r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f5e46725831d8d722872bf68d752f4c5
cf37793a1b73e3f84fe6c37fb27382c83b49dbc0
0582b6180687dd95c7fd728f1b9db4495b807151e309b608ad203d69708f9da6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0582B6180687DD95C7FD728F1B9DB4495B807151E309B608AD203D69708F9DA6"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8781
Expires: Wed, 25 Jan 2023 08:03:08 GMT
Date: Wed, 25 Jan 2023 05:36:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 04512fea22644dc0d22c3f3a665f6645
0e213646abfc6d9560ba562362fd9e9115be8354
124d9534f75506b8e8c7535ee7295ac4e6cf5a8249a0edac6940839e56043181
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "124D9534F75506B8E8C7535EE7295AC4E6CF5A8249A0EDAC6940839E56043181"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9511
Expires: Wed, 25 Jan 2023 08:15:18 GMT
Date: Wed, 25 Jan 2023 05:36:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6cd4f1da1215c7473500807c185f2449
b14db0c67cf1f5faf85648ed8f94baf2dd03808b
9750518efd869da5ff74ba65a196445bd4340c909157cc1a420f62c1d07224a0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9750518EFD869DA5FF74BA65A196445BD4340C909157CC1A420F62C1D07224A0"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2544
Expires: Wed, 25 Jan 2023 06:19:11 GMT
Date: Wed, 25 Jan 2023 05:36:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 04:42:47 GMT
content-type: application/json
age: 3240
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CHUxbRQHrFPyHlHRg1FyRaU5yqR0lN9IvuQx800MV03sAJ8t3tKm5nVa+RM8qUbZxIZbAoKocyE/M9xsdEL7qw==
x-amz-request-id: 7SSA1MM33Y6CXTKH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 04:48:26 GMT
age: 2901
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 05:36:47 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 05:17:31 GMT
age: 1156
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r575365.com/
154.209.253.27200 OK 1.1 kB IP 154.209.253.27:0
ASN #137443 Anchnet Asia Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (892)
Hash ec79f8ee2a01e45fb73279044645da8a
4013ecf963edc8abb85ccedd460482f4f3532e7a
08548cec1af4497ec94dc06a3afbb3fdb250248f9447829f5d714197c6a46b0d
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: r575365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 05:36:47 GMT
Content-Type: text/html; charset=UTF-8
Vary: Accept-Encoding
X-Powered-By: PHP/7.0.26
Set-Cookie: referrer_url=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
PHPSESSID=nenlslv0h4sdfpqd6u296a3rr1; path=/
intr=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
agent_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
X-Cache: MISS from 51
Transfer-Encoding: chunked
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9000
Expires: Wed, 25 Jan 2023 08:06:47 GMT
Date: Wed, 25 Jan 2023 05:36:47 GMT
Connection: keep-alive
r575365.com/public/images/favicon.ico
154.209.253.27200 OK 1.2 kB URL HTTP/1.1 r575365.com/public/images/favicon.ico
IP 154.209.253.27:0
ASN #137443 Anchnet Asia Limited
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash e13f45bbeb4b9056cfa3d6bd2453f70f
dfc879f8f7279ec929478feee93d9b2fdacce0b1
331b713de169d0e56bc71fee2c7df0795b24d5b24c045b3af1a27668783a1d2b
GET /public/images/favicon.ico HTTP/1.1
Host: r575365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r575365.com/
Cookie: PHPSESSID=nenlslv0h4sdfpqd6u296a3rr1
HTTP/1.1 200 OK
ETag: "5f9d3dad-47e"
Server: nginx
Date: Wed, 25 Jan 2023 05:36:47 GMT
Content-Type: image/x-icon
Last-Modified: Sat, 31 Oct 2020 10:34:21 GMT
Accept-Ranges: bytes
X-Cache: MISS from 51
Content-Length: 1150
push.services.mozilla.com/
44.238.238.191101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.238.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yG/NI0AUaVJgGwEB0FMDTg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mNtRTWjV+jdGFuH+SMIvEK6D2hk=
r575365.com/index.php/index/N_index
154.209.253.27200 OK 20 kB URL HTTP/1.1 r575365.com/index.php/index/N_index
IP 154.209.253.27:0
ASN #137443 Anchnet Asia Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (320)
Hash 4613271feac242344e97d4c7e496d778
02dc8e35ee46880baf4082e6cd2a94fcd694e591
57e03fe347985e3ab9e055069f76bf548398470df243a029b5d29a1dadbe6568
Analyzer Verdict Alert fortinet Phishing
GET /index.php/index/N_index HTTP/1.1
Host: r575365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r575365.com/
Cookie: PHPSESSID=nenlslv0h4sdfpqd6u296a3rr1
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 05:36:47 GMT
Content-Type: text/html; charset=UTF-8
Vary: Accept-Encoding
X-Powered-By: PHP/7.0.26
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: uid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
Content-Encoding: gzip
X-Cache: MISS from 51
Transfer-Encoding: chunked
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4603
Expires: Wed, 25 Jan 2023 06:53:32 GMT
Date: Wed, 25 Jan 2023 05:36:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4603
Expires: Wed, 25 Jan 2023 06:53:32 GMT
Date: Wed, 25 Jan 2023 05:36:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4603
Expires: Wed, 25 Jan 2023 06:53:32 GMT
Date: Wed, 25 Jan 2023 05:36:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d10114508bd40d76f497fc5b9c064350
c9b86b2b27063e0a58b0f237d451f9cf05b2122d
a156bd21bee2fca1d82940fb172a695044321ed432786ae100a7baf3b5e12b3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8252
x-amzn-requestid: c7064a36-7bb0-42c7-9ee8-9ee798ce8cbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEq3UEjVoAMFipg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb582e-5be2ad2a217f9b4b6834a278;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: b4EbiS-go4Yy-UcA4CbKj10TbS6qKgQd6ZgqB3XVyd9ieBPszfx_jw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:47:57 GMT
age: 28132
etag: "c9b86b2b27063e0a58b0f237d451f9cf05b2122d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1d76c1b1126a3e1b51dcca652cb6727b
b199a381ccac4628f2bfa626b44c71954713ca98
3a34f2b7f79cb925c73d2c17197418004e4acf63a6eb69e471320069978f8282
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10921
x-amzn-requestid: 7b8849e6-b52d-4165-b456-b200ddbb993b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqtkGThIAMFb7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57f0-1ed4803112d97956419b299e;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: FUbNMfYy8ci6d78p6LCu0Gxs3jw824ZzVp6drAbl8HCDBpghlZFP7g==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 04:19:27 GMT
age: 4642
etag: "b199a381ccac4628f2bfa626b44c71954713ca98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: df7df0ae-d70e-4b80-9483-2ecd5c8ee4a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqvPEXMoAMF5Aw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57fa-04193e0514c1c1e85d9d023b;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fznabMNG3n9Uo4L1jrrewtL_hJnQv8oR2qggeZtruvOLVzpUpcs7Tw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 03:28:51 GMT
age: 7678
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe64e9465-b064-4bdc-a484-d44b0d984431.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe64e9465-b064-4bdc-a484-d44b0d984431.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dad5d5718474f528ce520a04da20ade6
95df35934a1f2baf34c3ac73bacb614a5aefda46
8053939a2720f2f68fe2a1702b2012394668578851931b8fcd071a3fb42e1d65
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe64e9465-b064-4bdc-a484-d44b0d984431.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6826
x-amzn-requestid: 2630f080-b408-42d6-8488-42ac70e26f97
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLZhNH5TIAMF9Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce093a-5999d41f3dbe67e609f183c5;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 04:12:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: n9kXsl4AGQLIyNvDQXtwnxI0PRQ29UPLaCz-h3pCJ9f-7alcj3W6UQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 22:24:29 GMT
etag: "95df35934a1f2baf34c3ac73bacb614a5aefda46"
content-type: image/jpeg
age: 25940
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6254fc1aaa5fbb1d87114b5b28d52c40
8d7bd3af0b9bfc3d3eb2751cb1ba211169eaefe8
866e0b364026754b2a88d73da5ccabf5b5df59fb75bc60b3aa5c66e8322ee764
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7691
x-amzn-requestid: ee5858ec-ae6b-4a83-81f0-84903bea9786
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLP5HGwRIAMF2Lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdf9d3-1b9f899e1d9e9ba67adbeeac;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 03:06:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 59rOv8-DhAIGQx240tISV3X6FskvU33S-4LVzv8fP45qQilEpp2VwQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 04:11:49 GMT
age: 5100
etag: "8d7bd3af0b9bfc3d3eb2751cb1ba211169eaefe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe71d97f7-2292-4cf5-a029-f42cbbf136b7.png
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe71d97f7-2292-4cf5-a029-f42cbbf136b7.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72c3b8253eada5e517356b2a93aa2cb1
cdba249871f2234d685eddaf22834c531bca4db0
b8287bcef62f40ac749ea6b4f9a8714b4cfc124fb49ac39c08ad09afa9c29ff2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe71d97f7-2292-4cf5-a029-f42cbbf136b7.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8985
x-amzn-requestid: 3de4f2c8-913a-4ca2-a237-2ed1c12d1fa9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0MTkG3dIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4c0e3-1f88ffba391806fa4eb8f5fd;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:13:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NCxD9d8V5EyIme3NDXXu6ft8NLRXzORMgFme32QbzHPflXZRJ_gGbg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:39:05 GMT
age: 28664
etag: "cdba249871f2234d685eddaf22834c531bca4db0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 109c52dc2be7d808bb491f834e266fdf
e872fd34f95e0cc1f600b37d5d7ee1d781ca2e7b
ee95d02ad3d5b786f9353f44a68fe37e04fff136afb11fd982e1fb3aa1ba93bb
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 25 Jan 2023 05:36:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 24 Jan 2023 21:09:57 GMT
Expires: Wed, 25 Jan 2023 21:09:57 GMT
ETag: "e872fd34f95e0cc1f600b37d5d7ee1d781ca2e7b"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.starfieldtech.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 109c52dc2be7d808bb491f834e266fdf
e872fd34f95e0cc1f600b37d5d7ee1d781ca2e7b
ee95d02ad3d5b786f9353f44a68fe37e04fff136afb11fd982e1fb3aa1ba93bb
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 25 Jan 2023 05:36:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 24 Jan 2023 21:09:57 GMT
Expires: Wed, 25 Jan 2023 21:09:57 GMT
ETag: "e872fd34f95e0cc1f600b37d5d7ee1d781ca2e7b"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.starfieldtech.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 109c52dc2be7d808bb491f834e266fdf
e872fd34f95e0cc1f600b37d5d7ee1d781ca2e7b
ee95d02ad3d5b786f9353f44a68fe37e04fff136afb11fd982e1fb3aa1ba93bb
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 25 Jan 2023 05:36:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 24 Jan 2023 21:09:57 GMT
Expires: Wed, 25 Jan 2023 21:09:57 GMT
ETag: "e872fd34f95e0cc1f600b37d5d7ee1d781ca2e7b"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
prv.mybpo6.com/bvz_a/public/images/new/g04.jpg
182.16.104.50200 OK 11 kB URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/g04.jpg
IP 182.16.104.50:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 271x81, components 3\012- data
Hash c3d54d46a4642a509e4507966b90f9a9
786976e1dc366c9b02d1b3df9545a3f47f004315
e92c386672243f241365dc28f5a8fe73e7c47620fdecb748070ec8fafa0c1639
GET /bvz_a/public/images/new/g04.jpg HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-2cd6"
server: nginx
date: Wed, 25 Jan 2023 05:29:26 GMT
content-type: image/jpeg
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 11138
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/css/font-awesome1.css
156.251.22.98200 OK 5.4 kB URL HTTP/2 p.mybpo6.com/252/shared/css/font-awesome1.css
IP 156.251.22.98:0
File type troff or preprocessor input, ASCII text
Hash d522a11665e4215314cb41acf86c2d94
41aeb9eda43f2085e6d00ea0ffa5093724da5ac1
3aaaa725f9bf66454c280936f39e547fdd49cc74b86268c11ef37080d1afe6ae
GET /252/shared/css/font-awesome1.css HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: W/"5d80d2ca-6a71"
server: nginx
date: Wed, 25 Jan 2023 05:26:18 GMT
content-type: text/css
last-modified: Tue, 17 Sep 2019 12:34:18 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 5389
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/new_member/js/main.js
156.251.22.98200 OK 1.7 kB URL HTTP/2 p.mybpo6.com/252/shared/new_member/js/main.js
IP 156.251.22.98:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 0cedde4b82c5002f77e06c76f0671518
f5af9c4309b17275540e483676d58500d1e6c917
a33e0f4eb53ad1baed2592a50a87887305cdb154fcdd204e4d979ce0b5d9d611
GET /252/shared/new_member/js/main.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-1179"
server: nginx
date: Wed, 25 Jan 2023 05:32:21 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 1667
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/css/new/css.css?v=16668748
182.16.104.50200 OK 8.2 kB URL HTTP/2 prv.mybpo6.com/bvz_a/public/css/new/css.css?v=16668748
IP 182.16.104.50:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash c20241c49104a176f6cef92cefa69168
376aa2e6b2fb751e1298d147f08c4eb55728091f
62c8512c60532c2cc0a7e58ae680cfc398c8097d4814c8a9cc7e2a0d202d1ecb
GET /bvz_a/public/css/new/css.css?v=16668748 HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: W/"6162be38-9776"
server: nginx
date: Wed, 25 Jan 2023 05:29:23 GMT
content-type: text/css
last-modified: Sun, 10 Oct 2021 10:19:36 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 8205
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/js/pkjs/pc_loginArea_check.js
156.251.22.98200 OK 2.6 kB URL HTTP/2 p.mybpo6.com/252/shared/js/pkjs/pc_loginArea_check.js
IP 156.251.22.98:0
Hash fdc11e4a8c5a404306fd29afed629554
41392cfc3d139d49fe18b603f408f31c1fe5b57b
7844cc14c38a88d23e86795fe55f3bb047e8d6b30b1eaf212c5117a9047bbe3a
GET /252/shared/js/pkjs/pc_loginArea_check.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d9cd1ca-2388"
server: nginx
date: Wed, 25 Jan 2023 05:23:57 GMT
content-type: application/javascript
last-modified: Tue, 08 Oct 2019 18:13:30 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 2619
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/images/pk_icon/caution.png
156.251.22.98200 OK 862 B URL HTTP/2 p.mybpo6.com/252/shared/images/pk_icon/caution.png
IP 156.251.22.98:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c569d3471927bc07f7ff0c8c5575b321
1e515bd8ff2ab0e08d1cb80b644e58ba3bcb7910
9a7c62b34d3c4950888256be6979f792bacf2a1859621169edf3d5dffc80a14c
GET /252/shared/images/pk_icon/caution.png HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-491"
server: nginx
date: Wed, 25 Jan 2023 05:26:19 GMT
content-type: image/png
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 862
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/g02.jpg
182.16.104.50200 OK 12 kB URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/g02.jpg
IP 182.16.104.50:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 271x81, components 3\012- data
Hash 5846267045c9572e04735a0eba5c5529
2b92edfe187df1cbbbd7804020090131490a74eb
e7e79680d9aee2d1a5dcd3536c6cccff6c0ee8fbb04cff2f374d4afc65d83b28
GET /bvz_a/public/images/new/g02.jpg HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-2d8c"
server: nginx
date: Wed, 25 Jan 2023 05:29:26 GMT
content-type: image/jpeg
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 11655
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/worldcup.jpg
182.16.104.50200 OK 7.1 kB URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/worldcup.jpg
IP 182.16.104.50:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 160x56, components 3\012- data
Hash 1c393ac68f5d673a5b48a1ac6f78f33d
717f30295a780c1bf27819793159e2e7453bf456
184c4e3278e8c0c96ffffe7f06bd5a83ed4a7c8568e70f24180932480e8e07ae
GET /bvz_a/public/images/new/worldcup.jpg HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-1d10"
server: nginx
date: Wed, 25 Jan 2023 05:29:26 GMT
content-type: image/jpeg
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 7052
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/g03.png
182.16.104.50200 OK 4.0 kB URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/g03.png
IP 182.16.104.50:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 270x81, components 3\012- data
Hash a244cdbe55d0df50f44cd2b01f7e40f2
a783e39db14d25154ee316c5e375270d1d36c432
34569a0deabbeb3dd1c571641e7cced51d10e1ca159b4610ad90f1b81c9be815
GET /bvz_a/public/images/new/g03.png HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-fe6"
server: nginx
date: Wed, 25 Jan 2023 05:29:26 GMT
content-type: image/png
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 3959
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/css/new/share.css
182.16.104.50200 OK 16 kB URL HTTP/2 prv.mybpo6.com/bvz_a/public/css/new/share.css
IP 182.16.104.50:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 5e3038d4fd5b59fc397898cf55c89a3f
12e806033a29d7bf0259f81f7d2f34964de7b6a0
eeaef58a1550bc8282fb560b37f7297458909c6cf99ef9e74c0b0ccecd1e96c2
GET /bvz_a/public/css/new/share.css HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: W/"5f9d1e25-16428"
server: nginx
date: Wed, 25 Jan 2023 05:29:23 GMT
content-type: text/css
last-modified: Sat, 31 Oct 2020 08:19:49 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 16478
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/yzm/css/captcha.css
156.251.22.98200 OK 710 B URL HTTP/2 p.mybpo6.com/252/shared/yzm/css/captcha.css
IP 156.251.22.98:0
Hash b6778c925a8440661c49677d08a9ec80
1971610cb82c0f7bc9c31c13f20d9826d09e7db4
a862164fc8ad4f54d23e975d458f5b5591d6890a61fbb2d49780b92eddf9c110
GET /252/shared/yzm/css/captcha.css HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: W/"5d80d2cb-742"
server: nginx
date: Wed, 25 Jan 2023 05:14:21 GMT
content-type: text/css
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 710
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/190611004703.jpg
182.16.104.50200 OK 137 kB URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/190611004703.jpg
IP 182.16.104.50:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 850x211, components 3\012- data
Size 137 kB (137399 bytes)
Hash 61531a5b390edfc39a22d8d0ba290c1f
7e091939e93a321a54aeba858d6d8d998185d3fe
1c5864119b60519faa3d90ffe8aea538e4a3aff50f6cf131033b44892c577c0d
GET /bvz_a/public/images/new/190611004703.jpg HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-22a05"
server: nginx
date: Wed, 25 Jan 2023 05:29:26 GMT
content-type: image/jpeg
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 137399
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/huadong/css/style.css
156.251.22.98200 OK 461 B URL HTTP/2 p.mybpo6.com/252/shared/huadong/css/style.css
IP 156.251.22.98:0
Hash d3eccbac3009768566f94cb6cbee20ab
77a6c5b24128c90c1c23c4bc37fd8d69664836a0
aebb80d0732f983c499a54661ee505e88d61d0aa4297e5fbf31f2ee0031c6f81
GET /252/shared/huadong/css/style.css HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: W/"5ded3dbb-44e"
server: nginx
date: Wed, 25 Jan 2023 05:14:21 GMT
content-type: text/css
last-modified: Sun, 08 Dec 2019 18:15:23 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 461
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/tnCode/css/style.css
156.251.22.98200 OK 1.6 kB URL HTTP/2 p.mybpo6.com/252/shared/tnCode/css/style.css
IP 156.251.22.98:0
Hash ad03ac7f2704d61d9118185ca427a22e
e023501c4d6a3bb6d8b0300a0345517fe1ad2f4f
2710dfe064b4528280e6beaca325d0c1041aae809e526c1614a4f2a72797b606
GET /252/shared/tnCode/css/style.css HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: W/"5e176a42-1d6f"
server: nginx
date: Wed, 25 Jan 2023 05:14:21 GMT
content-type: text/css
last-modified: Thu, 09 Jan 2020 18:00:34 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 1645
X-Firefox-Spdy: h2
u.mybpo6.com/uploadimg/3/bvz//bvz__1604129560.png
182.16.104.50200 OK 5.5 kB URL HTTP/2 u.mybpo6.com/uploadimg/3/bvz//bvz__1604129560.png
IP 182.16.104.50:0
File type PNG image data, 120 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 6bdcee5e8589189a64179cb5b4fa6f56
557f0a4cade3b6a9dcd041f2533e26f738272088
32f3dbf2a907a12f7c9ebcd21e0f1e3249c05e504f473b3a84dd7aac5f4bcf33
GET /uploadimg/3/bvz//bvz__1604129560.png HTTP/1.1
Host: u.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1318-157d"
server: nginx
date: Wed, 25 Jan 2023 05:27:25 GMT
content-type: image/png
last-modified: Sat, 31 Oct 2020 07:32:40 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 5529
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/huadong/css/slidercaptcha.css
156.251.22.98200 OK 1.4 kB URL HTTP/2 p.mybpo6.com/252/shared/huadong/css/slidercaptcha.css
IP 156.251.22.98:0
Hash e7a2028624275c3f4732655030da215c
e0e3222b768dc022c50d722a37bb91644074441d
698f59614df70a92477f721aacfb6f2bd9e5529fe5516a93d932d632fd33ec56
GET /252/shared/huadong/css/slidercaptcha.css HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: W/"63813a6e-15a5"
server: nginx
date: Wed, 25 Jan 2023 05:14:21 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 21:58:06 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 1378
X-Firefox-Spdy: h2
u.mybpo6.com/uploadimg/3/bvz/a/bvz_a_1649201883.png
182.16.104.50200 OK 29 kB URL HTTP/2 u.mybpo6.com/uploadimg/3/bvz/a/bvz_a_1649201883.png
IP 182.16.104.50:0
File type PNG image data, 120 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a16544afbdf000063d0ce7e90e7e81b
c7865d780496e4a29b0571435b4ed6177cface3b
4f55c6373e85aeb477dbec41c0a3b4b17c0923252519704bfc47761392243052
GET /uploadimg/3/bvz/a/bvz_a_1649201883.png HTTP/1.1
Host: u.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"624cd2db-72b7"
server: nginx
date: Wed, 25 Jan 2023 05:27:25 GMT
content-type: image/png
last-modified: Tue, 05 Apr 2022 23:38:03 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 29392
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/register/jike/boc.js
156.251.22.98200 OK 4.1 kB URL HTTP/2 p.mybpo6.com/252/shared/register/jike/boc.js
IP 156.251.22.98:0
File type C source textAlgol 68 source text\012- Pascal source, Unicode text, UTF-8 text
Hash 994d72bbf54910af78e8d23c92dabc62
96ab860c545812760dd6b826752e644643552b44
cf4f6b8464e9b9c14d36b729e613b7fe065d01f7e78d035113957acbade8062e
GET /252/shared/register/jike/boc.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: W/"63813a6e-36f0"
server: nginx
date: Wed, 25 Jan 2023 05:32:21 GMT
content-type: application/javascript
last-modified: Fri, 25 Nov 2022 21:58:06 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 4135
X-Firefox-Spdy: h2
u.mybpo6.com/uploadimg/3/bvz//bvz__1604128785.png
182.16.104.50200 OK 5.6 kB URL HTTP/2 u.mybpo6.com/uploadimg/3/bvz//bvz__1604128785.png
IP 182.16.104.50:0
File type PNG image data, 120 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 92ad482b2aee56104d1be6c8e6015d5a
117909bbf81f30e969bf1e57915cf8a70b296aaf
ff6dd1488867c5e551afe1c02c008f8f8c81ceb6917a052f2fe98303e56a02c7
GET /uploadimg/3/bvz//bvz__1604128785.png HTTP/1.1
Host: u.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1011-1599"
server: nginx
date: Wed, 25 Jan 2023 05:27:25 GMT
content-type: image/png
last-modified: Sat, 31 Oct 2020 07:19:45 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 5557
X-Firefox-Spdy: h2
u.mybpo6.com/uploadimg/3/bvz//bvz__1604057260.png
182.16.104.50200 OK 10 kB URL HTTP/2 u.mybpo6.com/uploadimg/3/bvz//bvz__1604057260.png
IP 182.16.104.50:0
File type PNG image data, 185 x 69, 8-bit/color RGBA, non-interlaced\012- data
Hash 0d989345ee2a1f203fd7043d28e3bd6e
9c339e41b3e0cedff4120d10fbc0ce91114c8d6b
3577f46f8c7ac1a43c234fb4b57e2726544bfb07d0535acbe72a07d40b109f63
GET /uploadimg/3/bvz//bvz__1604057260.png HTTP/1.1
Host: u.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5f9bf8ac-2fe5"
server: nginx
date: Wed, 25 Jan 2023 05:27:25 GMT
content-type: image/png
last-modified: Fri, 30 Oct 2020 11:27:40 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 10521
X-Firefox-Spdy: h2
u.mybpo6.com/uploadimg/3/bvz/a/bvz_a_1649152015.png
182.16.104.50200 OK 17 kB URL HTTP/2 u.mybpo6.com/uploadimg/3/bvz/a/bvz_a_1649152015.png
IP 182.16.104.50:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 42a62ebfaaea5df93701d448f5364bc7
ca4054bbd8df8e8e5eb48b99518ffba1787d5a50
eb21cd6a9689d2f64c9fa54b2e6ec4f7c5b6ad3e887a3ab8ab900b3c76a0c780
GET /uploadimg/3/bvz/a/bvz_a_1649152015.png HTTP/1.1
Host: u.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"624c100f-43ae"
server: nginx
date: Wed, 25 Jan 2023 05:27:25 GMT
content-type: image/png
last-modified: Tue, 05 Apr 2022 09:46:55 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 17354
X-Firefox-Spdy: h2
u.mybpo6.com/uploadimg/3/bvz//bvz__1604129539.png
182.16.104.50200 OK 35 kB URL HTTP/2 u.mybpo6.com/uploadimg/3/bvz//bvz__1604129539.png
IP 182.16.104.50:0
File type PNG image data, 120 x 258, 8-bit/color RGBA, non-interlaced\012- data
Hash 495b3d3da0517905991378af518f88ee
e2fd4f51f3d7527209523fe3543d66d2405297bf
7a2021b13f3218bcaa9cb2bb7e549d46f38e4d2b8d9bb3f377fccf94fbe37ad1
GET /uploadimg/3/bvz//bvz__1604129539.png HTTP/1.1
Host: u.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1303-8743"
server: nginx
date: Wed, 25 Jan 2023 05:27:25 GMT
content-type: image/png
last-modified: Sat, 31 Oct 2020 07:32:19 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 34632
X-Firefox-Spdy: h2
u.mybpo6.com/uploadimg/3/bvz//bvz__1608148410.png
182.16.104.50200 OK 36 kB URL HTTP/2 u.mybpo6.com/uploadimg/3/bvz//bvz__1608148410.png
IP 182.16.104.50:0
File type PNG image data, 120 x 284, 8-bit/color RGBA, non-interlaced\012- data
Hash 35f2fbe00e964c5c11c77190af60ea81
a4d06175e563ea2a2045081674dad2b4e9a98f0d
0a49ae5c4fbb9cbf08f3e0694646e0f757f89d1cebae89a1ca648fc11d7dc07e
GET /uploadimg/3/bvz//bvz__1608148410.png HTTP/1.1
Host: u.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5fda65ba-8c09"
server: nginx
date: Wed, 25 Jan 2023 05:27:25 GMT
content-type: image/png
last-modified: Wed, 16 Dec 2020 19:53:30 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 35854
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/jquery-1.7.2.min.js
156.251.22.98200 OK 34 kB URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/jquery-1.7.2.min.js
IP 156.251.22.98:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32769), with CRLF line terminators
Hash 6addf94be34789e2ca0f406b0da90329
ece7b9db7a267e4e45f15a8bf0ec33974783b2e5
b25c5486c799ac6167021543e7d7d6c635ed2348cb8591ec750e1e5947f3659d
GET /252/shared/sitepublic/js/jquery-1.7.2.min.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-1727a"
server: nginx
date: Wed, 25 Jan 2023 05:23:51 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 33672
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/jquery-ui-1.8.21.custom.min.js
156.251.22.98200 OK 33 kB URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/jquery-ui-1.8.21.custom.min.js
IP 156.251.22.98:0
File type ASCII text, with very long lines (18608)
Hash 440f9b5b2746064f511e1767db97c6fe
40329289c959c6a810380d7ff66feb34e9923d55
4257e580713675f23cbac657d8cf1be3b8f519648fc3b19b958e3d8322e60a58
GET /252/shared/sitepublic/js/jquery-ui-1.8.21.custom.min.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-1ebb7"
server: nginx
date: Wed, 25 Jan 2023 05:22:59 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 33121
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/md5.js
156.251.22.98200 OK 2.9 kB URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/md5.js
IP 156.251.22.98:0
File type ASCII text, with CRLF line terminators
Hash 62db7731d434880d89758115efbc5440
041221e72a124fa1d5b729c74d66358dbe7cdafd
f76e0d542329b7612e1af56c1e7a66867c13e9891e13c2e6b0f0afab1caaeafd
GET /252/shared/sitepublic/js/md5.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-227b"
server: nginx
date: Wed, 25 Jan 2023 05:33:15 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 2942
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/top.js
156.251.22.98200 OK 340 B URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/top.js
IP 156.251.22.98:0
File type ASCII text, with CRLF line terminators
Hash 6285a04d58896b4cfaeb2baa6d904bc0
c771d497c9218737ce30867bf234246c7d2c0726
7cb33a261cfa5feb2b14e2eaaa0021c9a6a53145195dccec8d8d49148bcd1bd9
GET /252/shared/sitepublic/js/top.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
etag: "5d80d2cb-348"
server: nginx
date: Wed, 25 Jan 2023 05:23:19 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
accept-ranges: bytes
x-cache: HIT from cloud-2
content-length: 340
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/tnCode/js/tn_code.js
156.251.22.98200 OK 5.0 kB URL HTTP/2 p.mybpo6.com/252/shared/tnCode/js/tn_code.js
IP 156.251.22.98:0
File type Unicode text, UTF-8 text, with very long lines (557)
Hash 49e626384adcf34f0046f4a4f627f7aa
7fdc0828ed92a88b91eb0a88bdad6aca9b6f05dc
b8c71225bbb00a87f4852b1f6b2bd5d7c2478af329c5516ae648a4ae1f58f999
GET /252/shared/tnCode/js/tn_code.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-45c2"
server: nginx
date: Wed, 25 Jan 2023 05:23:20 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 4974
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/common_member.js
156.251.22.98200 OK 6.3 kB URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/common_member.js
IP 156.251.22.98:0
File type Unicode text, UTF-8 text, with very long lines (318), with CRLF line terminators
Hash fa59056a740bd82d2e85cbb3f74990de
7e4be9834be87b92e8901b4bc9970a947966bb7c
f5485b980a35338e74d299c933f1343e1b49b68ebd0ab3870ce813dce6599377
GET /252/shared/sitepublic/js/common_member.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"63813a6e-6b5a"
server: nginx
date: Wed, 25 Jan 2023 05:23:21 GMT
content-type: application/javascript
last-modified: Fri, 25 Nov 2022 21:58:06 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 6258
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/common_forpage.js
156.251.22.98200 OK 1.4 kB URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/common_forpage.js
IP 156.251.22.98:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 004110ccb2d0b711ad096415b01c67d0
64192a31203f37dd5b7b7f389a8b465aac647fde
667b7065fe83801c511f7997f02a381afa2330f7fd3dc3cdfafca5b03dcc5707
GET /252/shared/sitepublic/js/common_forpage.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"60b29278-100b"
server: nginx
date: Wed, 25 Jan 2023 05:23:21 GMT
content-type: application/javascript
last-modified: Sat, 29 May 2021 19:14:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 1353
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/common_helper.js
156.251.22.98200 OK 2.8 kB URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/common_helper.js
IP 156.251.22.98:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash f8bcbcb4e8d5a3b7beb4ee87fec3f493
44a52db19abd36818386247559eb2d0f2fc8cd94
17836bfcee7785d2e41a2c9e1d37dbb46105244434b0607a55eaa45cb10fc21a
GET /252/shared/sitepublic/js/common_helper.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-1bf2"
server: nginx
date: Wed, 25 Jan 2023 05:23:40 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 2767
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/common_forgames.js
156.251.22.98200 OK 768 B URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/common_forgames.js
IP 156.251.22.98:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash abdfc0f4391fb4bd13bb1e5c0ad25c39
ae686910d9cece2caaf2b3d0fba2382ef14e8095
7aa0ca6937d1bb470c74542c3e447caa2cf124bdd70c5b694bf061ef42a497e6
GET /252/shared/sitepublic/js/common_forgames.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-5f4"
server: nginx
date: Wed, 25 Jan 2023 05:23:40 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 768
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/common_static.js
156.251.22.98200 OK 1.1 kB URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/common_static.js
IP 156.251.22.98:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 84eaaf63622ac79e018f2cb29339bf91
0d80704e214034b4e8042a24378943420fa85799
793e521056159e1aaf82b88b6d17d3424e7f3d3a81363e1d7586368c96c2b242
GET /252/shared/sitepublic/js/common_static.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5db5e076-c30"
server: nginx
date: Wed, 25 Jan 2023 05:23:40 GMT
content-type: application/javascript
last-modified: Sun, 27 Oct 2019 18:22:46 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 1085
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/float.js
156.251.22.98200 OK 919 B URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/float.js
IP 156.251.22.98:0
File type ASCII text, with very long lines (2367), with no line terminators
Hash 6f60990d02552a55eeee23d3096b1ad3
b9545eb6fe44e4ba53e4b6c69e6c67694f02f7ff
f1774b0cc028985f9a50844c45ae7361da5b0806a41d9ab264f3e20ef9d4023b
GET /252/shared/sitepublic/js/float.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-93f"
server: nginx
date: Wed, 25 Jan 2023 05:23:41 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 919
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/jquery.cookie.js
156.251.22.98200 OK 497 B URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/jquery.cookie.js
IP 156.251.22.98:0
File type ASCII text, with very long lines (726), with CRLF line terminators
Hash cebfe9145f4b65e38b1fe9ae5d8be001
e2a401c925dba07cddf00114a6d20a6f5991f338
f90bdb4507f893cc985f1b929dc7244c339358c1d6249354f29b016401c7f5e5
GET /252/shared/sitepublic/js/jquery.cookie.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
etag: "5d80d2cb-3eb"
server: nginx
date: Wed, 25 Jan 2023 05:26:22 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
accept-ranges: bytes
x-cache: HIT from cloud-2
content-length: 497
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/easydialog.min.js
156.251.22.98200 OK 3.6 kB URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/easydialog.min.js
IP 156.251.22.98:0
File type HTML document, ASCII text, with very long lines (536)
Hash ede209fa3f537ef41eb8b45f551168f9
61f964d73cfcc547771c413f96c18e905adce2be
389e1c27846407d373dc430436679fdf113557cb8b3dd57b00114a12e49265ae
GET /252/shared/sitepublic/js/easydialog.min.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-2446"
server: nginx
date: Wed, 25 Jan 2023 05:10:44 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 3587
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/css/jquery-ui-1.9.2.custom.css
156.251.22.98200 OK 6.2 kB URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/css/jquery-ui-1.9.2.custom.css
IP 156.251.22.98:0
File type ASCII text, with very long lines (1433)
Hash 23c95729062f57bd9d5667a5546ec595
98a09dae43e5960aaee7956d91dee94dfb499009
1ae4fd8789cf35dc7a62ce183ce7df9e31dde22f50c4fa6b86abbcf2c86f89c6
GET /252/shared/sitepublic/css/jquery-ui-1.9.2.custom.css HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-7f2e"
server: nginx
date: Wed, 25 Jan 2023 05:26:22 GMT
content-type: text/css
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 6187
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/unslider.min.js
156.251.22.98200 OK 1.1 kB URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/unslider.min.js
IP 156.251.22.98:0
File type Unicode text, UTF-8 text, with very long lines (2621), with no line terminators
Hash bae4c3da6c169b97d6ec46b436473113
c04883f0eb655d12406c4c8b0c1f2c93f27d4b23
50711c59dae63396a5f10542d0dfeaf7128316c7a882351d6cde89abbf9eaa51
GET /252/shared/sitepublic/js/unslider.min.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-a41"
server: nginx
date: Wed, 25 Jan 2023 05:32:39 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 1130
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/tab.js
156.251.22.98200 OK 963 B URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/tab.js
IP 156.251.22.98:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 962dc10dd47ffd6d1dc92dab3de168ec
5ed563bced4e3f1d2ab053584043e4841911d95f
8ee49dd689f5bdb482ba7c186999098ece32f8608e49eeaaefd8dbde8faf4b43
GET /252/shared/sitepublic/js/tab.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-956"
server: nginx
date: Wed, 25 Jan 2023 05:25:27 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 963
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/simplelogin/css/modalCss.css
156.251.22.98200 OK 1.0 kB URL HTTP/2 p.mybpo6.com/252/shared/simplelogin/css/modalCss.css
IP 156.251.22.98:0
Hash 4cdab18bf9f757b2202ac24895130796
8d7f2579dd13422122ad2404d910e59876a229c0
774565e83903ad6c5490358c2331db15fe21253676262354b4487b07da74a763
GET /252/shared/simplelogin/css/modalCss.css HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5e138284-d49"
server: nginx
date: Wed, 25 Jan 2023 05:26:22 GMT
content-type: text/css
last-modified: Mon, 06 Jan 2020 18:55:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 1037
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/simplelogin/js/modalJs.js
156.251.22.98200 OK 5.1 kB URL HTTP/2 p.mybpo6.com/252/shared/simplelogin/js/modalJs.js
IP 156.251.22.98:0
File type Unicode text, UTF-8 text, with very long lines (507), with CRLF line terminators, with overstriking
Hash 3655f7959be83d9de2d85a7fd4b863a1
4b8a3b44fe545f628cf48329693984752c548bc6
0ac32c7300403ca07753e0563a46d5bfc434d1c7fdbdc55ebf27bca12050d387
GET /252/shared/simplelogin/js/modalJs.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"63813a6e-4b72"
server: nginx
date: Wed, 25 Jan 2023 05:26:22 GMT
content-type: application/javascript
last-modified: Fri, 25 Nov 2022 21:58:06 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 5107
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/lottlys/css/css/bootstrap.min.css
156.251.22.98200 OK 1.8 kB URL HTTP/2 p.mybpo6.com/252/shared/lottlys/css/css/bootstrap.min.css
IP 156.251.22.98:0
File type ASCII text, with very long lines (493)
Hash 98e43cbc0f0d9e95d278b2586dd6f638
24941ea324a610a5b07d019122e75b0530e51204
daa0d853b422b1f5b7f99aca3d7f6ea5e93891126e85a7c5b8b090910dabf489
GET /252/shared/lottlys/css/css/bootstrap.min.css HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-2a03"
server: nginx
date: Wed, 25 Jan 2023 05:26:23 GMT
content-type: text/css
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 1768
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/inco1.jpg
182.16.104.50200 OK 712 B URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/inco1.jpg
IP 182.16.104.50:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2x26, components 3\012- data
Hash a285a1622f26463c7a061a0618434c02
1d06cfcb7861e91499734b9d55ff2fefda73013f
b3ba146be2fb34bbdc2125de84b5293a6b95ce5f6e40810265216c4e1e925d52
GET /bvz_a/public/images/new/inco1.jpg HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prv.mybpo6.com/bvz_a/public/css/new/css.css?v=16668748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-4c6"
server: nginx
date: Wed, 25 Jan 2023 05:29:26 GMT
content-type: image/jpeg
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 712
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/inco_08.png
182.16.104.50200 OK 673 B URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/inco_08.png
IP 182.16.104.50:0
File type PNG image data, 5 x 4, 8-bit/color RGBA, non-interlaced\012- data
Hash fdb02283db990b32c8db72ba7a33550f
be8023ca9036032912ffc5442d8bdc7687b482be
07fac66a7fe8857f4b5a1b8d9f13d0a266a1f9c1bbde5d07bd309315ef8b022b
GET /bvz_a/public/images/new/inco_08.png HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prv.mybpo6.com/bvz_a/public/css/new/css.css?v=16668748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-417"
server: nginx
date: Wed, 25 Jan 2023 05:29:26 GMT
content-type: image/png
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 673
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/btn_start.png
182.16.104.50200 OK 1.8 kB URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/btn_start.png
IP 182.16.104.50:0
File type PNG image data, 80 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 5b0eaf670a3a6e72e82acf6d2d6c5c60
08fcd9c23879d6e5ca7bdb80f1132ef152e37ee1
b98ce5ed38449a251332c9084144a77266a63f22f1e660d9a6b6c95c11299234
GET /bvz_a/public/images/new/btn_start.png HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prv.mybpo6.com/bvz_a/public/css/new/css.css?v=16668748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-814"
server: nginx
date: Wed, 25 Jan 2023 05:29:27 GMT
content-type: image/png
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 1808
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/footer_top_line.jpg
182.16.104.50200 OK 675 B URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/footer_top_line.jpg
IP 182.16.104.50:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x2, components 3\012- data
Hash abc47da64da3a223dbfb18314bef152d
5f8aac922a4abffb1387252687182e046e3bce8d
c67197e5f6ca5232ba1c9d6fbe1dbd3e2e1b38f423ead78fb950c3ab580c6425
GET /bvz_a/public/images/new/footer_top_line.jpg HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prv.mybpo6.com/bvz_a/public/css/new/css.css?v=16668748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-4cd"
server: nginx
date: Wed, 25 Jan 2023 05:29:27 GMT
content-type: image/jpeg
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 675
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/inco2.png
182.16.104.50200 OK 226 B URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/inco2.png
IP 182.16.104.50:0
File type PNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash 86f3437a564c2f0fb541c5dfb2c1a463
3fa6054469ef5aa6b79f9c95b8057629e2f548b2
ec8953f587e347c577d9134737d7b1a0621511ac6dc4e1a858fe2f5278ada479
GET /bvz_a/public/images/new/inco2.png HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prv.mybpo6.com/bvz_a/public/css/new/css.css?v=16668748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "5f9d1e26-e2"
server: nginx
date: Wed, 25 Jan 2023 05:29:26 GMT
content-type: image/png
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
accept-ranges: bytes
x-cache: HIT from sim
content-length: 226
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/inco3b.png
182.16.104.50200 OK 980 B URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/inco3b.png
IP 182.16.104.50:0
File type PNG image data, 16 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash b4bbe16c6474a570b5efbf29be4c2038
55441327eee87345eb5e4a2f67534d4a1c24e58c
001014f9f87a38568efc7023f39fb29bd31b9e36f93e517f135cdcc8d7e346e3
GET /bvz_a/public/images/new/inco3b.png HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prv.mybpo6.com/bvz_a/public/css/new/css.css?v=16668748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-514"
server: nginx
date: Wed, 25 Jan 2023 05:29:26 GMT
content-type: image/png
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 980
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/centerbg.png
182.16.104.50200 OK 1.1 kB URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/centerbg.png
IP 182.16.104.50:0
File type PNG image data, 1 x 903, 8-bit/color RGB, non-interlaced\012- data
Hash 3e918fa15b65e05cc56d76859f803cf1
3d5cf625a882474273be9d87ca9bac1600802b6d
007320c23d4078dcda7fd991f4251361aace23fb9dc37b4ca6765e1c4243f193
GET /bvz_a/public/images/new/centerbg.png HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prv.mybpo6.com/bvz_a/public/css/new/css.css?v=16668748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-576"
server: nginx
date: Wed, 25 Jan 2023 05:29:27 GMT
content-type: image/png
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 1057
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/menu_bg.jpg
182.16.104.50200 OK 855 B URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/menu_bg.jpg
IP 182.16.104.50:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 120x618, components 3\012- data
Hash c0a71f5202825ad1cc002356b3a80830
93d5705097b034d3df94c131c736f8e19161ae30
567397be4cfa7c66596b0f3a18c1d8dc61ccc68289f94d433bef1127dc5943bf
GET /bvz_a/public/images/new/menu_bg.jpg HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prv.mybpo6.com/bvz_a/public/css/new/css.css?v=16668748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-8e6"
server: nginx
date: Wed, 25 Jan 2023 05:29:27 GMT
content-type: image/jpeg
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 855
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/sitepublic/js/jquery.easing.1.3.min.js
156.251.22.98200 OK 815 B URL HTTP/2 p.mybpo6.com/252/shared/sitepublic/js/jquery.easing.1.3.min.js
IP 156.251.22.98:0
File type ASCII text, with very long lines (508)
Hash 594f75f71268a7adb48cdc9ed8df64c8
2946bf178f5d5c5b32df0afd19a2dd279698262b
4834a98fdeda6511343b03299cf408501452d7cd2ffec38d807d3fb4a2692a38
GET /252/shared/sitepublic/js/jquery.easing.1.3.min.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5d80d2cb-ce5"
server: nginx
date: Wed, 25 Jan 2023 05:26:24 GMT
content-type: application/javascript
last-modified: Tue, 17 Sep 2019 12:34:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: HIT from cloud-2
content-length: 815
X-Firefox-Spdy: h2
p.mybpo6.com/252/shared/yzm/js/clicaptcha.js
156.251.22.98200 OK 0 B URL HTTP/2 p.mybpo6.com/252/shared/yzm/js/clicaptcha.js
IP 156.251.22.98:0
GET /252/shared/yzm/js/clicaptcha.js HTTP/1.1
Host: p.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r575365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"5e25ee56-19fa"
server: nginx
date: Wed, 25 Jan 2023 05:36:51 GMT
content-type: application/javascript
last-modified: Mon, 20 Jan 2020 18:15:50 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-Access-Token
content-encoding: gzip
x-cache: MISS from cloud-2
X-Firefox-Spdy: h2
prv.mybpo6.com/bvz_a/public/images/new/panel_b_bg.jpg
182.16.104.50200 OK 0 B URL HTTP/2 prv.mybpo6.com/bvz_a/public/images/new/panel_b_bg.jpg
IP 182.16.104.50:0
GET /bvz_a/public/images/new/panel_b_bg.jpg HTTP/1.1
Host: prv.mybpo6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://prv.mybpo6.com/bvz_a/public/css/new/css.css?v=16668748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: W/"5f9d1e26-10ab"
server: nginx
date: Wed, 25 Jan 2023 05:29:27 GMT
content-type: image/jpeg
last-modified: Sat, 31 Oct 2020 08:19:50 GMT
vary: Accept-Encoding
content-encoding: gzip
x-cache: HIT from sim
content-length: 3296
X-Firefox-Spdy: h2