r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2884
Expires: Fri, 27 Jan 2023 03:35:15 GMT
Date: Fri, 27 Jan 2023 02:47:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3828
Expires: Fri, 27 Jan 2023 03:50:59 GMT
Date: Fri, 27 Jan 2023 02:47:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 02:42:58 GMT
content-type: application/json
age: 253
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5201
Expires: Fri, 27 Jan 2023 04:13:52 GMT
Date: Fri, 27 Jan 2023 02:47:11 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: r0Nc0nAOizY//HVzqMPY6suHr7NGTJbjpkTrnpc2IomFU3mCl+sMSt8Bo4VN0iE8cupxUlicdig=
x-amz-request-id: VZK3S4JFT394P9WV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 02:20:21 GMT
age: 1610
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ahngbbs.com/jdr
154.37.8.105301 Moved Permanently 0 B IP 154.37.8.105:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jdr HTTP/1.1
Host: ahngbbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Server: Microsoft-IIS/7.5
Location: http://www.ahngbbs.com/
Content-Type: text/html
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:11 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 01:49:02 GMT
age: 3489
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ahngbbs.com/
154.37.8.105200 OK 329 B IP 154.37.8.105:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators
Hash 44bcd68a047d09c88febaebca142c90a
5a6eeddbd1150971a8411b9495a54a1fba3f1b23
874edc315f6d4d3ba2e42dd97fbf8dd0db39a9f117bf2f744aabcb6bbb584795
GET / HTTP/1.1
Host: www.ahngbbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 02:47:11 GMT
Content-Length: 329
Content-Type: text/html
Server: Microsoft-IIS/7.5
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21326
Expires: Fri, 27 Jan 2023 08:42:38 GMT
Date: Fri, 27 Jan 2023 02:47:12 GMT
Connection: keep-alive
www.ahngbbs.com/tj.js
154.37.8.105200 OK 520 B IP 154.37.8.105:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type ASCII text, with CRLF line terminators
Hash 331af4bf2c48e8ffc1231485845ba238
b017fe6b9c918b601840d76451c067156127215c
51b4c6a64df351ae49720615fdb75ea670ab3bbbdc8fb49e0ca0574307fa189a
GET /tj.js HTTP/1.1
Host: www.ahngbbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ahngbbs.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 02:47:11 GMT
Content-Length: 520
Content-Type: application/x-javascript
Server: Microsoft-IIS/7.5
www.ahngbbs.com/common.js
154.37.8.105200 OK 1.3 kB URL HTTP/1.1 www.ahngbbs.com/common.js
IP 154.37.8.105:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type HTML document text\012- HTML document, ASCII text, with very long lines (1293), with no line terminators
Hash ce1b6c7ef5414219b1a3b83a568b3baf
38ea48d5576c50d6ffb3cc424eaa8b06fec18ec3
9ce07d98567ae85d0f38882f69956b3252317e892e52ae752187534ae0db6b97
GET /common.js HTTP/1.1
Host: www.ahngbbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ahngbbs.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 02:47:11 GMT
Content-Length: 1293
Content-Type: application/x-javascript
Server: Microsoft-IIS/7.5
push.services.mozilla.com/
52.43.228.5101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.228.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ra2NO+yRse9N6lO9rX0QmQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fYl/zbzmJQWx2mfzQ9zMYMaI+cU=
www.ahngbbs.com/favicon.ico
154.37.8.105200 OK 0 B URL HTTP/1.1 www.ahngbbs.com/favicon.ico
IP 154.37.8.105:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.ahngbbs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ahngbbs.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 02:47:11 GMT
Content-Length: 0
Content-Type: image/x-icon
Server: Microsoft-IIS/7.5
ocsp.globalsign.com/gsrsaovsslca2018
151.101.2.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.2.133:0
Hash 123f4b3a512c47c6625651b68211ee1c
027a6c7a8ff3f1dbce257834a230e239e60e1327
d188595aca6b1b893291b8106a81bc9b840b9969da8ee659d02466f23fd8d50b
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Mon, 30 Jan 2023 23:51:31 GMT
ETag: "027a6c7a8ff3f1dbce257834a230e239e60e1327"
Last-Modified: Thu, 26 Jan 2023 23:51:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 02:47:12 GMT
Age: 2646
X-Served-By: cache-qpg1274-QPG, cache-bma1627-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 11, 4
X-Timer: S1674787633.739933,VS0,VE0
ocsp.globalsign.com/gsrsaovsslca2018
151.101.2.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.2.133:0
Hash 123f4b3a512c47c6625651b68211ee1c
027a6c7a8ff3f1dbce257834a230e239e60e1327
d188595aca6b1b893291b8106a81bc9b840b9969da8ee659d02466f23fd8d50b
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Mon, 30 Jan 2023 23:51:31 GMT
ETag: "027a6c7a8ff3f1dbce257834a230e239e60e1327"
Last-Modified: Thu, 26 Jan 2023 23:51:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 02:47:12 GMT
Age: 2646
X-Served-By: cache-qpg1274-QPG, cache-bma1627-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 11, 5
X-Timer: S1674787633.749187,VS0,VE0
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f55d31a574c22387d508d7dd65b3972d
90bd7217fa8798ab90bfa03946cb5e9add9364be
49406c6b31b386256fc152bff79cee01e5ba0f4db2b95c24fa82f4b66f8f881e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49406C6B31B386256FC152BFF79CEE01E5BA0F4DB2B95C24FA82F4B66F8F881E"
Last-Modified: Thu, 26 Jan 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21554
Expires: Fri, 27 Jan 2023 08:46:26 GMT
Date: Fri, 27 Jan 2023 02:47:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11351
Expires: Fri, 27 Jan 2023 05:56:24 GMT
Date: Fri, 27 Jan 2023 02:47:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12775
Expires: Fri, 27 Jan 2023 06:20:08 GMT
Date: Fri, 27 Jan 2023 02:47:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11351
Expires: Fri, 27 Jan 2023 05:56:24 GMT
Date: Fri, 27 Jan 2023 02:47:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12775
Expires: Fri, 27 Jan 2023 06:20:08 GMT
Date: Fri, 27 Jan 2023 02:47:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11351
Expires: Fri, 27 Jan 2023 05:56:24 GMT
Date: Fri, 27 Jan 2023 02:47:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:59:56 GMT
age: 17237
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23169a26-33f3-4f92-9612-02bf2555d37c.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23169a26-33f3-4f92-9612-02bf2555d37c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d2506ac511dfbea29e29ab14ba10f85
b2e2972ffa82b103c62ffde0fca99454e12d95e6
fbe6f833114208d84033ba691a74da18d641e38f0f327c752333a339f1baae34
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23169a26-33f3-4f92-9612-02bf2555d37c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5263
x-amzn-requestid: ea2f25ff-f62a-4850-a9d1-72f26d817faf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLzOkGtWoAMFV0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce325d-39e5ed054ead447d3cedf047;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:08:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BcMB1y0etnIGvZr54EllkdEOlahZGTjgrw2-3FYu3WET2f5lDLV1dw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:24:02 GMT
age: 19391
etag: "b2e2972ffa82b103c62ffde0fca99454e12d95e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 869cdfba2637cc932ce387317a3c485e
51d87a5223d87c959bf27b2a825dce0a28f52ada
6dc4247dd3110836195f9962463bd8265be89633e9e589bf19955991751c26fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5669
x-amzn-requestid: 17f6235c-d495-4813-9453-407331e0dcad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1ZSH4fIAMFxeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c3b-67ff5c7f416727670e7c3b21;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zH3wYMLXCFCcoop-xy3r_wXiY2g684Ei-o6BVntyzqjNeX1UuvQsxA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 04:25:48 GMT
age: 80485
etag: "51d87a5223d87c959bf27b2a825dce0a28f52ada"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e96f3ea585b5fa8ed6446ed16e2b4b2
f90c205f370a2426dffe3c21b24bfa551b385556
6967ba25887f87200fcb39a3e6f065fd27596b2ebcf0d33a2751c655d6e724f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4272
x-amzn-requestid: e051c22b-c2ec-4e59-b29b-ba1464d8015b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRz28G13oAMFeeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d099c5-48b013ff34b9702a6d2fd560;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 02:53:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3BquvYOvgBWY2JeuOjZH9t1bunnj5yAXmMqyqZKuD6v2xMm8BAG3lw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 02:41:06 GMT
age: 85657
etag: "f90c205f370a2426dffe3c21b24bfa551b385556"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73f08a17-fd76-4130-b0e4-891c4a522ac4.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73f08a17-fd76-4130-b0e4-891c4a522ac4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 540b084166fb1ad476a2b816848004ac
d10694af4ff8fbdf58896085611b4614a7353eda
b5ce9c01e4ac5a634ab858787c69fe4bf1f297df92b1258f0de6e1461329154b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73f08a17-fd76-4130-b0e4-891c4a522ac4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5567
x-amzn-requestid: 07346e30-a195-4e30-80ed-09bc2844c64d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fORCGGMGIAMFmWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf2eda-266bd30056d9d09c009ac086;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 01:05:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1S1gNaWbByU2Ufc46x0shFDogteGouCIQZ9xX2n2QAFa4AjsFozrRA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 23:04:49 GMT
age: 13344
etag: "d10694af4ff8fbdf58896085611b4614a7353eda"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feaa4a77d-7ed7-4b76-bcb0-24d1679a5359.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feaa4a77d-7ed7-4b76-bcb0-24d1679a5359.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2dfd3530064d405643a31fedd4fd7618
d8268771360e609892c5506f3114dc4f73c0aad0
b4790125e39e400c30d640cd0c64497256168892405511ec3d43b03dc0e5715a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feaa4a77d-7ed7-4b76-bcb0-24d1679a5359.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10973
x-amzn-requestid: caff330a-0cc6-488d-be82-c09c2bb87408
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLQYTEduIAMFZkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdfa9b-1f26b225062c8465440cf460;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 03:10:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: L-i1AEFIP6AoWwjds6n7ohyz-Ls1HoF9CXNJS7RRDFApBceBZXmoxA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 12:29:15 GMT
age: 51478
etag: "d8268771360e609892c5506f3114dc4f73c0aad0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1c8854d6e51a0e96bd4218b8993c008c
027d98f03831ac902b8513d63c930b2f5109394d
da20e1241ba4e2cbe6dffe4905aaeacb7df063abafbd17ebee3b7fd87e13e298
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA20E1241BA4E2CBE6DFFE4905AAEACB7DF063ABAFBD17EBEE3B7FD87E13E298"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17170
Expires: Fri, 27 Jan 2023 07:33:23 GMT
Date: Fri, 27 Jan 2023 02:47:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1c8854d6e51a0e96bd4218b8993c008c
027d98f03831ac902b8513d63c930b2f5109394d
da20e1241ba4e2cbe6dffe4905aaeacb7df063abafbd17ebee3b7fd87e13e298
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA20E1241BA4E2CBE6DFFE4905AAEACB7DF063ABAFBD17EBEE3B7FD87E13E298"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17085
Expires: Fri, 27 Jan 2023 07:31:58 GMT
Date: Fri, 27 Jan 2023 02:47:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 41840fa56408c6aa2c9f8ffd8249f8fd
785e0cb7e6f99ad709a9c8e79d7a7d20fa8ed0aa
830559868a2d72aa3ca42246baf39abbe4a864909b5c94ff3504169b2c8bddb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "830559868A2D72AA3CA42246BAF39ABBE4A864909B5C94FF3504169B2C8BDDB3"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19517
Expires: Fri, 27 Jan 2023 08:12:30 GMT
Date: Fri, 27 Jan 2023 02:47:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1c8854d6e51a0e96bd4218b8993c008c
027d98f03831ac902b8513d63c930b2f5109394d
da20e1241ba4e2cbe6dffe4905aaeacb7df063abafbd17ebee3b7fd87e13e298
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA20E1241BA4E2CBE6DFFE4905AAEACB7DF063ABAFBD17EBEE3B7FD87E13E298"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17068
Expires: Fri, 27 Jan 2023 07:31:41 GMT
Date: Fri, 27 Jan 2023 02:47:13 GMT
Connection: keep-alive
u1.wmbt2.com/template/web/app1.js
192.151.196.21200 OK 934 B URL HTTP/2 u1.wmbt2.com/template/web/app1.js
IP 192.151.196.21:0
File type HTML document, Unicode text, UTF-8 text
Hash 52498548f534d824c9d3791a6cf95d91
c4cee595de3b77d357777aa0161e5b5218f1c7a8
8e3743c08807046bc1c4db4d05456b7c4583350062911de13fb3879238a4c6ae
GET /template/web/app1.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:33 GMT
content-type: application/javascript
content-length: 934
last-modified: Thu, 26 Jan 2023 07:14:52 GMT
etag: "63d2286c-3a6"
expires: Fri, 27 Jan 2023 14:47:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/app2.js
192.151.196.21200 OK 949 B URL HTTP/2 u1.wmbt2.com/template/web/app2.js
IP 192.151.196.21:0
File type HTML document, Unicode text, UTF-8 text
Hash c8f6e21842cc67425eb25b5983bfaded
eef92ff5d9d258bd998a81d9410c95f04b09b35d
d12fe883887eac50721160893bcd09d72aafb20dbdab72ec54db4dcbcc7b416a
GET /template/web/app2.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: application/javascript
content-length: 949
last-modified: Fri, 20 Jan 2023 11:31:33 GMT
etag: "63ca7b95-3b5"
expires: Fri, 27 Jan 2023 14:47:34 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/app3.js
192.151.196.21200 OK 935 B URL HTTP/2 u1.wmbt2.com/template/web/app3.js
IP 192.151.196.21:0
File type HTML document, Unicode text, UTF-8 text
Hash ee2a0355e8e7282729d73a8c0b5ace14
7bae40064f1a9b1f3f5a21697f872994f09ce3d4
d227738af83a1dd4797c07f60e9633ed3583963842eb03d95ffc83201a25fdcf
GET /template/web/app3.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: application/javascript
content-length: 935
last-modified: Sat, 14 Jan 2023 11:34:26 GMT
etag: "63c29342-3a7"
expires: Fri, 27 Jan 2023 14:47:34 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1c8854d6e51a0e96bd4218b8993c008c
027d98f03831ac902b8513d63c930b2f5109394d
da20e1241ba4e2cbe6dffe4905aaeacb7df063abafbd17ebee3b7fd87e13e298
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA20E1241BA4E2CBE6DFFE4905AAEACB7DF063ABAFBD17EBEE3B7FD87E13E298"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 27 Jan 2023 08:47:13 GMT
Date: Fri, 27 Jan 2023 02:47:13 GMT
Connection: keep-alive
hm.baidu.com/hm.js?739f675b7e5407b87328099d74829a82
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?739f675b7e5407b87328099d74829a82
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (622)
Hash 3fedfd7932bd19bd49fdc437c20da095
8de24fc0f840bbc4a7153ef7cbc5db07ba40a106
9e38dd53f7a8fb46babd54ed7b51f6b4e7919cb51e57d7575f460f68077a30b8
GET /hm.js?739f675b7e5407b87328099d74829a82 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ahngbbs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11260
Content-Type: application/javascript
Date: Fri, 27 Jan 2023 02:47:13 GMT
Etag: 864317fb349d1a748649c4b776e982ff
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=65B2FF588B2D7C1D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?7df8a995a333d177a58c94e13703277c
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?7df8a995a333d177a58c94e13703277c
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (628)
Hash 7744c314f2f05a8e6d92c66b38a7f022
1653de682875e07db194a62dfa4e22c2d75ce83b
6c4c63b23ff296c0e67dd2f3eec5100e121708ca5840ee70c064304234a0be69
GET /hm.js?7df8a995a333d177a58c94e13703277c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ahngbbs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11266
Content-Type: application/javascript
Date: Fri, 27 Jan 2023 02:47:13 GMT
Etag: 501a9005128c5f9527d1d2a9494304e9
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=960A317020EC4049; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
104.110.17.24200 OK 489 kB URL HTTP/2 dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 489 kB (488987 bytes)
Hash 6a7d54ecdc2d1cce357d304db217ccec
03a803d54b6a1dd16cba5d73bf4e732d8b7be263
7cd4479b97a015f11a04b2d7d94fbe78030a7e0e3de457bf72abdbf53235c7d8
GET /images/0105c12000ae3a0t3DD7A.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 488987
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=5989719
expires: Thu, 06 Apr 2023 10:35:53 GMT
date: Fri, 27 Jan 2023 02:47:14 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/5115960-60.gif
192.151.196.21200 OK 313 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/5115960-60.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 313 kB (312864 bytes)
Hash e7593fc8dcb539808b00a5eebc62716a
f052b6589fd43358438fc4796ef0ab89c7d2bf38
2b7c34d61d22b1ff5c859b5fb207dd8626027ccef57d75543efd9490fae77b82
GET /template/web/GG/5115960-60.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 312864
last-modified: Tue, 10 Jan 2023 05:19:24 GMT
etag: "63bcf55c-4c620"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2125261067&si=7df8a995a333d177a58c94e13703277c&v=1.3.0&lv=1&sn=40709&r=0&ww=1280&u=http%3A%2F%2Fwww.ahngbbs.com%2F&tt=%E5%AE%98%E7%BD%91
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2125261067&si=7df8a995a333d177a58c94e13703277c&v=1.3.0&lv=1&sn=40709&r=0&ww=1280&u=http%3A%2F%2Fwww.ahngbbs.com%2F&tt=%E5%AE%98%E7%BD%91
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2125261067&si=7df8a995a333d177a58c94e13703277c&v=1.3.0&lv=1&sn=40709&r=0&ww=1280&u=http%3A%2F%2Fwww.ahngbbs.com%2F&tt=%E5%AE%98%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ahngbbs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 27 Jan 2023 02:47:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=7A227D7131A53167; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=484831705&si=739f675b7e5407b87328099d74829a82&v=1.3.0&lv=1&sn=40709&r=0&ww=1280&u=http%3A%2F%2Fwww.ahngbbs.com%2F&tt=%E5%AE%98%E7%BD%91
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=484831705&si=739f675b7e5407b87328099d74829a82&v=1.3.0&lv=1&sn=40709&r=0&ww=1280&u=http%3A%2F%2Fwww.ahngbbs.com%2F&tt=%E5%AE%98%E7%BD%91
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=484831705&si=739f675b7e5407b87328099d74829a82&v=1.3.0&lv=1&sn=40709&r=0&ww=1280&u=http%3A%2F%2Fwww.ahngbbs.com%2F&tt=%E5%AE%98%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ahngbbs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 27 Jan 2023 02:47:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=CEC81E834784B385; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 66fb214b73c6f974c65f49ecc65a61a0
39d7f2d79673d66e20f8e8a84334d2045b80a549
5b677bf6c3e7f5522a6e641d0cb786d20b0676d7935168b99cfda4a3e6145e33
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B677BF6C3E7F5522A6E641D0CB786D20B0676D7935168B99CFDA4A3E6145E33"
Last-Modified: Thu, 26 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17558
Expires: Fri, 27 Jan 2023 07:39:52 GMT
Date: Fri, 27 Jan 2023 02:47:14 GMT
Connection: keep-alive
9030a.cc/1008-960x60.gif
154.85.10.21301 Moved Permanently 0 B IP 154.85.10.21:0
ASN #211392 Dream Cloud Innovation Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1008-960x60.gif HTTP/1.1
Host: 9030a.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: Keep-Alive
X-NoCache: this
Date: Fri, 27 Jan 2023 11:14:04 GMT
Location: https://9030a.cc/1008-960x60.gif
X-Via: 1.1 localhost.localdomain (random:85111 Fikker/Webcache/3.7.8)
ttzytp3.com/upload/vod/20230125-1/a22e6c7b91659bfd61e3751cb4c2191f.jpg
23.224.136.188200 OK 200 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/a22e6c7b91659bfd61e3751cb4c2191f.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 200 kB (199710 bytes)
Hash 27bb2223eacb710adc47cd9ecaf2bb4d
7307d37e520512d31a1294e0d6fc1a26d881f099
78ab3e9a986e175740a78ced0d55512b7be672b46b259a9c5ce74bac54668676
GET /upload/vod/20230125-1/a22e6c7b91659bfd61e3751cb4c2191f.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:13 GMT
Content-Type: image/jpeg
Content-Length: 199710
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:42:01 GMT
ETag: "63d0b319-30c1e"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230126-1/754f683935f604b4155e6da64fd04f86.jpg
23.224.136.188200 OK 195 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230126-1/754f683935f604b4155e6da64fd04f86.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x540, components 3\012- data
Size 195 kB (195112 bytes)
Hash 9cee6d436cedb7f252e1c82c6d9f4a79
54fb0046d8548b0b4320430e65fc8c5311c7aa52
dccb39dbe11ba3b3c9a61b71225c830dfc5fc19ee5bf189a29a0f126cedba127
GET /upload/vod/20230126-1/754f683935f604b4155e6da64fd04f86.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:13 GMT
Content-Type: image/jpeg
Content-Length: 195112
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 17:32:38 GMT
ETag: "63d167b6-2fa28"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230125-1/f63d5749c78595e0d65ebb4428aae145.jpg
23.224.136.188200 OK 196 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/f63d5749c78595e0d65ebb4428aae145.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 196 kB (196511 bytes)
Hash 9f32c27143326aac3311029c4da4c0f3
413409c638b76ee88b4dd808094888e984c01aa6
37fbcacc747e647f9fa9744ef11a711400ec316b4e022edd5777f4fe82798e1f
GET /upload/vod/20230125-1/f63d5749c78595e0d65ebb4428aae145.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:13 GMT
Content-Type: image/jpeg
Content-Length: 196511
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:42:31 GMT
ETag: "63d0b337-2ff9f"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230126-1/4a9c8c03c2f2c0447d50dc476ee88427.jpg
23.224.136.188200 OK 182 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230126-1/4a9c8c03c2f2c0447d50dc476ee88427.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x541, components 3\012- data
Size 182 kB (181813 bytes)
Hash 05635eb5d18bc2adbe10595dc326de4f
d494e7d274b5e6f886392ff34bf7ef1f46f5c7ba
675ca8757f2c55a1e59b7e2f8f96ed1c795fb64cc6a9f9b86c00f1a0d680574e
GET /upload/vod/20230126-1/4a9c8c03c2f2c0447d50dc476ee88427.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:13 GMT
Content-Type: image/jpeg
Content-Length: 181813
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 17:32:22 GMT
ETag: "63d167a6-2c635"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230125-1/25c3503c82096ff578bb6ad8ad8e9113.jpg
23.224.136.188200 OK 191 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/25c3503c82096ff578bb6ad8ad8e9113.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 191 kB (190922 bytes)
Hash 9c3c34d23874de886080ba031a9845c8
eae1cefb6f636d6ffe5cd6a349179a46fc7c45af
d2f98a5dc7b17749feb32a3b75ea4a1eb46cfce0ead2efaa66954c063b34a177
GET /upload/vod/20230125-1/25c3503c82096ff578bb6ad8ad8e9113.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:13 GMT
Content-Type: image/jpeg
Content-Length: 190922
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:42:31 GMT
ETag: "63d0b337-2e9ca"
Accept-Ranges: bytes
u1.wmbt2.com/template/web/GG/227.gif
192.151.196.21200 OK 477 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/227.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 477 kB (477289 bytes)
Hash 760cc21f91ee02e848650627ffa47ae2
22df8e62d12977ffd032aba17e5fd7632032633f
2b36a60cb734e5ebcaa9ad4d93f914157e563da89c4e08231bd02b72678875bd
GET /template/web/GG/227.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 477289
last-modified: Fri, 14 Oct 2022 15:40:58 GMT
etag: "6349830a-74869"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/k16.gif
192.151.196.21200 OK 35 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/k16.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 788b44c904a7b3a60753805c4763385a
b1f2664a0e3259acd09324e70d41dc0901cc6a8c
bcde8e39467e6c7540e7c1606161eea9a61e860f90616a0e05b6d0d2db0b86e1
GET /template/web/GG/k16.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 34559
last-modified: Sat, 04 Jun 2022 02:42:48 GMT
etag: "629ac6a8-86ff"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cd88b77393a50d79cde1f21985478d58
489cf1b2ccd7a579a68dc6a2fc9a4e1da56a8263
419d1a2b7d0b0e8da33d4de77c64eb4de53392a1981a8afd33da89789f76c2a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "419D1A2B7D0B0E8DA33D4DE77C64EB4DE53392A1981A8AFD33DA89789F76C2A9"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13322
Expires: Fri, 27 Jan 2023 06:29:16 GMT
Date: Fri, 27 Jan 2023 02:47:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cd88b77393a50d79cde1f21985478d58
489cf1b2ccd7a579a68dc6a2fc9a4e1da56a8263
419d1a2b7d0b0e8da33d4de77c64eb4de53392a1981a8afd33da89789f76c2a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "419D1A2B7D0B0E8DA33D4DE77C64EB4DE53392A1981A8AFD33DA89789F76C2A9"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13419
Expires: Fri, 27 Jan 2023 06:30:53 GMT
Date: Fri, 27 Jan 2023 02:47:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cd88b77393a50d79cde1f21985478d58
489cf1b2ccd7a579a68dc6a2fc9a4e1da56a8263
419d1a2b7d0b0e8da33d4de77c64eb4de53392a1981a8afd33da89789f76c2a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "419D1A2B7D0B0E8DA33D4DE77C64EB4DE53392A1981A8AFD33DA89789F76C2A9"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13322
Expires: Fri, 27 Jan 2023 06:29:16 GMT
Date: Fri, 27 Jan 2023 02:47:14 GMT
Connection: keep-alive
u1.wmbt2.com/template/web/GG/d5.gif
192.151.196.21200 OK 100 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/d5.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 025124b1ea32550544628c7205331a35
6015322cd2faae4cc93266267838878350ac5c70
b1f29051a416097599fa35479620adab7e3f3b5dac8d18c19147eff65955db21
GET /template/web/GG/d5.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 99494
last-modified: Wed, 16 Mar 2022 16:12:20 GMT
etag: "62320c64-184a6"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/31.gif
192.151.196.21200 OK 108 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/31.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 96 x 96\012- data
Size 108 kB (108160 bytes)
Hash 8765a4504945e44a16e9fe1c643802bf
a830d6cad304c1007e82fc742cc7855fff8d6a7c
d4ce24af068e48c2339af354f585f37940cc318d83110e313056ebc0d4058b4b
GET /template/web/GG/31.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 108160
last-modified: Wed, 09 Mar 2022 10:15:26 GMT
etag: "62287e3e-1a680"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/xinheise/fonts/iconfont.woff
192.151.196.21200 OK 525 B URL HTTP/2 u1.wmbt2.com/template/xinheise/fonts/iconfont.woff
IP 192.151.196.21:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/xinheise/fonts/iconfont.woff HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://u1.wmbt2.com/template/xinheise/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: font/woff
content-length: 525
last-modified: Tue, 04 Jan 2022 15:13:46 GMT
etag: "61d4642a-20d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/xinheise/images/video-play.png
192.151.196.21200 OK 1.6 kB URL HTTP/2 u1.wmbt2.com/template/xinheise/images/video-play.png
IP 192.151.196.21:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/xinheise/images/video-play.png HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/template/xinheise/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/png
content-length: 1567
last-modified: Tue, 04 Jan 2022 15:14:22 GMT
etag: "61d4644e-61f"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/xinheise/images/video-mask.png
192.151.196.21200 OK 107 B URL HTTP/2 u1.wmbt2.com/template/xinheise/images/video-mask.png
IP 192.151.196.21:0
File type PNG image data, 1 x 46, 8-bit gray+alpha, non-interlaced\012- data
Hash 6a5ee87ff75437cb480df839f36004fd
eac66370f99601cb7febef320c9540d4593cd856
c9b6925bdd64dab63151c3106347fefb8c500d87ac3d87d9a82e9a1c561233aa
GET /template/xinheise/images/video-mask.png HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/template/xinheise/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/png
content-length: 107
last-modified: Tue, 04 Jan 2022 15:14:24 GMT
etag: "61d46450-6b"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 48bff22fecbd42029b4f83c06816c166
bc71a8ba42bfc1f22e1ad4f542727d3a9c204ebe
9a1e5d4de7998d607e4dda79d44187583205e3de34f1a8c95c04d4233219ee52
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Fri, 27 Jan 2023 02:47:14 GMT
Connection: keep-alive
X-N: S
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1673a334a2e79ea825de0271436e455e
d07bf032f3b03a413edf417964e62317b18186fa
916836cd55f4b60b8e408e63be7044d5e13112ceceece3726c8a1064e9a6a1f7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "916836CD55F4B60B8E408E63BE7044D5E13112CECEECE3726C8A1064E9A6A1F7"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2144
Expires: Fri, 27 Jan 2023 03:22:58 GMT
Date: Fri, 27 Jan 2023 02:47:14 GMT
Connection: keep-alive
u1.wmbt2.com/template/web/GG/k2.gif
192.151.196.21200 OK 32 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/k2.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 0dbd3863b60a1e8e0a507a6092e3acbd
81f0cfad3a7369aa95b1b507a5ce46149cd4e4fe
d3829461b69847e6df417e8eb4c4046ae45864fbb7d3646e7b1346a861bd893e
GET /template/web/GG/k2.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 32381
last-modified: Fri, 27 May 2022 05:31:39 GMT
etag: "6290623b-7e7d"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230125-1/dc2822d0857336736f082815286ee440.jpg
23.224.136.188200 OK 224 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/dc2822d0857336736f082815286ee440.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 224 kB (223931 bytes)
Hash 128acc0fafa1f1a60a3e753eb023846e
69977be113efa8033f7c1006963cc0d58261eba1
0046cb5938a7f65f9a0b963a50d82ebec23d150347cbf58d2f1d7dfdd026b381
GET /upload/vod/20230125-1/dc2822d0857336736f082815286ee440.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:13 GMT
Content-Type: image/jpeg
Content-Length: 223931
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:42:30 GMT
ETag: "63d0b336-36abb"
Accept-Ranges: bytes
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.130.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.130.133:0
Hash 2564c6db7989ca6980202ee9e44ec1ee
38455245decd5ce5020dd82fadabb8a4f94f3d64
b5883ad33bdfd0dcebbcdd06d4f4f726e55714dfe7ef0f8df0facb001c3a0323
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Tue, 31 Jan 2023 01:33:15 GMT
ETag: "38455245decd5ce5020dd82fadabb8a4f94f3d64"
Last-Modified: Fri, 27 Jan 2023 01:33:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 02:47:14 GMT
Age: 4437
X-Served-By: cache-qpg1231-QPG, cache-bma1622-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 12, 1
X-Timer: S1674787635.716288,VS0,VE1
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.130.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.130.133:0
Hash 2564c6db7989ca6980202ee9e44ec1ee
38455245decd5ce5020dd82fadabb8a4f94f3d64
b5883ad33bdfd0dcebbcdd06d4f4f726e55714dfe7ef0f8df0facb001c3a0323
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Tue, 31 Jan 2023 01:33:15 GMT
ETag: "38455245decd5ce5020dd82fadabb8a4f94f3d64"
Last-Modified: Fri, 27 Jan 2023 01:33:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 02:47:14 GMT
Age: 4437
X-Served-By: cache-qpg1231-QPG, cache-bma1622-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 12, 2
X-Timer: S1674787635.734344,VS0,VE0
ttzytp3.com/upload/vod/20230125-1/a322fc4b73d786e8a08c285647727b9c.jpg
23.224.136.188200 OK 15 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/a322fc4b73d786e8a08c285647727b9c.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x168, components 3\012- data
Hash dfd68ed0a3367f5fcf99fc93577d3814
50dd41a4772dd8a720a1a732620de10451e2e95f
6aad7ef2bf46bc53264faa415544118b5a2170b6836ed29cdaf6c1a015441bea
GET /upload/vod/20230125-1/a322fc4b73d786e8a08c285647727b9c.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: image/jpeg
Content-Length: 14593
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:42:25 GMT
ETag: "63d0b331-3901"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230125-1/bf7d309447b19d2efe9ac35d11ff535a.jpg
23.224.136.188200 OK 61 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/bf7d309447b19d2efe9ac35d11ff535a.jpg
IP 23.224.136.188:0
File type JPEG image data, baseline, precision 8, 800x450, components 3\012- data
Hash 9a4a192789304ead859ec7bbc2286064
f7aa34b8169799cdc141c4e634a7aa9952a242f9
1cc5762f22e6a6d6d2828943ee8bb441600523192b894fd6fcacfc2be49e8d65
GET /upload/vod/20230125-1/bf7d309447b19d2efe9ac35d11ff535a.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: image/jpeg
Content-Length: 61133
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:42:26 GMT
ETag: "63d0b332-eecd"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230125-1/37893c1a211c553b05ce4ac364152f5b.jpg
23.224.136.188200 OK 51 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/37893c1a211c553b05ce4ac364152f5b.jpg
IP 23.224.136.188:0
File type JPEG image data, baseline, precision 8, 800x450, components 3\012- data
Hash f46b1ec9c9f6fe047c3f2cb61c51c4be
386912681e4e4723df633b595863607fd4f59174
682463d60ac95594dfe981a16e5296c09bd15196ac68cf01d17b68040f5cce23
GET /upload/vod/20230125-1/37893c1a211c553b05ce4ac364152f5b.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: image/jpeg
Content-Length: 50565
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:42:26 GMT
ETag: "63d0b332-c585"
Accept-Ranges: bytes
ggtupian.comcom008.com/6446/960.60se.gif
172.67.182.9200 OK 771 kB URL HTTP/2 ggtupian.comcom008.com/6446/960.60se.gif
IP 172.67.182.9:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 771 kB (770795 bytes)
Hash 3313978b027977da947f62d3bfd4af6c
3c1e6de3fdead024ce2892d9023141048658f169
9ab3ba5744dd61131fb7b688bb859afdd7030fc5b9136204d8b1a0bdfac1278c
GET /6446/960.60se.gif HTTP/1.1
Host: ggtupian.comcom008.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 02:47:13 GMT
content-type: image/gif
last-modified: Thu, 20 Oct 2022 11:11:28 GMT
etag: "63512ce0-b96f0"
expires: Sat, 25 Feb 2023 02:00:52 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 77588
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xr1dz8pjMjm87NvfhvxusDCF3dok4h0vtOkhxhtiToOiyjSeNB3mhZ%2B8tlwQTENp6cEruo94IdITMUCl77aviqI6Np4d%2FTJleCNy0dtZur%2BJtlxkulx4PkA0kGYpqBcsH1gIvcb4mzv1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fe2997d8830b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/k6.gif
192.151.196.21200 OK 53 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/k6.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 74d864001115d3b123c552156accfbef
11ae3aef174b8fab213faa40b1b985f77dada46f
9001f1548a09cf89715469dc8d009f7aebb1a459d261c73a2f35d252bf88b4c8
GET /template/web/GG/k6.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 53324
last-modified: Fri, 27 May 2022 05:31:42 GMT
etag: "6290623e-d04c"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230125-1/15b73a25c5153ba5318b176c522e8463.jpg
23.224.136.188200 OK 57 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/15b73a25c5153ba5318b176c522e8463.jpg
IP 23.224.136.188:0
File type JPEG image data, baseline, precision 8, 800x450, components 3\012- data
Hash 5c9af1a394ff713d13e1bdbc1f4d4bd5
3963769095b7c4dd3ef9c93913c67b21ab3e4ff5
9be21808942655cf6b3c1a6b536c005058d9556c08a54592a4253814f0698b3e
GET /upload/vod/20230125-1/15b73a25c5153ba5318b176c522e8463.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: image/jpeg
Content-Length: 57053
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:42:26 GMT
ETag: "63d0b332-dedd"
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash bbf30526a27f6aafe061c1a182e3794c
cb9870f3e5beb02c468f3e1135dceb4c1928e34c
3e722a80286f52bde0d54be3e4b4c03ddeb8bd4cd13343ec3adcef9f5f134dd1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 23 Jan 2023 15:26:09 GMT
Expires: Mon, 30 Jan 2023 15:26:08 GMT
Etag: "cb9870f3e5beb02c468f3e1135dceb4c1928e34c"
Cache-Control: max-age=304133,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fe299c6d85b50f-OSL
u1.wmbt2.com/template/xinheise/js/jquery.min.js
192.151.196.21200 OK 148 kB URL HTTP/2 u1.wmbt2.com/template/xinheise/js/jquery.min.js
IP 192.151.196.21:0
Size 148 kB (148136 bytes)
Hash 42dd7ba9d37c04b519c2d5222e6940c1
c7d2f142dc0793a7f1418deffa8d263308929182
1afe84af6ee1f26a6f04d183d64d8a8895e26eba1bac89519142e34628b09d9c
GET /template/xinheise/js/jquery.min.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:33 GMT
content-type: application/javascript
last-modified: Fri, 02 Dec 2022 14:33:59 GMT
vary: Accept-Encoding
etag: W/"638a0cd7-1538f"
expires: Fri, 27 Jan 2023 14:47:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/app.js
192.151.196.21200 OK 121 kB URL HTTP/2 u1.wmbt2.com/template/web/app.js
IP 192.151.196.21:0
Size 121 kB (120711 bytes)
Hash 38eaa7b3e0efeb85c45bb3bcb387fe66
349b6e62d52ac0a6de9996f4c8b2d5070302ea1d
92b66526677500c6f3c16d65da6f82f6a1597177281e9a72b1b7d1b93e9c6259
GET /template/web/app.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:33 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 14:49:52 GMT
vary: Accept-Encoding
etag: W/"63d29310-309a"
expires: Fri, 27 Jan 2023 14:47:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/dh1.js
192.151.196.21200 OK 75 kB URL HTTP/2 u1.wmbt2.com/template/web/dh1.js
IP 192.151.196.21:0
Hash 2c673f77e41b2fe73cdbc5e117d490bb
e855e1f8262f362efca46b5e446ea6b8d93db854
d5775919a3576ddd5567b1b97782e9934d82b757cd6366cf9262e7f3fb0914b6
GET /template/web/dh1.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:33 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 07:16:39 GMT
vary: Accept-Encoding
etag: W/"63d228d7-42ff"
expires: Fri, 27 Jan 2023 14:47:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.130.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.130.133:0
Hash 86e7f541c2966f117c1e6c51cc066912
8ed4ca8c8cb0396b74e777cc989f48522d9aa36a
46595f1d34027310c25585a7633143b299b289f369e46def1f02069ee5eb8e01
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Tue, 31 Jan 2023 01:32:33 GMT
ETag: "8ed4ca8c8cb0396b74e777cc989f48522d9aa36a"
Last-Modified: Fri, 27 Jan 2023 01:32:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 02:47:14 GMT
Age: 4480
X-Served-By: cache-qpg1239-QPG, cache-bma1622-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 14, 1
X-Timer: S1674787635.860356,VS0,VE1
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.130.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.130.133:0
Hash 86e7f541c2966f117c1e6c51cc066912
8ed4ca8c8cb0396b74e777cc989f48522d9aa36a
46595f1d34027310c25585a7633143b299b289f369e46def1f02069ee5eb8e01
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Tue, 31 Jan 2023 01:32:33 GMT
ETag: "8ed4ca8c8cb0396b74e777cc989f48522d9aa36a"
Last-Modified: Fri, 27 Jan 2023 01:32:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 02:47:14 GMT
Age: 4480
X-Served-By: cache-qpg1239-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 14, 1
X-Timer: S1674787635.861549,VS0,VE1
u1.wmbt2.com/template/web/GG/x.jpg
192.151.196.21200 OK 9.2 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/x.jpg
IP 192.151.196.21:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /template/web/GG/x.jpg HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Thu, 02 Jun 2022 15:48:52 GMT
etag: "6298dbe4-23ce"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/xinheise/fonts/iconfont.ttf
192.151.196.21200 OK 525 B URL HTTP/2 u1.wmbt2.com/template/xinheise/fonts/iconfont.ttf
IP 192.151.196.21:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/xinheise/fonts/iconfont.ttf HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/template/xinheise/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:35 GMT
content-type: application/octet-stream
content-length: 525
last-modified: Tue, 04 Jan 2022 15:13:38 GMT
etag: "61d46422-20d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/a06.gif
192.151.196.21200 OK 111 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/a06.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 108 x 108\012- data
Size 111 kB (110624 bytes)
Hash e3240f80fa3623e4bc4675c955beb241
fb5f06e85933d6e6a8e0f98e28c16b44844b3ae3
d595e4b9e1341db392c7d348474e94c200802c5e35290b7e4f9a4a4ad653bd1d
GET /template/web/GG/a06.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 110624
last-modified: Sat, 18 Jun 2022 04:11:06 GMT
etag: "62ad505a-1b020"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/k7.gif
192.151.196.21200 OK 104 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/k7.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 71 x 71\012- data
Size 104 kB (104461 bytes)
Hash 9e38a9cebde88f45563c4aae36723d3a
126439ba503fc1757864c12e086fd0f1a165a4bc
93054ef4224e847d308892f23ca8d0bf210d5ba26d8c39502eb7016efd97501d
GET /template/web/GG/k7.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 104461
last-modified: Fri, 27 May 2022 05:31:43 GMT
etag: "6290623f-1980d"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230125-1/26d0593de0200845178d8c2148825b3d.jpg
23.224.136.188200 OK 195 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/26d0593de0200845178d8c2148825b3d.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 195 kB (195107 bytes)
Hash 90ffc6449a4e0709367694374698269c
8ea00088c148a973bcdbf87b7ebfe9f30e2496af
7aed4f22c63920b21f45f4a42220880b9187448cbeb9a7581d4c233eeb1e9809
GET /upload/vod/20230125-1/26d0593de0200845178d8c2148825b3d.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: image/jpeg
Content-Length: 195107
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:41:45 GMT
ETag: "63d0b309-2fa23"
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 36126f9189b904581464dbb77976b5c0
11ed80241ae92dbcdefa2aa5d071257b28878819
0ffe3dbe5e1c637d9aaa550748283989e386dc91fe2f1256ed3b436b26c1a2a4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 11:53:07 GMT
Expires: Wed, 01 Feb 2023 11:53:06 GMT
Etag: "11ed80241ae92dbcdefa2aa5d071257b28878819"
Cache-Control: max-age=464151,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fe299dde17b50f-OSL
u1.wmbt2.com/template/web/GG/11.gif
192.151.196.21200 OK 76 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/11.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 200 x 99\012- data
Hash b91a52dc89525aa53fa4cc9f51313fa5
04be88b70acd504b7bf5a9bb107b63da8c488639
91b59a9d450ebdc06502d1279ee2eef209a84a5d0434a46874a32c9bbc831ba9
GET /template/web/GG/11.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 76147
last-modified: Wed, 11 May 2022 08:23:40 GMT
etag: "627b728c-12973"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/k20.gif
192.151.196.21200 OK 102 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/k20.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 124 x 124\012- data
Size 102 kB (101861 bytes)
Hash da1fca07307a6c03cdcfb2d47313113a
f28a95877fad9e725a287466984d496ef7d53afb
9529e1f4226891780f02c558b7b75427b86eb8afa9e5667fd6e8527abf322209
GET /template/web/GG/k20.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 101861
last-modified: Sat, 04 Jun 2022 02:42:51 GMT
etag: "629ac6ab-18de5"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/a08.gif
192.151.196.21200 OK 80 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/a08.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 3b6a5179b4a06bb8c98cab3aeaa698ed
c798dc8b16e3feaf91392cfa1cf839b4556fc243
64d5d65c65f47564411cce16d70dcca2aa83d5ad212ac46d3d9d0ba4ab8aee96
GET /template/web/GG/a08.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 80545
last-modified: Sat, 18 Jun 2022 04:11:07 GMT
etag: "62ad505b-13aa1"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.130.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.130.133:0
Hash 141a2c1f2b9f0d2b1bc784107942cfb5
577fcb4af51020226dd9e0b6eb2d3912f35ca991
1c72138ae62d9215bf68f6e88fdf4f74e3b7ab7936006ae221b0a3db5c6ba5e2
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Tue, 31 Jan 2023 01:44:55 GMT
ETag: "577fcb4af51020226dd9e0b6eb2d3912f35ca991"
Last-Modified: Fri, 27 Jan 2023 01:44:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 02:47:14 GMT
Age: 1865
X-Served-By: cache-qpg1232-QPG, cache-bma1622-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 30, 1
X-Timer: S1674787635.918346,VS0,VE1
u1.wmbt2.com/template/web/xx1.js
192.151.196.21200 OK 161 kB URL HTTP/2 u1.wmbt2.com/template/web/xx1.js
IP 192.151.196.21:0
Size 161 kB (160701 bytes)
Hash 095d46d920ce6576a2abcd71ae2a3156
d170cc211a1eaba66692bf0e51e2dab5fa47befd
d08f32f05afa76ff576c7f94f69f79f0186b329ae26740ab071661c9dda60f5c
GET /template/web/xx1.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:33 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 14:45:49 GMT
vary: Accept-Encoding
etag: W/"63d2921d-115d"
expires: Fri, 27 Jan 2023 14:47:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/k1.gif
192.151.196.21200 OK 167 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/k1.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 167 kB (167104 bytes)
Hash 9387415ad469299bf6e3bb5c1bbc77e2
cc52974b6ed2239afbbd4088c675fceb0d75cd22
912ce0aceb7de66266542ec85454be033b0a285c975dd7fc8f0d43eecb8716ce
GET /template/web/GG/k1.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 167104
last-modified: Fri, 27 May 2022 05:31:39 GMT
etag: "6290623b-28cc0"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230125-1/78a8a92993e9342cd54709388026e354.jpg
23.224.136.188200 OK 68 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/78a8a92993e9342cd54709388026e354.jpg
IP 23.224.136.188:0
File type JPEG image data, baseline, precision 8, 800x450, components 3\012- data
Hash 3dc4de5e60942d73322b351bcf50bd28
c0f2387fedd422c55a18a0a566db11e7bd74ba31
07eeca1c46698dac86f30f3aa639b193eef7902b2fe612c8829fa8dadfb5bd0b
GET /upload/vod/20230125-1/78a8a92993e9342cd54709388026e354.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: image/jpeg
Content-Length: 68008
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:41:44 GMT
ETag: "63d0b308-109a8"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230125-1/577f41dcc3cdb84b421d20d2b8bd9b44.jpg
23.224.136.188200 OK 59 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/577f41dcc3cdb84b421d20d2b8bd9b44.jpg
IP 23.224.136.188:0
File type JPEG image data, baseline, precision 8, 800x450, components 3\012- data
Hash d1c6d6ebd899330be227b507252626cb
9936d44ab7561ab396a1b7f228a80446058a0659
5049808b7f65c4d0a1d29ad1779b95548577b1054e668b2535d45f727f519bb2
GET /upload/vod/20230125-1/577f41dcc3cdb84b421d20d2b8bd9b44.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: image/jpeg
Content-Length: 59356
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:41:45 GMT
ETag: "63d0b309-e7dc"
Accept-Ranges: bytes
hm.baidu.com/hm.js?86ea3af34e71a9d5eae3e3255c8ace53
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?86ea3af34e71a9d5eae3e3255c8ace53
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 46994f8b35e70af860f4bda01c5179d7
f44f7f59cc6842c68b9375565d27f24d390cbc20
7e189b1d38ee68d8f8f2756ad6b30c82df7519b9f08cd0e40d4f36171650434a
GET /hm.js?86ea3af34e71a9d5eae3e3255c8ace53 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Fri, 27 Jan 2023 02:47:14 GMT
Etag: a46e977065cb2fb1242784b3ac32650f
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A84F3FD301836AEC; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
u1.wmbt2.com/template/web/GG/d2.gif
192.151.196.21200 OK 162 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/d2.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 162 kB (161572 bytes)
Hash 64c0f3edc7b3bfd2a2c009f3b93ebd7d
70dee1bf54047d14220328f8ab47d299a679a519
ca5ada5bab699078f3ecdb2a2b569bcef9b8b34f6773d2197c0658a55fad5d25
GET /template/web/GG/d2.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 161572
last-modified: Wed, 16 Mar 2022 16:12:17 GMT
etag: "62320c61-27724"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/k15.gif
192.151.196.21200 OK 142 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/k15.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 235 x 235\012- data
Size 142 kB (141895 bytes)
Hash 0642504c72f3cf9929cfb7544deaca87
16d7028c32010330f5c9f2f8e71a69c4c7bcc859
a102356e14a84a958f692e5e9c2c4d2aa9765bc4cbc3232f9108ec8b46d5b07b
GET /template/web/GG/k15.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 141895
last-modified: Sat, 28 May 2022 04:44:37 GMT
etag: "6291a8b5-22a47"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/a01.gif
192.151.196.21200 OK 156 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/a01.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 100 x 100\012- data
Size 156 kB (156311 bytes)
Hash c1cd6fbcc60e4242fb31eb894d7d9450
1b0a2ba85f38fa452a391250067e916ac7b61345
aca31490b0e0478395648fb5f6ce318b56a4a443c7a64e069c71cee6c0f0bb44
GET /template/web/GG/a01.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 156311
last-modified: Sat, 18 Jun 2022 04:11:02 GMT
etag: "62ad5056-26297"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230125-1/f955abac0fdf3682f886922c4a7c0bb2.jpg
23.224.136.188200 OK 105 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/f955abac0fdf3682f886922c4a7c0bb2.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x720, components 3\012- data
Size 105 kB (105148 bytes)
Hash 4365b902c2236e601768545178802192
d21826a01f9a69f194dbf9f56c3f47e2587b9601
e3ff103788803cccc725210bebe2ec136c0e76b6c92259695a8adb2868b8c738
GET /upload/vod/20230125-1/f955abac0fdf3682f886922c4a7c0bb2.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: image/jpeg
Content-Length: 105148
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:41:44 GMT
ETag: "63d0b308-19abc"
Accept-Ranges: bytes
u1.wmbt2.com/template/web/xx2.js
192.151.196.21200 OK 12 kB URL HTTP/2 u1.wmbt2.com/template/web/xx2.js
IP 192.151.196.21:0
File type Unicode text, UTF-8 text, with very long lines (813)
Hash dd376cdcd918a0306f6b98ca36651907
bd9a602a01cd0cb3db48407a042b9dc43f216572
57e9e33eacb6657214df9414255526754cfa9610dc8f6bbb0c90d47a1a034c15
GET /template/web/xx2.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:33 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 03:03:18 GMT
vary: Accept-Encoding
etag: W/"63d1ed76-5a7"
expires: Fri, 27 Jan 2023 14:47:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?e583d8fedf3139c4a2a8a7555c2f7636
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?e583d8fedf3139c4a2a8a7555c2f7636
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash cbc9203bc6c88cd3ea451f8bc0d409ee
042e29050bc6789bb0cfcfbc3e89028e19eb9ff8
714688dafd558164b668c9be4bcd5fbda187691ae569d05086769ae7dad679ce
GET /hm.js?e583d8fedf3139c4a2a8a7555c2f7636 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Fri, 27 Jan 2023 02:47:14 GMT
Etag: cb11cfb741834f8f545c0d045a877177
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=E5D06658448E6940; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
u1.wmbt2.com/template/web/GG/t1.gif
192.151.196.21200 OK 221 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/t1.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 221 kB (221303 bytes)
Hash 633e79a4d76e09af28eb7617340a6330
0aaef1ed9eed51ca839c4b8e88ca4988e27ec6cb
7363c1c913be071eb6240c6600c17b65e81b092944bb5f14c7013b5f96190fb3
GET /template/web/GG/t1.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 221303
last-modified: Tue, 10 May 2022 09:20:00 GMT
etag: "627a2e40-36077"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/a07.gif
192.151.196.21200 OK 356 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/a07.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 344 x 292\012- data
Size 356 kB (355956 bytes)
Hash 7fcc1b0bc144505a6445039f16e7ae84
c102af587f677b89bb65f7e850a4ca4b41a45456
409d94d159f6c851b76881b6937460458b25a246e45bf6ab98f34efd9474ede8
GET /template/web/GG/a07.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 355956
last-modified: Sat, 18 Jun 2022 04:11:07 GMT
etag: "62ad505b-56e74"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 22c162d823deeb094c47394d33042257
0c876a261afc6a74434d8a407804e4ebfab2b194
13cf01edfa09a2f0a05a9bc5af3f9edb0180d6166690c1ea461d306c7a8f2900
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 02:47:15 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 09:14:27 GMT
Expires: Thu, 02 Feb 2023 09:14:26 GMT
Etag: "0c876a261afc6a74434d8a407804e4ebfab2b194"
Cache-Control: max-age=541030,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fe299ebe6ab50f-OSL
u1.wmbt2.com/template/web/GG/t2.gif
192.151.196.21200 OK 254 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/t2.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 254 kB (253670 bytes)
Hash bace60a0adc9bdd54f7c83058456a847
4867fd68497b7db5c4e5bbdde781cf098dbabd22
17a4f7b3d5caf413211515976326969951cc1bb9a3e32a9caa885fd6e3109368
GET /template/web/GG/t2.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 253670
last-modified: Tue, 10 May 2022 09:20:01 GMT
etag: "627a2e41-3dee6"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/y4.gif
192.151.196.21200 OK 258 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/y4.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 258 kB (257689 bytes)
Hash bbdd0bdf651352117671a182ae649b36
0913dc12c9378d9d5bc6aeefdba042fad4f95e8a
c808633ff4d4c025ae4151460a6ab81b58837bc03584b7037b4ef2034cc8676c
GET /template/web/GG/y4.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 257689
last-modified: Tue, 10 May 2022 09:20:09 GMT
etag: "627a2e49-3ee99"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/dh2.js
192.151.196.21200 OK 294 kB URL HTTP/2 u1.wmbt2.com/template/web/dh2.js
IP 192.151.196.21:0
Size 294 kB (293544 bytes)
Hash 5dca300e8d5790587283a72979629f3f
3c6bbd3f6d1fbbd374deb84e79f0e2f73a24e02a
0526d5ee15ec2c7a0bd05da5b3748b8cf3c7535e761ccfeb26fbe2fd447eed30
GET /template/web/dh2.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:33 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 07:18:28 GMT
vary: Accept-Encoding
etag: W/"63d22944-35e7"
expires: Fri, 27 Jan 2023 14:47:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/122.gif
192.151.196.21200 OK 301 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/122.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 301 kB (301024 bytes)
Hash 924fb352713ee10f6f4bce3167ccce13
127a437f7a5020f7e7c08b6c6465be55dcb32e0c
6e04c7ee887495ce8805d38b200ca217c28b5e83655f4e7f4e8f8f8e28b872bf
GET /template/web/GG/122.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 301024
last-modified: Wed, 09 Mar 2022 10:04:32 GMT
etag: "62287bb0-497e0"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/4.gif
192.151.196.21200 OK 279 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/4.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 200 x 113\012- data
Size 279 kB (279026 bytes)
Hash 42809e0a73309f01de7651ab3b712cb4
19a1658a10d4e8ca6831a824d4bccbb35dcbf113
da7e1e1332d196cde6cc3a7b9c758abb4493e9708799e7836551823dd399b13d
GET /template/web/GG/4.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 279026
last-modified: Wed, 11 May 2022 08:12:44 GMT
etag: "627b6ffc-441f2"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/k19.gif
192.151.196.21200 OK 288 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/k19.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 140 x 140\012- data
Size 288 kB (287575 bytes)
Hash e758cbb971464ca5059e4cdbc1a7601f
615032c5f3516cd6d685bde3c1214a5d05833cd1
df4ecca258502e6c66deb343d9fc8d0bf05e46927194a2e1bc6c652fb80ba71d
GET /template/web/GG/k19.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 287575
last-modified: Sat, 04 Jun 2022 02:42:51 GMT
etag: "629ac6ab-46357"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash f432c5a776732be2ad11b5143f2ca9a2
e217a49766b24992c59982a1cce89234ea54839f
2d54cf4877813f21a4e1d397aec313cba2d7f78be8ddb87343061c27fa312725
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 02:47:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 23 Jan 2023 18:26:17 GMT
Expires: Mon, 30 Jan 2023 18:26:16 GMT
Etag: "e217a49766b24992c59982a1cce89234ea54839f"
Cache-Control: max-age=314940,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fe299e0ae5b51e-OSL
u1.wmbt2.com/template/web/GG/3.gif
192.151.196.21200 OK 417 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/3.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 270 x 160\012- data
Size 417 kB (416995 bytes)
Hash 802a103bf67846996296827828346a47
4d4973ef15363f68f8bc9b25c6d78601da3d0d58
d327afcacd1595362aad0358b3fceb8f80e87ec08dc799945e80a9e50c859147
GET /template/web/GG/3.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 416995
last-modified: Wed, 11 May 2022 08:12:40 GMT
etag: "627b6ff8-65ce3"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/d1.gif
192.151.196.21200 OK 320 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/d1.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 448 x 359\012- data
Size 320 kB (320301 bytes)
Hash 7d3239796daffe24e71eb0e44146f02b
533c9fe388fdb5cc5f807a7358dcd4d1b14bf817
7ae555d64a9c2cbf44806af21930c753b5dc3649be922206fc10ea83efa19523
GET /template/web/GG/d1.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 320301
last-modified: Wed, 11 May 2022 08:33:50 GMT
etag: "627b74ee-4e32d"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/2.gif
192.151.196.21200 OK 620 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/2.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 300 x 200\012- data
Size 620 kB (620010 bytes)
Hash 8171edd386b6abd105c0ff0e740330d9
7914e2b95f29d65b0ffb8e6daf7f54dc14da0ae0
5044971fcc4e0c4837e7e586b858fba8257feeed88812253aa9ee2396915c40a
GET /template/web/GG/2.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 620010
last-modified: Wed, 11 May 2022 08:12:37 GMT
etag: "627b6ff5-975ea"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/ppll.gif
192.151.196.21200 OK 965 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/ppll.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 480 x 270\012- data
Size 965 kB (965446 bytes)
Hash 5f87eaa078aeb58fbe6a932225fe00e2
d155153be18e5b37704fa2b046751373a23bd708
55f2f4507e307aa3a6f26e06744510894d6a35a5289600b60120ddfca84e1cf9
GET /template/web/GG/ppll.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 965446
last-modified: Thu, 01 Dec 2022 04:59:36 GMT
etag: "638834b8-ebb46"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230125-1/68ee1fdf51ef64356c6d08a6cb707992.jpg
23.224.136.188200 OK 192 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/68ee1fdf51ef64356c6d08a6cb707992.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 192 kB (192143 bytes)
Hash 794df6d9694890cb02774d39eef127e5
b8304c1d6e9881af5ae0f6c8d7c7c62dd3f72c21
601189368c0326f7a794f6468b4efe91267b648cfc1a5a22281c0e47942539a3
GET /upload/vod/20230125-1/68ee1fdf51ef64356c6d08a6cb707992.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:15 GMT
Content-Type: image/jpeg
Content-Length: 192143
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:41:50 GMT
ETag: "63d0b30e-2ee8f"
Accept-Ranges: bytes
u1.wmbt2.com/template/web/zyxf.js
192.151.196.21200 OK 563 kB URL HTTP/2 u1.wmbt2.com/template/web/zyxf.js
IP 192.151.196.21:0
Size 563 kB (563010 bytes)
Hash c0b969cd68ab178ed33006799683af65
5639a15dd347861c29b46721a306dcfef17d030a
03ae6a229351a2a4c565994d16c77ff249c53ebb98803b0d11c20657cb5dfe6e
GET /template/web/zyxf.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: application/javascript
last-modified: Mon, 23 Jan 2023 09:51:04 GMT
vary: Accept-Encoding
etag: W/"63ce5888-148d"
expires: Fri, 27 Jan 2023 14:47:34 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2058066788&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2058066788&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2058066788&si=959981931bea09b9a10c9c552a50e761&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 27 Jan 2023 02:47:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=D07B960C64ACAE42; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ttzytp3.com/upload/vod/20230125-1/971991666a1caac56c9810e9fef6f950.jpg
23.224.136.188200 OK 179 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/971991666a1caac56c9810e9fef6f950.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 179 kB (179303 bytes)
Hash 50ff9dd5139806a644d30587a1c630c2
41763e8e8b06c9e8c8798acc1863ac5880843e19
add569b0ade030c68f657f7ab4bf5394811fb53fd5e4db761913fe15bf300427
GET /upload/vod/20230125-1/971991666a1caac56c9810e9fef6f950.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:15 GMT
Content-Type: image/jpeg
Content-Length: 179303
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:41:49 GMT
ETag: "63d0b30d-2bc67"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230125-1/00c944b43e145ca0e28fa61f77c3fc1c.jpg
23.224.136.188200 OK 196 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/00c944b43e145ca0e28fa61f77c3fc1c.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 196 kB (195451 bytes)
Hash ba31e81761fe4e9ef9f47fdaf1cd6c16
2aa3c3304230b071ca02c9f8ccc2b6cd1630de8b
7d0a89aaae5019e52d4bdfe796172ff73351d332de8e9e0d383e6dfcc56a6549
GET /upload/vod/20230125-1/00c944b43e145ca0e28fa61f77c3fc1c.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: image/jpeg
Content-Length: 195451
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:41:43 GMT
ETag: "63d0b307-2fb7b"
Accept-Ranges: bytes
u1.wmbt2.com/template/web/GG/55.gif
192.151.196.21200 OK 834 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/55.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 140 x 206\012- data
Size 834 kB (834244 bytes)
Hash 3965598665b057b276ed86263c36f334
f8374496c56ad6cd140a9bd009b0637c8ce91a35
5efcea93fd0c2cb8059ea79144c6bfb6b094b5810e21cf6e2168ef51ac2fd36a
GET /template/web/GG/55.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 834244
last-modified: Wed, 11 May 2022 08:28:17 GMT
etag: "627b73a1-cbac4"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/dp2.gif
192.151.196.21200 OK 767 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/dp2.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 767 kB (766938 bytes)
Hash 06f924cdbba4e6c4765765139a404682
7eaadc65f26a4fe45240e14f96c29aa53e721775
514dc1d00a06bed8dbb2a891aa73b6ff70cd32772f582df1c2c959c856d45a5d
GET /template/web/GG/dp2.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 766938
last-modified: Mon, 25 Apr 2022 12:29:50 GMT
etag: "6266943e-bb3da"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/dp4.gif
192.151.196.21200 OK 747 kB URL HTTP/2 u1.wmbt2.com/template/web/GG/dp4.gif
IP 192.151.196.21:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 747 kB (746571 bytes)
Hash 84e8edecf6c28c8218e0a7b1ad9ea414
3897e6bf1a2292c59b45e44d2b9c38e45f8f9a6f
356abb92d87698d59a4af16304d13e760b032739634c495fba68568e82d5c1ce
GET /template/web/GG/dp4.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 746571
last-modified: Mon, 25 Apr 2022 12:29:52 GMT
etag: "62669440-b644b"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
172.83.155.45200 OK 99 kB URL HTTP/2 kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Hash 5057019842032cd72cc53fc9db8984cb
74c23172056bd1ad95120490f8b9a72c78d0bbfc
0b2c55edc45ae48aa65a39d3af468422e36476fab2a6c30e37d40bc9df0cba65
GET /241ffcf0a5007067dad148a90c317e01.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:14 GMT
content-type: image/gif
content-length: 99372
last-modified: Tue, 10 Jan 2023 09:17:01 GMT
etag: "63bd2d0d-1842c"
expires: Fri, 27 Jan 2023 14:47:14 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 16516
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=805qOdGly9PZv2yJnww7cBphigafsRz5TjFYMEKAITUGNEPDjMmpl9%2FbS%2FGY2NpxTW6w%2BT2CYYzi6PzGTkBOD%2FkWQjWFwsOEd2Gn2JOQJj1FQRX9HIcDAQ7iikix"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7875e7c30b80841f-YVR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp3.com/upload/vod/20230125-1/25bb7553cd88b5f1be1cda2cb1e3e605.jpg
23.224.136.188200 OK 182 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230125-1/25bb7553cd88b5f1be1cda2cb1e3e605.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 182 kB (181970 bytes)
Hash 841a71d602c8e1fb33b30a499b75f994
aba20bdd0b3e885192335bce5b1346b509a98b2c
34ac24f97b8032244c108e06ac660ed1a0d2c5c6fa2be32925e16ab8d0b18235
GET /upload/vod/20230125-1/25bb7553cd88b5f1be1cda2cb1e3e605.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Fri, 27 Jan 2023 02:47:14 GMT
Content-Type: image/jpeg
Content-Length: 181970
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 04:41:44 GMT
ETag: "63d0b308-2c6d2"
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1437297061&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1437297061&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1437297061&si=86ea3af34e71a9d5eae3e3255c8ace53&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 27 Jan 2023 02:47:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=201A4DAB4B28081A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
kvevv.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
13.227.254.91200 OK 288 kB URL HTTP/1.1 kvevv.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
IP 13.227.254.91:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 288 kB (288397 bytes)
Hash e17bb688cfdae836ea866c47e92a022a
d748bb7b13696141ba768280a21d3dac482e3a0c
cb9affdc029bd6deb908ab9786fad62113c4ba28d2e9a8926cbed0c5e2c2aa6a
GET /fee6dc0783e7085f6b3452a1155d4b4a.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 288397
Connection: keep-alive
Date: Sat, 24 Dec 2022 08:26:22 GMT
Last-Modified: Sat, 24 Dec 2022 08:23:21 GMT
ETag: "e17bb688cfdae836ea866c47e92a022a"
Cache-Control: public, max-age=31536000
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 4e3c79d06b4e17a0f3b574740ddc8206.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SIN52-C3
X-Amz-Cf-Id: X3rv04rN6-dhY_rOp7vgSnqRklCnWlhakB3pLy7cj6QPSSgeGPFuLQ==
Age: 2917253
rootnetworksdv.ocsp-certum.com/
23.36.79.17200 OK 1.5 kB URL HTTP/1.1 rootnetworksdv.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 3c937cb726d33096c3bf826df3337a95
571abc554b088ed698341cf41b0414a7dde64c10
f52628213d60bb3e7651956f2ae2bb6f6d14b8ca37724238443bfc89015df233
POST / HTTP/1.1
Host: rootnetworksdv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1490
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Fri, 27 Jan 2023 02:47:15 GMT
Connection: keep-alive
X-N: S
rootnetworksdv.ocsp-certum.com/
23.36.79.17200 OK 1.5 kB URL HTTP/1.1 rootnetworksdv.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 3c937cb726d33096c3bf826df3337a95
571abc554b088ed698341cf41b0414a7dde64c10
f52628213d60bb3e7651956f2ae2bb6f6d14b8ca37724238443bfc89015df233
POST / HTTP/1.1
Host: rootnetworksdv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1490
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=843
Date: Fri, 27 Jan 2023 02:47:15 GMT
Connection: keep-alive
X-N: S
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 68f7a206661316c83f836938a407a035
de82724901a13fc431f029bac772c744638e7838
e3b11c797d1ae8626b2b0634f8b721835c179580481878543483fc3cdbe7eb54
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 02:47:15 GMT
Etag: "63d19185-1d7"
Last-Modified: Fri, 27 Jan 2023 02:28:55 GMT
Server: ECS (dcb/7EEB)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: z7x5DJbgwh83zBlY2KDWAUZNOQO3bOay7XRf8UM0xLLf2oLnzRaBEg==
Age: 1100
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1343498066&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1343498066&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1343498066&si=23623cf5f4a21b97670aa94e566ea294&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 27 Jan 2023 02:47:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=3C2760B242101D2D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1463254674&si=e583d8fedf3139c4a2a8a7555c2f7636&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1463254674&si=e583d8fedf3139c4a2a8a7555c2f7636&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1463254674&si=e583d8fedf3139c4a2a8a7555c2f7636&su=http%3A%2F%2Fwww.ahngbbs.com%2F&v=1.3.0&lv=1&sn=40710&r=0&ww=1268&u=https%3A%2F%2Fu1.wmbt2.com%2F&tt=%E8%8A%B1%E7%94%9F%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 27 Jan 2023 02:47:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=1E7204F486A7FAE2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
13.227.254.86200 OK 919 kB URL HTTP/2 kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP 13.227.254.86:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 919 kB (918679 bytes)
Hash 956582dd3aa22ca9b19bdd1d5e091e24
c2d80e05f59981f6ed58a8231f502bd990894d6b
88e686882e64a0e199c79bd83b7102885b67242b5d0b49a1f37674c0bb3ddd8e
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kzerr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 918679
last-modified: Mon, 19 Dec 2022 07:54:21 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 26 Jan 2023 15:27:44 GMT
etag: "956582dd3aa22ca9b19bdd1d5e091e24"
x-cache: Hit from cloudfront
via: 1.1 3c724fc8704aec61a7bab068ccd978fe.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: bGCOwh8AiaFrfmbG-RfQWHOaMuKnLOFl-6zfHobZqh92Jfd9R1Pbtw==
age: 40771
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b1472208bba10d6a6ad18b6d267901b3
7edc7f15e94359f65de77954196a4370ae6bbe0f
bfc131629b5b5500a095a294a43d55cb8ef0ae49d67c4fd3f755081b4d366b4d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 02:47:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 24 Jan 2023 03:05:10 GMT
Expires: Tue, 31 Jan 2023 03:05:09 GMT
Etag: "7edc7f15e94359f65de77954196a4370ae6bbe0f"
Cache-Control: max-age=346073,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fe29a0ef4db50f-OSL
kzeoo.com/0e243abb7057b68d7362544cbbe032ba.gif
172.83.155.45200 OK 270 kB URL HTTP/2 kzeoo.com/0e243abb7057b68d7362544cbbe032ba.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Size 270 kB (270145 bytes)
Hash 2e0432b5ead77702ac433d71c5caeeb4
91f7f7320673eb770bd2b82c82d898fa6ed5de97
63ccf288b83f2c2d1995165c5f15cf3980c947cff737800d8119cdad406d3c7a
GET /0e243abb7057b68d7362544cbbe032ba.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:14 GMT
content-type: image/gif
content-length: 270145
last-modified: Wed, 26 Oct 2022 13:37:18 GMT
etag: "6359380e-41f41"
expires: Fri, 27 Jan 2023 14:47:14 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 484426
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hX5Ar9%2FK0fcxx9TfXtPiqStyxeq73j0fAX2UgwSCDfcT50s5Ttt7Ear4wk3SNqP2UW59IkiU1UuNe9vSWBxRsdPBc6qQxnmFjhoPuVVVl9R0UfqxmfbVPSmDeJvh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7879ecc4fbb4c549-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
13.227.254.55200 OK 396 kB URL HTTP/2 kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
IP 13.227.254.55:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 396 kB (395600 bytes)
Hash 5155d4f34bc2f7e77b9fe8e854d9e96f
408ed373dd26d934ee70f30b0e47a9dc8049983f
db9f393331e2d56fe7da37b7822590b82524e2dde508848299877daeae1df3be
GET /f7fd72d8ade7e262c4b4f656dd460724.gif HTTP/1.1
Host: kzehh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 395600
date: Tue, 20 Dec 2022 23:20:07 GMT
last-modified: Sat, 17 Dec 2022 11:55:02 GMT
etag: "5155d4f34bc2f7e77b9fe8e854d9e96f"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 95d5bc8b4873ccfdcd27d17cb5965ff8.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: TYPDYaNbE7F4Ee42CA1HXGQc3ZoWZCZX-_EYMjcM92kTVIt7w15tug==
age: 3209227
X-Firefox-Spdy: h2
kzeoo.com/47e02a59b814807a640ae615b82c06ac.gif
172.83.155.45200 OK 214 kB URL HTTP/2 kzeoo.com/47e02a59b814807a640ae615b82c06ac.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Size 214 kB (213551 bytes)
Hash 38a577005d8da64f084a3f6624619e55
d271b81103a0c053eaaf5ba802158a2d7ea8e3c1
23d0f1ac9f00f07722d9b6496672e1e08e1e6657d5b6b36542f14d87f15eaa43
GET /47e02a59b814807a640ae615b82c06ac.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:14 GMT
content-type: image/gif
content-length: 213551
last-modified: Wed, 14 Sep 2022 11:24:46 GMT
etag: "6321b9fe-3422f"
expires: Fri, 27 Jan 2023 14:47:14 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 488075
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kFlknUC2JT1kASh9GfSPNJti166kBLiT7O9HrLeuitTpn9VT3e9xWjqzpLdX%2BF2BqJ7i5fKgtHMWVRaOlkv2vxKFA9ITe%2BynFf5cly75KpiXRtollUOP6vEa7atf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7885dcc6ced8281f-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
u1.wmbt2.com/
192.151.196.21200 OK 379 kB IP 192.151.196.21:0
Size 379 kB (379118 bytes)
Hash 5796d41e8bd024cf252c14bd58a6df0b
a2ace2979127c8c83c08622e5ab867b593a983b4
63301d8895567db270a4d13d769fd7a97646ff4cc11afe17114b3c67f727010a
GET / HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ahngbbs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:33 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
3718896ccc.com/c76b6b83f68449898dbeba8d3afeeb17.gif
103.170.15.75200 OK 429 kB URL HTTP/1.1 3718896ccc.com/c76b6b83f68449898dbeba8d3afeeb17.gif
IP 103.170.15.75:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 750 x 100\012- data
Size 429 kB (428715 bytes)
Hash 8210df04bd6396b170b8feb016ae687f
e3a485ecef81f1464cefb0c321c8747190e8b762
cf47ae179a9a0a1a8d7f149af54bc698aca7eca03a0b2436eb929eb908637738
GET /c76b6b83f68449898dbeba8d3afeeb17.gif HTTP/1.1
Host: 3718896ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63c4f987-68aab"
Date: Mon, 16 Jan 2023 07:22:22 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 16 Jan 2023 07:15:19 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-05
Content-Length: 428715
kvemm.com/ec9fcd758df74f805f29f72e8545d13b.gif
13.227.254.64200 OK 902 kB URL HTTP/2 kvemm.com/ec9fcd758df74f805f29f72e8545d13b.gif
IP 13.227.254.64:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 902 kB (902313 bytes)
Hash 8b4a95ea7cfbb7fb4d2b18efca5145f3
d2966ecbeb7369620cce5dbcd15d0fe591d79648
dd5ff25f4d6931bd3d2ef86c1a8901853ee2503fd2d6edb264a61abb37c2b002
GET /ec9fcd758df74f805f29f72e8545d13b.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 902313
last-modified: Thu, 15 Dec 2022 02:17:25 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 26 Jan 2023 13:49:57 GMT
etag: "8b4a95ea7cfbb7fb4d2b18efca5145f3"
x-cache: Hit from cloudfront
via: 1.1 003b6042285e886f3f4d6afd190f633c.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
x-amz-cf-id: 9RRFeE84aULs-Zz4sN7dpP2CuuM-AqJGGyoN777Q3i7DIc1I2ksBDA==
age: 78701
X-Firefox-Spdy: h2
2588qq.com/d886c72a6ae146a2982d664e0b475bdc.gif
103.170.15.79200 OK 56 kB URL HTTP/1.1 2588qq.com/d886c72a6ae146a2982d664e0b475bdc.gif
IP 103.170.15.79:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 128 x 128\012- data
Hash e3a860a8bf4b00e84a27972b6ce1db47
793298288e10a3ae6301660202ccb2f00101e72b
3d2acfe0d4c487ba9bae5ce18996052ca4ed0422e40df5e8032b9665164b5bf1
GET /d886c72a6ae146a2982d664e0b475bdc.gif HTTP/1.1
Host: 2588qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63b5258b-d95a"
Date: Thu, 26 Jan 2023 13:28:34 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 04 Jan 2023 07:06:51 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-09
Content-Length: 55642
n0499.com/52398d62c1cf48fa95ec0fa704653940.gif
18.143.107.111200 OK 101 kB URL HTTP/1.1 n0499.com/52398d62c1cf48fa95ec0fa704653940.gif
IP 18.143.107.111:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 101 kB (100964 bytes)
Hash 27d1de97ac93e08c23d38839c165962c
020372b65036c38287bf286a45dafd0cbd3a0538
57d082becc6ff907404430333320f5d87607b761c5b8647a13f339a20ca2f30d
GET /52398d62c1cf48fa95ec0fa704653940.gif HTTP/1.1
Host: n0499.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 02:47:15 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 08 Jan 2023 13:53:34 GMT
ETag: W/"63bacade-433f6"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 35ed96d10b3543996166fa56f7aef831
441f835a1482e6146dda21113ccdb8b7a79a88c6
8ea04a4c4eea053612bd82f8696ee731d7abe50143011e52e26b9ffebfda8fa8
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Fri, 27 Jan 2023 02:47:16 GMT
last-modified: Tue, 24 Jan 2023 17:47:53 GMT
expires: Tue, 31 Jan 2023 17:47:52 GMT
etag: "441f835a1482e6146dda21113ccdb8b7a79a88c6"
cache-control: max-age=399035,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
cf-ray: 78fe29a53a289be6-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1674787636
via: cache15.l2de2[34,33,304-0,M], cache21.l2de2[35,0], cache1.se1[116,115,200-0,C], cache1.se1[117,0], cache3.se1[119,0]
age: 0
x-cache: HIT TCP_MEM_HIT dirn:11:269052326
x-swift-savetime: Fri, 27 Jan 2023 02:47:16 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9716747876359335687e, 2ff62c9716747876359335687e
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 35ed96d10b3543996166fa56f7aef831
441f835a1482e6146dda21113ccdb8b7a79a88c6
8ea04a4c4eea053612bd82f8696ee731d7abe50143011e52e26b9ffebfda8fa8
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Fri, 27 Jan 2023 02:47:16 GMT
last-modified: Tue, 24 Jan 2023 17:47:53 GMT
expires: Tue, 31 Jan 2023 17:47:52 GMT
etag: "441f835a1482e6146dda21113ccdb8b7a79a88c6"
cache-control: max-age=399035,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
cf-ray: 78fe29a53a289be6-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1674787636
via: cache15.l2de2[34,33,304-0,M], cache21.l2de2[35,0], cache1.se1[116,116,200-0,H], cache1.se1[117,0], cache7.se1[119,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:269052326
x-swift-savetime: Fri, 27 Jan 2023 02:47:16 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9b16747876359371043e, 2ff62c9b16747876359371043e
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83bcd1cff1d78d95110169177b13953a
70781d2d62ed3c1b1203a7dc45a41a6f76d2f8b7
ef20271f4df6267a0f3c1c5c4435e612a00e865438cecdba528a50a489c98297
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF20271F4DF6267A0F3C1C5C4435E612A00E865438CECDBA528A50A489C98297"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14658
Expires: Fri, 27 Jan 2023 06:51:34 GMT
Date: Fri, 27 Jan 2023 02:47:16 GMT
Connection: keep-alive
66668aaa.com/2650173e69ec4b84b29634bd395a4c91.gif
103.170.15.110200 OK 857 kB URL HTTP/1.1 66668aaa.com/2650173e69ec4b84b29634bd395a4c91.gif
IP 103.170.15.110:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 857 kB (857145 bytes)
Hash cf250ba4debf89cc57f49709d7cb73b0
ef7b4219780eedca6dde0a5b46278cd8120bf00f
952f1be23b3fc8df89b231db9a483f55ccd73486d8fe3e71c07e70405cbd4d4a
GET /2650173e69ec4b84b29634bd395a4c91.gif HTTP/1.1
Host: 66668aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63c6b058-d1439"
Date: Thu, 19 Jan 2023 06:20:29 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 17 Jan 2023 14:27:36 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-40
Content-Length: 857145
383guanggao.oss-cn-shenzhen.aliyuncs.com/200X200.gif
120.77.166.67200 OK 137 kB URL HTTP/1.1 383guanggao.oss-cn-shenzhen.aliyuncs.com/200X200.gif
IP 120.77.166.67:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 200 x 200\012- data
Size 137 kB (136945 bytes)
Hash 77e56e44521598151bbc814814005448
204207c707cae73d562c4c8fcb1e8467eeabf2eb
a1275ab8c911c61150c5f68b2da51d30a146929e2c9478ab1a68db88a086ff6f
GET /200X200.gif HTTP/1.1
Host: 383guanggao.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Fri, 27 Jan 2023 02:47:15 GMT
Content-Type: image/gif
Content-Length: 136945
Connection: keep-alive
x-oss-request-id: 63D33B33A554993435AE9727
Accept-Ranges: bytes
ETag: "77E56E44521598151BBC814814005448"
Last-Modified: Thu, 08 Dec 2022 07:20:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6164053056264850434
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: d+VuRFIVmBUbvIFIFABUSA==
x-oss-server-time: 2
u1.wmbt2.com/template/web/dipiao.js
192.151.196.21200 OK 301 kB URL HTTP/2 u1.wmbt2.com/template/web/dipiao.js
IP 192.151.196.21:0
Size 301 kB (300683 bytes)
Hash 8fcb35097a28ae4512365f545de3a03d
be68c30e6a7220de9595429fb28a6b240176df31
a3fac234326f6f40893e9e3d22509d7d5cf3b87cf5452e38bb7fabcfed31ae5e
GET /template/web/dipiao.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: application/javascript
last-modified: Sun, 15 May 2022 14:24:56 GMT
vary: Accept-Encoding
etag: W/"62810d38-81a"
expires: Fri, 27 Jan 2023 14:47:34 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/xx3.js
192.151.196.21200 OK 1.1 MB URL HTTP/2 u1.wmbt2.com/template/web/xx3.js
IP 192.151.196.21:0
Size 1.1 MB (1074375 bytes)
Hash f50f29ba135d2529ad620ab8a438b2bc
76bd15fe9bed5dcbe27793bc44ec90185707219e
762f2244963b56d3dc1ad3c1dc20489d73bf21cf3fc00a10044952dfbf47820a
GET /template/web/xx3.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 14:45:59 GMT
vary: Accept-Encoding
etag: W/"63d29227-1339"
expires: Fri, 27 Jan 2023 14:47:34 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
baidu6image6sina38.com/pics/960x80.gif
202.79.168.156200 OK 610 kB URL HTTP/2 baidu6image6sina38.com/pics/960x80.gif
IP 202.79.168.156:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 960 x 80\012- data
Size 610 kB (610044 bytes)
Hash b27497b12ab8408c575804f5bae22bc2
210a46c5811435945b2ef6227c9eb22a13cd6f78
3f1563e29b1a848d447a38d9890301b760076756cbc5ae594273a3aa59d7664b
GET /pics/960x80.gif HTTP/1.1
Host: baidu6image6sina38.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:14 GMT
content-type: image/gif
content-length: 610044
last-modified: Sun, 15 Jan 2023 08:30:56 GMT
etag: "63c3b9c0-94efc"
expires: Sun, 26 Feb 2023 02:47:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
120.77.166.72200 OK 394 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 394 kB (394237 bytes)
Hash 03123a07739f511b3306d13415cd72b1
6dbf38767657a15b922e4d153f46fe4829e012cb
72b3fa6461c39eace9c154e56b66b437457ecde50ae7c615cd923e442d058cdd
GET /js960x80%20.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Fri, 27 Jan 2023 02:47:15 GMT
Content-Type: image/gif
Content-Length: 394237
Connection: keep-alive
x-oss-request-id: 63D33B334EAD1130386B8C1C
Accept-Ranges: bytes
ETag: "03123A07739F511B3306D13415CD72B1"
Last-Modified: Tue, 20 Dec 2022 14:44:22 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13376170837400656090
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: AxI6B3OfURszBtE0Fc1ysQ==
x-oss-server-time: 1
image.tnmvgr.cn/oms.1511122.com/1672811733462-960x60.gif
47.246.44.206200 OK 109 kB URL HTTP/1.1 image.tnmvgr.cn/oms.1511122.com/1672811733462-960x60.gif
IP 47.246.44.206:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 109 kB (109246 bytes)
Hash e573c37ce1ba8b57e8dfb8fcd43368c9
f5da3a1479bfd18c820893899b5b478df5d02d3c
d9f97dfc186d336e8a5da72bffc7b70378bf87f68de9af20d59a8b88ff271d53
GET /oms.1511122.com/1672811733462-960x60.gif HTTP/1.1
Host: image.tnmvgr.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/gif
Content-Length: 109246
Connection: keep-alive
Date: Fri, 27 Jan 2023 02:26:30 GMT
x-oss-request-id: 63D33656F275553537C71630
Vary: Origin
x-oss-cdn-auth: success
Accept-Ranges: bytes
ETag: "E573C37CE1BA8B57E8DFB8FCD43368C9"
Last-Modified: Wed, 04 Jan 2023 05:55:33 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5454499210466108819
x-oss-storage-class: Standard
Content-MD5: 5XPDfOG6i1fo37j81DNoyQ==
x-oss-server-time: 25
Ali-Swift-Global-Savetime: 1674786390
Via: cache10.l2de2[0,0,304-0,H], cache11.l2de2[1,0], cache7.se1[2055,2055,200-0,H], cache8.se1[2059,0]
Age: 1246
X-Cache: HIT TCP_REFRESH_HIT dirn:3:32462876
X-Swift-SaveTime: Fri, 27 Jan 2023 02:47:16 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9c16747876346028945e
cdn-jinjutupian-cdn.com/jj/640-100.gif
172.247.80.60200 OK 71 kB URL HTTP/2 cdn-jinjutupian-cdn.com/jj/640-100.gif
IP 172.247.80.60:0
File type GIF image data, version 89a, 640 x 100\012- data
Hash cdc759f1218c304fd70a17ee805fdd2b
0a4c54b190aebcd416d0785abb0643d51bf78bd9
d4b0f1eef2faf4601d707cec784124302ad79833c2b422c204739d8c30de0ab0
GET /jj/640-100.gif HTTP/1.1
Host: cdn-jinjutupian-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 02:47:16 GMT
content-type: image/gif
content-length: 70615
last-modified: Wed, 28 Dec 2022 16:09:36 GMT
etag: "63ac6a40-113d7"
expires: Sat, 25 Feb 2023 15:48:52 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ky891.oss-cn-shenzhen.aliyuncs.com/891-960x80.gif
120.77.167.202200 OK 299 kB URL HTTP/1.1 ky891.oss-cn-shenzhen.aliyuncs.com/891-960x80.gif
IP 120.77.167.202:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 299 kB (298872 bytes)
Hash 563418030c4388ccb5df09d7a956b3aa
bc52680b1b525e7fe8cc17a64903035e00cbc37f
476d03d56758f426d0cd7541718e28ddcffc1a5336cd728f07f82606bed1f4f6
GET /891-960x80.gif HTTP/1.1
Host: ky891.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Fri, 27 Jan 2023 02:47:15 GMT
Content-Type: image/gif
Content-Length: 298872
Connection: keep-alive
x-oss-request-id: 63D33B332612B03333290D1A
Accept-Ranges: bytes
ETag: "563418030C4388CCB5DF09D7A956B3AA"
Last-Modified: Mon, 02 Jan 2023 14:12:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6427100620931530640
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: VjQYAwxDiMy13wnXqVazqg==
x-oss-server-time: 3
9030a.cc/1008-960x60.gif
154.85.10.21200 OK 245 kB IP 154.85.10.21:0
ASN #211392 Dream Cloud Innovation Limited
File type GIF image data, version 89a, 960 x 60\012- data
Size 245 kB (245135 bytes)
Hash b6eb4d9fd04fe63a7687677a8036e237
eac3cedc645a39478dc6ad3ec6ea97db621174b8
6b61596ae15b088b70b49d17c7b47eaffaa5f235c9215459334b85039af7f008
GET /1008-960x60.gif HTTP/1.1
Host: 9030a.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Tue, 04 Oct 2022 14:45:04 GMT
Accept-Ranges: bytes
ETag: "5c7ab8e3ffd7d81:0"
Server: Microsoft-IIS/8.5
Date: Fri, 27 Jan 2023 02:46:02 GMT
Content-Length: 245135
X-Via: 1.1 localhost.localdomain (random:85111 Fikker/Webcache/3.7.8)
Set-Cookie: fikker-tkjk-8I2E=6AJN4WT7BW0g0mIaVuK7h92mbGRsXQjs; expires=Fri, 27 Jan 2023 13:14:05 GMT; max-age=7200; path=/
fikker-tkjk-8I2E=6AJN4WT7BW0g0mIaVuK7h92mbGRsXQjs; expires=Fri, 27 Jan 2023 13:14:05 GMT; domain=.cc; max-age=7200; path=/
u1.wmbt2.com/template/web/zxbf.js
192.151.196.21200 OK 301 kB URL HTTP/2 u1.wmbt2.com/template/web/zxbf.js
IP 192.151.196.21:0
Size 301 kB (300953 bytes)
Hash b01683d7d5993bed2ec88892b9ba4318
0a3bde66393e444f7bbe3979dc1fa76dae9959e4
19d3c110e5b60089cd9270fe5ff36492424c6f7c6cf41756dbd9da468208ee6b
GET /template/web/zxbf.js HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 06:54:19 GMT
vary: Accept-Encoding
etag: W/"63d2239b-14d3"
expires: Fri, 27 Jan 2023 14:47:34 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/Q3auHgzwzM7lfibDibZw1dnZN1RFUI5icVRDSA0IJthupwMib7bhfVxolosoiaD7urZUm/0
43.129.255.47200 OK 238 kB URL HTTP/2 p.qlogo.cn/qqmail_head/Q3auHgzwzM7lfibDibZw1dnZN1RFUI5icVRDSA0IJthupwMib7bhfVxolosoiaD7urZUm/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 200 x 200\012- data
Size 238 kB (238250 bytes)
Hash 1b3190b3acaefebd7482dc379e2ea64b
2c6faab838b13a8cbf276afcd35f48231a2d6ba2
c06fcaa4ecb77c7e4fe16f5d916186d4c26559e69df64cd91a3f058dba3c3a3b
GET /qqmail_head/Q3auHgzwzM7lfibDibZw1dnZN1RFUI5icVRDSA0IJthupwMib7bhfVxolosoiaD7urZUm/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Fri, 27 Jan 2023 02:47:15 GMT
content-type: image/gif
content-length: 238250
vary: Accept,Origin
last-modified: Fri, 20 Jan 2023 12:26:30 GMT
cache-control: max-age=2592000
x-delay: 37980 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 238250
chid: 0
fid: 0
x-nws-log-uuid: 0dd84d80-0413-4b2b-b694-5038fb6aa399
X-Firefox-Spdy: h2
gtm-cn-j6730u6sd0b.gtm-a3b8.com/ky960x60.gif
113.1.0.117200 OK 400 kB URL HTTP/1.1 gtm-cn-j6730u6sd0b.gtm-a3b8.com/ky960x60.gif
IP 113.1.0.117:0
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 960 x 60\012- data
Size 400 kB (399450 bytes)
Hash 4e1e4b8f46ac2e67539d5881785ba29a
7d3c9c963087ffc8c196cb7e67629342027a8a45
4c9cc489a2e26500ace73c53ce05bdfa52876a8700b7e9e73c1554187acefb0d
GET /ky960x60.gif HTTP/1.1
Host: gtm-cn-j6730u6sd0b.gtm-a3b8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Thu, 29 Dec 2022 12:09:17 GMT
Etag: "4e1e4b8f46ac2e67539d5881785ba29a"
Content-Type: image/gif
Date: Wed, 11 Jan 2023 14:44:57 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 10945751995987991778
x-cos-request-id: NjNiZWNiNjlfMTU1NGU0MDlfNTViYV8yYmY5NDc2
Content-Length: 399450
Accept-Ranges: bytes
X-NWS-LOG-UUID: 3518829663845484546
Connection: keep-alive
X-Cache-Lookup: Cache Hit
p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7PJmjpJPGJOiavFpnSj4iclWL0ZIe8L7lRTY2TqJMia0N38/0
43.129.255.47200 OK 206 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7PJmjpJPGJOiavFpnSj4iclWL0ZIe8L7lRTY2TqJMia0N38/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 206 kB (205622 bytes)
Hash 8a22a6888c325aa3acf83e7cedfe35e7
37da1ea976724d35c1c32ae18d7924192184ba32
2e90b20d4c2067ff68444790955d65d2745365cf025c486c8c2b685696faeeaa
GET /qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7PJmjpJPGJOiavFpnSj4iclWL0ZIe8L7lRTY2TqJMia0N38/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Fri, 27 Jan 2023 02:47:15 GMT
content-type: image/gif
content-length: 205622
vary: Accept,Origin
last-modified: Sat, 31 Dec 2022 07:19:17 GMT
cache-control: max-age=2592000
x-delay: 32384 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 205622
chid: 0
fid: 0
x-nws-log-uuid: 4c304ced-342b-4f01-8773-9820dff32c7f
X-Firefox-Spdy: h2
u1.wmbt2.com/template/xinheise/css/zui.css
192.151.196.21200 OK 0 B URL HTTP/2 u1.wmbt2.com/template/xinheise/css/zui.css
IP 192.151.196.21:0
GET /template/xinheise/css/zui.css HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:33 GMT
content-type: text/css
last-modified: Sat, 03 Dec 2022 17:02:35 GMT
vary: Accept-Encoding
etag: W/"638b812b-1629a"
expires: Fri, 27 Jan 2023 14:47:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
n0600.com/a06905fba15d4ef59ebcb392ebefd40a.gif
54.151.242.68200 OK 0 B URL HTTP/2 n0600.com/a06905fba15d4ef59ebcb392ebefd40a.gif
IP 54.151.242.68:0
GET /a06905fba15d4ef59ebcb392ebefd40a.gif HTTP/1.1
Host: n0600.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 02:47:15 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Wed, 04 Jan 2023 10:10:45 GMT
etag: W/"63b550a5-54d22"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
u1.wmbt2.com/template/xinheise/css/ate.css
192.151.196.21200 OK 0 B URL HTTP/2 u1.wmbt2.com/template/xinheise/css/ate.css
IP 192.151.196.21:0
GET /template/xinheise/css/ate.css HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:33 GMT
content-type: text/css
last-modified: Tue, 04 Jan 2022 15:13:26 GMT
vary: Accept-Encoding
etag: W/"61d46416-126e4"
expires: Fri, 27 Jan 2023 14:47:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
u1.wmbt2.com/template/xinheise/css/1.css
192.151.196.21200 OK 0 B URL HTTP/2 u1.wmbt2.com/template/xinheise/css/1.css
IP 192.151.196.21:0
GET /template/xinheise/css/1.css HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:33 GMT
content-type: text/css
last-modified: Mon, 14 Mar 2022 11:30:18 GMT
vary: Accept-Encoding
etag: W/"622f274a-8319"
expires: Fri, 27 Jan 2023 14:47:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
u1.wmbt2.com/template/web/GG/dp1.gif
192.151.196.21200 OK 0 B URL HTTP/2 u1.wmbt2.com/template/web/GG/dp1.gif
IP 192.151.196.21:0
GET /template/web/GG/dp1.gif HTTP/1.1
Host: u1.wmbt2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://u1.wmbt2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:47:34 GMT
content-type: image/gif
content-length: 141174
last-modified: Mon, 25 Apr 2022 12:29:49 GMT
etag: "6266943d-22776"
expires: Sun, 26 Feb 2023 02:47:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2