cfileapi.gyaott.top/001/puppet.Txt?235781
45.207.71.123 224 B URL cfileapi.gyaott.top/001/puppet.Txt?235781
IP 45.207.71.123:0
ASN #136800 Sun Network Hong Kong Limited - HongKong Backbone
File type HTML document, ASCII text, with CRLF line terminators
Hash 5abd17caff5ac9f16a562f6fd5eb4460
6423d820a668b08f45b2b7ca411ca3a87781b145
26d82981426ce33e8efceb49fc368223e48d977f6f75075710991ffa8876f57c
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET /001/puppet.Txt?235781 HTTP/1.1
Host: cfileapi.gyaott.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 03:17:40 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
cfileapi.gyaott.top/gczx.html
45.207.71.123200 OK 5.8 kB URL User Request GET HTTP/1.1 cfileapi.gyaott.top/gczx.html
IP 45.207.71.123:80
ASN #136800 Sun Network Hong Kong Limited - HongKong Backbone
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (28637)
Hash 200f39af116ed54e6182f27605fe374a
b8bfefc65cb9fbefff48719c96969e78804427f2
27d9da24acf51e0547e5577fa3eec1269258af431fb598ce7c36127082e0c878
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
GET /gczx.html HTTP/1.1
Host: cfileapi.gyaott.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://cfileapi.gyaott.top/001/puppet.Txt?235781
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 03:17:41 GMT
Content-Type: text/html
Last-Modified: Mon, 15 May 2023 15:00:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6462491c-789c"
Content-Encoding: gzip
cfileapi.gyaott.top/favicon.ico
45.207.71.123200 OK 224 B URL GET HTTP/1.1 cfileapi.gyaott.top/favicon.ico
IP 45.207.71.123:80
ASN #136800 Sun Network Hong Kong Limited - HongKong Backbone
Requested by http://cfileapi.gyaott.top/gczx.html
File type HTML document, ASCII text, with CRLF line terminators
Hash 5abd17caff5ac9f16a562f6fd5eb4460
6423d820a668b08f45b2b7ca411ca3a87781b145
26d82981426ce33e8efceb49fc368223e48d977f6f75075710991ffa8876f57c
GET /favicon.ico HTTP/1.1
Host: cfileapi.gyaott.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cfileapi.gyaott.top/gczx.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 03:17:42 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp2.globalsign.com/gsorganizationvalsha2g3
104.18.20.226 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 104.18.20.226:0
Hash 836b01028c10e15ff6460134c368175a
ad32700f17a44a97003899d2000d4642fa9d2bb4
f700df938d78703bf1aab0026326bbc7d9bac4422f4f110780a706a565f55424
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 03:17:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Sun, 11 Jun 2023 02:07:45 GMT
ETag: "ad32700f17a44a97003899d2000d4642fa9d2bb4"
Last-Modified: Wed, 07 Jun 2023 02:07:46 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d35be604e110b65-OSL
gczx666.oss-cn-shenzhen.aliyuncs.com/gczx.js
120.77.166.101200 OK 125 B URL GET HTTP/1.1 gczx666.oss-cn-shenzhen.aliyuncs.com/gczx.js
IP 120.77.166.101:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by http://cfileapi.gyaott.top/gczx.html
Certificate IssuerGlobalSign nv-sa
Subject*.oss-cn-shenzhen.aliyuncs.com
Fingerprint83:92:B0:4C:5C:51:15:BB:A3:78:1F:CF:E8:53:1F:23:D6:94:8F:5C
ValidityMon, 30 Jan 2023 02:31:11 GMT - Sat, 02 Mar 2024 02:31:10 GMT
File type Unicode text, UTF-8 (with BOM) text, with no line terminators
Hash 0ff1ad5fc02d31edcb1f315d7d49172a
636631c6ebcc0766a27921cbec58dc71af4399c7
6cb30873cc1f45465e48eba72b4205007b7aab8b06a5713da9923841e5e14331
GET /gczx.js HTTP/1.1
Host: gczx666.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://cfileapi.gyaott.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 07 Jun 2023 03:17:43 GMT
Content-Type: application/javascript
Content-Length: 125
Connection: keep-alive
x-oss-request-id: 647FF6D715E0713830BB635E
Accept-Ranges: bytes
ETag: "0FF1AD5FC02D31EDCB1F315D7D49172A"
Last-Modified: Mon, 05 Jun 2023 04:56:31 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4246857114174384965
x-oss-storage-class: Standard
Content-MD5: D/GtX8AtMe3LHzFdfUkXKg==
x-oss-server-time: 1
329862.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=229343439
192.230.77.133200 OK 19 kB URL GET HTTP/2 329862.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=229343439
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash eb8e3792ccdc8bff5255c19298dec08b
42cff39f07b244c2f544ef8217e5d2ddc48a8504
27ad2bb2ef7442d8aae805c5bf43526442ad1f88a3b2d28b3f7cab9607e1a4d3
GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=229343439 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/javascript
content-encoding: gzip
x-robots-tag: noindex
content-length: 18673
X-Firefox-Spdy: h2
329862.com/static/js/initws.js
192.230.77.133200 OK 2.6 kB URL GET HTTP/2 329862.com/static/js/initws.js
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type C source, Unicode text, UTF-8 text
Hash b75862d5945ee76372a13c6dd89cca98
dc672637184650e0120b5cd079f2dcff574d0343
17863126fed9c414b64b4fa31983f2c7118624d8beaaae8c4c70832ae0fbb4b4
GET /static/js/initws.js HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-234a"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 2558
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:20 GMT
date: Wed, 07 Jun 2023 03:17:46 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2298506 2CNN RT(1686107865821 1112) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/_Incapsula_Resource?SWKMTFSR=1&e=0.08708305280473516
192.230.77.133200 OK 1 B URL GET HTTP/2 329862.com/_Incapsula_Resource?SWKMTFSR=1&e=0.08708305280473516
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /_Incapsula_Resource?SWKMTFSR=1&e=0.08708305280473516 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; ___utmvc=RwooPgu5eaG+PUtyY6rWCPRkxE89l6zxYOWBnhxAvQ5yvMm6aYfKxl4L3k2ihhlBZhM0U++14YcYCa0tHxdCMSvT6te+asndwJcauQyaA0WkUcr4gE/6qxKD2cB35MRyMgp4lzXy2sCu3wNAnzGUKlrjlKaH3rJ2sNAE1QPeFUbLpcGf/g7YZNgDHbBIVx8q8mTO1Mpxkz+KPv+HMgdUYU4PWaLCZ7BUOoExNNHFsO+EJJfPwgfIbzU71Qg6Vja3tGeypjwjVnBjR8HN9ElxZ3jctdr+feGpvbixg05UeSj8QbHrvTrlEs4wX29/V5LsJZW+LwxxodSh2YkFeywSrbZvE8TVA20ZTfmTdUSuUtc3sacr/CqB6a2MEqLmHMpizyZ+zQckun+IzflUjaLP3HLf9hgnUnGRp8LS/TGpSeeoUmMAAoJpPR5KkDAoP0+KAiae3uKfL0tffidC9ionJTCS6xdGsyXOSzx6TBKkSY2CFDbg0jli+KSO7FAc9wYldbnb/y1VbDbTDiH/40UcuB88dvprY58o3Gn92NgUzCjl/ZNabtiOR383EIyueEu3qupoYIQ8BG2Ck7aXrAEV8Q1Go8rMDSgPMJwhLt2k4jfP20vDFg+c+DgXVbdoCENcrOP6fqeCegzJFn41cAD+n0fDqbI19CQnBwF7HT+mfIzUHg3JBIsLbYYzVcSjJeWJ6MVn+33b99WPpUqGoFQlM8QsLnPoZP4M1iiBwJEUbyqEY2J/GLMDDecSgn8FgUTPTlERyuCSGr5a7O89FR8+bzsJzVlZO//n91C9qD/7dHN0IMTP79bymLMztbzFBurQPluNfG3j2QbVrAUhWrjWDEpDIBl28HWFo/Mkdz6ULN38y84DnQQQqjSZP9++3fVfqrWxecD7RxSRnLUQi/O0s1nI0u1Ht8Y3OMezaFOzaKGieFWXter4gil/KqLGIUtf98AgYqxyvzJEzJr6zkxlolS0sNzOXVCOYM4r2XpuoKr0S/CtVu2w+uxGI/1QEgdNEQsS5XLECOzsNJqp5ZU98uVzKGWMyp0X0jOhvE0Qz5rR6fHRWU3IoyPzClmshNHZq540GYSbh5Rbjg22FVHfesVLxswdrIQr+pQRX4TYCIioWUWu4dP7wRGQiVaB600iinxAhukDNdRWDJ/ce2/Mh6IP7IiM4kx2BYVeJWFlpvcG5N97YU+bdZbNzdZ0fHdtF8cD0EUb1AhsaLohqMQyUOH7+G1DSm/aisc1z6nis+IVm+C3JjQqAnO0ZRSfrv0809n/IHT0+F+8wmcYZnOWtPq5jU0qoPa8WPPZdMpxKtBxNjVxc6uxvF0EVvSVk4LrqQXK93bJmvwauThQ3BpL9D68y5SdMFk6gXWtKuuUl6wpMDPIB6D3t+5Ksbnmf6NOm0vykmEVOZa+i2F9yyTgfMN8OuO4fCP2nMs18gyFW9zYo9IawLW+Du40Q/4x0t+wKCnO0h78fNgrDXmkA++h2do6Jc7yw9a/Tegy9odrK+smTzEBBDhy9cy9tSnRLEQP8Jk4lIvldzOsrF6h2zEwpOPuCQOa+0HWZnfp+i6bVNaJ3NfzAJOhIYhY7JmHr61dbGTY1Hg8028IsSX8Pm401mrH5AZJPMcDEIpCAWadmGlQ4fGEJH6BAaFD4NJBNwwJ64kZKSRTBkbYQl4Zg7u0QVFtPEXI8tih/q/K30mSyZrzeUV2lHoXtyuSwXEMTp8J2+K6tu1RBzGs6J3sLMfaM0cffyimLCAYUp0SXne7hpBh4z7+r7x8nA8CCO9nF6cIormXp84KCPrC6Ft5SPD/WAf0M2LIF8zesGzzIVAwIfAvixgQ0dWGSNpeS++VlGylwUxGtt//ozLxXLNEq5UtQcV+FxND6+Ikdw36Ifey836F8QqejyMG9gwGYy/dyrxb1u/aTJb5TX+7uKyvS2LpdX6e9PqkauYrBkUgz6P2VwUPB0fzc+0UNB8gvn0AWgm46PXUTgNXxLXLsyR1A+TGUgpsY+2ZLhPqKD3Xit5/HWMo6PkfDJYbZzbkVB95cqDMz5/GzGWRukn3LMXud50j0GOmDuNpD8UF5S5C5RdC6GmjXZigCKMEyShUOgRGEf1Gva9yJXpFOHnlqI15p2UlndPC2wIKqKyON4g/utYqSpCNtC+Tr3Nz/KJVTpfaTvZk1/STQRzddLUm1pOHUcFGqpATTV88Bvaq4VbVhW1RnxP7Y7DDZqUwPX4MIuZ5rNaEiZmhKN8iOhCu6udkvriUgLKaf27xiVC6maV379zz+ASiuK6Qjw+en/WiT2MNNyUCqNuGx5ZJ/WbFjim+/sYSIpfBekbMzAfpykZhdPvOVaSOZsB7lTwQv1uN3CffbLzMHv3xNL1E9IAp3DWoTEA4Eq9TFx4yDMO8sR6zqMbq8WlOIPgFyWoCVC7+oxZEFr7r6SYpPmxXhfNkDT0o5C6YOQcL2uZHYdxsz4x68Ry7P7EhmVeph4OtzutWuWQiFzaV/RTb0KmDoyIMgRO2nP19xAIY61pi8H/N9YnhhWeYWIzVIobuuzsZMq3DzWMOrm1uNZRpfTZ5KDawqZT6HA+Mxz/9P+oSTWDE4jt1lIRfe21Et5ZYIrWSMFQ4XAjp7xRhCgK1/lZnNB5cLVAsmJhGH4X2Fc4vMJqAsN6Uv5wRgVUiNYfcgaTMJdGtcnW3Vi5BnzUmdy0WuTBx5nHyzlxmsap7VXDjEAqqLGRpZ2VzdD0xODUyOTkscz03Y2E0N2M4Mzg0ODdhMGFiNmE4NWEzN2FhM2EwNzk3YjZjYjE3YjdlNjQ2YThjN2Q5MjlkYWI2MjZkOGRhMjg0OGE2NGIxNmE3OTg5NzI2Zg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: text/plain
x-robots-tag: noindex
content-length: 1
X-Firefox-Spdy: h2
329862.com/v1/management/tenant/getSpeedDomain
192.230.77.133200 OK 1.3 kB URL GET HTTP/2 329862.com/v1/management/tenant/getSpeedDomain
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text
Hash d98c6da8df4da0fa7e63d8de4d4ae9c9
b6a7d2620c81e5f8c71d57b5842f17463b93ddda
3fa59a8224b943c8a5db22231df5162166de8d4c9bfcbebdc060b0ca0128c569
GET /v1/management/tenant/getSpeedDomain HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; ___utmvc=RwooPgu5eaG+PUtyY6rWCPRkxE89l6zxYOWBnhxAvQ5yvMm6aYfKxl4L3k2ihhlBZhM0U++14YcYCa0tHxdCMSvT6te+asndwJcauQyaA0WkUcr4gE/6qxKD2cB35MRyMgp4lzXy2sCu3wNAnzGUKlrjlKaH3rJ2sNAE1QPeFUbLpcGf/g7YZNgDHbBIVx8q8mTO1Mpxkz+KPv+HMgdUYU4PWaLCZ7BUOoExNNHFsO+EJJfPwgfIbzU71Qg6Vja3tGeypjwjVnBjR8HN9ElxZ3jctdr+feGpvbixg05UeSj8QbHrvTrlEs4wX29/V5LsJZW+LwxxodSh2YkFeywSrbZvE8TVA20ZTfmTdUSuUtc3sacr/CqB6a2MEqLmHMpizyZ+zQckun+IzflUjaLP3HLf9hgnUnGRp8LS/TGpSeeoUmMAAoJpPR5KkDAoP0+KAiae3uKfL0tffidC9ionJTCS6xdGsyXOSzx6TBKkSY2CFDbg0jli+KSO7FAc9wYldbnb/y1VbDbTDiH/40UcuB88dvprY58o3Gn92NgUzCjl/ZNabtiOR383EIyueEu3qupoYIQ8BG2Ck7aXrAEV8Q1Go8rMDSgPMJwhLt2k4jfP20vDFg+c+DgXVbdoCENcrOP6fqeCegzJFn41cAD+n0fDqbI19CQnBwF7HT+mfIzUHg3JBIsLbYYzVcSjJeWJ6MVn+33b99WPpUqGoFQlM8QsLnPoZP4M1iiBwJEUbyqEY2J/GLMDDecSgn8FgUTPTlERyuCSGr5a7O89FR8+bzsJzVlZO//n91C9qD/7dHN0IMTP79bymLMztbzFBurQPluNfG3j2QbVrAUhWrjWDEpDIBl28HWFo/Mkdz6ULN38y84DnQQQqjSZP9++3fVfqrWxecD7RxSRnLUQi/O0s1nI0u1Ht8Y3OMezaFOzaKGieFWXter4gil/KqLGIUtf98AgYqxyvzJEzJr6zkxlolS0sNzOXVCOYM4r2XpuoKr0S/CtVu2w+uxGI/1QEgdNEQsS5XLECOzsNJqp5ZU98uVzKGWMyp0X0jOhvE0Qz5rR6fHRWU3IoyPzClmshNHZq540GYSbh5Rbjg22FVHfesVLxswdrIQr+pQRX4TYCIioWUWu4dP7wRGQiVaB600iinxAhukDNdRWDJ/ce2/Mh6IP7IiM4kx2BYVeJWFlpvcG5N97YU+bdZbNzdZ0fHdtF8cD0EUb1AhsaLohqMQyUOH7+G1DSm/aisc1z6nis+IVm+C3JjQqAnO0ZRSfrv0809n/IHT0+F+8wmcYZnOWtPq5jU0qoPa8WPPZdMpxKtBxNjVxc6uxvF0EVvSVk4LrqQXK93bJmvwauThQ3BpL9D68y5SdMFk6gXWtKuuUl6wpMDPIB6D3t+5Ksbnmf6NOm0vykmEVOZa+i2F9yyTgfMN8OuO4fCP2nMs18gyFW9zYo9IawLW+Du40Q/4x0t+wKCnO0h78fNgrDXmkA++h2do6Jc7yw9a/Tegy9odrK+smTzEBBDhy9cy9tSnRLEQP8Jk4lIvldzOsrF6h2zEwpOPuCQOa+0HWZnfp+i6bVNaJ3NfzAJOhIYhY7JmHr61dbGTY1Hg8028IsSX8Pm401mrH5AZJPMcDEIpCAWadmGlQ4fGEJH6BAaFD4NJBNwwJ64kZKSRTBkbYQl4Zg7u0QVFtPEXI8tih/q/K30mSyZrzeUV2lHoXtyuSwXEMTp8J2+K6tu1RBzGs6J3sLMfaM0cffyimLCAYUp0SXne7hpBh4z7+r7x8nA8CCO9nF6cIormXp84KCPrC6Ft5SPD/WAf0M2LIF8zesGzzIVAwIfAvixgQ0dWGSNpeS++VlGylwUxGtt//ozLxXLNEq5UtQcV+FxND6+Ikdw36Ifey836F8QqejyMG9gwGYy/dyrxb1u/aTJb5TX+7uKyvS2LpdX6e9PqkauYrBkUgz6P2VwUPB0fzc+0UNB8gvn0AWgm46PXUTgNXxLXLsyR1A+TGUgpsY+2ZLhPqKD3Xit5/HWMo6PkfDJYbZzbkVB95cqDMz5/GzGWRukn3LMXud50j0GOmDuNpD8UF5S5C5RdC6GmjXZigCKMEyShUOgRGEf1Gva9yJXpFOHnlqI15p2UlndPC2wIKqKyON4g/utYqSpCNtC+Tr3Nz/KJVTpfaTvZk1/STQRzddLUm1pOHUcFGqpATTV88Bvaq4VbVhW1RnxP7Y7DDZqUwPX4MIuZ5rNaEiZmhKN8iOhCu6udkvriUgLKaf27xiVC6maV379zz+ASiuK6Qjw+en/WiT2MNNyUCqNuGx5ZJ/WbFjim+/sYSIpfBekbMzAfpykZhdPvOVaSOZsB7lTwQv1uN3CffbLzMHv3xNL1E9IAp3DWoTEA4Eq9TFx4yDMO8sR6zqMbq8WlOIPgFyWoCVC7+oxZEFr7r6SYpPmxXhfNkDT0o5C6YOQcL2uZHYdxsz4x68Ry7P7EhmVeph4OtzutWuWQiFzaV/RTb0KmDoyIMgRO2nP19xAIY61pi8H/N9YnhhWeYWIzVIobuuzsZMq3DzWMOrm1uNZRpfTZ5KDawqZT6HA+Mxz/9P+oSTWDE4jt1lIRfe21Et5ZYIrWSMFQ4XAjp7xRhCgK1/lZnNB5cLVAsmJhGH4X2Fc4vMJqAsN6Uv5wRgVUiNYfcgaTMJdGtcnW3Vi5BnzUmdy0WuTBx5nHyzlxmsap7VXDjEAqqLGRpZ2VzdD0xODUyOTkscz03Y2E0N2M4Mzg0ODdhMGFiNmE4NWEzN2FhM2EwNzk3YjZjYjE3YjdlNjQ2YThjN2Q5MjlkYWI2MjZkOGRhMjg0OGE2NGIxNmE3OTg5NzI2Zg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Wed, 31 May 2023 22:59:45 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310527 PNNN RT(1686107865821 1252) q(0 0 0 -1) r(3 3) U12
X-Firefox-Spdy: h2
329862.com/static/js/yidun/index.js
192.230.77.133200 OK 4.0 kB URL GET HTTP/2 329862.com/static/js/yidun/index.js
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (549)
Hash 38be314db9ffad6f1ffd6f13d4d3079e
6593016f286030e92fe2b4b6c2ff98b72c8ab09f
9c6c3a32ef007d4ef425137ad126ce8ed56505b9a40b3da964190d01bc14ead7
GET /static/js/yidun/index.js HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-2a81"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 4025
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:47 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2298506 2CNN RT(1686107865821 1589) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/static/spine-webgl.js
192.230.77.133200 OK 75 kB URL GET HTTP/2 329862.com/static/spine-webgl.js
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
Hash 5200130e3b8970af6c19b8587f46663b
56f9307ce28cb0a1c0150d92b095760936e83618
ffafc28590239f5f3f134c8bc83753f6c2e5d4ff2d3c775c2ff50afc2a608c13
GET /static/spine-webgl.js HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-5a0a5"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 74703
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:47 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310539 2CNN RT(1686107865821 1586) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/static/public/layer.m.js
192.230.77.133200 OK 1.5 kB URL GET HTTP/2 329862.com/static/public/layer.m.js
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (2994)
Hash dda7a6368de9444d877be068fab49b44
a03085133806ceaac8a3e64711616582d000e45f
8cb834cdc0c8fc17c42aefb5e79fd0ec76a3b856531b801ddd1698cf7a9c7864
GET /static/public/layer.m.js HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-c18"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 1465
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:47 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310541 2CNN RT(1686107865821 1588) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/static/css/vendor.959b9f4106cb.css
192.230.77.133200 OK 11 kB URL GET HTTP/2 329862.com/static/css/vendor.959b9f4106cb.css
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (45935), with no line terminators
Hash a196c3510d74827e2edaef5fcae81b5d
522ab58aa97dcf9d3c5372327fe1bfc5343fd3e6
03a1e1b5723402e6185e557b2ab04260e1d4aba985a1bb10b6716a3de8fa4b95
GET /static/css/vendor.959b9f4106cb.css HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-b36f"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: text/css
content-length: 10625
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:47 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310541 2CNN RT(1686107865821 1595) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/static/css/app.7df8101d7996.css
192.230.77.133200 OK 37 kB URL GET HTTP/2 329862.com/static/css/app.7df8101d7996.css
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (58555)
Hash c9815ca3323746d61329aeead43bb9f2
45bbb4cbf8d67f2894ee0dbac9f650c0fea61e4c
cf1d7429a622291e568c72817773d131b5f1e7590d9725799626267ec10cfaa4
GET /static/css/app.7df8101d7996.css HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-2822a"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: text/css
content-length: 36712
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:47 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310547 2CNN RT(1686107865821 1598) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/static/js/manifest.bd1c3404b2dcce0589be.js
192.230.77.133200 OK 3.7 kB URL GET HTTP/2 329862.com/static/js/manifest.bd1c3404b2dcce0589be.js
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (6974), with no line terminators
Hash fb2e541157d6855cd5028ecea37397e8
c79f764f203f8350d266185f20327f0df4531db0
627793544395e18763d4009d8de513f3dc4ec9029a1d44157e60b79051a53d6c
GET /static/js/manifest.bd1c3404b2dcce0589be.js HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-1b3e"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 3744
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:47 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310541 2CNN RT(1686107865821 1602) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/static/js/0.fbade850a11b795f8b57.js
192.230.77.133200 OK 207 kB URL GET HTTP/2 329862.com/static/js/0.fbade850a11b795f8b57.js
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Size 207 kB (207010 bytes)
Hash fb1df2e0301dee1d0fc27c54bbfa8e48
74e70925e2740d0a4382cdc554c01a4548804b76
8c023b000f935a57b6ac3408e25256981cbcc10c3122d0a3d38ba2c3edf38dcc
GET /static/js/0.fbade850a11b795f8b57.js HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-95153"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 207010
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:47 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310547 2CNN RT(1686107865821 1602) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/static/js/6.04d491c77340e0c1de58.js
192.230.77.133200 OK 91 kB URL GET HTTP/2 329862.com/static/js/6.04d491c77340e0c1de58.js
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (64348), with no line terminators
Hash 265b1ec92ec9dd52f496efd51f9721b3
dcb7c1053b0494977d8abeefdb002da0a6d3347a
6ddba30d948193313e185053e62dd534bb0b89a0d81439ead0d48a7142eab9aa
GET /static/js/6.04d491c77340e0c1de58.js HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-4a3b5"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 91400
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:47 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310547 2CNN RT(1686107865821 1616) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/static/js/aliyun.min.js
192.230.77.133200 OK 59 kB URL GET HTTP/2 329862.com/static/js/aliyun.min.js
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (32085)
Hash 85e7d42d7ec09184b9bbde78b641ca00
0bc92965c772b460ea1a65468fb2e8baabc7b5d0
5c919aeed13a145644e93be09a3ce46b4e2f241133ac316d61f8c5d2dc59758c
GET /static/js/aliyun.min.js HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-3595f"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 59273
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:47 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310544 2CNN RT(1686107865821 1593) q(0 0 0 -1) r(0 4)
X-Firefox-Spdy: h2
329862.com/static/css/20.fa3afa77219a.css
192.230.77.133200 OK 18 kB URL GET HTTP/2 329862.com/static/css/20.fa3afa77219a.css
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65400), with no line terminators
Hash 01ebbc7f303a4392ea3e8a595ff492bc
9e8368d419185b6e462989258391df9e36f1ed74
05a4b7d977daa0e366862a357be0b66b77d2ae8916a7ca045efc0e07c5551f00
GET /static/css/20.fa3afa77219a.css HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-1239d"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: text/css
content-length: 18127
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:22 GMT
date: Wed, 07 Jun 2023 03:17:48 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310544 2CNN RT(1686107865821 2224) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/static/js/20.cdf42703e7bab8ee56e8.js
192.230.77.133200 OK 16 kB URL GET HTTP/2 329862.com/static/js/20.cdf42703e7bab8ee56e8.js
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (54160), with no line terminators
Hash c188a844813bff2f58d95600d47ea52d
8f78eb90b53a9e792914a1214ee2ac87979fad41
05797b8075d215e2e15cffe59ff485b9931d34a36ced384b68557e69b6740de4
GET /static/js/20.cdf42703e7bab8ee56e8.js HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: W/"6470271e-d9d7"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 15883
content-encoding: gzip
cache-control: max-age=11373, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:48 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2298506 2CNN RT(1686107865821 2226) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/favicon.ico
192.230.77.133404 Not Found 7.4 kB IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (19431), with CRLF line terminators
Hash 1554c2974fd75d5dad4258610d6bfbb5
31eb12cf90737eecd87d6ad2bdddb09b9acb75d1
d34a6fc942e01d158c2c8c224de27300131d2b04ee06be99b25065a30e3daa32
GET /favicon.ico HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; ___utmvc=RwooPgu5eaG+PUtyY6rWCPRkxE89l6zxYOWBnhxAvQ5yvMm6aYfKxl4L3k2ihhlBZhM0U++14YcYCa0tHxdCMSvT6te+asndwJcauQyaA0WkUcr4gE/6qxKD2cB35MRyMgp4lzXy2sCu3wNAnzGUKlrjlKaH3rJ2sNAE1QPeFUbLpcGf/g7YZNgDHbBIVx8q8mTO1Mpxkz+KPv+HMgdUYU4PWaLCZ7BUOoExNNHFsO+EJJfPwgfIbzU71Qg6Vja3tGeypjwjVnBjR8HN9ElxZ3jctdr+feGpvbixg05UeSj8QbHrvTrlEs4wX29/V5LsJZW+LwxxodSh2YkFeywSrbZvE8TVA20ZTfmTdUSuUtc3sacr/CqB6a2MEqLmHMpizyZ+zQckun+IzflUjaLP3HLf9hgnUnGRp8LS/TGpSeeoUmMAAoJpPR5KkDAoP0+KAiae3uKfL0tffidC9ionJTCS6xdGsyXOSzx6TBKkSY2CFDbg0jli+KSO7FAc9wYldbnb/y1VbDbTDiH/40UcuB88dvprY58o3Gn92NgUzCjl/ZNabtiOR383EIyueEu3qupoYIQ8BG2Ck7aXrAEV8Q1Go8rMDSgPMJwhLt2k4jfP20vDFg+c+DgXVbdoCENcrOP6fqeCegzJFn41cAD+n0fDqbI19CQnBwF7HT+mfIzUHg3JBIsLbYYzVcSjJeWJ6MVn+33b99WPpUqGoFQlM8QsLnPoZP4M1iiBwJEUbyqEY2J/GLMDDecSgn8FgUTPTlERyuCSGr5a7O89FR8+bzsJzVlZO//n91C9qD/7dHN0IMTP79bymLMztbzFBurQPluNfG3j2QbVrAUhWrjWDEpDIBl28HWFo/Mkdz6ULN38y84DnQQQqjSZP9++3fVfqrWxecD7RxSRnLUQi/O0s1nI0u1Ht8Y3OMezaFOzaKGieFWXter4gil/KqLGIUtf98AgYqxyvzJEzJr6zkxlolS0sNzOXVCOYM4r2XpuoKr0S/CtVu2w+uxGI/1QEgdNEQsS5XLECOzsNJqp5ZU98uVzKGWMyp0X0jOhvE0Qz5rR6fHRWU3IoyPzClmshNHZq540GYSbh5Rbjg22FVHfesVLxswdrIQr+pQRX4TYCIioWUWu4dP7wRGQiVaB600iinxAhukDNdRWDJ/ce2/Mh6IP7IiM4kx2BYVeJWFlpvcG5N97YU+bdZbNzdZ0fHdtF8cD0EUb1AhsaLohqMQyUOH7+G1DSm/aisc1z6nis+IVm+C3JjQqAnO0ZRSfrv0809n/IHT0+F+8wmcYZnOWtPq5jU0qoPa8WPPZdMpxKtBxNjVxc6uxvF0EVvSVk4LrqQXK93bJmvwauThQ3BpL9D68y5SdMFk6gXWtKuuUl6wpMDPIB6D3t+5Ksbnmf6NOm0vykmEVOZa+i2F9yyTgfMN8OuO4fCP2nMs18gyFW9zYo9IawLW+Du40Q/4x0t+wKCnO0h78fNgrDXmkA++h2do6Jc7yw9a/Tegy9odrK+smTzEBBDhy9cy9tSnRLEQP8Jk4lIvldzOsrF6h2zEwpOPuCQOa+0HWZnfp+i6bVNaJ3NfzAJOhIYhY7JmHr61dbGTY1Hg8028IsSX8Pm401mrH5AZJPMcDEIpCAWadmGlQ4fGEJH6BAaFD4NJBNwwJ64kZKSRTBkbYQl4Zg7u0QVFtPEXI8tih/q/K30mSyZrzeUV2lHoXtyuSwXEMTp8J2+K6tu1RBzGs6J3sLMfaM0cffyimLCAYUp0SXne7hpBh4z7+r7x8nA8CCO9nF6cIormXp84KCPrC6Ft5SPD/WAf0M2LIF8zesGzzIVAwIfAvixgQ0dWGSNpeS++VlGylwUxGtt//ozLxXLNEq5UtQcV+FxND6+Ikdw36Ifey836F8QqejyMG9gwGYy/dyrxb1u/aTJb5TX+7uKyvS2LpdX6e9PqkauYrBkUgz6P2VwUPB0fzc+0UNB8gvn0AWgm46PXUTgNXxLXLsyR1A+TGUgpsY+2ZLhPqKD3Xit5/HWMo6PkfDJYbZzbkVB95cqDMz5/GzGWRukn3LMXud50j0GOmDuNpD8UF5S5C5RdC6GmjXZigCKMEyShUOgRGEf1Gva9yJXpFOHnlqI15p2UlndPC2wIKqKyON4g/utYqSpCNtC+Tr3Nz/KJVTpfaTvZk1/STQRzddLUm1pOHUcFGqpATTV88Bvaq4VbVhW1RnxP7Y7DDZqUwPX4MIuZ5rNaEiZmhKN8iOhCu6udkvriUgLKaf27xiVC6maV379zz+ASiuK6Qjw+en/WiT2MNNyUCqNuGx5ZJ/WbFjim+/sYSIpfBekbMzAfpykZhdPvOVaSOZsB7lTwQv1uN3CffbLzMHv3xNL1E9IAp3DWoTEA4Eq9TFx4yDMO8sR6zqMbq8WlOIPgFyWoCVC7+oxZEFr7r6SYpPmxXhfNkDT0o5C6YOQcL2uZHYdxsz4x68Ry7P7EhmVeph4OtzutWuWQiFzaV/RTb0KmDoyIMgRO2nP19xAIY61pi8H/N9YnhhWeYWIzVIobuuzsZMq3DzWMOrm1uNZRpfTZ5KDawqZT6HA+Mxz/9P+oSTWDE4jt1lIRfe21Et5ZYIrWSMFQ4XAjp7xRhCgK1/lZnNB5cLVAsmJhGH4X2Fc4vMJqAsN6Uv5wRgVUiNYfcgaTMJdGtcnW3Vi5BnzUmdy0WuTBx5nHyzlxmsap7VXDjEAqqLGRpZ2VzdD0xODUyOTkscz03Y2E0N2M4Mzg0ODdhMGFiNmE4NWEzN2FhM2EwNzk3YjZjYjE3YjdlNjQ2YThjN2Q5MjlkYWI2MjZkOGRhMjg0OGE2NGIxNmE3OTg5NzI2Zg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: openresty/1.21.4.1
date: Wed, 07 Jun 2023 03:17:48 GMT
content-type: text/html
content-encoding: gzip
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Wed, 31 May 2023 22:59:45 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310536 NNNN CT(222 222 0) RT(1686107865821 1371) q(0 0 5 -1) r(7 7) U11
X-Firefox-Spdy: h2
329862.com/src/img/favicon.267ace1.png
192.230.77.133200 OK 2.1 kB URL GET HTTP/2 329862.com/src/img/favicon.267ace1.png
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1223)
Hash ddbd4b0272fc6d78353352cff98f51aa
dfeb96122fbc5899a97bce47ae1c86df1f66f5a8
7e623dede3daaf28ba848d76905b2b2a0029d2e0ac1122f7f8ce426c95859663
GET /src/img/favicon.267ace1.png HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; ___utmvc=RwooPgu5eaG+PUtyY6rWCPRkxE89l6zxYOWBnhxAvQ5yvMm6aYfKxl4L3k2ihhlBZhM0U++14YcYCa0tHxdCMSvT6te+asndwJcauQyaA0WkUcr4gE/6qxKD2cB35MRyMgp4lzXy2sCu3wNAnzGUKlrjlKaH3rJ2sNAE1QPeFUbLpcGf/g7YZNgDHbBIVx8q8mTO1Mpxkz+KPv+HMgdUYU4PWaLCZ7BUOoExNNHFsO+EJJfPwgfIbzU71Qg6Vja3tGeypjwjVnBjR8HN9ElxZ3jctdr+feGpvbixg05UeSj8QbHrvTrlEs4wX29/V5LsJZW+LwxxodSh2YkFeywSrbZvE8TVA20ZTfmTdUSuUtc3sacr/CqB6a2MEqLmHMpizyZ+zQckun+IzflUjaLP3HLf9hgnUnGRp8LS/TGpSeeoUmMAAoJpPR5KkDAoP0+KAiae3uKfL0tffidC9ionJTCS6xdGsyXOSzx6TBKkSY2CFDbg0jli+KSO7FAc9wYldbnb/y1VbDbTDiH/40UcuB88dvprY58o3Gn92NgUzCjl/ZNabtiOR383EIyueEu3qupoYIQ8BG2Ck7aXrAEV8Q1Go8rMDSgPMJwhLt2k4jfP20vDFg+c+DgXVbdoCENcrOP6fqeCegzJFn41cAD+n0fDqbI19CQnBwF7HT+mfIzUHg3JBIsLbYYzVcSjJeWJ6MVn+33b99WPpUqGoFQlM8QsLnPoZP4M1iiBwJEUbyqEY2J/GLMDDecSgn8FgUTPTlERyuCSGr5a7O89FR8+bzsJzVlZO//n91C9qD/7dHN0IMTP79bymLMztbzFBurQPluNfG3j2QbVrAUhWrjWDEpDIBl28HWFo/Mkdz6ULN38y84DnQQQqjSZP9++3fVfqrWxecD7RxSRnLUQi/O0s1nI0u1Ht8Y3OMezaFOzaKGieFWXter4gil/KqLGIUtf98AgYqxyvzJEzJr6zkxlolS0sNzOXVCOYM4r2XpuoKr0S/CtVu2w+uxGI/1QEgdNEQsS5XLECOzsNJqp5ZU98uVzKGWMyp0X0jOhvE0Qz5rR6fHRWU3IoyPzClmshNHZq540GYSbh5Rbjg22FVHfesVLxswdrIQr+pQRX4TYCIioWUWu4dP7wRGQiVaB600iinxAhukDNdRWDJ/ce2/Mh6IP7IiM4kx2BYVeJWFlpvcG5N97YU+bdZbNzdZ0fHdtF8cD0EUb1AhsaLohqMQyUOH7+G1DSm/aisc1z6nis+IVm+C3JjQqAnO0ZRSfrv0809n/IHT0+F+8wmcYZnOWtPq5jU0qoPa8WPPZdMpxKtBxNjVxc6uxvF0EVvSVk4LrqQXK93bJmvwauThQ3BpL9D68y5SdMFk6gXWtKuuUl6wpMDPIB6D3t+5Ksbnmf6NOm0vykmEVOZa+i2F9yyTgfMN8OuO4fCP2nMs18gyFW9zYo9IawLW+Du40Q/4x0t+wKCnO0h78fNgrDXmkA++h2do6Jc7yw9a/Tegy9odrK+smTzEBBDhy9cy9tSnRLEQP8Jk4lIvldzOsrF6h2zEwpOPuCQOa+0HWZnfp+i6bVNaJ3NfzAJOhIYhY7JmHr61dbGTY1Hg8028IsSX8Pm401mrH5AZJPMcDEIpCAWadmGlQ4fGEJH6BAaFD4NJBNwwJ64kZKSRTBkbYQl4Zg7u0QVFtPEXI8tih/q/K30mSyZrzeUV2lHoXtyuSwXEMTp8J2+K6tu1RBzGs6J3sLMfaM0cffyimLCAYUp0SXne7hpBh4z7+r7x8nA8CCO9nF6cIormXp84KCPrC6Ft5SPD/WAf0M2LIF8zesGzzIVAwIfAvixgQ0dWGSNpeS++VlGylwUxGtt//ozLxXLNEq5UtQcV+FxND6+Ikdw36Ifey836F8QqejyMG9gwGYy/dyrxb1u/aTJb5TX+7uKyvS2LpdX6e9PqkauYrBkUgz6P2VwUPB0fzc+0UNB8gvn0AWgm46PXUTgNXxLXLsyR1A+TGUgpsY+2ZLhPqKD3Xit5/HWMo6PkfDJYbZzbkVB95cqDMz5/GzGWRukn3LMXud50j0GOmDuNpD8UF5S5C5RdC6GmjXZigCKMEyShUOgRGEf1Gva9yJXpFOHnlqI15p2UlndPC2wIKqKyON4g/utYqSpCNtC+Tr3Nz/KJVTpfaTvZk1/STQRzddLUm1pOHUcFGqpATTV88Bvaq4VbVhW1RnxP7Y7DDZqUwPX4MIuZ5rNaEiZmhKN8iOhCu6udkvriUgLKaf27xiVC6maV379zz+ASiuK6Qjw+en/WiT2MNNyUCqNuGx5ZJ/WbFjim+/sYSIpfBekbMzAfpykZhdPvOVaSOZsB7lTwQv1uN3CffbLzMHv3xNL1E9IAp3DWoTEA4Eq9TFx4yDMO8sR6zqMbq8WlOIPgFyWoCVC7+oxZEFr7r6SYpPmxXhfNkDT0o5C6YOQcL2uZHYdxsz4x68Ry7P7EhmVeph4OtzutWuWQiFzaV/RTb0KmDoyIMgRO2nP19xAIY61pi8H/N9YnhhWeYWIzVIobuuzsZMq3DzWMOrm1uNZRpfTZ5KDawqZT6HA+Mxz/9P+oSTWDE4jt1lIRfe21Et5ZYIrWSMFQ4XAjp7xRhCgK1/lZnNB5cLVAsmJhGH4X2Fc4vMJqAsN6Uv5wRgVUiNYfcgaTMJdGtcnW3Vi5BnzUmdy0WuTBx5nHyzlxmsap7VXDjEAqqLGRpZ2VzdD0xODUyOTkscz03Y2E0N2M4Mzg0ODdhMGFiNmE4NWEzN2FhM2EwNzk3YjZjYjE3YjdlNjQ2YThjN2Q5MjlkYWI2MjZkOGRhMjg0OGE2NGIxNmE3OTg5NzI2Zg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Wed, 07 Jun 2023 03:17:48 GMT
content-type: text/html
last-modified: Fri, 26 May 2023 03:27:26 GMT
etag: W/"6470271e-fbd"
content-encoding: gzip
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Wed, 31 May 2023 22:59:45 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310407 2NNN RT(1686107865821 1367) q(0 0 0 -1) r(9 9) U12
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash 2325ae79bf771b860ea9eb135e00aa3f
d17d42b5ef8c6902f192c10b97680d66a660c283
cf1818e392fa3542507d8a6fcafe699d7b7c1a58d8f91518f05186ea229333e7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 03:17:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Jun 2023 02:17:15 GMT
Expires: Sun, 11 Jun 2023 02:17:14 GMT
Etag: "d17d42b5ef8c6902f192c10b97680d66a660c283"
Cache-Control: max-age=341364,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d35be851e6c0b69-OSL
ocsp.sectigo.com/
104.18.15.101 472 B IP 104.18.15.101:0
Hash 2325ae79bf771b860ea9eb135e00aa3f
d17d42b5ef8c6902f192c10b97680d66a660c283
cf1818e392fa3542507d8a6fcafe699d7b7c1a58d8f91518f05186ea229333e7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 03:17:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Jun 2023 02:17:15 GMT
Expires: Sun, 11 Jun 2023 02:17:14 GMT
Etag: "d17d42b5ef8c6902f192c10b97680d66a660c283"
Cache-Control: max-age=341364,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d35be84f82fb524-OSL
329862.com/v1/users/getAliyunAppKey?t=1686107868003
192.230.77.133200 OK 4.0 kB URL GET HTTP/2 329862.com/v1/users/getAliyunAppKey?t=1686107868003
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (12041), with no line terminators
Hash ae55a790a6f7328da092aab52cfecaeb
f46b164003f2b4de20a4b5beb167b9f5e67a211f
b56b40895d62359b9bbf91ef5c5e271624a1a55e12fbf1c9560656cef021c80a
GET /v1/users/getAliyunAppKey?t=1686107868003 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 0-2310525-2310536 PNNN RT(1686107865821 2356) q(0 3 3 -1) r(6 6) U12
X-Firefox-Spdy: h2
329862.com/v1/management/tenant/getTenantConfig?t=1686107867954
192.230.77.133200 OK 120 kB URL GET HTTP/2 329862.com/v1/management/tenant/getTenantConfig?t=1686107867954
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
Size 120 kB (120208 bytes)
Hash f37e28a5c352b12299c2c166b2925d39
525fb980607c46a78a375bc29ec9f89f3ae34807
6f7ecb769bd0f6eb608fae42ff6f42caebd8b9c9ebee67904d64bf9c812180a0
GET /v1/management/tenant/getTenantConfig?t=1686107867954 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 0-2310525-2310565 NNNN CT(224 225 0) RT(1686107865821 2350) q(0 0 5 -1) r(8 8) U12
X-Firefox-Spdy: h2
329862.com/v1/management/content/getIntroductionList?t=1686107868000
192.230.77.133200 OK 78 kB URL GET HTTP/2 329862.com/v1/management/content/getIntroductionList?t=1686107868000
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65488), with no line terminators
Hash 2bd2ea1863888eb572a4185fc0f49b1d
57245da77b7f18d0b494ccbe85362058253d864c
e12579f2c58bb694c9bdc94eab554d03cf7317b31610782ddeadc1807c824267
GET /v1/management/content/getIntroductionList?t=1686107868000 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 0-2310525-2310567 NNNN CT(202 202 0) RT(1686107865821 2354) q(0 0 4 -1) r(7 7) U12
X-Firefox-Spdy: h2
329862.com/v1/betting/getServerTimeMillisecond?t=1686107867906
192.230.77.133200 OK 1.5 kB URL GET HTTP/2 329862.com/v1/betting/getServerTimeMillisecond?t=1686107867906
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 67154b5efae581cb6a9438076352eb3d
07e6ba39596167d9d58d25e8598d883a258ec31a
f45380b6da0b4a0e3388cc3ad57d5dd89ffc814265e6510fd7416bec9b7947b9
GET /v1/betting/getServerTimeMillisecond?t=1686107867906 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 0-2310525-2310563 NNNN CT(207 206 0) RT(1686107865821 2268) q(0 0 5 -1) r(8 8) U12
X-Firefox-Spdy: h2
329862.com/v1/management/tenant/getTenantConfig?t=1686107867884
192.230.77.133200 OK 27 kB URL GET HTTP/2 329862.com/v1/management/tenant/getTenantConfig?t=1686107867884
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 1084d2dc3d275beaa74f217433047193
c167ac21f83c8ff99a5b6fd95e3a821ec2c89298
4e1e0742029c5b8080aff614a4a283fd55f806c47378703443997831715a11b6
GET /v1/management/tenant/getTenantConfig?t=1686107867884 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 0-2310525-2310527 PNNN RT(1686107865821 2266) q(0 0 0 -1) r(4 4) U12
X-Firefox-Spdy: h2
images.ppa029sdfjshsjkdhksdhjhdu3.com/system/pc/login/loginBg.png
20.24.81.35 20 kB URL GET images.ppa029sdfjshsjkdhksdhjhdu3.com/system/pc/login/loginBg.png
IP 20.24.81.35:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject*.ppa022cjklwmkksldjuhnb3llc.com
Fingerprint5E:84:56:51:5C:A7:35:6E:52:FF:61:41:60:CB:2C:13:95:97:9F:00
ValidityWed, 07 Sep 2022 00:00:00 GMT - Thu, 07 Sep 2023 23:59:59 GMT
File type PNG image data, 312 x 234, 8-bit/color RGBA, non-interlaced\012- data
Hash f14a9c8be2d83922e4ae691801825839
7198fc446609a5aea6e916a81c0895f1fc6c6f85
1a020a93ee5dbf562e6ad700e33935e156d1705d1cc42b6574dca17b1ec36e43
GET /system/pc/login/loginBg.png HTTP/1.1
Host: images.ppa029sdfjshsjkdhksdhjhdu3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 03:17:49 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 18 Oct 2016 16:57:42 GMT
ETag: W/"0477fbd6029d21:0"
X-Powered-By: ASP.NET
Expires: Thu, 08 Jun 2023 03:17:49 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Cache-Control: max-age=86400, max-age=315360000000
X-Cache: HIT
Content-Encoding: gzip
images.ppa029sdfjshsjkdhksdhjhdu3.com/system/common/other/rechargepc.png
20.24.81.35 21 kB URL GET images.ppa029sdfjshsjkdhksdhjhdu3.com/system/common/other/rechargepc.png
IP 20.24.81.35:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject*.ppa022cjklwmkksldjuhnb3llc.com
Fingerprint5E:84:56:51:5C:A7:35:6E:52:FF:61:41:60:CB:2C:13:95:97:9F:00
ValidityWed, 07 Sep 2022 00:00:00 GMT - Thu, 07 Sep 2023 23:59:59 GMT
File type PNG image data, 480 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 9d0302853397a2172294fe821b0df0d1
54bb2dfdcd1400f45ca1d722aeee899dce21dd8e
090049ea713e796c3a8d35a73b25f7356c8cef526208a149c08711ea3c7b4d48
GET /system/common/other/rechargepc.png HTTP/1.1
Host: images.ppa029sdfjshsjkdhksdhjhdu3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 03:17:49 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 08 Dec 2020 07:23:32 GMT
ETag: W/"07248833cdd61:0"
X-Powered-By: ASP.NET
Expires: Thu, 08 Jun 2023 03:17:49 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Cache-Control: max-age=86400, max-age=315360000000
X-Cache: HIT
Content-Encoding: gzip
images.ppa029sdfjshsjkdhksdhjhdu3.com/game/1578637842482.png
20.24.81.35 371 kB URL GET images.ppa029sdfjshsjkdhksdhjhdu3.com/game/1578637842482.png
IP 20.24.81.35:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject*.ppa022cjklwmkksldjuhnb3llc.com
Fingerprint5E:84:56:51:5C:A7:35:6E:52:FF:61:41:60:CB:2C:13:95:97:9F:00
ValidityWed, 07 Sep 2022 00:00:00 GMT - Thu, 07 Sep 2023 23:59:59 GMT
File type PNG image data, 2990 x 566, 8-bit colormap, non-interlaced\012- data
Size 371 kB (370952 bytes)
Hash a366792ce69457744b882318850cefe2
5b078849d41e40f9d2c6dba6b821a04a9c0c35b9
faa00bbd3a46b12e4205da06089f1f4d489f01ab874caee4cd5d6c9c37203842
GET /game/1578637842482.png HTTP/1.1
Host: images.ppa029sdfjshsjkdhksdhjhdu3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 03:17:49 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 27 Jan 2020 07:29:14 GMT
ETag: W/"0819879e3d4d51:0"
X-Powered-By: ASP.NET
Expires: Thu, 08 Jun 2023 03:17:49 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Cache-Control: max-age=86400, max-age=315360000000
X-Cache: HIT
Content-Encoding: gzip
images.ppa029sdfjshsjkdhksdhjhdu3.com/pro-management/zghcp/1675256697589.png?349677
20.24.81.35200 OK 3.3 kB URL GET HTTP/1.1 images.ppa029sdfjshsjkdhksdhjhdu3.com/pro-management/zghcp/1675256697589.png?349677
IP 20.24.81.35:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject*.ppa022cjklwmkksldjuhnb3llc.com
Fingerprint5E:84:56:51:5C:A7:35:6E:52:FF:61:41:60:CB:2C:13:95:97:9F:00
ValidityWed, 07 Sep 2022 00:00:00 GMT - Thu, 07 Sep 2023 23:59:59 GMT
File type PNG image data, 200 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash e073d651a77c0ac5870b927ecd25619e
59696d9aed4351bb0d839201bd188ff65392caf9
01c07b10e80f6a81f0c7c9aa4a6f71a40215cbf5addf3a1522b58bb8f7ee0446
GET /pro-management/zghcp/1675256697589.png?349677 HTTP/1.1
Host: images.ppa029sdfjshsjkdhksdhjhdu3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 03:17:50 GMT
Content-Type: application/octet-stream
Content-Length: 3322
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Wed, 01 Feb 2023 13:01:05 GMT
ETag: "e073d651a77c0ac5870b927ecd25619e"
x-amz-request-id: tx00000000000018d44cc8a-00647ff5d3-10c5-default
Cache-Control: max-age=600
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 3a44a5eb266ce5293c26f7572981d23e
cf0d54ba76ae74a132891ef0281106e8bbdad5f8
8afc1ee37d3cf098367c5e4d027867ce8cf06cc18742afa4453cbaf93e1f9a8a
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 03:17:50 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 11 Jun 2023 00:50:39 GMT
ETag: "cf0d54ba76ae74a132891ef0281106e8bbdad5f8"
Last-Modified: Wed, 07 Jun 2023 00:50:40 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 384
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d35be8fee510b65-OSL
static.ppa029sdfjshsjkdhksdhjhdu3.com/ico/zghcp.ico
13.75.115.235200 OK 1.6 kB URL GET HTTP/1.1 static.ppa029sdfjshsjkdhksdhjhdu3.com/ico/zghcp.ico
IP 13.75.115.235:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject*.ppa022cjklwmkksldjuhnb3llc.com
Fingerprint5E:84:56:51:5C:A7:35:6E:52:FF:61:41:60:CB:2C:13:95:97:9F:00
ValidityWed, 07 Sep 2022 00:00:00 GMT - Thu, 07 Sep 2023 23:59:59 GMT
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash fbab93a333ba620cc0c53190540c3ae8
ebd68313eac25954b431492428976ae4cb2788ae
d1e12df4932ef28e4bf59ffdfd447abd80501dc9ab2db137d5d1ebe02f449367
GET /ico/zghcp.ico HTTP/1.1
Host: static.ppa029sdfjshsjkdhksdhjhdu3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 03:17:50 GMT
Content-Type: image/x-icon
Content-Length: 1612
Last-Modified: Wed, 01 Feb 2023 10:29:11 GMT
Connection: keep-alive
ETag: "63da3ef7-64c"
Expires: Fri, 07 Jul 2023 03:17:50 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
cf.aliyun.com/nocaptcha/initialize.jsonp?a=FFFF0N0000000000B3B5&t=FFFF0N0000000000B3B5%3A1686107868576%3A0.1539652077072734&scene=nc_login&lang=cn&v=v1.2.18&href=https%3A%2F%2F329862.com%2Fregister&comm={}&callback=initializeJsonp_003090515478131406
59.82.58.127200 OK 95 B URL GET HTTP/2 cf.aliyun.com/nocaptcha/initialize.jsonp?a=FFFF0N0000000000B3B5&t=FFFF0N0000000000B3B5%3A1686107868576%3A0.1539652077072734&scene=nc_login&lang=cn&v=v1.2.18&href=https%3A%2F%2F329862.com%2Fregister&comm={}&callback=initializeJsonp_003090515478131406
IP 59.82.58.127:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by https://329862.com/register?id=32483556
Certificate IssuerGlobalSign nv-sa
Subject*.aliyun.com
Fingerprint8A:02:46:A2:F6:AA:51:BB:C9:D3:2A:13:53:E3:E6:3D:00:37:A9:DA
ValidityThu, 17 Nov 2022 03:21:03 GMT - Tue, 19 Dec 2023 02:11:06 GMT
File type ASCII text, with no line terminators
Hash e8110e6048a90145095f8c428c87c6a8
0c0446a6380abd9a533b933fdb06acfc27ef5b8b
9218c3d68c6428a84193d2173b5e1ee7da3447b636aa93c33de4c8b1403cf5c0
GET /nocaptcha/initialize.jsonp?a=FFFF0N0000000000B3B5&t=FFFF0N0000000000B3B5%3A1686107868576%3A0.1539652077072734&scene=nc_login&lang=cn&v=v1.2.18&href=https%3A%2F%2F329862.com%2Fregister&comm={}&callback=initializeJsonp_003090515478131406 HTTP/1.1
Host: cf.aliyun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 03:17:51 GMT
content-type: text/javascript;charset=UTF-8
content-length: 95
content-language: zh-CN
server: Tengine/Aserver
eagleeye-traceid: 2150790216861078710656722e1842
strict-transport-security: max-age=0
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g3
104.18.20.226 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 104.18.20.226:0
Hash 083a6e8283cd03e18d62e0ea3849cca0
45a8a19616a16793dc74676eead08df4ddcc32e9
d2524b9f4d18e9e8c5fae7014922c71247dbc7760425ce429669e57be5af084f
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 03:17:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Sun, 11 Jun 2023 01:57:52 GMT
ETag: "45a8a19616a16793dc74676eead08df4ddcc32e9"
Last-Modified: Wed, 07 Jun 2023 01:57:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3432
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d35be96b8ce0b65-OSL
ynuf.aliapp.org/w/wu.json
203.119.169.141 156 B URL GET ynuf.aliapp.org/w/wu.json
IP 203.119.169.141:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by https://329862.com/register?id=32483556
Certificate IssuerGlobalSign nv-sa
Subject*.alibabacorp.com
Fingerprint21:4B:26:A9:58:52:03:EC:07:38:66:00:3B:39:33:F3:9B:56:E7:16
ValidityWed, 12 Apr 2023 23:17:04 GMT - Mon, 13 May 2024 23:11:02 GMT
Hash 2a8850b466e3513fb4982c6e84436a74
dd652be5414f2368ab52f3458683310ef2ea34fb
3dd64f163be6b5ec9dad511643c5322b2fe59604e739786b0b15b34fbd57e8b1
GET /w/wu.json HTTP/1.1
Host: ynuf.aliapp.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 03:17:52 GMT
content-type: text/javascript;charset=utf-8
content-length: 156
x-application-context: umid-web:cn-prod:7001
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Accept,X-PINGARUNER,CONTENT-TYPE,X-Requested-With
etag: G393EDBCE83FF1810FAFC78281A450B6106C7930E645B5F8782
cache-control: no-cache
set-cookie: cbc=GC7C5C29C8C6D22B265426E3FB154C1F252B5D3C4B41AB17115; Max-Age=31536000; Expires=Thu, 06-Jun-2024 03:17:52 GMT; Domain=ynuf.aliapp.org; Path=/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
server: Tengine/Aserver
eagleeye-traceid: 213e20e016861078728901427ed5e9
timing-allow-origin: *
X-Firefox-Spdy: h2
ynuf.aliapp.org/service/um.json
203.119.169.141 136 B URL POST ynuf.aliapp.org/service/um.json
IP 203.119.169.141:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by https://329862.com/register?id=32483556
Certificate IssuerGlobalSign nv-sa
Subject*.alibabacorp.com
Fingerprint21:4B:26:A9:58:52:03:EC:07:38:66:00:3B:39:33:F3:9B:56:E7:16
ValidityWed, 12 Apr 2023 23:17:04 GMT - Mon, 13 May 2024 23:11:02 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash c85cd3bbb398ac2e76a63afd4ef9b944
ef9f41e2916ff8d2a5370a344951d3f5a873910f
6f4afcc256c0ca007190352caa8c12c470b5fa71cdd2b56a79a2ec03591952d2
POST /service/um.json HTTP/1.1
Host: ynuf.aliapp.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 617
Origin: https://329862.com
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 03:17:52 GMT
content-type: text/plain;charset=UTF-8
content-length: 136
x-application-context: umid-web:cn-prod:7001
access-control-allow-origin: https://329862.com
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Accept,X-PINGARUNER,CONTENT-TYPE,X-Requested-With
set-cookie: umdata_=G765DA8A3B08170B782833055365C37A21763F73A3D6F8AEB1F; Max-Age=31536000; Expires=Thu, 06-Jun-2024 03:17:52 GMT; Domain=ynuf.aliapp.org; Path=/
p3p: CP=IVAa PSAa
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
server: Tengine/Aserver
eagleeye-traceid: 213e20e016861078729501436ed5e9
timing-allow-origin: *
X-Firefox-Spdy: h2
329862.com/static/js/9.980024635cbdb3d7060a.js
192.230.77.133200 OK 21 kB URL GET HTTP/2 329862.com/static/js/9.980024635cbdb3d7060a.js
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/9.980024635cbdb3d7060a.js HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: W/"6470271e-50ce"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: application/javascript
content-length: 7309
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:22 GMT
date: Wed, 07 Jun 2023 03:17:48 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310544 2CNN RT(1686107865821 2229) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/v1/users/announcement/list?t=1686107868001&pageSize=20&pageNum=1
192.230.77.133200 OK 671 B URL GET HTTP/2 329862.com/v1/users/announcement/list?t=1686107868001&pageSize=20&pageNum=1
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (723), with no line terminators
Hash d12435bf2dc0894f60d842e26dc094b3
700c29c3914d32658b010febb2f9ee6d908b7831
2fdfde2ec146585c44024ccc0f278f78e2fe387ea8a568e00e1e171368caba16
GET /v1/users/announcement/list?t=1686107868001&pageSize=20&pageNum=1 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 0-2310525-2310527 PNNN RT(1686107865821 2355) q(0 3 3 -1) r(6 6) U12
X-Firefox-Spdy: h2
329862.com/v1/management/tenant/getTenantConfig?t=1686107867894
192.230.77.133200 OK 1.7 kB URL GET HTTP/2 329862.com/v1/management/tenant/getTenantConfig?t=1686107867894
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1783), with no line terminators
Hash b8d0e267ea74be8364ab3224d5762e9c
c0272e1ae2890d6a60e1a6bc685987d31cf4cea0
6756aee30e9e82486cf64dfc9a634a51ddb7ff8394c69c0c27638ed7f1ce6958
GET /v1/management/tenant/getTenantConfig?t=1686107867894 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 0-2310525-2310561 NNNN CT(224 224 0) RT(1686107865821 2267) q(0 0 5 -1) r(8 8) U12
X-Firefox-Spdy: h2
329862.com/v1/report/tenantReport/getAvgOptTime?t=1686107868005
192.230.77.133200 OK 72 B URL GET HTTP/2 329862.com/v1/report/tenantReport/getAvgOptTime?t=1686107868005
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Hash 690fd06bf0d37ebdbc4e0a9dd7adb63b
45b4d6b707b5753859840df90dd22796c1a64dad
9c0bc5de8f0f4b2e72536c78805c3c484cf9fd8a8bd15b02b7dd1cf40c44137f
GET /v1/report/tenantReport/getAvgOptTime?t=1686107868005 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 0-2310525-2310527 PNNN RT(1686107865821 2356) q(0 6 6 -1) r(8 8) U12
X-Firefox-Spdy: h2
329862.com/static/public/need/layer.css
192.230.77.133200 OK 3.7 kB URL GET HTTP/2 329862.com/static/public/need/layer.css
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (3701), with no line terminators
Hash 42f69c087e51045a8a3c7cd673035bac
e8f0e6c08d06438f21a4293f4824615adf1b739d
56f78048287d433001c7733ad944f0a4ef94f3a06e8f8958a7ddf86644c8ec44
GET /static/public/need/layer.css HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: W/"6470271e-e53"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: text/css
content-length: 1205
content-encoding: gzip
cache-control: max-age=11374, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:47 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2298506 2CNN RT(1686107865821 1584) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
329862.com/v1/statistics/push
192.230.77.133200 OK 43 B URL POST HTTP/2 329862.com/v1/statistics/push
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Hash 88f5d81d282db05ba087420dd56bcfc7
4e8326cb4f2e39bfb2ef07a64b11e6c817cd4dda
f77cddfc101160c163bc59fc27fb3ab62cd46f9907d28f795a79e7920a06c400
POST /v1/statistics/push HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
X-Token:
Content-Length: 180
Origin: https://329862.com
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Wed, 07 Jun 2023 03:17:48 GMT
content-type: application/json;charset=UTF-8
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 0-2310525-2310536 PNNN RT(1686107865821 2263) q(0 0 0 -1) r(4 4) U6
X-Firefox-Spdy: h2
329862.com/register?id=32483556
192.230.77.133200 OK 4.2 kB URL User Request GET HTTP/2 329862.com/register?id=32483556
IP 192.230.77.133:443
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4232), with no line terminators
Hash b462f53ac7414864f01d8d532937d525
4bdd0c363fe50e9343cceb61ba2d6b8ae6942a44
446562d0b57f6f3719ee99b87a483fdebf3805a28fea61ea7bb67b49e6afbd58
GET /register?id=32483556 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://cfileapi.gyaott.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Wed, 07 Jun 2023 03:17:46 GMT
content-type: text/html
last-modified: Fri, 26 May 2023 03:27:26 GMT
etag: W/"6470271e-fbd"
content-encoding: gzip
set-cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; expires=Wed, 05 Jun 2024 23:14:10 GMT; HttpOnly; path=/; Domain=.329862.com
nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; path=/; Domain=.329862.com
incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; path=/; Domain=.329862.com
x-cdn: Imperva
x-iinfo: 0-2310525-2310527 NNNN CT(204 409 0) RT(1686107865821 15) q(0 0 6 0) r(8 8) U12
X-Firefox-Spdy: h2
329862.com/static/css/9.e1799f90210d.css
192.230.77.133200 OK 1.1 kB URL GET HTTP/2 329862.com/static/css/9.e1799f90210d.css
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1099), with no line terminators
Hash b9d1a69e6c40ebff083d8bdddecbc363
8bae8edee00b86532d71191e79c080762f849695
36e91d2c7da3be4ace2d4015c93384b8e51225048821ea7164ffdbb7da110b75
GET /static/css/9.e1799f90210d.css HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: W/"6470271e-445"
last-modified: Fri, 26 May 2023 03:27:26 GMT
content-type: text/css
content-length: 455
content-encoding: gzip
cache-control: max-age=11373, public
expires: Wed, 07 Jun 2023 06:27:21 GMT
date: Wed, 07 Jun 2023 03:17:48 GMT
x-cdn: Imperva
x-iinfo: 0-2310525-2310556 2CNN RT(1686107865821 2227) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
aeis.alicdn.com/AWSC/AWSC/awsc.js?_t=234181
104.110.21.4200 OK 12 kB URL GET HTTP/2 aeis.alicdn.com/AWSC/AWSC/awsc.js?_t=234181
IP 104.110.21.4:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerDigiCert Inc
Subjectru.aliexpress.com
FingerprintB0:CC:5C:84:CD:0B:FC:82:E1:6A:C4:16:F5:B5:1E:D9:13:45:6C:3F
ValidityMon, 19 Dec 2022 00:00:00 GMT - Tue, 19 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (11988), with no line terminators
Hash 05ccd82860f1ad63d32696b7b6c0ce14
52090b1208172ff8f4cec5f6454881c61f0e0a2f
bc6b428ea03ce9591b45c8cabfc9489db7e112c55b393c88868de0efe04ceb5a
GET /AWSC/AWSC/awsc.js?_t=234181 HTTP/1.1
Host: aeis.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 3930
x-oss-request-id: 647FDB010A50A33435B307C1
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7512433114953199032
x-oss-storage-class: Standard
content-md5: BczYKGDxrWPTJpa3tsDOFA==
x-oss-server-time: 1
x-source-scheme: https
content-encoding: gzip
ali-swift-global-savetime: 1686100737
x-swift-savetime: Wed, 07 Jun 2023 02:00:05 GMT
x-swift-cachetime: 1132
eagleid: 2ff62c9516861032049507795e
cache-control: max-age=2490, s-maxage=3600
expires: Wed, 07 Jun 2023 03:59:19 GMT
date: Wed, 07 Jun 2023 03:17:49 GMT
vary: Accept-Encoding
served-from: 23.36.77.199
network_info: NO_OSLO_50304
timing-allow-origin: *, *
access-control-allow-origin: *
access-control-expose-headers: FW_IP
fw_ip: 104.110.21.4
X-Firefox-Spdy: h2
aeis.alicdn.com/AWSC/WebUMID/1.93.0/um.js
104.110.21.4200 OK 178 kB URL GET HTTP/2 aeis.alicdn.com/AWSC/WebUMID/1.93.0/um.js
IP 104.110.21.4:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerDigiCert Inc
Subjectru.aliexpress.com
FingerprintB0:CC:5C:84:CD:0B:FC:82:E1:6A:C4:16:F5:B5:1E:D9:13:45:6C:3F
ValidityMon, 19 Dec 2022 00:00:00 GMT - Tue, 19 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 178 kB (177654 bytes)
Hash a4cff78229e56fde5f28d1999679a1d1
8d8f89aa7d26569337192dce8a12daaa1867bcd4
4c4701ca975df0019b9ce5ffd2a8d33f413bad55663a9f64ba9369da7a444db0
GET /AWSC/WebUMID/1.93.0/um.js HTTP/1.1
Host: aeis.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 77333
x-oss-request-id: 6468E5E961623D31397B5535
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2332966527039349753
x-oss-storage-class: Standard
content-md5: pM/3ginlb95fKNGZlnmh0Q==
x-oss-server-time: 20
x-source-scheme: https
content-encoding: gzip
ali-swift-global-savetime: 1684596201
x-swift-savetime: Sat, 20 May 2023 15:23:29 GMT
x-swift-cachetime: 86392
eagleid: 2ff62c9716845962097947285e
served-from: 47.246.44.230
cache-control: max-age=1080410, s-maxage=86400
expires: Mon, 19 Jun 2023 15:24:39 GMT
date: Wed, 07 Jun 2023 03:17:49 GMT
vary: Accept-Encoding
network_info: NO_OSLO_50304
timing-allow-origin: *, *
access-control-allow-origin: *
access-control-expose-headers: FW_IP
fw_ip: 104.110.21.4
X-Firefox-Spdy: h2
aeis.alicdn.com/AWSC/uab/1.140.0/collina.js
104.110.21.4200 OK 249 kB URL GET HTTP/2 aeis.alicdn.com/AWSC/uab/1.140.0/collina.js
IP 104.110.21.4:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerDigiCert Inc
Subjectru.aliexpress.com
FingerprintB0:CC:5C:84:CD:0B:FC:82:E1:6A:C4:16:F5:B5:1E:D9:13:45:6C:3F
ValidityMon, 19 Dec 2022 00:00:00 GMT - Tue, 19 Dec 2023 23:59:59 GMT
Size 249 kB (248730 bytes)
Hash 75fb6b94dcb3a9c89abb59a3ffd7546f
96101820857ef511ba83017e928aeeb88353b162
04975704505b42dc124568d9d4be26aee2d4592826a0487920cb1d016d1a8e58
GET /AWSC/uab/1.140.0/collina.js HTTP/1.1
Host: aeis.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 119440
x-oss-request-id: 6464CEB6B0E0E7333712CD38
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17940526130122019226
x-oss-storage-class: Standard
content-md5: dftrlNyzqciau1mj/9dUbw==
x-oss-server-time: 6
x-source-scheme: https
content-encoding: gzip
ali-swift-global-savetime: 1684328118
x-swift-savetime: Wed, 17 May 2023 18:04:24 GMT
x-swift-cachetime: 67854
eagleid: 2ff62c9b16843466639526205e
served-from: 23.36.77.237
cache-control: max-age=812180, s-maxage=86400
expires: Fri, 16 Jun 2023 12:54:09 GMT
date: Wed, 07 Jun 2023 03:17:49 GMT
vary: Accept-Encoding
network_info: NO_OSLO_50304
timing-allow-origin: *, *
access-control-allow-origin: *
access-control-expose-headers: FW_IP
fw_ip: 104.110.21.4
X-Firefox-Spdy: h2
at.alicdn.com/t/font_2430878_tju82v96qxe.woff2
47.246.44.252200 OK 26 kB URL GET HTTP/2 at.alicdn.com/t/font_2430878_tju82v96qxe.woff2
IP 47.246.44.252:443
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by https://329862.com/register?id=32483556
Certificate IssuerGlobalSign nv-sa
Subject*.tbcdn.cn
Fingerprint62:88:3B:F1:01:21:46:73:DD:01:B6:4D:D1:6A:68:18:8A:B4:B6:B1
ValidityFri, 22 Jul 2022 07:30:04 GMT - Sun, 06 Aug 2023 03:46:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 25988, version 1.0\012- data
Hash 3d929f77d857dddcd6066bad750bb277
259fd1976fdb8f8e8d354d32b5e7681e3db01341
92edafbe3372b0e72089ee25f8665470b7ee8d4df2250cb96c159d6c1153dbdd
GET /t/font_2430878_tju82v96qxe.woff2 HTTP/1.1
Host: at.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://329862.com
DNT: 1
Connection: keep-alive
Referer: https://329862.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: font/woff2
content-length: 25988
date: Sun, 04 Jun 2023 17:14:30 GMT
x-oss-request-id: 647CC67601F2EF323597CA90
vary: Origin
accept-ranges: bytes
etag: "3D929F77D857DDDCD6066BAD750BB277"
last-modified: Fri, 24 Dec 2021 22:12:00 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7241217540761008470
x-oss-storage-class: Standard
cache-control: max-age=63072000
content-md5: PZKfd9hX3dzWBmutdQuydw==
x-oss-server-time: 1
ali-swift-global-savetime: 1685898871
via: cache24.l2us1[0,0,200-0,H], cache1.l2us1[1,0], cache8.se1[0,0,200-0,H], cache1.se1[1,0]
age: 208998
x-cache: HIT TCP_HIT dirn:4:271688626
x-swift-savetime: Mon, 05 Jun 2023 05:35:43 GMT
x-swift-cachetime: 31059528
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516861078694634242e
X-Firefox-Spdy: h2
329862.com/v1/users/announcement/content?t=1686107868565&id=117746
192.230.77.133200 OK 897 B URL GET HTTP/2 329862.com/v1/users/announcement/content?t=1686107868565&id=117746
IP 192.230.77.133:443
Requested by https://329862.com/register?id=32483556
Certificate IssuerSectigo Limited
Subject111233c.com
FingerprintD3:0B:52:50:7B:88:C0:41:FB:26:C8:A9:8F:93:FF:78:12:20:E0:37
ValidityMon, 05 Jun 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (803), with no line terminators
Hash c24daa5ed600b98ad26fe8093c0f2a89
4108f7fa6ee629722ff9e494a29cf1165b476e30
11ae9ba8e6cc80c3a44e7e898a8b6c2343a2a8f4757b8a6439c4da5d2a5dc4be
GET /v1/users/announcement/content?t=1686107868565&id=117746 HTTP/1.1
Host: 329862.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Publish-Version: 2023/05/26_11:27:06 pc-v1.179.0
X-Token:
DNT: 1
Connection: keep-alive
Referer: https://329862.com/register?id=32483556
Cookie: visid_incap_2930546=Lrec/vRaTjGvIZO4893iedn2f2QAAAAAQUIPAAAAAAAeiMgJSyfGcb1DFTWHaL18; nlbi_2930546=oCf7M0XqWxiY/hS5qVQjrgAAAABI4mVegzVv8ZfJnpKiaO7V; incap_ses_720_2930546=+ukvUamhWg4BoHk9JvX9Cdr2f2QAAAAASi7EB9bCykn6kqW7bty2mA==; _uab_collina=168610786770041567096916
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: X-Token,Content-Type,Publish-Version
access-control-allow-methods: POST,GET,OPTIONS
access-control-max-age: 604800
access-control-expose-headers: X-forwared-port, X-forwarded-host,X-Token,Content-Type,Publish-Version
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
content-encoding: gzip
x-cdn: Imperva
x-iinfo: 0-2310525-2310536 PNNN RT(1686107865821 2904) q(0 0 0 -1) r(3 3) U12
X-Firefox-Spdy: h2