r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8917
Expires: Sat, 14 Jan 2023 13:09:12 GMT
Date: Sat, 14 Jan 2023 10:40:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0643dc6b6fed33b3537160b6bb77bcbf
aa43bd1fbb30d2219f3285c1ee4991ffb33562c5
f137438e30e0d69cba77ca2eb736687873e4a9c06cf88d23c6d55ea930fde09f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F137438E30E0D69CBA77CA2EB736687873E4A9C06CF88D23C6D55EA930FDE09F"
Last-Modified: Sat, 14 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8084
Expires: Sat, 14 Jan 2023 12:55:19 GMT
Date: Sat, 14 Jan 2023 10:40:35 GMT
Connection: keep-alive
58249.net/html/163977/164052.html
207.60.203.116301 Moved Permanently 0 B URL HTTP/1.1 58249.net/html/163977/164052.html
IP 207.60.203.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /html/163977/164052.html HTTP/1.1
Host: 58249.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 14 Jan 2023 10:40:37 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.58249.net/html/163977/164052.html
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 14 Jan 2023 09:42:01 GMT
content-type: application/json
age: 3514
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 64765d3d978fd74d7bc47d55d4f097cf
92eb3f0d55ba99be28105c0b28ef7dd456817f1f
761aab02513e7a0ec55ea59109e88b39cbd4e17df0cd2035aa37a4693f22d1f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "761AAB02513E7A0EC55EA59109E88B39CBD4E17DF0CD2035AA37A4693F22D1F3"
Last-Modified: Thu, 12 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7928
Expires: Sat, 14 Jan 2023 12:52:43 GMT
Date: Sat, 14 Jan 2023 10:40:35 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bGaJAzQMiil90ON6JYqe8OirNhm3N6IL7zUst6sg1JmQv3uNUbAYmWFtV++s4ghBDu6RWNM6bvg=
x-amz-request-id: WFD4Y4BYH8QKB9AJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 14 Jan 2023 09:54:54 GMT
age: 2741
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:35 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.58249.net/html/163977/164052.html
207.60.203.116200 OK 528 B URL HTTP/1.1 www.58249.net/html/163977/164052.html
IP 207.60.203.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (834), with CRLF line terminators
Hash 44fc0057c93561f2b4dac84795ec5913
49179ce4d621fa321ab9d33a78c85fc83adb1e76
e0a9e4f40d5418d40531bb12821bea5bb1972a824b79feee06989ae840881321
GET /html/163977/164052.html HTTP/1.1
Host: www.58249.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 10:40:38 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 14 Jan 2023 10:33:45 GMT
age: 410
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c01ec61f7ca77158f474b3ab519c12fa
fc82ae0fcd73a83a980b75709a08e65239894e4a
f533e0fac9b92e79d4fbd6e70b42a83067de95f0a13cc737d7e5fa459baa4c54
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3370
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 10:40:35 GMT
Last-Modified: Sat, 14 Jan 2023 09:44:25 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
www.58249.net/common.js
207.60.203.116200 OK 676 B IP 207.60.203.116:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1293), with no line terminators
Hash f9f32de8cf433e2006db8e87cca2bfbd
816b8e176a34a403ec76a01a8f7b8c4d4b25b8ca
692ee11acd3f9f4269c339a6b5124caa9b6eb2938a9e54c160d081fbc0a357e2
GET /common.js HTTP/1.1
Host: www.58249.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.58249.net/html/163977/164052.html
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 10:40:38 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.58249.net/tj.js
207.60.203.116200 OK 258 B IP 207.60.203.116:0
File type ASCII text, with CRLF line terminators
Hash 242231561cfe56644b27d4a99dab3707
229dab6a4df40555671564eb2298003b2dd25f25
d25a43f1930ed0a397dc1f1cf346f349e94620f28f2acba94571e7c5278533af
GET /tj.js HTTP/1.1
Host: www.58249.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.58249.net/html/163977/164052.html
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 10:40:38 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
push.services.mozilla.com/
35.161.26.194101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.26.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +7ZO9nCXkRFPJ+U3RzgnrA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: o8rlyW8kqhz26zx6qPiD8XU89KE=
www.58249.net/favicon.ico
207.60.203.116200 OK 528 B URL HTTP/1.1 www.58249.net/favicon.ico
IP 207.60.203.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (834), with CRLF line terminators
Hash 44fc0057c93561f2b4dac84795ec5913
49179ce4d621fa321ab9d33a78c85fc83adb1e76
e0a9e4f40d5418d40531bb12821bea5bb1972a824b79feee06989ae840881321
GET /favicon.ico HTTP/1.1
Host: www.58249.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.58249.net/html/163977/164052.html
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 3555c9222886b9a6262be527b44b90d5
9d3889cb1bc5cba6458a67eca3d484238deb226c
0338e8efca562297f06f7472fccdab11325a66cfa2400346fd8822472ea6475f
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 18 Jan 2023 07:41:30 GMT
ETag: "9d3889cb1bc5cba6458a67eca3d484238deb226c"
Last-Modified: Sat, 14 Jan 2023 07:41:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1051
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7895c1255decb524-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e2ef39322e007b4b094131b9728f1caf
928169a2bae7085a0c3b5fe937fe07bbc059054c
29ba07b626cb2a6e7a275d9c783c829b4454f562dc490fc9326c69758097c03c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "29BA07B626CB2A6E7A275D9C783C829B4454F562DC490FC9326C69758097C03C"
Last-Modified: Thu, 12 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 14 Jan 2023 16:40:36 GMT
Date: Sat, 14 Jan 2023 10:40:36 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4e64e93a59791af1e1618832d2edfff9
f3ef7123cb0a51a905548d9aa861776db5e61b9f
044bd40930896e90811b54f92e4b7a3d59eb11d4206f7563d1b293cb28914c73
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "044BD40930896E90811B54F92E4B7A3D59EB11D4206F7563D1B293CB28914C73"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14393
Expires: Sat, 14 Jan 2023 14:40:30 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4e64e93a59791af1e1618832d2edfff9
f3ef7123cb0a51a905548d9aa861776db5e61b9f
044bd40930896e90811b54f92e4b7a3d59eb11d4206f7563d1b293cb28914c73
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "044BD40930896E90811B54F92E4B7A3D59EB11D4206F7563D1B293CB28914C73"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14393
Expires: Sat, 14 Jan 2023 14:40:30 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4e64e93a59791af1e1618832d2edfff9
f3ef7123cb0a51a905548d9aa861776db5e61b9f
044bd40930896e90811b54f92e4b7a3d59eb11d4206f7563d1b293cb28914c73
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "044BD40930896E90811B54F92E4B7A3D59EB11D4206F7563D1B293CB28914C73"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14393
Expires: Sat, 14 Jan 2023 14:40:30 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4e64e93a59791af1e1618832d2edfff9
f3ef7123cb0a51a905548d9aa861776db5e61b9f
044bd40930896e90811b54f92e4b7a3d59eb11d4206f7563d1b293cb28914c73
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "044BD40930896E90811B54F92E4B7A3D59EB11D4206F7563D1B293CB28914C73"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14393
Expires: Sat, 14 Jan 2023 14:40:30 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4e64e93a59791af1e1618832d2edfff9
f3ef7123cb0a51a905548d9aa861776db5e61b9f
044bd40930896e90811b54f92e4b7a3d59eb11d4206f7563d1b293cb28914c73
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "044BD40930896E90811B54F92E4B7A3D59EB11D4206F7563D1B293CB28914C73"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14393
Expires: Sat, 14 Jan 2023 14:40:30 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12063
Expires: Sat, 14 Jan 2023 14:01:40 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12063
Expires: Sat, 14 Jan 2023 14:01:40 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12063
Expires: Sat, 14 Jan 2023 14:01:40 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1378f107c1996ade14a8fe7fd728072
f52d98d9a0d1d343a539689ea14acf99e148cf8c
4be994757ec7ec42929590169de199e927889261334e258903a0929a1055047d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9154
x-amzn-requestid: fbb1140d-7ec2-4f86-8761-5d04601af70e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAkCEN2IAMFuMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7ae6-4baebf1104f9cf2a0ee8a538;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:13:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jlRcVyQppaQaPPMKaqadtaEHfdOYXXXbnfrr44l_2E2qaOoh_O0Mog==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 04:10:18 GMT
age: 23419
etag: "f52d98d9a0d1d343a539689ea14acf99e148cf8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64ba27a2f0a3bc61bd325f1fb317b755
c65c58476b66cbb6269ba1d8412d270a0a003ae3
5f7f03752f8a7c8c08d92512ae93b193ea37f59354503c3129d33fd2910f87e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9135
x-amzn-requestid: 2c5e9de0-9244-43ac-b7c4-712cbcf7038c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAnoG6roAMFzgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7afd-7fb640b30bab63bc1979a173;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:14:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SUGIIWi8jWe9RoRu-3dQXvLAddjwjH05V1ubKzEOEQrFonzVjQdbtw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 03:33:07 GMT
age: 25650
etag: "c65c58476b66cbb6269ba1d8412d270a0a003ae3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2363dbe7bb6a459853d8d19cab50e70b
ded76de1dd453e40dbf6eaa8607cf19fac7f71a4
f96da6354cec52143768014c36ba2b298224a58b0bf38bd2aa5f3bfce69d8670
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7447
x-amzn-requestid: dd3543b7-4e6b-4605-acea-a21d39af02ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0qSFjAIAMF7HQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce41-56e2ccc63669032d70cba0ba;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AYaeawnEmwHkyx3h-yliVx-ARcRB3W5kbtFH5tARnL3YMD6e4WYAQw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:49:01 GMT
age: 46296
etag: "ded76de1dd453e40dbf6eaa8607cf19fac7f71a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/j0lreweuk2q.jpg
104.22.12.214200 OK 7.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/j0lreweuk2q.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 27d529c295c34b75402562e111605878
56f474c894ec763bd9d61e9482b5a5d6fcd3d408
34d32a2adf0f3a92caf4e0c34832d2fb409a52b7deee4749c8f2f7cdd13f8adb
GET /upload/vod/2023/01/j0lreweuk2q.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 7570
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8623
content-disposition: inline; filename="j0lreweuk2q.webp"
etag: "63bfb8e9-21af"
last-modified: Thu, 12 Jan 2023 07:38:17 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129bbb5b500-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d24ea1f095f492934a1f1c63f5d8590c
dade37148c9b9a941f93a8535d8ddc5de3952623
2d8e3f90eb347eb3479a6c5d20a1c2ca6a0560f335a6c6800948db2640e4c878
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8181
x-amzn-requestid: 7ada8fbd-58e6-4433-a532-b4a4ef93ac9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0paH-OIAMFg5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce3c-582529522dbb67ee728484f8;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AHjOmYxva5avyA3gt9DvYLas_B2ACimer5QRQOi919HDtSjnKq22lw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 10:27:20 GMT
age: 797
etag: "dade37148c9b9a941f93a8535d8ddc5de3952623"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12063
Expires: Sat, 14 Jan 2023 14:01:40 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2023/01/kvwdvrkyfuf.jpg
104.22.12.214200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/kvwdvrkyfuf.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 6bfbd1a5daa18deb83e94db875bf02c5
88ecc8b831a18c53059107a4c3c62cb9115ea088
8f0ba4cc899691637b6029525b549a4db408054b4310d51341bcacfbbe22c8dc
GET /upload/vod/2023/01/kvwdvrkyfuf.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/jpeg
content-length: 10066
cf-bgj: imgq:85,h2pri
cf-polished: origSize=10527, status=webp_bigger
etag: "63bfb8bc-291f"
last-modified: Thu, 12 Jan 2023 07:37:32 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7895c129aba7b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/0vaaz2x0rgk.jpg
104.22.12.214200 OK 8.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/0vaaz2x0rgk.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b73a67ce64bf6ab7b2f2d8a1b003093c
43a9fea4f4953e5cf64f4c057fa0d577e4470073
e3851a9187730fa58cdf7d57a6acef243bd632cf288a45f3896d5898dc629b1f
GET /upload/vod/2023/01/0vaaz2x0rgk.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 8080
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9508
content-disposition: inline; filename="0vaaz2x0rgk.webp"
etag: "63bfca47-2524"
last-modified: Thu, 12 Jan 2023 08:52:23 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129ab9fb500-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12063
Expires: Sat, 14 Jan 2023 14:01:40 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2023/01/15340q25jha.jpg
104.22.12.214200 OK 8.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/15340q25jha.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fc91ea4581e298f0aecef4a121c7a462
02ea500514130cd7fd19d3a3264ec0d16e614341
0daae771aa902f161844c0ed25e0b312a468e10e5364c4fbc4b9adecbf92cdcd
GET /upload/vod/2023/01/15340q25jha.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 8054
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9096
content-disposition: inline; filename="15340q25jha.webp"
etag: "63bfca26-2388"
last-modified: Thu, 12 Jan 2023 08:51:50 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129cbceb500-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 4769eaeb-0c78-4054-ad47-eefdd6ab2d03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWHMZErbIAMF6sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8b8b5-4c7bacfe060899044e361f70;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 00:11:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uJjDFuqKCZyyAorUVUq9PyCb_8fWukPf6YE3LwqK2FrwMFzDNkftFQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 11:16:26 GMT
age: 84251
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217f47b7-7266-4f31-a889-da2550827aab.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217f47b7-7266-4f31-a889-da2550827aab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 52e72b1dbc9a93274c080eade6dbe9d5
a43c0b04bb01df4f56567a54ef39baf5d6cdd75d
80824298f622522bbf538a719c5586d953e5a7c245d4eb2344131dde7b937ad4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217f47b7-7266-4f31-a889-da2550827aab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8871
x-amzn-requestid: e56a0195-3705-4650-b2af-4dde36516690
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enjNoHxVoAMF5YA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bfb257-365691b672f1ae5a0f0fd5e4;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 07:10:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fng_0UgXEGOlOfegLifoC2GpbBTBSAbj_cuCLlEx4I0Olzo1jHB0rg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 03:29:59 GMT
age: 25838
etag: "a43c0b04bb01df4f56567a54ef39baf5d6cdd75d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 80aa82292598a03c7f79cbe5d0ce1f96
9953dad9534897367a020c32480edc20097833f1
f96c37f129d06dd2ce4824d52ef1514358eec4766f4848ae4ad8971f1f8f9ae3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F96C37F129D06DD2CE4824D52EF1514358EEC4766F4848AE4AD8971F1F8F9AE3"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7149
Expires: Sat, 14 Jan 2023 12:39:46 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 80aa82292598a03c7f79cbe5d0ce1f96
9953dad9534897367a020c32480edc20097833f1
f96c37f129d06dd2ce4824d52ef1514358eec4766f4848ae4ad8971f1f8f9ae3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F96C37F129D06DD2CE4824D52EF1514358EEC4766F4848AE4AD8971F1F8F9AE3"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7179
Expires: Sat, 14 Jan 2023 12:40:16 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 80aa82292598a03c7f79cbe5d0ce1f96
9953dad9534897367a020c32480edc20097833f1
f96c37f129d06dd2ce4824d52ef1514358eec4766f4848ae4ad8971f1f8f9ae3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F96C37F129D06DD2CE4824D52EF1514358EEC4766F4848AE4AD8971F1F8F9AE3"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7179
Expires: Sat, 14 Jan 2023 12:40:16 GMT
Date: Sat, 14 Jan 2023 10:40:37 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2023/01/x1rgar2gdej.jpg
104.22.12.214200 OK 6.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/x1rgar2gdej.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 886ee95d667c2df1c80d1c74094dd99e
01ff0d74768982268d088c0805937cb169c66e0b
51945f69df1308939f7d386bd3fed4662769530e917ee83d5f74ead0409e0dd0
GET /upload/vod/2023/01/x1rgar2gdej.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 6784
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8100
content-disposition: inline; filename="x1rgar2gdej.webp"
etag: "63bfca34-1fa4"
last-modified: Thu, 12 Jan 2023 08:52:04 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129ab9db500-OSL
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/app1.js
23.224.221.53200 OK 1.0 kB URL HTTP/2 2k.qfbj2.com/template/web/app1.js
IP 23.224.221.53:0
File type HTML document, Unicode text, UTF-8 text
Hash 83ef8d3ab10bcaf3d24d3b867a524b4e
39d32893e0a6ff34f36ef9bb832a9fda250be36d
f4bef7920c2334d47128894301c27bbea6367f2b6b279733867f254df1f388a6
GET /template/web/app1.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
content-length: 1005
last-modified: Wed, 11 Jan 2023 16:46:52 GMT
etag: "63bee7fc-3ed"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/jztjlqqz0jo.jpg
104.22.12.214200 OK 8.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/jztjlqqz0jo.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b54e6c796e3f0ba0e2c36d440c247946
174d3832824aa066df284cc6ac88a1c5a2dda1fe
f600f6dd0591123b7662c9bf2b6c864f6e3429b873769ed04aaeb6ce10b23fbb
GET /upload/vod/2023/01/jztjlqqz0jo.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 8494
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9098
content-disposition: inline; filename="jztjlqqz0jo.webp"
etag: "63bfca55-238a"
last-modified: Thu, 12 Jan 2023 08:52:37 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129aba3b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/dhrtfbpucxw.jpg
104.22.12.214200 OK 8.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/dhrtfbpucxw.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 120cdf2e7c5198d597f4a0b5402174d2
bf2406df7f77b6d35b3797bbc7e55a21d1abaf0c
530b782dd992cf5ab7409b79c317c7a56c73ca4b8f594bf791d64fbd9727bd30
GET /upload/vod/2023/01/dhrtfbpucxw.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 8684
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9942
content-disposition: inline; filename="dhrtfbpucxw.webp"
etag: "63bfb8df-26d6"
last-modified: Thu, 12 Jan 2023 07:38:07 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129bbb2b500-OSL
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/app2.js
23.224.221.53200 OK 982 B URL HTTP/2 2k.qfbj2.com/template/web/app2.js
IP 23.224.221.53:0
File type HTML document, Unicode text, UTF-8 text
Hash cce13b299ea1523698e6048c73940eef
e7a9dafef7a8c0a726b6773c189a07540b5777d4
6780f0a749e630557cebc874da1994dc426a640fd2629e63473cfd45c81ad49b
GET /template/web/app2.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
content-length: 982
last-modified: Fri, 13 Jan 2023 13:13:24 GMT
etag: "63c158f4-3d6"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/eqvcdccnw5r.jpg
104.22.12.214200 OK 4.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/eqvcdccnw5r.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash becbce20caa9b1d62235f8766c822765
35cbc03ead6bb134e538c67f666a120cda66e3ba
8a9439c39d8901a4c69599a448f52d46598a82a6ea1df15bb0ff66a467302e0a
GET /upload/vod/2023/01/eqvcdccnw5r.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 4282
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6737
content-disposition: inline; filename="eqvcdccnw5r.webp"
etag: "63bfb8cd-1a51"
last-modified: Thu, 12 Jan 2023 07:37:49 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129abadb500-OSL
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/app3.js
23.224.221.53200 OK 954 B URL HTTP/2 2k.qfbj2.com/template/web/app3.js
IP 23.224.221.53:0
File type HTML document, Unicode text, UTF-8 text
Hash 783fcebdd3b8e453e4e3ca391ee8f950
fc86d86955aaefbf84a03ea24fd77493296ce915
7ee26b1f5833262bdeb71c554ca9039d32208375bddc9bd05a0c82f7de9f0260
GET /template/web/app3.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
content-length: 954
last-modified: Sat, 14 Jan 2023 06:16:58 GMT
etag: "63c248da-3ba"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/et3nvolxct5.jpg
104.22.12.214200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/et3nvolxct5.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2271f316994158c87910d2b811d78f4d
925b6988cd1842d7fe9b32df3414a5a206a28644
dea9dd0b10f7f5ab12f5e4d91399ecdc8f2de22eb9f065690175b0be8c529849
GET /upload/vod/2023/01/et3nvolxct5.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 10018
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11080
content-disposition: inline; filename="et3nvolxct5.webp"
etag: "63bfb8c0-2b48"
last-modified: Thu, 12 Jan 2023 07:37:36 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129aba8b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/13m3nsfwufi.jpg
104.22.12.214200 OK 4.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/13m3nsfwufi.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a7078d566ce49cec2224a9b1b29093b1
0717ab1a00a1582f68f8e24254df144152e9df77
f1651686176f44d68e0c06bc6cc3d8658ca817932ff98ab76960b6352e94beef
GET /upload/vod/2023/01/13m3nsfwufi.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 4622
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6715
content-disposition: inline; filename="13m3nsfwufi.webp"
etag: "63bfb8f1-1a3b"
last-modified: Thu, 12 Jan 2023 07:38:25 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129bbbbb500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/swlxhvodm1r.jpg
104.22.12.214200 OK 4.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/swlxhvodm1r.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5ab33385868aa9b7572177caa0e45cd9
308ed160c1b170a5d188616723a244e486830863
7d233a1791659b18fb6dba70428e5175239af614cdfadbbab36daa2abdac2904
GET /upload/vod/2023/01/swlxhvodm1r.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 4602
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6825
content-disposition: inline; filename="swlxhvodm1r.webp"
etag: "63bfb8d1-1aa9"
last-modified: Thu, 12 Jan 2023 07:37:53 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129abaeb500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/gybxtck0hyj.jpg
104.22.12.214200 OK 6.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/gybxtck0hyj.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b5bd4cf65b517f37b4e345aef45f5904
a04aac3a13f7d48d5ece116cdea17fe0bdbe9dc4
37b8ce5307ba0235b8b1c4e5f16d0179a0b0f8a7ccc7f94781a8666588bd759e
GET /upload/vod/2023/01/gybxtck0hyj.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 6418
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8906
content-disposition: inline; filename="gybxtck0hyj.webp"
etag: "63bfb8f6-22ca"
last-modified: Thu, 12 Jan 2023 07:38:30 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129bbbcb500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/azgrusztpki.jpg
104.22.12.214200 OK 5.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/azgrusztpki.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 32885cf9fdf5967188a6ad78a51979f3
a6ef45d45dd39c85cc65ffe918aea82c00f0a8fd
7a43bbad1ad960dc5383c31eb8ef827a3ad61a357c4575d1dd82040ccdaacc55
GET /upload/vod/2023/01/azgrusztpki.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 5880
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8331
content-disposition: inline; filename="azgrusztpki.webp"
etag: "63bfca4b-208b"
last-modified: Thu, 12 Jan 2023 08:52:27 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129aba1b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/4iljt5wgdl3.jpg
104.22.12.214200 OK 9.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/4iljt5wgdl3.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 5acd8bf2e201d45582eed5dcba5fd345
b4697034282012e3b42e9f2e1c87e2b713023875
a44fa463cee8f148a54326d184e3fe55db7830d9f086249c87361636798fffac
GET /upload/vod/2023/01/4iljt5wgdl3.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/jpeg
content-length: 9915
cf-bgj: imgq:85,h2pri
cf-polished: origSize=10412, status=webp_bigger
etag: "63bfb8c8-28ac"
last-modified: Thu, 12 Jan 2023 07:37:44 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7895c129abaab500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/srqksqh0v00.jpg
104.22.12.214200 OK 8.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/srqksqh0v00.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 949ff40b723d3462e302097572243e27
0d2b71904e02feb204310f92857da1725dd1d8ef
ef9be81be16e14bc58ceb61a266008b6f3c73fa1dd55257d6b1f6de77fbafbaf
GET /upload/vod/2023/01/srqksqh0v00.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 8102
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8895
content-disposition: inline; filename="srqksqh0v00.webp"
etag: "63bfca51-22bf"
last-modified: Thu, 12 Jan 2023 08:52:33 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129aba2b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/5nfmluhrj0l.jpg
104.22.12.214200 OK 8.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/5nfmluhrj0l.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 2a147ccae0d9107d5840c57848dc2486
c40c4ebe23bffcca7c824e306eb42f2701a327b9
f171fd0106337ba64f01d31075f8aed864ec5a73a7c4584f0c2af840e7600136
GET /upload/vod/2023/01/5nfmluhrj0l.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/jpeg
content-length: 8208
cf-bgj: imgq:85,h2pri
cf-polished: origSize=8634, status=webp_bigger
etag: "63bfb8b5-21ba"
last-modified: Thu, 12 Jan 2023 07:37:25 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7895c129aba4b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/x32kwpp5pcl.jpg
104.22.12.214200 OK 6.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/x32kwpp5pcl.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c170e5574415e76d8d7d6fd7feeb2ece
869a78911fa6891e2f4d27fdca829607a3e93679
b603a338bdbc9a4f2c36953e48a04751d88ec8fb37b581d9e817b6a8040def75
GET /upload/vod/2023/01/x32kwpp5pcl.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 6728
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8311
content-disposition: inline; filename="x32kwpp5pcl.webp"
etag: "63bfb8ed-2077"
last-modified: Thu, 12 Jan 2023 07:38:21 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129bbb8b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/1twi4knghvg.jpg
104.22.12.214200 OK 6.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/1twi4knghvg.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d314ac059e0d33e4f54ebb0b6e9088ab
64a4a7e0a2fedbfaa5085ead88848a56a2a12872
c411d494140c88bbbd41b51a1e2e1c413e06f7fc5b9b80b63f09dc1cb472d984
GET /upload/vod/2023/01/1twi4knghvg.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 6316
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9093
content-disposition: inline; filename="1twi4knghvg.webp"
etag: "63bfb8d5-2385"
last-modified: Thu, 12 Jan 2023 07:37:57 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129bbafb500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/pug2ijra1km.jpg
104.22.12.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/pug2ijra1km.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a963dcf121b3726b5509aa5c0918756b
521f697a5d54addeb772c2b0cc9d077397aa7a08
2ad7c868b8a95ca41ef5bc3aae4ef1226e30bd565ce584b4c356e208faad2e44
GET /upload/vod/2023/01/pug2ijra1km.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 10830
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11424
content-disposition: inline; filename="pug2ijra1km.webp"
etag: "63bfb8e4-2ca0"
last-modified: Thu, 12 Jan 2023 07:38:12 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129bbb4b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/42ejubodbzq.jpg
104.22.12.214200 OK 9.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/42ejubodbzq.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a174dbc3ae20127f00d41328be0131c2
5b18029347a3d26e5d13750673d4b45171c7f208
3740a0e30b8fe62b7d2ffe7f77019ed99768277a5fccebf87d82fb12ac9b31ac
GET /upload/vod/2023/01/42ejubodbzq.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 9384
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10318
content-disposition: inline; filename="42ejubodbzq.webp"
etag: "63bfb8c4-284e"
last-modified: Thu, 12 Jan 2023 07:37:40 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129aba9b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/jll5jlky0cd.jpg
104.22.12.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/jll5jlky0cd.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash ede5ce25f7aa6e3da62537f71f45545d
e37ee91b188fdc4f9fe9a8ca19447de4899f1bbe
4b7e7cd5b558ef5f7510c9d7bb37114c1dbadb98ecda98a1e3debfffe36240c0
GET /upload/vod/2023/01/jll5jlky0cd.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/jpeg
content-length: 11205
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11651, status=webp_bigger
etag: "63bfb8b9-2d83"
last-modified: Thu, 12 Jan 2023 07:37:29 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7895c129aba6b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/zvlvwby3qda.jpg
104.22.12.214200 OK 8.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/zvlvwby3qda.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 89829f1823399658c4b7a88260730bac
4e4b1057221ecb9be3fa48fd76e85de85e789dc9
710e7447e4490be4bf55c16cbff3307e672220054604dca87b23646164aa27bf
GET /upload/vod/2023/01/zvlvwby3qda.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/jpeg
content-length: 8850
cf-bgj: imgq:85,h2pri
cf-polished: origSize=9305, status=webp_bigger
etag: "63bfca30-2459"
last-modified: Thu, 12 Jan 2023 08:52:00 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7895c129bbc1b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/gzrnwferpr4.jpg
104.22.12.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/gzrnwferpr4.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 0a0f338bee06f7f98c99c4ff42b1a750
b8a16449e3a714592df4ef46b0c0e5af77d23c64
dc8987838311661d5bf4d4368720558449da8ae25beeb2725764c77c9fa94a0d
GET /upload/vod/2023/01/gzrnwferpr4.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/jpeg
content-length: 10912
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11346, status=webp_bigger
etag: "63bfb8da-2c52"
last-modified: Thu, 12 Jan 2023 07:38:02 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7895c129bbb1b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/sycr2itcm1a.jpg
104.22.12.214200 OK 8.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/sycr2itcm1a.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 17bf0d6a4a697912c010a2dca80f6d19
1aab2b408a41ed15f71c762c952ac2b2c9f99a0a
632f2734938f9903c17e820350c18336093125ec2089c6dc75a0a4d243a9153b
GET /upload/vod/2023/01/sycr2itcm1a.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 8030
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8876
content-disposition: inline; filename="sycr2itcm1a.webp"
etag: "63bfca3d-22ac"
last-modified: Thu, 12 Jan 2023 08:52:13 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c129ebdbb500-OSL
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?70459debd0fd4d6991d2bbc576b337be
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?70459debd0fd4d6991d2bbc576b337be
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 2968fa7de020e0165b37fd6ef4c1e8b6
0f9745a9b0f23c037a195094d867fe70a5b4b50b
6020e81494842ff05880ec8890b619264722b69d3e48b63ef04dcf34e83354cc
GET /hm.js?70459debd0fd4d6991d2bbc576b337be HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.58249.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Sat, 14 Jan 2023 10:40:37 GMT
Etag: 657f4a0efbbcce1f41f10993d7534d6e
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6A491D810EF90F4C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
lbfm.lbpictupian.com/upload/vod/2023/01/zxj3snb0rdr.jpg
104.22.12.214200 OK 8.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/zxj3snb0rdr.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 717cee9f5a59969d5d38e6b9a21e168e
318b230f5043386a39c6476b37bb619797843d86
22f0c40ee7e030fd0e11456719c98679a0e81c2d37035009c4fc479536215d56
GET /upload/vod/2023/01/zxj3snb0rdr.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/webp
content-length: 8522
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9091
content-disposition: inline; filename="zxj3snb0rdr.webp"
etag: "63bfca42-2383"
last-modified: Thu, 12 Jan 2023 08:52:18 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7895c12a1c07b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/01/0dw5grbxr0s.jpg
104.22.12.214200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/01/0dw5grbxr0s.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash fefccfc007e1979c6ae5bdefc5b4b373
2140e7c6dbc26ece3fa8191ae05602680ca7a8bd
310c13fcd7f8891146c5f2d9221dcd9c11a80b47c4b6ad4f84f9a35e6ea2d8ef
GET /upload/vod/2023/01/0dw5grbxr0s.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/jpeg
content-length: 10431
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11021, status=webp_bigger
etag: "63bfca39-2b0d"
last-modified: Thu, 12 Jan 2023 08:52:09 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7895c12a1c0eb500-OSL
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/dh1.js
23.224.221.53200 OK 3.1 kB URL HTTP/2 2k.qfbj2.com/template/web/dh1.js
IP 23.224.221.53:0
Hash dc0d89b5e5fc153ff62f698eccdbe336
7bf5313b5bd06d5a6f79196d433acae79535124e
a077e7c920efff6439d2b344bd171c272deb7bd4a8c8d319a9e9932b1dcdbd23
GET /template/web/dh1.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
last-modified: Sat, 14 Jan 2023 09:44:50 GMT
vary: Accept-Encoding
etag: W/"63c27992-347e"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/5115960-60.gif
23.224.221.53200 OK 313 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/5115960-60.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 313 kB (312864 bytes)
Hash e7593fc8dcb539808b00a5eebc62716a
f052b6589fd43358438fc4796ef0ab89c7d2bf38
2b7c34d61d22b1ff5c859b5fb207dd8626027ccef57d75543efd9490fae77b82
GET /template/web/GG/5115960-60.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/gif
content-length: 312864
last-modified: Tue, 10 Jan 2023 13:17:36 GMT
etag: "63bd6570-4c620"
expires: Mon, 13 Feb 2023 10:40:37 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1986049097&si=70459debd0fd4d6991d2bbc576b337be&v=1.3.0&lv=1&sn=59992&r=0&ww=1280&u=http%3A%2F%2Fwww.58249.net%2Fhtml%2F163977%2F164052.html&tt=%E4%B8%B9%E4%B8%9C%E7%A0%8D%E5%86%85%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1986049097&si=70459debd0fd4d6991d2bbc576b337be&v=1.3.0&lv=1&sn=59992&r=0&ww=1280&u=http%3A%2F%2Fwww.58249.net%2Fhtml%2F163977%2F164052.html&tt=%E4%B8%B9%E4%B8%9C%E7%A0%8D%E5%86%85%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1986049097&si=70459debd0fd4d6991d2bbc576b337be&v=1.3.0&lv=1&sn=59992&r=0&ww=1280&u=http%3A%2F%2Fwww.58249.net%2Fhtml%2F163977%2F164052.html&tt=%E4%B8%B9%E4%B8%9C%E7%A0%8D%E5%86%85%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.58249.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 14 Jan 2023 10:40:38 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=548B1F93B220B60E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
z4a.net/images/2022/11/01/960x60.gif
104.21.234.234200 OK 578 kB URL HTTP/2 z4a.net/images/2022/11/01/960x60.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 578 kB (577945 bytes)
Hash 6ae710163cd11c12a73a693024c46410
43041b87b2040371a052bf1f83d401c263a32178
42da405262416c9fbaa04b2718406d4ea93501bfb99774fae4956b6eab7c1831
GET /images/2022/11/01/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 577945
expires: Tue, 05 Dec 2023 13:00:31 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 3447606
last-modified: Mon, 05 Dec 2022 13:00:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OZLGpiJLWzmtvp3rrsUS3k0xea0FoTkHGFB9VRGmC0adnlefQ8FS5ryca6H%2FHGu%2BY12WMlgAydb9KDbXZiPudMYsQqwd8BzNAdz1kxXlKeweZEbEqkQuMbRC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7895c12f39cd23c6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
9030a.cc/1008-960x60.gif
154.85.10.21301 Moved Permanently 0 B IP 154.85.10.21:0
ASN #211392 Dream Cloud Innovation Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1008-960x60.gif HTTP/1.1
Host: 9030a.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: Keep-Alive
X-NoCache: this
Date: Sat, 14 Jan 2023 19:08:56 GMT
Location: https://9030a.cc/1008-960x60.gif
X-Via: 1.1 localhost.localdomain (random:85111 Fikker/Webcache/3.7.8)
ttzytp3.com/upload/vod/20230109-1/2247f4ae4c8dbbfbd1858fd86425659e.jpg
23.224.136.188200 OK 183 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/2247f4ae4c8dbbfbd1858fd86425659e.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x535, components 3\012- data
Size 183 kB (182610 bytes)
Hash 8c35f659faa6ea3ccca35693b7810056
96271f2837589aba79f6cfb6a957a241e3224c43
742c5f87865177630e40a11d70b27864e8fe162dd0fa11bcd8af2da85f92a0f7
GET /upload/vod/20230109-1/2247f4ae4c8dbbfbd1858fd86425659e.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 14 Jan 2023 10:40:37 GMT
Content-Type: image/jpeg
Content-Length: 182610
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:18 GMT
ETag: "63bc011e-2c952"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230109-1/e7dafa941bc707cb57cc600da89fe1f2.jpg
23.224.136.188200 OK 160 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/e7dafa941bc707cb57cc600da89fe1f2.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x500, components 3\012- data
Size 160 kB (160441 bytes)
Hash 83f51ff235be5281abf73b9c1dd7916a
f49fdbfb132396803c13fa7b0b74b66969e0e3dc
b8ff7bc7d660d686545dc032478d00e68ce7701761da9b8cc3f3febdc4d4d56e
GET /upload/vod/20230109-1/e7dafa941bc707cb57cc600da89fe1f2.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 14 Jan 2023 10:40:37 GMT
Content-Type: image/jpeg
Content-Length: 160441
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:17 GMT
ETag: "63bc011d-272b9"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230109-1/960daeb9a9ca426836f9338ecd3098f5.jpg
23.224.136.188200 OK 178 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/960daeb9a9ca426836f9338ecd3098f5.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x535, components 3\012- data
Size 178 kB (178350 bytes)
Hash 22dacfa2646c6263aa05735f18d41c8f
52781f29ce84f272c5e6868302692ef72cf57441
dc5e84a966767f955487960fff73faaecb599573c0dc15f76561ae433ec00ddf
GET /upload/vod/20230109-1/960daeb9a9ca426836f9338ecd3098f5.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 14 Jan 2023 10:40:37 GMT
Content-Type: image/jpeg
Content-Length: 178350
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:24 GMT
ETag: "63bc0124-2b8ae"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230109-1/b7e5e4659d1df754a80536cb1f08a872.jpg
23.224.136.188200 OK 189 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/b7e5e4659d1df754a80536cb1f08a872.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x540, components 3\012- data
Size 189 kB (188719 bytes)
Hash edf10c4f51aaee7c2e45075dcb5a13a5
0f19456d8bcbc7e6d8748456bfc37db8b1b2505f
d25353e5768bb1e59c2bdeebbba2777b41d2cbc2c7ccf33bd11e8ff4ec18c26d
GET /upload/vod/20230109-1/b7e5e4659d1df754a80536cb1f08a872.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 14 Jan 2023 10:40:37 GMT
Content-Type: image/jpeg
Content-Length: 188719
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:23 GMT
ETag: "63bc0123-2e12f"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230109-1/a623ab70f53485456cb1d3c52639b962.jpg
23.224.136.188200 OK 189 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/a623ab70f53485456cb1d3c52639b962.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 189 kB (189098 bytes)
Hash 4995876c3072a4f1685a77d4085d8874
3e43642d31d730f904185b486e1ccdab4db513e4
9178097894c08ae8aa1c4b87c6e63ccf59ecd03a7919bbd475960b3a0188f7e5
GET /upload/vod/20230109-1/a623ab70f53485456cb1d3c52639b962.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 14 Jan 2023 10:40:37 GMT
Content-Type: image/jpeg
Content-Length: 189098
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:29 GMT
ETag: "63bc0129-2e2aa"
Accept-Ranges: bytes
2k.qfbj2.com/template/web/GG/227.gif
23.224.221.53200 OK 477 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/227.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 477 kB (477289 bytes)
Hash 760cc21f91ee02e848650627ffa47ae2
22df8e62d12977ffd032aba17e5fd7632032633f
2b36a60cb734e5ebcaa9ad4d93f914157e563da89c4e08231bd02b72678875bd
GET /template/web/GG/227.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/gif
content-length: 477289
last-modified: Fri, 14 Oct 2022 15:40:26 GMT
etag: "634982ea-74869"
expires: Mon, 13 Feb 2023 10:40:37 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/hf5.gif
23.224.221.53200 OK 171 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/hf5.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 960 x 70\012- data
Size 171 kB (171236 bytes)
Hash 520fabf1fb49a53846d582beea64350c
399df791c5a2244a6fc30543956bcbb62835dbd5
3d332e8626654196daff08c0993994ea65dfe34d960a9e703fba05ec89451401
GET /template/web/GG/hf5.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: image/gif
content-length: 171236
last-modified: Mon, 19 Sep 2022 07:12:32 GMT
etag: "63281660-29ce4"
expires: Mon, 13 Feb 2023 10:40:37 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/x.jpg
23.224.221.53200 OK 9.2 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/x.jpg
IP 23.224.221.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /template/web/GG/x.jpg HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Thu, 02 Jun 2022 15:47:42 GMT
etag: "6298db9e-23ce"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/k16.gif
23.224.221.53200 OK 35 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k16.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 788b44c904a7b3a60753805c4763385a
b1f2664a0e3259acd09324e70d41dc0901cc6a8c
bcde8e39467e6c7540e7c1606161eea9a61e860f90616a0e05b6d0d2db0b86e1
GET /template/web/GG/k16.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 34559
last-modified: Sat, 04 Jun 2022 02:42:10 GMT
etag: "629ac682-86ff"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
js.users.51.la/21273067.js
103.143.19.103200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21273067.js
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash cfcc5c0f08c9a6462e6df16aa6478f07
720c84b3ccebf991458af7705d0bb0c41365b8ac
817c678f9b62b0db6f870cc391b17261be96bb9c428199372176794583f9691f
GET /21273067.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Sat, 14 Jan 2023 10:40:38 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=053be4ffbc13e18cce8; path=/
HWWAFSESTIME=1673692833648; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
2k.qfbj2.com/template/web/dipiao.js
23.224.221.53200 OK 109 kB URL HTTP/2 2k.qfbj2.com/template/web/dipiao.js
IP 23.224.221.53:0
Size 109 kB (109445 bytes)
Hash a5c849c3323a4fa2a2572e684636359b
6168badeb009694af4bf61190a1e7b6f21a9d25d
0f14fb18a537d9b49ef20096ed77d248f512982fb59d781df9e7ef15969349e8
GET /template/web/dipiao.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
last-modified: Sun, 15 May 2022 14:24:29 GMT
vary: Accept-Encoding
etag: W/"62810d1d-81a"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e89079e49bb3630113a6c5a41e5445ba
b78e51c3ed840551a0d59b620649a1cd53bbad23
844b28c9775dd76d906fba84786a1ecc1363bb0912ecfbfe0d99ccbe0364196d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "844B28C9775DD76D906FBA84786A1ECC1363BB0912ECFBFE0D99CCBE0364196D"
Last-Modified: Thu, 12 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21511
Expires: Sat, 14 Jan 2023 16:39:09 GMT
Date: Sat, 14 Jan 2023 10:40:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e89079e49bb3630113a6c5a41e5445ba
b78e51c3ed840551a0d59b620649a1cd53bbad23
844b28c9775dd76d906fba84786a1ecc1363bb0912ecfbfe0d99ccbe0364196d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "844B28C9775DD76D906FBA84786A1ECC1363BB0912ECFBFE0D99CCBE0364196D"
Last-Modified: Thu, 12 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21580
Expires: Sat, 14 Jan 2023 16:40:18 GMT
Date: Sat, 14 Jan 2023 10:40:38 GMT
Connection: keep-alive
ttzytp3.com/upload/vod/20230109-1/e481641ed82df8d116f44aa0680b0f19.jpg
23.224.136.188200 OK 232 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/e481641ed82df8d116f44aa0680b0f19.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 232 kB (231694 bytes)
Hash 2a505ab0b7dcfb2f7a96552670d0f5b8
4b9db0deacaf1fefb38e55f802422b7828d47cfd
09dfedea4bce0f588a2478c1b8d4874453fc6131f09b6bdaa2f7455412c48e03
GET /upload/vod/20230109-1/e481641ed82df8d116f44aa0680b0f19.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 14 Jan 2023 10:40:37 GMT
Content-Type: image/jpeg
Content-Length: 231694
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 11:57:17 GMT
ETag: "63bc011d-3890e"
Accept-Ranges: bytes
2k.qfbj2.com/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
23.224.221.53404 Not Found 146 B URL HTTP/2 2k.qfbj2.com/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
IP 23.224.221.53:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://2k.qfbj2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
2k.qfbj2.com/template/meizhuama/images/video-play.png
23.224.221.53200 OK 1.6 kB URL HTTP/2 2k.qfbj2.com/template/meizhuama/images/video-play.png
IP 23.224.221.53:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/meizhuama/images/video-play.png HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/png
content-length: 1567
last-modified: Sun, 06 Mar 2022 14:17:50 GMT
etag: "6224c28e-61f"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/d5.gif
23.224.221.53200 OK 100 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/d5.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 025124b1ea32550544628c7205331a35
6015322cd2faae4cc93266267838878350ac5c70
b1f29051a416097599fa35479620adab7e3f3b5dac8d18c19147eff65955db21
GET /template/web/GG/d5.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 99494
last-modified: Wed, 16 Mar 2022 16:12:20 GMT
etag: "62320c64-184a6"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/k4.gif
23.224.221.53200 OK 114 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k4.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 114 kB (114030 bytes)
Hash 79cf722c45cb4e5b3e7da0cfff829c98
71558743109d39b3163e3e873111641615c6f80c
37336e1d469f511d19c69cd7e3576ef2665204c7304e0b8dd2ec051dd78309e3
GET /template/web/GG/k4.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 114030
last-modified: Fri, 27 May 2022 05:30:56 GMT
etag: "62906210-1bd6e"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
104.110.17.24200 OK 489 kB URL HTTP/2 dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 489 kB (488987 bytes)
Hash 6a7d54ecdc2d1cce357d304db217ccec
03a803d54b6a1dd16cba5d73bf4e732d8b7be263
7cd4479b97a015f11a04b2d7d94fbe78030a7e0e3de457bf72abdbf53235c7d8
GET /images/0105c12000ae3a0t3DD7A.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 488987
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=7084515
expires: Thu, 06 Apr 2023 10:35:53 GMT
date: Sat, 14 Jan 2023 10:40:38 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
2k.qfbj2.com/template/meizhuama/css/seyuav-ui.css
23.224.221.53200 OK 128 kB URL HTTP/2 2k.qfbj2.com/template/meizhuama/css/seyuav-ui.css
IP 23.224.221.53:0
Size 128 kB (127828 bytes)
Hash 4d3ffcab61cb310e2d93242e19cec398
fa869c9c554cc488d56ede1e192890936d503c14
3551eb08f2b60ef5ac27fdf493f3cc5bbd40c85d684f09b77445bfe1379fea86
GET /template/meizhuama/css/seyuav-ui.css HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: text/css
last-modified: Fri, 02 Dec 2022 14:32:33 GMT
vary: Accept-Encoding
etag: W/"638a0c81-8a77"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/xx2.js
23.224.221.53200 OK 74 kB URL HTTP/2 2k.qfbj2.com/template/web/xx2.js
IP 23.224.221.53:0
Hash f35c6be69fe012e3a3b74f1a81bf9396
5dda2aea15d5e47f4548e2d3a8d81358815c5098
ff708675b30109668a8a18d795b32f597d0370b04e82f9a1877e222f11f8d084
GET /template/web/xx2.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 17:53:38 GMT
vary: Accept-Encoding
etag: W/"63bef7a2-990"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/k2.gif
23.224.221.53200 OK 32 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 0dbd3863b60a1e8e0a507a6092e3acbd
81f0cfad3a7369aa95b1b507a5ce46149cd4e4fe
d3829461b69847e6df417e8eb4c4046ae45864fbb7d3646e7b1346a861bd893e
GET /template/web/GG/k2.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 32381
last-modified: Fri, 27 May 2022 05:30:54 GMT
etag: "6290620e-7e7d"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 1ad7d2b8fee8f946a97c1c4e884cdd99
5635f4dc2d3b9a1d5caf7675a2c79933d77c80d8
872eb9868dcf18b73c437bf9063996d09c2127bd75df285ad85664baf16a71f6
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 18 Jan 2023 09:33:20 GMT
ETag: "5635f4dc2d3b9a1d5caf7675a2c79933d77c80d8"
Last-Modified: Sat, 14 Jan 2023 09:33:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1992
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7895c13278991c02-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 1ad7d2b8fee8f946a97c1c4e884cdd99
5635f4dc2d3b9a1d5caf7675a2c79933d77c80d8
872eb9868dcf18b73c437bf9063996d09c2127bd75df285ad85664baf16a71f6
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 18 Jan 2023 09:33:20 GMT
ETag: "5635f4dc2d3b9a1d5caf7675a2c79933d77c80d8"
Last-Modified: Sat, 14 Jan 2023 09:33:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1992
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7895c13288a71c02-OSL
ttzytp3.com/upload/vod/20230109-1/a176c43f6301026dabe81571b71d4d61.jpg
23.224.136.188200 OK 166 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/a176c43f6301026dabe81571b71d4d61.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 166 kB (165578 bytes)
Hash 090b7ea459b484bd2a88847525b0eba6
f568bea344bb2d10954ee6f84effb54448157a5f
a7c65e2b0517696a22f131a4dec4a4340e0c437acce52d4e4308b7b124ccf47a
GET /upload/vod/20230109-1/a176c43f6301026dabe81571b71d4d61.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 14 Jan 2023 10:40:38 GMT
Content-Type: image/jpeg
Content-Length: 165578
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 09:09:49 GMT
ETag: "63bbd9dd-286ca"
Accept-Ranges: bytes
2k.qfbj2.com/template/web/GG/k6.gif
23.224.221.53200 OK 53 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k6.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 74d864001115d3b123c552156accfbef
11ae3aef174b8fab213faa40b1b985f77dada46f
9001f1548a09cf89715469dc8d009f7aebb1a459d261c73a2f35d252bf88b4c8
GET /template/web/GG/k6.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 53324
last-modified: Fri, 27 May 2022 05:30:58 GMT
etag: "62906212-d04c"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/k1.gif
23.224.221.53200 OK 167 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k1.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 167 kB (167104 bytes)
Hash 9387415ad469299bf6e3bb5c1bbc77e2
cc52974b6ed2239afbbd4088c675fceb0d75cd22
912ce0aceb7de66266542ec85454be033b0a285c975dd7fc8f0d43eecb8716ce
GET /template/web/GG/k1.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 167104
last-modified: Fri, 27 May 2022 05:30:54 GMT
etag: "6290620e-28cc0"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/
23.224.221.53200 OK 175 kB IP 23.224.221.53:0
Size 175 kB (175440 bytes)
Hash 061f9ca044c734791824a363c872801f
a2e5e9c074c8281731decfb4ab569ef3dbfcef95
48a0972ce9068234dee1380e95f3ea4fdfceb1b54eaa297cae060184c07fa595
GET / HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.58249.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/a06.gif
23.224.221.53200 OK 111 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/a06.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 108 x 108\012- data
Size 111 kB (110624 bytes)
Hash e3240f80fa3623e4bc4675c955beb241
fb5f06e85933d6e6a8e0f98e28c16b44844b3ae3
d595e4b9e1341db392c7d348474e94c200802c5e35290b7e4f9a4a4ad653bd1d
GET /template/web/GG/a06.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 110624
last-modified: Sat, 18 Jun 2022 04:10:23 GMT
etag: "62ad502f-1b020"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/k7.gif
23.224.221.53200 OK 104 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k7.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 71 x 71\012- data
Size 104 kB (104461 bytes)
Hash 9e38a9cebde88f45563c4aae36723d3a
126439ba503fc1757864c12e086fd0f1a165a4bc
93054ef4224e847d308892f23ca8d0bf210d5ba26d8c39502eb7016efd97501d
GET /template/web/GG/k7.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 104461
last-modified: Fri, 27 May 2022 05:30:59 GMT
etag: "62906213-1980d"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/11.gif
23.224.221.53200 OK 76 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/11.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 200 x 99\012- data
Hash b91a52dc89525aa53fa4cc9f51313fa5
04be88b70acd504b7bf5a9bb107b63da8c488639
91b59a9d450ebdc06502d1279ee2eef209a84a5d0434a46874a32c9bbc831ba9
GET /template/web/GG/11.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 76147
last-modified: Wed, 11 May 2022 08:23:40 GMT
etag: "627b728c-12973"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230109-1/fa13cdac6b680755b682c98c319e2030.jpg
23.224.136.188200 OK 160 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230109-1/fa13cdac6b680755b682c98c319e2030.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x535, components 3\012- data
Size 160 kB (160439 bytes)
Hash 5df1db47d2b7c2ad2b43eca84a1cba6e
7094adceae1c7d41124211128a4b99e865637756
c6697a9ff10ebb6b830452f6e14abebd0400147edd20c44eb85052069f152043
GET /upload/vod/20230109-1/fa13cdac6b680755b682c98c319e2030.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 14 Jan 2023 10:40:38 GMT
Content-Type: image/jpeg
Content-Length: 160439
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 09:09:49 GMT
ETag: "63bbd9dd-272b7"
Accept-Ranges: bytes
2k.qfbj2.com/template/web/GG/k20.gif
23.224.221.53200 OK 102 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k20.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 124 x 124\012- data
Size 102 kB (101861 bytes)
Hash da1fca07307a6c03cdcfb2d47313113a
f28a95877fad9e725a287466984d496ef7d53afb
9529e1f4226891780f02c558b7b75427b86eb8afa9e5667fd6e8527abf322209
GET /template/web/GG/k20.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 101861
last-modified: Sat, 04 Jun 2022 02:42:14 GMT
etag: "629ac686-18de5"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/a08.gif
23.224.221.53200 OK 80 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/a08.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 3b6a5179b4a06bb8c98cab3aeaa698ed
c798dc8b16e3feaf91392cfa1cf839b4556fc243
64d5d65c65f47564411cce16d70dcca2aa83d5ad212ac46d3d9d0ba4ab8aee96
GET /template/web/GG/a08.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 80545
last-modified: Sat, 18 Jun 2022 04:10:24 GMT
etag: "62ad5030-13aa1"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/dbxf.js
23.224.221.53200 OK 162 kB URL HTTP/2 2k.qfbj2.com/template/web/dbxf.js
IP 23.224.221.53:0
Size 162 kB (162242 bytes)
Hash f15fc983f6232812f687da9cc28386e6
403cbc7d60df7ef6917785d14d0e68ffa0ff280b
4801586b8a593a4dab5cd46122161a8d83e8c0b1e2eb0c3ef6c40e752336a852
GET /template/web/dbxf.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 17:25:27 GMT
vary: Accept-Encoding
etag: W/"63bef107-7ab"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/meizhuama/fonts/iconfont.woff
23.224.221.53200 OK 525 B URL HTTP/2 2k.qfbj2.com/template/meizhuama/fonts/iconfont.woff
IP 23.224.221.53:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/meizhuama/fonts/iconfont.woff HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://2k.qfbj2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: font/woff
content-length: 525
last-modified: Sun, 06 Mar 2022 14:12:36 GMT
etag: "6224c154-20d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 6686ab089a9612c49dd2bdc8d2ed1737
113a2d05a5c6ab56e6c120b75335d1dac5d3c608
3e2920e02a4691f0058a820ea9e6d6ac2594710da2f130bea80c186c7942aa10
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=867
Date: Sat, 14 Jan 2023 10:40:38 GMT
Connection: keep-alive
X-N: S
2k.qfbj2.com/template/web/GG/k15.gif
23.224.221.53200 OK 142 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k15.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 235 x 235\012- data
Size 142 kB (141895 bytes)
Hash 0642504c72f3cf9929cfb7544deaca87
16d7028c32010330f5c9f2f8e71a69c4c7bcc859
a102356e14a84a958f692e5e9c2c4d2aa9765bc4cbc3232f9108ec8b46d5b07b
GET /template/web/GG/k15.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 141895
last-modified: Sat, 28 May 2022 04:43:33 GMT
etag: "6291a875-22a47"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/a01.gif
23.224.221.53200 OK 156 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/a01.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 100 x 100\012- data
Size 156 kB (156311 bytes)
Hash c1cd6fbcc60e4242fb31eb894d7d9450
1b0a2ba85f38fa452a391250067e916ac7b61345
aca31490b0e0478395648fb5f6ce318b56a4a443c7a64e069c71cee6c0f0bb44
GET /template/web/GG/a01.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 156311
last-modified: Sat, 18 Jun 2022 04:10:19 GMT
etag: "62ad502b-26297"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5bf9f196f779d78618e3c0a5efe91364
29ccad6917ef6b1dd02899e1afb311402d92fded
08efd93b33ed546745ad9837bf4be1968143acfe1116a3bae4bc3e93506372d0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 14 Jan 2023 06:53:57 GMT
Expires: Sat, 21 Jan 2023 06:53:56 GMT
Etag: "29ccad6917ef6b1dd02899e1afb311402d92fded"
Cache-Control: max-age=590597,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7895c1327850b4ff-OSL
2k.qfbj2.com/template/web/dh2.js
23.224.221.53200 OK 256 kB URL HTTP/2 2k.qfbj2.com/template/web/dh2.js
IP 23.224.221.53:0
Size 256 kB (255459 bytes)
Hash f4f7c9e9b8b733de6a6f061fd2cbd206
ac99e58da5c22ab0f52ae35897369401accf3130
6184d365e9026b7655d420c32fc1142ae10bf5a48d6e9289d89b404ab75dda1a
GET /template/web/dh2.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
last-modified: Sat, 14 Jan 2023 09:46:16 GMT
vary: Accept-Encoding
etag: W/"63c279e8-36ea"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/xx1.js
23.224.221.53200 OK 223 kB URL HTTP/2 2k.qfbj2.com/template/web/xx1.js
IP 23.224.221.53:0
Size 223 kB (222755 bytes)
Hash 2bd2ce117e40a396488e9639c8761cea
a41f62b7f6b260cee5a1f727dbc094d1c6331d50
97427a074ffbc4b6537c448b74253c1dfd72dc6ff8ad5e5d5ebfb06782831705
GET /template/web/xx1.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 17:04:16 GMT
vary: Accept-Encoding
etag: W/"63c03d90-13b7"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 0c40f3f7d0f5daadb02bb314f7327957
d7f2d58790edfa4b7c4286df5b2543c263facf96
886227c60e66b70a1778f90e9215d3d2b4d2832d2d677121eca8ed28276caef2
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 14 Jan 2023 10:40:38 GMT
Last-Modified: Sat, 14 Jan 2023 09:40:56 GMT
Server: ECS (dcb/7F17)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fn4BwKo_f1XpGw0slzy0JNbOj6Hv6yOLRo4N7klb2LvBx5KYEhSFcg==
Age: 3582
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 51767ae0112eb76589eee618fb0c6f2c
0a394e356b11c629bc887342debf541a2f67e270
7437ca9db65ed64608b5758217833aef7305e2a2d32b23f423277a2fcc0cb5fa
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 14 Jan 2023 10:39:11 GMT
last-modified: Sat, 14 Jan 2023 05:47:54 GMT
expires: Sat, 21 Jan 2023 05:47:53 GMT
etag: "0a394e356b11c629bc887342debf541a2f67e270"
cache-control: max-age=600960,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb5
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7895bf0dfd385c2c-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1673692751
via: cache15.l2de2[195,195,304-0,M], cache26.l2de2[197,0], cache1.se1[0,0,200-0,H], cache2.se1[0,0], cache2.se1[2,0]
age: 87
x-cache: HIT TCP_MEM_HIT dirn:11:60928770
x-swift-savetime: Sat, 14 Jan 2023 10:39:11 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9616736928389747108e, 2ff62c9616736928389747108e
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 5bb0eaf27e92e86cc0c2a3ad624a8a9f
b74f9042212b98a448a6aee256099523bb0fee14
90010b4f6fbf4a489a24654925e988ccb95d1156a7bc49e4c3aa317d761a838b
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:38 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2023 15:23:54 GMT
Expires: Wed, 18 Jan 2023 15:23:53 GMT
Etag: "b74f9042212b98a448a6aee256099523bb0fee14"
Cache-Control: max-age=361994,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7895c1327977b517-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash c2063e46981d5e0827278eae29fabd0b
e171168280c89855c7735647129bf0331919b9c9
fb80b3765ee2078b5e890cd32a265e9a34012e3a505d0f6465c3cb17d178477d
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 18 Jan 2023 07:15:27 GMT
ETag: "e171168280c89855c7735647129bf0331919b9c9"
Last-Modified: Sat, 14 Jan 2023 07:15:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1098
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7895c133c9ce1c02-OSL
hm.baidu.com/hm.js?7a63494bcb7782c2d15cc8728f4c5059
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?7a63494bcb7782c2d15cc8728f4c5059
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash 5da0641ffaa5fa8abb492ad5bdb1eb80
c9a075caa4405bf81867b519a1b2fbce72331433
95752af95e9433f7381ec41c38c04ff2517d99940d907a185a17481c65a35d8b
GET /hm.js?7a63494bcb7782c2d15cc8728f4c5059 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Sat, 14 Jan 2023 10:40:38 GMT
Etag: d1630a47b1cbedca3d50c3cca944ace9
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=42D9CDD9509AC855; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
image.tnmvgr.cn/oms.1511122.com/1672811733462-960x60.gif
47.246.44.206200 OK 109 kB URL HTTP/1.1 image.tnmvgr.cn/oms.1511122.com/1672811733462-960x60.gif
IP 47.246.44.206:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 109 kB (109246 bytes)
Hash e573c37ce1ba8b57e8dfb8fcd43368c9
f5da3a1479bfd18c820893899b5b478df5d02d3c
d9f97dfc186d336e8a5da72bffc7b70378bf87f68de9af20d59a8b88ff271d53
GET /oms.1511122.com/1672811733462-960x60.gif HTTP/1.1
Host: image.tnmvgr.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/gif
Content-Length: 109246
Connection: keep-alive
Date: Sat, 14 Jan 2023 10:07:25 GMT
x-oss-request-id: 63C27EDD6D1B2938342C9CE6
Vary: Origin
x-oss-cdn-auth: success
Accept-Ranges: bytes
ETag: "E573C37CE1BA8B57E8DFB8FCD43368C9"
Last-Modified: Wed, 04 Jan 2023 05:55:33 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5454499210466108819
x-oss-storage-class: Standard
Content-MD5: 5XPDfOG6i1fo37j81DNoyQ==
x-oss-server-time: 4
Ali-Swift-Global-Savetime: 1673690845
Via: cache10.l2de2[0,0,304-0,H], cache1.l2de2[1,0], cache7.se1[0,0,200-0,H], cache5.se1[1,0]
Age: 1993
X-Cache: HIT TCP_MEM_HIT dirn:3:263004457
X-Swift-SaveTime: Sat, 14 Jan 2023 10:21:37 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9916736928389786771e
2k.qfbj2.com/template/web/GG/dp1.gif
23.224.221.53200 OK 141 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/dp1.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 141 kB (141174 bytes)
Hash 2846430b1663c942a9d2a92c559667cd
2b7d07a004fa13af572b8d5d6317594c1eee9eec
b1357936607e4478fa840a29b58e6714f0063f4a90e28571bd8c8be4e175d74e
GET /template/web/GG/dp1.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 141174
last-modified: Mon, 25 Apr 2022 12:29:49 GMT
etag: "6266943d-22776"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/5.gif
23.224.221.53200 OK 292 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/5.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 256 x 256\012- data
Size 292 kB (291780 bytes)
Hash c41af62e6356770c1f7df79bbb3e1db5
0f765c11424aaa51365ec92c18ff4f75a972da5a
0b8a47216bb974bf8ce36542085e3dfb1b5fcf476efd4da2b630c4a325580de4
GET /template/web/GG/5.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 291780
last-modified: Wed, 11 May 2022 08:12:54 GMT
etag: "627b7006-473c4"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/y4.gif
23.224.221.53200 OK 258 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/y4.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 258 kB (257689 bytes)
Hash bbdd0bdf651352117671a182ae649b36
0913dc12c9378d9d5bc6aeefdba042fad4f95e8a
c808633ff4d4c025ae4151460a6ab81b58837bc03584b7037b4ef2034cc8676c
GET /template/web/GG/y4.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 257689
last-modified: Tue, 10 May 2022 09:20:09 GMT
etag: "627a2e49-3ee99"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash c2063e46981d5e0827278eae29fabd0b
e171168280c89855c7735647129bf0331919b9c9
fb80b3765ee2078b5e890cd32a265e9a34012e3a505d0f6465c3cb17d178477d
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 18 Jan 2023 07:15:27 GMT
ETag: "e171168280c89855c7735647129bf0331919b9c9"
Last-Modified: Sat, 14 Jan 2023 07:15:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1098
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7895c13409e81c02-OSL
2k.qfbj2.com/template/meizhuama/css/zui.css
23.224.221.53200 OK 327 kB URL HTTP/2 2k.qfbj2.com/template/meizhuama/css/zui.css
IP 23.224.221.53:0
Size 327 kB (326890 bytes)
Hash 8d03b49aa8a19ef97b06838ad44395cf
739437e8c57d3d4767a3c276d59d899f84f34882
3dc3e7e6a29b54713af2d0342a6cfdb88e4a5349a90f0af559c11f11fe1113a3
GET /template/meizhuama/css/zui.css HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 10:25:31 GMT
vary: Accept-Encoding
etag: W/"637ca39b-1b92c"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/dp4.gif
23.224.221.53200 OK 747 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/dp4.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 747 kB (746571 bytes)
Hash 84e8edecf6c28c8218e0a7b1ad9ea414
3897e6bf1a2292c59b45e44d2b9c38e45f8f9a6f
356abb92d87698d59a4af16304d13e760b032739634c495fba68568e82d5c1ce
GET /template/web/GG/dp4.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 746571
last-modified: Mon, 25 Apr 2022 12:29:52 GMT
etag: "62669440-b644b"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ccd79c1771c5db65d14db77ddbac6c7
74e3cd1ab2ff547953e138f258466adbd589ea64
a85a052f02504598d3cd20958d75679f1ce1930f226b1b174602e2cc030c002e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A85A052F02504598D3CD20958D75679F1CE1930F226B1B174602E2CC030C002E"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6738
Expires: Sat, 14 Jan 2023 12:32:57 GMT
Date: Sat, 14 Jan 2023 10:40:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ccd79c1771c5db65d14db77ddbac6c7
74e3cd1ab2ff547953e138f258466adbd589ea64
a85a052f02504598d3cd20958d75679f1ce1930f226b1b174602e2cc030c002e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A85A052F02504598D3CD20958D75679F1CE1930F226B1B174602E2CC030C002E"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6738
Expires: Sat, 14 Jan 2023 12:32:57 GMT
Date: Sat, 14 Jan 2023 10:40:39 GMT
Connection: keep-alive
2k.qfbj2.com/template/web/app.js
23.224.221.53200 OK 358 kB URL HTTP/2 2k.qfbj2.com/template/web/app.js
IP 23.224.221.53:0
Size 358 kB (357628 bytes)
Hash 1aa3962b2959c5df49dd78e41dba4760
7f7820bd27c3204fe607b58f9e9911268a8ec4c4
e62917b33f087027db207dfe6b509248f634e0b62d0e694bce95f44a1cc76ccd
GET /template/web/app.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
last-modified: Sat, 14 Jan 2023 09:38:11 GMT
vary: Accept-Encoding
etag: W/"63c27803-324c"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/4.gif
23.224.221.53200 OK 279 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/4.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 200 x 113\012- data
Size 279 kB (279026 bytes)
Hash 42809e0a73309f01de7651ab3b712cb4
19a1658a10d4e8ca6831a824d4bccbb35dcbf113
da7e1e1332d196cde6cc3a7b9c758abb4493e9708799e7836551823dd399b13d
GET /template/web/GG/4.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 279026
last-modified: Wed, 11 May 2022 08:12:44 GMT
etag: "627b6ffc-441f2"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/k19.gif
23.224.221.53200 OK 288 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/k19.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 140 x 140\012- data
Size 288 kB (287575 bytes)
Hash e758cbb971464ca5059e4cdbc1a7601f
615032c5f3516cd6d685bde3c1214a5d05833cd1
df4ecca258502e6c66deb343d9fc8d0bf05e46927194a2e1bc6c652fb80ba71d
GET /template/web/GG/k19.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 287575
last-modified: Sat, 04 Jun 2022 02:42:13 GMT
etag: "629ac685-46357"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/d1.gif
23.224.221.53200 OK 320 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/d1.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 448 x 359\012- data
Size 320 kB (320301 bytes)
Hash 7d3239796daffe24e71eb0e44146f02b
533c9fe388fdb5cc5f807a7358dcd4d1b14bf817
7ae555d64a9c2cbf44806af21930c753b5dc3649be922206fc10ea83efa19523
GET /template/web/GG/d1.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 320301
last-modified: Wed, 11 May 2022 08:33:50 GMT
etag: "627b74ee-4e32d"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ccd79c1771c5db65d14db77ddbac6c7
74e3cd1ab2ff547953e138f258466adbd589ea64
a85a052f02504598d3cd20958d75679f1ce1930f226b1b174602e2cc030c002e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A85A052F02504598D3CD20958D75679F1CE1930F226B1B174602E2CC030C002E"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6738
Expires: Sat, 14 Jan 2023 12:32:57 GMT
Date: Sat, 14 Jan 2023 10:40:39 GMT
Connection: keep-alive
2k.qfbj2.com/template/web/GG/dp2.gif
23.224.221.53200 OK 767 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/dp2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 767 kB (766938 bytes)
Hash 06f924cdbba4e6c4765765139a404682
7eaadc65f26a4fe45240e14f96c29aa53e721775
514dc1d00a06bed8dbb2a891aa73b6ff70cd32772f582df1c2c959c856d45a5d
GET /template/web/GG/dp2.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 766938
last-modified: Mon, 25 Apr 2022 12:29:50 GMT
etag: "6266943e-bb3da"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?959981931bea09b9a10c9c552a50e761
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?959981931bea09b9a10c9c552a50e761
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash f83615b0c4eac03a63fb72b1d15bed8f
3b6a869040878eca5c4d41c6c02ccf040eb63d48
40f4bfd4f998430466518635f7bcfd957457c3095ad11008c209608b0a85dc47
GET /hm.js?959981931bea09b9a10c9c552a50e761 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 14 Jan 2023 10:40:38 GMT
Etag: b930e0a5234efc164f264751dd621044
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B24F82D1AE93630A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash deb17f6f309c297d2c28043b9d49a45f
f16c6d533f2f0c1516f6eae27f404e812ce3211f
8e870a58b9d0b406fe4a70fc52682f5f2dd4c0cff5a4b7e705e30f4113b80dbd
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 18 Jan 2023 09:58:25 GMT
ETag: "f16c6d533f2f0c1516f6eae27f404e812ce3211f"
Last-Modified: Sat, 14 Jan 2023 09:58:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 330
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7895c1350abb1c02-OSL
2k.qfbj2.com/template/meizhuama/js/jquery.min.js
23.224.221.53200 OK 868 kB URL HTTP/2 2k.qfbj2.com/template/meizhuama/js/jquery.min.js
IP 23.224.221.53:0
Size 868 kB (868350 bytes)
Hash ade21ca07815ebf4f9c3b4cb16e8f7ec
f30a1fc01ce675be1667053c6e3f0fa8232fae32
ad9957bb07e433c5b3427a68e48f6454a568c63414c75e1421ea26cbb78d1485
GET /template/meizhuama/js/jquery.min.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
last-modified: Fri, 02 Dec 2022 14:33:00 GMT
vary: Accept-Encoding
etag: W/"638a0c9c-1538f"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
13.227.254.102200 OK 396 kB URL HTTP/2 kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
IP 13.227.254.102:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 396 kB (395600 bytes)
Hash 5155d4f34bc2f7e77b9fe8e854d9e96f
408ed373dd26d934ee70f30b0e47a9dc8049983f
db9f393331e2d56fe7da37b7822590b82524e2dde508848299877daeae1df3be
GET /f7fd72d8ade7e262c4b4f656dd460724.gif HTTP/1.1
Host: kzehh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 395600
date: Tue, 20 Dec 2022 23:20:07 GMT
last-modified: Sat, 17 Dec 2022 11:55:02 GMT
etag: "5155d4f34bc2f7e77b9fe8e854d9e96f"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 af3aeac549bb09cd481e4e32ea3fcf16.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 1Ok1wf7tgslt9JSR6f46RGIa5OTPEW8wl_7NmhMNKKxY-3ZYh-uHMQ==
age: 2114431
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/01.gif
23.224.221.53200 OK 562 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/01.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 380 x 570\012- data
Size 562 kB (561983 bytes)
Hash 311afec7a9e7d370b46adf41a45905e7
5460c5036e11ecf12f30d921e4dc811ad56f8b30
39da990b80811f9e29f4b4c1b9a0e7fc4f4b60a42c1f5d949b1ae1a9bbe80eb9
GET /template/web/GG/01.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 561983
last-modified: Wed, 11 May 2022 08:12:48 GMT
etag: "627b7000-8933f"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/meizhuama/fonts/iconfont.ttf
23.224.221.53200 OK 1.2 kB URL HTTP/2 2k.qfbj2.com/template/meizhuama/fonts/iconfont.ttf
IP 23.224.221.53:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
GET /template/meizhuama/fonts/iconfont.ttf HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:39 GMT
content-type: application/octet-stream
content-length: 1163
last-modified: Sun, 06 Mar 2022 14:17:48 GMT
etag: "6224c28c-48b"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/a13.gif
23.224.221.53200 OK 674 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/a13.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 393 x 262\012- data
Size 674 kB (673882 bytes)
Hash 8f0aa6d32c03c602b0480194b2efdf4a
a2dfc596103bf743c9cf389e2b7a481a8bbedc96
2a54a439ea081c5418030b63dd4e0f247ff7089b1d7ba67a0fe6e2abcf466658
GET /template/web/GG/a13.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 673882
last-modified: Mon, 20 Jun 2022 04:59:33 GMT
etag: "62affeb5-a485a"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/2.gif
23.224.221.53200 OK 620 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/2.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 300 x 200\012- data
Size 620 kB (620010 bytes)
Hash 8171edd386b6abd105c0ff0e740330d9
7914e2b95f29d65b0ffb8e6daf7f54dc14da0ae0
5044971fcc4e0c4837e7e586b858fba8257feeed88812253aa9ee2396915c40a
GET /template/web/GG/2.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 620010
last-modified: Wed, 11 May 2022 08:12:37 GMT
etag: "627b6ff5-975ea"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/GG/ppll.gif
23.224.221.53200 OK 965 kB URL HTTP/2 2k.qfbj2.com/template/web/GG/ppll.gif
IP 23.224.221.53:0
File type GIF image data, version 89a, 480 x 270\012- data
Size 965 kB (965446 bytes)
Hash 5f87eaa078aeb58fbe6a932225fe00e2
d155153be18e5b37704fa2b046751373a23bd708
55f2f4507e307aa3a6f26e06744510894d6a35a5289600b60120ddfca84e1cf9
GET /template/web/GG/ppll.gif HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 965446
last-modified: Thu, 01 Dec 2022 04:59:54 GMT
etag: "638834ca-ebb46"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=905463173&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59993&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=905463173&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59993&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=905463173&si=7a63494bcb7782c2d15cc8728f4c5059&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59993&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 14 Jan 2023 10:40:39 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=52A159DED3436492; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
kvevv.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
13.227.254.83200 OK 288 kB URL HTTP/1.1 kvevv.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
IP 13.227.254.83:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 288 kB (288397 bytes)
Hash e17bb688cfdae836ea866c47e92a022a
d748bb7b13696141ba768280a21d3dac482e3a0c
cb9affdc029bd6deb908ab9786fad62113c4ba28d2e9a8926cbed0c5e2c2aa6a
GET /fee6dc0783e7085f6b3452a1155d4b4a.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 288397
Connection: keep-alive
Date: Sat, 24 Dec 2022 08:26:22 GMT
Last-Modified: Sat, 24 Dec 2022 08:23:21 GMT
ETag: "e17bb688cfdae836ea866c47e92a022a"
Cache-Control: public, max-age=31536000
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 50f11b94d86cc6d83642be5c3577d6fc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SIN52-C3
X-Amz-Cf-Id: eHAJRtmzyZ1RJi0Sx89YOyVyr7hKARbWhT8yXV3xKrL1YzblPX5Ung==
Age: 1822457
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 2d79548239ba59a6a3427e5334e425c1
0c92a6924d0df7631721ee2ad6cfe9188e84fcd1
0de7c717512a3d770da2d002b01d7169f838c1df8476550e4c1c8fbe6a81f5d2
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 18 Jan 2023 08:04:48 GMT
ETag: "0c92a6924d0df7631721ee2ad6cfe9188e84fcd1"
Last-Modified: Sat, 14 Jan 2023 08:04:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 965
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7895c136ea17b524-OSL
kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
13.227.254.26200 OK 919 kB URL HTTP/2 kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP 13.227.254.26:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 919 kB (918679 bytes)
Hash 956582dd3aa22ca9b19bdd1d5e091e24
c2d80e05f59981f6ed58a8231f502bd990894d6b
88e686882e64a0e199c79bd83b7102885b67242b5d0b49a1f37674c0bb3ddd8e
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kzerr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 918679
last-modified: Mon, 19 Dec 2022 07:54:21 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 13 Jan 2023 12:17:05 GMT
etag: "956582dd3aa22ca9b19bdd1d5e091e24"
x-cache: Hit from cloudfront
via: 1.1 9c281f6d3073335c1b2f806823d50e2a.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: -mbhS8H5OEKuZ9IYkHoodcqCSxtJjo67xDwedcQwZs6jt_xRsrGaTQ==
age: 80614
X-Firefox-Spdy: h2
img.1151555.com/images/63a1b20f7c2b41a439f0ec4c.gif
38.54.37.233302 Found 1.6 kB URL HTTP/2 img.1151555.com/images/63a1b20f7c2b41a439f0ec4c.gif
IP 38.54.37.233:0
Hash e00686201e8e6d4979670f4416622ad4
56b7f326fa3798b9d6f3d6c61eca180ff2ae6150
7e3ef45bc787b047921a88ca6dddf2dda9e65c7bccb6c3e50bb188853cc81ecd
GET /images/63a1b20f7c2b41a439f0ec4c.gif HTTP/1.1
Host: img.1151555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
X-Firefox-Spdy: h2
rootnetworksdv.ocsp-certum.com/
23.36.79.17200 OK 1.5 kB URL HTTP/1.1 rootnetworksdv.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 8645c5a080f5419d2eb3e8969b1ff23c
2cf69d4cb42b8941104eaffd6bd9d2ce07f264e6
8195dd3bffd85dda5ac405c367446e68d3e63975751dcbaa3dbbeb8fb97408e5
POST / HTTP/1.1
Host: rootnetworksdv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1490
X-Cached: UPDATING
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=873
Date: Sat, 14 Jan 2023 10:40:39 GMT
Connection: keep-alive
rootnetworksdv.ocsp-certum.com/
23.36.79.17200 OK 1.5 kB URL HTTP/1.1 rootnetworksdv.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 8645c5a080f5419d2eb3e8969b1ff23c
2cf69d4cb42b8941104eaffd6bd9d2ce07f264e6
8195dd3bffd85dda5ac405c367446e68d3e63975751dcbaa3dbbeb8fb97408e5
POST / HTTP/1.1
Host: rootnetworksdv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1490
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=851
Date: Sat, 14 Jan 2023 10:40:39 GMT
Connection: keep-alive
X-N: S
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 52227f0533c0f6934c65cacb8e5eff65
af32b97b0505aebe272de1d7c2efa5cbed90c0ae
0abf873b1ae53b809f804fcb7617f855e3f85d2e1e9d90663256c6d5f0466caa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0ABF873B1AE53B809F804FCB7617F855E3F85D2E1E9D90663256C6D5F0466CAA"
Last-Modified: Fri, 13 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3346
Expires: Sat, 14 Jan 2023 11:36:25 GMT
Date: Sat, 14 Jan 2023 10:40:39 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e2196ca4e764ebbd0e6c41794071c9df
ca6b97e0f3c10d8fa6a7328d7a264bd3685d25d9
d1de5753632c74fcbd7d85801951b3d7ab1b2950bdd40f65d20f9ec71d14b008
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 06:26:17 GMT
Expires: Fri, 20 Jan 2023 06:26:16 GMT
Etag: "ca6b97e0f3c10d8fa6a7328d7a264bd3685d25d9"
Cache-Control: max-age=502536,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7895c136ad10b4ff-OSL
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=997981718&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59993&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=997981718&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59993&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=997981718&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59993&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 14 Jan 2023 10:40:39 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=DF62E1C6686EF09B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash c74a5d1f998dfb590dc2abe7fb5c21a9
cebba59e5636c52c83e93a839beed63bfc44724b
057a4f1699dd1c26df3b11ff4933bdd4e579d93f9ff7574ff16c17c7da1493a1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2023 11:53:10 GMT
Expires: Wed, 18 Jan 2023 11:53:09 GMT
Etag: "cebba59e5636c52c83e93a839beed63bfc44724b"
Cache-Control: max-age=349349,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7895c136ea12b524-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1c1ba9b5475be523c3fa746020414654
5fd0534a644f7557d8ed44ca2149f657854e4e77
1015f026b92f175360995f486268522e0357842e5ba65df2e569d80ebbf1aaaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1015F026B92F175360995F486268522E0357842E5BA65DF2E569D80EBBF1AAAF"
Last-Modified: Thu, 12 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14584
Expires: Sat, 14 Jan 2023 14:43:43 GMT
Date: Sat, 14 Jan 2023 10:40:39 GMT
Connection: keep-alive
8499683.com/8499/zzxx/960x60.gif
198.16.51.55200 OK 291 kB URL HTTP/2 8499683.com/8499/zzxx/960x60.gif
IP 198.16.51.55:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 291 kB (290572 bytes)
Hash 57aeaeed8e55b2a1e23b348d9d73f9d5
381bc182c18210ba33ebe13cbf8f20f297d33c16
e10903ca99193ba8ffd6c5f74753461cf070e75026e73fda3c040496f8dcfdb6
GET /8499/zzxx/960x60.gif HTTP/1.1
Host: 8499683.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:39 GMT
content-type: image/gif
content-length: 290572
last-modified: Sat, 24 Dec 2022 13:23:32 GMT
etag: "46f0c-5f092cf097c3f"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?86ea3af34e71a9d5eae3e3255c8ace53
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?86ea3af34e71a9d5eae3e3255c8ace53
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash de76f692b29a250eb936b9c3c0564544
a251c75ade1268f5353e60d806e7fc28aaf624c2
7761cfe8824dfbb156d265cb6d14ef3d4aa290c7d283d6b494ce9bb03f51438e
GET /hm.js?86ea3af34e71a9d5eae3e3255c8ace53 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 14 Jan 2023 10:40:39 GMT
Etag: a3bfbaa52b43574a7ec3996fdc8f469a
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=514326557404DB3E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
kvemm.com/ec9fcd758df74f805f29f72e8545d13b.gif
13.227.254.28200 OK 902 kB URL HTTP/2 kvemm.com/ec9fcd758df74f805f29f72e8545d13b.gif
IP 13.227.254.28:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 902 kB (902313 bytes)
Hash 8b4a95ea7cfbb7fb4d2b18efca5145f3
d2966ecbeb7369620cce5dbcd15d0fe591d79648
dd5ff25f4d6931bd3d2ef86c1a8901853ee2503fd2d6edb264a61abb37c2b002
GET /ec9fcd758df74f805f29f72e8545d13b.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 902313
last-modified: Thu, 15 Dec 2022 02:17:25 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 14 Jan 2023 05:01:50 GMT
etag: "8b4a95ea7cfbb7fb4d2b18efca5145f3"
x-cache: Hit from cloudfront
via: 1.1 2ba2ffa46f6a4bf7dd5bd07c9a0879ce.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: um4u_ZPSyVhWOYhFMURrK8E63cYEbV9kei0Vr5s-20zNYXQd0YvceA==
age: 20330
X-Firefox-Spdy: h2
vip9500.com/vip9500tp/9500.gif
23.225.41.226200 OK 447 kB URL HTTP/2 vip9500.com/vip9500tp/9500.gif
IP 23.225.41.226:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 447 kB (446990 bytes)
Hash d4c3f6ea538ca2743623d74354981a80
f66918d2bebcc84cfba8935e28824d66696afd35
0e66cff2bad2fee1428d731253ee9c2c93ab731089489300f153dadbb2c62c17
GET /vip9500tp/9500.gif HTTP/1.1
Host: vip9500.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:26 GMT
content-type: image/gif
content-length: 446990
last-modified: Thu, 06 Oct 2022 07:09:42 GMT
etag: "633e7f36-6d20e"
expires: Mon, 13 Feb 2023 10:40:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 29444b053d9527a1278f7f738ae1e8da
b9282618531e0b2ff1ba407cf0ce47fbf84cc532
cad677fed744d3ec2cc76312f105f9faafd56a8d272e26bb68cbe87f16008f49
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 17:33:17 GMT
Expires: Fri, 20 Jan 2023 17:33:16 GMT
Etag: "b9282618531e0b2ff1ba407cf0ce47fbf84cc532"
Cache-Control: max-age=542556,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7895c1388c00b524-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 0ce3ec1d119ba3dc0dbdd1fbe612dcd6
366bb95abdd0595d694e9311580902371ed55c05
39f10927a58d21b7d8e12dae6d635952b96b37b9d7dd13b3cb033c512bd1a829
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 15:05:07 GMT
Expires: Fri, 20 Jan 2023 15:05:06 GMT
Etag: "366bb95abdd0595d694e9311580902371ed55c05"
Cache-Control: max-age=533666,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7895c1396fd9b4ee-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 7e481b1cd89664a3a7d65f16945befe1
5e2e1721ce0f304eeb97abff086b5d37d90de7cb
503b5c521b0ecf0b315c2764e6bfdc0b073a0d5c0b6b34b846958aeabc6fc205
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 01:27:04 GMT
Expires: Fri, 20 Jan 2023 01:27:03 GMT
Etag: "5e2e1721ce0f304eeb97abff086b5d37d90de7cb"
Cache-Control: max-age=484583,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7895c138afa0b4ff-OSL
baidu6image6sina38.com/pics/960x80.gif
202.79.168.156200 OK 222 kB URL HTTP/2 baidu6image6sina38.com/pics/960x80.gif
IP 202.79.168.156:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 960 x 80\012- data
Size 222 kB (221807 bytes)
Hash 693b4b9b4cbf1a133e751e58a330445a
b9368ddc159d58a2072a4b7a7dc29fda2d95dd49
d3163679ee10f0a403dd7b6db7d067a9c85ab774b55d84faa02e0fd7fe4fb610
GET /pics/960x80.gif HTTP/1.1
Host: baidu6image6sina38.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 221807
last-modified: Thu, 12 Jan 2023 04:41:40 GMT
etag: "63bf8f84-3626f"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ia.51.la/go1?id=21273067&rt=1673692822176&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1673692822176&tt=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252F2k.qfbj2.com%252F&pu=http%253A%252F%252Fwww.58249.net%252F
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=21273067&rt=1673692822176&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1673692822176&tt=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252F2k.qfbj2.com%252F&pu=http%253A%252F%252Fwww.58249.net%252F
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21273067&rt=1673692822176&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&ing=1&ekc=&sid=1673692822176&tt=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&kw=%25E5%25A4%25A7%25E6%25B5%25B7%25E8%25B5%2584%25E6%25BA%2590%25E5%25BD%25B1%25E8%25A7%2586&cu=https%253A%252F%252F2k.qfbj2.com%252F&pu=http%253A%252F%252Fwww.58249.net%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: CloudWAF
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=467ae5f5040779e244a; path=/
HWWAFSESTIME=1673692838145; path=/
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 8ebac079be9e8dfe670cd7dcee1e0ee3
744e46848e358430e7808e5066fd0e7ef0d27718
7eb072e4e8fd32dee23cbd34f5c092ab0d77d1f25c368fa843c5b21cc631be18
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5992
Cache-Control: max-age=132853
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 10:40:40 GMT
Etag: "63c1d335-2d7"
Expires: Sun, 15 Jan 2023 23:34:53 GMT
Last-Modified: Fri, 13 Jan 2023 21:55:01 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 727
hm.baidu.com/hm.js?23623cf5f4a21b97670aa94e566ea294
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?23623cf5f4a21b97670aa94e566ea294
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 9ab321ee76a6987554fd777c24d55df0
7c79355be7e1979201eaf1de6813e027e66e1f25
651cc3a332a7fdacd5eff180a1b20a89aff7778dbf8bc217032b1588fba1db08
GET /hm.js?23623cf5f4a21b97670aa94e566ea294 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 14 Jan 2023 10:40:39 GMT
Etag: 7760ae813e6b7b3aa82d9e1dcc5540e8
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D8C31CE3C484F372; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
47.246.44.224200 OK 343 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 343 kB (343002 bytes)
Hash ce862703bd3a6fd9e7acc3c32453fe84
c27754e24547e935314ba986477cd326628af7e4
eb9f779660b2713488854f27a211239724bb29b842e939424ec882b51520350b
GET /obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 343002
date: Sat, 17 Dec 2022 10:28:23 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sat, 17 Dec 2022 10:00:43 GMT
nw-session-id: 2022121718004301013113605215982497p5k6801dy
nw-session-trace: 2022-12-17T18:00:43.827293149+08:00 42
x-bdcdn-cache-status: TCP_HIT
x-length: 343002
x-powered-by: ImageX
x-response-date: Sat, 17 Dec 2022 18:00:43 GMT
x-tt-logid: 2022121718004301013113605215982497
via: n128-134-083, cache14.l2de2[0,0,206-0,H], cache5.l2de2[2,0], cache5.l2de2[3,0], cache3.se1[0,0,200-0,H], cache2.se1[1,0]
x-request-ip: fdbd:dc03:15:482::74
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 010ec35d8338a3c1341674e3d2464ee09a429c9c5af2fc930930b9ec60625c05f3b71a3d79f906afd2479681df4ec15d8b01af344e24d3e5df5584a5196f7e0400dfccab4c7d44dab881b7b096fd4eb23fa223bfc14da29e326a459a9a6aa15d8b
x-response-lb: image
ali-swift-global-savetime: 1671272903
age: 2419937
x-cache: HIT TCP_MEM_HIT dirn:9:164853675
x-swift-savetime: Sat, 17 Dec 2022 11:36:55 GMT
x-swift-cachetime: 31531888
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9616736928401208061e
X-Firefox-Spdy: h2
kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
172.83.155.45200 OK 99 kB URL HTTP/2 kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Hash 5057019842032cd72cc53fc9db8984cb
74c23172056bd1ad95120490f8b9a72c78d0bbfc
0b2c55edc45ae48aa65a39d3af468422e36476fab2a6c30e37d40bc9df0cba65
GET /241ffcf0a5007067dad148a90c317e01.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:39 GMT
content-type: image/gif
content-length: 99372
last-modified: Tue, 10 Jan 2023 09:17:01 GMT
etag: "63bd2d0d-1842c"
expires: Sat, 14 Jan 2023 22:40:39 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 16516
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=805qOdGly9PZv2yJnww7cBphigafsRz5TjFYMEKAITUGNEPDjMmpl9%2FbS%2FGY2NpxTW6w%2BT2CYYzi6PzGTkBOD%2FkWQjWFwsOEd2Gn2JOQJj1FQRX9HIcDAQ7iikix"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7875e7c30b80841f-YVR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1973969484&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59994&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1973969484&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59994&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1973969484&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59994&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 14 Jan 2023 10:40:40 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=EAFCC0A72705F45E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
kzeoo.com/0e243abb7057b68d7362544cbbe032ba.gif
172.83.155.45200 OK 270 kB URL HTTP/2 kzeoo.com/0e243abb7057b68d7362544cbbe032ba.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Size 270 kB (270145 bytes)
Hash 2e0432b5ead77702ac433d71c5caeeb4
91f7f7320673eb770bd2b82c82d898fa6ed5de97
63ccf288b83f2c2d1995165c5f15cf3980c947cff737800d8119cdad406d3c7a
GET /0e243abb7057b68d7362544cbbe032ba.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:39 GMT
content-type: image/gif
content-length: 270145
last-modified: Wed, 26 Oct 2022 13:37:18 GMT
etag: "6359380e-41f41"
expires: Sat, 14 Jan 2023 22:40:39 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 484426
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hX5Ar9%2FK0fcxx9TfXtPiqStyxeq73j0fAX2UgwSCDfcT50s5Ttt7Ear4wk3SNqP2UW59IkiU1UuNe9vSWBxRsdPBc6qQxnmFjhoPuVVVl9R0UfqxmfbVPSmDeJvh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7879ecc4fbb4c549-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/zyxf.js
23.224.221.53200 OK 57 kB URL HTTP/2 2k.qfbj2.com/template/web/zyxf.js
IP 23.224.221.53:0
Hash a486e405954c01d0acaf3876e8b8f62f
e090708fd721f7edae17841978c9224c7210ad16
31fc8473aa28d3e2b8930031b12fbc4769bc3e701eed800e86d57332a50b027b
GET /template/web/zyxf.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
last-modified: Sun, 08 Jan 2023 23:43:17 GMT
vary: Accept-Encoding
etag: W/"63bb5515-1b0c"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
kzeoo.com/47e02a59b814807a640ae615b82c06ac.gif
172.83.155.45200 OK 214 kB URL HTTP/2 kzeoo.com/47e02a59b814807a640ae615b82c06ac.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Size 214 kB (213551 bytes)
Hash 38a577005d8da64f084a3f6624619e55
d271b81103a0c053eaaf5ba802158a2d7ea8e3c1
23d0f1ac9f00f07722d9b6496672e1e08e1e6657d5b6b36542f14d87f15eaa43
GET /47e02a59b814807a640ae615b82c06ac.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:39 GMT
content-type: image/gif
content-length: 213551
last-modified: Wed, 14 Sep 2022 11:24:46 GMT
etag: "6321b9fe-3422f"
expires: Sat, 14 Jan 2023 22:40:39 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 488075
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kFlknUC2JT1kASh9GfSPNJti166kBLiT7O9HrLeuitTpn9VT3e9xWjqzpLdX%2BF2BqJ7i5fKgtHMWVRaOlkv2vxKFA9ITe%2BynFf5cly75KpiXRtollUOP6vEa7atf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7885dcc6ced8281f-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
gtm-cn-j6730u6sd0b.gtm-a3b8.com/ky960x60.gif
124.89.67.111200 OK 400 kB URL HTTP/1.1 gtm-cn-j6730u6sd0b.gtm-a3b8.com/ky960x60.gif
IP 124.89.67.111:0
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 960 x 60\012- data
Size 400 kB (399450 bytes)
Hash 4e1e4b8f46ac2e67539d5881785ba29a
7d3c9c963087ffc8c196cb7e67629342027a8a45
4c9cc489a2e26500ace73c53ce05bdfa52876a8700b7e9e73c1554187acefb0d
GET /ky960x60.gif HTTP/1.1
Host: gtm-cn-j6730u6sd0b.gtm-a3b8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Thu, 29 Dec 2022 12:09:17 GMT
Etag: "4e1e4b8f46ac2e67539d5881785ba29a"
Content-Type: image/gif
Date: Tue, 10 Jan 2023 12:01:34 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 10945751995987991778
x-cos-request-id: NjNiZDUzOWVfNGE4Y2VlMDlfMmY5ZjVfMmEzYjE5Zg==
Content-Length: 399450
Accept-Ranges: bytes
X-NWS-LOG-UUID: 16261216425742884027
Connection: keep-alive
X-Cache-Lookup: Cache Hit
cdn-jinjutupian-cdn.com/jj/640-100.gif
172.247.80.60200 OK 71 kB URL HTTP/2 cdn-jinjutupian-cdn.com/jj/640-100.gif
IP 172.247.80.60:0
File type GIF image data, version 89a, 640 x 100\012- data
Hash cdc759f1218c304fd70a17ee805fdd2b
0a4c54b190aebcd416d0785abb0643d51bf78bd9
d4b0f1eef2faf4601d707cec784124302ad79833c2b422c204739d8c30de0ab0
GET /jj/640-100.gif HTTP/1.1
Host: cdn-jinjutupian-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:40 GMT
content-type: image/gif
content-length: 70615
last-modified: Wed, 28 Dec 2022 16:09:36 GMT
etag: "63ac6a40-113d7"
expires: Sun, 12 Feb 2023 15:44:36 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/zxbf.js
23.224.221.53200 OK 371 kB URL HTTP/2 2k.qfbj2.com/template/web/zxbf.js
IP 23.224.221.53:0
Size 371 kB (370641 bytes)
Hash c41abbe03e4d00d8b3494293ca6f3c82
45efa395d8d80dbb7ff75585dce5749df7fc543b
0bf01f1393980de25d3eb496a886a171804e120b841ced71cb198d0700c97c5e
GET /template/web/zxbf.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
last-modified: Sat, 14 Jan 2023 09:41:17 GMT
vary: Accept-Encoding
etag: W/"63c278bd-14c3"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=471769616&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59994&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=471769616&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59994&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=471769616&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.58249.net%2F&v=1.3.0&lv=1&sn=59994&r=0&ww=1268&u=https%3A%2F%2F2k.qfbj2.com%2F&tt=%E5%A4%A7%E6%B5%B7%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 14 Jan 2023 10:40:40 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=6A4F08890E7896E3; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7PJmjpJPGJOiavFpnSj4iclWL0ZIe8L7lRTY2TqJMia0N38/0
43.154.254.32200 OK 206 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7PJmjpJPGJOiavFpnSj4iclWL0ZIe8L7lRTY2TqJMia0N38/0
IP 43.154.254.32:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 206 kB (205622 bytes)
Hash 8a22a6888c325aa3acf83e7cedfe35e7
37da1ea976724d35c1c32ae18d7924192184ba32
2e90b20d4c2067ff68444790955d65d2745365cf025c486c8c2b685696faeeaa
GET /qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7PJmjpJPGJOiavFpnSj4iclWL0ZIe8L7lRTY2TqJMia0N38/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sat, 14 Jan 2023 10:40:39 GMT
content-type: image/gif
content-length: 205622
vary: Accept,Origin
last-modified: Sat, 31 Dec 2022 07:19:17 GMT
cache-control: max-age=2592000
x-delay: 32761 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 205622
chid: 0
fid: 0
x-nws-log-uuid: 17a036e1-f6a6-4357-99c8-ec51667f16f2
X-Firefox-Spdy: h2
383guanggao.oss-cn-shenzhen.aliyuncs.com/200X200.gif
120.77.166.67200 OK 137 kB URL HTTP/1.1 383guanggao.oss-cn-shenzhen.aliyuncs.com/200X200.gif
IP 120.77.166.67:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 200 x 200\012- data
Size 137 kB (136945 bytes)
Hash 77e56e44521598151bbc814814005448
204207c707cae73d562c4c8fcb1e8467eeabf2eb
a1275ab8c911c61150c5f68b2da51d30a146929e2c9478ab1a68db88a086ff6f
GET /200X200.gif HTTP/1.1
Host: 383guanggao.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: image/gif
Content-Length: 136945
Connection: keep-alive
x-oss-request-id: 63C286A72C2A80383156AC3C
Accept-Ranges: bytes
ETag: "77E56E44521598151BBC814814005448"
Last-Modified: Thu, 08 Dec 2022 07:20:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6164053056264850434
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: d+VuRFIVmBUbvIFIFABUSA==
x-oss-server-time: 3
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 8bd0eab9e4a5598f8f330ad92c6ad6a1
3165a5104e1e267eda18f04db0b58fe62a6b3409
149cbe6327905167fa2abd8933b060aa3a838437769ab80f73bc671bb4897e07
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=873
Date: Sat, 14 Jan 2023 10:40:40 GMT
Connection: keep-alive
X-N: S
baidu6image6sina38.com/pics/960x160.gif
202.79.168.156200 OK 1.4 MB URL HTTP/2 baidu6image6sina38.com/pics/960x160.gif
IP 202.79.168.156:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 960 x 160\012- data
Size 1.4 MB (1438761 bytes)
Hash 11be5e8702de035ac67770307d6370b5
f9a990f83c1d70c746fe67827eb65036c9fe4f98
ad4661f83a9b972c47d890716f27e8b8d4c83b0c41df5edba65a906bb276d679
GET /pics/960x160.gif HTTP/1.1
Host: baidu6image6sina38.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 1438761
last-modified: Fri, 13 Jan 2023 04:27:29 GMT
etag: "63c0ddb1-15f429"
expires: Mon, 13 Feb 2023 10:40:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
120.77.166.67200 OK 299 kB URL HTTP/1.1 383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
IP 120.77.166.67:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 299 kB (299398 bytes)
Hash f4b7967855549e81f65598b93a43d9db
6ab53e8a9af687c1dddad236af323080a04499cf
2e95dc2082af7cc833e0aef825efc261c04b69e3ec4350203854008cc4a12dc6
GET /960x60.gif HTTP/1.1
Host: 383guanggao.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: image/gif
Content-Length: 299398
Connection: keep-alive
x-oss-request-id: 63C286A76EABC839352D1823
Accept-Ranges: bytes
ETag: "F4B7967855549E81F65598B93A43D9DB"
Last-Modified: Thu, 08 Dec 2022 07:20:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8810428828543929982
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 9LeWeFVUnoH2VZi5OkPZ2w==
x-oss-server-time: 3
ky891.oss-cn-shenzhen.aliyuncs.com/891-960x80.gif
120.77.167.202200 OK 299 kB URL HTTP/1.1 ky891.oss-cn-shenzhen.aliyuncs.com/891-960x80.gif
IP 120.77.167.202:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 299 kB (298872 bytes)
Hash 563418030c4388ccb5df09d7a956b3aa
bc52680b1b525e7fe8cc17a64903035e00cbc37f
476d03d56758f426d0cd7541718e28ddcffc1a5336cd728f07f82606bed1f4f6
GET /891-960x80.gif HTTP/1.1
Host: ky891.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: image/gif
Content-Length: 298872
Connection: keep-alive
x-oss-request-id: 63C286A71344D13234D82066
Accept-Ranges: bytes
ETag: "563418030C4388CCB5DF09D7A956B3AA"
Last-Modified: Mon, 02 Jan 2023 14:12:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6427100620931530640
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: VjQYAwxDiMy13wnXqVazqg==
x-oss-server-time: 3
9366qq.com/92db527b11c14f6786a03e7d9360b8a2.gif
45.61.212.116200 OK 837 kB URL HTTP/1.1 9366qq.com/92db527b11c14f6786a03e7d9360b8a2.gif
IP 45.61.212.116:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 837 kB (837008 bytes)
Hash 584c3e9b6c2fd77fbb6885fa31881b67
827d9c49b8315888c220f34ee366ed694569f32e
d97ecf8f032827472d136c190f837c6fdc9bccdee52788dc6055bd7faf973030
GET /92db527b11c14f6786a03e7d9360b8a2.gif HTTP/1.1
Host: 9366qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63958c42-cc590"
Date: Sun, 08 Jan 2023 01:29:07 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 11 Dec 2022 07:52:34 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-16
Content-Length: 837008
1865366ccc.com/7b6de5866506450c825e02fdffc35b6a.gif
45.61.212.51200 OK 684 kB URL HTTP/1.1 1865366ccc.com/7b6de5866506450c825e02fdffc35b6a.gif
IP 45.61.212.51:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 684 kB (684143 bytes)
Hash ed37cb5d680ff52e6a6b5e102538b151
c71e5c83de0a4d1c0c6022d545f69c52dc4cfc2f
e14d54ea73e107930500243ac6068be527aeedd1f698110bc8bb7a599e38b069
GET /7b6de5866506450c825e02fdffc35b6a.gif HTTP/1.1
Host: 1865366ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63a9c6fc-a706f"
Date: Wed, 04 Jan 2023 13:25:52 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 26 Dec 2022 16:08:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-21
Content-Length: 684143
9030a.cc/1008-960x60.gif
154.85.10.21200 OK 245 kB IP 154.85.10.21:0
ASN #211392 Dream Cloud Innovation Limited
File type GIF image data, version 89a, 960 x 60\012- data
Size 245 kB (245135 bytes)
Hash b6eb4d9fd04fe63a7687677a8036e237
eac3cedc645a39478dc6ad3ec6ea97db621174b8
6b61596ae15b088b70b49d17c7b47eaffaa5f235c9215459334b85039af7f008
GET /1008-960x60.gif HTTP/1.1
Host: 9030a.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Tue, 04 Oct 2022 14:45:04 GMT
Accept-Ranges: bytes
ETag: "5c7ab8e3ffd7d81:0"
Server: Microsoft-IIS/8.5
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Length: 245135
X-Via: 1.1 localhost.localdomain (random:85111 Fikker/Webcache/3.7.8)
Set-Cookie: fikker-tkjk-8I2E=6AJN4WT7BW0g0mIaVuK7h92mbGRsXQjs; expires=Sat, 14 Jan 2023 21:08:57 GMT; max-age=7200; path=/
fikker-tkjk-8I2E=6AJN4WT7BW0g0mIaVuK7h92mbGRsXQjs; expires=Sat, 14 Jan 2023 21:08:57 GMT; domain=.cc; max-age=7200; path=/
sz88.oss-cn-shenzhen.aliyuncs.com/js/js1911-200x200.gif
120.77.166.72200 OK 225 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/js/js1911-200x200.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 200 x 200\012- data
Size 225 kB (225026 bytes)
Hash d0ec0f9c3f6bea10c3932dc6c67e95f3
d90ff84ffd8c75172e3d72f5fbc641e8cba869c6
1237fd778d6bb08a35af656bdcb2cbec947f6a725014ec7775d6509644deab90
GET /js/js1911-200x200.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: image/gif
Content-Length: 225026
Connection: keep-alive
x-oss-request-id: 63C286A7E144DC3838397971
Accept-Ranges: bytes
ETag: "D0EC0F9C3F6BEA10C3932DC6C67E95F3"
Last-Modified: Mon, 19 Dec 2022 08:37:35 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16580088513556850248
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 0OwPnD9r6hDDky3Gxn6V8w==
x-oss-server-time: 1
vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
47.75.19.55200 OK 300 kB URL HTTP/1.1 vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
IP 47.75.19.55:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 300 kB (299985 bytes)
Hash 5d7118c19a9bd8ff78641a72cb481144
5cf8f1709330929db0f38141e5e18518a2ddcb12
ebd1f7b5795943f0b6e779047bfd82e03c020056e9ae9f4a4f8b400d3835cd85
GET /sstu/st.gif HTTP/1.1
Host: vns86.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: image/gif
Content-Length: 299985
Connection: keep-alive
x-oss-request-id: 63C286A7DA8A79363123EF06
Accept-Ranges: bytes
ETag: "5D7118C19A9BD8FF78641A72CB481144"
Last-Modified: Tue, 10 Jan 2023 09:27:44 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5878332609690177558
x-oss-storage-class: Standard
x-oss-version-id: CAEQRhiBgIDwy4PsrBgiIGVlOTJjOGM4NTBkZDQ5NTBhMzAzYjhiYTJjYjQ0NTI5
Content-MD5: XXEYwZqb2P94ZBpyy0gRRA==
x-oss-server-time: 1
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash f14ee70bfe082fbb4972b923c244be7b
4983ced276044704fb430552c773f9dc50791d27
0b8c5fdcddfff67c2c68f27703f847e6b27b14bc746126e4701bdcfc2ad600b6
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 14 Jan 2023 10:24:17 GMT
last-modified: Wed, 11 Jan 2023 12:39:50 GMT
expires: Wed, 18 Jan 2023 12:39:49 GMT
etag: "4983ced276044704fb430552c773f9dc50791d27"
cache-control: max-age=593444,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb4
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7895a93e4c072c02-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1673691857
via: cache3.l2de2[0,0,304-0,H], cache9.l2de2[1,0], cache1.se1[0,0,200-0,H], cache2.se1[0,0], cache2.se1[3,0]
age: 984
x-cache: HIT TCP_MEM_HIT dirn:4:63332900
x-swift-savetime: Sat, 14 Jan 2023 10:34:36 GMT
x-swift-cachetime: 1181
timing-allow-origin: *, *
eagleid: 2ff62c9616736928412228942e, 2ff62c9616736928412228942e
sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
120.77.166.72200 OK 394 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 394 kB (394237 bytes)
Hash 03123a07739f511b3306d13415cd72b1
6dbf38767657a15b922e4d153f46fe4829e012cb
72b3fa6461c39eace9c154e56b66b437457ecde50ae7c615cd923e442d058cdd
GET /js960x80%20.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 14 Jan 2023 10:40:39 GMT
Content-Type: image/gif
Content-Length: 394237
Connection: keep-alive
x-oss-request-id: 63C286A72C2A803032E4AC3C
Accept-Ranges: bytes
ETag: "03123A07739F511B3306D13415CD72B1"
Last-Modified: Tue, 20 Dec 2022 14:44:22 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13376170837400656090
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: AxI6B3OfURszBtE0Fc1ysQ==
x-oss-server-time: 2
gtm-cn-9lb3119w00i.gtm-a5b3.com/pj1/xpj200200a.gif
59.83.204.153200 OK 262 kB URL HTTP/1.1 gtm-cn-9lb3119w00i.gtm-a5b3.com/pj1/xpj200200a.gif
IP 59.83.204.153:0
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 200 x 200\012- data
Size 262 kB (261706 bytes)
Hash 7d4eac7dbbbf42145efd6e690ca6ceaa
20bde37450862bbfacc42d03bdf0469cda302689
7fa365adc4aaad2cdaff59ad5b435a3d1f739edf02ba1c8fe0b0c5e829890474
GET /pj1/xpj200200a.gif HTTP/1.1
Host: gtm-cn-9lb3119w00i.gtm-a5b3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 13 Jan 2023 15:18:22 GMT
Etag: "7d4eac7dbbbf42145efd6e690ca6ceaa"
Content-Type: image/gif
Date: Fri, 13 Jan 2023 15:42:08 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 4774860942847407857
x-cos-request-id: NjNjMTdiZDBfYjM1MGI3MDlfNDYzOV81Mzk2NzYy
Content-Length: 261706
Accept-Ranges: bytes
X-NWS-LOG-UUID: 17294174539117413530
Connection: keep-alive
X-Cache-Lookup: Cache Hit
595tuchuang.com/960x80.gif
183.255.106.37200 OK 145 kB URL HTTP/1.1 595tuchuang.com/960x80.gif
IP 183.255.106.37:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 145 kB (144990 bytes)
Hash 9fd5431ae14d05e144a79a04b928ad1d
43ca6652416a1403dc5a96d779d414330edbe411
f56b12228d407bfd1f7d17582733a92443a012dc7005b9b9896e9b8b3dc13c2c
GET /960x80.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 10:40:41 GMT
Content-Type: image/gif
Content-Length: 144990
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:28:21 GMT
ETag: "63a309f5-2365e"
Expires: Wed, 01 Feb 2023 07:17:46 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
n0600.com/a06905fba15d4ef59ebcb392ebefd40a.gif
20.210.214.179200 OK 0 B URL HTTP/2 n0600.com/a06905fba15d4ef59ebcb392ebefd40a.gif
IP 20.210.214.179:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /a06905fba15d4ef59ebcb392ebefd40a.gif HTTP/1.1
Host: n0600.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:39 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Wed, 04 Jan 2023 10:10:45 GMT
etag: W/"63b550a5-54d22"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
n0499.com/52398d62c1cf48fa95ec0fa704653940.gif
20.210.212.51200 OK 0 B URL HTTP/2 n0499.com/52398d62c1cf48fa95ec0fa704653940.gif
IP 20.210.212.51:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /52398d62c1cf48fa95ec0fa704653940.gif HTTP/1.1
Host: n0499.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:39 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Sun, 08 Jan 2023 13:53:34 GMT
etag: W/"63bacade-433f6"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
z4a.net/images/2022/12/12/960x60e449023c0081ea79.gif
104.21.234.234200 OK 0 B URL HTTP/2 z4a.net/images/2022/12/12/960x60e449023c0081ea79.gif
IP 104.21.234.234:0
GET /images/2022/12/12/960x60e449023c0081ea79.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 10:40:38 GMT
content-type: image/gif
content-length: 319606
expires: Thu, 14 Dec 2023 17:20:00 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 2654438
last-modified: Wed, 14 Dec 2022 17:20:00 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V7wL7HJAXrwoK0gtcDVj2PcXufMbhJUcRku97ufHIUIveetp7NfpzmgzUE4hNDLj1W5mwe23n8BYWATsBcnzNlDZBh5c3jTjbmrOMgI5V0IIP0o%2B0gVp1vyo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7895c12f39c823c6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2k.qfbj2.com/template/web/xx3.js
23.224.221.53200 OK 0 B URL HTTP/2 2k.qfbj2.com/template/web/xx3.js
IP 23.224.221.53:0
GET /template/web/xx3.js HTTP/1.1
Host: 2k.qfbj2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2k.qfbj2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 10:40:37 GMT
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 17:06:05 GMT
vary: Accept-Encoding
etag: W/"63c03dfd-1666"
expires: Sat, 14 Jan 2023 22:40:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2