r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e717435470c9f4f06b174d7100c6a98f
292150251495b243c384e0c676a258597ba7f4d8
91ce8257662cb8cea9cc3c74cda1d95dba421daa466b0ac231fa433e0c58e6c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "91CE8257662CB8CEA9CC3C74CDA1D95DBA421DAA466B0AC231FA433E0C58E6C6"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19255
Expires: Thu, 29 Dec 2022 02:51:13 GMT
Date: Wed, 28 Dec 2022 21:30:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 259d3eba2ac4ea32f0410a59bd01c18a
ab02cd69e6c04e3842ad1778fb0daa6d0e86fddc
0d6ec941dac6d97a0b24c0cf00a5642a4edda68ae5ec8b3019d1ec05f40d2281
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D6EC941DAC6D97A0B24C0CF00A5642A4EDDA68AE5EC8B3019D1EC05F40D2281"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17877
Expires: Thu, 29 Dec 2022 02:28:15 GMT
Date: Wed, 28 Dec 2022 21:30:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 28 Dec 2022 20:46:48 GMT
content-type: application/json
age: 2610
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 07e619a5a572fa9bcb54fa70de27f0d4
c0499dcc7551831f517f189465812859d0f48ced
2213c856ce4dd64ebe28e4deff34d449b2c08be98565c0405427453ae948fa74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2213C856CE4DD64EBE28E4DEFF34D449B2C08BE98565C0405427453AE948FA74"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8859
Expires: Wed, 28 Dec 2022 23:57:57 GMT
Date: Wed, 28 Dec 2022 21:30:18 GMT
Connection: keep-alive
qqcdn2.com/apk/1down1120ZT10581621.zip
172.241.121.47301 Moved Permanently 0 B URL HTTP/1.1 qqcdn2.com/apk/1down1120ZT10581621.zip
IP 172.241.121.47:0
ASN #396190 LEASEWEB-USA-SEA-10
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /apk/1down1120ZT10581621.zip HTTP/1.1
Host: qqcdn2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 28 Dec 2022 21:30:17 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.qqcdn2.com/apk/1down1120ZT10581621.zip
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1RkWVPXD7gEbp9JTMObzaA0C95S1ZU1m2QCb64ekm8BjXHBLaSTc4X++WIGZQTC2oBA3Vf01mRc=
x-amz-request-id: NW59JHFMGJ3850YV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Dec 2022 20:56:19 GMT
age: 2039
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 21:30:18 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 28 Dec 2022 21:08:08 GMT
age: 1330
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.qqcdn2.com/apk/1down1120ZT10581621.zip
172.241.121.47200 OK 547 B URL HTTP/1.1 www.qqcdn2.com/apk/1down1120ZT10581621.zip
IP 172.241.121.47:0
ASN #396190 LEASEWEB-USA-SEA-10
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (739), with CRLF line terminators
Hash 1fe3c22d046a42b5ebfb565fb96906c5
21ab39016b5d439d6b9dacb160be8ad6b71b1f3c
44fa55507e2d8c674b3fa416e7cf46137b074d2542a5adc55325573ea8a9f08b
Analyzer Verdict Alert fortinet Phishing
GET /apk/1down1120ZT10581621.zip HTTP/1.1
Host: www.qqcdn2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Dec 2022 21:30:18 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 125553386d49a0b56facb82deab9bd9f
1a7480b79f4aada477fb5919794f6efd6d44921e
6f3f4223d3c994dd4754df67a11298d736e16f888f301ad2838d0b4db1ac01d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5816
Cache-Control: max-age=134005
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 21:30:18 GMT
Etag: "63ac0727-1d7"
Expires: Fri, 30 Dec 2022 10:43:43 GMT
Last-Modified: Wed, 28 Dec 2022 09:06:47 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
www.qqcdn2.com/common.js
172.241.121.47200 OK 675 B IP 172.241.121.47:0
ASN #396190 LEASEWEB-USA-SEA-10
File type HTML document text\012- HTML document, ASCII text, with very long lines (1293), with no line terminators
Hash a0439ea40e90e3619256472ebe8c9c7a
571c4a633db9c7191d8f9ecc25e96bd850042298
fadd0aa116a30e32acd94fd1eb117ce85a1452f3d0a39792521d81757e6ef089
Analyzer Verdict Alert fortinet Phishing
GET /common.js HTTP/1.1
Host: www.qqcdn2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.qqcdn2.com/apk/1down1120ZT10581621.zip
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Dec 2022 21:30:18 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
54.203.75.56101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.203.75.56:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sIbNXlVSn+OARo6oZwl2wQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XMNjofse0KYVTQnCGUMhaIGs24s=
www.qqcdn2.com/tj.js
172.241.121.47200 OK 258 B IP 172.241.121.47:0
ASN #396190 LEASEWEB-USA-SEA-10
File type ASCII text, with CRLF line terminators
Hash c43dab41c2ee4f8894821c559fdbbc09
e6c3fa2d68b964f610daae95663f821c58a8e03c
ea435e5054fa6a6d8800a680c1b35699cda06263d5469e5680ecfc56ccfe739f
Analyzer Verdict Alert fortinet Phishing
GET /tj.js HTTP/1.1
Host: www.qqcdn2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.qqcdn2.com/apk/1down1120ZT10581621.zip
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Dec 2022 21:30:19 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.qqcdn2.com/favicon.ico
172.241.121.47200 OK 1.2 kB URL HTTP/1.1 www.qqcdn2.com/favicon.ico
IP 172.241.121.47:0
ASN #396190 LEASEWEB-USA-SEA-10
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.qqcdn2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.qqcdn2.com/apk/1down1120ZT10581621.zip
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Dec 2022 21:30:19 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Mon, 02 Jan 2023 21:30:19 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8c3d90aaa3c74a28a7f9c9ce2199c75d
49e89a9d827ac05f158308dc8c1d9e84e90106fe
ffc42ce45de22038cdbf3e5db9777be904bad4b1dde325a70358e65bae68f639
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FFC42CE45DE22038CDBF3E5DB9777BE904BAD4B1DDE325A70358E65BAE68F639"
Last-Modified: Tue, 27 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21570
Expires: Thu, 29 Dec 2022 03:29:49 GMT
Date: Wed, 28 Dec 2022 21:30:19 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0006cbf62850c1f16de70a1ba636cc9
22632887c29311e65a0d872e41433324814fde41
f4fbd194f6ae1fe4908bbd3dfc78221d398666205075d50fb62213637687f4f3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F4FBD194F6AE1FE4908BBD3DFC78221D398666205075D50FB62213637687F4F3"
Last-Modified: Tue, 27 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6523
Expires: Wed, 28 Dec 2022 23:19:03 GMT
Date: Wed, 28 Dec 2022 21:30:20 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0006cbf62850c1f16de70a1ba636cc9
22632887c29311e65a0d872e41433324814fde41
f4fbd194f6ae1fe4908bbd3dfc78221d398666205075d50fb62213637687f4f3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F4FBD194F6AE1FE4908BBD3DFC78221D398666205075D50FB62213637687F4F3"
Last-Modified: Tue, 27 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6523
Expires: Wed, 28 Dec 2022 23:19:03 GMT
Date: Wed, 28 Dec 2022 21:30:20 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0006cbf62850c1f16de70a1ba636cc9
22632887c29311e65a0d872e41433324814fde41
f4fbd194f6ae1fe4908bbd3dfc78221d398666205075d50fb62213637687f4f3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F4FBD194F6AE1FE4908BBD3DFC78221D398666205075D50FB62213637687F4F3"
Last-Modified: Tue, 27 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6523
Expires: Wed, 28 Dec 2022 23:19:03 GMT
Date: Wed, 28 Dec 2022 21:30:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 563a71326245b9544f7051f983f4d897
7293247391520689fb7aeac14ee6c984d82d7de3
17c444592282f17c3eb8a0d8e10ae9b3be096d621bdf2bbd8e12faf13ff4999c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17C444592282F17C3EB8A0D8E10AE9B3BE096D621BDF2BBD8E12FAF13FF4999C"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2313
Expires: Wed, 28 Dec 2022 22:08:53 GMT
Date: Wed, 28 Dec 2022 21:30:20 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0006cbf62850c1f16de70a1ba636cc9
22632887c29311e65a0d872e41433324814fde41
f4fbd194f6ae1fe4908bbd3dfc78221d398666205075d50fb62213637687f4f3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F4FBD194F6AE1FE4908BBD3DFC78221D398666205075D50FB62213637687F4F3"
Last-Modified: Tue, 27 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6523
Expires: Wed, 28 Dec 2022 23:19:03 GMT
Date: Wed, 28 Dec 2022 21:30:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45fd5586-9fcc-4409-88f6-52a554307609.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45fd5586-9fcc-4409-88f6-52a554307609.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a022f080982dddeaf2decce39bf2f1f7
dd9cb19eb6008d3558f60332bc16c83108474f66
fe2c473fa2e8bb50ead0a1faef96024d711c765330b887e72f53219e96adaf20
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45fd5586-9fcc-4409-88f6-52a554307609.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5888
x-amzn-requestid: c2212a71-2743-49ed-80fe-5319f266932a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0y_0FUgoAMF1dA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab6531-05343b8c4c574b530118c293;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7a0bEDDA67CyAKgVKUqz38Elve3uoZ392Ql0t0NVsypOXBc-zgjJNw==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:42:28 GMT
etag: "dd9cb19eb6008d3558f60332bc16c83108474f66"
content-type: image/jpeg
age: 85672
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7efeb4a1-9d83-4fe3-bd8d-999279ed4dcd.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7efeb4a1-9d83-4fe3-bd8d-999279ed4dcd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae5da67479fa2f3afda50a7566b5e46e
d71de1881ea09f0aed36703f95635cc0cd552429
a67eca901c4f8436074f48a594cd9942742430c8776745152baf3f858a9c3407
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7efeb4a1-9d83-4fe3-bd8d-999279ed4dcd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4443
x-amzn-requestid: 6ca832c3-dcdc-4fc3-bb60-6868d09f824b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0y_zFEOoAMF9KQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab6531-0a9be43a500ea8b41200cc43;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Qy-hxddkp68OmfI4OKNvNu8mRO8re9SQNxsxuPcPyP7-tqIEdl7pug==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:42:19 GMT
age: 85681
etag: "d71de1881ea09f0aed36703f95635cc0cd552429"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8978692-1057-4721-b58a-03675b009dec.webp
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8978692-1057-4721-b58a-03675b009dec.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003be820cd1d0f0365928cab98019457
e2a5c2764e4850aa95594c8b303aa4963d33954b
098fd59f48bb33d33764f64eb15d14840467d84544c34f35a6f86bb893be516d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8978692-1057-4721-b58a-03675b009dec.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5880
x-amzn-requestid: e87391e7-c302-42a9-9cdf-0ca5a264c973
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0z-4GrNoAMFYyw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab66c5-6b7d0f3044ed76e91a8815d7;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:42:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QB3LsKzG9hiMrLwemezbf85srVaq07WnkcbHbOpjmO-chWigBRXwxw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:42:29 GMT
etag: "e2a5c2764e4850aa95594c8b303aa4963d33954b"
content-type: image/jpeg
age: 85671
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac8e7926-34e8-4a65-ba5a-894c252c5826.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac8e7926-34e8-4a65-ba5a-894c252c5826.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b970ffab86fbe4a36726473524096ed1
92bc9a2cc454608eae4e310456f2ec180d4ccdca
9d9377466c1d69d25cbde0092dbebb8579ba3f172a001e3068690c7d7efc779c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac8e7926-34e8-4a65-ba5a-894c252c5826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9103
x-amzn-requestid: d35b52dd-fc72-47ca-8232-00e48cd6d209
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0z_EEruIAMFlQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab66c6-574a052f67683ba238966de5;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:42:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ohxADRAP902PofikgbhHb6N0yLainQlafqatm4eBQ1u5DHGr1r15Fg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:42:30 GMT
etag: "92bc9a2cc454608eae4e310456f2ec180d4ccdca"
content-type: image/jpeg
age: 85670
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d43b473-21c7-4775-9398-1bdecb4d7d28.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d43b473-21c7-4775-9398-1bdecb4d7d28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b373925ce249ca67e6984c436f5cd2b8
ddbc25025b933587990f8e9c32e91c9773256840
7d3c992b715283efeba9bee2e5c08042267017e76074ca6aad870e1dd45b4564
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d43b473-21c7-4775-9398-1bdecb4d7d28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9007
x-amzn-requestid: 15b3b2e5-d493-4b54-aab4-7374bf892e83
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: drrFbESxIAMFikw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a7beef-37f4ab8e7738b186705bb1db;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 03:09:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Swp663gmExgpgDT8bZUFNOpLEJHZDQWrEeasO7jgP5GClXzyJUTWgw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Dec 2022 03:27:43 GMT
age: 64957
etag: "ddbc25025b933587990f8e9c32e91c9773256840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
b3.sjpa2.com/template/meizhuama/css/zui.css
23.224.221.54200 OK 37 kB URL HTTP/2 b3.sjpa2.com/template/meizhuama/css/zui.css
IP 23.224.221.54:0
Hash bef1208bd81922ce61eff968c44c70ac
7f032a3f51db7dc652fe9ffaa3ed93d7ff0591dd
4094fe733db8b48578466c118df82fd4eb09071584f6795d95747f0551a21c78
GET /template/meizhuama/css/zui.css HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 10:25:31 GMT
vary: Accept-Encoding
etag: W/"637ca39b-1b92c"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash e6d497512004fd2ab3b907edd1eb6026
0cd2d94b234a93fd04740b60b796952f3261c458
89f8064c0c16d8728ed623dca2652a10c71e167664c4191dfcc1702fd209601c
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 01 Jan 2023 20:03:15 GMT
ETag: "0cd2d94b234a93fd04740b60b796952f3261c458"
Last-Modified: Wed, 28 Dec 2022 20:03:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 693
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d65860d58b509-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 563a71326245b9544f7051f983f4d897
7293247391520689fb7aeac14ee6c984d82d7de3
17c444592282f17c3eb8a0d8e10ae9b3be096d621bdf2bbd8e12faf13ff4999c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17C444592282F17C3EB8A0D8E10AE9B3BE096D621BDF2BBD8E12FAF13FF4999C"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2313
Expires: Wed, 28 Dec 2022 22:08:53 GMT
Date: Wed, 28 Dec 2022 21:30:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 563a71326245b9544f7051f983f4d897
7293247391520689fb7aeac14ee6c984d82d7de3
17c444592282f17c3eb8a0d8e10ae9b3be096d621bdf2bbd8e12faf13ff4999c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17C444592282F17C3EB8A0D8E10AE9B3BE096D621BDF2BBD8E12FAF13FF4999C"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2313
Expires: Wed, 28 Dec 2022 22:08:53 GMT
Date: Wed, 28 Dec 2022 21:30:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1c7858af5510bd5b82565829b8d9a079
29208a63d26bdf2d03043aab8020f0a023ba749c
63218122f0dab49d8dfb278d0546cd9a2c377c4524eef489c0d017869eb0ff21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63218122F0DAB49D8DFB278D0546CD9A2C377C4524EEF489C0D017869EB0FF21"
Last-Modified: Tue, 27 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15195
Expires: Thu, 29 Dec 2022 01:43:35 GMT
Date: Wed, 28 Dec 2022 21:30:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1c7858af5510bd5b82565829b8d9a079
29208a63d26bdf2d03043aab8020f0a023ba749c
63218122f0dab49d8dfb278d0546cd9a2c377c4524eef489c0d017869eb0ff21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63218122F0DAB49D8DFB278D0546CD9A2C377C4524EEF489C0D017869EB0FF21"
Last-Modified: Tue, 27 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15195
Expires: Thu, 29 Dec 2022 01:43:35 GMT
Date: Wed, 28 Dec 2022 21:30:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1c7858af5510bd5b82565829b8d9a079
29208a63d26bdf2d03043aab8020f0a023ba749c
63218122f0dab49d8dfb278d0546cd9a2c377c4524eef489c0d017869eb0ff21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63218122F0DAB49D8DFB278D0546CD9A2C377C4524EEF489C0D017869EB0FF21"
Last-Modified: Tue, 27 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15195
Expires: Thu, 29 Dec 2022 01:43:35 GMT
Date: Wed, 28 Dec 2022 21:30:20 GMT
Connection: keep-alive
b3.sjpa2.com/template/web/app1.js
23.224.221.54200 OK 979 B URL HTTP/2 b3.sjpa2.com/template/web/app1.js
IP 23.224.221.54:0
File type HTML document, Unicode text, UTF-8 text
Hash b065096d2ca8a14aa582f406f12650f8
80987c4a95b0d5c9cbac00b3607a87e9ab9bf0d9
4f5e9f8b4b55d8aeeea8dbaf232f2c2ab7514ee2ce85c3e2718d5e626103119d
GET /template/web/app1.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
content-length: 979
last-modified: Fri, 23 Dec 2022 13:52:41 GMT
etag: "63a5b2a9-3d3"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/app2.js
23.224.221.54200 OK 1.0 kB URL HTTP/2 b3.sjpa2.com/template/web/app2.js
IP 23.224.221.54:0
File type HTML document, Unicode text, UTF-8 text
Hash fe941d773119b89ae27dc7a91022c316
7c1c29ed3bbcd316f62a714a3ee98ccf5d6814aa
c9f9b235f11650112cbad3dcded0c44a2639fdd1c53225c41a81f20c8133dab3
GET /template/web/app2.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
content-length: 1013
last-modified: Wed, 28 Dec 2022 00:06:05 GMT
etag: "63ab886d-3f5"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/app3.js
23.224.221.54200 OK 988 B URL HTTP/2 b3.sjpa2.com/template/web/app3.js
IP 23.224.221.54:0
File type HTML document, Unicode text, UTF-8 text
Hash 46b67e1dbc167f1be696d342c8bb97d4
77bafdd23fd6d241403566a2d58cb4e9ad927190
f922461f18ee1044fdf18950b2727135f9efa9c59157910f8b0f3c2c31b4f120
GET /template/web/app3.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
content-length: 988
last-modified: Wed, 28 Dec 2022 19:24:53 GMT
etag: "63ac9805-3dc"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/aikvdfzkxdp.jpg
172.67.28.138200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/aikvdfzkxdp.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash db4851847481218a8ea3fc90799fa474
f5f0ea180b7cf9a6bd7fbf3604648450dcf7819b
5960403bd74c335483b06417aec9e33a35b3e8e5b2f06280faf588e20a89d517
GET /upload/vod/2022/12/aikvdfzkxdp.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 21:30:20 GMT
content-type: image/jpeg
content-length: 10976
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11501, status=webp_bigger
etag: "63abe9f4-2ced"
last-modified: Wed, 28 Dec 2022 07:02:12 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 780d6585dd31b512-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/bybhrwalofr.jpg
172.67.28.138200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/bybhrwalofr.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 4c1ddf35252b46bb44e90293a5edfe49
f42504dc667a5ae5392b28f812d6bf8535b8efd7
9a8737cd39aeb16d96f0717a9a0557e0ff8d5cfa32223de9218709ccfd3a0fae
GET /upload/vod/2022/12/bybhrwalofr.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 21:30:20 GMT
content-type: image/jpeg
content-length: 10771
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11177, status=webp_bigger
etag: "63abe9eb-2ba9"
last-modified: Wed, 28 Dec 2022 07:02:03 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 780d6585cd0bb512-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/s4rgb4rqikr.jpg
172.67.28.138200 OK 12 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/s4rgb4rqikr.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash c88167f1544a6f5d69c0b543828ec6b7
1bed34790817c3b387efd57230267a28dbeb9ff4
68761432e873a971a6971dd713f22289000498cecba22e92e032ced768ce63a7
GET /upload/vod/2022/12/s4rgb4rqikr.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 21:30:20 GMT
content-type: image/jpeg
content-length: 12122
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12645, status=webp_bigger
etag: "63abe9f0-3165"
last-modified: Wed, 28 Dec 2022 07:02:08 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 780d6585fd5ab512-OSL
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20221228-1/cf5047a408db47fa7b0591f9dd11f717.jpg
23.224.136.188200 OK 9.9 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/cf5047a408db47fa7b0591f9dd11f717.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 266f438304d601b9969843b1bb17deb0
a074091c21e19a9a415b8d88c4fcac1fb3d7955d
6b52f39251affbc2c8571c57128c0ea61545c992395e06666919b702a3949533
GET /upload/vod/20221228-1/cf5047a408db47fa7b0591f9dd11f717.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:20 GMT
Content-Type: image/jpeg
Content-Length: 9928
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:27 GMT
ETag: "63ac3adf-26c8"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20221228-1/9c051db101b6f425c9a5a5eb15b07f6d.jpg
23.224.136.188200 OK 13 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/9c051db101b6f425c9a5a5eb15b07f6d.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3e5de31264604c122398642373dc656c
920c5abf66040ed0d4cd047921bab73c7c2ec4b1
cbfe726f756e7deda8ffdc64b2d784543562b71fcf6bfc062fd9016709177ee0
GET /upload/vod/20221228-1/9c051db101b6f425c9a5a5eb15b07f6d.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:20 GMT
Content-Type: image/jpeg
Content-Length: 12703
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:26 GMT
ETag: "63ac3ade-319f"
Accept-Ranges: bytes
lbfm.lbpictupian.com/upload/vod/2022/12/zrii1gaoyxt.jpg
172.67.28.138200 OK 9.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/zrii1gaoyxt.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6abc784ab1c749868e9895133e9f7d40
bd012c8978e9c8f75e4ee5e838cbafd541db371a
138f8bd632cb8a0fee4a520a88a73ba083727301f656306c4b1868c9c99d59db
GET /upload/vod/2022/12/zrii1gaoyxt.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 21:30:20 GMT
content-type: image/jpeg
content-length: 9789
last-modified: Wed, 28 Dec 2022 07:01:54 GMT
etag: "63abe9e2-263d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 780d6585dd1fb512-OSL
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20221228-1/c49bd66ced152aebce211a827662e703.jpg
23.224.136.188200 OK 17 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/c49bd66ced152aebce211a827662e703.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 72a82f947786118f7487e7b2494263d5
72f3a1edd72a8b740b95c5c080ba76ed26984eb5
e69ac3ec8c38238b5c1cb5053b2f343fedfdfa62f73f387eccb7a317ad7c30c5
GET /upload/vod/20221228-1/c49bd66ced152aebce211a827662e703.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:20 GMT
Content-Type: image/jpeg
Content-Length: 16977
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:33 GMT
ETag: "63ac3ae5-4251"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20221227-1/2a5bdd9ff004876da57347716367f79d.jpg
23.224.136.188200 OK 8.0 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221227-1/2a5bdd9ff004876da57347716367f79d.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 33806bcce8c011477a4cce3a704087e0
5274a7376505b22c397237bcfe5f84f41344516b
2a200526a83a63fe601c4bf2a059c4cd43672c75b4ec860473fd8c01271be846
GET /upload/vod/20221227-1/2a5bdd9ff004876da57347716367f79d.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:20 GMT
Content-Type: image/jpeg
Content-Length: 7999
Connection: keep-alive
Last-Modified: Tue, 27 Dec 2022 11:42:03 GMT
ETag: "63aada0b-1f3f"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20221227-1/6cdbdbb9b81da3eb13374f07ea736510.jpg
23.224.136.188200 OK 11 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221227-1/6cdbdbb9b81da3eb13374f07ea736510.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f9bfcfd322d46ab8816e6b4fc3ec9644
104320c045f8286c32f55c4a3c3bc7c97ad7f815
8a4e969518092d5b040f67b983b1244ccf3cbda6a87f92b2d72f55f500a72f04
GET /upload/vod/20221227-1/6cdbdbb9b81da3eb13374f07ea736510.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 11207
Connection: keep-alive
Last-Modified: Tue, 27 Dec 2022 11:42:14 GMT
ETag: "63aada16-2bc7"
Accept-Ranges: bytes
9030a.cc/1008-960x60.gif
154.85.10.21301 Moved Permanently 0 B IP 154.85.10.21:0
ASN #211392 Dream Cloud Innovation Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1008-960x60.gif HTTP/1.1
Host: 9030a.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: Keep-Alive
X-NoCache: this
Date: Thu, 29 Dec 2022 06:00:33 GMT
Location: https://9030a.cc/1008-960x60.gif
X-Via: 1.1 localhost.localdomain (random:85111 Fikker/Webcache/3.7.8)
b3.sjpa2.com/template/web/GG/227.gif
23.224.221.54200 OK 477 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/227.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 477 kB (477289 bytes)
Hash 760cc21f91ee02e848650627ffa47ae2
22df8e62d12977ffd032aba17e5fd7632032633f
2b36a60cb734e5ebcaa9ad4d93f914157e563da89c4e08231bd02b72678875bd
GET /template/web/GG/227.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 477289
last-modified: Fri, 14 Oct 2022 15:40:26 GMT
etag: "634982ea-74869"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash e9b8dfeeaeac5a7f3fca5df1daff014a
761880de92f7ffa2ae6e0426a029f6fab73c1b18
e03617720a318f4bf589524a44a2f472e7e40724991cbf3b5789095a7eaa14e0
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 01 Jan 2023 18:27:56 GMT
ETag: "761880de92f7ffa2ae6e0426a029f6fab73c1b18"
Last-Modified: Wed, 28 Dec 2022 18:27:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1077
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d658b4cd0b509-OSL
ttzytp3.com/upload/vod/20221228-1/98055ee4355debde747ef98f229d65a1.jpg
23.224.136.188200 OK 167 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/98055ee4355debde747ef98f229d65a1.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x536, components 3\012- data
Size 167 kB (167190 bytes)
Hash df4bf8ee598596c97c17ddd941b10d07
84f08888f1a2934e2cb0762c94eee145a78f7912
8a146d84c99ff0475c6a06360c31a170065d04ef517a7a6771758a0901b7eca6
GET /upload/vod/20221228-1/98055ee4355debde747ef98f229d65a1.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:20 GMT
Content-Type: image/jpeg
Content-Length: 167190
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:27 GMT
ETag: "63ac3adf-28d16"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20221228-1/bedacf6a39c0d4b0dc6567883b96f414.jpg
23.224.136.188200 OK 211 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/bedacf6a39c0d4b0dc6567883b96f414.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 211 kB (211041 bytes)
Hash c9e42e8cd385bf837539b287d166ef84
ddf8d5057a6528b6011c9101df60aa0d222df23f
5c0e124233db90b75600e83ea309793799636f8135dc142c48e15c66d611e66d
GET /upload/vod/20221228-1/bedacf6a39c0d4b0dc6567883b96f414.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:20 GMT
Content-Type: image/jpeg
Content-Length: 211041
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:10 GMT
ETag: "63ac3ace-33861"
Accept-Ranges: bytes
b3.sjpa2.com/template/web/xx2.js
23.224.221.54200 OK 403 kB URL HTTP/2 b3.sjpa2.com/template/web/xx2.js
IP 23.224.221.54:0
Size 403 kB (403342 bytes)
Hash 0332275b26a3c58dc3ce3c647e577000
b3a9d384c14a8ee101c3e93a2b2f13ffc30660ae
68ed7950548b1a0141ae65a11be2aa2d8c7f5bf91158112fcb190fb985b41870
GET /template/web/xx2.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 20:54:53 GMT
vary: Accept-Encoding
etag: W/"63acad1d-968"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b6465a3b6ed2e9eff1b0b8af1d8083d2
d15346b2ad177142e6952cbb881f647e08d10125
cadf329727ba5b2965be6a42cae017ddf2b32ec3274067b3680b96155154deb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=105881
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 21:30:21 GMT
Etag: "63abb006-117"
Expires: Fri, 30 Dec 2022 02:55:02 GMT
Last-Modified: Wed, 28 Dec 2022 02:55:02 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b6465a3b6ed2e9eff1b0b8af1d8083d2
d15346b2ad177142e6952cbb881f647e08d10125
cadf329727ba5b2965be6a42cae017ddf2b32ec3274067b3680b96155154deb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=105881
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 21:30:21 GMT
Etag: "63abb006-117"
Expires: Fri, 30 Dec 2022 02:55:02 GMT
Last-Modified: Wed, 28 Dec 2022 02:55:02 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
b3.sjpa2.com/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
23.224.221.54404 Not Found 146 B URL HTTP/2 b3.sjpa2.com/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
IP 23.224.221.54:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://b3.sjpa2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
b3.sjpa2.com/template/meizhuama/images/video-play.png
23.224.221.54200 OK 1.6 kB URL HTTP/2 b3.sjpa2.com/template/meizhuama/images/video-play.png
IP 23.224.221.54:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/meizhuama/images/video-play.png HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/png
content-length: 1567
last-modified: Sun, 06 Mar 2022 14:17:50 GMT
etag: "6224c28e-61f"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?3eb3578462ecfb29885cf4e613132d8e
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3eb3578462ecfb29885cf4e613132d8e
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 35d29491aedf98661e71b884b1faf7a2
e42fe0391f007f76c229e1c14a26fcff4c8bcbbb
b55b956239e567cfad1019ec841c2a7ed790b34cd3b7b657b35f47ea04fceb94
GET /hm.js?3eb3578462ecfb29885cf4e613132d8e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.qqcdn2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Wed, 28 Dec 2022 21:30:20 GMT
Etag: 438799102198b356ee911063ed4e8c07
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8104BA1F47937A31; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
b3.sjpa2.com/template/web/GG/x.jpg
23.224.221.54200 OK 9.2 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/x.jpg
IP 23.224.221.54:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /template/web/GG/x.jpg HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Thu, 02 Jun 2022 15:47:42 GMT
etag: "6298db9e-23ce"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/dbxf.js
23.224.221.54200 OK 35 kB URL HTTP/2 b3.sjpa2.com/template/web/dbxf.js
IP 23.224.221.54:0
Hash 0ce324565a53cec67288c9afa758a257
2ae4a6473b7aedaa826ecee480a42da89e28e07d
700c2d7edd724ce94f963c4062e1783797d301271661189995a92e886129eeaf
GET /template/web/dbxf.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
last-modified: Fri, 23 Dec 2022 17:19:28 GMT
vary: Accept-Encoding
etag: W/"63a5e320-7ad"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b6465a3b6ed2e9eff1b0b8af1d8083d2
d15346b2ad177142e6952cbb881f647e08d10125
cadf329727ba5b2965be6a42cae017ddf2b32ec3274067b3680b96155154deb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=105881
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 21:30:21 GMT
Etag: "63abb006-117"
Expires: Fri, 30 Dec 2022 02:55:02 GMT
Last-Modified: Wed, 28 Dec 2022 02:55:02 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
z4a.net/images/2022/12/12/960x60e449023c0081ea79.gif
104.21.234.234200 OK 320 kB URL HTTP/2 z4a.net/images/2022/12/12/960x60e449023c0081ea79.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 320 kB (319606 bytes)
Hash 443ba779af0bf3944718aa7e4e2038a5
7054a327b7d5a805a510fab7bb2b35d5cd2ec9ca
1461a63340b84e5c64f250e3ca4d3153df4cf60a1226eb2107bf37c5cfcdd8ee
GET /images/2022/12/12/960x60e449023c0081ea79.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 21:30:21 GMT
content-type: image/gif
content-length: 319606
expires: Thu, 14 Dec 2023 16:21:47 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 1228114
last-modified: Wed, 14 Dec 2022 16:21:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F3P0V%2Fw8wn0bJ7w9YUVswB1ZH3LRK33X5k5t4LIraATCnn6h2X3pEUzaSUUew3DcXOYq91K25Xb9to1mUP5IjGetZfl4x1BdCk332wCMyiptlJG8U%2Fyx52A1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 780d658c28890070-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
z4a.net/images/2022/11/01/960x60.gif
104.21.234.234200 OK 578 kB URL HTTP/2 z4a.net/images/2022/11/01/960x60.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 578 kB (577945 bytes)
Hash 6ae710163cd11c12a73a693024c46410
43041b87b2040371a052bf1f83d401c263a32178
42da405262416c9fbaa04b2718406d4ea93501bfb99774fae4956b6eab7c1831
GET /images/2022/11/01/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 21:30:21 GMT
content-type: image/gif
content-length: 577945
expires: Thu, 28 Dec 2023 20:46:58 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2603
last-modified: Wed, 28 Dec 2022 20:46:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qI5eS4T%2BtuTomWQkioHdAaoIL5U9zyyb%2BI6ONfIFo1%2Fa7lKsRjOW7Vq1BfUJDFLHF4LqbiLwUX0NGXOISqtXG%2B2fQINvh11qfFeMCp8bge8IYY7uTSaJnhBG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 780d658c18740070-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20221228-1/c817b50260946ade5de24d31dde02d6b.jpg
23.224.136.188200 OK 212 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/c817b50260946ade5de24d31dde02d6b.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 212 kB (212112 bytes)
Hash dd90038532e7d98d7032f6e1ba7147cf
9c35105b4cc31e2ca8dcf16b8562e9c20945f8d4
0397e43db5de0b6f41945994a59b4344c82cc46fdcc615c39f86489c2849da38
GET /upload/vod/20221228-1/c817b50260946ade5de24d31dde02d6b.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:20 GMT
Content-Type: image/jpeg
Content-Length: 212112
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:27 GMT
ETag: "63ac3adf-33c90"
Accept-Ranges: bytes
b3.sjpa2.com/template/web/GG/k2.gif
23.224.221.54200 OK 32 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/k2.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 0dbd3863b60a1e8e0a507a6092e3acbd
81f0cfad3a7369aa95b1b507a5ce46149cd4e4fe
d3829461b69847e6df417e8eb4c4046ae45864fbb7d3646e7b1346a861bd893e
GET /template/web/GG/k2.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 32381
last-modified: Fri, 27 May 2022 05:30:54 GMT
etag: "6290620e-7e7d"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20221228-1/223d1a6dc6c4fdb9c0e11599a01fcbef.jpg
23.224.136.188200 OK 175 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/223d1a6dc6c4fdb9c0e11599a01fcbef.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x537, components 3\012- data
Size 175 kB (175323 bytes)
Hash a90a0e28e0d286e121be890139b32850
7169614062572dad1d8a0f2102cd71c29f62a123
023e4295fecf1350a74b212566644b6b2fa9ae2e3bc63ecf5d8b4076551c4b63
GET /upload/vod/20221228-1/223d1a6dc6c4fdb9c0e11599a01fcbef.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 175323
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:33 GMT
ETag: "63ac3ae5-2acdb"
Accept-Ranges: bytes
b3.sjpa2.com/template/web/GG/k6.gif
23.224.221.54200 OK 53 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/k6.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 74d864001115d3b123c552156accfbef
11ae3aef174b8fab213faa40b1b985f77dada46f
9001f1548a09cf89715469dc8d009f7aebb1a459d261c73a2f35d252bf88b4c8
GET /template/web/GG/k6.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 53324
last-modified: Fri, 27 May 2022 05:30:58 GMT
etag: "62906212-d04c"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?7a63494bcb7782c2d15cc8728f4c5059
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?7a63494bcb7782c2d15cc8728f4c5059
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash a4fe944fc5036dee5f6981311aa7ae1f
b4f1a752945ecfafe3966f012f7316f4d18bf136
4d469583f59193630b4eed5473319e80d39ad9ac9e44f0552a8bc4e96d76a8c0
GET /hm.js?7a63494bcb7782c2d15cc8728f4c5059 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Wed, 28 Dec 2022 21:30:21 GMT
Etag: bcdd958d7e384e87d4f2636ccee2653a
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D43AC002216AA20C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
b3.sjpa2.com/template/web/xx1.js
23.224.221.54200 OK 110 kB URL HTTP/2 b3.sjpa2.com/template/web/xx1.js
IP 23.224.221.54:0
Size 110 kB (109600 bytes)
Hash 9ba70cf1ed26ba3499e608f753ac6ff3
3c22c484c4df081598fa402dfc1194536d6095c4
d703739b073600953c51633a4d2ed2f0634c374bee9e23182a454dc0ef67f0ed
GET /template/web/xx1.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
last-modified: Tue, 27 Dec 2022 23:23:30 GMT
vary: Accept-Encoding
etag: W/"63ab7e72-13de"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/dh1.js
23.224.221.54200 OK 101 kB URL HTTP/2 b3.sjpa2.com/template/web/dh1.js
IP 23.224.221.54:0
Size 101 kB (101138 bytes)
Hash 03aff3e3df79dc7aef4af7ffb211d1b4
adf2f036cb98defaaad5fbaf97f3ace9a28ce499
d796e3ab32b854cfad95851a7be493f93b934afdf08cc7385fc803431490d0a3
GET /template/web/dh1.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"63ac9821-363e"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/k4.gif
23.224.221.54200 OK 114 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/k4.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 114 kB (114030 bytes)
Hash 79cf722c45cb4e5b3e7da0cfff829c98
71558743109d39b3163e3e873111641615c6f80c
37336e1d469f511d19c69cd7e3576ef2665204c7304e0b8dd2ec051dd78309e3
GET /template/web/GG/k4.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 114030
last-modified: Fri, 27 May 2022 05:30:56 GMT
etag: "62906210-1bd6e"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/meizhuama/fonts/iconfont.woff
23.224.221.54200 OK 525 B URL HTTP/2 b3.sjpa2.com/template/meizhuama/fonts/iconfont.woff
IP 23.224.221.54:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/meizhuama/fonts/iconfont.woff HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://b3.sjpa2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:59 GMT
content-type: font/woff
content-length: 525
last-modified: Sun, 06 Mar 2022 14:12:36 GMT
etag: "6224c154-20d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/d10.gif
23.224.221.54200 OK 119 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/d10.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 119 kB (119145 bytes)
Hash 03611dd134898d951bd6479076eee32b
4aef7215e5d6206ededff3fff78d735064e6fbb5
9c3ea4fa33413bfe2175b5e9eac750617538bafe475a84367d0c6d693c75c076
GET /template/web/GG/d10.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 119145
last-modified: Sat, 23 Apr 2022 04:49:11 GMT
etag: "62638547-1d169"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/k14.gif
23.224.221.54200 OK 73 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/k14.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 6ce732040d4d9750ef120f2a4221f362
f3114f09ed27718c62d54d6fbe08847421429a00
bf4e102a698f9d805b4d4209c8ca62ca20565344a8949d0efeedc6a720026c5b
GET /template/web/GG/k14.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 73223
last-modified: Sat, 28 May 2022 04:43:32 GMT
etag: "6291a874-11e07"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20221228-1/c6e03c042fa8824b15e1f216fba3a204.jpg
23.224.136.188200 OK 189 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/c6e03c042fa8824b15e1f216fba3a204.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 189 kB (188669 bytes)
Hash e2398c48c23a8b3f8262bcfda831d51e
036357dbbff3417d1161bb053cd7c87e68005f5b
1c206ff53aabb2ffce7af2f24b85eac91f35eee0fa12cb44d2a695391874f7f1
GET /upload/vod/20221228-1/c6e03c042fa8824b15e1f216fba3a204.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 188669
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:26 GMT
ETag: "63ac3ade-2e0fd"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20221228-1/4f57ace5f66510462803be1b16aae697.jpg
23.224.136.188200 OK 219 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/4f57ace5f66510462803be1b16aae697.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x536, components 3\012- data
Size 219 kB (219131 bytes)
Hash 1be39cf21b1f77b784a1673d6d0702a0
42513843dff893f0b8ff626e5c440319c9498974
b3d479bfe7522c448642cc4e2971bd0056bf3616f6f72670663846801934ced8
GET /upload/vod/20221228-1/4f57ace5f66510462803be1b16aae697.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 219131
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:33 GMT
ETag: "63ac3ae5-357fb"
Accept-Ranges: bytes
b3.sjpa2.com/template/web/GG/a06.gif
23.224.221.54200 OK 111 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/a06.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 108 x 108\012- data
Size 111 kB (110624 bytes)
Hash e3240f80fa3623e4bc4675c955beb241
fb5f06e85933d6e6a8e0f98e28c16b44844b3ae3
d595e4b9e1341db392c7d348474e94c200802c5e35290b7e4f9a4a4ad653bd1d
GET /template/web/GG/a06.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 110624
last-modified: Sat, 18 Jun 2022 04:10:23 GMT
etag: "62ad502f-1b020"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20221228-1/8020f052437eb02ce559ecbaf5cb382a.jpg
23.224.136.188200 OK 217 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/8020f052437eb02ce559ecbaf5cb382a.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x535, components 3\012- data
Size 217 kB (217363 bytes)
Hash b8917ee562d3a425b6e4b0e118a898ac
e379f86d43e608aa783185c4e02abde7ddabf291
685ffd5acf4f0500ce74998eef4e6c1be9081474b502de5026405ef769e55bd7
GET /upload/vod/20221228-1/8020f052437eb02ce559ecbaf5cb382a.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 217363
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:48:56 GMT
ETag: "63ac3b38-35113"
Accept-Ranges: bytes
b3.sjpa2.com/template/web/GG/k7.gif
23.224.221.54200 OK 104 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/k7.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 71 x 71\012- data
Size 104 kB (104461 bytes)
Hash 9e38a9cebde88f45563c4aae36723d3a
126439ba503fc1757864c12e086fd0f1a165a4bc
93054ef4224e847d308892f23ca8d0bf210d5ba26d8c39502eb7016efd97501d
GET /template/web/GG/k7.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 104461
last-modified: Fri, 27 May 2022 05:30:59 GMT
etag: "62906213-1980d"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/11.gif
23.224.221.54200 OK 76 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/11.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 200 x 99\012- data
Hash b91a52dc89525aa53fa4cc9f51313fa5
04be88b70acd504b7bf5a9bb107b63da8c488639
91b59a9d450ebdc06502d1279ee2eef209a84a5d0434a46874a32c9bbc831ba9
GET /template/web/GG/11.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 76147
last-modified: Wed, 11 May 2022 08:23:40 GMT
etag: "627b728c-12973"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/k20.gif
23.224.221.54200 OK 102 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/k20.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 124 x 124\012- data
Size 102 kB (101861 bytes)
Hash da1fca07307a6c03cdcfb2d47313113a
f28a95877fad9e725a287466984d496ef7d53afb
9529e1f4226891780f02c558b7b75427b86eb8afa9e5667fd6e8527abf322209
GET /template/web/GG/k20.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 101861
last-modified: Sat, 04 Jun 2022 02:42:14 GMT
etag: "629ac686-18de5"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/a08.gif
23.224.221.54200 OK 80 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/a08.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 3b6a5179b4a06bb8c98cab3aeaa698ed
c798dc8b16e3feaf91392cfa1cf839b4556fc243
64d5d65c65f47564411cce16d70dcca2aa83d5ad212ac46d3d9d0ba4ab8aee96
GET /template/web/GG/a08.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 80545
last-modified: Sat, 18 Jun 2022 04:10:24 GMT
etag: "62ad5030-13aa1"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/zxbf.js
23.224.221.54200 OK 398 kB URL HTTP/2 b3.sjpa2.com/template/web/zxbf.js
IP 23.224.221.54:0
Size 398 kB (397988 bytes)
Hash 18d4dd082b87a27090427f81e8bb2232
27eeaf0f03a95a002a91943133bdfb2721e4c36e
766431c7d4cdaf934326f876d1de897cba7743a965e8fa9b9e55fcdf9fd39a93
GET /template/web/zxbf.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 19:21:44 GMT
vary: Accept-Encoding
etag: W/"63ac9748-14fd"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/k1.gif
23.224.221.54200 OK 167 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/k1.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 167 kB (167104 bytes)
Hash 9387415ad469299bf6e3bb5c1bbc77e2
cc52974b6ed2239afbbd4088c675fceb0d75cd22
912ce0aceb7de66266542ec85454be033b0a285c975dd7fc8f0d43eecb8716ce
GET /template/web/GG/k1.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 167104
last-modified: Fri, 27 May 2022 05:30:54 GMT
etag: "6290620e-28cc0"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/7.gif
23.224.221.54200 OK 159 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/7.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 100 x 100\012- data
Size 159 kB (159399 bytes)
Hash 7c1ced688d2af934a1800ae8d89a226f
558b8353f1d66992ce01a67ba66af0ac966877bc
5acf95935750544793683da337ec48ecbadd4ecfe5c1b714ad47c97b5849c02f
GET /template/web/GG/7.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 159399
last-modified: Fri, 11 Mar 2022 16:19:12 GMT
etag: "622b7680-26ea7"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/d2.gif
23.224.221.54200 OK 162 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/d2.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 162 kB (161572 bytes)
Hash 64c0f3edc7b3bfd2a2c009f3b93ebd7d
70dee1bf54047d14220328f8ab47d299a679a519
ca5ada5bab699078f3ecdb2a2b569bcef9b8b34f6773d2197c0658a55fad5d25
GET /template/web/GG/d2.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 161572
last-modified: Wed, 16 Mar 2022 16:12:17 GMT
etag: "62320c61-27724"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/k15.gif
23.224.221.54200 OK 142 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/k15.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 235 x 235\012- data
Size 142 kB (141895 bytes)
Hash 0642504c72f3cf9929cfb7544deaca87
16d7028c32010330f5c9f2f8e71a69c4c7bcc859
a102356e14a84a958f692e5e9c2c4d2aa9765bc4cbc3232f9108ec8b46d5b07b
GET /template/web/GG/k15.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 141895
last-modified: Sat, 28 May 2022 04:43:33 GMT
etag: "6291a875-22a47"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/a01.gif
23.224.221.54200 OK 156 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/a01.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 100 x 100\012- data
Size 156 kB (156311 bytes)
Hash c1cd6fbcc60e4242fb31eb894d7d9450
1b0a2ba85f38fa452a391250067e916ac7b61345
aca31490b0e0478395648fb5f6ce318b56a4a443c7a64e069c71cee6c0f0bb44
GET /template/web/GG/a01.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 156311
last-modified: Sat, 18 Jun 2022 04:10:19 GMT
etag: "62ad502b-26297"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20221228-1/cc86911378280acbac4ac03ad7b633e6.jpg
23.224.136.188200 OK 8.5 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/cc86911378280acbac4ac03ad7b633e6.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 48bf9e4c9bd760159e4e071a3eacfa1d
0c0e6af83957f2e5fdd2b13a60cfaf16f16c7a4f
7704bc934c665b750327e05695dc304a245e1cd354bbee4ff657c1eda96e2748
GET /upload/vod/20221228-1/cc86911378280acbac4ac03ad7b633e6.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 8531
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:48:57 GMT
ETag: "63ac3b39-2153"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20221228-1/34f25e1165d56d153989b586a95f8a43.jpg
23.224.136.188200 OK 222 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/34f25e1165d56d153989b586a95f8a43.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 222 kB (222099 bytes)
Hash eeb80606dce4a520cf8a561c9cf1b379
6801ba1edacb473f5832183f278d2f31efeb040e
8cf572c3aa60e8c981767471a82886378f01f84acd5b581b5f07153755cf4dd3
GET /upload/vod/20221228-1/34f25e1165d56d153989b586a95f8a43.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 222099
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:26 GMT
ETag: "63ac3ade-36393"
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=655140348&si=3eb3578462ecfb29885cf4e613132d8e&v=1.3.0&lv=1&sn=6422&r=0&ww=1280&u=http%3A%2F%2Fwww.qqcdn2.com%2Fapk%2F1down1120ZT10581621.zip&tt=%E9%95%87%E6%B1%9F%E6%BE%B3%E6%B5%8E%E5%B7%A5%E8%89%BA%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=655140348&si=3eb3578462ecfb29885cf4e613132d8e&v=1.3.0&lv=1&sn=6422&r=0&ww=1280&u=http%3A%2F%2Fwww.qqcdn2.com%2Fapk%2F1down1120ZT10581621.zip&tt=%E9%95%87%E6%B1%9F%E6%BE%B3%E6%B5%8E%E5%B7%A5%E8%89%BA%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=655140348&si=3eb3578462ecfb29885cf4e613132d8e&v=1.3.0&lv=1&sn=6422&r=0&ww=1280&u=http%3A%2F%2Fwww.qqcdn2.com%2Fapk%2F1down1120ZT10581621.zip&tt=%E9%95%87%E6%B1%9F%E6%BE%B3%E6%B5%8E%E5%B7%A5%E8%89%BA%E5%93%81%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.qqcdn2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 28 Dec 2022 21:30:21 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=67B2384C3BEF66BD; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
js.users.51.la/21273067.js
103.143.19.103200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21273067.js
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash cfcc5c0f08c9a6462e6df16aa6478f07
720c84b3ccebf991458af7705d0bb0c41365b8ac
817c678f9b62b0db6f870cc391b17261be96bb9c428199372176794583f9691f
GET /21273067.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=dbcff23b8d3d58815c7; path=/
HWWAFSESTIME=1672263018314; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
b3.sjpa2.com/template/web/GG/dp1.gif
23.224.221.54200 OK 141 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/dp1.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 141 kB (141174 bytes)
Hash 2846430b1663c942a9d2a92c559667cd
2b7d07a004fa13af572b8d5d6317594c1eee9eec
b1357936607e4478fa840a29b58e6714f0063f4a90e28571bd8c8be4e175d74e
GET /template/web/GG/dp1.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:59 GMT
content-type: image/gif
content-length: 141174
last-modified: Mon, 25 Apr 2022 12:29:49 GMT
etag: "6266943d-22776"
expires: Sat, 28 Jan 2023 05:30:59 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/t2.gif
23.224.221.54200 OK 254 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/t2.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 254 kB (253670 bytes)
Hash bace60a0adc9bdd54f7c83058456a847
4867fd68497b7db5c4e5bbdde781cf098dbabd22
17a4f7b3d5caf413211515976326969951cc1bb9a3e32a9caa885fd6e3109368
GET /template/web/GG/t2.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 253670
last-modified: Tue, 10 May 2022 09:20:01 GMT
etag: "627a2e41-3dee6"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/t1.gif
23.224.221.54200 OK 221 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/t1.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 221 kB (221303 bytes)
Hash 633e79a4d76e09af28eb7617340a6330
0aaef1ed9eed51ca839c4b8e88ca4988e27ec6cb
7363c1c913be071eb6240c6600c17b65e81b092944bb5f14c7013b5f96190fb3
GET /template/web/GG/t1.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 221303
last-modified: Tue, 10 May 2022 09:20:00 GMT
etag: "627a2e40-36077"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/y4.gif
23.224.221.54200 OK 258 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/y4.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 258 kB (257689 bytes)
Hash bbdd0bdf651352117671a182ae649b36
0913dc12c9378d9d5bc6aeefdba042fad4f95e8a
c808633ff4d4c025ae4151460a6ab81b58837bc03584b7037b4ef2034cc8676c
GET /template/web/GG/y4.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 257689
last-modified: Tue, 10 May 2022 09:20:09 GMT
etag: "627a2e49-3ee99"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20221228-1/bb6865526313161499780cd6a1f354fd.jpg
23.224.136.188200 OK 240 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/bb6865526313161499780cd6a1f354fd.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x539, components 3\012- data
Size 240 kB (240266 bytes)
Hash 14b93b4da4aea9eb4e8d3b29b92141d1
061111c808802b4b1408d3964eb65a5df726c532
657514362e7d24b5a2e562bcc6201154f5d1e057a2bb34db6b4e845064910b9b
GET /upload/vod/20221228-1/bb6865526313161499780cd6a1f354fd.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 240266
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:32 GMT
ETag: "63ac3ae4-3aa8a"
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash ce90aafa22c3b73916b37490d6f4856f
6d87e1ae463a1a0576e57b1d6488bd550b75e8da
90770ac5163f5a03b80106a17272ea681e7f646e66fceb943e8cd456e6f62f6a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 26 Dec 2022 18:26:17 GMT
Expires: Mon, 02 Jan 2023 18:26:16 GMT
Etag: "6d87e1ae463a1a0576e57b1d6488bd550b75e8da"
Cache-Control: max-age=420354,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 780d658f0b8fb524-OSL
b3.sjpa2.com/template/web/zyxf.js
23.224.221.54200 OK 405 kB URL HTTP/2 b3.sjpa2.com/template/web/zyxf.js
IP 23.224.221.54:0
Size 405 kB (405383 bytes)
Hash 2edb41fc60540e3c4c422eca6991576f
10b4d660d45fb46d67986e0e52327f79b994da67
ce8cf78a86e0538a9876990685d06fce0d376c4ce43c89c065c1f3d123410253
GET /template/web/zyxf.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
last-modified: Tue, 27 Dec 2022 21:53:58 GMT
vary: Accept-Encoding
etag: W/"63ab6976-1a4a"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/5.gif
23.224.221.54200 OK 292 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/5.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 256 x 256\012- data
Size 292 kB (291780 bytes)
Hash c41af62e6356770c1f7df79bbb3e1db5
0f765c11424aaa51365ec92c18ff4f75a972da5a
0b8a47216bb974bf8ce36542085e3dfb1b5fcf476efd4da2b630c4a325580de4
GET /template/web/GG/5.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 291780
last-modified: Wed, 11 May 2022 08:12:54 GMT
etag: "627b7006-473c4"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/meizhuama/fonts/iconfont.ttf
23.224.221.54200 OK 1.2 kB URL HTTP/2 b3.sjpa2.com/template/meizhuama/fonts/iconfont.ttf
IP 23.224.221.54:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
GET /template/meizhuama/fonts/iconfont.ttf HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:59 GMT
content-type: application/octet-stream
content-length: 1163
last-modified: Sun, 06 Mar 2022 14:17:48 GMT
etag: "6224c28c-48b"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/122.gif
23.224.221.54200 OK 301 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/122.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 301 kB (301024 bytes)
Hash 924fb352713ee10f6f4bce3167ccce13
127a437f7a5020f7e7c08b6c6465be55dcb32e0c
6e04c7ee887495ce8805d38b200ca217c28b5e83655f4e7f4e8f8f8e28b872bf
GET /template/web/GG/122.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 301024
last-modified: Wed, 09 Mar 2022 10:04:32 GMT
etag: "62287bb0-497e0"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/4.gif
23.224.221.54200 OK 279 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/4.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 200 x 113\012- data
Size 279 kB (279026 bytes)
Hash 42809e0a73309f01de7651ab3b712cb4
19a1658a10d4e8ca6831a824d4bccbb35dcbf113
da7e1e1332d196cde6cc3a7b9c758abb4493e9708799e7836551823dd399b13d
GET /template/web/GG/4.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 279026
last-modified: Wed, 11 May 2022 08:12:44 GMT
etag: "627b6ffc-441f2"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/k19.gif
23.224.221.54200 OK 288 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/k19.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 140 x 140\012- data
Size 288 kB (287575 bytes)
Hash e758cbb971464ca5059e4cdbc1a7601f
615032c5f3516cd6d685bde3c1214a5d05833cd1
df4ecca258502e6c66deb343d9fc8d0bf05e46927194a2e1bc6c652fb80ba71d
GET /template/web/GG/k19.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 287575
last-modified: Sat, 04 Jun 2022 02:42:13 GMT
etag: "629ac685-46357"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/d1.gif
23.224.221.54200 OK 320 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/d1.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 448 x 359\012- data
Size 320 kB (320301 bytes)
Hash 7d3239796daffe24e71eb0e44146f02b
533c9fe388fdb5cc5f807a7358dcd4d1b14bf817
7ae555d64a9c2cbf44806af21930c753b5dc3649be922206fc10ea83efa19523
GET /template/web/GG/d1.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 320301
last-modified: Wed, 11 May 2022 08:33:50 GMT
etag: "627b74ee-4e32d"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/dp2.gif
23.224.221.54200 OK 767 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/dp2.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 767 kB (766938 bytes)
Hash 06f924cdbba4e6c4765765139a404682
7eaadc65f26a4fe45240e14f96c29aa53e721775
514dc1d00a06bed8dbb2a891aa73b6ff70cd32772f582df1c2c959c856d45a5d
GET /template/web/GG/dp2.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:59 GMT
content-type: image/gif
content-length: 766938
last-modified: Mon, 25 Apr 2022 12:29:50 GMT
etag: "6266943e-bb3da"
expires: Sat, 28 Jan 2023 05:30:59 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20221228-1/bf3f59ca61804dbbd8bcc4326ea7d6ac.jpg
23.224.136.188200 OK 9.4 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/bf3f59ca61804dbbd8bcc4326ea7d6ac.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 45x34, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 62156f09350c657df57e600b58b5a4a7
4a19b039377cdcb599bf5df701eed0bb51f538de
f52eb220fad6c20cb1a26d7e459f738d15a574538c81d087c275a01e9b2efc72
GET /upload/vod/20221228-1/bf3f59ca61804dbbd8bcc4326ea7d6ac.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 9374
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:06 GMT
ETag: "63ac3aca-249e"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20221228-1/9725aa8e8fe719d08acd201d7f97a54b.jpg
23.224.136.188200 OK 12 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/9725aa8e8fe719d08acd201d7f97a54b.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 411bb4b2252d4a25a24c9824eafe7ca6
9f42e052f944acfe4fa480d17a0427ebfdd8811b
2cdad6a996791f6c4e6205438481ea44536ef3cbf0599ca2525b14205190f7f8
GET /upload/vod/20221228-1/9725aa8e8fe719d08acd201d7f97a54b.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 12479
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:48:56 GMT
ETag: "63ac3b38-30bf"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20221228-1/f1372d7a52fa9c0cf5a52f26303cf3ea.jpg
23.224.136.188200 OK 190 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/f1372d7a52fa9c0cf5a52f26303cf3ea.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x537, components 3\012- data
Size 190 kB (190034 bytes)
Hash 94942dfa4281715ef16fe371af7458ff
12c43f836d8c65019b6d177774c2a12d43588a20
90437ed457593702a9fb05db0ce3999096c97cc7baed502cc2774960d1326320
GET /upload/vod/20221228-1/f1372d7a52fa9c0cf5a52f26303cf3ea.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 190034
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:48:57 GMT
ETag: "63ac3b39-2e652"
Accept-Ranges: bytes
b3.sjpa2.com/template/web/xx3.js
23.224.221.54200 OK 290 kB URL HTTP/2 b3.sjpa2.com/template/web/xx3.js
IP 23.224.221.54:0
Size 290 kB (289927 bytes)
Hash 0dccb7323d99ad81afb384d56dea4d27
851d53515efcd4017ae60859711afe7f87630423
0414717492682a50f46e6d008555311a78a20dd9680220dd45236cc23232913c
GET /template/web/xx3.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 20:55:03 GMT
vary: Accept-Encoding
etag: W/"63acad27-1652"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/dp4.gif
23.224.221.54200 OK 747 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/dp4.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 747 kB (746571 bytes)
Hash 84e8edecf6c28c8218e0a7b1ad9ea414
3897e6bf1a2292c59b45e44d2b9c38e45f8f9a6f
356abb92d87698d59a4af16304d13e760b032739634c495fba68568e82d5c1ce
GET /template/web/GG/dp4.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:59 GMT
content-type: image/gif
content-length: 746571
last-modified: Mon, 25 Apr 2022 12:29:52 GMT
etag: "62669440-b644b"
expires: Sat, 28 Jan 2023 05:30:59 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/a07.gif
23.224.221.54200 OK 356 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/a07.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 344 x 292\012- data
Size 356 kB (355956 bytes)
Hash 7fcc1b0bc144505a6445039f16e7ae84
c102af587f677b89bb65f7e850a4ca4b41a45456
409d94d159f6c851b76881b6937460458b25a246e45bf6ab98f34efd9474ede8
GET /template/web/GG/a07.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 355956
last-modified: Sat, 18 Jun 2022 04:10:23 GMT
etag: "62ad502f-56e74"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/01.gif
23.224.221.54200 OK 562 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/01.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 380 x 570\012- data
Size 562 kB (561983 bytes)
Hash 311afec7a9e7d370b46adf41a45905e7
5460c5036e11ecf12f30d921e4dc811ad56f8b30
39da990b80811f9e29f4b4c1b9a0e7fc4f4b60a42c1f5d949b1ae1a9bbe80eb9
GET /template/web/GG/01.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 561983
last-modified: Wed, 11 May 2022 08:12:48 GMT
etag: "627b7000-8933f"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/55.gif
23.224.221.54200 OK 834 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/55.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 140 x 206\012- data
Size 834 kB (834244 bytes)
Hash 3965598665b057b276ed86263c36f334
f8374496c56ad6cd140a9bd009b0637c8ce91a35
5efcea93fd0c2cb8059ea79144c6bfb6b094b5810e21cf6e2168ef51ac2fd36a
GET /template/web/GG/55.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 834244
last-modified: Wed, 11 May 2022 08:28:17 GMT
etag: "627b73a1-cbac4"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=826762759&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6422&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=826762759&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6422&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=826762759&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6422&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 28 Dec 2022 21:30:21 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=D7CC72C6305FF028; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ttzytp3.com/upload/vod/20221228-1/e952fee5ec5c35a961d54d04c26c3384.jpg
23.224.136.188200 OK 9.9 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/e952fee5ec5c35a961d54d04c26c3384.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash a62d1b8b9ebb6ddfce537926fd7d1d0e
a3bc3dd57e9d860dfd923f294d0cf8675d53ad15
5d62fd1d4954440e05ab2861665da5b7c1af820758fdc1d276c2feb270cd303a
GET /upload/vod/20221228-1/e952fee5ec5c35a961d54d04c26c3384.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 9925
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:06 GMT
ETag: "63ac3aca-26c5"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20221228-1/0366d7acd6a0f4edca0313a770b35e94.jpg
23.224.136.188200 OK 169 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/0366d7acd6a0f4edca0313a770b35e94.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x536, components 3\012- data
Size 169 kB (169355 bytes)
Hash 03169bce1a64b45bd2e483e9aa07caff
3b67ab7d060c68c7858908338dbc207ca827308e
e8a3c4cf2033af6ae0b855a1fc0b2c799d3c5acc70ea9e2fe480757ac82c8079
GET /upload/vod/20221228-1/0366d7acd6a0f4edca0313a770b35e94.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:21 GMT
Content-Type: image/jpeg
Content-Length: 169355
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:06 GMT
ETag: "63ac3aca-2958b"
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 9e83955220aacad97b4ff8f95d221df0
ee77ca6ebec33fac2f115b65212eab574f031260
9c78c8174476dd67137f2f705d80640d1960a2f09dbd0f7e049d369314ef6645
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 26 Dec 2022 01:20:35 GMT
Expires: Mon, 02 Jan 2023 01:20:34 GMT
Etag: "ee77ca6ebec33fac2f115b65212eab574f031260"
Cache-Control: max-age=358811,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 780d658f09340b39-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e7e270d7fd5a92b6714327545e3a51dd
27e7075ed9164944fcebabb86e583ddb4b76b0db
7b5ea10aabd2b0f7f517e87454c3f7e6a99e6786b78b4d5f70c26e2df54caf4a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 27 Dec 2022 18:53:59 GMT
Expires: Tue, 03 Jan 2023 18:53:58 GMT
Etag: "27e7075ed9164944fcebabb86e583ddb4b76b0db"
Cache-Control: max-age=508415,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 780d658f0d88b4eb-OSL
b3.sjpa2.com/template/web/GG/a13.gif
23.224.221.54200 OK 674 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/a13.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 393 x 262\012- data
Size 674 kB (673882 bytes)
Hash 8f0aa6d32c03c602b0480194b2efdf4a
a2dfc596103bf743c9cf389e2b7a481a8bbedc96
2a54a439ea081c5418030b63dd4e0f247ff7089b1d7ba67a0fe6e2abcf466658
GET /template/web/GG/a13.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 673882
last-modified: Mon, 20 Jun 2022 04:59:33 GMT
etag: "62affeb5-a485a"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20221228-1/de2dec61fa18c3e1855452188f8afa58.jpg
23.224.136.188200 OK 9.1 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/de2dec61fa18c3e1855452188f8afa58.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 833a999e77980a4b2eb78532bb6aa0b2
37266fe810b9d7ecd916d328989fb88a77262d11
cb7bac5f285c7b7465104ed850db517f6fb01f4925d9996fc15cf90e712d33fb
GET /upload/vod/20221228-1/de2dec61fa18c3e1855452188f8afa58.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/jpeg
Content-Length: 9114
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:05 GMT
ETag: "63ac3ac9-239a"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5c3d64473ef73c42a998152eedd7c4b8
d8431f0e1769ed50739a975fd1826556a1187f5c
24d92edd05bb9e7b511f3f97252ed62be3b3ecad1a4d07184dc8fdccd6ec9db0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24D92EDD05BB9E7B511F3F97252ED62BE3B3ECAD1A4D07184DC8FDCCD6EC9DB0"
Last-Modified: Tue, 27 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1581
Expires: Wed, 28 Dec 2022 21:56:43 GMT
Date: Wed, 28 Dec 2022 21:30:22 GMT
Connection: keep-alive
b3.sjpa2.com/template/web/GG/2.gif
23.224.221.54200 OK 620 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/2.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 300 x 200\012- data
Size 620 kB (620010 bytes)
Hash 8171edd386b6abd105c0ff0e740330d9
7914e2b95f29d65b0ffb8e6daf7f54dc14da0ae0
5044971fcc4e0c4837e7e586b858fba8257feeed88812253aa9ee2396915c40a
GET /template/web/GG/2.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 620010
last-modified: Wed, 11 May 2022 08:12:37 GMT
etag: "627b6ff5-975ea"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/GG/ppll.gif
23.224.221.54200 OK 965 kB URL HTTP/2 b3.sjpa2.com/template/web/GG/ppll.gif
IP 23.224.221.54:0
File type GIF image data, version 89a, 480 x 270\012- data
Size 965 kB (965446 bytes)
Hash 5f87eaa078aeb58fbe6a932225fe00e2
d155153be18e5b37704fa2b046751373a23bd708
55f2f4507e307aa3a6f26e06744510894d6a35a5289600b60120ddfca84e1cf9
GET /template/web/GG/ppll.gif HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: image/gif
content-length: 965446
last-modified: Thu, 01 Dec 2022 04:59:54 GMT
etag: "638834ca-ebb46"
expires: Sat, 28 Jan 2023 05:30:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 7c54b4177e65f786f682df08e0116dd2
a6d297978175f16f249b8c47d4101dabf7c60307
03fd53b64cb7aeb5bb9018b43387cdafb68cf2d2dd318d371dc7430444056d85
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 08:13:22 GMT
Expires: Wed, 04 Jan 2023 08:13:21 GMT
Etag: "a6d297978175f16f249b8c47d4101dabf7c60307"
Cache-Control: max-age=556378,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 780d65910e10b524-OSL
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fd7984c0eb84e1f9a09ba2f9f182721b
7d5f12e8a8da108ecb5f971e766b220b585e42b6
7181f48bdddba721ca12da363192a20a38fd3bb688ce22b9f33a871aade8d1e2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "7181F48BDDDBA721CA12DA363192A20A38FD3BB688CE22B9F33A871AADE8D1E2"
Last-Modified: Tue, 27 Dec 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16591
Expires: Thu, 29 Dec 2022 02:06:53 GMT
Date: Wed, 28 Dec 2022 21:30:22 GMT
Connection: keep-alive
ttzytp3.com/upload/vod/20221228-1/d5661c8fc651e21633b1add6373b4924.jpg
23.224.136.188200 OK 116 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/d5661c8fc651e21633b1add6373b4924.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 380x541, components 3\012- data
Size 116 kB (115813 bytes)
Hash 7f61a8b39e424b2474b16ff15956a483
c1877a76090294e6d26d571836ee7c973457949c
4a15adf0e83c521caa5807bf0945bb4ba0ea8c438c01be23f0d9f7b92bcec77a
GET /upload/vod/20221228-1/d5661c8fc651e21633b1add6373b4924.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/jpeg
Content-Length: 115813
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:04 GMT
ETag: "63ac3ac8-1c465"
Accept-Ranges: bytes
tupkku.top/hf/xincha.gif
172.67.178.134200 OK 287 kB IP 172.67.178.134:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 287 kB (287106 bytes)
Hash bf69a23dccde7e62074b6300ea402b95
dd009214a977991f1ce608f209962267a2db1e2c
6e329ba63b5b8b6493317c2c2f140b49bc76cb72d5eb06793d5f32e87ac308fb
GET /hf/xincha.gif HTTP/1.1
Host: tupkku.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 21:30:22 GMT
content-type: image/gif
content-length: 287106
last-modified: Mon, 06 Jun 2022 10:46:28 GMT
etag: "629ddb04-46182"
expires: Sun, 01 Jan 2023 14:32:13 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2271484
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=33iIi%2B3XHL8EdpIVdZEoufycEWGXU8X%2FnZuFts9YJgIrsTmDxRXyZTsyIT00zGP1gpKMGf13UAj2F3aJxQI7mkHGzR5sj2dRgIUIk%2F8XkejI9U%2B5M8mXKBlrrQsz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 780d65917e86b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20221228-1/98dedb0470fdeeeeeeedc62fff2a2c81.jpg
23.224.136.188200 OK 96 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/98dedb0470fdeeeeeeedc62fff2a2c81.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 377x536, components 3\012- data
Hash cc0ac59de58b526e244239d310e7f769
b29919b5e023a9cf704fd0bbae36bbafcabe16ff
6717c9ce226f5fc62514db67605cb78afe70b1e50a40f55adc490ce74288cfdf
GET /upload/vod/20221228-1/98dedb0470fdeeeeeeedc62fff2a2c81.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/jpeg
Content-Length: 95688
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:05 GMT
ETag: "63ac3ac9-175c8"
Accept-Ranges: bytes
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 7949da8c292195114899c33b192e108c
7f088130846c9607efb5a3af1e74d52cb3b9b10a
c17c2b2e6191c80f376ae2ca785b58bac2e9bf9eb706f5e66d0ae7003bc0053f
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=856
Date: Wed, 28 Dec 2022 21:30:22 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 40357e5afcadd29c16671bf2358b441c
7c0e8bc3b8374b59efb88b45cc952e286b1185f9
00b1deb03c99811e9d58937cd4ef6646890c0872a2079def512e4c519df60d49
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=898
Date: Wed, 28 Dec 2022 21:30:22 GMT
Connection: keep-alive
X-N: S
ttzytp3.com/upload/vod/20221228-1/348eae1c43781e7cb27fd50564925d53.jpg
23.224.136.188200 OK 14 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/348eae1c43781e7cb27fd50564925d53.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 13x10, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 91609086b8333910181926eb83351fe2
170831dd37128d9d852fb77e5fd99549475633c1
e3af8184aec65832794845b8d14cc92558bdf67dbedd15e25f60cdfb00cad261
GET /upload/vod/20221228-1/348eae1c43781e7cb27fd50564925d53.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/jpeg
Content-Length: 13764
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:11 GMT
ETag: "63ac3acf-35c4"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20221228-1/b3a957b01710afadac61afbc648bf9c3.jpg
23.224.136.188200 OK 102 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/b3a957b01710afadac61afbc648bf9c3.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 377x536, components 3\012- data
Size 102 kB (101857 bytes)
Hash ef893a52ec5f2a6c3d589f3b46c05071
efc4d84df4959ef0e8b903221227dddff914e9f0
41a91ef91f377afe9d6b37e80be9d74cdb17b18eb7fd600d8b3a1e6661471aed
GET /upload/vod/20221228-1/b3a957b01710afadac61afbc648bf9c3.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/jpeg
Content-Length: 101857
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:11 GMT
ETag: "63ac3acf-18de1"
Accept-Ranges: bytes
kvexx.com/d766f59de772a56dbe1bc6cf1d0027ad.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kvexx.com/d766f59de772a56dbe1bc6cf1d0027ad.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /d766f59de772a56dbe1bc6cf1d0027ad.gif HTTP/1.1
Host: kvexx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 28 Dec 2022 21:30:22 GMT
content-type: text/html
content-length: 162
location: https://kvhuuu.top/d766f59de772a56dbe1bc6cf1d0027ad.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
rootnetworksdv.ocsp-certum.com/
95.101.10.107200 OK 1.5 kB URL HTTP/1.1 rootnetworksdv.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash 8d2aea7c219d10c22402e67743219f97
0fcf1a14a486d35e35cc89980911856fab1abb46
0ab6bbe99fad871170aed2f6669c69b94a23e2c7c7a67300dd5a806b1b6260b7
POST / HTTP/1.1
Host: rootnetworksdv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1490
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=850
Date: Wed, 28 Dec 2022 21:30:22 GMT
Connection: keep-alive
X-N: S
rootnetworksdv.ocsp-certum.com/
95.101.10.193200 OK 1.5 kB URL HTTP/1.1 rootnetworksdv.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash ed3c1f3d47a056ad636aa328312e94fe
f54c9b19552c0c9bf579124a27e7791bab0e15cc
fa2500efcd6144da62b439c3c780a3742ea47235696aa7243f6a42c430769938
POST / HTTP/1.1
Host: rootnetworksdv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1490
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=866
Date: Wed, 28 Dec 2022 21:30:22 GMT
Connection: keep-alive
X-N: S
ttzytp3.com/upload/vod/20221228-1/8f88b81a993f0d5281e3bce084894f76.jpg
23.224.136.188200 OK 110 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/8f88b81a993f0d5281e3bce084894f76.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 378x538, components 3\012- data
Size 110 kB (109725 bytes)
Hash 7d5463cdd26228746f9e47ed78f1a39a
9ec2160336c2ef00a9e3031ceea11826866ac771
56b0ce2b99a662fbacbdd91e68e8df1971005978e23e615715131546f230ade5
GET /upload/vod/20221228-1/8f88b81a993f0d5281e3bce084894f76.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/jpeg
Content-Length: 109725
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:11 GMT
ETag: "63ac3acf-1ac9d"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20221228-1/73e477a33ec587162fe1a77e4f837ce1.jpg
23.224.136.188200 OK 320 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/73e477a33ec587162fe1a77e4f837ce1.jpg
IP 23.224.136.188:0
File type JPEG image data, baseline, precision 8, 1000x563, components 3\012- data
Size 320 kB (320111 bytes)
Hash 2f25cc5f8c76800e2e1357ed1c77f68a
172c72e3cc361032cd0ff97b70d8976e5e93a920
1cbb388e58a75fee13b0a03fb4701fe0b2627dbb1e3562319032e8721ec59f72
GET /upload/vod/20221228-1/73e477a33ec587162fe1a77e4f837ce1.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/jpeg
Content-Length: 320111
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:05 GMT
ETag: "63ac3ac9-4e26f"
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 8ac5df125af007a25e22087283c51e00
0b9a142e40b253335b731df2ca1019620093f97f
de4106781281c29d36fbd6dae9921e193c8e6248f5c9490919d33183862cc80e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 26 Dec 2022 13:27:02 GMT
Expires: Mon, 02 Jan 2023 13:27:01 GMT
Etag: "0b9a142e40b253335b731df2ca1019620093f97f"
Cache-Control: max-age=402398,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 780d65926ffbb524-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8cabc85462e0ff8e57b57098df1f8cb8
e6f714e9d5893c770b4eefd855d7e2370e58ebce
2d29210d763c42f4877e3fa2f58f2bdb16b7f10a88e817bebfd7ff6235424b94
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2D29210D763C42F4877E3FA2F58F2BDB16B7F10A88E817BEBFD7FF6235424B94"
Last-Modified: Tue, 27 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3497
Expires: Wed, 28 Dec 2022 22:28:39 GMT
Date: Wed, 28 Dec 2022 21:30:22 GMT
Connection: keep-alive
hm.baidu.com/hm.js?959981931bea09b9a10c9c552a50e761
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?959981931bea09b9a10c9c552a50e761
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash ce270260622f9e1be7f16b2951bb355e
a9124b54de59265c2430c23c3aa70f66d64415ed
8b92c5a0ebf72d1b95903d798358ea50de3744db741e12222dbdf58f556f120b
GET /hm.js?959981931bea09b9a10c9c552a50e761 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Wed, 28 Dec 2022 21:30:22 GMT
Etag: bfcfb9b59689fe7ef87a8f04d14ccc62
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B7A8A231F6C96BFC; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?23623cf5f4a21b97670aa94e566ea294
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?23623cf5f4a21b97670aa94e566ea294
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 6623e8e668c81d5f858803d6c63d284f
23d1d1592fe19f0656de9411cc9faf83f1b7f211
fe6b01b76b6ea06382ea395302685a51f7bba271d243273d6259c31ff717ccc9
GET /hm.js?23623cf5f4a21b97670aa94e566ea294 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Wed, 28 Dec 2022 21:30:22 GMT
Etag: d3ca1578a4e5f27ea82b82427ec4f652
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=2A4E8702B9FD24CD; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ttzytp3.com/upload/vod/20221228-1/509e18de41d468a4423339c6f027225a.jpg
23.224.136.188200 OK 148 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/509e18de41d468a4423339c6f027225a.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 380x540, components 3\012- data
Size 148 kB (147904 bytes)
Hash 5bd75b7921910094ca9c1b0e2b651b90
d88d7925a89f5e45ff370fbdbc634cdfd1f82d6f
e9af14c90dc6aa651b118f1ae0a84dd499b3d6d8106fd3097d8be7fee997e269
GET /upload/vod/20221228-1/509e18de41d468a4423339c6f027225a.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/jpeg
Content-Length: 147904
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:11 GMT
ETag: "63ac3acf-241c0"
Accept-Ranges: bytes
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 0f596570445e76eb2806c1570cf605f9
6d959a29b3ee7b10b30a77c40a2aa29620b12bc6
bdbde6cdb818cc1d2f7adf154c8bfd7221abee275e46978db898783cfb7b60d9
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 01 Jan 2023 19:59:58 GMT
ETag: "6d959a29b3ee7b10b30a77c40a2aa29620b12bc6"
Last-Modified: Wed, 28 Dec 2022 19:59:59 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d6591ccaab500-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 0f596570445e76eb2806c1570cf605f9
6d959a29b3ee7b10b30a77c40a2aa29620b12bc6
bdbde6cdb818cc1d2f7adf154c8bfd7221abee275e46978db898783cfb7b60d9
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 01 Jan 2023 19:59:58 GMT
ETag: "6d959a29b3ee7b10b30a77c40a2aa29620b12bc6"
Last-Modified: Wed, 28 Dec 2022 19:59:59 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d6591ccddb4e8-OSL
ttzytp3.com/upload/vod/20221228-1/1186554e78171bd3c80eb50f9182c8fc.jpg
23.224.136.188200 OK 219 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20221228-1/1186554e78171bd3c80eb50f9182c8fc.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x534, components 3\012- data
Size 219 kB (218619 bytes)
Hash 246f0fd9a2ff5ac84c651d53b6445966
1d4c1b4c31915366a141beed0b40c199f171df80
e8b33578cf4bbd139d9d6206a3f5d634372d67e641d292fd248ca10a33de0755
GET /upload/vod/20221228-1/1186554e78171bd3c80eb50f9182c8fc.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/jpeg
Content-Length: 218619
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 12:47:11 GMT
ETag: "63ac3acf-355fb"
Accept-Ranges: bytes
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fd7984c0eb84e1f9a09ba2f9f182721b
7d5f12e8a8da108ecb5f971e766b220b585e42b6
7181f48bdddba721ca12da363192a20a38fd3bb688ce22b9f33a871aade8d1e2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "7181F48BDDDBA721CA12DA363192A20A38FD3BB688CE22B9F33A871AADE8D1E2"
Last-Modified: Tue, 27 Dec 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16591
Expires: Thu, 29 Dec 2022 02:06:53 GMT
Date: Wed, 28 Dec 2022 21:30:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 512bc8f80b97fa25c63eac3d9ca9191b
b080aac854f1e01f4648b2b05b124dd70885e226
2b59ee748ecfe083c8727198f3eaa4ecda4763be1fa231478fee85ef16c3555a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2B59EE748ECFE083C8727198F3EAA4ECDA4763BE1FA231478FEE85EF16C3555A"
Last-Modified: Tue, 27 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17379
Expires: Thu, 29 Dec 2022 02:20:01 GMT
Date: Wed, 28 Dec 2022 21:30:22 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 88ffcd30ea2160fdd13bf3e5ccf892c1
2a04aaa55162951f6ed00b816305cad4df2bd9b0
81e4e66319d46cd0f62b62ea39b5b602b423064a1e2f3b2d2d149688f8379054
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 01 Jan 2023 17:21:48 GMT
ETag: "2a04aaa55162951f6ed00b816305cad4df2bd9b0"
Last-Modified: Wed, 28 Dec 2022 17:21:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3145
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d65937f1eb4e8-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash fe028b2386616d9901ab02d9b14ea692
26424cab406140143edef29a7a93affe1b61a184
cf1e8fcbce88e9e742fd091a60d0c1723236d7cb0a6618228667498e393701b6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 27 Dec 2022 05:33:15 GMT
Expires: Tue, 03 Jan 2023 05:33:14 GMT
Etag: "26424cab406140143edef29a7a93affe1b61a184"
Cache-Control: max-age=460371,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 780d65927d4b0b39-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash e20870df6edad130e4abfd25710bc887
60e6c6d1e7a6f752f9f3426d860391f200357ad5
e2e0e8baba8537baa505fff025338ee9e0424673e996c63886a45fc1b0f066ac
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 01 Jan 2023 19:42:05 GMT
ETag: "60e6c6d1e7a6f752f9f3426d860391f200357ad5"
Last-Modified: Wed, 28 Dec 2022 19:42:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d6591cfba1bfa-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash e20870df6edad130e4abfd25710bc887
60e6c6d1e7a6f752f9f3426d860391f200357ad5
e2e0e8baba8537baa505fff025338ee9e0424673e996c63886a45fc1b0f066ac
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 01 Jan 2023 19:42:05 GMT
ETag: "60e6c6d1e7a6f752f9f3426d860391f200357ad5"
Last-Modified: Wed, 28 Dec 2022 19:42:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d6592f847b51b-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash cbae83a99948f0b97af95ad61fdef3c4
94ca0e1e871f8f9d7e065eb4943fb92f296c35e6
208b1f58d823dbeee2ec212da1eb17f825942dedccc778f51df2f264d7c2abf9
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 01 Jan 2023 19:02:13 GMT
ETag: "94ca0e1e871f8f9d7e065eb4943fb92f296c35e6"
Last-Modified: Wed, 28 Dec 2022 19:02:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d65932e7bb500-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 280fd010b99ccfab3fc44b3f740f2bf6
0d5640bc8d6935bc7cdb22270c8128033c555a37
32ccf94ed07d5ff49e8fcc24792aa1279d154ce5e717f9ad91427f77cad75745
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=167812
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 21:30:22 GMT
Etag: "63aca1f2-117"
Expires: Fri, 30 Dec 2022 20:07:14 GMT
Last-Modified: Wed, 28 Dec 2022 20:07:14 GMT
Server: nginx
Content-Length: 279
8499483.com/8499/960x240.gif
172.247.109.216200 OK 98 kB URL HTTP/2 8499483.com/8499/960x240.gif
IP 172.247.109.216:0
File type GIF image data, version 89a, 960 x 240\012- data
Hash dec1af78a06a93780bf5b18c6448b63a
77013cea2b277cdce8c91e1781a57c16ae9cbf53
8ab51ff6c6fbc1efc3d7d78d71f06d2fbfb5a1ad426f9fe92e35bbfb2b3fe7f4
GET /8499/960x240.gif HTTP/1.1
Host: 8499483.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 21:30:22 GMT
content-type: image/gif
content-length: 97487
last-modified: Sat, 24 Dec 2022 13:20:16 GMT
etag: "17ccf-5f092c350091a"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash cbae83a99948f0b97af95ad61fdef3c4
94ca0e1e871f8f9d7e065eb4943fb92f296c35e6
208b1f58d823dbeee2ec212da1eb17f825942dedccc778f51df2f264d7c2abf9
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 01 Jan 2023 19:02:13 GMT
ETag: "94ca0e1e871f8f9d7e065eb4943fb92f296c35e6"
Last-Modified: Wed, 28 Dec 2022 19:02:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d6593bf62b4e8-OSL
ocsp.r2m02.amazontrust.com/
108.157.228.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 108.157.228.227:0
Hash 1e071ca83bf782b753a84ce63cdbac5c
61a64538e492e6b2bb3b890d50475bc0077f2288
883e2cca8768dbd8826def4f23b69f377b9a7657ace0485257c5f0a9c9d8559f
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=169255
Date: Wed, 28 Dec 2022 21:30:22 GMT
Etag: "63aca795-1d7"
Expires: Fri, 30 Dec 2022 20:31:17 GMT
Last-Modified: Wed, 28 Dec 2022 20:31:17 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 d9ef81045d0cf909bd3143957da09138.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P2
X-Amz-Cf-Id: Uiv0wcZRU3CxZOipSc116cRbNnwruad6cM8TosC56ktE2HWpyDxrjA==
n0499.com/db0e2213cb0f48ce826086bd63e0848c.gif
20.249.58.233200 OK 112 kB URL HTTP/1.1 n0499.com/db0e2213cb0f48ce826086bd63e0848c.gif
IP 20.249.58.233:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 112 kB (111619 bytes)
Hash e3f92ec9a28c2ef601aa8c8dee64a06e
935ace4b291314236b51791d2fd3afba745de0aa
b8b35dd7df9ef2d465894d74741e0b97aa35857bb6c9f802c24d70fc594d847f
GET /db0e2213cb0f48ce826086bd63e0848c.gif HTTP/1.1
Host: n0499.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 24 Dec 2022 08:41:28 GMT
ETag: W/"63a6bb38-4b76c"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 280fd010b99ccfab3fc44b3f740f2bf6
0d5640bc8d6935bc7cdb22270c8128033c555a37
32ccf94ed07d5ff49e8fcc24792aa1279d154ce5e717f9ad91427f77cad75745
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=167812
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 21:30:22 GMT
Etag: "63aca1f2-117"
Expires: Fri, 30 Dec 2022 20:07:14 GMT
Last-Modified: Wed, 28 Dec 2022 20:07:14 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=30297264&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6423&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=30297264&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6423&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=30297264&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6423&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 28 Dec 2022 21:30:22 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=5F658F36CF8F2351; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=484740555&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6423&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=484740555&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6423&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=484740555&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6423&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 28 Dec 2022 21:30:22 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=84C4A90186719825; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
kvhuuu.top/d766f59de772a56dbe1bc6cf1d0027ad.gif
104.21.234.152200 OK 328 kB URL HTTP/2 kvhuuu.top/d766f59de772a56dbe1bc6cf1d0027ad.gif
IP 104.21.234.152:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 328 kB (328164 bytes)
Hash 27b3d7f9fb788c290c5025ee779a7a86
549f03a050418ee932de6ac04508c6a49668341a
8e40d3a5d0773e3f69da3851dc6adfd4920b109a0d349a6d97da76cdc00f4717
GET /d766f59de772a56dbe1bc6cf1d0027ad.gif HTTP/1.1
Host: kvhuuu.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://b3.sjpa2.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 21:30:22 GMT
content-type: image/gif
content-length: 328164
last-modified: Wed, 30 Nov 2022 09:05:08 GMT
etag: "63871cc4-501e4"
expires: Fri, 30 Dec 2022 10:41:03 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2458159
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xr1g2ta2FPHAJF45EgTc2yVHXx2CeKAUeQpNIXTHKxHoAtBj2b%2Baxu6OMtK7oXMNxt23gTHNCsBAghQtlhfVFlssP13lRY%2FYZRcuK6LPNjWZEwRPKyf98RaGYIfL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 780d6594b9330052-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
n0533.com/df8d4915da1448778d4aea97c14e3435.gif
20.222.111.50200 OK 72 kB URL HTTP/1.1 n0533.com/df8d4915da1448778d4aea97c14e3435.gif
IP 20.222.111.50:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Hash bbb56efbde6dbc5daf61d3394eb0fd9d
103c1a217e500ea80e006ee8f559b280bc2de81a
f833540a2bbd9579b054246bf3df4c0c1eee9efc54d35838850ef70030f3ae7f
GET /df8d4915da1448778d4aea97c14e3435.gif HTTP/1.1
Host: n0533.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 18 Dec 2022 12:56:14 GMT
ETag: W/"639f0dee-3ef12"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
13.227.254.102200 OK 396 kB URL HTTP/2 kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
IP 13.227.254.102:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 396 kB (395600 bytes)
Hash 5155d4f34bc2f7e77b9fe8e854d9e96f
408ed373dd26d934ee70f30b0e47a9dc8049983f
db9f393331e2d56fe7da37b7822590b82524e2dde508848299877daeae1df3be
GET /f7fd72d8ade7e262c4b4f656dd460724.gif HTTP/1.1
Host: kzehh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 395600
date: Tue, 20 Dec 2022 23:20:07 GMT
last-modified: Sat, 17 Dec 2022 11:55:02 GMT
etag: "5155d4f34bc2f7e77b9fe8e854d9e96f"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 cc2beda7b70d44b6ed40dda2c22f45e4.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: NrzQLPokMtjdsLWtZcwI01Pr3w66ulPFosHSWMJukoyPp7XxUMXWnA==
age: 684615
X-Firefox-Spdy: h2
vip9500.com/vip9500tp/9500.gif
23.225.41.226200 OK 447 kB URL HTTP/2 vip9500.com/vip9500tp/9500.gif
IP 23.225.41.226:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 447 kB (446990 bytes)
Hash d4c3f6ea538ca2743623d74354981a80
f66918d2bebcc84cfba8935e28824d66696afd35
0e66cff2bad2fee1428d731253ee9c2c93ab731089489300f153dadbb2c62c17
GET /vip9500tp/9500.gif HTTP/1.1
Host: vip9500.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 21:30:16 GMT
content-type: image/gif
content-length: 446990
last-modified: Thu, 06 Oct 2022 07:09:42 GMT
etag: "633e7f36-6d20e"
expires: Fri, 27 Jan 2023 21:30:16 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
108.157.228.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 108.157.228.227:0
Hash 07bb43e5efbbc6e8ba015b0837fa8fb2
a7dffefb1552cbb57f1211507c5dabb4e2bb41f6
7cbf7c140be7fbe7809cd36ad1bfbeee5841b4b68f1949d1f1f5503d2adf764c
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143332
Date: Wed, 28 Dec 2022 21:30:23 GMT
Etag: "63ac36ff-1d7"
Expires: Fri, 30 Dec 2022 13:19:15 GMT
Last-Modified: Wed, 28 Dec 2022 12:30:55 GMT
Server: ECS (dcb/7F60)
X-Cache: Miss from cloudfront
Via: 1.1 d9ef81045d0cf909bd3143957da09138.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P2
X-Amz-Cf-Id: wXFM0xBYkhXLGF7SX4jPE0oFThM7fJNY3n6K-q36OyjIjzHmbOc64w==
Age: 2900
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash f7c477ae4d924bf8a238ee956bf7a284
af33ff4e7a80c05a6073672a0c16b2617bfc22da
f8c63fd16063b421fe9279bc480c1bc9a65d273180f5cae796c4bfe158f75b27
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 01 Jan 2023 20:02:37 GMT
ETag: "af33ff4e7a80c05a6073672a0c16b2617bfc22da"
Last-Modified: Wed, 28 Dec 2022 20:02:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1727
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d6596bbf8b509-OSL
kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
13.227.254.43200 OK 919 kB URL HTTP/2 kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP 13.227.254.43:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 919 kB (918679 bytes)
Hash 956582dd3aa22ca9b19bdd1d5e091e24
c2d80e05f59981f6ed58a8231f502bd990894d6b
88e686882e64a0e199c79bd83b7102885b67242b5d0b49a1f37674c0bb3ddd8e
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kzerr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 918679
last-modified: Mon, 19 Dec 2022 07:54:21 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Dec 2022 13:46:26 GMT
etag: "956582dd3aa22ca9b19bdd1d5e091e24"
x-cache: Hit from cloudfront
via: 1.1 0fa3b62de49c01129844acc24e390b56.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: wZ9OzS4nyaW8y_AgpKw5nMu4O5Ln4ZCiIR9M__wixBQtFGaB5f46RQ==
age: 27836
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3318e066949881a2ce7b726b96034ebd
e42260305cd13e7c961bf1191a2863a02a8f3b6b
47879a5af65ce48640ff3e54413c18f115a035c3a0352f6233d070c7aa967c14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47879A5AF65CE48640FF3E54413C18F115A035C3A0352F6233D070C7AA967C14"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14000
Expires: Thu, 29 Dec 2022 01:23:43 GMT
Date: Wed, 28 Dec 2022 21:30:23 GMT
Connection: keep-alive
kzeww.com/4f5ca562874d2b77c6c37263e48db5c6.gif
13.227.254.43200 OK 236 kB URL HTTP/2 kzeww.com/4f5ca562874d2b77c6c37263e48db5c6.gif
IP 13.227.254.43:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 236 kB (236292 bytes)
Hash cd5e004cbaac71f638074f0cbe9746a3
4054e5695aa4e4ec6463f54e47575019088c08b4
5eec74f9163478267e1289dcd3b02be5581e9e0f6ede10a80fcdf4afadf149ec
GET /4f5ca562874d2b77c6c37263e48db5c6.gif HTTP/1.1
Host: kzeww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 236292
last-modified: Thu, 15 Dec 2022 01:45:46 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Dec 2022 07:08:36 GMT
etag: "cd5e004cbaac71f638074f0cbe9746a3"
x-cache: Hit from cloudfront
via: 1.1 1d57d3cbfc5a5b868b460784e4cd7888.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: PXWf-Tj4drkMdaZXgw2RoWN7BBtOuV57cIqRq0nZqGtf-5I8VwjMRA==
age: 84619
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?86ea3af34e71a9d5eae3e3255c8ace53
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?86ea3af34e71a9d5eae3e3255c8ace53
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 3d21618cdade706218609512f013dbc2
5cffae9d45ab3a8cb266416cd1bf66a6bdc52171
862e2e2061e685d71034426c48a689b44b17c96b82854ac36548438f5dc26ec1
GET /hm.js?86ea3af34e71a9d5eae3e3255c8ace53 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Wed, 28 Dec 2022 21:30:22 GMT
Etag: 7778822a2d54ffdf426d00f0cf55e9f9
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=FA3598C8281CE1C8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
172.83.155.45200 OK 153 kB URL HTTP/2 kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Size 153 kB (152944 bytes)
Hash e123b1db93fe85cdb6fac876a0c8e7e0
a53eefc6b115c80c1a86df90893831449c1b1468
ec066be9d1a0688679676cb0d8c3f307dc358085473c4b3cf1b263db64fa4e2a
GET /241ffcf0a5007067dad148a90c317e01.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 21:30:22 GMT
content-type: image/gif
content-length: 152944
last-modified: Tue, 06 Dec 2022 08:43:58 GMT
etag: "638f00ce-25570"
expires: Thu, 29 Dec 2022 09:30:22 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 624282
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MQO9ZfZ3twPCIHxY7YQkJxikv6Gtt5O43RlmGYxAsMbDxTTOzL1T0hnSsDcm7Ru9rt%2BJR6ktSwsCZLGfVlEq%2Bz6iY30B5p6CM9fXL1AD5%2Bg%2F670KfIbyYiEBlZ1H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 77f1c295ad2bebcb-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
1865366ccc.com/7b6de5866506450c825e02fdffc35b6a.gif
45.61.212.129200 OK 684 kB URL HTTP/1.1 1865366ccc.com/7b6de5866506450c825e02fdffc35b6a.gif
IP 45.61.212.129:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 684 kB (684143 bytes)
Hash ed37cb5d680ff52e6a6b5e102538b151
c71e5c83de0a4d1c0c6022d545f69c52dc4cfc2f
e14d54ea73e107930500243ac6068be527aeedd1f698110bc8bb7a599e38b069
GET /7b6de5866506450c825e02fdffc35b6a.gif HTTP/1.1
Host: 1865366ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63a9c6fc-a706f"
Date: Mon, 26 Dec 2022 16:14:47 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 26 Dec 2022 16:08:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-29
Content-Length: 684143
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash ecfa354f5656cc6d32d262f885468b7a
909fe604a18f070a4ba390c0aa48d0d86a0c9a89
93bdc0b02bb53f3138d08ec75c28ec85641bae18bd6756c8dc15922237b2d41b
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=690
Date: Wed, 28 Dec 2022 21:30:23 GMT
Connection: keep-alive
X-N: S
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash bc554210204a2511a1f93ebd6a98f646
e46d874731a6c2ea0b53aedab067fb42c6a7b24e
93c40c3117fc9089ffd6eea1c47ecc4d4bfa381db86c1c0e4667330e5e0439b0
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 01 Jan 2023 20:38:28 GMT
ETag: "e46d874731a6c2ea0b53aedab067fb42c6a7b24e"
Last-Modified: Wed, 28 Dec 2022 20:38:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d65978df11bfa-OSL
kzeoo.com/47e02a59b814807a640ae615b82c06ac.gif
172.83.155.45200 OK 214 kB URL HTTP/2 kzeoo.com/47e02a59b814807a640ae615b82c06ac.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Size 214 kB (213551 bytes)
Hash 38a577005d8da64f084a3f6624619e55
d271b81103a0c053eaaf5ba802158a2d7ea8e3c1
23d0f1ac9f00f07722d9b6496672e1e08e1e6657d5b6b36542f14d87f15eaa43
GET /47e02a59b814807a640ae615b82c06ac.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 21:30:22 GMT
content-type: image/gif
content-length: 213551
last-modified: Wed, 14 Sep 2022 11:24:46 GMT
etag: "6321b9fe-3422f"
expires: Thu, 29 Dec 2022 09:30:22 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 1551934
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LDOdlDdebymaLfx%2Be%2BVlBxNc3vsIbQcxoUlaUUCpXufrslsYaH%2FYFhk2kKyCZRbe9uGWXVVZLwSWh9MBZNfashMcjo59PS%2FibWDQP4WBBleY9ZAQ1DjDD7QKR4HH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 77f403244c27c5e1-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/meizhuama/js/jquery.min.js
23.224.221.54200 OK 304 kB URL HTTP/2 b3.sjpa2.com/template/meizhuama/js/jquery.min.js
IP 23.224.221.54:0
Size 304 kB (304251 bytes)
Hash c7c38b084daa12460792706c8c3ec083
49a5cf380a304ae72520f5060736017bd223b9f8
82309501e9f47c60eb36fe3fc2e87e6f69461b16391e3116ddbe272cce15868f
GET /template/meizhuama/js/jquery.min.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
last-modified: Fri, 02 Dec 2022 14:33:00 GMT
vary: Accept-Encoding
etag: W/"638a0c9c-1538f"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
b3.sjpa2.com/template/meizhuama/css/seyuav-ui.css
23.224.221.54200 OK 146 kB URL HTTP/2 b3.sjpa2.com/template/meizhuama/css/seyuav-ui.css
IP 23.224.221.54:0
Size 146 kB (145628 bytes)
Hash eba96aa87e678b1cfde883e210b39b0a
a9c14aa81dcbbb4d1a9b9654db367ebfc22e4308
b44dee98ecce1fe11bdc133cc5e80f7edb0c87e7211eddef200ab4bcfa4d24e2
GET /template/meizhuama/css/seyuav-ui.css HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: text/css
last-modified: Fri, 02 Dec 2022 14:32:33 GMT
vary: Accept-Encoding
etag: W/"638a0c81-8a77"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash bc554210204a2511a1f93ebd6a98f646
e46d874731a6c2ea0b53aedab067fb42c6a7b24e
93c40c3117fc9089ffd6eea1c47ecc4d4bfa381db86c1c0e4667330e5e0439b0
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 01 Jan 2023 20:38:28 GMT
ETag: "e46d874731a6c2ea0b53aedab067fb42c6a7b24e"
Last-Modified: Wed, 28 Dec 2022 20:38:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 780d6598c911b51b-OSL
9366qq.com/92db527b11c14f6786a03e7d9360b8a2.gif
45.61.212.218200 OK 837 kB URL HTTP/1.1 9366qq.com/92db527b11c14f6786a03e7d9360b8a2.gif
IP 45.61.212.218:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 837 kB (837008 bytes)
Hash 584c3e9b6c2fd77fbb6885fa31881b67
827d9c49b8315888c220f34ee366ed694569f32e
d97ecf8f032827472d136c190f837c6fdc9bccdee52788dc6055bd7faf973030
GET /92db527b11c14f6786a03e7d9360b8a2.gif HTTP/1.1
Host: 9366qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63958c42-cc590"
Date: Thu, 22 Dec 2022 02:33:56 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 11 Dec 2022 07:52:34 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-18
Content-Length: 837008
b3.sjpa2.com/template/web/dipiao.js
23.224.221.54200 OK 904 kB URL HTTP/2 b3.sjpa2.com/template/web/dipiao.js
IP 23.224.221.54:0
Size 904 kB (903598 bytes)
Hash 7e94e35ab0e7050f5db48e602b7c6309
4d8d5ac33eeda2aa3df2263d6ab01b982d609420
ed79aafe2ec75d0f0569619e4a08a3dd044be3254f7976165dac34260d00a378
GET /template/web/dipiao.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
last-modified: Sun, 15 May 2022 14:24:29 GMT
vary: Accept-Encoding
etag: W/"62810d1d-81a"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
kzeoo.com/dc6a101fe66ff5b5451c5cfd06a5d193.gif
172.83.155.45200 OK 370 kB URL HTTP/2 kzeoo.com/dc6a101fe66ff5b5451c5cfd06a5d193.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 370 kB (369588 bytes)
Hash 8798d5e84c5026dc0ae409029e085cea
97ac4e376967d94bed563a5682f6dce3b3f797cc
d916e69d45187a9dc42167043c6e45406a088e6d7352c6c79cefcc0e60c8c6e3
GET /dc6a101fe66ff5b5451c5cfd06a5d193.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 21:30:22 GMT
content-type: image/gif
content-length: 369588
last-modified: Tue, 16 Aug 2022 11:19:06 GMT
etag: "62fb7d2a-5a3b4"
expires: Thu, 29 Dec 2022 09:30:22 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 1687054
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8MM9LrGyjTW1ShwJS32jWP9wXvpuxWqWQWuRyPSD4aj%2F0CUzX3%2BuYTQe7H02Q82AcyO2bnrbqCVPFPDZiC%2BmRAvCVUd7q7d47%2FVs%2BhNTaOzDC%2BL3roa9epam9rIs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 77f486165bb1c390-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 1ff794394056a67f949144f8ff7cdda5
fe4ebb8dd0f880196e2c0bf35bd3b5519f2381b3
b8d41aa4fad7caf93f6dbb8b7a827dd98e42a2b65c0ff47c1b38200dbc484eee
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Wed, 28 Dec 2022 21:30:23 GMT
Connection: keep-alive
X-N: S
9030a.cc/1008-960x60.gif
154.85.10.21200 OK 245 kB IP 154.85.10.21:0
ASN #211392 Dream Cloud Innovation Limited
File type GIF image data, version 89a, 960 x 60\012- data
Size 245 kB (245135 bytes)
Hash b6eb4d9fd04fe63a7687677a8036e237
eac3cedc645a39478dc6ad3ec6ea97db621174b8
6b61596ae15b088b70b49d17c7b47eaffaa5f235c9215459334b85039af7f008
GET /1008-960x60.gif HTTP/1.1
Host: 9030a.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Tue, 04 Oct 2022 14:45:04 GMT
Accept-Ranges: bytes
ETag: "5c7ab8e3ffd7d81:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Dec 2022 21:29:12 GMT
Content-Length: 245135
X-Via: 1.1 localhost.localdomain (random:85111 Fikker/Webcache/3.7.8)
Set-Cookie: fikker-tkjk-8I2E=6AJN4WT7BW0g0mIaVuK7h92mbGRsXQjs; expires=Thu, 29 Dec 2022 08:00:34 GMT; max-age=7200; path=/
fikker-tkjk-8I2E=6AJN4WT7BW0g0mIaVuK7h92mbGRsXQjs; expires=Thu, 29 Dec 2022 08:00:34 GMT; domain=.cc; max-age=7200; path=/
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=5541297&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6423&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=5541297&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6423&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=5541297&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.qqcdn2.com%2F&v=1.3.0&lv=1&sn=6423&r=0&ww=1268&u=https%3A%2F%2Fb3.sjpa2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 28 Dec 2022 21:30:23 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=60E5DB00D08A7336; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ia.51.la/go1?id=21273067&rt=1672263017005&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1672263017005&tt=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252Fb3.sjpa2.com%252F&pu=http%253A%252F%252Fwww.qqcdn2.com%252F
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=21273067&rt=1672263017005&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1672263017005&tt=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252Fb3.sjpa2.com%252F&pu=http%253A%252F%252Fwww.qqcdn2.com%252F
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21273067&rt=1672263017005&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1672263017005&tt=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252Fb3.sjpa2.com%252F&pu=http%253A%252F%252Fwww.qqcdn2.com%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: CloudWAF
Date: Wed, 28 Dec 2022 21:30:23 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=0407dfd27281c2580b; path=/
HWWAFSESTIME=1672263023251; path=/
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 48ac124050f371e72076dd30822a0cb6
81a0a482807e5253cde97bd60ea71ab99a0cb9ff
863e54faa2917b35b1a5d8b3738e1e7d91add6100e89bcac533c9280e92f60c1
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:23 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 15:23:09 GMT
Expires: Wed, 04 Jan 2023 15:23:08 GMT
Etag: "81a0a482807e5253cde97bd60ea71ab99a0cb9ff"
Cache-Control: max-age=582164,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 780d65982f5fb524-OSL
383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
120.77.166.54200 OK 299 kB URL HTTP/1.1 383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
IP 120.77.166.54:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 299 kB (299398 bytes)
Hash f4b7967855549e81f65598b93a43d9db
6ab53e8a9af687c1dddad236af323080a04499cf
2e95dc2082af7cc833e0aef825efc261c04b69e3ec4350203854008cc4a12dc6
GET /960x60.gif HTTP/1.1
Host: 383guanggao.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/gif
Content-Length: 299398
Connection: keep-alive
x-oss-request-id: 63ACB56EA554993039DBB2D5
Accept-Ranges: bytes
ETag: "F4B7967855549E81F65598B93A43D9DB"
Last-Modified: Thu, 08 Dec 2022 07:20:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8810428828543929982
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 9LeWeFVUnoH2VZi5OkPZ2w==
x-oss-server-time: 3
chinainqredient.com/gg/960X60.gif
218.66.171.152200 OK 96 kB URL HTTP/2 chinainqredient.com/gg/960X60.gif
IP 218.66.171.152:0
File type GIF image data, version 89a, 960 x 60\012- data
Hash 57557d6b489d522d480d9b82ce29db65
da2d3b35f0c9534e84e50310aeafe73173037315
4b96548579c0d9b380b10ce78bdb3e8edfd35e180519b319c6b1181e7b325952
GET /gg/960X60.gif HTTP/1.1
Host: chinainqredient.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NgxFence
date: Wed, 28 Dec 2022 21:30:23 GMT
content-type: image/gif
content-length: 95856
x-oss-request-id: 63A4A4F2FDBA0C3532D6BBD2
etag: "57557D6B489D522D480D9B82CE29DB65"
last-modified: Sat, 09 Jul 2022 12:37:07 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15928828585404051914
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
content-md5: V1V9a0idUi1IDZuCzinbZQ==
x-oss-server-time: 1
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/dh2.js
23.224.221.54200 OK 287 kB URL HTTP/2 b3.sjpa2.com/template/web/dh2.js
IP 23.224.221.54:0
Size 287 kB (287252 bytes)
Hash 5e356f249c95553df71444a14f8bdb63
a7bfe4248ab5ec6902d0d162adeeb819393e8f9e
a4668b3e66c89ab187bfde1466368c116fa678e34fe57f36405ffab6cb7da583
GET /template/web/dh2.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 19:25:44 GMT
vary: Accept-Encoding
etag: W/"63ac9838-360c"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
baidu6image63sina8.com/pics/960x60.gif
1.32.249.24200 OK 193 kB URL HTTP/2 baidu6image63sina8.com/pics/960x60.gif
IP 1.32.249.24:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 960 x 60\012- data
Size 193 kB (192672 bytes)
Hash 132816c896c6f881f51cb0cbd555f154
1c85b2954d81568e474e5e8432d53ea99af0512c
9d199a5b0f30dd4e15e5cfc3f9b291dd3f5aec59961155124e8ce6037cf6f17d
GET /pics/960x60.gif HTTP/1.1
Host: baidu6image63sina8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 21:30:22 GMT
content-type: image/gif
content-length: 192672
last-modified: Mon, 19 Dec 2022 11:57:49 GMT
etag: "63a051bd-2f0a0"
expires: Fri, 27 Jan 2023 21:30:22 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
baidu6image63sina8.com/pics/960x120.gif
1.32.249.24200 OK 266 kB URL HTTP/2 baidu6image63sina8.com/pics/960x120.gif
IP 1.32.249.24:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 960 x 120\012- data
Size 266 kB (265495 bytes)
Hash bc07d487822f069c5040261de3cac5cd
4f40658aec52510848be3e188948df9b0dfa81cb
1ad1f33379afef04502d37ef365ba63e1acdd67d8f31afbfa3e5c88ae330f105
GET /pics/960x120.gif HTTP/1.1
Host: baidu6image63sina8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 21:30:22 GMT
content-type: image/gif
content-length: 265495
last-modified: Mon, 19 Dec 2022 11:58:06 GMT
etag: "63a051ce-40d17"
expires: Fri, 27 Jan 2023 21:30:22 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 21fd37895c7aefde76050a01e9c5a0a8
487cf38b6a1d64669d23c737fa4bacf4a7c8d112
433acd7093e5ede5ed9bcadbf1def635ab1d38acf51819cbe243ef0d13cd8ea8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:24 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 26 Dec 2022 20:47:59 GMT
Expires: Mon, 02 Jan 2023 20:47:58 GMT
Etag: "487cf38b6a1d64669d23c737fa4bacf4a7c8d112"
Cache-Control: max-age=428853,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 780d659bd80bb4eb-OSL
ggt999.oss-cn-hangzhou.aliyuncs.com/xpj/xpj200200a.gif
47.110.23.69200 OK 457 kB URL HTTP/1.1 ggt999.oss-cn-hangzhou.aliyuncs.com/xpj/xpj200200a.gif
IP 47.110.23.69:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 200 x 200\012- data
Size 457 kB (457430 bytes)
Hash 81909e3f9a8b25c5a5232736c7579dba
eed6805145c8d951abfb121d601b58dfb7fe8abe
61e2c26bef6ac94d102159274613533cba54ccac893ac968a9720d7d031aab9d
GET /xpj/xpj200200a.gif HTTP/1.1
Host: ggt999.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/gif
Content-Length: 457430
Connection: keep-alive
x-oss-request-id: 63ACB56E09E59834335EE14D
Accept-Ranges: bytes
ETag: "81909E3F9A8B25C5A5232736C7579DBA"
Last-Modified: Mon, 19 Dec 2022 06:38:12 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12219492341710081434
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: gZCeP5qLJcWlIyc2x1edug==
x-oss-server-time: 3
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 76f7815d8e51698a7f08a013f6a8c65d
73a57752abe20f557829efb2085c0615f71aef12
edb7e24309f12ae6be3f6f2c0037dfed5ee08dfcf619e76aceb33b50ef677ae8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=87881
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 21:30:24 GMT
Etag: "63ab69b9-2d7"
Expires: Thu, 29 Dec 2022 21:55:05 GMT
Last-Modified: Tue, 27 Dec 2022 21:55:05 GMT
Server: nginx
Content-Length: 727
p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
47.246.44.224200 OK 343 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 343 kB (343002 bytes)
Hash ce862703bd3a6fd9e7acc3c32453fe84
c27754e24547e935314ba986477cd326628af7e4
eb9f779660b2713488854f27a211239724bb29b842e939424ec882b51520350b
GET /obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 343002
date: Sat, 17 Dec 2022 10:28:23 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sat, 17 Dec 2022 10:00:43 GMT
nw-session-id: 2022121718004301013113605215982497p5k6801dy
nw-session-trace: 2022-12-17T18:00:43.827293149+08:00 42
x-bdcdn-cache-status: TCP_HIT
x-length: 343002
x-powered-by: ImageX
x-response-date: Sat, 17 Dec 2022 18:00:43 GMT
x-tt-logid: 2022121718004301013113605215982497
via: n128-134-083, cache14.l2de2[0,0,206-0,H], cache5.l2de2[2,0], cache5.l2de2[3,0], cache3.se1[0,0,200-0,H], cache7.se1[7,0]
x-request-ip: fdbd:dc03:15:482::74
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=7
x-tt-trace-host: 010ec35d8338a3c1341674e3d2464ee09a429c9c5af2fc930930b9ec60625c05f3b71a3d79f906afd2479681df4ec15d8b01af344e24d3e5df5584a5196f7e0400dfccab4c7d44dab881b7b096fd4eb23fa223bfc14da29e326a459a9a6aa15d8b
x-response-lb: image
ali-swift-global-savetime: 1671272903
age: 990121
x-cache: HIT TCP_MEM_HIT dirn:2:427158808
x-swift-savetime: Sat, 17 Dec 2022 11:36:55 GMT
x-swift-cachetime: 31531888
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9b16722630243042270e
X-Firefox-Spdy: h2
84998085.com/8499/100X100.gif
172.247.109.215200 OK 95 kB URL HTTP/2 84998085.com/8499/100X100.gif
IP 172.247.109.215:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash cbe62f27202512ec3475a092a3534a39
789ec835539f9dc252906eff2466f7ad6140970d
0a05a964d031df91ed0f89964558e0b8a9f34bd57c36d7dd9bf4a6453521d222
GET /8499/100X100.gif HTTP/1.1
Host: 84998085.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Dec 2022 21:30:23 GMT
content-type: image/gif
content-length: 95429
last-modified: Wed, 28 Dec 2022 09:29:16 GMT
etag: "174c5-5f0e00093fbe4"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
b3.sjpa2.com/template/web/app.js
23.224.221.54200 OK 292 kB URL HTTP/2 b3.sjpa2.com/template/web/app.js
IP 23.224.221.54:0
Size 292 kB (292246 bytes)
Hash 13a1f6e86bccd9e3bf176e5053079c19
572c97b0458f433644286f7b05e1323e1053d949
f0f422f30db6082af49f3fd35a5596836d29e7a6dbc26cad738f4b8269f79ee3
GET /template/web/app.js HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:58 GMT
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 19:21:03 GMT
vary: Accept-Encoding
etag: W/"63ac971f-3281"
expires: Thu, 29 Dec 2022 17:30:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
99883aaa.com/1db%E5%88%9D%E5%A4%9C71f0b7b41d4abb366e018109273.gif
45.61.212.129404 Not Found 146 B URL HTTP/1.1 99883aaa.com/1db%E5%88%9D%E5%A4%9C71f0b7b41d4abb366e018109273.gif
IP 45.61.212.129:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /1db%E5%88%9D%E5%A4%9C71f0b7b41d4abb366e018109273.gif HTTP/1.1
Host: 99883aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Wed, 28 Dec 2022 21:30:24 GMT
Content-Type: text/html
Server: nginx
X-Cache: MISS from cloud-us2-cdnb-29
Content-Length: 146
vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
47.75.19.55200 OK 402 kB URL HTTP/1.1 vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
IP 47.75.19.55:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 402 kB (401949 bytes)
Hash 84f5e7e4907b6cd9053b363f33b77c53
309a705272fea6d84c805fd12b0f1a65563f823b
ebfe8fe0061adb9df1abb8739d4975acaffedc85d286190e92148e5cd8b658b2
GET /sstu/st.gif HTTP/1.1
Host: vns86.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 28 Dec 2022 21:30:22 GMT
Content-Type: image/gif
Content-Length: 401949
Connection: keep-alive
x-oss-request-id: 63ACB56E7E084E3535C64D11
Accept-Ranges: bytes
ETag: "84F5E7E4907B6CD9053B363F33B77C53"
Last-Modified: Tue, 20 Dec 2022 14:23:55 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1766787816591418203
x-oss-storage-class: Standard
x-oss-version-id: CAEQRhiBgIDM6da_qRgiIGU0ODQzNWY2ZGZlZDQxODNhMzlkYThlYWY5YTEyYTU5
Content-MD5: hPXn5JB7bNkFOzY/M7d8Uw==
x-oss-server-time: 1
595tuchuang.com/960x80.gif
183.255.37.35200 OK 145 kB URL HTTP/1.1 595tuchuang.com/960x80.gif
IP 183.255.37.35:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 145 kB (144990 bytes)
Hash 9fd5431ae14d05e144a79a04b928ad1d
43ca6652416a1403dc5a96d779d414330edbe411
f56b12228d407bfd1f7d17582733a92443a012dc7005b9b9896e9b8b3dc13c2c
GET /960x80.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Dec 2022 21:30:23 GMT
Content-Type: image/gif
Content-Length: 144990
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:28:21 GMT
ETag: "63a309f5-2365e"
Expires: Sat, 21 Jan 2023 07:50:29 GMT
Cache-Control: max-age=2592000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
kyky-1308348670.cos.ap-nanjing.myqcloud.com/ky960x60.gif
129.211.161.170200 OK 400 kB URL HTTP/1.1 kyky-1308348670.cos.ap-nanjing.myqcloud.com/ky960x60.gif
IP 129.211.161.170:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type GIF image data, version 89a, 960 x 60\012- data
Size 400 kB (399450 bytes)
Hash 4e1e4b8f46ac2e67539d5881785ba29a
7d3c9c963087ffc8c196cb7e67629342027a8a45
4c9cc489a2e26500ace73c53ce05bdfa52876a8700b7e9e73c1554187acefb0d
GET /ky960x60.gif HTTP/1.1
Host: kyky-1308348670.cos.ap-nanjing.myqcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 399450
Connection: keep-alive
Accept-Ranges: bytes
Date: Wed, 28 Dec 2022 21:30:22 GMT
ETag: "4e1e4b8f46ac2e67539d5881785ba29a"
Last-Modified: Mon, 12 Dec 2022 14:48:35 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 10945751995987991778
x-cos-request-id: NjNhY2I1NmVfNDc1NGU0MDlfMjE5MzRfMWVlODk0NQ==
p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaSjBiaGkyzib6j6VE8xLfQRARWuMBiafIh58c/0
43.129.255.47200 OK 206 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaSjBiaGkyzib6j6VE8xLfQRARWuMBiafIh58c/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 206 kB (205622 bytes)
Hash 8a22a6888c325aa3acf83e7cedfe35e7
37da1ea976724d35c1c32ae18d7924192184ba32
2e90b20d4c2067ff68444790955d65d2745365cf025c486c8c2b685696faeeaa
GET /qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaSjBiaGkyzib6j6VE8xLfQRARWuMBiafIh58c/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 28 Dec 2022 21:30:23 GMT
content-type: image/gif
content-length: 205622
vary: Accept,Origin
last-modified: Mon, 19 Dec 2022 07:43:02 GMT
cache-control: max-age=2592000
x-delay: 40819 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 205622
chid: 0
fid: 0
x-nws-log-uuid: 5d0c4be7-8bfd-4d88-96bd-175da810988b
X-Firefox-Spdy: h2
img.1151555.com/images/63a1b20f7c2b41a439f0ec4c.gif
3.36.126.81302 Found 0 B URL HTTP/2 img.1151555.com/images/63a1b20f7c2b41a439f0ec4c.gif
IP 3.36.126.81:0
GET /images/63a1b20f7c2b41a439f0ec4c.gif HTTP/1.1
Host: img.1151555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b3.sjpa2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
X-Firefox-Spdy: h2
b3.sjpa2.com/
23.224.221.54200 OK 0 B IP 23.224.221.54:0
GET / HTTP/1.1
Host: b3.sjpa2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.qqcdn2.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 05:30:57 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2