Report - printingkiteco.com/wp-content/plugins/crumina_slider/css/64725a79879814f0c358804beb115165/usaaaccount_confirmationpage.alldetailsrequest_complete.fillingsecurity_update.activation/important_profile_update

Report Overview

Submitted URL
printingkiteco.com/wp-content/plugins/crumina_slider/css/64725a79879814f0c358804beb115165/usaaaccount_confirmationpage.alldetailsrequest_complete.fillingsecurity_update.activation/important_profile_update_page/index.html
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2023-06-07 01:56:40
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
static.fastbs66.com	unknown	2022-05-24	2022-10-31	2023-06-05	1.8 kB	18 kB	154.197.20.151
acstatic-dun.126.net	61518	1998-02-28	2017-10-24	2023-06-06	423 B	6.0 kB	47.246.44.228
3.bp.blogspot.com	11048	2000-07-31	2012-05-21	2023-06-06	987 B	4.8 kB	142.250.74.129
ac.dun.163.com	44437	1997-09-15	2020-06-08	2023-06-06	1.5 kB	1.1 kB	47.254.134.122
push6.bsportpush.com	unknown	2022-02-06	2023-05-17	2023-06-05	1.1 kB	386 B	43.155.16.88
iapi.bbapdefault.com	unknown	2023-02-28	2023-02-28	2023-06-05	2.2 kB	11 kB	147.78.121.230
ssapi-x.byyw7213hsw15.com	unknown	2022-11-20	2023-05-17	2023-06-05	1.3 kB	5.3 kB	139.177.153.13
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-06	5.3 kB	11 kB	142.250.74.131
2.bp.blogspot.com	11071	2000-07-31	2012-05-21	2023-06-06	991 B	4.1 kB	142.250.74.129
www.bty6120.com	unknown	2022-11-22	2023-05-28	2023-05-28	72 kB	7.4 MB	139.177.153.13
bbapi.chengshitechz8.com	unknown	2022-12-16	2022-12-17	2023-06-05	1.1 kB	112 kB	147.78.121.98
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-06-06	427 B	85 kB	142.250.74.40
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2023-06-06	435 B	35 kB	142.250.74.170
zerossl.ocsp.sectigo.com	4049	2018-08-16	2020-05-09	2023-06-06	676 B	2.4 kB	104.18.14.101
printingkiteco.com	unknown	2022-05-03	2014-10-08	2023-05-28	676 B	94 kB	188.114.97.1
pxdd.bty6120.com	unknown	2022-11-22	2023-05-23	2023-06-06	617 B	365 B	139.177.153.13
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-06-06	482 B	1.6 kB	142.250.74.106
api.btyseo.com	unknown	2022-02-17	2022-07-20	2023-06-05	580 B	357 B	139.177.153.13
www.blogger.com	8975	1999-06-22	2012-05-22	2023-06-06	904 B	65 kB	142.250.74.41
4.bp.blogspot.com	11215	2000-07-31	2012-05-21	2023-06-06	1.5 kB	6.1 kB	142.250.74.129
1.bp.blogspot.com	8403	2000-07-31	2012-05-21	2023-06-06	1.5 kB	6.1 kB	142.250.74.129
05098.top	unknown	2023-03-24	2023-05-23	2023-05-28	382 B	1.2 kB	155.159.176.28
ocsp.trust-provider.cn	unknown	2015-04-09	2022-02-10	2023-06-06	336 B	1.5 kB	47.246.44.205

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-07 01:56:20	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile
2023-06-07 01:56:20	medium	Client IP	155.159.176.28	ET INFO HTTP Request to a *.top domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	www.bty6120.com/js/chunk-65cd1076.639a0961.js	102 kB	2023-05-28	2023-06-07
Pretty URL www.bty6120.com/js/chunk-65cd1076.639a0961.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-28 07:25:03 Last Seen2023-06-07 03:56:52 Times Seen16 Hash 282faade341aea7535e314913b8a2b9a 167bffd8bc36704d7b1bbfeb9477db493de8133d 8b70ee90b39fd03ec0c7b9a8b65f20d72a56927714a521c80ff5deb832d4a77e Loading...

	www.bty6120.com/spa/sport-pc/js/chunk-411916a1.js	216 kB	2023-05-18	2023-06-07
Pretty URL www.bty6120.com/spa/sport-pc/js/chunk-411916a1.js IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 06:50:34 Last Seen2023-06-07 03:56:52 Times Seen12 Hash 1bacf41a67d6935f235d11661b3913c6 d6db5c323e731f7cf2790b9644e2c2c4f9c5a4ff 6529593deeae15e0aebcaa256ca25f2ef970df161064b39147d417df5490ae06 Loading...

	www.bty6120.com/spa/sport-pc/js/app.js?v=2023633646	345 kB	2023-06-05	2023-06-07
Pretty URL www.bty6120.com/spa/sport-pc/js/app.js?v=2023633646 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 00:36:40 Last Seen2023-06-07 03:56:52 Times Seen8 Hash 85b65aa7aab41eafcb8cf0ae1540e0f2 21c1a222022eef6de56b91b37abb96119c47385b 49fa5d5469863031d8d3312f4a23fca71c273f2f012ce6ccf7cadab4b7771462 Loading...

	acstatic-dun.126.net/tool.min.js?t=2023060706	5.2 kB	2023-03-07	2024-03-03
Pretty URL acstatic-dun.126.net/tool.min.js?t=2023060706 IP 47.246.44.228 ASN #24429 Zhejiang Taobao Network Co.,Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:31 Last Seen2024-03-03 15:53:41 Times Seen665 Hash 8bac8c7572f7504c02def544b16ead1f 0e347e5567f488d2999e5cf0e3bf3282d0f696ca c34edd7444347de42869136b510600f8d53f605a2e471c42d4f2eaf99842d91d Loading...

	www.bty6120.com/spa/sport-pc/js/chunk-7987d430.js	32 kB	2023-05-18	2023-06-07
Pretty URL www.bty6120.com/spa/sport-pc/js/chunk-7987d430.js IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 06:50:34 Last Seen2023-06-07 03:56:52 Times Seen17 Hash 4ce2d6b86eb57e10f555f3a3e4279bac 717b60726c1ca9c8560855fe2b88848a167ef5ae 42b6b5f98bbc48a8dc1b1645f02854c18fc1e5eed1a271ff402c12f83ad9dae9 Loading...

	www.bty6120.com/js/chunk-2d0e6132.e7c21427.js	99 kB	2023-05-17	2023-06-07
Pretty URL www.bty6120.com/js/chunk-2d0e6132.e7c21427.js IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-17 22:35:43 Last Seen2023-06-07 03:56:52 Times Seen21 Hash 9547a403e44ad80fec13fbcd737930b8 59a050f8dd24186e409553469e3971b608a99a1f 30e3f2d78538c603386979d0c32b79e1fa29c2694c21ce9496613d1cdc0f008f Loading...

	www.bty6120.com/js/chunk-2d0b9219.97345499.js	76 kB	2023-05-17	2023-12-27
Pretty URL www.bty6120.com/js/chunk-2d0b9219.97345499.js IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-17 22:35:43 Last Seen2023-12-27 19:36:35 Times Seen32 Hash fd53a84382753a74ce356235bbb5d77d 34d82675612a6aa4b86f2f810e8c5c3654a0293d 40dce048ef627ec131ba0b6ee808a5aa35f1d9a516a42739e8714e3a70ad13fc Loading...

	www.bty6120.com/	418 B	2023-05-18	2024-03-03
Pretty URL www.bty6120.com/ IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-18 06:50:33 Last Seen2024-03-03 15:53:39 Times Seen28 Hash 4679ee62576fec5c6ec63f5fde81d92b 9800b01fcc1e316c9da22ac0864190f2c7f83e73 5b362988777b9c78199346ef1370878fd94c790379ac47ed6e560dd840013e5c Loading...

	acstatic-dun.126.net/2.7.5_e2891084/watchman.min.js	90 kB	2023-03-08	2024-03-03
Pretty URL acstatic-dun.126.net/2.7.5_e2891084/watchman.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:41:41 Last Seen2024-03-03 15:53:43 Times Seen177 Hash 67d1ad5483f03d2a83074c400f03a83b 64f581a8fd10cf2210f971a79ee54e047c593736 2744116741e56fd25d543905e2dfd25cab645aa78aa2f71688ccc3d25111551a Loading...

	www.bty6120.com/js/chunk-vendors.2f326565.js	1.2 MB	2023-05-28	2023-06-07
Pretty URL www.bty6120.com/js/chunk-vendors.2f326565.js IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-28 07:25:03 Last Seen2023-06-07 03:56:52 Times Seen16 Hash 99421055546fe0e875a8bee7ac6db8e6 ca0796184ed8b7e439fa82f3f3e991afb8cbd24a 21972bc178e4e0ebfec462fe921b4c1555ec0b11d7372ecfcd3f7ff7a43d2a30 Loading...

	www.bty6120.com/	361 B	2023-05-18	2024-03-03
Pretty URL www.bty6120.com/ IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-18 06:50:33 Last Seen2024-03-03 15:53:39 Times Seen28 Hash cc64df88936a536d50d0586ec56e8e03 3f431b5a3d4c71a7c967abf674c130bc62bd380a 2cfd465b63cf3bea8e523cdc4ef499c48ab972245ab72cf7f3b8540fd634563c Loading...

	www.bty6120.com/spa/sport-pc/static/spa.version.js?t=1686102983019	50 B	2023-06-05	2023-06-07
Pretty URL www.bty6120.com/spa/sport-pc/static/spa.version.js?t=1686102983019 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 00:36:40 Last Seen2023-06-07 03:56:52 Times Seen13 Hash dc2bea27351ce2758639271ddbfb78e0 d1cdc4877e1eacd1788acc7c17f404a613844834 e60b6e4ddfeb652345007cfa97b9c9da419378e6e306ebcdaa39ad9d7639ec27 Loading...

	www.bty6120.com/js/app.dea9182a.js	1.7 MB	2023-06-05	2023-06-07
Pretty URL www.bty6120.com/js/app.dea9182a.js IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 00:36:40 Last Seen2023-06-07 03:56:52 Times Seen13 Hash 5e527967e03fb4ddcb0e04984f441156 21622501020897ca7992652b8389d875581f4cdf 86e401909db7b086de38ecc013df401d0ace84dae384864741d3c239f91bc4ef Loading...

	ac.dun.163.com/v2/config/js?pn=YD00152530895826&cvk=&cb=__wmjsonp_7b400590&t=1686102986356	1.1 kB	2023-06-07	2023-06-07
Pretty URL ac.dun.163.com/v2/config/js?pn=YD00152530895826&cvk=&cb=__wmjsonp_7b400590&t=1686102986356 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-07 03:56:43 Last Seen2023-06-07 03:56:43 Times Seen1 Hash 9bb5692089c586bc112f2f2be6f7b563 1eced9f9f1b215609ec3c6f27b1fe5463e1907ed d3c130f0cb39c95bb6e9f2c524b8049091cae23f45d7648c6574c2f1a6347dee Loading...

	www.bty6120.com/	723 B	2023-05-17	2023-06-07
Pretty URL www.bty6120.com/ IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-17 22:35:43 Last Seen2023-06-07 03:56:52 Times Seen14 Hash d790b7a150644c4f89e104b4f34281a8 9772d3aa88d6509f1a45ed3c581903b2475db7b8 23698524be864ab6104e627bf2df64495ac15813a20550311eb19b24eca76abb Loading...

	www.bty6120.com/spa/sport-pc/js/chunk-vendors.js?v=2023633646	707 kB	2023-05-18	2023-06-07
Pretty URL www.bty6120.com/spa/sport-pc/js/chunk-vendors.js?v=2023633646 IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 06:50:34 Last Seen2023-06-07 03:56:52 Times Seen18 Hash d584b1648297101f9f544ed6d050b7ac f0b967f9898246c5db4b844f47fe996dad5a4605 ee4ac925b2fd70cb7b3aa5ab3f286f31402e97f3053e63f52b550d65497e1702 Loading...

	www.bty6120.com/spa/sport-pc/js/lang-ENG.js	22 kB	2023-05-18	2023-06-07
Pretty URL www.bty6120.com/spa/sport-pc/js/lang-ENG.js IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 06:50:34 Last Seen2023-06-07 03:56:52 Times Seen12 Hash 9957286044888c9fb9f964d9c35ac40a 7c8f3b74a03c8fc77bf000acc2b6af749c2f39b1 687bab3ebf42fb25032b898381a8ff216212a260d5c201d2de5969e071dd0720 Loading...

	www.bty6120.com/js/chunk-2d20f558.03553899.js	1.8 kB	2023-05-18	2024-03-03
Pretty URL www.bty6120.com/js/chunk-2d20f558.03553899.js IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 06:50:34 Last Seen2024-03-03 15:53:41 Times Seen26 Hash a831033fd6aa2e1474d26f0add07cd6e c78de78860958c064753e3df0cce5928c2a5c3dd bd8f4971d93ce2290c6a980e7743f88a6205450248f5fece9ebe959a353ccdab Loading...

	www.bty6120.com/spa/sport-pc/js/chunk-211807a1.js	661 kB	2023-06-05	2023-06-07
Pretty URL www.bty6120.com/spa/sport-pc/js/chunk-211807a1.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 00:36:41 Last Seen2023-06-07 03:56:52 Times Seen7 Hash 662feddc2febe54cb597a58b59b20a00 0180efaa3ec76a96a56a05fa9947da4d475597ff 3d22209c6a1c8c4d0a1c452bbdfe49a74297e506bef0d0089617ed847494c314 Loading...

	www.bty6120.com/	735 B	2023-05-17	2024-03-03
Pretty URL www.bty6120.com/ IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-17 22:35:43 Last Seen2024-03-03 15:53:39 Times Seen30 Hash d526aa80455d2771bd9de9d400e1321b c27e13e74aea0d375309d1ac621f0b5988f83ffb 874b261e387f0b035bbfa1ab55214f561025d919f169e1c391c52a2c40f804bd Loading...

	www.bty6120.com/spa/activity-pc/static/spa.version.js?t=1686102983019	53 B	2023-06-05	2023-06-07
Pretty URL www.bty6120.com/spa/activity-pc/static/spa.version.js?t=1686102983019 IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 00:36:40 Last Seen2023-06-07 03:56:52 Times Seen13 Hash 9c319c87e4be7cdc41b238e935d781e7 ae049af797657f3694f180f39f9dc60a37fff147 3815b96bb9b7b83777f8ca3407eedd4992574489660ea13daf2755ca73d7c646 Loading...

	www.bty6120.com/dll/vendor_dll.js	531 kB	2023-05-17	2024-02-29
Pretty URL www.bty6120.com/dll/vendor_dll.js IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-17 22:35:43 Last Seen2024-02-29 05:46:21 Times Seen52 Hash 35bf21f0e09bda740464695dd46950fb 21ba31e60ed5d335f5a295e5ee77168022da8205 7451c2484ef23723e36084887841c420ae6ba51a0309ca83ca85fa52a9c21108 Loading...

	www.bty6120.com/js/chunk-51579795.97147419.js	26 kB	2023-05-28	2023-06-07
Pretty URL www.bty6120.com/js/chunk-51579795.97147419.js IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-28 07:25:03 Last Seen2023-06-07 03:56:52 Times Seen16 Hash 4abe8e03d8ace3ecc6259bfddfbb1094 61515eb2505b275b94cfbbdd656700071fbf7bd9 40bf712773b574ad47205ba5c838a04bfa71c2cc3964b286a1d6daf3b3787f5a Loading...

	www.bty6120.com/spa/sport-pc/js/chunk-00bba4d2.js	31 kB	2023-05-18	2023-06-07
Pretty URL www.bty6120.com/spa/sport-pc/js/chunk-00bba4d2.js IP 139.177.153.13 ASN #2914 NTT-LTD-2914 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 06:50:33 Last Seen2023-06-07 03:56:52 Times Seen13 Hash 69bcc483e64372a617b7bf89c59e14d2 ec7d387c17a0c5942106a0421afc58fa960af662 8297fb46c5d7b657bf6eca010cfdff6b2a05fc334e938749d82bf9ee6e8a1d5e Loading...

		Size	First Seen	Last Seen
	#1 Eval - b4739958501b7d2138dc62bc20fc8e4e	28 B	2023-03-07	2024-04-08
Pretty Observations First Seen2023-03-07 12:09:31 Last Seen2024-04-08 13:36:48 Times Seen270 Hash b4739958501b7d2138dc62bc20fc8e4e a5f0ad06eabbbf52effdbcd1926a800d8e721bbc 5c8353e7dd41ea5fdd5b4eb1ca641af3ef7c4c273bce90a70159ab52221e9ad2 Loading...

		Size	First Seen	Last Seen
	#1 Write - 4001db3098308e82607f4282fd50411f	135 B	2023-05-28	2023-06-26
Pretty Observations First Seen2023-05-28 07:25:03 Last Seen2023-06-26 19:49:05 Times Seen14 Hash 4001db3098308e82607f4282fd50411f ae15303a961c44625f0d08eb3f7d7746fdbee35c ae51644edbb78628179e9f3bc1a609a12766804161fabe806bd0b4181b017262 Loading...

HTTP Transactions (135)

URL IP Response Size

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a6ba3873fd2fa05c9d3c316c08fce422
491e6f561f77ffc9e4bb3bca64cc0d9ac6262b25
76dd8d0db6e9ff666d8a6d5c98adcf1277d9a1666625704b4a200d96d12a3809

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ce0ebcb6eab1a7dd3eab3a8147da0859
8164473145746d55203f9505ae8a1643350a79e3
b8771619cd596cd7015fdf1ff5e21e989535b3ba3d90f5efcd5867d85b98adcc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
127406f9d5b6ed0dc9ce35b801001438
eeef1443d9d5bd27cbe5d48d258cd665c6062da2
081e26abb2c6c81aade966b9d94fe5fb9b93a7396167d495041ae6e150097139

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aad93a7484c589d44eb6c6c2698e33f4
e1caa8484e2ebd7313045f44dbb952dc330dfcc1
ab73357250e26b1104ed495aebdd7008aec930058f13ff9927ee104f9298a20c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css

142.250.74.41

6.6 kB

URL
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
142.250.74.41:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (30596)
Size
6.6 kB (6620 bytes)
Hash
e3f09df1bc175f411d1ec3dfb5afb17b
3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9
1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617

HTTP Headers

GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Jun 2023 01:50:37 GMT
expires: Sat, 01 Jun 2024 01:50:37 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jun 2023 23:50:56 GMT
content-type: text/css
vary: Accept-Encoding
age: 432342
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aad93a7484c589d44eb6c6c2698e33f4
e1caa8484e2ebd7313045f44dbb952dc330dfcc1
ab73357250e26b1104ed495aebdd7008aec930058f13ff9927ee104f9298a20c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aad93a7484c589d44eb6c6c2698e33f4
e1caa8484e2ebd7313045f44dbb952dc330dfcc1
ab73357250e26b1104ed495aebdd7008aec930058f13ff9927ee104f9298a20c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aad93a7484c589d44eb6c6c2698e33f4
e1caa8484e2ebd7313045f44dbb952dc330dfcc1
ab73357250e26b1104ed495aebdd7008aec930058f13ff9927ee104f9298a20c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-31RJLSHF3Y

142.250.74.40

84 kB

URL
www.googletagmanager.com/gtag/js?id=G-31RJLSHF3Y
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (4537)
Size
84 kB (84442 bytes)
Hash
c8eda07af3e5f605f92ffb14d82a9131
ccc3e0d8b55e018d432a8a5dbab4f4105e7980d4
8c2e1aed820c39ebd43898de67529c27eee68dab814cfb26d23b6142a7085b5f

HTTP Headers

GET /gtag/js?id=G-31RJLSHF3Y HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Jun 2023 01:56:19 GMT
expires: Wed, 07 Jun 2023 01:56:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84442
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aad93a7484c589d44eb6c6c2698e33f4
e1caa8484e2ebd7313045f44dbb952dc330dfcc1
ab73357250e26b1104ed495aebdd7008aec930058f13ff9927ee104f9298a20c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

3.bp.blogspot.com/-OQ0AE9EQ2S8/VW_J0FXxLTI/AAAAAAAAA4w/W6OXepot6Uk/s72-c/vu.jpg

142.250.74.129

2.3 kB

URL
3.bp.blogspot.com/-OQ0AE9EQ2S8/VW_J0FXxLTI/AAAAAAAAA4w/W6OXepot6Uk/s72-c/vu.jpg
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
2.3 kB (2267 bytes)
Hash
172644972be0938d34f420f566d9712c
aa2ac52ab4dbe241a310ee963d36c565d5e0fa72
1302ef48554f9fab442f1b4a233e59655e6953a9cec29bfa2c169f1a12b13d6d

HTTP Headers

GET /-OQ0AE9EQ2S8/VW_J0FXxLTI/AAAAAAAAA4w/W6OXepot6Uk/s72-c/vu.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="vu.jpg"
x-content-type-options: nosniff
server: fife
content-length: 2267
x-xss-protection: 0
date: Wed, 07 Jun 2023 01:55:11 GMT
expires: Thu, 08 Jun 2023 01:55:11 GMT
cache-control: public, max-age=86400, no-transform
age: 68
etag: "v38d"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js

142.250.74.170

34 kB

URL
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65483)
Size
34 kB (33593 bytes)
Hash
3576a6e73c9dccdbbc4a2cf8ff544ad7
06e872300088b9ba8a08427d28ed0efcdf9c6ff5
61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf

HTTP Headers

GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 14:43:18 GMT
expires: Wed, 05 Jun 2024 14:43:18 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 40381
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8c348aa7c03bd66a0f5a6575ca4687ed
8de212ee29f26233d1d97765f0dbd24ccad7bbdf
443ae76d97c7696b368a540abb1e9b119af651046312a5571852d33bc2e9a4cd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

4.bp.blogspot.com/-9qF3OKWI3qQ/VWbKGkptC-I/AAAAAAAAMwI/P0jrnqVf4mo/s72-c/rain.jpg

142.250.74.129

1.7 kB

URL
4.bp.blogspot.com/-9qF3OKWI3qQ/VWbKGkptC-I/AAAAAAAAMwI/P0jrnqVf4mo/s72-c/rain.jpg
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1742 bytes)
Hash
58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b

HTTP Headers

GET /-9qF3OKWI3qQ/VWbKGkptC-I/AAAAAAAAMwI/P0jrnqVf4mo/s72-c/rain.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Wed, 07 Jun 2023 01:56:19 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

4.bp.blogspot.com/-YhqKlTZ8Co4/VVsXt3KZqXI/AAAAAAAAMJ0/oLnhz3AvkwY/s72-c/dead.jpg

142.250.74.129

1.7 kB

URL
4.bp.blogspot.com/-YhqKlTZ8Co4/VVsXt3KZqXI/AAAAAAAAMJ0/oLnhz3AvkwY/s72-c/dead.jpg
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1742 bytes)
Hash
58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b

HTTP Headers

GET /-YhqKlTZ8Co4/VVsXt3KZqXI/AAAAAAAAMJ0/oLnhz3AvkwY/s72-c/dead.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Wed, 07 Jun 2023 01:56:19 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

4.bp.blogspot.com/-waB6njKDqSg/VWB12Baj_GI/AAAAAAAAMXE/PQReGycx-to/s72-c/birds.jpg

142.250.74.129

1.7 kB

URL
4.bp.blogspot.com/-waB6njKDqSg/VWB12Baj_GI/AAAAAAAAMXE/PQReGycx-to/s72-c/birds.jpg
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1742 bytes)
Hash
58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b

HTTP Headers

GET /-waB6njKDqSg/VWB12Baj_GI/AAAAAAAAMXE/PQReGycx-to/s72-c/birds.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Wed, 07 Jun 2023 01:56:19 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

3.bp.blogspot.com/-xocEtwcoPrA/VWpunmqoXrI/AAAAAAAANA4/M4CerVWFj68/s72-c/sad.jpg

142.250.74.129

1.7 kB

URL
3.bp.blogspot.com/-xocEtwcoPrA/VWpunmqoXrI/AAAAAAAANA4/M4CerVWFj68/s72-c/sad.jpg
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1742 bytes)
Hash
58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b

HTTP Headers

GET /-xocEtwcoPrA/VWpunmqoXrI/AAAAAAAANA4/M4CerVWFj68/s72-c/sad.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Wed, 07 Jun 2023 01:56:19 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

2.bp.blogspot.com/-3ObNAqPotS8/VVsLNB-BA5I/AAAAAAAAMJU/8tFUfRB9fDg/s72-c/beaten.png

142.250.74.129

1.7 kB

URL
2.bp.blogspot.com/-3ObNAqPotS8/VVsLNB-BA5I/AAAAAAAAMJU/8tFUfRB9fDg/s72-c/beaten.png
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1742 bytes)
Hash
58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b

HTTP Headers

GET /-3ObNAqPotS8/VVsLNB-BA5I/AAAAAAAAMJU/8tFUfRB9fDg/s72-c/beaten.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Wed, 07 Jun 2023 01:56:19 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

2.bp.blogspot.com/-txGAFWbFVgo/VWmA1EKJmXI/AAAAAAAAM8I/iTqZV9nKa0I/s72-c/nag.jpg

142.250.74.129

1.7 kB

URL
2.bp.blogspot.com/-txGAFWbFVgo/VWmA1EKJmXI/AAAAAAAAM8I/iTqZV9nKa0I/s72-c/nag.jpg
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1742 bytes)
Hash
58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b

HTTP Headers

GET /-txGAFWbFVgo/VWmA1EKJmXI/AAAAAAAAM8I/iTqZV9nKa0I/s72-c/nag.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Wed, 07 Jun 2023 01:56:19 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/--e01pFm41nA/VVsEZZ_1jJI/AAAAAAAAMJE/yHYLOaiUAp8/s72-c/money.png

142.250.74.129

1.7 kB

URL
1.bp.blogspot.com/--e01pFm41nA/VVsEZZ_1jJI/AAAAAAAAMJE/yHYLOaiUAp8/s72-c/money.png
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1742 bytes)
Hash
58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b

HTTP Headers

GET /--e01pFm41nA/VVsEZZ_1jJI/AAAAAAAAMJE/yHYLOaiUAp8/s72-c/money.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Wed, 07 Jun 2023 01:56:19 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-BTg-MzH5PHY/VVsxNw09xhI/AAAAAAAAMKE/2Z3ud0wdoZw/s72-c/fall.jpg

142.250.74.129

1.7 kB

URL
1.bp.blogspot.com/-BTg-MzH5PHY/VVsxNw09xhI/AAAAAAAAMKE/2Z3ud0wdoZw/s72-c/fall.jpg
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1742 bytes)
Hash
58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b

HTTP Headers

GET /-BTg-MzH5PHY/VVsxNw09xhI/AAAAAAAAMKE/2Z3ud0wdoZw/s72-c/fall.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Wed, 07 Jun 2023 01:56:19 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-E3ysB0NdKWg/VVvluTyyxWI/AAAAAAAAMMM/7aDd_LaE2F0/s72-c/lost.jpg

142.250.74.129

1.7 kB

URL
1.bp.blogspot.com/-E3ysB0NdKWg/VVvluTyyxWI/AAAAAAAAMMM/7aDd_LaE2F0/s72-c/lost.jpg
IP
142.250.74.129:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1742 bytes)
Hash
58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b

HTTP Headers

GET /-E3ysB0NdKWg/VVvluTyyxWI/AAAAAAAAMMM/7aDd_LaE2F0/s72-c/lost.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Wed, 07 Jun 2023 01:56:19 GMT
server: fife
content-length: 1742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e658f45faae0edd26f5908c922167f73
33e4e65ccf9cb9b15a7a9f5fd0083f1cebfa7064
5cc8bb25c78320b6cafdc4a6a017081a2c953cb86e1a1dc45c8f8811798adbc5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ce0ebcb6eab1a7dd3eab3a8147da0859
8164473145746d55203f9505ae8a1643350a79e3
b8771619cd596cd7015fdf1ff5e21e989535b3ba3d90f5efcd5867d85b98adcc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
127406f9d5b6ed0dc9ce35b801001438
eeef1443d9d5bd27cbe5d48d258cd665c6062da2
081e26abb2c6c81aade966b9d94fe5fb9b93a7396167d495041ae6e150097139

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aad93a7484c589d44eb6c6c2698e33f4
e1caa8484e2ebd7313045f44dbb952dc330dfcc1
ab73357250e26b1104ed495aebdd7008aec930058f13ff9927ee104f9298a20c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/541336192-widgets.js

142.250.74.41

56 kB

URL
www.blogger.com/static/v1/widgets/541336192-widgets.js
IP
142.250.74.41:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2215)
Size
56 kB (56539 bytes)
Hash
aa44d6ded7a7f494bb801da2e270d438
2afe3b98239baba11dae4252198314c3c06088ab
9ca45e0cd2719c8403f25e13c931515b162cbb57faf9773db1033fee191efeff

HTTP Headers

GET /static/v1/widgets/541336192-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56539
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 12:11:13 GMT
expires: Fri, 31 May 2024 12:11:13 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 31 May 2023 19:54:39 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 481507
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aad93a7484c589d44eb6c6c2698e33f4
e1caa8484e2ebd7313045f44dbb952dc330dfcc1
ab73357250e26b1104ed495aebdd7008aec930058f13ff9927ee104f9298a20c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aad93a7484c589d44eb6c6c2698e33f4
e1caa8484e2ebd7313045f44dbb952dc330dfcc1
ab73357250e26b1104ed495aebdd7008aec930058f13ff9927ee104f9298a20c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aad93a7484c589d44eb6c6c2698e33f4
e1caa8484e2ebd7313045f44dbb952dc330dfcc1
ab73357250e26b1104ed495aebdd7008aec930058f13ff9927ee104f9298a20c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 01:56:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

05098.top/

155.159.176.28

938 B

URL
05098.top/
IP
155.159.176.28:0
ASN
#137951 Clayer Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
938 B (938 bytes)
Hash
0ddedf4b9a7d939f48cc6d237939117e
bf9eae900921f3131fa6c7173cd2c2ebc4415dda
55ce6f1d56e391a0f8d020c00df84467fc8f25113fb93159d343f639a4702c43

Detections

NIDS	Severity	Alert
suricata	medium	ET INFO HTTP Request to a *.top domain

HTTP Headers

GET / HTTP/1.1
Host: 05098.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 01:56:21 GMT
Content-Type: text/html
Last-Modified: Fri, 19 May 2023 09:20:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64673f43-5fa"
Content-Encoding: gzip

zerossl.ocsp.sectigo.com/

104.18.14.101

728 B

URL
zerossl.ocsp.sectigo.com/
IP
104.18.14.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
728 B (728 bytes)
Hash
59390bc8dffd27d5680dfd6eb6ad1632
6cfec2de56852b622d512064fa22e853101f37e8
827c4259e9e26ce977c7d10ecbfabb9caacc18d79c6f4164483ac33832668ebd

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 01:56:23 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sun, 04 Jun 2023 17:32:33 GMT
Expires: Sun, 11 Jun 2023 17:32:32 GMT
Etag: "6cfec2de56852b622d512064fa22e853101f37e8"
Cache-Control: max-age=401237,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d35473b68a50afa-OSL

www.bty6120.com/spa/activity-pc/static/spa.version.js?t=1686102983019

139.177.153.13

53 B

URL
www.bty6120.com/spa/activity-pc/static/spa.version.js?t=1686102983019
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
ASCII text
Size
53 B (53 bytes)
Hash
9c319c87e4be7cdc41b238e935d781e7
ae049af797657f3694f180f39f9dc60a37fff147
3815b96bb9b7b83777f8ca3407eedd4992574489660ea13daf2755ca73d7c646

HTTP Headers

GET /spa/activity-pc/static/spa.version.js?t=1686102983019 HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:23 GMT
content-type: application/javascript; charset=utf-8
content-length: 53
last-modified: Fri, 02 Jun 2023 21:01:46 GMT
etag: "647a58ba-35"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bty6120.com/

139.177.153.13

4.7 kB

URL
www.bty6120.com/
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
gzip compressed data, from Unix\012- data
Size
4.7 kB (4693 bytes)
Hash
ab065111a4d8b585ce1ff3e877338306
5765ae10b12560485db013657ed85c306ad86c4a
5d95da929a9ddb6ed3f588a0bce71c619bfac1eb0d0262cbbecef11a413806bb

HTTP Headers

GET / HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://05098.top/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:23 GMT
content-type: text/html; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-5021"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.trust-provider.cn/

47.246.44.205

600 B

URL
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
600 B (600 bytes)
Hash
002a372e596530b0ad2475bac166322a
6571d80c193545d0686968fcef8bfa2bf343c184
adfdb6f0acb631c92b1894662c70d5da342dcf51648df0603d1dd74c88147e40

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Wed, 07 Jun 2023 01:28:05 GMT
last-modified: Mon, 05 Jun 2023 03:25:20 GMT
expires: Mon, 12 Jun 2023 03:25:19 GMT
etag: "6571d80c193545d0686968fcef8bfa2bf343c184"
cache-control: max-age=598179,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb4
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7d351dc83a9a18c1-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1686101285
via: cache7.l2de2[200,200,304-0,M], cache19.l2de2[201,0], cache3.se1[0,0,200-0,H], cache8.se1[0,0], cache7.se1[3,0]
age: 1701
x-cache: HIT TCP_MEM_HIT dirn:1:332311232
x-swift-savetime: Wed, 07 Jun 2023 01:28:05 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9b16861029864135462e, 2ff62c9b16861029864135462e

www.bty6120.com/js/app.dea9182a.js

139.177.153.13

624 kB

URL
www.bty6120.com/js/app.dea9182a.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with very long lines (65482), with no line terminators
Size
624 kB (623558 bytes)
Hash
5e527967e03fb4ddcb0e04984f441156
21622501020897ca7992652b8389d875581f4cdf
86e401909db7b086de38ecc013df401d0ace84dae384864741d3c239f91bc4ef

HTTP Headers

GET /js/app.dea9182a.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:23 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-196351"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-vendors.2f326565.js

139.177.153.13

200 OK

439 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-vendors.2f326565.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65513), with no line terminators
Size
439 kB (438847 bytes)
Hash
99421055546fe0e875a8bee7ac6db8e6
ca0796184ed8b7e439fa82f3f3e991afb8cbd24a
21972bc178e4e0ebfec462fe921b4c1555ec0b11d7372ecfcd3f7ff7a43d2a30

HTTP Headers

GET /js/chunk-vendors.2f326565.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:23 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-12bf41"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/spa/sport-pc/css/chunk-vendors.css?v=2023633646

139.177.153.13

45 kB

URL
www.bty6120.com/spa/sport-pc/css/chunk-vendors.css?v=2023633646
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
ASCII text, with very long lines (18485)
Size
45 kB (45418 bytes)
Hash
b62e78aa60fb0481a86d2b251a767242
10cf0049ac57231b44f3af9dc5fdfacb8724239a
52579befe66605fab1e7c741a7c9c2935674e9de2013503dd52d840d352518ab

HTTP Headers

GET /spa/sport-pc/css/chunk-vendors.css?v=2023633646 HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:26 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 19:06:46 GMT
etag: W/"647a3dc6-410fc"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-51579795.97147419.js

139.177.153.13

200 OK

44 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-51579795.97147419.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (25532), with no line terminators
Size
44 kB (44083 bytes)
Hash
4abe8e03d8ace3ecc6259bfddfbb1094
61515eb2505b275b94cfbbdd656700071fbf7bd9
40bf712773b574ad47205ba5c838a04bfa71c2cc3964b286a1d6daf3b3787f5a

HTTP Headers

GET /js/chunk-51579795.97147419.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:26 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-63ec"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

ac.dun.163.com/v3/d

47.254.134.122

200 OK

251 B

URL POST HTTP/1.1
ac.dun.163.com/v3/d
IP
47.254.134.122:443
ASN
#45102 Alibaba US Technology Co., Ltd.

Requested by
https://www.bty6120.com/
Certificate
IssuerDigiCert Inc
Subject*.dun.163.com
Fingerprint22:2C:F0:B5:D1:08:C2:A7:BF:D6:63:1B:B7:F1:3A:54:08:33:42:3C
ValidityTue, 02 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
251 B (251 bytes)
Hash
03b00a77e388c017a98047e5964de36d
6490671efe6f8ab0f242bb1d874921079dd38a1c
8c3a689226bbddf8870213253a89cb54eef464fd890fc452dc61b35d7db76bbb

HTTP Headers

POST /v3/d HTTP/1.1
Host: ac.dun.163.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 862
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 01:56:28 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip

ac.dun.163.com/v3/b

47.254.134.122

99 B

URL
ac.dun.163.com/v3/b
IP
47.254.134.122:0
ASN
#45102 Alibaba US Technology Co., Ltd.

Certificate
IssuerDigiCert Inc
Subject*.dun.163.com
Fingerprint22:2C:F0:B5:D1:08:C2:A7:BF:D6:63:1B:B7:F1:3A:54:08:33:42:3C
ValidityTue, 02 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
99 B (99 bytes)
Hash
430d3011d2cf103648b129c85beab01e
21907307b924912bfa8ad52d4083fb96d164657f
cfbfacc72ca16e70d51c0f446dbc2356b31b79c3f7370f44854125e5cff90658

HTTP Headers

POST /v3/b HTTP/1.1
Host: ac.dun.163.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 672
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 01:56:28 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip

www.bty6120.com/api/forehead/system/device/get

139.177.153.13

150 B

URL
www.bty6120.com/api/forehead/system/device/get
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
JSON data\012- , ASCII text, with no line terminators
Size
150 B (150 bytes)
Hash
eb94d660d0dc4b9a68bbe64bad2e12b1
5c00dd82a78ba59d2af3b44071750b65047b150a
9e6783f944c737f7f41d3ee803f4edc9b566efdabd328566a373abb1d1c2e974

HTTP Headers

POST /api/forehead/system/device/get HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
device-id: P81b8059689272c637c36ff1649ee2bf9
os-type: 0
timestamp: 1686102988266
version: 1.9.0
sign: 55c88902c56496904b6af4d8ff9d6a14
app-type: 0
pid: zz
language: en
Content-Length: 176
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:28 GMT
content-type: application/json;charset=UTF-8
content-length: 150
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,regular,500,700,900%7CLato:300,regular,700,900

142.250.74.106

967 B

URL
fonts.googleapis.com/css?family=Roboto:300,regular,500,700,900%7CLato:300,regular,700,900
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
967 B (967 bytes)
Hash
79c554fdec4b798222e40db2573c555f
0b5a247d9f741ef2df3cc28b9d50e51a6e7a0aff
025ecf35ccd1092a8b0b7acdf5a1c3287a9cdb4a796f85802fdc58b06cceac3d

HTTP Headers

GET /css?family=Roboto:300,regular,500,700,900%7CLato:300,regular,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingkiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Jun 2023 01:56:19 GMT
date: Wed, 07 Jun 2023 01:56:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

printingkiteco.com/wp-content/plugins/crumina_slider/css/64725a79879814f0c358804beb115165/usaaaccount_confirmationpage.alldetailsrequest_complete.fillingsecurity_update.activation/important_profile_update_page/index.html

188.114.97.1

94 kB

URL
printingkiteco.com/wp-content/plugins/crumina_slider/css/64725a79879814f0c358804beb115165/usaaaccount_confirmationpage.alldetailsrequest_complete.fillingsecurity_update.activation/important_profile_update_page/index.html
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (801), with CRLF, LF line terminators
Size
94 kB (93551 bytes)
Hash
af3b395302d3003d3d45bfb0f22d47e7
d88b14690d7d2608a1d296291529b16a231b13ce
899d2c2082a00ea28a4c27d7639629b2478134111fcbcfeb1e20cdc01117528b

HTTP Headers

GET /wp-content/plugins/crumina_slider/css/64725a79879814f0c358804beb115165/usaaaccount_confirmationpage.alldetailsrequest_complete.fillingsecurity_update.activation/important_profile_update_page/index.html HTTP/1.1
Host: printingkiteco.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 07 Jun 2023 01:56:18 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K01UbhkN3t5gVB%2BsWUtJHTROfTTuTTEbeVcZdxkaokqP3aVsKXureX8rfM%2BIfs8WGIAJadVgE%2BBZOLmzztQl6lxeP4V2mbutFeqiPUmfQVyPY9z8DPCex3YFvcH%2FuNaMxNUw1yc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d35471dae1a1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.bty6120.com/spa/sport-pc/css/app.css?v=2023633646

139.177.153.13

11 kB

URL
www.bty6120.com/spa/sport-pc/css/app.css?v=2023633646
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
gzip compressed data, from Unix\012- data
Size
11 kB (10839 bytes)
Hash
6c0945dfeb5944ffcb7fc9551540f59b
598856b722b31106fdfaa41a509ec4549506a6d2
b9bc322c782b51834dc0fdfac66dad45ff73b18e2e773617d9b3e0c9fc8fcb69

HTTP Headers

GET /spa/sport-pc/css/app.css?v=2023633646 HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:26 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 19:06:46 GMT
etag: W/"647a3dc6-3a05"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/8a4a6afe3e450a4c4102b289216ae955.svg

139.177.153.13

737 B

URL
www.bty6120.com/8a4a6afe3e450a4c4102b289216ae955.svg
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (334)
Size
737 B (737 bytes)
Hash
8a4a6afe3e450a4c4102b289216ae955
1e3895edf10a1f7cfed65ed10d88822dfba4e6ec
ebd833ff51f9a48d73f5762cc74193bb85f3044948ec5fb4ff74299d519e1d0b

HTTP Headers

GET /8a4a6afe3e450a4c4102b289216ae955.svg HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: image/svg+xml
content-length: 737
last-modified: Wed, 24 May 2023 21:59:14 GMT
etag: "646e88b2-2e1"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
gp-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bty6120.com/css/chunk-33de8e29.8ece5c78ebd94398d074.css

139.177.153.13

25 kB

URL
www.bty6120.com/css/chunk-33de8e29.8ece5c78ebd94398d074.css
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
gzip compressed data, from Unix\012- data
Size
25 kB (24856 bytes)
Hash
8a59eac772f968ea6be2999c0b766dd5
ed3c09969cf88888b85c7d670f80106c0fadb4b9
ee21e351054c6e6d743fdab879a4eac8adff73cf82c41511763b7b3e65b5bfcd

HTTP Headers

GET /css/chunk-33de8e29.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:28 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-b3e"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/api/forehead/gamebet/product/productConfig

139.177.153.13

200 OK

355 B

URL POST HTTP/2
www.bty6120.com/api/forehead/gamebet/product/productConfig
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (355), with no line terminators
Size
355 B (355 bytes)
Hash
40e6d1e3aabd974e865cc4f1aa417e71
ede0e511ddb68a5b8ec529bd08df12f6f5670334
da41190d99a998a4972c4254ababc64cb7f957763f0f12bbb6871923f0d3a7bf

HTTP Headers

POST /api/forehead/gamebet/product/productConfig HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
device-id: PC-sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
os-type: 0
timestamp: 1686102989157
version: 1.9.0
sign: 64fd9a14d0a6a748dac5f5a4bac95be7
app-type: 0
pid: zz
language: en
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/json;charset=UTF-8
content-length: 355
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
X-Firefox-Spdy: h2

www.bty6120.com/api/forehead/user/register/get/config

139.177.153.13

117 B

URL
www.bty6120.com/api/forehead/user/register/get/config
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
JSON data\012- , ASCII text, with no line terminators
Size
117 B (117 bytes)
Hash
0011cf5794389ee104627f71e2c7dd26
d1376e325143be1e4cd13f3636ae84a82319a377
cb07da3f81021637b0405a5cfa80f822e280e14977255197d4f9f4fb9ab74f95

HTTP Headers

POST /api/forehead/user/register/get/config HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
device-id: PC-sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
os-type: 0
timestamp: 1686102989158
version: 1.9.0
sign: 1adadbf6cb20e890593699bf2f6dfcfa
app-type: 0
pid: zz
language: en
Content-Length: 0
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/json;charset=UTF-8
content-length: 117
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0e6132.e7c21427.js

139.177.153.13

35 kB

URL
www.bty6120.com/js/chunk-2d0e6132.e7c21427.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with very long lines (65234), with no line terminators
Size
35 kB (34867 bytes)
Hash
9547a403e44ad80fec13fbcd737930b8
59a050f8dd24186e409553469e3971b608a99a1f
30e3f2d78538c603386979d0c32b79e1fa29c2694c21ce9496613d1cdc0f008f

HTTP Headers

GET /js/chunk-2d0e6132.e7c21427.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-18124"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0a54b4.fb9f0209.js

139.177.153.13

36 kB

URL
www.bty6120.com/js/chunk-2d0a54b4.fb9f0209.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with very long lines (39324), with no line terminators
Size
36 kB (35891 bytes)
Hash
a3610d1a03c9950d9fd270aafb0dc1ea
9bca7bb15a6fbfeb3e8b269df0c66daae8b7cd8a
d6a892155c08c5a4af0bd23a1930c81feed87af1a4b83329502ab1257c9c4682

HTTP Headers

GET /js/chunk-2d0a54b4.fb9f0209.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-1574d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/api/forehead/system/domain/list/v2

139.177.153.13

330 kB

URL
www.bty6120.com/api/forehead/system/domain/list/v2
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
JSON data\012- , ASCII text, with very long lines (5484), with no line terminators
Size
330 kB (330272 bytes)
Hash
a29c91b74b128a67e52a3117ed703165
a5fcea5547f472984f83505c8acb95271a69420a
8f0fb8d390b47eb5a747c4b988df7af2db401facbd269410508f1e5e67199d40

HTTP Headers

POST /api/forehead/system/domain/list/v2 HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
device-id: PC-sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
os-type: 0
timestamp: 1686102988615
version: 1.9.0
sign: c5d4517d7b24724f6f24150712eca8a1
app-type: 0
pid: zz
language: en
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/json;charset=UTF-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0aa5d2.b33004b7.js

139.177.153.13

612 B

URL
www.bty6120.com/js/chunk-2d0aa5d2.b33004b7.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with very long lines (320), with no line terminators
Size
612 B (612 bytes)
Hash
23a0d04673b4034387fea708b5f00f10
70cfc3eae4be4464a5b3a1e94911d1da61beeaa0
5dcef49555e6bdf69408266161ab5a9d6a877709636e2adfaf9da3bf0a976830

HTTP Headers

GET /js/chunk-2d0aa5d2.b33004b7.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 612
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: "647a2b24-264"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0a45e0.4ae886a3.js

139.177.153.13

1.3 kB

URL
www.bty6120.com/js/chunk-2d0a45e0.4ae886a3.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with very long lines (1911), with no line terminators
Size
1.3 kB (1300 bytes)
Hash
d53b0f56522cd0f1581d0ff6083f7425
ca0cc6cbfeb5ab926171dd62656accf5e2f883e8
73279d8181217fde031637be1b0530eae552afddd1bebb6306498eb87f5fedec

HTTP Headers

GET /js/chunk-2d0a45e0.4ae886a3.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-77f"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/css/app.8ece5c78ebd94398d074.css

139.177.153.13

93 kB

URL
www.bty6120.com/css/app.8ece5c78ebd94398d074.css
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
gzip compressed data, from Unix\012- data
Size
93 kB (92906 bytes)
Hash
13a3604caf7be09bdac16984c1ad0c10
446dad2d8bc7b615ad907d74fd1bc5c96c38bf86
65b6857206e2bd1872253006c5eb0bdcc27ed3ee1f30c6602114c16e8338e525

HTTP Headers

GET /css/app.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:23 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-6f47e"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

pxdd.bty6120.com/match/sportUnionData?ts=1686102989215&language=zh_CN

139.177.153.13

204 No Content

0 B

URL OPTIONS HTTP/2
pxdd.bty6120.com/match/sportUnionData?ts=1686102989215&language=zh_CN
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /match/sportUnionData?ts=1686102989215&language=zh_CN HTTP/1.1
Host: pxdd.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: app-type,country_id,device-id,os-type,sign,timestamp,token,uid,version
Referer: https://www.bty6120.com/
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:30 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: app-type,country_id,device-id,os-type,sign,timestamp,token,uid,version
X-Firefox-Spdy: h2

www.bty6120.com/img/home-bg-top.6a28d56f.png

139.177.153.13

94 kB

URL
www.bty6120.com/img/home-bg-top.6a28d56f.png
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
gzip compressed data, from Unix\012- data
Size
94 kB (93894 bytes)
Hash
8043f616da51889863bbb3bd8b9fcae0
cd1c7aa66cad9bf62088d611b569d9507c9e568d
7a37cdb208bd6e059a93996de7594ee157765d452eac081fa32c77649a13ae53

HTTP Headers

GET /img/home-bg-top.6a28d56f.png HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/css/chunk-51579795.8ece5c78ebd94398d074.css
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: image/png
last-modified: Wed, 24 May 2023 21:59:14 GMT
etag: W/"646e88b2-16d4a"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2

api.btyseo.com/seoapi/analytics/search

139.177.153.13

204 No Content

0 B

URL OPTIONS HTTP/2
api.btyseo.com/seoapi/analytics/search
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerLet's Encrypt
Subjectbtyseo.com
Fingerprint26:DE:98:8B:D5:AF:29:45:DF:1F:99:78:03:27:2A:2B:41:5F:9E:E0
ValiditySun, 14 May 2023 13:53:52 GMT - Sat, 12 Aug 2023 13:53:51 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /seoapi/analytics/search HTTP/1.1
Host: api.btyseo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: app-type,device-id,language,os-type,pid,sign,timestamp,version
Referer: https://www.bty6120.com/
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:30 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: app-type,device-id,language,os-type,pid,sign,timestamp,version
X-Firefox-Spdy: h2

www.bty6120.com/api/forehead/system/config/images/query

139.177.153.13

200 OK

50 kB

URL POST HTTP/2
www.bty6120.com/api/forehead/system/config/images/query
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (49840), with no line terminators
Size
50 kB (50183 bytes)
Hash
6030c4b6c2819020498ee23d71fd90a6
4210fbc797b3cab9acc6f4c72efaa4eba2f34174
bda56e4244bdb9bb0a49a177afd97063cd19d13df54fa577ba0ef871ebf0e4c0

HTTP Headers

POST /api/forehead/system/config/images/query HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
device-id: PC-sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
os-type: 0
timestamp: 1686102989157
version: 1.9.0
sign: 64fd9a14d0a6a748dac5f5a4bac95be7
app-type: 0
pid: zz
language: en
Content-Length: 200
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/json;charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

bbapi.chengshitechz8.com/language/staticList

147.78.121.98

0 B

URL
bbapi.chengshitechz8.com/language/staticList
IP
147.78.121.98:0
ASN
#30823 combahton GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /language/staticList HTTP/1.1
Host: bbapi.chengshitechz8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.bty6120.com/
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: WAF
Date: Wed, 07 Jun 2023 01:56:31 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: https_waf_cookie=c1159ecb-7402-430fc7f1d560d3301c72ea7f8d4a602b901e; Expires=1686110190; Path=/; Secure; HttpOnly
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, PUT, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: content-type
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
X-Request-Id: 5549fb53ad68476dccabd91beaf06850

push6.bsportpush.com/

43.155.16.88

0 B

URL
push6.bsportpush.com/
IP
43.155.16.88:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push6.bsportpush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.bty6120.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fA06R+1cWcXUwFjkvp4jKQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: openresty/1.21.4.7
Date: Wed, 07 Jun 2023 01:56:31 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y5eca9Wx4TYA5xuu86btj8pOnl8=

www.bty6120.com/css/chunk-19cedb3a.8ece5c78ebd94398d074.css

139.177.153.13

4.8 kB

URL
www.bty6120.com/css/chunk-19cedb3a.8ece5c78ebd94398d074.css
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
gzip compressed data, from Unix\012- data
Size
4.8 kB (4751 bytes)
Hash
f9fba9e8c1eeafbdc3c2d509d43e6be7
cd929c567c4746602bbd53e2fe49d427c5beef37
efed5ed67cd8e6c28c4ca69a002b652f4442823ad8fbe8a0f2b6f9217b213a7a

HTTP Headers

GET /css/chunk-19cedb3a.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:28 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-2ff0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/be0dc3aeef3584ba1b0099034bde2c81.svg

139.177.153.13

12 kB

URL
www.bty6120.com/be0dc3aeef3584ba1b0099034bde2c81.svg
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (21956)
Size
12 kB (12313 bytes)
Hash
be0dc3aeef3584ba1b0099034bde2c81
9e9d0496d44ad3bed7f4beee7680e7999b5d771c
543f6e3b9fc7d6e05aae5cf68adcfa061c84ebdcda3249ac10071b33be36bcaa

HTTP Headers

GET /be0dc3aeef3584ba1b0099034bde2c81.svg HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: image/svg+xml
last-modified: Wed, 24 May 2023 21:59:16 GMT
etag: W/"646e88b4-8cb4"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
gp-cache-status: HIT
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0b6585.2f02d5a1.js

139.177.153.13

159 B

URL
www.bty6120.com/js/chunk-2d0b6585.2f02d5a1.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with no line terminators
Size
159 B (159 bytes)
Hash
1a98f285bb1efbbe1c6dc4de6c3f1a56
995dc67ec24cfae7f727dcde8897de9be97b29c4
267b9ca404e77c6a7d8274db9b9d4a55d700b39e3ad8ef9e2159da11b8547921

HTTP Headers

GET /js/chunk-2d0b6585.2f02d5a1.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 159
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: "647a2b24-9f"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
accept-ranges: bytes
X-Firefox-Spdy: h2

iapi.bbapdefault.com/v1/match/getList

147.78.121.230

200

1.2 kB

URL POST HTTP/1.1
iapi.bbapdefault.com/v1/match/getList
IP
147.78.121.230:443
ASN
#30823 combahton GmbH

Requested by
https://www.bty6120.com/
Certificate
IssuerLet's Encrypt
Subjectiapi.bbapdefault.com
Fingerprint21:F6:71:F7:B6:42:0D:45:F3:3F:00:5B:F8:C3:F8:06:8E:D8:AB:2C
ValiditySat, 29 Apr 2023 08:43:42 GMT - Fri, 28 Jul 2023 08:43:41 GMT

File type
JSON data\012- , ASCII text, with very long lines (4095), with no line terminators
Size
1.2 kB (1151 bytes)
Hash
a463f56746ebb769799da36fbec64849
8b972945faff372fd345e90c35aaea0975d9821d
c73289459880ad27b3d75689143d5c4620ba41a4bb11de1b8b3c3f6b70693bd6

HTTP Headers

POST /v1/match/getList HTTP/1.1
Host: iapi.bbapdefault.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Authorization: 
Content-Length: 79
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: WAF
Date: Wed, 07 Jun 2023 01:56:32 GMT
Content-Type: application/json;charset=UTF-8
Content-Length: 1151
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, PUT, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Set-Cookie: https_waf_cookie=b795cf61-eb2e-4e99bcc636ee1d6dbe5e696199c09cbdcbaf; Expires=1686110192; Path=/; Secure; HttpOnly
JSESSIONID=497006916067A44BE6534452FF9ECD4E; Path=/; HttpOnly
Content-Encoding: gzip
X-Request-Id: 6a92e072a71b729a074d323f88edc5d2

bbapi.chengshitechz8.com/language/staticList

147.78.121.98

111 kB

URL
bbapi.chengshitechz8.com/language/staticList
IP
147.78.121.98:0
ASN
#30823 combahton GmbH

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (50763), with no line terminators
Size
111 kB (111285 bytes)
Hash
d53c67fb70e0713fd384312f8737b3ec
f5a57928ee3ba9836fd7e8e32b0195ea75c66982
9dc2c2bbda144b98f9431fe1a940220f0e8b77e4578add03368a7b0c818f033e

HTTP Headers

POST /language/staticList HTTP/1.1
Host: bbapi.chengshitechz8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 22
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: WAF
Date: Wed, 07 Jun 2023 01:56:31 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, PUT, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Set-Cookie: https_waf_cookie=ea10345a-e517-43399610f49de51fb9280ed19447a6cf3b5c; Expires=1686110191; Path=/; Secure; HttpOnly
JSESSIONID=5DCC59C97B5DC75A83AA91E0415D9C64; Path=/; HttpOnly
Content-Encoding: gzip
X-Request-Id: 613052670fed3b74c7046779bf0da160

iapi.bbapdefault.com/v1/match/getList

147.78.121.230

200

3.0 kB

URL POST HTTP/1.1
iapi.bbapdefault.com/v1/match/getList
IP
147.78.121.230:443
ASN
#30823 combahton GmbH

Requested by
https://www.bty6120.com/
Certificate
IssuerLet's Encrypt
Subjectiapi.bbapdefault.com
Fingerprint21:F6:71:F7:B6:42:0D:45:F3:3F:00:5B:F8:C3:F8:06:8E:D8:AB:2C
ValiditySat, 29 Apr 2023 08:43:42 GMT - Fri, 28 Jul 2023 08:43:41 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (15958), with no line terminators
Size
3.0 kB (3001 bytes)
Hash
6496b1387929062692471bf4deade50b
887712bcd79849a06e9678904eb45ba65c1df7fd
8cd8caa480972443b4c55255c6b7a79bedbaab2809d41daebd1cbf13dc29ce26

HTTP Headers

POST /v1/match/getList HTTP/1.1
Host: iapi.bbapdefault.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Authorization: 
Content-Length: 79
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: WAF
Date: Wed, 07 Jun 2023 01:56:32 GMT
Content-Type: application/json;charset=UTF-8
Content-Length: 3001
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, PUT, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Set-Cookie: https_waf_cookie=9383b883-7259-4ffbe7ffca98ee2408be0993a94d3bffc31c; Expires=1686110192; Path=/; Secure; HttpOnly
JSESSIONID=F0E1774895E9D97F88C4E95CB0251FEF; Path=/; HttpOnly
Content-Encoding: gzip
X-Request-Id: d0a7454042aafc5aa5f645609753957d

www.bty6120.com/api/forehead/system/domain/list/v2

139.177.153.13

2.2 kB

URL
www.bty6120.com/api/forehead/system/domain/list/v2
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
JSON data\012- , ASCII text, with very long lines (5484), with no line terminators
Size
2.2 kB (2170 bytes)
Hash
a29c91b74b128a67e52a3117ed703165
a5fcea5547f472984f83505c8acb95271a69420a
8f0fb8d390b47eb5a747c4b988df7af2db401facbd269410508f1e5e67199d40

HTTP Headers

POST /api/forehead/system/domain/list/v2 HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
device-id: P81b8059689272c637c36ff1649ee2bf9
os-type: 0
timestamp: 1614999711410
version: 1.0
sign: ccbb2934a0190085aa0b7395d72de98d
app-type: 0
country_id: 
uid: 
token: 
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:27 GMT
content-type: application/json;charset=UTF-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/css/chunk-205e5bba.8ece5c78ebd94398d074.css

139.177.153.13

19 kB

URL
www.bty6120.com/css/chunk-205e5bba.8ece5c78ebd94398d074.css
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
gzip compressed data, from Unix\012- data
Size
19 kB (19271 bytes)
Hash
a49caee685e4160b99bb7f7a4f58834d
cc7ae618310a72bb8a866baf9ba2b00908b56198
e044d41ea98974259a2726ffd29ddd618339cac0c2febb1a1e4d4b88dab1a41b

HTTP Headers

GET /css/chunk-205e5bba.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:28 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-9d0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0afa5f.152e2948.js

139.177.153.13

36 kB

URL
www.bty6120.com/js/chunk-2d0afa5f.152e2948.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with very long lines (20326), with no line terminators
Size
36 kB (35477 bytes)
Hash
2d373a5333c560fef612d27134729e68
a2de18663c8e21930d9610fc5da609f102d9d781
2c4862ed6a5538eb4db06801afc9f41af1839efa1ba74a49353bf6c53dc5c889

HTTP Headers

GET /js/chunk-2d0afa5f.152e2948.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:31 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-6472"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/spa/sport-pc/fonts/montserrat_regular.ee653992.ttf

139.177.153.13

200 OK

246 kB

URL GET HTTP/2
www.bty6120.com/spa/sport-pc/fonts/montserrat_regular.ee653992.ttf
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 The Montserrat Project Authors (https://github.com/JulietaUla/Montserrat)Montserr\012- data
Size
246 kB (245708 bytes)
Hash
ee6539921d713482b8ccd4d0d23961bb
d25b35242deb1c6ff888b8162ca2aacc356d3899
077cdab15161232a9ba7124d2ddd7a9425145750788e9a966c156cc66274f525

HTTP Headers

GET /spa/sport-pc/fonts/montserrat_regular.ee653992.ttf HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/spa/sport-pc/css/chunk-211807a1.css?v=47954f5db41e6f533e00
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:32 GMT
content-type: application/octet-stream
content-length: 245708
last-modified: Sat, 13 May 2023 01:37:36 GMT
etag: "645ee9e0-3bfcc"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
gp-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

iapi.bbapdefault.com/v1/match/getList

147.78.121.230

200

1.9 kB

URL POST HTTP/1.1
iapi.bbapdefault.com/v1/match/getList
IP
147.78.121.230:443
ASN
#30823 combahton GmbH

Requested by
https://www.bty6120.com/
Certificate
IssuerLet's Encrypt
Subjectiapi.bbapdefault.com
Fingerprint21:F6:71:F7:B6:42:0D:45:F3:3F:00:5B:F8:C3:F8:06:8E:D8:AB:2C
ValiditySat, 29 Apr 2023 08:43:42 GMT - Fri, 28 Jul 2023 08:43:41 GMT

File type
JSON data\012- , ASCII text, with very long lines (9043), with no line terminators
Size
1.9 kB (1947 bytes)
Hash
b939abd047daa347e82e1ae27477d603
0a2641c7c1ca6c958445a5035213e3a3a8a8bad8
9f751e4ea5c0bf102bd71938b8c32420f6b534dacf305be249c6535ff487aa2b

HTTP Headers

POST /v1/match/getList HTTP/1.1
Host: iapi.bbapdefault.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Authorization: 
Content-Length: 79
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: WAF
Date: Wed, 07 Jun 2023 01:56:32 GMT
Content-Type: application/json;charset=UTF-8
Content-Length: 1947
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, PUT, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Set-Cookie: https_waf_cookie=37efaedc-1ce7-47c0020edb96d92a8654a9e3cd9beaf32545; Expires=1686110192; Path=/; Secure; HttpOnly
JSESSIONID=B868548F81DDE1D240E07240DB75AF0A; Path=/; HttpOnly
Content-Encoding: gzip
X-Request-Id: 12bfd66965cd0386da34ccd33b94d3c4

www.bty6120.com/js/chunk-2d0c0b02.65440a54.js

139.177.153.13

980 B

URL
www.bty6120.com/js/chunk-2d0c0b02.65440a54.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with very long lines (958), with no line terminators
Size
980 B (980 bytes)
Hash
5278c6f1d266fdd60793c74d3e3437d3
ba9a6fdb65d03a45da9690b587a84f6835bf2daf
41bd8bd37cdb8ff06ae0b94b9027704e5ca9c1c2191ce2a99b4e3f7813c0d1e9

HTTP Headers

GET /js/chunk-2d0c0b02.65440a54.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:32 GMT
content-type: application/javascript; charset=utf-8
content-length: 980
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: "647a2b24-3d4"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0b99a6.8008718c.js

139.177.153.13

200 OK

15 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0b99a6.8008718c.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (21642), with no line terminators
Size
15 kB (14922 bytes)
Hash
0dfe8e5a0e4a6fc1987f206f6d2141ab
78f3e89569441f9d54779629b193bd5f1a284c7b
46bd602cffbc95d43c62d43d2e512d78fee3a2d60a7d25b284455d2f1a5c883a

HTTP Headers

GET /js/chunk-2d0b99a6.8008718c.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-5b35"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

iapi.bbapdefault.com/v1/match/getList

147.78.121.230

200

2.5 kB

URL POST HTTP/1.1
iapi.bbapdefault.com/v1/match/getList
IP
147.78.121.230:443
ASN
#30823 combahton GmbH

Requested by
https://www.bty6120.com/
Certificate
IssuerLet's Encrypt
Subjectiapi.bbapdefault.com
Fingerprint21:F6:71:F7:B6:42:0D:45:F3:3F:00:5B:F8:C3:F8:06:8E:D8:AB:2C
ValiditySat, 29 Apr 2023 08:43:42 GMT - Fri, 28 Jul 2023 08:43:41 GMT

File type
JSON data\012- , ASCII text, with very long lines (11008), with no line terminators
Size
2.5 kB (2504 bytes)
Hash
af30b76b3bc25a379b780d80d79906bd
fd83615b4d0f0dd5891c62e1faa0fcf108d2b388
c24be2e705491f13a9fcfc0a3c868ae17ce213de077b1717ee363e29f33add58

HTTP Headers

POST /v1/match/getList HTTP/1.1
Host: iapi.bbapdefault.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Authorization: 
Content-Length: 79
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: WAF
Date: Wed, 07 Jun 2023 01:56:33 GMT
Content-Type: application/json;charset=UTF-8
Content-Length: 2504
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, PUT, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Set-Cookie: https_waf_cookie=af552d2f-da4a-47ce8cc85f7b44a16146ff8a3d9c953258b6; Expires=1686110192; Path=/; Secure; HttpOnly
JSESSIONID=377B8948816C466600B7B886694AAF9A; Path=/; HttpOnly
Content-Encoding: gzip
X-Request-Id: c3362af39a93b5fded073f8dd29ffeec

www.bty6120.com/js/chunk-2d0c85dc.be793d2b.js

139.177.153.13

234 B

URL
www.bty6120.com/js/chunk-2d0c85dc.be793d2b.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with no line terminators
Size
234 B (234 bytes)
Hash
56baa43050289d14f96792455e485568
c4df9c7ab5d4c58fa60e244db6c00fb39fbb96e5
fa77b3e11d6f813f021fa2523cd4e7d605f20d4ed867dd8ee54ebe3dcc8b1a19

HTTP Headers

GET /js/chunk-2d0c85dc.be793d2b.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 234
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: "647a2b24-ea"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
accept-ranges: bytes
X-Firefox-Spdy: h2

zerossl.ocsp.sectigo.com/

104.18.14.101

727 B

URL
zerossl.ocsp.sectigo.com/
IP
104.18.14.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
fc84e0f20a26b626e5f3d45b0a3827f2
f424d4e0bd41c50bd5f1b4d12a4e6da18ae7034a
2cc7ecd330c583149065356168afc9df528ec8bfa84cbe3296135fa7f1698bfe

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 07 Jun 2023 01:56:33 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 05 Jun 2023 03:06:58 GMT
Expires: Mon, 12 Jun 2023 03:06:57 GMT
Etag: "f424d4e0bd41c50bd5f1b4d12a4e6da18ae7034a"
Cache-Control: max-age=435808,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d35477ece7a0afa-OSL

ssapi-x.byyw7213hsw15.com/ssapi/anchor/search?pid=zz&matchSource=all&t=1

139.177.153.13

0 B

URL
ssapi-x.byyw7213hsw15.com/ssapi/anchor/search?pid=zz&matchSource=all&t=1
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /ssapi/anchor/search?pid=zz&matchSource=all&t=1 HTTP/1.1
Host: ssapi-x.byyw7213hsw15.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: app-type,country_id,device-id,os-type,sign,timestamp,token,uid,version
Referer: https://www.bty6120.com/
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:33 GMT
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: app-type,country_id,device-id,os-type,sign,timestamp,token,uid,version
access-control-max-age: 2592000
X-Firefox-Spdy: h2

www.bty6120.com/spa/sport-pc/js/chunk-7987d430.js

139.177.153.13

15 kB

URL
www.bty6120.com/spa/sport-pc/js/chunk-7987d430.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with very long lines (31833), with no line terminators
Size
15 kB (14684 bytes)
Hash
4ce2d6b86eb57e10f555f3a3e4279bac
717b60726c1ca9c8560855fe2b88848a167ef5ae
42b6b5f98bbc48a8dc1b1645f02854c18fc1e5eed1a271ff402c12f83ad9dae9

HTTP Headers

GET /spa/sport-pc/js/chunk-7987d430.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 19:06:46 GMT
etag: W/"647a3dc6-7ccb"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0c4607.2664faaa.js

139.177.153.13

89 kB

URL
www.bty6120.com/js/chunk-2d0c4607.2664faaa.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with very long lines (1265), with no line terminators
Size
89 kB (88835 bytes)
Hash
ab93f770d69c92942f3b8cd31bf19065
a07b008a05d6599d78588dc53ca0e8ed0d86de43
c58f2991308d50fae978aae9476d13a18eb952af1c9e4edff64d80773d0b17a4

HTTP Headers

GET /js/chunk-2d0c4607.2664faaa.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:33 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-64e"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/css/chunk-aaa74b08.8ece5c78ebd94398d074.css

139.177.153.13

200 OK

90 kB

URL GET HTTP/2
www.bty6120.com/css/chunk-aaa74b08.8ece5c78ebd94398d074.css
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
90 kB (89952 bytes)
Hash
fa68ade5bd3e1245b5d2ac1d14eda2f5
89ba2dd7386e514602f61d796350bef12f1f4515
baac974a3eacac30aa06cdfbc2d87b4ccf5b328c7ecba35179dbaabe4e620a6c

HTTP Headers

GET /css/chunk-aaa74b08.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-397d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/spa/sport-pc/e99cc6053dcd059fdb41a4e7be28570a.svg

139.177.153.13

200 OK

58 kB

URL GET HTTP/2
www.bty6120.com/spa/sport-pc/e99cc6053dcd059fdb41a4e7be28570a.svg
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (10784), with no line terminators
Size
58 kB (58262 bytes)
Hash
6c8ce79e62d1541dda7e24f8cb4c1b1e
25149ff4e6153f35421e1afff2559a2523706b14
8639b4f86e1b49c7f05660fa3bb6d62291660e18d4b607773e1f1639bedd3e2c

HTTP Headers

GET /spa/sport-pc/e99cc6053dcd059fdb41a4e7be28570a.svg HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/spa/sport-pc/css/chunk-211807a1.css?v=47954f5db41e6f533e00
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:30 GMT
content-type: image/svg+xml
last-modified: Sat, 13 May 2023 01:37:36 GMT
etag: W/"645ee9e0-2a20"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
gp-cache-status: HIT
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/css/chunk-13710dd3.8ece5c78ebd94398d074.css

139.177.153.13

19 kB

URL
www.bty6120.com/css/chunk-13710dd3.8ece5c78ebd94398d074.css
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
gzip compressed data, from Unix\012- data
Size
19 kB (19034 bytes)
Hash
17b6fa97218c96ccd400abf644886f02
fd9979228c3bad75c1057c1082139e1d43c130bd
42a580dfd14b4811ff6867dee7c1d5bce70fe756b8c80477ff8c2d9eace238cc

HTTP Headers

GET /css/chunk-13710dd3.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:28 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-4a3"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/api/forehead/user/title/all/info

139.177.153.13

3.6 kB

URL
www.bty6120.com/api/forehead/user/title/all/info
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (3296), with no line terminators
Size
3.6 kB (3587 bytes)
Hash
c392ce715acaf35a90775b4dc814227d
78a2694db23b5a289d042c7eb714e7d0d2f57992
8fad3463b3044439d47d13cb13a08f2f72bc8377a962f9b82e7a0b27527f2b0b

HTTP Headers

POST /api/forehead/user/title/all/info HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
device-id: PC-sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
os-type: 0
timestamp: 1614999711410
version: 1.0
sign: f7072035954b8ef77d5e788acb365a7f
app-type: 0
country_id: 
uid: 
token: 
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:30 GMT
content-type: application/json;charset=UTF-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/spa/sport-pc/css/chunk-411916a1.css?v=47954f5db41e6f533e00

139.177.153.13

200 OK

11 kB

URL GET HTTP/2
www.bty6120.com/spa/sport-pc/css/chunk-411916a1.css?v=47954f5db41e6f533e00
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
11 kB (10877 bytes)
Hash
420ca96e151f729126fb2dcda448dbd6
d0abf52a34c6feb76c13341dde6121c55af4a8c2
c9563ab3bd1ee538d462d657c98b071f8cd7c98d950df7f2fcbdf60fc69d28eb

HTTP Headers

GET /spa/sport-pc/css/chunk-411916a1.css?v=47954f5db41e6f533e00 HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 19:06:46 GMT
etag: W/"647a3dc6-4055"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0d5fa1.8bb06eff.js

139.177.153.13

193 B

URL
www.bty6120.com/js/chunk-2d0d5fa1.8bb06eff.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with no line terminators
Size
193 B (193 bytes)
Hash
793d0fa3535fc882385799f26ab16812
23f30f4dae869ffa9263e31834f90208011398d4
712adf3944acce1098646400aec6cf099177726ac37657434d8b01698a4f4282

HTTP Headers

GET /js/chunk-2d0d5fa1.8bb06eff.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 193
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: "647a2b24-c1"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
accept-ranges: bytes
X-Firefox-Spdy: h2

static.fastbs66.com/data/dc2019931592d328f28bdcfb9ddcc01b.png

154.197.20.151

17 kB

URL
static.fastbs66.com/data/dc2019931592d328f28bdcfb9ddcc01b.png
IP
154.197.20.151:0
ASN
#0

File type
PNG image data, 400 x 392, 8-bit gray+alpha, non-interlaced\012- data
Size
17 kB (16968 bytes)
Hash
dc2019931592d328f28bdcfb9ddcc01b
b36f90da57830be5c2b2c27dfc36355d295f418b
7d1b1402a3355f7e7adc84399f66b97a0168cc9d73e42b88825fb0a3dd3c4d14

HTTP Headers

GET /data/dc2019931592d328f28bdcfb9ddcc01b.png HTTP/1.1
Host: static.fastbs66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: WAF
Date: Wed, 07 Jun 2023 01:56:34 GMT
Content-Type: application/octet-stream
Content-Length: 16968
Connection: keep-alive
x-amz-id-2: 1Y++pnWdHUisE7tK23BsuGNWNPx3wVFfG3a9N6nVgBRnl2MXizHNXCXgsQfal8DIcyhSmyNKCu4=
x-amz-request-id: GM89ZH7ME45JCPAC
Last-Modified: Sat, 03 Apr 2021 12:20:42 GMT
ETag: "dc2019931592d328f28bdcfb9ddcc01b"
x-amz-version-id: TFmo3GYYaLgWIzh7acf5PzpoTITnmeyN
X-Cache: HIT
X-Cache-Hit: edge
X-Request-Id: ee65d5b0093eeae8319720fbb7737e12
Cache-Control: max-age=864000
Accept-Ranges: bytes

www.bty6120.com/spa/sport-pc/css/chunk-00bba4d2.css?v=47954f5db41e6f533e00

139.177.153.13

623 kB

URL
www.bty6120.com/spa/sport-pc/css/chunk-00bba4d2.css?v=47954f5db41e6f533e00
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
gzip compressed data, from Unix\012- data
Size
623 kB (623095 bytes)
Hash
43944db07d9e6694c687925ff55bc970
075ab9ab0667b72e81f7b6a85b91ffca6c8ed147
bc6df57826f085cb6ea8c41053e1a161af004769de58f3c2972d16fef1733f80

HTTP Headers

GET /spa/sport-pc/css/chunk-00bba4d2.css?v=47954f5db41e6f533e00 HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 19:06:46 GMT
etag: W/"647a3dc6-23ac"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/spa/sport-pc/js/lang-ENG.js

139.177.153.13

636 kB

URL
www.bty6120.com/spa/sport-pc/js/lang-ENG.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with very long lines (16396), with no line terminators
Size
636 kB (636354 bytes)
Hash
cfc17233ada9e10a50794ab7759a998b
6748e5370ffffcbcc5774604899da114f40245d1
5edb9c853f3d02d95a71c3220ac692d20fa1d6cc4221669f1bc4753e7a4a0db6

HTTP Headers

GET /spa/sport-pc/js/lang-ENG.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 19:06:46 GMT
etag: W/"647a3dc6-56e6"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0ab317.44339492.js

139.177.153.13

7.7 kB

URL
www.bty6120.com/js/chunk-2d0ab317.44339492.js
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
Unicode text, UTF-8 text, with very long lines (3422), with no line terminators
Size
7.7 kB (7655 bytes)
Hash
e4a180b51e327ba441f5a3b157f376bb
1f11542daaaed56d16421452aa7e79d0c58c6a53
49aca2f053868662e3b324c9beb697c6142967041f78bdb6df0eef9a8bd97e34

HTTP Headers

GET /js/chunk-2d0ab317.44339492.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:30 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-1f8e"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

ssapi-x.byyw7213hsw15.com/ssapi/anchor/search?pid=zz&matchSource=all&t=1

139.177.153.13

3.4 kB

URL
ssapi-x.byyw7213hsw15.com/ssapi/anchor/search?pid=zz&matchSource=all&t=1
IP
139.177.153.13:0
ASN
#2914 NTT-LTD-2914

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (18391), with no line terminators
Size
3.4 kB (3374 bytes)
Hash
a6127d3acc019add6ff106666b1deefa
723ff3944d246d0d045b421ec1693cfdc23ec459
03196cb0aaf26eb3162a0b240c206d6ca725a9ec9e9ec97e6ec372a9839c0e33

HTTP Headers

GET /ssapi/anchor/search?pid=zz&matchSource=all&t=1 HTTP/1.1
Host: ssapi-x.byyw7213hsw15.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
device-id: PC-sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
os-type: 0
timestamp: 1614999711410
version: 1.0
sign: f7072035954b8ef77d5e788acb365a7f
app-type: 0
country_id: 
uid: 
token: 
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:34 GMT
content-type: application/json; charset=utf-8
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
etag: W/"4b01-cj/zlE0kbQ0EW0IewWk8/cI+xFk"
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET,POST,OPTIONS
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0c22e5.2102ce73.js

139.177.153.13

200 OK

95 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0c22e5.2102ce73.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (1478), with no line terminators
Size
95 kB (95092 bytes)
Hash
eb43fc523e738c146c6b9c93133af485
58a297787a2bfb1dc82cf0b415c67f9582cf392a
7c1cd8c39bdddbb4f91b83defc301653aa9249d0a64f8c74b5dbdf844b7d5fb2

HTTP Headers

GET /js/chunk-2d0c22e5.2102ce73.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-78c"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/css/chunk-480dd86a.8ece5c78ebd94398d074.css

139.177.153.13

200 OK

2.1 kB

URL GET HTTP/2
www.bty6120.com/css/chunk-480dd86a.8ece5c78ebd94398d074.css
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (2129), with no line terminators
Size
2.1 kB (2109 bytes)
Hash
86a778339f16b44650741678546dfde3
cf88877f574cc563e9858469ea1be0f33234c3f6
937cfc387a849bc6bdb70fea453a7ea552981435c978f520dd632cf1355270b5

HTTP Headers

GET /css/chunk-480dd86a.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:28 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-83d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d20f558.03553899.js

139.177.153.13

200 OK

1.8 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d20f558.03553899.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (1985), with no line terminators
Size
1.8 kB (1803 bytes)
Hash
274ef034fef76e914ab87a660ce25770
f32e02dfbc4f21a8f8894f70d98406c9696b9fc5
b38ef104a13e9e34622c608b52d533455a561f833e414be7f60b3e9ae91b367d

HTTP Headers

GET /js/chunk-2d20f558.03553899.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-70b"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0af42a.212cc0f0.js

139.177.153.13

200 OK

23 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0af42a.212cc0f0.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type

Size
23 kB (22677 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/chunk-2d0af42a.212cc0f0.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:31 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-5895"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

static.fastbs66.com/4d281d91c381f011e8527a1aee6dd68b.png

0.0.0.0

0 B

URL GET
static.fastbs66.com/4d281d91c381f011e8527a1aee6dd68b.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.bty6120.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /4d281d91c381f011e8527a1aee6dd68b.png HTTP/1.1
Host: static.fastbs66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

www.bty6120.com/css/chunk-51579795.8ece5c78ebd94398d074.css

139.177.153.13

200 OK

16 kB

URL GET HTTP/2
www.bty6120.com/css/chunk-51579795.8ece5c78ebd94398d074.css
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (16523), with no line terminators
Size
16 kB (16523 bytes)
Hash
69315979cd72d5bc2c353e8ebe004854
479b39f928f40fa5fae0d45b82ad1b649a3d42db
ccb708c5fcb0f145f3e63bfb3be19d182fc7b9de7da072a806697a27b4038a28

HTTP Headers

GET /css/chunk-51579795.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:28 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-408b"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/css/chunk-847f2c52.8ece5c78ebd94398d074.css

139.177.153.13

200 OK

2.6 kB

URL GET HTTP/2
www.bty6120.com/css/chunk-847f2c52.8ece5c78ebd94398d074.css
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (2600), with no line terminators
Size
2.6 kB (2586 bytes)
Hash
19a93da63f523c6eb4ea63acd759cbbd
f90959d4f8f37d78c56ad21affb9a6c935bd59ba
42b281a58acc5abe9a6140ff84ecd6bffb52a9f1481cb2b7b5a037591d820f65

HTTP Headers

GET /css/chunk-847f2c52.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:28 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-a1a"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0ac98d.1f30e7f2.js

139.177.153.13

200 OK

3.1 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0ac98d.1f30e7f2.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (3273), with no line terminators
Size
3.1 kB (3092 bytes)
Hash
5a709927ed6c6657b281515245a9e61b
c68c9a10abf2b30774138f2f6aadcaad4c040d65
12813e0b1d6a26d44d2a29fc07fdeb29488431513f43899a4f95fdd82215a689

HTTP Headers

GET /js/chunk-2d0ac98d.1f30e7f2.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:31 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-c14"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/spa/sport-pc/js/chunk-vendors.js?v=2023633646

139.177.153.13

200 OK

707 kB

URL GET HTTP/2
www.bty6120.com/spa/sport-pc/js/chunk-vendors.js?v=2023633646
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type

Size
707 kB (707365 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /spa/sport-pc/js/chunk-vendors.js?v=2023633646 HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:26 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 19:06:46 GMT
etag: W/"647a3dc6-acb25"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/dc51e397851b2560fdb62cb40c3daa07.svg

139.177.153.13

200 OK

2.7 kB

URL GET HTTP/2
www.bty6120.com/dc51e397851b2560fdb62cb40c3daa07.svg
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2703), with no line terminators
Size
2.7 kB (2652 bytes)
Hash
fa82f95c2cd01e7c4b3007b087f5a388
6afc1605300e88fbcfa99c03b61825023b883371
ec8906f817c2c6f93ade2f69c6ed4adf47013e4aaa6a47d8fb83fde9f04d99ad

HTTP Headers

GET /dc51e397851b2560fdb62cb40c3daa07.svg HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: image/svg+xml
last-modified: Wed, 24 May 2023 21:59:16 GMT
etag: W/"646e88b4-a5c"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
gp-cache-status: HIT
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/spa/sport-pc/css/chunk-7987d430.css?v=47954f5db41e6f533e00

139.177.153.13

200 OK

5.4 kB

URL GET HTTP/2
www.bty6120.com/spa/sport-pc/css/chunk-7987d430.css?v=47954f5db41e6f533e00
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (5573), with no line terminators
Size
5.4 kB (5449 bytes)
Hash
4063affb2fb1a616b823f4be90f3950b
9b8da390785589c5b78321d00a8d44f59363f7b7
c1ba045b9a018414da80ad4dbbecedb4baec96ad3d1c707ee35ac231809236c0

HTTP Headers

GET /spa/sport-pc/css/chunk-7987d430.css?v=47954f5db41e6f533e00 HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 19:06:46 GMT
etag: W/"647a3dc6-1549"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0c80f2.e9b16237.js

0.0.0.0

0 B

URL GET
www.bty6120.com/js/chunk-2d0c80f2.e9b16237.js
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.bty6120.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/chunk-2d0c80f2.e9b16237.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

www.bty6120.com/api/forehead/live/get/switch/from/proxy

139.177.153.13

200 OK

37 B

URL POST HTTP/2
www.bty6120.com/api/forehead/live/get/switch/from/proxy
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Size
37 B (37 bytes)
Hash
3e65c5638ebdab49d6fb4b63ffe4e339
978c408cadf34ad0a4a491d85c0e770583673e59
52d489c8833e660c2551aeecd07dfb93a4171ed0fd9c42658e958a48ddfc9a26

HTTP Headers

POST /api/forehead/live/get/switch/from/proxy HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
device-id: PC-sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
os-type: 0
timestamp: 1614999711410
version: 1.0
sign: f7072035954b8ef77d5e788acb365a7f
app-type: 0
country_id: 
uid: 
token: 
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/json
content-length: 37
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0bfec6.87d63fe3.js

139.177.153.13

200 OK

16 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0bfec6.87d63fe3.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (8862), with no line terminators
Size
16 kB (15964 bytes)
Hash
c9260d48064b88d8cb2b7f1fdff8f790
8ed6520bcb106e0cfe5418837b3ac77b9d22a7c8
83e249af9a380004e1d3feadf3ffe28b85d10e945dea53bc12055b9fdd3303cd

HTTP Headers

GET /js/chunk-2d0bfec6.87d63fe3.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-3e5c"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/css/chunk-3e544a51.8ece5c78ebd94398d074.css

139.177.153.13

200 OK

1.2 kB

URL GET HTTP/2
www.bty6120.com/css/chunk-3e544a51.8ece5c78ebd94398d074.css
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (1254), with no line terminators
Size
1.2 kB (1240 bytes)
Hash
325807b992015a8fe2ea535c9da90d4f
eace5e6044c5c41c95d2e6deeb168939b868b52b
4b5d1bf96265a202b4af2af9abad27f89e0a2178e60ee4fbcb85ce88cb1d2c84

HTTP Headers

GET /css/chunk-3e544a51.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:28 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-4d8"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/manifest/zz/icons/apple-touch-icon-152x152.png

139.177.153.13

200 OK

85 kB

URL GET HTTP/2
www.bty6120.com/manifest/zz/icons/apple-touch-icon-152x152.png
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
PNG image data, 456 x 456, 8-bit/color RGBA, non-interlaced\012- data
Size
85 kB (84924 bytes)
Hash
55229d7c71d0d6e5a947f80a9a4fe9cd
2a0a36472e5c7f9baa8c9c0e5ebd90b5bab2993f
16acd217f014646f310f910adc38a82e51066888b6cb0fd53b4296d0ed6e9c9e

HTTP Headers

GET /manifest/zz/icons/apple-touch-icon-152x152.png HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:26 GMT
content-type: image/png
last-modified: Wed, 24 May 2023 21:59:16 GMT
etag: W/"646e88b4-14bbc"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0b5f5a.df1beba5.js

139.177.153.13

200 OK

3.2 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0b5f5a.df1beba5.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (3007), with no line terminators
Size
3.2 kB (3233 bytes)
Hash
77d9311ae2470c0befcbfd45c1bae104
5b77cb74d7cddac66b85727de053b51a08130c2d
a1e88f763d5d8ce57a69439cdee067f353018e34998c85a3e8faac1cc9b86dd4

HTTP Headers

GET /js/chunk-2d0b5f5a.df1beba5.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:31 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-ca1"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0b9219.97345499.js

139.177.153.13

200 OK

76 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0b9219.97345499.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type

Size
76 kB (76391 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/chunk-2d0b9219.97345499.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-12a67"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

acstatic-dun.126.net/tool.min.js?t=2023060706

47.246.44.228

200 OK

5.2 kB

URL GET HTTP/1.1
acstatic-dun.126.net/tool.min.js?t=2023060706
IP
47.246.44.228:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://www.bty6120.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subject*.126.net
Fingerprint90:3C:B2:B5:8E:07:82:A6:E7:A9:C9:9C:43:C1:CF:3A:52:FE:35:82
ValidityMon, 28 Nov 2022 00:00:00 GMT - Fri, 08 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (5320), with no line terminators
Size
5.2 kB (5168 bytes)
Hash
4af5c04a2559f234d3aff8a4265534eb
9d6ef6f0e8a087623fec98aa0292b36d300696cb
ffe2d59614f75160b2d8321260f789e27be5988c377d836b90458d26686ab64c

HTTP Headers

GET /tool.min.js?t=2023060706 HTTP/1.1
Host: acstatic-dun.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript
Content-Length: 2560
Connection: keep-alive
Date: Tue, 06 Jun 2023 15:16:43 GMT
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *, *
Cache-Control: max-age=300
Expires: Tue, 14 Feb 2023 15:13:22 GMT
Last-Modified: Mon, 31 Oct 2022 09:36:46 GMT
Vary: Accept-Encoding
Ali-Swift-Global-Savetime: 1686064603
Via: cache70.l2nu20-8[61,61,304-0,H], cache30.l2nu20-8[63,0], cache30.l2hk2[0,0,304-0,H], cache6.l2hk2[2,0], cache3.l2de2[1740,187,304-0,C], cache21.l2de2[190,0], cache8.se1[0,0,200-0,H], cache4.se1[1,0]
Content-Encoding: gzip
Age: 38383
X-Cache: HIT TCP_MEM_HIT dirn:1:201716532
X-Swift-SaveTime: Tue, 06 Jun 2023 15:16:44 GMT
X-Swift-CacheTime: 43199
Access-Control-Allow-Methods: GET,POST,OPTIONS,HEAD
Access-Control-Expose-Headers: *
EagleId: 2ff62c9816861029864626608e

ac.dun.163.com/v2/config/js?pn=YD00152530895826&cvk=&cb=__wmjsonp_7b400590&t=1686102986356

0.0.0.0

0 B

URL GET
ac.dun.163.com/v2/config/js?pn=YD00152530895826&cvk=&cb=__wmjsonp_7b400590&t=1686102986356
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.bty6120.com/
Certificate
IssuerDigiCert Inc
Subject*.dun.163.com
Fingerprint22:2C:F0:B5:D1:08:C2:A7:BF:D6:63:1B:B7:F1:3A:54:08:33:42:3C
ValidityTue, 02 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v2/config/js?pn=YD00152530895826&cvk=&cb=__wmjsonp_7b400590&t=1686102986356 HTTP/1.1
Host: ac.dun.163.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Jun 2023 01:56:27 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip

www.bty6120.com/spa/sport-pc/js/chunk-411916a1.js

139.177.153.13

200 OK

216 kB

URL GET HTTP/2
www.bty6120.com/spa/sport-pc/js/chunk-411916a1.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type

Size
216 kB (215586 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /spa/sport-pc/js/chunk-411916a1.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 19:06:46 GMT
etag: W/"647a3dc6-34a22"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0ce76e.afc68460.js

0.0.0.0

0 B

URL GET
www.bty6120.com/js/chunk-2d0ce76e.afc68460.js
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.bty6120.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/chunk-2d0ce76e.afc68460.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

www.bty6120.com/spa/sport-pc/js/chunk-00bba4d2.js

139.177.153.13

200 OK

31 kB

URL GET HTTP/2
www.bty6120.com/spa/sport-pc/js/chunk-00bba4d2.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type

Size
31 kB (30719 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /spa/sport-pc/js/chunk-00bba4d2.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 19:06:46 GMT
etag: W/"647a3dc6-77ff"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0bcdaa.c29f2eef.js

139.177.153.13

200 OK

3.6 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0bcdaa.c29f2eef.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (2133), with no line terminators
Size
3.6 kB (3551 bytes)
Hash
ad35fb53a59ab8c767f6287a71430b8e
cd7d6ca86206dd8e6aeb44fe38751a4fe6ca18f2
01cca893cf65a7580e549779a68aadc5d79a748d1eeab69e1251fe80910de75d

HTTP Headers

GET /js/chunk-2d0bcdaa.c29f2eef.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-ddf"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0afdf0.3e44e43f.js

139.177.153.13

200 OK

13 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0afdf0.3e44e43f.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (8439), with no line terminators
Size
13 kB (12941 bytes)
Hash
220c09be5552f89eaacb7b25b680c9f3
66a0c8abc9a1d750c8cbc56a41d0123721099b85
24cb45d2a85f459ff123bd5b1e3fd4e7c73e871dc9ede2fa765be8ffefe1be4c

HTTP Headers

GET /js/chunk-2d0afdf0.3e44e43f.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:31 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-328d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/dll/vendor_dll.js

139.177.153.13

200 OK

531 kB

URL GET HTTP/2
www.bty6120.com/dll/vendor_dll.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type

Size
531 kB (530836 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dll/vendor_dll.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:23 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-81994"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0ae557.3d65144c.js

139.177.153.13

200 OK

3.0 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0ae557.3d65144c.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (2239), with no line terminators
Size
3.0 kB (3007 bytes)
Hash
969d93083695e6825bddd46cbe3d25af
76451fe8a3b92a8e95c4ee7242d81c6557e76189
9369f4ff8fda07f60f3eaf17972374729279ac52deb87a532b4ebbd6d12cb439

HTTP Headers

GET /js/chunk-2d0ae557.3d65144c.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:31 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-bbf"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

static.fastbs66.com/data/26e943b9fd5346c7b22655520be353b.png

0.0.0.0

0 B

URL GET
static.fastbs66.com/data/26e943b9fd5346c7b22655520be353b.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.bty6120.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /data/26e943b9fd5346c7b22655520be353b.png HTTP/1.1
Host: static.fastbs66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

www.bty6120.com/css/chunk-vendors.8ece5c78ebd94398d074.css

139.177.153.13

200 OK

152 kB

URL GET HTTP/2
www.bty6120.com/css/chunk-vendors.8ece5c78ebd94398d074.css
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
152 kB (152092 bytes)
Hash
cc13c3056bd6b10d61ba467f8982d1c6
530c4de0c2644d3707daf03981b79776756a284d
77055f0461c5ced5487b020d09111cd5a0a3305803a1bf6c616ac1ba5ab4dbae

HTTP Headers

GET /css/chunk-vendors.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:23 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-2521c"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/68a60a3a8014797e5b7f341405b0cd5e.svg

139.177.153.13

200 OK

17 kB

URL GET HTTP/2
www.bty6120.com/68a60a3a8014797e5b7f341405b0cd5e.svg
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (10834)
Size
17 kB (16635 bytes)
Hash
68a60a3a8014797e5b7f341405b0cd5e
e882d77bb4677b222f13abe953509a331fbe45c8
4bddf70225667ba9d569cfda87a9ae15b74bd76639bf1ffd86b22ed840efc564

HTTP Headers

GET /68a60a3a8014797e5b7f341405b0cd5e.svg HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: image/svg+xml
last-modified: Wed, 24 May 2023 21:59:16 GMT
etag: W/"646e88b4-40fb"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
gp-cache-status: HIT
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/api/forehead/gamebet/game/maintenList

139.177.153.13

200 OK

12 kB

URL POST HTTP/2
www.bty6120.com/api/forehead/gamebet/game/maintenList
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type

Size
12 kB (11730 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/forehead/gamebet/game/maintenList HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
device-id: PC-sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
os-type: 0
timestamp: 1686102989761
version: 1.9.0
sign: 744833565b22e9e40b6a8898f875e31a
app-type: 0
pid: zz
language: en
Origin: https://www.bty6120.com
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:30 GMT
content-type: application/json;charset=UTF-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

static.fastbs66.com/9c35e36b327d3a9973d9024b36d8b8a.jpeg

0.0.0.0

0 B

URL GET
static.fastbs66.com/9c35e36b327d3a9973d9024b36d8b8a.jpeg
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.bty6120.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /9c35e36b327d3a9973d9024b36d8b8a.jpeg HTTP/1.1
Host: static.fastbs66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

www.bty6120.com/css/chunk-4a27ca34.8ece5c78ebd94398d074.css

139.177.153.13

200 OK

3.4 kB

URL GET HTTP/2
www.bty6120.com/css/chunk-4a27ca34.8ece5c78ebd94398d074.css
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (3415), with no line terminators
Size
3.4 kB (3393 bytes)
Hash
b1e9dac8e8a36ec07843c76e425b8949
31a27a530ce2a4b0e15f2ee2e81e8612aaf57117
f937d8b61eb68c40e56e1f8b34702ac899450e00ca121d613d61339c10e635cd

HTTP Headers

GET /css/chunk-4a27ca34.8ece5c78ebd94398d074.css HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:28 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-d41"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-1a493180.9efde01a.js

139.177.153.13

200 OK

90 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-1a493180.9efde01a.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type

Size
90 kB (89787 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/chunk-1a493180.9efde01a.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-15ebb"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0a3553.1540d441.js

139.177.153.13

200 OK

2.7 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0a3553.1540d441.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (1916), with no line terminators
Size
2.7 kB (2692 bytes)
Hash
d3949a1e37d6c7c06261dd9fc40c92ce
e25bd74515ebe119c556d254ba46ce6439951ab9
da4579820a530393de331343e7a97535b7bc53057b0e4a54f8262b3a924133ac

HTTP Headers

GET /js/chunk-2d0a3553.1540d441.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-a84"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/api/forehead/system/file/get/643b84eb7adc213d08adfab6.png

139.177.153.13

200 OK

774 kB

URL GET HTTP/2
www.bty6120.com/api/forehead/system/file/get/643b84eb7adc213d08adfab6.png
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
PNG image data, 2560 x 760, 8-bit colormap, non-interlaced\012- data
Size
774 kB (773934 bytes)
Hash
093e507fa3bcc315868dd451cd908b8f
9c8ac48d7e4703fa18edf44059454834e5f40230
5c44f16059943bbe907f1a6120ae041df9cec36e898a26aa8b5e5d1d0e57b20d

HTTP Headers

GET /api/forehead/system/file/get/643b84eb7adc213d08adfab6.png HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:30 GMT
content-type: image/png
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2

www.bty6120.com/api/forehead/system/file/get/63f9ab23d47083293a7171a4.png

139.177.153.13

200 OK

626 kB

URL GET HTTP/2
www.bty6120.com/api/forehead/system/file/get/63f9ab23d47083293a7171a4.png
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
PNG image data, 2561 x 761, 8-bit colormap, non-interlaced\012- data
Size
626 kB (626281 bytes)
Hash
cf0405a898f8a38d6a732583555ccb6e
36d73c57e5e1768fd31fe7df90fd9cfbd3660daf
4870198f9f9e4b425c04d7e9fdac6fc688a3989ab0c71bb6f0872d2b98d15fa9

HTTP Headers

GET /api/forehead/system/file/get/63f9ab23d47083293a7171a4.png HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:30 GMT
content-type: image/png
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0b95e9.69d3ff26.js

139.177.153.13

200 OK

2.2 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0b95e9.69d3ff26.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (2026), with no line terminators
Size
2.2 kB (2200 bytes)
Hash
040b8a127b190345a978f8122d5b66f2
b8645d80b54ac8f9c3dc2cabf6c3326f8ddbe86c
87c81194017e515f5577d9d3ad7b125e4a475e140b0dccea13388fbb205d094f

HTTP Headers

GET /js/chunk-2d0b95e9.69d3ff26.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-898"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/3e8e39a5a3318f5c7f2b06f9527b7bd1.svg

139.177.153.13

200 OK

285 B

URL GET HTTP/2
www.bty6120.com/3e8e39a5a3318f5c7f2b06f9527b7bd1.svg
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (313), with no line terminators
Size
285 B (285 bytes)
Hash
f45e691a0d34a3d20effa2e9549b33d7
c26409b1d5c36d2705b30141463af6d93e847fc3
47213a8ba416a72a74d0664ffc66a95372a1e168f9c834c6668d494fda3cb3a6

HTTP Headers

GET /3e8e39a5a3318f5c7f2b06f9527b7bd1.svg HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:29 GMT
content-type: image/svg+xml
content-length: 285
last-modified: Wed, 24 May 2023 21:59:14 GMT
etag: "646e88b2-11d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
gp-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

push6.bsportpush.com/

43.155.16.88

101 Switching Protocols

0 B

URL GET HTTP/1.1
push6.bsportpush.com/
IP
43.155.16.88:443
ASN
#132203 Tencent Building, Kejizhongyi Avenue

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbsportpush.com
FingerprintB2:FF:CB:7C:52:89:08:7C:01:A0:24:82:19:9D:0E:4F:E1:73:CC:E4
ValidityWed, 26 Apr 2023 00:00:00 GMT - Tue, 25 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push6.bsportpush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.bty6120.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fA06R+1cWcXUwFjkvp4jKQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: openresty/1.21.4.7
Date: Wed, 07 Jun 2023 01:56:31 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y5eca9Wx4TYA5xuu86btj8pOnl8=

www.bty6120.com/js/chunk-2d0ac571.20298a4a.js

139.177.153.13

200 OK

2.0 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0ac571.20298a4a.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (2115), with no line terminators
Size
2.0 kB (1990 bytes)
Hash
70c41914837c80f7fb5664c8e5e41dce
32c8b325c29e29a9bdd0e16dcd1ff408781ff9ba
8e1e44a222d11fda2291a615be6d008b4d19be81907ffc81bcdc82fbfd2be67d

HTTP Headers

GET /js/chunk-2d0ac571.20298a4a.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:31 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-7c6"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0ba0be.09c1b268.js

139.177.153.13

200 OK

99 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0ba0be.09c1b268.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type

Size
99 kB (98641 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/chunk-2d0ba0be.09c1b268.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-18151"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0c0695.8ad6dd55.js

139.177.153.13

200 OK

12 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0c0695.8ad6dd55.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type

Size
12 kB (11859 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/chunk-2d0c0695.8ad6dd55.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-2e53"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

www.bty6120.com/js/chunk-2d0c73fa.c3e0bf02.js

139.177.153.13

200 OK

1.3 kB

URL GET HTTP/2
www.bty6120.com/js/chunk-2d0c73fa.c3e0bf02.js
IP
139.177.153.13:443
ASN
#2914 NTT-LTD-2914

Requested by
https://www.bty6120.com/
Certificate
IssuerZeroSSL
Subjectbty6120.com
Fingerprint2A:34:28:57:00:2E:EA:86:5D:20:3F:40:94:37:9D:7B:7D:38:DE:7B
ValidityMon, 22 May 2023 00:00:00 GMT - Sun, 20 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (1331), with no line terminators
Size
1.3 kB (1265 bytes)
Hash
4ee3d8ecc42cf18c8f6c09737f102fcf
f5d78ea12b5520cc76342de07485a4224e1b3693
68e85b9104955b917434597144f0190b88d95579836514763488986d7114ee30

HTTP Headers

GET /js/chunk-2d0c73fa.c3e0bf02.js HTTP/1.1
Host: www.bty6120.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.bty6120.com/
Cookie: WM_NI=2qe%2FYELjxNYu0e94UBehl0v8IIX%2BkJKGyCIauESFvD9kuLdJ%2FY8PQ33G%2BLyZFwMOdRgoqGAlzdOxVOgkbIFb9E%2Fi4KBqmFXvHIWhiot3Ehvjuc9PGmD2zodGehBMrSszQm4%3D; WM_NIKE=9ca17ae2e6ffcda170e2e6ee84cf7bb3a7c0d9ce64a1b88eb7c84a968a9ab0c8618a92ae8deb5cafbe8cb8d72af0fea7c3b92af2afabd0dc4f90b6b8afdc7ff4bbf7d5d84aa7b8a4d1f5348b9798ccea428999b7a4cc6bb79b9da7f550fbb5bbade742ed87f8b1d439f199e5adfc5286a983b0e75aa5b1bfa8c468babc8199d545a5b5aeaac56afb9be18ab74182afa3a7db7e8c979989ec65b8ed8b89f562b7bdf7b1c66788eeb690e74da7b88eaef159b1a69f8eb737e2a3; WM_TID=sliIlSY5Pz5BRVEQFUOExMILllfmbWHX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.7
date: Wed, 07 Jun 2023 01:56:33 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Jun 2023 17:47:16 GMT
etag: W/"647a2b24-4f1"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,os_type,device_id,timestamp,uid,version,sign,token,proxy
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML