fileapi.gyaott.top/001/puppet.Txt?225796
45.207.71.123 224 B URL fileapi.gyaott.top/001/puppet.Txt?225796
IP 45.207.71.123:0
ASN #136800 Sun Network Hong Kong Limited - HongKong Backbone
File type HTML document, ASCII text, with CRLF line terminators
Hash 5abd17caff5ac9f16a562f6fd5eb4460
6423d820a668b08f45b2b7ca411ca3a87781b145
26d82981426ce33e8efceb49fc368223e48d977f6f75075710991ffa8876f57c
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET /001/puppet.Txt?225796 HTTP/1.1
Host: fileapi.gyaott.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Jun 2023 22:53:07 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
fileapi.gyaott.top/gczx.html
45.207.71.123 5.8 kB URL User Request GET fileapi.gyaott.top/gczx.html
IP 45.207.71.123:0
ASN #136800 Sun Network Hong Kong Limited - HongKong Backbone
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (28637)
Hash 200f39af116ed54e6182f27605fe374a
b8bfefc65cb9fbefff48719c96969e78804427f2
27d9da24acf51e0547e5577fa3eec1269258af431fb598ce7c36127082e0c878
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
GET /gczx.html HTTP/1.1
Host: fileapi.gyaott.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://fileapi.gyaott.top/001/puppet.Txt?225796
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Jun 2023 22:53:08 GMT
Content-Type: text/html
Last-Modified: Mon, 15 May 2023 15:00:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6462491c-789c"
Content-Encoding: gzip
fileapi.gyaott.top/favicon.ico
45.207.71.123200 OK 224 B URL GET HTTP/1.1 fileapi.gyaott.top/favicon.ico
IP 45.207.71.123:80
ASN #136800 Sun Network Hong Kong Limited - HongKong Backbone
Requested by http://fileapi.gyaott.top/gczx.html
File type HTML document, ASCII text, with CRLF line terminators
Hash 5abd17caff5ac9f16a562f6fd5eb4460
6423d820a668b08f45b2b7ca411ca3a87781b145
26d82981426ce33e8efceb49fc368223e48d977f6f75075710991ffa8876f57c
GET /favicon.ico HTTP/1.1
Host: fileapi.gyaott.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://fileapi.gyaott.top/gczx.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Jun 2023 22:53:09 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp2.globalsign.com/gsorganizationvalsha2g3
151.101.66.133 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 151.101.66.133:0
Hash ca7611489520d18cb7fa1b3965df15be
74bf561490ec2884c50cfd5ab52771a195ef3ef2
0db553c0138ce90dbbcea39edd1f464ccc5ebabb859394d5f8bc0c54bf080aff
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1461
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 10 Jun 2023 21:41:29 GMT
ETag: "74bf561490ec2884c50cfd5ab52771a195ef3ef2"
Last-Modified: Tue, 06 Jun 2023 21:41:30 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 06 Jun 2023 22:53:09 GMT
Age: 4299
X-Served-By: cache-qpg1240-QPG, cache-bma1646-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 4, 2
X-Timer: S1686091990.712737,VS0,VE0
gczx666.oss-cn-shenzhen.aliyuncs.com/gczx.js
120.77.166.101200 OK 125 B URL GET HTTP/1.1 gczx666.oss-cn-shenzhen.aliyuncs.com/gczx.js
IP 120.77.166.101:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by http://fileapi.gyaott.top/gczx.html
Certificate IssuerGlobalSign nv-sa
Subject*.oss-cn-shenzhen.aliyuncs.com
Fingerprint83:92:B0:4C:5C:51:15:BB:A3:78:1F:CF:E8:53:1F:23:D6:94:8F:5C
ValidityMon, 30 Jan 2023 02:31:11 GMT - Sat, 02 Mar 2024 02:31:10 GMT
File type Unicode text, UTF-8 (with BOM) text, with no line terminators
Hash 0ff1ad5fc02d31edcb1f315d7d49172a
636631c6ebcc0766a27921cbec58dc71af4399c7
6cb30873cc1f45465e48eba72b4205007b7aab8b06a5713da9923841e5e14331
GET /gczx.js HTTP/1.1
Host: gczx666.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://fileapi.gyaott.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 06 Jun 2023 22:53:10 GMT
Content-Type: application/javascript
Content-Length: 125
Connection: keep-alive
x-oss-request-id: 647FB8D6791B5C34362B29D9
Accept-Ranges: bytes
ETag: "0FF1AD5FC02D31EDCB1F315D7D49172A"
Last-Modified: Mon, 05 Jun 2023 04:56:31 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4246857114174384965
x-oss-storage-class: Standard
Content-MD5: D/GtX8AtMe3LHzFdfUkXKg==
x-oss-server-time: 1
320213.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=99153941
192.230.77.133200 OK 19 kB URL GET HTTP/2 320213.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=99153941
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash e15fa0d610ee77ff86053043d2388d66
47b54c071b147d00ba6b80ccafbcf792d0c109ef
2be45a622e7dd8a4d81b373e385605e2d3d22382851ead596d83b3360abad019
GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=99153941 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/javascript
content-encoding: gzip
x-robots-tag: noindex
content-length: 18967
X-Firefox-Spdy: h2
320213.com/_Incapsula_Resource?SWKMTFSR=1&e=0.3216976287570651
192.230.77.133200 OK 1 B URL GET HTTP/2 320213.com/_Incapsula_Resource?SWKMTFSR=1&e=0.3216976287570651
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /_Incapsula_Resource?SWKMTFSR=1&e=0.3216976287570651 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; ___utmvc=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: text/plain
x-robots-tag: noindex
content-length: 1
X-Firefox-Spdy: h2
320213.com/static/js/initws.js
192.230.77.133200 OK 2.6 kB URL GET HTTP/2 320213.com/static/js/initws.js
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type C source, Unicode text, UTF-8 text
Hash b75862d5945ee76372a13c6dd89cca98
dc672637184650e0120b5cd079f2dcff574d0343
17863126fed9c414b64b4fa31983f2c7118624d8beaaae8c4c70832ae0fbb4b4
GET /static/js/initws.js HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-234a"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 2558
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:15 GMT
date: Tue, 06 Jun 2023 22:53:14 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12386798 2cNN RT(1686091993108 1059) q(0 0 0 -1) r(4 4)
X-Firefox-Spdy: h2
320213.com/v1/management/tenant/getSpeedDomain
192.230.77.133200 OK 1.3 kB URL GET HTTP/2 320213.com/v1/management/tenant/getSpeedDomain
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text
Hash 519c5238ed9eccbefc13141b280a3474
8bea9a1fe84a07d7299b506973260831e018410d
527d25ad8cabb934fa106eb858faed24ffabded66850a6130bd3c1d9e860d2b8
GET /v1/management/tenant/getSpeedDomain HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; ___utmvc=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Wed, 31 May 2023 22:59:45 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12389859 PNNN RT(1686091993108 1442) q(0 0 0 -1) r(3 3) U12
X-Firefox-Spdy: h2
320213.com/static/spine-webgl.js
192.230.77.133200 OK 75 kB URL GET HTTP/2 320213.com/static/spine-webgl.js
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
Hash 5200130e3b8970af6c19b8587f46663b
56f9307ce28cb0a1c0150d92b095760936e83618
ffafc28590239f5f3f134c8bc83753f6c2e5d4ff2d3c775c2ff50afc2a608c13
GET /static/spine-webgl.js HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-5a0a5"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 74703
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:15 GMT
date: Tue, 06 Jun 2023 22:53:14 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12370173 2cNN RT(1686091993108 1787) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
320213.com/static/public/layer.m.js
192.230.77.133200 OK 1.5 kB URL GET HTTP/2 320213.com/static/public/layer.m.js
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (2994)
Hash dda7a6368de9444d877be068fab49b44
a03085133806ceaac8a3e64711616582d000e45f
8cb834cdc0c8fc17c42aefb5e79fd0ec76a3b856531b801ddd1698cf7a9c7864
GET /static/public/layer.m.js HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-c18"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 1465
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:15 GMT
date: Tue, 06 Jun 2023 22:53:14 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12380457 2cNN RT(1686091993108 1789) q(0 0 0 -1) r(1 1)
X-Firefox-Spdy: h2
320213.com/static/js/yidun/index.js
192.230.77.133200 OK 4.0 kB URL GET HTTP/2 320213.com/static/js/yidun/index.js
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (549)
Hash 38be314db9ffad6f1ffd6f13d4d3079e
6593016f286030e92fe2b4b6c2ff98b72c8ab09f
9c6c3a32ef007d4ef425137ad126ce8ed56505b9a40b3da964190d01bc14ead7
GET /static/js/yidun/index.js HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-2a81"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 4025
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:15 GMT
date: Tue, 06 Jun 2023 22:53:14 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12383815 2cNN RT(1686091993108 1790) q(0 0 0 -1) r(1 1)
X-Firefox-Spdy: h2
320213.com/static/js/aliyun.min.js
192.230.77.133200 OK 59 kB URL GET HTTP/2 320213.com/static/js/aliyun.min.js
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (32085)
Hash 85e7d42d7ec09184b9bbde78b641ca00
0bc92965c772b460ea1a65468fb2e8baabc7b5d0
5c919aeed13a145644e93be09a3ce46b4e2f241133ac316d61f8c5d2dc59758c
GET /static/js/aliyun.min.js HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-3595f"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 59273
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:15 GMT
date: Tue, 06 Jun 2023 22:53:14 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12370372 2cNN RT(1686091993108 1791) q(0 1 1 -1) r(1 1)
X-Firefox-Spdy: h2
320213.com/static/css/vendor.959b9f4106cb.css
192.230.77.133200 OK 11 kB URL GET HTTP/2 320213.com/static/css/vendor.959b9f4106cb.css
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (45935), with no line terminators
Hash a196c3510d74827e2edaef5fcae81b5d
522ab58aa97dcf9d3c5372327fe1bfc5343fd3e6
03a1e1b5723402e6185e557b2ab04260e1d4aba985a1bb10b6716a3de8fa4b95
GET /static/css/vendor.959b9f4106cb.css HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-b36f"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: text/css
content-length: 10625
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:15 GMT
date: Tue, 06 Jun 2023 22:53:14 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12383815 2cNN RT(1686091993108 1794) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
320213.com/static/css/app.7df8101d7996.css
192.230.77.133200 OK 37 kB URL GET HTTP/2 320213.com/static/css/app.7df8101d7996.css
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (58555)
Hash c9815ca3323746d61329aeead43bb9f2
45bbb4cbf8d67f2894ee0dbac9f650c0fea61e4c
cf1d7429a622291e568c72817773d131b5f1e7590d9725799626267ec10cfaa4
GET /static/css/app.7df8101d7996.css HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-2822a"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: text/css
content-length: 36712
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:15 GMT
date: Tue, 06 Jun 2023 22:53:14 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12386796 2cNN RT(1686091993108 1797) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
320213.com/favicon.ico
192.230.77.133404 Not Found 3.9 kB IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (6974), with CRLF line terminators
Hash b41983328a57f33ea217aecb346760e7
5290221c97bcb7f2c443b28432b1095747cc38fa
53094de77924b4be9cb355648928bf785995044c889589a7a5d08eb034e026ff
GET /favicon.ico HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; ___utmvc=3w/fXE6YVpAwDV6Csfq/mWE8ytGE0SlhDbfHCvem+hYyRHWpnWogVcVaHM5Cvc+lyaUQEqBqduJeamKUmwsgvPK+tRzOBLyJCF2vaflzdU2TJx49KA+SUHk3344p8R3GhmpvHpAKhf7yMiDGx/xB7gLxu8oTfHgYR1K7SsNdrMT/ZRdcrQ1EzSDzPtF42fDby6Mg1M4JIgc7z6PFq9FPpg7RzjeOrEd3zVBmvx9nihwlU/BKrvc6VOgRPWUk0lDX7JZf0r7iWehVNfLmN/jWzWKfDtkHl8YzRtEkXnDtPPpOetkBB4h8OZwjHvJCJpkFlyujz0iYUmHQt+s038gYG2DcN6P7KxiVeoOqjt/p3uxpejEX/axpRFmKvuSUNdfLY0DxSN87gmaAkPnEapp0ZVEsCRglRPpHMiG6Zq5yCIH9qc00wv782lpTlNl6+qdw5oVE5PZbJp4L25/nX6Q5HRpK+IA5iAlfWpLjFP/vb2lh40SQDHNcM0Z3XZt722Ie+qunnua5yLzfE1DRNqzbRnHW7eIkRwqtaexFzQiNCK1I2RD0VyrVHpqnyVNjIUtiGwPCquWR4HbbJo9iFULHw99Kb3+yuNDgT4DnvzGuYvsq+1GJQ+ZRee+HJMnk9PrzJpkCdWGCJ06VGUlkAJfv63cxocTgyNdeM+FHPhGveNhqoWHub79BUEL1HHFfIMh+aq4FnkXkiHmIa1hK7jBt617JulzNrXsdlsmDCIFrQwZKX6kKTqUehG1vtVAWTIGKrS5sxAPSQS2h/qoQKwXAv8vkHV+toRZIBleme14XuaZAQTpnZzIswwY9QCTwoQyY/bNhe5Soh4Sj1yLWJjAe3s2CRghBMN5UB5BPMSqkLimBhOPRlzWmqBpSWwZ+Y72IdyFUZ1IZhCxLFYNU5lpfzC0fA+ndH3oqXFOP/xs0NieeLu51gkXMhcUljVK21grGUh75PpZhbOJHLgDh4S/Ixp1KTS58lW20RQ2Ezxo9zXetyQ6C80NRDIeUXUjhkpH2E9ch+4TvLiOWJ2KGdKzByWg8rc6p+AT52lC81jho1Fawuyo9wgHPMoCG3AlasWrnFPEXsihMr3mjm6+y4ZAITF0k7u2q0SmY9TDdqw6+9fX4IcUCBE0aywqKm77AagtY4N/txdY4iTGgbX9/AWlbUAhuAFk9UNU4HFVTvbXsoHjwhaewGZCtmX7J3Mp/CWQlbZlP0f0Xbmad7mDF42zLa5a5qKL4gaPk4/HPJXu0hngxz494OBOSAQfqzFovT18RbTeDSPfEM3DDgdTaPgU4XeER2XcoILFMWtYMxC7M3pmnRE5wLMB5W2PsHlTMtdnrp7J5bXT+E656JGTwj/iB70zJij+6kM0XzrQFvHQA0v1X1HWC1Qofkh8+VCVFN3Plt7Zin7WQ2ZVdRETJNVbfkHPleZNzBJEghAeN9PU1+3ChQinLG/mhKLYwogWfpOpdzavdtKH9deJJXIu02Z/JKhhamnkpLorjXP8d6Iw4zgR/X8PwhbHKl0Cn/aohabJGMbWfdhHBDltEhfVxvOY1QmHE8us7rko/zrH4FtqZV8/3Nf4T42xmyVL3obuA0At5h2M3tKoe1Hwa+12yN4Q2Y16+nX7FRuju/7uSE4C4wqNd1+a0ddw3UoR+jQViEEM+6Hfqg/P8EqGV+tjYwHbTO08nG1cmOxBHtCpWkhqNuAxu1O4hij+eZ/4PpeOiiyVtXH3Wz9qjci9/zbh4mX/Y6CcQmiI6AOLFJRS9tiLRFqTsTv9cHo9/kfF4zBhS6d1dcTVDBQ+g1seEcH1YJM4kXwrKokD5wJwFOKYe1PggYDsraYp1lu3kV5fWgTrZ/EZLK+/Ovz/qhW9rlhz7ndgqOW6ZEswjsaFTKDYVWi2K3smum0Tt0XNHRJIbl7ljyNaWRfXsCmsL9lv5BmGAg0n6GYbfBamJjZcXFaRR/B3WYMuO5GqY8jTzouefzgo9SD9+EXDuSVbAQfzDmbGAW2ATh+ZZRLNrdDQ/dYhqrTHrQei2Mz/YwhnA1BE2+dPfKxxZN/V6eqaQjGnCjPqV9SmYZDzf/SyZZMz0JK0p+yQ1n4wZWxvkPdJMawenorLpxCLoGkAiThHxlBoRuKhynDLYWrnzYy3JjynNWGtGK8dBHOVb20NB54Di9nlgVHMcjlQwq6cBKlDCD8zQ1O1j78pCLFeuFBNU6D8uv8PoxQXKt/UouSmg9ouA2Mb3AbnXATCDLYlZwikzq678XVQQq4WvPkXXRGLnrjs7+ZhIad17Fux4ekXqCIB8aNuol+wdkvlSAbdq5AQVo6foAIkVK7/YuDPjZeNTvtqUysFIBCWF3j0b/rUnDpQhrSU2bys657swqUU295wnMQvpRkOWudWbjkwFuBIxDpS4QQSHzdh9o+9Mu4O+ApIzIlB0klrwz13QcHzGYU16t8jZNmDCbPO5/FKJ/oLDOUFj5dICiEIQK7x4Kf/q9NhM3ZimJTG+uXfiyYbnP+dN+wfKDj61wLZ6doza2Qd0PV1heZP0OJCA7w2SsUBNA7OLr/gByPlZ4ScOO02qucY/Gpv4xRqbbh+amb1RJZ3aaC8S2yN+fbxVj6WnRwCV/deMjgxVMUD2s+gDx/kfR6aCpLPPsAuGzuYWeG4sGJCT1giKaT2yX+oTiEWZl8Mhqx7gqpiAnuVZS56ks5GBT/kJ16ZXHERbuiL0rk2wk03INY4gLGRpZ2VzdD0xODUyNDgscz05Yzc5N2Q5NjhhYWNhM2FkNmE3NTljOTE4NDg3YTg5Yzg2OTE4MWFmN2ZhNjg5YjI2MTk5ODQ4MjZkN2I2NDhlNjA4YjY2OGQ5NDc5NzI2Zg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: openresty/1.21.4.1
date: Tue, 06 Jun 2023 22:53:15 GMT
content-type: text/html
content-encoding: gzip
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Wed, 31 May 2023 22:59:45 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12389881 NNNY CT(226 456 0) RT(1686091993108 1543) q(0 0 0 -1) r(2 2) U11
X-Firefox-Spdy: h2
320213.com/static/js/0.fbade850a11b795f8b57.js
192.230.77.133200 OK 207 kB URL GET HTTP/2 320213.com/static/js/0.fbade850a11b795f8b57.js
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Size 207 kB (207010 bytes)
Hash fb1df2e0301dee1d0fc27c54bbfa8e48
74e70925e2740d0a4382cdc554c01a4548804b76
8c023b000f935a57b6ac3408e25256981cbcc10c3122d0a3d38ba2c3edf38dcc
GET /static/js/0.fbade850a11b795f8b57.js HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-95153"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 207010
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:15 GMT
date: Tue, 06 Jun 2023 22:53:14 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12370372 2cNN RT(1686091993108 1810) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
320213.com/static/js/6.04d491c77340e0c1de58.js
192.230.77.133200 OK 91 kB URL GET HTTP/2 320213.com/static/js/6.04d491c77340e0c1de58.js
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (64348), with no line terminators
Hash 265b1ec92ec9dd52f496efd51f9721b3
dcb7c1053b0494977d8abeefdb002da0a6d3347a
6ddba30d948193313e185053e62dd534bb0b89a0d81439ead0d48a7142eab9aa
GET /static/js/6.04d491c77340e0c1de58.js HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-4a3b5"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 91400
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:15 GMT
date: Tue, 06 Jun 2023 22:53:14 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12383815 2cNN RT(1686091993108 1813) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
320213.com/static/css/20.fa3afa77219a.css
192.230.77.133200 OK 18 kB URL GET HTTP/2 320213.com/static/css/20.fa3afa77219a.css
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65400), with no line terminators
Hash 01ebbc7f303a4392ea3e8a595ff492bc
9e8368d419185b6e462989258391df9e36f1ed74
05a4b7d977daa0e366862a357be0b66b77d2ae8916a7ca045efc0e07c5551f00
GET /static/css/20.fa3afa77219a.css HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-1239d"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: text/css
content-length: 18127
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:16 GMT
date: Tue, 06 Jun 2023 22:53:15 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-0 0cNN RT(1686091993108 2152) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
320213.com/static/js/20.cdf42703e7bab8ee56e8.js
192.230.77.133200 OK 16 kB URL GET HTTP/2 320213.com/static/js/20.cdf42703e7bab8ee56e8.js
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (54160), with no line terminators
Hash c188a844813bff2f58d95600d47ea52d
8f78eb90b53a9e792914a1214ee2ac87979fad41
05797b8075d215e2e15cffe59ff485b9931d34a36ced384b68557e69b6740de4
GET /static/js/20.cdf42703e7bab8ee56e8.js HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-d9d7"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 15883
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:16 GMT
date: Tue, 06 Jun 2023 22:53:15 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-0 0cNN RT(1686091993108 2154) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
320213.com/static/css/9.e1799f90210d.css
192.230.77.133200 OK 455 B URL GET HTTP/2 320213.com/static/css/9.e1799f90210d.css
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1093), with no line terminators
Hash 07256e30b5ec014b371a28a06cfc1643
a8d066714124c6a6a2ef63abd1ee552953d743ee
458d8bbe231cd034f33cd77790c05d1ded3ce76c4acf73f7776e053888038879
GET /static/css/9.e1799f90210d.css HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-445"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: text/css
content-length: 455
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:16 GMT
date: Tue, 06 Jun 2023 22:53:15 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-0 0cNN RT(1686091993108 2175) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
320213.com/static/js/9.980024635cbdb3d7060a.js
192.230.77.133200 OK 7.3 kB URL GET HTTP/2 320213.com/static/js/9.980024635cbdb3d7060a.js
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (19431), with no line terminators
Hash 9d689ffd084aff518aab12e17785e739
134bd4191b93fe7d0952b01fde326386200aeddb
51b4af84fae01d386cdbc0b0e4032de4b3ef14e50b88867e6f4cd9650dd045c0
GET /static/js/9.980024635cbdb3d7060a.js HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-50ce"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 7309
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:16 GMT
date: Tue, 06 Jun 2023 22:53:15 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-0 0cNN RT(1686091993108 2176) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.66.133 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.66.133:0
Hash e507d72c8514a7a19400f05b1566287b
0d950726071bfb49f2af8a3daaac5dc760c77c4c
e4bcb86222661470777edc8cf5a0c8060a93fa79c775bd99825f8c0b3788ac92
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 10 Jun 2023 19:31:14 GMT
ETag: "0d950726071bfb49f2af8a3daaac5dc760c77c4c"
Last-Modified: Tue, 06 Jun 2023 19:31:15 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 06 Jun 2023 22:53:16 GMT
Age: 2321
X-Served-By: cache-qpg1252-QPG, cache-bma1646-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 37, 1
X-Timer: S1686091996.173591,VS0,VE1
320213.com/v1/management/tenant/getTenantConfig?t=1686091995169
192.230.77.133200 OK 27 kB URL GET HTTP/2 320213.com/v1/management/tenant/getTenantConfig?t=1686091995169
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 1084d2dc3d275beaa74f217433047193
c167ac21f83c8ff99a5b6fd95e3a821ec2c89298
4e1e0742029c5b8080aff614a4a283fd55f806c47378703443997831715a11b6
GET /v1/management/tenant/getTenantConfig?t=1686091995169 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 4-12389857-12389929 NNNY CT(202 408 0) RT(1686091993108 2278) q(0 0 0 -1) r(3 3) U12
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash 2325ae79bf771b860ea9eb135e00aa3f
d17d42b5ef8c6902f192c10b97680d66a660c283
cf1818e392fa3542507d8a6fcafe699d7b7c1a58d8f91518f05186ea229333e7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 22:53:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Jun 2023 02:17:15 GMT
Expires: Sun, 11 Jun 2023 02:17:14 GMT
Etag: "d17d42b5ef8c6902f192c10b97680d66a660c283"
Cache-Control: max-age=357237,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d343b001d9c0b39-OSL
aeis.alicdn.com/AWSC/AWSC/awsc.js?_t=234179
104.110.21.4200 OK 3.9 kB URL GET HTTP/2 aeis.alicdn.com/AWSC/AWSC/awsc.js?_t=234179
IP 104.110.21.4:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerDigiCert Inc
Subjectru.aliexpress.com
FingerprintB0:CC:5C:84:CD:0B:FC:82:E1:6A:C4:16:F5:B5:1E:D9:13:45:6C:3F
ValidityMon, 19 Dec 2022 00:00:00 GMT - Tue, 19 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (11988), with no line terminators
Hash 05ccd82860f1ad63d32696b7b6c0ce14
52090b1208172ff8f4cec5f6454881c61f0e0a2f
bc6b428ea03ce9591b45c8cabfc9489db7e112c55b393c88868de0efe04ceb5a
GET /AWSC/AWSC/awsc.js?_t=234179 HTTP/1.1
Host: aeis.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 3899
x-oss-request-id: 647F9F55EC2CE33435AFF28F
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7512433114953199032
x-oss-storage-class: Standard
content-md5: BczYKGDxrWPTJpa3tsDOFA==
x-oss-server-time: 61
x-source-scheme: https
content-encoding: gzip
ali-swift-global-savetime: 1686085461
x-swift-savetime: Tue, 06 Jun 2023 22:00:58 GMT
x-swift-cachetime: 203
eagleid: 2ff62c9916860888582095437e
cache-control: max-age=4060, s-maxage=3600
expires: Wed, 07 Jun 2023 00:00:56 GMT
date: Tue, 06 Jun 2023 22:53:16 GMT
vary: Accept-Encoding
served-from: 23.36.77.199
network_info: NO_OSLO_50304
timing-allow-origin: *, *
access-control-allow-origin: *
access-control-expose-headers: FW_IP
fw_ip: 104.110.21.4
X-Firefox-Spdy: h2
aeis.alicdn.com/AWSC/WebUMID/1.93.0/um.js
104.110.21.4200 OK 77 kB URL GET HTTP/2 aeis.alicdn.com/AWSC/WebUMID/1.93.0/um.js
IP 104.110.21.4:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerDigiCert Inc
Subjectru.aliexpress.com
FingerprintB0:CC:5C:84:CD:0B:FC:82:E1:6A:C4:16:F5:B5:1E:D9:13:45:6C:3F
ValidityMon, 19 Dec 2022 00:00:00 GMT - Tue, 19 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash a4cff78229e56fde5f28d1999679a1d1
8d8f89aa7d26569337192dce8a12daaa1867bcd4
4c4701ca975df0019b9ce5ffd2a8d33f413bad55663a9f64ba9369da7a444db0
GET /AWSC/WebUMID/1.93.0/um.js HTTP/1.1
Host: aeis.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 77333
x-oss-request-id: 6468E5E961623D31397B5535
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2332966527039349753
x-oss-storage-class: Standard
content-md5: pM/3ginlb95fKNGZlnmh0Q==
x-oss-server-time: 20
x-source-scheme: https
content-encoding: gzip
ali-swift-global-savetime: 1684596201
x-swift-savetime: Sat, 20 May 2023 15:23:29 GMT
x-swift-cachetime: 86392
eagleid: 2ff62c9716845962097947285e
served-from: 47.246.44.230
cache-control: max-age=1096283, s-maxage=86400
expires: Mon, 19 Jun 2023 15:24:39 GMT
date: Tue, 06 Jun 2023 22:53:16 GMT
vary: Accept-Encoding
network_info: NO_OSLO_50304
timing-allow-origin: *, *
access-control-allow-origin: *
access-control-expose-headers: FW_IP
fw_ip: 104.110.21.4
X-Firefox-Spdy: h2
aeis.alicdn.com/AWSC/uab/1.140.0/collina.js
104.110.21.4200 OK 119 kB URL GET HTTP/2 aeis.alicdn.com/AWSC/uab/1.140.0/collina.js
IP 104.110.21.4:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerDigiCert Inc
Subjectru.aliexpress.com
FingerprintB0:CC:5C:84:CD:0B:FC:82:E1:6A:C4:16:F5:B5:1E:D9:13:45:6C:3F
ValidityMon, 19 Dec 2022 00:00:00 GMT - Tue, 19 Dec 2023 23:59:59 GMT
Size 119 kB (119440 bytes)
Hash 75fb6b94dcb3a9c89abb59a3ffd7546f
96101820857ef511ba83017e928aeeb88353b162
04975704505b42dc124568d9d4be26aee2d4592826a0487920cb1d016d1a8e58
GET /AWSC/uab/1.140.0/collina.js HTTP/1.1
Host: aeis.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 119440
x-oss-request-id: 6464CEB6B0E0E7333712CD38
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17940526130122019226
x-oss-storage-class: Standard
content-md5: dftrlNyzqciau1mj/9dUbw==
x-oss-server-time: 6
x-source-scheme: https
content-encoding: gzip
ali-swift-global-savetime: 1684328118
x-swift-savetime: Wed, 17 May 2023 18:04:24 GMT
x-swift-cachetime: 67854
eagleid: 2ff62c9b16843466639526205e
served-from: 23.36.77.237
cache-control: max-age=828053, s-maxage=86400
expires: Fri, 16 Jun 2023 12:54:09 GMT
date: Tue, 06 Jun 2023 22:53:16 GMT
vary: Accept-Encoding
network_info: NO_OSLO_50304
timing-allow-origin: *, *
access-control-allow-origin: *
access-control-expose-headers: FW_IP
fw_ip: 104.110.21.4
X-Firefox-Spdy: h2
images.ppa029sdfjshsjkdhksdhjhdu3.com/system/pc/login/loginBg.png
20.24.81.156 20 kB URL GET images.ppa029sdfjshsjkdhksdhjhdu3.com/system/pc/login/loginBg.png
IP 20.24.81.156:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject*.ppa022cjklwmkksldjuhnb3llc.com
Fingerprint5E:84:56:51:5C:A7:35:6E:52:FF:61:41:60:CB:2C:13:95:97:9F:00
ValidityWed, 07 Sep 2022 00:00:00 GMT - Thu, 07 Sep 2023 23:59:59 GMT
File type PNG image data, 312 x 234, 8-bit/color RGBA, non-interlaced\012- data
Hash f14a9c8be2d83922e4ae691801825839
7198fc446609a5aea6e916a81c0895f1fc6c6f85
1a020a93ee5dbf562e6ad700e33935e156d1705d1cc42b6574dca17b1ec36e43
GET /system/pc/login/loginBg.png HTTP/1.1
Host: images.ppa029sdfjshsjkdhksdhjhdu3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 22:53:16 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 18 Oct 2016 16:57:42 GMT
ETag: W/"0477fbd6029d21:0"
X-Powered-By: ASP.NET
Expires: Wed, 07 Jun 2023 22:53:16 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Cache-Control: max-age=86400, max-age=315360000000
X-Cache: HIT
Content-Encoding: gzip
ocsp.sectigo.com/
104.18.15.101 472 B IP 104.18.15.101:0
Hash 2325ae79bf771b860ea9eb135e00aa3f
d17d42b5ef8c6902f192c10b97680d66a660c283
cf1818e392fa3542507d8a6fcafe699d7b7c1a58d8f91518f05186ea229333e7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 22:53:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Jun 2023 02:17:15 GMT
Expires: Sun, 11 Jun 2023 02:17:14 GMT
Etag: "d17d42b5ef8c6902f192c10b97680d66a660c283"
Cache-Control: max-age=357237,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d343b010ce4b509-OSL
images.ppa029sdfjshsjkdhksdhjhdu3.com/pro-management/zghcp/1675256697589.png?349677
20.24.81.156200 OK 3.3 kB URL GET HTTP/1.1 images.ppa029sdfjshsjkdhksdhjhdu3.com/pro-management/zghcp/1675256697589.png?349677
IP 20.24.81.156:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject*.ppa022cjklwmkksldjuhnb3llc.com
Fingerprint5E:84:56:51:5C:A7:35:6E:52:FF:61:41:60:CB:2C:13:95:97:9F:00
ValidityWed, 07 Sep 2022 00:00:00 GMT - Thu, 07 Sep 2023 23:59:59 GMT
File type PNG image data, 200 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash e073d651a77c0ac5870b927ecd25619e
59696d9aed4351bb0d839201bd188ff65392caf9
01c07b10e80f6a81f0c7c9aa4a6f71a40215cbf5addf3a1522b58bb8f7ee0446
GET /pro-management/zghcp/1675256697589.png?349677 HTTP/1.1
Host: images.ppa029sdfjshsjkdhksdhjhdu3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 22:53:16 GMT
Content-Type: application/octet-stream
Content-Length: 3322
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Wed, 01 Feb 2023 13:01:05 GMT
ETag: "e073d651a77c0ac5870b927ecd25619e"
x-amz-request-id: tx00000000000018d36e838-00647fb786-106b-default
Cache-Control: max-age=600
320213.com/src/img/favicon.267ace1.png
192.230.77.133200 OK 22 kB URL GET HTTP/2 320213.com/src/img/favicon.267ace1.png
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
Hash dd65526efc7ea50329dcdea89e1e18e1
76e881e507b9fba99ceffa1ee5c8352f1b446a49
405aae8713cde03f61d8c439bf3582681397ae3eae388fe93f6fb1d20829b65d
GET /src/img/favicon.267ace1.png HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; ___utmvc=3w/fXE6YVpAwDV6Csfq/mWE8ytGE0SlhDbfHCvem+hYyRHWpnWogVcVaHM5Cvc+lyaUQEqBqduJeamKUmwsgvPK+tRzOBLyJCF2vaflzdU2TJx49KA+SUHk3344p8R3GhmpvHpAKhf7yMiDGx/xB7gLxu8oTfHgYR1K7SsNdrMT/ZRdcrQ1EzSDzPtF42fDby6Mg1M4JIgc7z6PFq9FPpg7RzjeOrEd3zVBmvx9nihwlU/BKrvc6VOgRPWUk0lDX7JZf0r7iWehVNfLmN/jWzWKfDtkHl8YzRtEkXnDtPPpOetkBB4h8OZwjHvJCJpkFlyujz0iYUmHQt+s038gYG2DcN6P7KxiVeoOqjt/p3uxpejEX/axpRFmKvuSUNdfLY0DxSN87gmaAkPnEapp0ZVEsCRglRPpHMiG6Zq5yCIH9qc00wv782lpTlNl6+qdw5oVE5PZbJp4L25/nX6Q5HRpK+IA5iAlfWpLjFP/vb2lh40SQDHNcM0Z3XZt722Ie+qunnua5yLzfE1DRNqzbRnHW7eIkRwqtaexFzQiNCK1I2RD0VyrVHpqnyVNjIUtiGwPCquWR4HbbJo9iFULHw99Kb3+yuNDgT4DnvzGuYvsq+1GJQ+ZRee+HJMnk9PrzJpkCdWGCJ06VGUlkAJfv63cxocTgyNdeM+FHPhGveNhqoWHub79BUEL1HHFfIMh+aq4FnkXkiHmIa1hK7jBt617JulzNrXsdlsmDCIFrQwZKX6kKTqUehG1vtVAWTIGKrS5sxAPSQS2h/qoQKwXAv8vkHV+toRZIBleme14XuaZAQTpnZzIswwY9QCTwoQyY/bNhe5Soh4Sj1yLWJjAe3s2CRghBMN5UB5BPMSqkLimBhOPRlzWmqBpSWwZ+Y72IdyFUZ1IZhCxLFYNU5lpfzC0fA+ndH3oqXFOP/xs0NieeLu51gkXMhcUljVK21grGUh75PpZhbOJHLgDh4S/Ixp1KTS58lW20RQ2Ezxo9zXetyQ6C80NRDIeUXUjhkpH2E9ch+4TvLiOWJ2KGdKzByWg8rc6p+AT52lC81jho1Fawuyo9wgHPMoCG3AlasWrnFPEXsihMr3mjm6+y4ZAITF0k7u2q0SmY9TDdqw6+9fX4IcUCBE0aywqKm77AagtY4N/txdY4iTGgbX9/AWlbUAhuAFk9UNU4HFVTvbXsoHjwhaewGZCtmX7J3Mp/CWQlbZlP0f0Xbmad7mDF42zLa5a5qKL4gaPk4/HPJXu0hngxz494OBOSAQfqzFovT18RbTeDSPfEM3DDgdTaPgU4XeER2XcoILFMWtYMxC7M3pmnRE5wLMB5W2PsHlTMtdnrp7J5bXT+E656JGTwj/iB70zJij+6kM0XzrQFvHQA0v1X1HWC1Qofkh8+VCVFN3Plt7Zin7WQ2ZVdRETJNVbfkHPleZNzBJEghAeN9PU1+3ChQinLG/mhKLYwogWfpOpdzavdtKH9deJJXIu02Z/JKhhamnkpLorjXP8d6Iw4zgR/X8PwhbHKl0Cn/aohabJGMbWfdhHBDltEhfVxvOY1QmHE8us7rko/zrH4FtqZV8/3Nf4T42xmyVL3obuA0At5h2M3tKoe1Hwa+12yN4Q2Y16+nX7FRuju/7uSE4C4wqNd1+a0ddw3UoR+jQViEEM+6Hfqg/P8EqGV+tjYwHbTO08nG1cmOxBHtCpWkhqNuAxu1O4hij+eZ/4PpeOiiyVtXH3Wz9qjci9/zbh4mX/Y6CcQmiI6AOLFJRS9tiLRFqTsTv9cHo9/kfF4zBhS6d1dcTVDBQ+g1seEcH1YJM4kXwrKokD5wJwFOKYe1PggYDsraYp1lu3kV5fWgTrZ/EZLK+/Ovz/qhW9rlhz7ndgqOW6ZEswjsaFTKDYVWi2K3smum0Tt0XNHRJIbl7ljyNaWRfXsCmsL9lv5BmGAg0n6GYbfBamJjZcXFaRR/B3WYMuO5GqY8jTzouefzgo9SD9+EXDuSVbAQfzDmbGAW2ATh+ZZRLNrdDQ/dYhqrTHrQei2Mz/YwhnA1BE2+dPfKxxZN/V6eqaQjGnCjPqV9SmYZDzf/SyZZMz0JK0p+yQ1n4wZWxvkPdJMawenorLpxCLoGkAiThHxlBoRuKhynDLYWrnzYy3JjynNWGtGK8dBHOVb20NB54Di9nlgVHMcjlQwq6cBKlDCD8zQ1O1j78pCLFeuFBNU6D8uv8PoxQXKt/UouSmg9ouA2Mb3AbnXATCDLYlZwikzq678XVQQq4WvPkXXRGLnrjs7+ZhIad17Fux4ekXqCIB8aNuol+wdkvlSAbdq5AQVo6foAIkVK7/YuDPjZeNTvtqUysFIBCWF3j0b/rUnDpQhrSU2bys657swqUU295wnMQvpRkOWudWbjkwFuBIxDpS4QQSHzdh9o+9Mu4O+ApIzIlB0klrwz13QcHzGYU16t8jZNmDCbPO5/FKJ/oLDOUFj5dICiEIQK7x4Kf/q9NhM3ZimJTG+uXfiyYbnP+dN+wfKDj61wLZ6doza2Qd0PV1heZP0OJCA7w2SsUBNA7OLr/gByPlZ4ScOO02qucY/Gpv4xRqbbh+amb1RJZ3aaC8S2yN+fbxVj6WnRwCV/deMjgxVMUD2s+gDx/kfR6aCpLPPsAuGzuYWeG4sGJCT1giKaT2yX+oTiEWZl8Mhqx7gqpiAnuVZS56ks5GBT/kJ16ZXHERbuiL0rk2wk03INY4gLGRpZ2VzdD0xODUyNDgscz05Yzc5N2Q5NjhhYWNhM2FkNmE3NTljOTE4NDg3YTg5Yzg2OTE4MWFmN2ZhNjg5YjI2MTk5ODQ4MjZkN2I2NDhlNjA4YjY2OGQ5NDc5NzI2Zg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Tue, 06 Jun 2023 22:53:15 GMT
content-type: text/html
last-modified: Fri, 26 May 2023 03:27:26 GMT
etag: W/"6470271e-fbd"
content-encoding: gzip
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Wed, 31 May 2023 22:59:45 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12386798 2NNN RT(1686091993108 1542) q(0 0 0 -1) r(8 8) U12
X-Firefox-Spdy: h2
images.ppa029sdfjshsjkdhksdhjhdu3.com/game/1578637842482.png
20.24.81.156 371 kB URL GET images.ppa029sdfjshsjkdhksdhjhdu3.com/game/1578637842482.png
IP 20.24.81.156:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject*.ppa022cjklwmkksldjuhnb3llc.com
Fingerprint5E:84:56:51:5C:A7:35:6E:52:FF:61:41:60:CB:2C:13:95:97:9F:00
ValidityWed, 07 Sep 2022 00:00:00 GMT - Thu, 07 Sep 2023 23:59:59 GMT
File type PNG image data, 2990 x 566, 8-bit colormap, non-interlaced\012- data
Size 371 kB (370952 bytes)
Hash a366792ce69457744b882318850cefe2
5b078849d41e40f9d2c6dba6b821a04a9c0c35b9
faa00bbd3a46b12e4205da06089f1f4d489f01ab874caee4cd5d6c9c37203842
GET /game/1578637842482.png HTTP/1.1
Host: images.ppa029sdfjshsjkdhksdhjhdu3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 22:53:17 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 27 Jan 2020 07:29:14 GMT
ETag: W/"0819879e3d4d51:0"
X-Powered-By: ASP.NET
Expires: Wed, 07 Jun 2023 22:53:17 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Cache-Control: max-age=86400, max-age=315360000000
X-Cache: HIT
Content-Encoding: gzip
ocsp2.globalsign.com/gsorganizationvalsha2g3
151.101.66.133 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 151.101.66.133:0
Hash 2dcca5ca40f9f05b651c3ab12559ffcf
ca23a14ae2387e9faa8d8736a54249c82c50e981
de890760876f54d9d816666f8af7befe6f39b7a73e876bab670d75107b4b95d8
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1461
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 10 Jun 2023 19:20:15 GMT
ETag: "ca23a14ae2387e9faa8d8736a54249c82c50e981"
Last-Modified: Tue, 06 Jun 2023 19:20:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 06 Jun 2023 22:53:18 GMT
Age: 3468
X-Served-By: cache-qpg1226-QPG, cache-bma1646-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 22, 2
X-Timer: S1686091998.276334,VS0,VE0
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.66.133 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.66.133:0
Hash f417006f22bec17bc76911da3cfbc568
3327b0d26f10467bd9f5e04cfb3115c43e5d33ae
5cb30cb3dd20a4e94912b380dece3b08e1e408a0d28cb2b8a41721df7f0df7ad
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 10 Jun 2023 22:14:40 GMT
ETag: "3327b0d26f10467bd9f5e04cfb3115c43e5d33ae"
Last-Modified: Tue, 06 Jun 2023 22:14:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 06 Jun 2023 22:53:18 GMT
Age: 2317
X-Served-By: cache-qpg1250-QPG, cache-bma1646-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 57, 1
X-Timer: S1686091998.291076,VS0,VE1
static.ppa029sdfjshsjkdhksdhjhdu3.com/ico/zghcp.ico
13.75.115.235200 OK 1.6 kB URL GET HTTP/1.1 static.ppa029sdfjshsjkdhksdhjhdu3.com/ico/zghcp.ico
IP 13.75.115.235:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject*.ppa022cjklwmkksldjuhnb3llc.com
Fingerprint5E:84:56:51:5C:A7:35:6E:52:FF:61:41:60:CB:2C:13:95:97:9F:00
ValidityWed, 07 Sep 2022 00:00:00 GMT - Thu, 07 Sep 2023 23:59:59 GMT
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash fbab93a333ba620cc0c53190540c3ae8
ebd68313eac25954b431492428976ae4cb2788ae
d1e12df4932ef28e4bf59ffdfd447abd80501dc9ab2db137d5d1ebe02f449367
GET /ico/zghcp.ico HTTP/1.1
Host: static.ppa029sdfjshsjkdhksdhjhdu3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 22:53:18 GMT
Content-Type: image/x-icon
Content-Length: 1612
Last-Modified: Wed, 01 Feb 2023 10:29:11 GMT
Connection: keep-alive
ETag: "63da3ef7-64c"
Expires: Thu, 06 Jul 2023 22:53:18 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ynuf.aliapp.org/w/wu.json
203.119.169.44200 OK 156 B URL GET HTTP/2 ynuf.aliapp.org/w/wu.json
IP 203.119.169.44:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by https://320213.com/register?id=32483556
Certificate IssuerGlobalSign nv-sa
Subject*.alibabacorp.com
Fingerprint21:4B:26:A9:58:52:03:EC:07:38:66:00:3B:39:33:F3:9B:56:E7:16
ValidityWed, 12 Apr 2023 23:17:04 GMT - Mon, 13 May 2024 23:11:02 GMT
Hash b965457cc6ad0e0300b4eecee666e06e
8e8fd81840aee49084c85815139e40481baceaa0
ef5950b8c4ae246b2171bcb12cb5eae340675756e0beb655f68bbd74bc65da94
GET /w/wu.json HTTP/1.1
Host: ynuf.aliapp.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 22:53:18 GMT
content-type: text/javascript;charset=utf-8
content-length: 156
x-application-context: umid-web:cn-prod:7001
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Accept,X-PINGARUNER,CONTENT-TYPE,X-Requested-With
etag: G1569D0A4ACFF56661627487BD96B34C55981F2E541326025B2
cache-control: no-cache
set-cookie: cbc=G7891BBD1D25A6857A6F25333CD1B1510F818C5A018EAD9ABD2; Max-Age=31536000; Expires=Wed, 05-Jun-2024 22:53:18 GMT; Domain=ynuf.aliapp.org; Path=/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
server: Tengine/Aserver
eagleeye-traceid: 213e213916860919987632557ef8ce
timing-allow-origin: *
X-Firefox-Spdy: h2
cf.aliyun.com/nocaptcha/initialize.jsonp?a=FFFF0N0000000000B3B5&t=FFFF0N0000000000B3B5%3A1686091995809%3A0.26129204902044945&scene=nc_login&lang=cn&v=v1.2.18&href=https%3A%2F%2F320213.com%2Fregister&comm={}&callback=initializeJsonp_08392262017992762
203.119.146.33200 OK 94 B URL GET HTTP/2 cf.aliyun.com/nocaptcha/initialize.jsonp?a=FFFF0N0000000000B3B5&t=FFFF0N0000000000B3B5%3A1686091995809%3A0.26129204902044945&scene=nc_login&lang=cn&v=v1.2.18&href=https%3A%2F%2F320213.com%2Fregister&comm={}&callback=initializeJsonp_08392262017992762
IP 203.119.146.33:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by https://320213.com/register?id=32483556
Certificate IssuerGlobalSign nv-sa
Subject*.aliyun.com
Fingerprint8A:02:46:A2:F6:AA:51:BB:C9:D3:2A:13:53:E3:E6:3D:00:37:A9:DA
ValidityThu, 17 Nov 2022 03:21:03 GMT - Tue, 19 Dec 2023 02:11:06 GMT
File type ASCII text, with no line terminators
Hash 33d11ef3805418f922056abeafa6d55e
1923554abdabb2b2c185afd382cd72ff21633ef8
34de56e8c2786e1e92804601daa509ec11d13122ac8bfea8d3e29d27ff07c2ab
GET /nocaptcha/initialize.jsonp?a=FFFF0N0000000000B3B5&t=FFFF0N0000000000B3B5%3A1686091995809%3A0.26129204902044945&scene=nc_login&lang=cn&v=v1.2.18&href=https%3A%2F%2F320213.com%2Fregister&comm={}&callback=initializeJsonp_08392262017992762 HTTP/1.1
Host: cf.aliyun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 22:53:19 GMT
content-type: text/javascript;charset=UTF-8
content-length: 94
content-language: zh-CN
server: Tengine/Aserver
eagleeye-traceid: 2150411c16860919991517607ef56a
strict-transport-security: max-age=0
timing-allow-origin: *
X-Firefox-Spdy: h2
ynuf.aliapp.org/service/um.json
203.119.169.44200 OK 136 B URL POST HTTP/2 ynuf.aliapp.org/service/um.json
IP 203.119.169.44:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by https://320213.com/register?id=32483556
Certificate IssuerGlobalSign nv-sa
Subject*.alibabacorp.com
Fingerprint21:4B:26:A9:58:52:03:EC:07:38:66:00:3B:39:33:F3:9B:56:E7:16
ValidityWed, 12 Apr 2023 23:17:04 GMT - Mon, 13 May 2024 23:11:02 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash cdf8c6fde0d8c3073f2c6c0d27756eb8
97ce559dec0008e36f6641456192e71f13807660
c5454e43b345047ade625ca67325908c3e2c62dd53743721b13e94d28f930bd5
POST /service/um.json HTTP/1.1
Host: ynuf.aliapp.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 675
Origin: https://320213.com
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Jun 2023 22:53:19 GMT
content-type: text/plain;charset=UTF-8
content-length: 136
x-application-context: umid-web:cn-prod:7001
access-control-allow-origin: https://320213.com
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Accept,X-PINGARUNER,CONTENT-TYPE,X-Requested-With
set-cookie: umdata_=G33DC77F47CE379BB25741DDF2D271A22EB909B649CA2FF778A; Max-Age=31536000; Expires=Wed, 05-Jun-2024 22:53:19 GMT; Domain=ynuf.aliapp.org; Path=/
p3p: CP=IVAa PSAa
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
server: Tengine/Aserver
eagleeye-traceid: 213e213916860919996552640ef8ce
timing-allow-origin: *
X-Firefox-Spdy: h2
320213.com/static/public/need/layer.css
192.230.77.133200 OK 3.7 kB URL GET HTTP/2 320213.com/static/public/need/layer.css
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (3701), with no line terminators
Hash 42f69c087e51045a8a3c7cd673035bac
e8f0e6c08d06438f21a4293f4824615adf1b739d
56f78048287d433001c7733ad944f0a4ef94f3a06e8f8958a7ddf86644c8ec44
GET /static/public/need/layer.css HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: W/"6470271e-e53"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: text/css
content-length: 1205
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:15 GMT
date: Tue, 06 Jun 2023 22:53:14 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12386796 2cNN RT(1686091993108 1775) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
320213.com/register?id=32483556
192.230.77.133200 OK 4.2 kB URL User Request GET HTTP/2 320213.com/register?id=32483556
IP 192.230.77.133:443
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4231), with no line terminators
Hash 4a5ebba70399b149be814eb6eae31b93
01431b37058f63a9660e160ad0d80327cc35235d
a8ce4287bb32167406759c587e1bc9374b91d3e4b4b1ccf1d8401438b93ace27
GET /register?id=32483556 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://fileapi.gyaott.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Tue, 06 Jun 2023 22:53:14 GMT
content-type: text/html
last-modified: Fri, 26 May 2023 03:27:26 GMT
etag: W/"6470271e-fbd"
content-encoding: gzip
set-cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; expires=Tue, 04 Jun 2024 23:14:02 GMT; HttpOnly; path=/; Domain=.320213.com
nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; path=/; Domain=.320213.com
incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; path=/; Domain=.320213.com
x-cdn: Imperva
x-iinfo: 4-12389857-12389859 NNNN CT(203 410 0) RT(1686091993108 15) q(0 0 6 0) r(8 8) U12
X-Firefox-Spdy: h2
320213.com/v1/betting/getServerTimeMillisecond?t=1686091995126
192.230.77.133200 OK 58 B URL GET HTTP/2 320213.com/v1/betting/getServerTimeMillisecond?t=1686091995126
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Hash ea8c96a1fdce1e28506f1facdb1e9479
5fcb8e70289d9584c49dba75d5baa1bc7fbb8882
f058296ff8957570b8526b0f2e3fe9d648521dd97c2ccb27a4090365fd6b74d0
GET /v1/betting/getServerTimeMillisecond?t=1686091995126 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 4-12389857-12389927 NNNY CT(204 412 0) RT(1686091993108 2193) q(0 0 0 -1) r(3 3) U12
X-Firefox-Spdy: h2
320213.com/v1/report/tenantReport/getAvgOptTime?t=1686091995228
192.230.77.133200 OK 72 B URL GET HTTP/2 320213.com/v1/report/tenantReport/getAvgOptTime?t=1686091995228
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Hash 690fd06bf0d37ebdbc4e0a9dd7adb63b
45b4d6b707b5753859840df90dd22796c1a64dad
9c0bc5de8f0f4b2e72536c78805c3c484cf9fd8a8bd15b02b7dd1cf40c44137f
GET /v1/report/tenantReport/getAvgOptTime?t=1686091995228 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 4-12389857-12389925 PNNy RT(1686091993108 2298) q(0 2 2 -1) r(5 5) U12
X-Firefox-Spdy: h2
images.ppa029sdfjshsjkdhksdhjhdu3.com/system/common/other/rechargepc.png
0.0.0.0 0 B URL GET images.ppa029sdfjshsjkdhksdhjhdu3.com/system/common/other/rechargepc.png
IP 0.0.0.0:0
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject*.ppa022cjklwmkksldjuhnb3llc.com
Fingerprint5E:84:56:51:5C:A7:35:6E:52:FF:61:41:60:CB:2C:13:95:97:9F:00
ValidityWed, 07 Sep 2022 00:00:00 GMT - Thu, 07 Sep 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /system/common/other/rechargepc.png HTTP/1.1
Host: images.ppa029sdfjshsjkdhksdhjhdu3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 22:53:16 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 08 Dec 2020 07:23:32 GMT
ETag: W/"07248833cdd61:0"
X-Powered-By: ASP.NET
Expires: Wed, 07 Jun 2023 22:53:16 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Cache-Control: max-age=86400, max-age=315360000000
X-Cache: HIT
Content-Encoding: gzip
320213.com/v1/management/content/getIntroductionList?t=1686091995224
192.230.77.133200 OK 815 B URL GET HTTP/2 320213.com/v1/management/content/getIntroductionList?t=1686091995224
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (895), with no line terminators
Hash 4226f01978c327448a1e75a2ffd7d4d8
6c130d82d7845b1066514c836053360b5f487535
7990226ccfcba97419496f59fe5a73b62861427e61d787036b8f6ca9edfd9f92
GET /v1/management/content/getIntroductionList?t=1686091995224 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 4-12389857-12389935 NNNN CT(227 227 0) RT(1686091993108 2293) q(0 0 5 -1) r(8 8) U12
X-Firefox-Spdy: h2
320213.com/v1/users/getAliyunAppKey?t=1686091995227
192.230.77.133200 OK 61 B URL GET HTTP/2 320213.com/v1/users/getAliyunAppKey?t=1686091995227
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Hash 3f96a15a76cb0c794e32492db279a737
91856ffce5fd1375ef6563c5ee8cc67774aeaf59
f135baf1a0c4f59375916c9c2932e816dfe0275a9c34cdbe3b91e15a84c784e3
GET /v1/users/getAliyunAppKey?t=1686091995227 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 4-12389857-12389927 PNNy RT(1686091993108 2296) q(0 2 2 -1) r(5 5) U12
X-Firefox-Spdy: h2
320213.com/v1/users/announcement/content?t=1686091995807&id=117746
192.230.77.133200 OK 897 B URL GET HTTP/2 320213.com/v1/users/announcement/content?t=1686091995807&id=117746
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (803), with no line terminators
Hash c24daa5ed600b98ad26fe8093c0f2a89
4108f7fa6ee629722ff9e494a29cf1165b476e30
11ae9ba8e6cc80c3a44e7e898a8b6c2343a2a8f4757b8a6439c4da5d2a5dc4be
GET /v1/users/announcement/content?t=1686091995807&id=117746 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 4-12389857-12389925 PNNy RT(1686091993108 2860) q(0 0 0 -1) r(3 3) U12
X-Firefox-Spdy: h2
320213.com/static/js/manifest.bd1c3404b2dcce0589be.js
192.230.77.133200 OK 7.0 kB URL GET HTTP/2 320213.com/static/js/manifest.bd1c3404b2dcce0589be.js
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (7384), with no line terminators
Hash b2afa0471287935b28f5e7af37aa51c6
4b8b781d6446a89350f691367c03b45c04e90709
f7ba1e83ab115da65a2fe2e33b172ae7fcc7619cc6063c9b38e397dc4490012d
GET /static/js/manifest.bd1c3404b2dcce0589be.js HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: W/"6470271e-1b3e"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 3744
content-encoding: gzip
cache-control: max-age=1, public
expires: Tue, 06 Jun 2023 22:53:15 GMT
date: Tue, 06 Jun 2023 22:53:14 GMT
x-cdn: Imperva
x-iinfo: 4-12389857-12386796 2cNN RT(1686091993108 1806) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
320213.com/v1/statistics/push
192.230.77.133200 OK 43 B URL POST HTTP/2 320213.com/v1/statistics/push
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Hash 88f5d81d282db05ba087420dd56bcfc7
4e8326cb4f2e39bfb2ef07a64b11e6c817cd4dda
f77cddfc101160c163bc59fc27fb3ab62cd46f9907d28f795a79e7920a06c400
POST /v1/statistics/push HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
X-Token:
Content-Length: 180
Origin: https://320213.com
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Tue, 06 Jun 2023 22:53:15 GMT
content-type: application/json;charset=UTF-8
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 4-12389857-12389881 PNNy RT(1686091993108 2189) q(0 0 0 -1) r(4 4) U6
X-Firefox-Spdy: h2
320213.com/v1/management/tenant/getTenantConfig?t=1686091995112
192.230.77.133200 OK 1.7 kB URL GET HTTP/2 320213.com/v1/management/tenant/getTenantConfig?t=1686091995112
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1783), with no line terminators
Hash b8d0e267ea74be8364ab3224d5762e9c
c0272e1ae2890d6a60e1a6bc685987d31cf4cea0
6756aee30e9e82486cf64dfc9a634a51ddb7ff8394c69c0c27638ed7f1ce6958
GET /v1/management/tenant/getTenantConfig?t=1686091995112 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 4-12389857-12389925 NNNY CT(226 455 0) RT(1686091993108 2192) q(0 1 1 -1) r(4 4) U12
X-Firefox-Spdy: h2
320213.com/v1/management/tenant/getTenantConfig?t=1686091995102
192.230.77.133200 OK 1.7 kB URL GET HTTP/2 320213.com/v1/management/tenant/getTenantConfig?t=1686091995102
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1783), with no line terminators
Hash b8d0e267ea74be8364ab3224d5762e9c
c0272e1ae2890d6a60e1a6bc685987d31cf4cea0
6756aee30e9e82486cf64dfc9a634a51ddb7ff8394c69c0c27638ed7f1ce6958
GET /v1/management/tenant/getTenantConfig?t=1686091995102 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 4-12389857-12389859 PNNN RT(1686091993108 2191) q(0 0 0 -1) r(3 3) U12
X-Firefox-Spdy: h2
320213.com/v1/users/announcement/list?t=1686091995226&pageSize=20&pageNum=1
192.230.77.133200 OK 671 B URL GET HTTP/2 320213.com/v1/users/announcement/list?t=1686091995226&pageSize=20&pageNum=1
IP 192.230.77.133:443
Requested by https://320213.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (723), with no line terminators
Hash d12435bf2dc0894f60d842e26dc094b3
700c29c3914d32658b010febb2f9ee6d908b7831
2fdfde2ec146585c44024ccc0f278f78e2fe387ea8a568e00e1e171368caba16
GET /v1/users/announcement/list?t=1686091995226&pageSize=20&pageNum=1 HTTP/1.1
Host: 320213.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://320213.com/register?id=32483556
Cookie: visid_incap_2930546=QzUYMqsWRCe33Am5LIRj0tm4f2QAAAAAQUIPAAAAAACKeTMN9PRmB8bYNUiFfPO7; nlbi_2930546=AB1WHTbM9xoP6IVlqVQjrgAAAAA/Q7JJm6apSatFSCaCkbrT; incap_ses_720_2930546=w8y2Ap0rv0BDUmU9JvX9Cdm4f2QAAAAA0oxm0ELqhbUwnVZMW9SiAw==; _uab_collina=168609199483717365597581
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 4-12389857-12389859 PNNN RT(1686091993108 2295) q(0 1 1 -1) r(4 4) U12
X-Firefox-Spdy: h2
at.alicdn.com/t/font_2430878_tju82v96qxe.woff2
47.246.44.252200 OK 26 kB URL GET HTTP/2 at.alicdn.com/t/font_2430878_tju82v96qxe.woff2
IP 47.246.44.252:443
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by https://320213.com/register?id=32483556
Certificate IssuerGlobalSign nv-sa
Subject*.tbcdn.cn
Fingerprint62:88:3B:F1:01:21:46:73:DD:01:B6:4D:D1:6A:68:18:8A:B4:B6:B1
ValidityFri, 22 Jul 2022 07:30:04 GMT - Sun, 06 Aug 2023 03:46:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 25988, version 1.0\012- data
Hash 3d929f77d857dddcd6066bad750bb277
259fd1976fdb8f8e8d354d32b5e7681e3db01341
92edafbe3372b0e72089ee25f8665470b7ee8d4df2250cb96c159d6c1153dbdd
GET /t/font_2430878_tju82v96qxe.woff2 HTTP/1.1
Host: at.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://320213.com
DNT: 1
Connection: keep-alive
Referer: https://320213.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: font/woff2
content-length: 25988
date: Sun, 04 Jun 2023 17:15:27 GMT
x-oss-request-id: 647CC6AF59DE0D3933242EE5
vary: Origin
accept-ranges: bytes
etag: "3D929F77D857DDDCD6066BAD750BB277"
last-modified: Fri, 24 Dec 2021 22:12:00 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7241217540761008470
x-oss-storage-class: Standard
cache-control: max-age=63072000
content-md5: PZKfd9hX3dzWBmutdQuydw==
x-oss-server-time: 1
ali-swift-global-savetime: 1685898927
via: cache24.l2us1[0,0,200-0,H], cache3.l2us1[1,0], cache8.se1[0,0,200-0,H], cache1.se1[1,0]
age: 193069
x-cache: HIT TCP_MEM_HIT dirn:11:309902367
x-swift-savetime: Mon, 05 Jun 2023 07:11:41 GMT
x-swift-cachetime: 31053826
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516860919961785548e
X-Firefox-Spdy: h2