/html
content-length: 162
location: https://kvtnnn.top/68a7807de3933bf7079116fa9df99e6f.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kvhooo.top/6fb5deabda1e984b6bd49b2baa8dfa10.gif
172.67.139.162200 OK 919 kB URL HTTP/2 kvhooo.top/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP 172.67.139.162:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 919 kB (918679 bytes)
Hash 956582dd3aa22ca9b19bdd1d5e091e24
c2d80e05f59981f6ed58a8231f502bd990894d6b
88e686882e64a0e199c79bd83b7102885b67242b5d0b49a1f37674c0bb3ddd8e
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kvhooo.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a3.sjpa1.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:04:02 GMT
content-type: image/gif
content-length: 918679
last-modified: Sat, 02 Jul 2022 13:09:08 GMT
etag: "62c04374-e0497"
expires: Sun, 30 Oct 2022 22:47:31 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 152191
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=le9%2F1plWaco6QAKPUpV5FOmlen%2F7bqvlTZn%2FhiwGt6n2jJ3pOdStH2sSNMrg%2BhcPbttKvC3A3H%2FrJiNoZ%2FnxnOgO6OZmgHrnEIbFYtdupacCh8Z2%2BlWlb3qTnwVp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f03cd5aeab4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d167f8ccbdce6bff2c0a8e1da2f2b575
5545b8bc03fcd0da81c3e61c8d92b9c0f7100b9c
d532ca203b4554b8df29094de7147d4c8b871e78815b529e6e121b92a51c0dec
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "D532CA203B4554B8DF29094DE7147D4C8B871E78815B529E6E121B92A51C0DEC"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11799
Expires: Sun, 02 Oct 2022 20:20:41 GMT
Date: Sun, 02 Oct 2022 17:04:02 GMT
Connection: keep-alive
img.ttbfp8.com/upload/vod/20221001-1/babe2ec441f280e1b2f112099f1bd0d8.jpg
23.224.136.188200 OK 102 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/babe2ec441f280e1b2f112099f1bd0d8.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 720x405, components 3\012- data
Size 102 kB (101696 bytes)
Hash 3f80ac8cb9e6adb73b7daed44460df31
627150d06b291fdf33c6a2c5cc3de462f075bd52
f2451fdfa571814043940f162f9cf187313a585486cce642457b696e52d940ca
GET /upload/vod/20221001-1/babe2ec441f280e1b2f112099f1bd0d8.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/jpeg
Content-Length: 101696
Last-Modified: Sat, 01 Oct 2022 10:07:14 GMT
Connection: keep-alive
ETag: "63381152-18d40"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash d288265da8914db07617bee5bf79709f
912b4ca02fd3b6255f3897c1d081f8c6b8cd9000
af7d1b4750f79481ebfd4ed9e50e4fb4d46893bfd93cd03bf604f77c17478bbc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 02 Oct 2022 04:37:50 GMT
Expires: Sun, 09 Oct 2022 04:37:49 GMT
Etag: "912b4ca02fd3b6255f3897c1d081f8c6b8cd9000"
Cache-Control: max-age=559426,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 753f03cdd8f6b4f3-OSL
img.ttbfp8.com/upload/vod/20221001-1/4522273d88ac060e811e43f9d6aa42d3.jpg
23.224.136.188200 OK 19 kB URL HTTP/1.1 img.ttbfp8.com/upload/vod/20221001-1/4522273d88ac060e811e43f9d6aa42d3.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 336x189, components 3\012- data
Hash e511f6e9d2785fe001c1322556009260
8fa4ec8dac331730f4adf674ee55813ef5a73fea
e10cd48995764a2f815f6db02b2295268545e7d8e8be7c682d83c6aba755ce5d
GET /upload/vod/20221001-1/4522273d88ac060e811e43f9d6aa42d3.jpg HTTP/1.1
Host: img.ttbfp8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/jpeg
Content-Length: 18741
Last-Modified: Sat, 01 Oct 2022 10:07:12 GMT
Connection: keep-alive
ETag: "63381150-4935"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash d288265da8914db07617bee5bf79709f
912b4ca02fd3b6255f3897c1d081f8c6b8cd9000
af7d1b4750f79481ebfd4ed9e50e4fb4d46893bfd93cd03bf604f77c17478bbc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 02 Oct 2022 04:37:50 GMT
Expires: Sun, 09 Oct 2022 04:37:49 GMT
Etag: "912b4ca02fd3b6255f3897c1d081f8c6b8cd9000"
Cache-Control: max-age=559426,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 753f03cdf9b20b3d-OSL
a3.sjpa1.com/template/web/dh2.js
23.224.221.53200 OK 406 kB URL HTTP/2 a3.sjpa1.com/template/web/dh2.js
IP 23.224.221.53:0
Size 406 kB (406341 bytes)
Hash ae3c89dd78cadd94047f4a980e855672
6c3c7c0bf595b3a7d0cbcca040d909077f79023a
a26f0840a85a817a97373ad18065ecc119dd95f97672ed7649b65f869b4828c1
GET /template/web/dh2.js HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: application/javascript
last-modified: Sun, 02 Oct 2022 14:20:22 GMT
vary: Accept-Encoding
etag: W/"63399e26-2ebc"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 249d97af4c641aa29da745936592252c
520f9db55184b2a0f7ba2b1b6f6bcdd00feacc98
19de8baf48b1938ad0a9c21db5a9c36c8399b1882fa1ae3d7625a4bd02c7eb47
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "19DE8BAF48B1938AD0A9C21DB5A9C36C8399B1882FA1AE3D7625A4BD02C7EB47"
Last-Modified: Fri, 30 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6668
Expires: Sun, 02 Oct 2022 18:55:10 GMT
Date: Sun, 02 Oct 2022 17:04:02 GMT
Connection: keep-alive
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1415330681&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10172&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1415330681&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10172&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1415330681&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10172&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 02 Oct 2022 17:04:02 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=F7961FE1311D4FF3; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 249d97af4c641aa29da745936592252c
520f9db55184b2a0f7ba2b1b6f6bcdd00feacc98
19de8baf48b1938ad0a9c21db5a9c36c8399b1882fa1ae3d7625a4bd02c7eb47
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "19DE8BAF48B1938AD0A9C21DB5A9C36C8399B1882FA1AE3D7625A4BD02C7EB47"
Last-Modified: Fri, 30 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6668
Expires: Sun, 02 Oct 2022 18:55:10 GMT
Date: Sun, 02 Oct 2022 17:04:02 GMT
Connection: keep-alive
kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
104.21.233.190200 OK 1.0 MB URL HTTP/2 kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
IP 104.21.233.190:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.0 MB (1024160 bytes)
Hash 52748c8ca30fe48c822541046bceafc0
8640926f83b9c0d635fb28403505a7c0f0753857
2e292531362f37bf7a1cd01330efb234450b1f836e975c55f2b2179c0be32ae6
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kvhccc.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a3.sjpa1.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:04:02 GMT
content-type: image/gif
content-length: 1024160
last-modified: Wed, 25 May 2022 13:49:10 GMT
etag: "628e33d6-fa0a0"
expires: Mon, 31 Oct 2022 18:31:50 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 81132
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kkOcwS2CcZFwG%2B6zaa7ORDlZa8AIZvbvVcfPXtSadj9fCpHenxdaVxGuReeSdCfy2xFS4VtZuXAWBVNWGki6pdcaa%2FYU17tz7eQgtm28Hn26OfWmga9CdsO4gW0n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f03cd5d588877-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/5d536823ffda4f8e935d315d5f62ddc4
47.246.44.228200 OK 236 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/5d536823ffda4f8e935d315d5f62ddc4
IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 200 x 200\012- data
Size 236 kB (236219 bytes)
Hash 6aeca56d55e0186078e5d6fb327a23e2
91ac9bbcfeed76fb6f6b01ebefc9ead597d657b4
c5038b21dbd03c29515dbf018a6e7e5644b4c4d33e1020059328ff4c52b004e6
GET /obj/tos-cn-i-dy/5d536823ffda4f8e935d315d5f62ddc4 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 236219
date: Wed, 07 Sep 2022 07:38:18 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Wed, 07 Sep 2022 07:37:22 GMT
nw-session-id: 202209071537220101501072272B808FA4jw4pq03dy
nw-session-trace: 2022-09-07T15:37:22.828046379+08:00 46
x-bdcdn-cache-status: TCP_HIT
x-length: 236219
x-powered-by: ImageX
x-response-date: Wed, 07 Sep 2022 15:37:22 GMT
x-tt-logid: 202209071537220101501072272B808FA4
via: n150-059-226, cache9.l2de2[0,0,206-0,H], cache9.l2de2[1,0], cache9.l2de2[2,0], cache5.se1[0,0,200-0,H], cache5.se1[1,0]
x-request-ip: fdbd:dc02:22:46::67
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 019c1b5790decad19a8d1f49909a86c09b86ded5c77e0f7fb181b5daa8edf761de6ff1239c164cae6bf54f6944fd81e87f0acefb8c1b1dd33bb78e31a9a6efe1e73f3959289e3f8a5aec467fa9cae1aa5bab539a8a508f20009066a45aa879236e
x-response-lb: image
ali-swift-global-savetime: 1662536298
age: 2193944
x-cache: HIT TCP_MEM_HIT dirn:11:330241019
x-swift-savetime: Wed, 07 Sep 2022 08:32:51 GMT
x-swift-cachetime: 31532727
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916647302423594833e
X-Firefox-Spdy: h2
ntvxbf7.com/7a4bba1f2d494d268e4e3d01f7b02f09.gif
45.61.212.130200 OK 73 kB URL HTTP/1.1 ntvxbf7.com/7a4bba1f2d494d268e4e3d01f7b02f09.gif
IP 45.61.212.130:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 68b499187d4013f220129a499602b1f9
80f5fbd2ff84d9e55159bbb5d7871415391cf382
e5bc92b24d0ecf1febf05f08c0787be05413a6bf82bb950505e6a34c492af6ae
Analyzer Verdict Alert quad9 Sinkholed
GET /7a4bba1f2d494d268e4e3d01f7b02f09.gif HTTP/1.1
Host: ntvxbf7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6294b7c2-11daf"
Date: Mon, 26 Sep 2022 07:40:00 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 30 May 2022 12:25:38 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-30
Content-Length: 73135
kvtnnn.top/68a7807de3933bf7079116fa9df99e6f.gif
104.21.234.87200 OK 366 kB URL HTTP/2 kvtnnn.top/68a7807de3933bf7079116fa9df99e6f.gif
IP 104.21.234.87:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 366 kB (366444 bytes)
Hash 86371c51bf2086f3a40f0e438246b662
9da793de9c620485ee91b88413b256c69dc774c5
8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kvtnnn.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://a3.sjpa1.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:04:02 GMT
content-type: image/gif
content-length: 366444
last-modified: Fri, 19 Aug 2022 17:02:28 GMT
etag: "62ffc224-5976c"
expires: Tue, 01 Nov 2022 05:43:32 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 40830
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qURYygJXM7fDhkFQBB0mZAonH3sfAgb1R1FnkMVIIbxSIPF1w6PWR%2Fu2mcEBbIl%2BjzHvOKOKwoiPKUQbz%2F%2BLToGbvkZopYwMoK6f6%2BIRQzdkdNa1wZ6Jn%2FBCj59A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f03cea9be8924-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvtnnn.top/5acaa66e30e443214f59a6b31654a54e.gif
104.21.234.87200 OK 549 kB URL HTTP/2 kvtnnn.top/5acaa66e30e443214f59a6b31654a54e.gif
IP 104.21.234.87:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 549 kB (549098 bytes)
Hash 8152b7620963de2f18ebb2dff8c77d77
7f6bfaf47b4acf62e58581fa0fa690cc54e794df
496118e431af83c5a808c9e2181d6fe427ab6dcc6e8b4c0de298b46f09a5f654
GET /5acaa66e30e443214f59a6b31654a54e.gif HTTP/1.1
Host: kvtnnn.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:04:02 GMT
content-type: image/gif
content-length: 549098
last-modified: Tue, 16 Aug 2022 11:19:44 GMT
etag: "62fb7d50-860ea"
expires: Sun, 30 Oct 2022 18:01:08 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 169374
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pix8TzOD15SYdwX5FenlxNpcj3sP4u7xTVrBhH%2BIxr%2BnyzAGAg%2F4Xs9Y8NKw7AbsVDJDwqJs1snjZfTGSWNUVH3Y0%2FxrYzczJNjgulKEsXs81dCJWaXWMlNF44lc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f03cea9b58924-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 249d97af4c641aa29da745936592252c
520f9db55184b2a0f7ba2b1b6f6bcdd00feacc98
19de8baf48b1938ad0a9c21db5a9c36c8399b1882fa1ae3d7625a4bd02c7eb47
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "19DE8BAF48B1938AD0A9C21DB5A9C36C8399B1882FA1AE3D7625A4BD02C7EB47"
Last-Modified: Fri, 30 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6668
Expires: Sun, 02 Oct 2022 18:55:10 GMT
Date: Sun, 02 Oct 2022 17:04:02 GMT
Connection: keep-alive
u0082.com/2ec673b46d614c64b162f74fde5d74ff.gif
20.239.175.75200 OK 196 kB URL HTTP/1.1 u0082.com/2ec673b46d614c64b162f74fde5d74ff.gif
IP 20.239.175.75:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 196 kB (195791 bytes)
Hash cb604a11825ee223a85693aa7b078ba5
ea1a002e36be7a7de5e5dc112a10e2b3ba8b9af9
56d40151006d41c3a7ddf1791811531e1ac9ab3bb6c01d6859ad01e12c80395f
GET /2ec673b46d614c64b162f74fde5d74ff.gif HTTP/1.1
Host: u0082.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 30 Sep 2022 12:16:15 GMT
ETag: W/"6336de0f-54ee0"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
n0399.com/0fddc6f67b3e446c890e273ba01a3278.gif
20.239.174.148200 OK 222 kB URL HTTP/1.1 n0399.com/0fddc6f67b3e446c890e273ba01a3278.gif
IP 20.239.174.148:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 222 kB (222438 bytes)
Hash 5b18aea64629bda87d5b316db669c1ee
dc1fe7dd292639ba5cf29754f9efc6def2ec07b0
a885231c6dd95806ac2b5963f3e46b1f4148a6eb3653f71cfddde992dcd11f61
GET /0fddc6f67b3e446c890e273ba01a3278.gif HTTP/1.1
Host: n0399.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 11 Aug 2022 07:33:08 GMT
ETag: W/"62f4b0b4-6cad4"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 002ec25713920a10499fe81df4a80dc5
75b1ec7bb782b95bce0f2901c470d217f5196426
6b73e2ab2d89ebece61d23e35912a3bb0480ab59ed4454ec955167478f61ed0a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 01 Oct 2022 21:16:04 GMT
Expires: Sat, 08 Oct 2022 21:16:03 GMT
Etag: "75b1ec7bb782b95bce0f2901c470d217f5196426"
Cache-Control: max-age=532920,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 753f03cf9bb7b4f3-OSL
yaoji666.oss-cn-hongkong.aliyuncs.com/gg/120x120.gif
47.75.19.62200 OK 37 kB URL HTTP/1.1 yaoji666.oss-cn-hongkong.aliyuncs.com/gg/120x120.gif
IP 47.75.19.62:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 120 x 120\012- data
Hash e1483cb58b351df158268bdc4849e1b7
2da640458aa8f291b37b728cd17b7503d474755b
b6ce1d21cbf120517235bf517e86faa5dc0d8daa5078f6984930296d4971d434
GET /gg/120x120.gif HTTP/1.1
Host: yaoji666.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/gif
Content-Length: 37216
Connection: keep-alive
x-oss-request-id: 6339C4824C8B3732325F060B
Accept-Ranges: bytes
ETag: "E1483CB58B351DF158268BDC4849E1B7"
Last-Modified: Thu, 21 Jul 2022 01:19:47 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7284670312886197610
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: 4Ug8tYs1HfFYJovcSEnhtw==
x-oss-server-time: 2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash e60129f9b546229bf4d4328da2f69b91
f1582e90750690787e88929234e142dfba043c3b
0c3970e6177cbc94df9d6e699359147403a2314c041f32c754074f8b93ba0e7e
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Thu, 06 Oct 2022 14:12:06 GMT
ETag: "f1582e90750690787e88929234e142dfba043c3b"
Last-Modified: Sun, 02 Oct 2022 14:12:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753f03d05f25b509-OSL
a3.sjpa1.com/template/web/app.js
23.224.221.53200 OK 19 kB URL HTTP/2 a3.sjpa1.com/template/web/app.js
IP 23.224.221.53:0
Hash 948e2f33fda26fa85522855a42e68225
d3c14cef016c9780e3c931e2a03a0bde4c35bc8c
c652c0df61f452ee5dc512f48d0e7ddb7486b535c2781bb98687bac61759f8b2
GET /template/web/app.js HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: application/javascript
last-modified: Sun, 02 Oct 2022 14:19:36 GMT
vary: Accept-Encoding
etag: W/"63399df8-31a7"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?959981931bea09b9a10c9c552a50e761
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?959981931bea09b9a10c9c552a50e761
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (629)
Hash f1ff5b4ffa2f366a58bc6b696ad84d14
eab8e93be08a4a0cd98600114db45be70202a08e
a9c9c28038130ebfc588cf6c519d20a9f11a29532eed3f92fdcb959d7a071dea
GET /hm.js?959981931bea09b9a10c9c552a50e761 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11342
Content-Type: application/javascript
Date: Sun, 02 Oct 2022 17:04:02 GMT
Etag: 2113e6fad415d297a33f6c0e11b207c6
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=F02CD4A75D08B506; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
66377311795.com/111e0519e12b4d8ca35473dd40ab6320.gif
103.170.15.90200 OK 200 kB URL HTTP/1.1 66377311795.com/111e0519e12b4d8ca35473dd40ab6320.gif
IP 103.170.15.90:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 125 x 125\012- data
Size 200 kB (200511 bytes)
Hash f64efa5cf5c281f0771fd375523a71e9
a1e3bef4d172d02f8412e63b12e3795d03c8da3c
6df0802e529451ad6dbc02d60d626ccb43fded0aa5f093901229e52e809b844b
GET /111e0519e12b4d8ca35473dd40ab6320.gif HTTP/1.1
Host: 66377311795.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63315065-30f3f"
Date: Mon, 26 Sep 2022 09:13:18 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 26 Sep 2022 07:10:29 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-20
Content-Length: 200511
85939597192.com/414f4463b9a84ad98163d6129608c488.gif
45.61.212.60200 OK 22 kB URL HTTP/1.1 85939597192.com/414f4463b9a84ad98163d6129608c488.gif
IP 45.61.212.60:0
File type GIF image data, version 89a, 150 x 150\012- data
Hash 401c8891d0e85cd46a22ce64c6dd8a64
f1efb6525f445030c4ea550a106acfd020b9e4a8
601755fa43543d1071333caa9976fdcd1756b7484e186e2531caca4442eed727
GET /414f4463b9a84ad98163d6129608c488.gif HTTP/1.1
Host: 85939597192.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6326df7d-56fe"
Date: Thu, 29 Sep 2022 15:55:16 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 18 Sep 2022 09:06:05 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-30
Content-Length: 22270
hm.baidu.com/hm.js?23623cf5f4a21b97670aa94e566ea294
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?23623cf5f4a21b97670aa94e566ea294
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (629)
Hash 5d1a418c66663db04e2231630704f256
a61550e4dc0bb3df1cf03d8d7f8537a82fb1fce7
7e6d2752375410bf56d76ca0803d56ec49ac10aece754e925ff656d61838b7fa
GET /hm.js?23623cf5f4a21b97670aa94e566ea294 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11342
Content-Type: application/javascript
Date: Sun, 02 Oct 2022 17:04:02 GMT
Etag: b0f75c456bf136caffdd1baca482fffa
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=EEEC0D23FC683068; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
513575528.com/9d89e2afdf374d3fa64173edaf80cd5f.gif
47.75.19.14200 OK 579 kB URL HTTP/1.1 513575528.com/9d89e2afdf374d3fa64173edaf80cd5f.gif
IP 47.75.19.14:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 750 x 120\012- data
Size 579 kB (579018 bytes)
Hash 54c2a3fb838c8e711bbe07220637d637
77e33ed77eb68c23320c059105fb2c900141301e
fc832269e62682138155c4f5e7f34f36512d1bfe69482fbc4a2cc3d27251c8e1
GET /9d89e2afdf374d3fa64173edaf80cd5f.gif HTTP/1.1
Host: 513575528.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 02 Oct 2022 17:04:01 GMT
Content-Type: image/gif
Content-Length: 579018
Connection: keep-alive
x-oss-request-id: 6339C481D0409B343090C200
Accept-Ranges: bytes
ETag: "54C2A3FB838C8E711BBE07220637D637"
Last-Modified: Mon, 26 Sep 2022 07:09:11 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8834985976416227178
x-oss-storage-class: Standard
Content-MD5: VMKj+4OMjnEbvgciBjfWNw==
x-oss-server-time: 2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1320629184&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10173&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1320629184&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10173&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1320629184&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10173&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 02 Oct 2022 17:04:02 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=2420BECBBD514832; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ia.51.la/go1?id=21273067&rt=1664730241826&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=xxbb9%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1664730241826&tt=xxbb9%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=xxbb9%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252Fa3.sjpa1.com%252F&pu=http%253A%252F%252Fwww.alamu.net%252F
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=21273067&rt=1664730241826&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=xxbb9%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1664730241826&tt=xxbb9%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=xxbb9%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252Fa3.sjpa1.com%252F&pu=http%253A%252F%252Fwww.alamu.net%252F
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21273067&rt=1664730241826&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=xxbb9%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1664730241826&tt=xxbb9%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=xxbb9%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252Fa3.sjpa1.com%252F&pu=http%253A%252F%252Fwww.alamu.net%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: CloudWAF
Date: Sun, 02 Oct 2022 17:04:03 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=f84a2a4b7637ce2ab14; path=/
HWWAFSESTIME=1664730238021; path=/
38qptu4.oss-cn-hangzhou.aliyuncs.com/150.gif
47.110.177.110200 OK 137 kB URL HTTP/1.1 38qptu4.oss-cn-hangzhou.aliyuncs.com/150.gif
IP 47.110.177.110:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 200 x 200\012- data
Size 137 kB (136945 bytes)
Hash 77e56e44521598151bbc814814005448
204207c707cae73d562c4c8fcb1e8467eeabf2eb
a1275ab8c911c61150c5f68b2da51d30a146929e2c9478ab1a68db88a086ff6f
GET /150.gif HTTP/1.1
Host: 38qptu4.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/gif
Content-Length: 136945
Connection: keep-alive
x-oss-request-id: 6339C482818A313337387C67
Accept-Ranges: bytes
ETag: "77E56E44521598151BBC814814005448"
Last-Modified: Thu, 04 Aug 2022 13:25:21 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6164053056264850434
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: d+VuRFIVmBUbvIFIFABUSA==
x-oss-server-time: 3
ggt999.oss-cn-hangzhou.aliyuncs.com/ky/ky96060a.gif
47.110.177.104200 OK 262 kB URL HTTP/1.1 ggt999.oss-cn-hangzhou.aliyuncs.com/ky/ky96060a.gif
IP 47.110.177.104:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 262 kB (262225 bytes)
Hash cb60484bc86df18b928b4b8a32fc49d4
1f6418d080d15e191c6de846c5004b9eaf485af1
1144536681ad12fb0540ca05de38c8f15b6cc3eb4365c392ea04d27433f20307
GET /ky/ky96060a.gif HTTP/1.1
Host: ggt999.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/gif
Content-Length: 262225
Connection: keep-alive
x-oss-request-id: 6339C48238B0ED35337FA6F9
Accept-Ranges: bytes
ETag: "CB60484BC86DF18B928B4B8A32FC49D4"
Last-Modified: Mon, 19 Sep 2022 11:04:52 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14205026374516440884
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: y2BIS8ht8YuSi0uKMvxJ1A==
x-oss-server-time: 3
38qptu4.oss-cn-hangzhou.aliyuncs.com/kyr87633.gif
47.110.177.110200 OK 299 kB URL HTTP/1.1 38qptu4.oss-cn-hangzhou.aliyuncs.com/kyr87633.gif
IP 47.110.177.110:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 299 kB (299398 bytes)
Hash f4b7967855549e81f65598b93a43d9db
6ab53e8a9af687c1dddad236af323080a04499cf
2e95dc2082af7cc833e0aef825efc261c04b69e3ec4350203854008cc4a12dc6
GET /kyr87633.gif HTTP/1.1
Host: 38qptu4.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/gif
Content-Length: 299398
Connection: keep-alive
x-oss-request-id: 6339C4826F8C263332562289
Accept-Ranges: bytes
ETag: "F4B7967855549E81F65598B93A43D9DB"
Last-Modified: Sun, 05 Jun 2022 13:03:04 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8810428828543929982
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 9LeWeFVUnoH2VZi5OkPZ2w==
x-oss-server-time: 3
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=720266205&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10173&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=720266205&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10173&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=720266205&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10173&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 02 Oct 2022 17:04:03 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=615F98507541BF8A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 8ff9c34d8f50728ce9d413743cd9140d
fef08ab845cf4b71036e4de57485f702ac7808f8
96c5d51814823455c3e0da7256078c303a66c8a6099502ebda303ab42406f950
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:04:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 06 Oct 2022 14:26:22 GMT
ETag: "fef08ab845cf4b71036e4de57485f702ac7808f8"
Last-Modified: Sun, 02 Oct 2022 14:26:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1735
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753f03d71dffb4e8-OSL
hm.baidu.com/hm.js?86ea3af34e71a9d5eae3e3255c8ace53
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?86ea3af34e71a9d5eae3e3255c8ace53
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (629)
Hash 24125f6b5877713650e2d4df64c2621d
6708039edad857d8dd397ee7027c1455def1fc97
832b021e6594c80f6b8b5d09b09abee503889859acaa45b6284400858062255f
GET /hm.js?86ea3af34e71a9d5eae3e3255c8ace53 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11342
Content-Type: application/javascript
Date: Sun, 02 Oct 2022 17:04:02 GMT
Etag: d4d80dec406082d61b511bce4648bf74
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=0893B70571B82312; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
689782696.com/2b519efbad8943a8aeb14cc05fef9fce.gif
47.75.19.14200 OK 669 kB URL HTTP/1.1 689782696.com/2b519efbad8943a8aeb14cc05fef9fce.gif
IP 47.75.19.14:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 750 x 100\012- data
Size 669 kB (668791 bytes)
Hash 889727a6917f1de8fa50a7e27c981464
383aed5e1575ced12b853072a826dcbb35215f8a
543e8a7e680605b09ed3c18b6520822be19c3420f76192d0aa7ee84cc97f235b
GET /2b519efbad8943a8aeb14cc05fef9fce.gif HTTP/1.1
Host: 689782696.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/gif
Content-Length: 668791
Connection: keep-alive
x-oss-request-id: 6339C4829DB5783436C4EF7B
Accept-Ranges: bytes
ETag: "889727A6917F1DE8FA50A7E27C981464"
Last-Modified: Sun, 18 Sep 2022 09:10:22 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 18266282662055448798
x-oss-storage-class: Standard
Content-MD5: iJcnppF/Hej6UKfifJgUZA==
x-oss-server-time: 2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=584488768&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10174&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=584488768&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10174&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=584488768&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.alamu.net%2F&v=1.2.97&lv=1&sn=10174&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fa3.sjpa1.com%2F&tt=xxbb9%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 02 Oct 2022 17:04:03 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E1ADA9859A17CDC2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
689782696.com/c5b54a640bd240c09a068b63f7ef1ed0.gif
47.75.19.14200 OK 880 kB URL HTTP/1.1 689782696.com/c5b54a640bd240c09a068b63f7ef1ed0.gif
IP 47.75.19.14:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 100\012- data
Size 880 kB (880233 bytes)
Hash 2705c538758943c49e10dee08655851c
9946289a03cb5034448bc57c325515ef5c0996e6
487d1d9209c62f62d81facdd97f4f2a2b2d4bb1d9d393978ef95c5494617729e
GET /c5b54a640bd240c09a068b63f7ef1ed0.gif HTTP/1.1
Host: 689782696.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/gif
Content-Length: 880233
Connection: keep-alive
x-oss-request-id: 6339C48223C0543939E7F5A3
Accept-Ranges: bytes
ETag: "2705C538758943C49E10DEE08655851C"
Last-Modified: Sun, 18 Sep 2022 09:08:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6693613595116698927
x-oss-storage-class: Standard
Content-MD5: JwXFOHWJQ8SeEN7ghlWFHA==
x-oss-server-time: 1
sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
120.77.166.72200 OK 397 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 397 kB (397200 bytes)
Hash 0d809e04f716b7dc1cdfc0257cec94e1
bcb9e09d31d9187c08c30f2b8ce95b770a47ae29
75d04a8c719342e2ed71db3bc7e07f18f5cf68c92462c3703ad1cf511b48fe5d
GET /js960x80%20.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 02 Oct 2022 17:04:02 GMT
Content-Type: image/gif
Content-Length: 397200
Connection: keep-alive
x-oss-request-id: 6339C482FFFE3D3838EB72C2
Accept-Ranges: bytes
ETag: "0D809E04F716B7DC1CDFC0257CEC94E1"
Last-Modified: Sun, 03 Jul 2022 04:32:59 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6647872845358323269
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: DYCeBPcWt9wc38AlfOyU4Q==
x-oss-server-time: 3
a3.sjpa1.com/template/web/dh1.js
23.224.221.53200 OK 233 kB URL HTTP/2 a3.sjpa1.com/template/web/dh1.js
IP 23.224.221.53:0
Size 233 kB (232909 bytes)
Hash 7cfd33954909c56b589fe49011697afd
016f26222bfc4ad512bb6f720563fbb40a4890c2
add392b2ca365b17533de51da6bedd42dd66447dbb9da14a3ced0cd1f647046b
GET /template/web/dh1.js HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: application/javascript
last-modified: Sun, 02 Oct 2022 14:20:09 GMT
vary: Accept-Encoding
etag: W/"63399e19-3388"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
a3.sjpa1.com/template/meizhuama/css/zui.css
23.224.221.53200 OK 0 B URL HTTP/2 a3.sjpa1.com/template/meizhuama/css/zui.css
IP 23.224.221.53:0
GET /template/meizhuama/css/zui.css HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:04:00 GMT
content-type: text/css
last-modified: Tue, 03 May 2022 06:22:50 GMT
vary: Accept-Encoding
etag: W/"6270ca3a-18ca0"
expires: Mon, 03 Oct 2022 05:04:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
vjnhby.com/b7789cf5d31c42b8a1aef8e2b40479c7.gif
45.61.212.135200 OK 0 B URL HTTP/2 vjnhby.com/b7789cf5d31c42b8a1aef8e2b40479c7.gif
IP 45.61.212.135:0
GET /b7789cf5d31c42b8a1aef8e2b40479c7.gif HTTP/1.1
Host: vjnhby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "63245a3a-3f4d0"
server: nginx
date: Thu, 22 Sep 2022 15:20:56 GMT
content-type: image/gif
last-modified: Fri, 16 Sep 2022 11:12:58 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us4-cdnb-05
content-length: 259280
X-Firefox-Spdy: h2
img.x921.xyz/images/631b4fb0b62b4063cbda4960.gif
23.225.228.34302 Found 0 B URL HTTP/2 img.x921.xyz/images/631b4fb0b62b4063cbda4960.gif
IP 23.225.228.34:0
GET /images/631b4fb0b62b4063cbda4960.gif HTTP/1.1
Host: img.x921.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a3.sjpa1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/d995a5c52443481491c98eda92383133
cache-control: max-age=3600
X-Firefox-Spdy: h2
img.999977.co/images/6316de02a49d5bdc1f72e316.gif
38.47.102.248302 Found 0 B URL HTTP/2 img.999977.co/images/6316de02a49d5bdc1f72e316.gif
IP 38.47.102.248:0
GET /images/6316de02a49d5bdc1f72e316.gif HTTP/1.1
Host: img.999977.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/5d536823ffda4f8e935d315d5f62ddc4
cache-control: max-age=3600
X-Firefox-Spdy: h2
a3.sjpa1.com/
23.224.221.53200 OK 0 B IP 23.224.221.53:0
GET / HTTP/1.1
Host: a3.sjpa1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alamu.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:03:59 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2