Edit tour

Windows Analysis Report
http://sg-adh7.vv.885210.xyz/

Overview

General Information

Sample URL:	http://sg-adh7.vv.885210.xyz/
Analysis ID:	1636994
Infos:

Detection

Score:	64
Range:	0 - 100
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

HTML page contains obfuscated javascript

Performs DNS queries to domains with low reputation

Creates files inside the system directory

Deletes files inside the Windows folder

Detected non-DNS traffic on DNS port

Classification

Process Tree

System is w10x64

chrome.exe (PID: 1752 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 5988 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1964,i,7488705212206366076,12196477073181415663,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2016 /prefetch:3 MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 6632 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://sg-adh7.vv.885210.xyz/" MD5: E81F54E6C1129887AEA47E7D092680BF)

cleanup

Malware Configuration

⊘No configs have been found

Yara Signatures

⊘No yara matches

Sigma Signatures

⊘No Sigma rule has matched

Suricata Signatures

⊘No Suricata rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus / Scanner detection for submitted sample

Source: http://sg-adh7.vv.885210.xyz/

Avira URL Cloud: detection malicious, Label: malware

Antivirus detection for URL or domain

Source: http://sg-adh7.vv.885210.xyz/favicon.ico

Avira URL Cloud: Label: malware

Phishing

HTML page contains obfuscated javascript

Source: https://js.player.cntv.cn/creator/vodplayer.js

HTTP Parser: var a0_0x51f3=['7G179E7AA7A17G179P7A9','ui_webFullScreen','iPhone','zIndex','hasBarrage','barrageApp

Source: http://sg-adh7.vv.885210.xyz/	HTTP Parser: No favicon
Source: http://sg-adh7.vv.885210.xyz/	HTTP Parser: No favicon
Source: http://sg-adh7.vv.885210.xyz/	HTTP Parser: No favicon
Source: http://sg-adh7.vv.885210.xyz/	HTTP Parser: No favicon
Source: https://global.cctv.com/2025/03/04/VIDEDanTkGdnKhqWobUGrOWv250304.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/2025/03/04/VIDEDanTkGdnKhqWobUGrOWv250304.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/2025/03/04/VIDEDanTkGdnKhqWobUGrOWv250304.shtml	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.12:49782 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 138.113.147.185:443 -> 192.168.2.12:49807 version: TLS 1.2

Source: chrome.exe

Memory has grown: Private usage: 1MB later: 54MB

Networking

Performs DNS queries to domains with low reputation

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	DNS query: sg-adh7.vv.885210.xyz
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	DNS query: sg-adh7.vv.885210.xyz
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	DNS query: sg-adh7.vv.885210.xyz
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	DNS query: sg-adh7.vv.885210.xyz
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	DNS query: sg-adh7.vv.885210.xyz
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	DNS query: sg-adh7.vv.885210.xyz
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	DNS query: sg-adh7.vv.885210.xyz
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	DNS query: sg-adh7.vv.885210.xyz

Source: global traffic

TCP traffic: 192.168.2.12:55117 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.5
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.5
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.5
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.5
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.5
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.5
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.206.67
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.206.67
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.206.67
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.206.67
Source: unknown	TCP traffic detected without corresponding DNS query: 216.58.206.67
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.5
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60

Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Tue, 16 Jul 2024 20:22:15 GMTETag: W/"86af5184a89a84a665a779b3ad9f2bd3"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 2715Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:54 GMTDate: Thu, 13 Mar 2025 09:03:54 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856634.8693749cdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 2e 08 d1 f7 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 23 00 00 00 21 08 06 00 00 00 53 11 12 52 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 44 65 58 49 66 4d 4d 00 2a 00 00 00 08 00 01 87 69 00 04 00 00 00 01 00 00 00 1a 00 00 00 00 00 03 a0 01 00 03 00 00 00 01 00 01 00 00 a0 02 00 04 00 00 00 01 00 00 00 23 a0 03 00 04 00 00 00 01 00 00 00 21 00 00 00 00 c2 7c 10 c7 00 00 09 e9 49 44 41 54 58 c3 c5 58 07 54 94 67 16 1d 7a 1f a5 48 1d aa 34 e9 02 0a a3 62 0b 10 86 a6 20 45 9a 44 05 a2 a2 20 01 d4 b5 81 42 b0 20 45 d4 80 62 c9 46 8c ae 2b ea ae 12 8d c1 b2 16 82 c4 b3 8a 6e d4 a8 c4 d8 48 c4 3d 18 31 44 10 f5 ee 7b bf c2 b1 24 2c e6 24 bb df 39 df 99 7f e6 2f ef fe af dc fb de 88 44 6f b1 b6 6c d9 62 e3 eb eb bb d7 d1 d1 f1 ce b4 69 d3 f2 f7 ec d9 d3 5f f4 ff 58 fe fe fe 1a de de de f3 07 0c 18 f0 6f 55 55 55 38 3b 3b 9f 9b 3d 7b b6 f4 7f 0a 62 f4 e8 d1 aa 53 a6 4c b1 f3 f0 f0 c8 ec d7 af df 4d 0d 0d 0d 30 18 65 65 e5 0e 02 94 97 9b 9b ab f9 87 83 88 8c 8c 54 18 3e 7c b8 a7 8f 8f cf ca f8 f8 f8 fa 25 4b 96 dc 5b b3 66 0d aa aa aa 50 59 59 89 9c 9c 1c 4c 9e 3c b9 29 33 33 73 06 00 3d da 0a 7f 08 10 ca 09 e5 21 43 86 44 c7 c6 c6 d6 6d da b4 a9 e3 f2 e5 cb 78 f4 e8 11 5e 5f 35 35 35 70 71 71 b9 33 75 ea d4 8f 2b 2a 2a 23 d2 93 e6 1b 88 44 d6 2a 22 91 81 06 3d 46 2c 12 e9 69 49 24 12 35 11 44 72 bf 09 48 4a 4a 8a 12 b9 3f 6e e6 cc 99 97 ce 9e 3d db 63 b8 ad ad 0d 3f ff fc f3 2b 60 aa 77 57 43 2c 16 53 d8 54 9e d9 5b bb 7e 37 d8 66 ec 5f ed ad dc 73 5d 3c 6c ca c7 84 ba fe 65 ec 78 8f 4f ed 1d ac 8b 74 95 f5 c3 75 75 25 26 f4 f8 b7 03 35 62 c4 88 00 02 72 ee ca 95 2b 3d 46 2f 5c b8 00 fa 0d 0b 17 2e c4 dd bb 77 f1 e4 c9 13 1c 3f 7e 1c 7b ff b6 07 05 f9 2b 60 6a e0 00 79 79 25 f8 04 0c 42 d6 da 91 3f 15 d6 be fb 74 d9 a1 60 24 2e 1e 05 4f 1f e7 4e 2b 4b eb 1b e6 46 56 d5 fd 54 75 c7 92 89 be 85 73 fc f8 f1 03 27 4c 98 70 b0 a1 a1 a1 07 08 83 9a 35 6b 16 c2 c3 c3 61 6b 6b 8b 92 92 12 34 37 7f 8f a2 a2 22 34 9e 3f 87 db df fd 08 99 6f 18 64 53 0c b1 f9 c2 08 1c ea 08 43 d1 51 19 42 93 86 60 6c d8 60 4c ce 7f 07 e9 95 a1 78 27 d2 0b 5a ea ba 0d 5a 2a 7a a1 d8 d9 4b 7e 1d 3d 7a 54 71 d2 a4 49 26 81 81 81 c5 db b6 6d Data Ascii: .PNGIHDR#!SRsRGBDeXIfMMi#!\|IDATXXTgzH4b ED B EbF+nH=1D{$,$9/Dolbi_X
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Tue, 16 Jul 2024 20:22:47 GMTETag: W/"02ce706a773c3dabca9fd16ffbf145cf"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1309Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:54 GMTDate: Thu, 13 Mar 2025 09:03:54 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856634.869375acdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 2b 04 d4 fb 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 25 00 00 00 1f 08 04 00 00 00 ca 76 cc 43 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 44 65 58 49 66 4d 4d 00 2a 00 00 00 08 00 01 87 69 00 04 00 00 00 01 00 00 00 1a 00 00 00 00 00 03 a0 01 00 03 00 00 00 01 00 01 00 00 a0 02 00 04 00 00 00 01 00 00 00 25 a0 03 00 04 00 00 00 01 00 00 00 1f 00 00 00 00 7b 59 a1 28 00 00 04 7a 49 44 41 54 18 19 95 c1 09 4c d5 05 00 c0 e1 1f f8 c0 10 f0 ca cc d2 1a d9 b2 96 99 d8 9d a8 8b 72 ac 95 31 53 97 cb 69 53 97 2e 6b 74 58 16 a5 65 76 ac 35 b7 b4 d9 86 2c ad ad cd 59 cd ad 32 2d d3 dc d0 5c 46 92 26 c9 0a c1 03 e2 ca 47 88 78 e0 03 fe ef 17 2f 42 c9 e8 fa 3e ba 91 c8 28 6e a4 27 5d f5 27 87 8f 78 9c 3e 74 08 11 47 a7 10 fd 48 a2 5b b7 f0 21 9f 72 13 67 9d c7 74 76 d3 c8 6e e6 90 c6 65 64 32 89 4c d2 e8 45 02 7d 98 cc 5b cc e5 12 fe e2 3c 56 20 f2 29 c3 e9 34 90 0f 10 91 ea be 5f 65 ee 98 53 f2 c8 c1 fb 4a 86 7d c6 32 9e 63 35 07 90 43 2c e7 1c 89 8c 65 6f 0f 53 4c 68 e3 63 32 48 20 66 00 ab 69 c1 c1 d1 f9 6e b5 da e3 36 7b dc 9f 5c 1e b9 a2 89 00 11 a9 a3 8b 1e 5c 91 fa 74 f6 ae 37 4e 7f 6e a1 9b 5d 1c 0c fb 9e 87 e8 0d 24 f3 4a e8 e4 0c 4b a2 9e 63 af e3 45 24 4a 15 67 f4 67 d6 d4 6d 1b 1b eb 3d ab c8 ac 1a 16 92 ca e0 d0 c7 8f 05 c7 ec ce 7e 33 44 4a 59 0c c9 a4 33 86 bb 12 56 2d ac ad f7 5c 3f 7a 43 25 4f f0 e2 f4 f0 af fe 9d 2d f6 8b b0 9c 8b 20 97 6d ec e7 60 4e 4b c4 ae 1a 6c 30 66 59 34 3e 9c 76 b4 58 8d 58 6f b3 1d ea 5c ef d7 36 1b d3 60 76 f3 d8 25 a6 42 15 e2 f5 d6 d9 d5 37 4e 71 8a 5f a8 5b 4d 71 9e 51 c3 be 6e b6 39 96 aa b5 3e e0 20 d3 7d d8 72 35 ea 0a e7 ac 75 28 d4 62 c8 77 ed 10 d8 21 cf 38 71 b2 27 dd e9 55 6e 36 ea 52 fb 9a 60 4f 57 aa 55 8e 13 93 c5 79 9e 52 77 39 79 c7 c4 2c 58 42 69 ba 87 8d 39 e2 52 5f b7 5a ad 74 a6 23 5c 69 e0 36 b3 3d e4 29 ef 17 f1 6a 77 1a b3 c9 cb 45 9c 60 a3 5a e3 c4 1f 98 07 17 b0 68 c6 d1 26 b5 d1 85 a6 9a e0 ab b6 aa 8d 56 1a 51 37 7a af 15 46 5d e7 18 b3 dc 60 60 87 02 27 3a c1 f5 06 6a d8 29 fb c9 a5 5d c6 bc 7d 27 d4 62 af 32 ce 38 5f b6 cd b3 76 9a 65 b1 da 62 a5 75 76 d5 e0 11 db 8c a9 f6 f6 32 9e a7 5d fa f8 a2 5a b5 c2 0c f1 5a f7 aa 81 35 36 18 73 28 18 13 Data Ascii: +PNGIHDR%vCsRGBDeXIfMMi%{Y(zIDATLr1SiS.ktXev5,Y2-\F&Gx/B>(n']'x>tGH[!rgtvn
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKServer: TengineContent-Type: application/javascriptContent-Length: 10408Connection: keep-aliveDate: Thu, 13 Mar 2025 08:56:18 GMTVary: Accept-Encodingx-oss-request-id: 67D29DB2D546093632230D47x-oss-object-type: Normalx-oss-hash-crc64ecma: 784279744081961369x-oss-storage-class: StandardContent-MD5: meAephEu3vH5TpgRA+pErg==x-oss-server-time: 8Content-Encoding: gzipCache-Control: max-age=2592000,s-maxage=3600Access-Control-Allow-Origin: x-bucket-code: 3Via: cache21.l2fr1[0,0,200-0,H], cache2.l2fr1[0,0], cache2.l2fr1[1,0], ens-cache5.de7[0,0,200-0,H], ens-cache8.de7[2,0]Age: 457Ali-Swift-Global-Savetime: 1741856178X-Cache: HIT TCP_MEM_HIT dirn:-2:-2X-Swift-SaveTime: Thu, 13 Mar 2025 08:59:01 GMTX-Swift-CacheTime: 3437Timing-Allow-Origin: EagleId: a3b5839c17418566354757152eData Raw: 1f 8b 08 00 00 00 00 00 00 03 cd 7d 7d 53 14 d7 d6 ef ff f7 53 90 a9 5b d6 cc 75 32 c1 18 73 12 a8 39 b9 88 e6 c4 dc 18 bd 62 4e aa ae f1 5a cd f4 06 3a ce 74 cf e9 ee 81 10 a4 0a 54 90 57 41 c5 77 0c 62 40 8d 0a 98 68 04 41 e5 bb 3c 0f dd 33 f3 57 be c2 5d 6b ef 7e d9 bb e7 85 79 f3 dc a7 2a c1 ee 3d dd fb b7 df d6 da 6b ad bd d6 ea 70 57 46 4d 98 8a a6 86 23 03 a1 8c 41 9a 0c 53 57 12 66 a8 b5 57 d2 9b 48 7c 60 30 2a c5 55 a9 57 e9 96 4c 4d 8f c1 03 7a 5b 37 51 cd a8 1a 97 62 29 c9 4c f4 84 3f 6a 4b 2a 6d e9 f4 0f e1 1f fa f6 fe f0 51 f8 94 f4 e1 cf 6d 1f fe 9f e6 0f 3f 8f 7d 78 7a 6f e4 87 c8 47 91 56 35 93 4c c6 e3 71 75 cf 9e 30 f7 de 21 45 ed 3e 29 25 cf 16 be f4 51 24 42 f1 15 7c 45 3d b5 ef 74 2b 89 29 9a 11 ff 48 39 de a3 a9 e4 9c 72 5c 92 e1 8f 26 7f a4 c4 4c 62 98 61 29 12 25 31 49 95 75 4d 91 e3 1f b5 b1 0b e1 c7 5e a2 1b d0 cb b8 02 d7 89 ae 6e ec 18 89 91 9f 4c a2 ca 71 6f 08 48 54 8a 0c 28 5d f0 46 97 a6 87 b1 05 6a 93 a2 36 49 11 72 4a 3d 1d 97 e0 4f ab 4e cc 8c ae 36 11 7c 5d 31 b0 0b 26 74 21 ce 8d a2 fb 84 0b 89 4f 9a fd 69 c2 c1 78 0f 1d eb fc 91 24 cc 58 5a d7 4c 0d 9f 89 99 5a 07 8c bf da 1d 4b 48 c9 24 3c e8 8e d5 ff fd e1 Data Ascii: }}SS[u2s9bNZ:tTWAwb@hA<3W]k~y=kpWFM#ASWfWH\|`0UWLMz[7Qb)L?jK*mQm?}xzoGV5Lqu0!E>)%Q$B\|E=t+)H9r\&Lba)%1IuM^nLqoHT(]Fj6IrJ=ON6\|]1&t!Oix$XZLZKH$<
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Tue, 16 Jul 2024 20:22:15 GMTETag: W/"86af5184a89a84a665a779b3ad9f2bd3"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 2715Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:55 GMTDate: Thu, 13 Mar 2025 09:03:55 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856635.8693b2bcdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 2e 08 d1 f7 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 23 00 00 00 21 08 06 00 00 00 53 11 12 52 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 44 65 58 49 66 4d 4d 00 2a 00 00 00 08 00 01 87 69 00 04 00 00 00 01 00 00 00 1a 00 00 00 00 00 03 a0 01 00 03 00 00 00 01 00 01 00 00 a0 02 00 04 00 00 00 01 00 00 00 23 a0 03 00 04 00 00 00 01 00 00 00 21 00 00 00 00 c2 7c 10 c7 00 00 09 e9 49 44 41 54 58 c3 c5 58 07 54 94 67 16 1d 7a 1f a5 48 1d aa 34 e9 02 0a a3 62 0b 10 86 a6 20 45 9a 44 05 a2 a2 20 01 d4 b5 81 42 b0 20 45 d4 80 62 c9 46 8c ae 2b ea ae 12 8d c1 b2 16 82 c4 b3 8a 6e d4 a8 c4 d8 48 c4 3d 18 31 44 10 f5 ee 7b bf c2 b1 24 2c e6 24 bb df 39 df 99 7f e6 2f ef fe af dc fb de 88 44 6f b1 b6 6c d9 62 e3 eb eb bb d7 d1 d1 f1 ce b4 69 d3 f2 f7 ec d9 d3 5f f4 ff 58 fe fe fe 1a de de de f3 07 0c 18 f0 6f 55 55 55 38 3b 3b 9f 9b 3d 7b b6 f4 7f 0a 62 f4 e8 d1 aa 53 a6 4c b1 f3 f0 f0 c8 ec d7 af df 4d 0d 0d 0d 30 18 65 65 e5 0e 02 94 97 9b 9b ab f9 87 83 88 8c 8c 54 18 3e 7c b8 a7 8f 8f cf ca f8 f8 f8 fa 25 4b 96 dc 5b b3 66 0d aa aa aa 50 59 59 89 9c 9c 1c 4c 9e 3c b9 29 33 33 73 06 00 3d da 0a 7f 08 10 ca 09 e5 21 43 86 44 c7 c6 c6 d6 6d da b4 a9 e3 f2 e5 cb 78 f4 e8 11 5e 5f 35 35 35 70 71 71 b9 33 75 ea d4 8f 2b 2a 2a 23 d2 93 e6 1b 88 44 d6 2a 22 91 81 06 3d 46 2c 12 e9 69 49 24 12 35 11 44 72 bf 09 48 4a 4a 8a 12 b9 3f 6e e6 cc 99 97 ce 9e 3d db 63 b8 ad ad 0d 3f ff fc f3 2b 60 aa 77 57 43 2c 16 53 d8 54 9e d9 5b bb 7e 37 d8 66 ec 5f ed ad dc 73 5d 3c 6c ca c7 84 ba fe 65 ec 78 8f 4f ed 1d ac 8b 74 95 f5 c3 75 75 25 26 f4 f8 b7 03 35 62 c4 88 00 02 72 ee ca 95 2b 3d 46 2f 5c b8 00 fa 0d 0b 17 2e c4 dd bb 77 f1 e4 c9 13 1c 3f 7e 1c 7b ff b6 07 05 f9 2b 60 6a e0 00 79 79 25 f8 04 0c 42 d6 da 91 3f 15 d6 be fb 74 d9 a1 60 24 2e 1e 05 4f 1f e7 4e 2b 4b eb 1b e6 46 56 d5 fd 54 75 c7 92 89 be 85 73 fc f8 f1 03 27 4c 98 70 b0 a1 a1 a1 07 08 83 9a 35 6b 16 c2 c3 c3 61 6b 6b 8b 92 92 12 34 37 7f 8f a2 a2 22 34 9e 3f 87 db df fd 08 99 6f 18 64 53 0c b1 f9 c2 08 1c ea 08 43 d1 51 19 42 93 86 60 6c d8 60 4c ce 7f 07 e9 95 a1 78 27 d2 0b 5a ea ba 0d 5a 2a 7a a1 d8 d9 4b 7e 1d 3d 7a 54 71 d2 a4 49 26 81 81 81 c5 db b6 6d Data Ascii: .PNGIHDR#!SRsRGBDeXIfMMi#!\|IDATXXTgzH4b ED B EbF+nH=1D{$,$9/Dolbi_X
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Tue, 16 Jul 2024 20:22:47 GMTETag: W/"02ce706a773c3dabca9fd16ffbf145cf"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1309Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:55 GMTDate: Thu, 13 Mar 2025 09:03:55 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856635.8693b39cdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 2b 04 d4 fb 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 25 00 00 00 1f 08 04 00 00 00 ca 76 cc 43 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 44 65 58 49 66 4d 4d 00 2a 00 00 00 08 00 01 87 69 00 04 00 00 00 01 00 00 00 1a 00 00 00 00 00 03 a0 01 00 03 00 00 00 01 00 01 00 00 a0 02 00 04 00 00 00 01 00 00 00 25 a0 03 00 04 00 00 00 01 00 00 00 1f 00 00 00 00 7b 59 a1 28 00 00 04 7a 49 44 41 54 18 19 95 c1 09 4c d5 05 00 c0 e1 1f f8 c0 10 f0 ca cc d2 1a d9 b2 96 99 d8 9d a8 8b 72 ac 95 31 53 97 cb 69 53 97 2e 6b 74 58 16 a5 65 76 ac 35 b7 b4 d9 86 2c ad ad cd 59 cd ad 32 2d d3 dc d0 5c 46 92 26 c9 0a c1 03 e2 ca 47 88 78 e0 03 fe ef 17 2f 42 c9 e8 fa 3e ba 91 c8 28 6e a4 27 5d f5 27 87 8f 78 9c 3e 74 08 11 47 a7 10 fd 48 a2 5b b7 f0 21 9f 72 13 67 9d c7 74 76 d3 c8 6e e6 90 c6 65 64 32 89 4c d2 e8 45 02 7d 98 cc 5b cc e5 12 fe e2 3c 56 20 f2 29 c3 e9 34 90 0f 10 91 ea be 5f 65 ee 98 53 f2 c8 c1 fb 4a 86 7d c6 32 9e 63 35 07 90 43 2c e7 1c 89 8c 65 6f 0f 53 4c 68 e3 63 32 48 20 66 00 ab 69 c1 c1 d1 f9 6e b5 da e3 36 7b dc 9f 5c 1e b9 a2 89 00 11 a9 a3 8b 1e 5c 91 fa 74 f6 ae 37 4e 7f 6e a1 9b 5d 1c 0c fb 9e 87 e8 0d 24 f3 4a e8 e4 0c 4b a2 9e 63 af e3 45 24 4a 15 67 f4 67 d6 d4 6d 1b 1b eb 3d ab c8 ac 1a 16 92 ca e0 d0 c7 8f 05 c7 ec ce 7e 33 44 4a 59 0c c9 a4 33 86 bb 12 56 2d ac ad f7 5c 3f 7a 43 25 4f f0 e2 f4 f0 af fe 9d 2d f6 8b b0 9c 8b 20 97 6d ec e7 60 4e 4b c4 ae 1a 6c 30 66 59 34 3e 9c 76 b4 58 8d 58 6f b3 1d ea 5c ef d7 36 1b d3 60 76 f3 d8 25 a6 42 15 e2 f5 d6 d9 d5 37 4e 71 8a 5f a8 5b 4d 71 9e 51 c3 be 6e b6 39 96 aa b5 3e e0 20 d3 7d d8 72 35 ea 0a e7 ac 75 28 d4 62 c8 77 ed 10 d8 21 cf 38 71 b2 27 dd e9 55 6e 36 ea 52 fb 9a 60 4f 57 aa 55 8e 13 93 c5 79 9e 52 77 39 79 c7 c4 2c 58 42 69 ba 87 8d 39 e2 52 5f b7 5a ad 74 a6 23 5c 69 e0 36 b3 3d e4 29 ef 17 f1 6a 77 1a b3 c9 cb 45 9c 60 a3 5a e3 c4 1f 98 07 17 b0 68 c6 d1 26 b5 d1 85 a6 9a e0 ab b6 aa 8d 56 1a 51 37 7a af 15 46 5d e7 18 b3 dc 60 60 87 02 27 3a c1 f5 06 6a d8 29 fb c9 a5 5d c6 bc 7d 27 d4 62 af 32 ce 38 5f b6 cd b3 76 9a 65 b1 da 62 a5 75 76 d5 e0 11 db 8c a9 f6 f6 32 9e a7 5d fa f8 a2 5a b5 c2 0c f1 5a f7 aa 81 35 36 18 73 28 18 13 Data Ascii: +PNGIHDR%vCsRGBDeXIfMMi%{Y(zIDATLr1SiS.ktXev5,Y2-\F&Gx/B>(n']'x>tGH[!rgtvn
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Wed, 17 Jul 2024 05:04:47 GMTETag: W/"81cb192b6e3ea564be9bc5dfdbc46e93"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 4968Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:55 GMTDate: Thu, 13 Mar 2025 09:03:55 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856635.8693da6cdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: *Data Raw: 1f 8b 08 00 00 00 00 00 00 03 ac 55 07 58 93 c9 ba 0e 5d a9 ba 28 45 41 b2 01 14 94 90 06 09 89 10 50 6a 68 22 a2 20 2e 48 3a 91 92 40 02 84 0e 52 14 51 58 c3 01 54 3a a2 d8 68 82 c2 d2 8c 22 b0 a0 18 04 16 10 75 09 e2 52 a4 2f 55 ea 09 b6 b3 e7 9e 3d 7b ce bd cf cd f3 fc f9 e7 9f 79 e7 fd de ef 9b 77 66 12 1c ec 2d 65 24 77 49 02 00 00 19 9c 95 99 a3 e0 dd 2e 78 34 b6 88 0b fe 97 0a 2b 42 05 af ad 0c ab 93 4c 00 40 f6 e9 e6 23 94 7a 40 76 37 00 20 fe 90 e6 e4 c2 72 b1 b3 c5 10 e9 3e ba 78 12 9d 40 d6 65 fb 30 04 68 00 c0 d0 98 cd c0 13 bd c8 2c 20 81 4c a5 f9 1a 81 a6 6a 1e 81 80 34 92 11 c8 59 df 0e 6a c7 30 25 7b d2 ac 42 fc c9 c7 42 ec 9d 88 21 5e 44 34 09 64 8c 05 1a b2 31 02 02 1f 32 0b 0f 64 fb 78 fb 32 31 6c 23 d0 27 5e 8c a0 bd d9 0d 01 01 3f 41 58 5e 46 a0 43 9b 03 40 17 3b 07 a0 29 dd 9f 0c d4 d7 45 82 89 30 3d 38 10 85 d6 85 21 a1 68 b8 9e 0e 10 0e 85 a1 20 50 14 04 86 00 43 61 18 28 12 83 40 03 bf fc 40 82 68 fe 24 0a c6 d1 cc e2 4b 2c c1 97 11 c8 93 c5 62 60 20 90 a0 a0 20 dd 20 84 2e dd 9f 0a 81 a1 d1 68 08 14 0e 81 c3 c1 02 04 98 19 ec cb c2 b3 c1 be 4c f5 af 0c 66 64 26 d1 9f c6 60 d1 e8 be c0 4d 46 3c 81 1e c0 32 02 09 94 7e 4e c1 87 f1 8d d6 97 f9 a5 4c 82 82 41 d8 78 06 04 a6 0b dd 4c e9 13 90 44 fc 86 63 04 f8 7b 7f 0a 4e 22 42 c8 de 64 1f b2 2f 8b 29 c0 c2 be 61 19 9e 74 16 9d e9 49 ff 37 d4 df 86 ff 29 80 a0 6e 76 76 7f ad c5 c7 e7 5b 08 26 cb 3c 50 90 c6 97 82 fc a9 72 a6 53 30 83 0c 71 24 33 e9 01 fe 44 b2 79 a0 40 a6 fa 66 36 0c 8c a9 3f 19 cf a2 fb 3b d1 e9 de 5f 17 ca e1 ab 64 a0 a9 29 50 cb 99 e6 4b a2 07 31 b5 ff 00 27 9b e1 59 64 23 10 1c 0a 87 82 61 30 30 1c e5 04 d3 c3 e8 43 31 fa c8 03 50 03 0c 14 fa 19 6a 47 27 d1 28 c1 7f 84 c2 c1 50 b8 13 0c 81 81 19 60 f4 d0 ff 04 15 18 86 84 67 e1 ff 23 98 44 c4 50 e8 fe 3e 78 41 ba 34 1f 3c 95 0c 61 f8 52 41 c0 6f 45 c4 98 d2 bd e9 fe 82 c0 02 75 88 3f f6 e3 4c 4d 1d fc e9 14 9a b7 60 80 e9 68 79 18 88 33 37 45 c2 d0 48 24 18 ae 0b fb 24 d7 ce 0e 83 f3 65 b2 f0 be 44 32 ce cc 08 24 e8 d1 a5 d1 48 18 24 c2 40 0f 46 41 a3 c0 24 12 cc 00 4c d0 d7 83 82 d1 28 24 0a ac 87 82 22 e1 64 34 81 42 40 a2 be ce 37 a3 13 03 36 0d b0 39 ff f3 5e 20 d1 89 02 8e 7f c8 c3 a3 49 44 14 09 8a 00 eb 43 f5 Data Ascii: UX](EAPjh" .H:@RQXT:h"uR/U={ywf-e$wI.x4+BL@#z@v7 r>x@e0h, Lj4Yj0%{BB!^D4d12dx21l#'^?AX^FC@;)E0=
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"E726F5D197306F32279372C037A9A0EE"Last-Modified: Sun, 02 Jan 2022 06:35:44 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 28570Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:55 GMTDate: Thu, 13 Mar 2025 09:03:55 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856635.8693db1cdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 34 5b 05 50 55 db d7 bf 84 84 d2 2a d2 20 20 20 0d 4a 37 5c ba bb 43 1a a4 91 6e 50 e9 ee 2e a5 1b 91 2e e9 06 e9 ee ee 96 fe f6 7d ff f9 ce cc 7b 6f de 8c c8 39 7b af bd d6 af 76 b0 82 9c 38 fa 73 82 e7 10 08 04 5d 52 02 aa 04 81 c0 83 7f 20 7a 28 48 e0 df 3b fe b7 6f c1 7f e0 1c 95 c4 85 21 65 c3 44 bb e0 7f 10 1d 85 25 55 50 c0 e3 89 62 1c 04 81 90 41 24 a1 42 2a ae 69 07 e9 2e 9e af 54 a7 7b 7c 5c 4c 5d c6 e9 50 fd be 2a 50 a8 42 85 b1 5f bd 93 52 14 3c 75 3b 09 46 e7 29 17 12 52 81 16 65 7d 7e a3 f8 ca ed 87 3a 76 17 34 25 8e 0c 05 0e 4d 49 18 05 15 4b 04 85 41 50 42 b8 37 cf 6a 39 99 eb 98 34 15 75 a0 2a 95 64 b4 e7 c6 9b ff c5 6c 32 cf 75 86 c7 d6 d1 f0 ac e3 08 5f a2 90 d0 2a d3 9f c9 52 ed 87 d0 5a ab e0 ce f6 0b 05 be 1e 4f cf 40 8c ba 21 bb 2b 61 47 b5 a2 eb 4d 51 a1 67 d1 9c 19 f6 9d 13 19 fe 54 3f 82 87 8b 55 3b 45 07 7e ff 70 dc d8 fc 69 f4 d0 f8 e6 d7 de f4 31 7c e3 93 f7 aa da b5 88 10 78 56 33 11 1a 27 e1 69 ee cf c9 4a 13 06 e8 f3 70 21 a3 3f bc ce 8f d4 bd 6f 6a 12 0f 17 ba ae 78 63 1b 34 a5 bf c8 4a 56 dc c6 0c 15 ad 85 8b d9 85 1d 04 c4 b1 48 40 c9 ba 21 cc 82 1b 6d 41 6d 6e 77 be d7 27 cc a7 4b 19 26 3a 06 12 6f 2d 9a c6 79 b9 97 13 36 f1 09 ea b6 73 44 b9 dd a6 6b 33 f5 9a 7f a6 ab 2a 80 e7 5f a6 18 cb 8f 57 36 cf 7f 4c 3a e4 4f ee 0d 37 f0 21 23 dd c4 69 21 cd c9 65 86 22 41 b4 ed 15 3f b8 32 db 35 3d 0f 43 09 53 0e c0 43 66 86 47 a8 8e 54 40 c2 b2 3b c4 ec 26 c3 86 60 e1 51 fa 42 25 28 fd 11 e1 70 7a c8 e6 ac 14 4e 09 8a 27 f2 74 31 ec 17 ca a8 5c be 2c 91 3e fe 3b 49 6f 89 e4 d7 b2 1b 78 95 05 7b 4e 04 82 0d 25 de 7f a4 a5 ae 99 c3 5a b5 ec 0b 28 ea c8 cf 68 70 bf 37 66 62 eb cc 4b d3 c4 ac 41 b6 65 ca da 7a 0b 4f 66 b8 12 8c 2c f4 b5 13 25 8c c5 b7 e0 8f 8d 03 5e 1e 74 9a a3 0d 82 85 10 fd 40 d0 7d e0 23 1d 83 22 57 25 4c e9 cb 22 df f6 61 a7 49 7f e4 a8 b5 a2 cd d7 49 91 58 e4 8a b5 54 ad 41 92 16 f6 51 0a ff 48 61 5f 45 f0 ed c2 7e 5d eb c4 2c 34 63 8a 54 de a7 5b c9 b3 be b8 1c 52 c0 e7 69 60 0c 61 21 21 18 d3 1b 16 81 c7 c3 b6 6a 82 84 4a c1 8b a3 35 f5 ce 36 2b d6 8d 45 e5 3c 17 e9 b7 31 57 25 fa 42 d2 f5 7a 89 36 be 57 90 16 89 c2 ec 59 f4 eb 12 1d df 39 8e 5e da 1a 8b 5a 1e 3b 83 a7 2e b8 52 e1 5a 36 62 1e b5 e5 ba 94 ff fd 46 fd ff 7e 63 5c c9 34 d5 37 Data Ascii: 4[PU J7\CnP..}{o9{v8s]R z(H;o!eD%UPbA$Bi.T{\|\L]PPB_R<u;F)Re}~:v4%MIKAPB7j94u*dl2u_
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"25623F07C791072ABAA9D16BD1794F9B"Last-Modified: Mon, 03 Mar 2025 09:29:23 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1246216Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:56 GMTDate: Thu, 13 Mar 2025 09:03:56 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856636.8693db2cdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 34 9b 65 58 d4 df d3 c6 bf 4b 77 2a 5d 22 a1 d2 21 48 83 a0 80 34 48 a7 34 d2 dd 25 d2 dd 5d 4a 77 2f cd d2 dd c8 d2 4b 77 d7 02 4b 3c bf ff 8b e7 d5 9c b7 73 5d e7 9c b9 67 ee cf 84 2b 2b 4a e3 62 51 60 01 00 80 2b 2b 23 a5 0a 00 a8 ff 1d 91 a6 30 d0 fe 0b 93 be ab 1a 00 40 07 c8 4a 49 7c f7 c8 3a ee 90 ae a8 58 8c 67 22 e9 92 cb 85 76 20 f4 fe 95 d3 47 36 e1 2e c1 65 c8 64 f7 2b 35 66 3e eb ca be b5 2c 8d 0f 20 6c 98 e5 a5 33 a2 ab dc 1e 3f 46 c5 98 fa c6 92 be f8 11 45 56 24 c3 9c 32 70 55 7f 96 b5 2e a2 c2 b8 c5 e2 d4 1b 5a 3c 09 c3 20 64 ee bc 1a 14 48 f7 3c f3 ae a0 8f b4 99 c7 67 98 79 da bd 23 be e8 27 25 1c 86 21 f0 9f 33 43 c2 4a 64 2d f7 54 5e a1 ee ac e2 b9 0a 52 8f d4 45 65 14 e5 b7 56 ed fc 63 d5 bc ec 34 a8 b6 aa d5 9a 72 6a 29 28 2b db 6e 17 9e 2c 95 e1 f9 96 f0 7b 86 37 99 d4 7f a0 1b be 71 e6 23 92 3b 3a e8 c3 95 ec 5d 91 ca 92 31 b9 37 77 74 53 c2 2a a7 53 9d ea 64 a0 da 66 5d 20 ef a9 58 5e 96 84 98 77 95 2d ff 17 91 50 94 e4 54 44 2e 2b 70 27 28 2a 66 b5 22 99 c9 64 35 5a 35 49 8b 83 c6 bb 06 fb fb f4 e4 bb 44 49 3b 84 78 7e ce 7f f4 f3 15 89 47 b0 6a 30 8e 9b f3 64 c8 df 7d cc 3f 70 f9 30 49 49 8b 7b 50 6e f8 f4 81 51 41 52 53 53 f3 7a 5a 9a 76 ba de 62 72 7f 5c ba 7a 36 d3 be 53 76 b5 3d 6e af 6a b4 b0 01 1f 1a 99 3b 7c d2 5b 7d ea f1 6e 67 8f db bd 4d bf 94 38 d5 b6 53 67 e4 69 3a 66 05 ef 71 c2 b6 77 f2 0c 1f fd b4 73 f4 fb e1 0f 43 4b 7b 51 9a 8e fb 90 33 f0 ec ac da 7b ca d4 ec a3 be ae ea 79 67 81 ea b5 e9 7b 3d 12 51 fb 16 83 7b 44 d4 a0 c9 21 1c a1 1a 63 30 ff f7 e8 c8 ba 94 12 bc dc dd 1d e8 b3 4b 0a 86 59 f2 fe b9 ba 72 3e 90 14 cd cd 1d bd f1 3a 69 84 16 ac be 33 94 4b 37 6c f7 90 a0 f5 bb cb 6f bf 6a 7c a4 ea 7c 36 bc 6f 7b 21 5a 6d 73 57 9a b8 7f 86 77 29 9d 75 bd 74 da e3 8b 9e e9 c2 1e d9 3c cd 99 39 1e 3f 6d 23 38 52 9d 3d 4f 63 fd 1f 4d 04 dc f9 b2 67 84 ce da 25 63 69 c5 52 f6 9e d7 ce 9e 62 56 dc f9 0c 67 fa fb 83 57 22 07 bf 57 ef 8d ac 50 5e 17 e2 b6 50 f9 18 fe d4 13 4a 55 10 72 33 95 e7 df 1e 4c 8c aa 17 c6 1e 68 d1 2b bf 8a ac 0e 8f bd 03 6b 3e e5 cc ec 8a 80 c7 6b 6d 5f 86 3f 95 ae ea 25 d7 31 63 e2 86 9a 2c 2d 2f 27 8a ee 3c af df 6e de 8a 0a 0a a6 dc 6e 36 6d 8b 6e bb 9f 9e 9d 75 21 f0 9e 6e 0c 5f 3e fa be 64 bb 5b 7d a2 9a 39 7b 7c Data Ascii: 4eXKw]"!H4H4%]Jw/KwK<s]g++JbQ`++#0@JI\|:Xg"v G6.ed+5f>, l3?FEV$2pU.Z< dH<gy#'%!3CJd-T^REe
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"8DB335ECA018E3E00A6395558BE3A560"Last-Modified: Wed, 12 Mar 2025 08:19:33 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1239731Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:56 GMTDate: Thu, 13 Mar 2025 09:03:56 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856636.8693e1ccdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: *Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 28 40 d7 bf 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 05 00 00 00 02 d0 08 06 00 00 00 cf 7d dd 56 00 00 20 00 49 44 41 54 78 9c ec bd 59 b3 2d c9 75 1e f6 65 66 55 ed bd cf b9 e7 0e dd 40 a3 1b 03 01 88 04 38 d8 32 ad 10 41 53 94 15 8a b0 3c 85 c2 e1 70 04 1f 14 7e f0 9b 9f fd 63 fc e4 1f e1 07 87 1c 61 87 49 85 6c 86 44 d1 16 49 53 b6 25 80 02 28 42 00 89 6e f4 7c 87 33 ec 5d 55 99 e9 58 2b 57 4e 35 9c bd cf 1d 1a 40 a3 13 b8 bd cf ae 5d 43 56 0e 2b d7 fa f2 5b 6b a9 ff a1 d1 1e 45 a1 2f ce 2b 3e e0 7d f5 d3 6a 99 9e e7 f4 f2 99 4e 2d 1f 8f 57 2b 15 4e 50 7e f9 c4 53 eb 23 37 99 1f 52 f9 be c7 ef 55 ff ae 56 ea be 7e 75 43 57 ad ff 7e d2 f3 7d 55 67 fa ce 47 d5 fc 3c 14 c7 d5 89 95 5d 3a af 6a 23 35 3f 4e 9f 4e b9 e5 1a 4f 8e 6b a5 40 ff 5b 7b 57 2f ef 53 de 5f eb e9 e0 c9 d7 c6 73 ea 36 70 f5 6f b3 57 aa 7f 57 3a b6 a9 87 f1 40 d3 34 68 3c d5 d2 c9 27 f8 13 f1 5d 7c a8 4f 7e 07 35 e9 57 79 3f 4f 9f e1 be e1 dc 70 9e 75 1e ce e5 6b 9d f7 b0 70 f0 0e 72 0d fd ee d2 f9 f4 bb f7 93 36 73 f1 63 a5 1d e5 dc b5 f9 a5 dc ed bf 2f dd b5 7c 7e 35 4e a8 be b7 dc 67 69 cc 4c ef b7 58 f4 1d 27 98 94 e5 91 58 d4 49 6e ab 6f 99 8b 27 15 75 5c 06 4c e7 d3 f4 bb 97 b1 ad d2 3c 0d 6d a2 e5 d3 e8 70 8d 52 8e e7 81 51 3e cc 07 3e a6 00 37 ce ae a7 e3 5a 5a 21 4f 1d 3a 5f a7 31 15 45 a1 e6 f3 fd 62 dd e4 b2 d5 97 74 f1 be de a4 be f4 de c9 78 f5 fc 3b fd 1d 87 7a ec 97 d8 fe f1 1a a3 a4 92 13 59 61 66 fd 13 9f 58 b5 20 e0 db 30 e7 16 6b 99 24 64 a8 d7 c2 ef 34 cc ea a1 a6 e0 55 ec 97 30 ff 46 e7 f8 b9 de c9 7c 94 39 9d de 5b 99 95 a7 cb 1d 8f fc 7e 6c 2a 1c 1b 67 1a 41 ae ae dc 7d f9 98 aa e7 f3 d2 7c ac c7 84 5b 38 86 d9 ef 54 9b 63 b5 5d 2a d3 e5 f9 d4 35 ab 3c d7 af e8 09 a1 f8 95 b6 28 cb 9a f4 58 7b 27 9d c7 00 3c 36 e3 3d 18 67 f0 e1 d9 1e 83 19 b0 1b 7b 34 de a3 57 1e 03 8d e9 f6 1c ff d5 ef fc d7 78 eb d1 5b f8 fe 3f ff 13 3c 79 fa 21 9a 56 63 ec 9f a1 69 80 b3 71 80 ea 6f 30 d8 11 7d 6f 71 b3 ef 71 79 38 e0 ea b0 c7 a5 1d b0 07 30 2a 60 a4 75 81 df d9 80 b4 35 4d eb 94 57 30 be 58 fb 8b fe 5c fb bb 6a 9d 74 5c cf 8e 1d bf a6 3c 38 ef 83 3b e9 69 73 85 e6 ce c5 fa dc 8f 4b e3 68 5a 9f ba 7d 48 6e 9a d5 73 d7 ca dd 74 c9 bb dd ef ae bf f3 9a e1 27 63 79 22 5f 8f d5 51 a9 fc 4f Data Ascii: (@PNGIHDR}V IDATxY-uefU@82AS<p~caIlDIS%(Bn\|3]UX+WN5@]CV+[kE/+>}jN-W+NP~S#7RUV~uCW~}UgG<
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"1A7AC7594F938A84CE9C82987B1579BE"Last-Modified: Mon, 17 Feb 2025 09:50:33 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1359271Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:56 GMTDate: Thu, 13 Mar 2025 09:03:56 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856636.869375fcdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 2a 40 d5 bf 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 05 00 00 00 02 d0 08 06 00 00 00 cf 7d dd 56 00 00 20 00 49 44 41 54 78 9c a4 bd e9 92 1c 49 92 26 a6 66 7e c4 91 99 00 0a 55 d5 dd b3 3d dc 59 0a c9 e5 8a f0 51 f8 2c 14 e1 db 90 22 14 3e 16 7f 70 49 ca ce 70 76 76 ba aa 01 e4 15 97 1f 66 4e f9 3e 55 35 b7 08 24 50 35 c3 80 a4 24 32 33 c2 dd dc 0e 3d 3e fd 54 35 fc 6f 7f f8 af 96 65 c9 b2 dd ee 64 b3 d9 c8 30 0c 32 4d a3 e0 95 52 92 b6 6d e5 e1 e1 81 3f 1f 0e 07 99 e7 24 29 cd fc b9 eb 3a e9 ba 5e 76 bb ad 9c 4e 27 19 c7 49 e6 79 92 be ef a5 ed 7b d9 df ed 65 1c 47 b9 5c 2e b2 88 c8 b2 2c 92 97 85 df fd 15 d7 ff 0a c6 21 f6 3e bc b2 7d 8f 21 48 d3 b4 12 9b c8 9f e7 69 e2 bd 7e fa e9 47 79 7e 7e 96 18 9b f2 b7 34 cf f2 e1 c3 0f fc ff d3 d3 a3 34 6d 2b f5 eb 6e bf 95 d7 c3 41 ee ee ee e4 78 3c ca 92 b3 8e b7 eb 24 c6 c8 7b e3 b9 a7 69 e2 7d 30 06 cc 41 d3 34 3a fe d9 9e bd ed 24 84 20 79 4e 92 73 2a e3 0e 8b 48 83 f1 b4 8d 84 18 64 b2 6b b5 9b 9e f3 3b 4f f8 59 af 81 cf e1 be 0f f7 0f 72 3a 1d cb 28 71 4f dc 3b e5 2c 4d 8c 5c 9b 87 87 7b f9 f2 f8 28 f3 34 c8 34 cf f2 f3 cf 3f f3 bd ba 5e 53 b9 3f bf 72 96 db 57 88 3a 3f 41 1a fd 1e 83 7e 26 2f 5f bd 17 d7 d8 ee 7a ce 0b d6 0f f7 10 c9 f6 dc bd dc dd df cb e1 f5 95 e3 0b a1 e1 fa 70 ee 31 de d0 ca fd c3 83 e4 3c cb cb cb 8b 2c 92 a4 ef 3a 09 51 38 5f fe dc 98 03 9f b7 10 62 f9 db ed 77 ec 27 bd bf 70 0f 88 44 8e ab 6b 5b 99 53 e2 cf 6d d3 70 0f e8 f3 63 df 66 de 17 7b a1 69 a3 fc f8 e3 8f 72 3c be f2 3a 29 2d 32 cf b8 77 e6 7a ef b6 7b 79 ff fe bd 1c 0e 47 99 70 af cb c4 eb fc db bf fb 5b 79 7a 7a 92 cb e5 e4 ab e2 3b f6 6a 8f 2e 5f 4d b5 cd 73 10 db 93 b9 cc 1f d6 1f 7f c7 9c fe f0 e1 03 c7 8f 29 c0 3c 60 cd 73 ca 3c 4f 77 77 f7 72 38 3c 73 3e d3 3c f2 7d 5d d7 70 0f 36 b1 e5 fc e3 fe c7 c3 81 f3 bf db ed 65 4e b3 1c 0f 47 c9 69 b1 b5 cd d7 e3 0e f6 7d 89 6f 8e d7 d7 0f 7f df 6d b7 9c 37 5d 9f cc fd 76 7f bf e3 99 9b a6 b4 9e cf 94 a4 ef b7 f2 c3 0f 1f b9 d6 e7 f3 49 b0 24 dc 0f 76 bf ae 57 f9 f1 f4 f4 85 d7 c3 fe c3 7c fc 9b 3f ff 99 7b 68 18 a6 b2 07 f4 7b c3 b5 0f 45 30 ac cf 81 35 5b 96 50 c6 cb f7 d9 fb 71 2d ec bb 28 0d e7 f2 87 1f de c9 e9 7c 96 61 38 db 78 33 bf 77 5d 2b fb fd 1d c7 5b 9e db e4 19 d6 07 73 Data Ascii: @PNGIHDR}V IDATxI&f~U=YQ,">pIpvvfN>U5$P5$23=>T5oed02MRm?$):^vN'Iy{eG\.,!>}!Hi
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"9E3A55B72DA94D6F40C19CD73577E8A2"Last-Modified: Thu, 06 Feb 2025 07:16:34 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 360607Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:56 GMTDate: Thu, 13 Mar 2025 09:03:56 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856636.869374bcdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 34 7b 77 3c 5c df f3 f7 12 3e 5a 10 5d 74 12 35 ac 48 a2 b7 44 89 16 44 ef 04 11 41 f4 5e 56 ef 35 ea 92 28 d1 5b f4 5e 56 ef bd f7 be 58 ac be 58 ac f2 90 ef ef d9 3f f6 de d7 dd 3d 73 cf cc 99 79 cf 9c 99 39 61 9f 95 64 f0 71 a9 70 01 00 00 be 9c ac 94 2a 00 80 f9 70 8b 3e 86 fd df c3 65 14 b4 ac 09 00 30 00 e4 a4 3e a8 bb a5 ee 43 dc e3 a1 f5 71 5b 70 80 2c 3b 53 d5 9e e6 f9 01 1d 75 55 ad c5 ef a3 fb b4 15 f1 23 d1 aa 8a 14 43 1b eb 94 58 22 62 b4 c8 06 53 46 ec 58 a6 9a e0 24 04 bc 94 9a 3d ec 55 df b3 e7 21 bd b7 05 b3 b3 5a ca 0f 64 df 07 a9 ee e5 30 9e dc 2d 80 29 20 f7 a6 e2 08 f7 a0 09 47 d4 51 8f 96 da f0 36 0b 79 36 21 6d ba 25 ca 95 1c ae a8 df 4a 5b 6a 14 63 9b ef 32 7d 5a 3d df ea 51 73 ef f8 06 25 ae 35 b5 c9 33 2d 1f 3b ab 3b c2 73 37 5a f0 71 86 bb 4c f1 85 78 0d c1 a4 d5 64 e0 95 c6 e5 52 72 f5 b2 71 ab 93 3e 37 b7 9a 05 97 78 1a 72 33 2d 3e 83 74 54 da 5b 54 80 35 8d 19 c6 e9 7c 53 85 97 a1 e3 6e ab 30 23 74 3a 12 8f b8 f1 a6 48 ca e8 69 bf aa 17 07 02 85 6f d4 5d dc de 1b 54 94 96 1b 82 f3 13 d7 17 04 7d 97 ef 4e 44 df 9e 1f e5 ff 12 a4 87 23 a6 27 0a 5b 57 a1 30 66 c0 1a 25 41 53 cb 3a 92 08 00 48 8f ff af 97 f6 81 1b 40 1d 46 84 da 88 a0 aa 61 ac d6 07 4a 05 7f 27 f2 52 f5 cb 80 e9 ae 59 20 ae af 88 01 d7 65 18 03 db 11 59 56 e2 91 d4 9a c2 86 d1 e5 28 7e a0 f0 e3 18 00 80 0e 13 db f7 f1 5a 8f 13 87 2d b3 61 3e be ee 0c a6 71 6d df 92 51 6c 74 7e 2e 44 db cd bb 03 22 07 c4 ef c8 8c d7 50 2c 79 05 0d 76 07 5f c5 5f c2 44 68 5e ff 1b bb 66 ef 07 c0 7e b8 fa 16 93 74 d5 7f ae 9d 71 97 19 b0 67 2f 67 ea ee ce d5 8d 75 6e bf 32 2f c0 e9 b6 18 88 37 fb 50 16 91 5b a9 61 51 a5 a9 bb 0d a7 f5 85 14 c0 20 11 a5 1d 2b cb f9 78 f9 46 c4 58 58 04 ed 44 03 a3 a2 18 92 ff 28 da c9 bc 07 60 3c 5c 81 7d ed 90 3b 16 81 da 17 a6 86 f7 7e a2 cf 08 0d 47 23 e9 7a 8a 95 d1 a9 90 31 f1 86 de 9c 37 ec 5c b7 f9 73 27 bd c2 bb 93 2d 8d ea 0b d4 b4 be 0d 72 06 37 29 98 cd f5 26 cc 11 f1 ca 55 c7 fc 6c 57 e7 39 03 2d 5e 53 c2 f7 96 3c 65 2e 4f ff 03 af 1d 53 ea b7 7c 76 3b 24 3f 18 4b f7 3b 3f ad c5 1a 21 fc f7 c6 c3 e7 ff c7 bf 50 e1 6c 3a 39 da a8 9c 76 f8 85 e2 d8 ad 10 b7 cd fb f6 10 55 03 8a 65 7f 48 28 05 a6 04 b5 b4 90 46 23 e2 66 cd fc d6 36 65 54 cf 61 86 40 df ef cd b0 2c 55 70 Data Ascii: 4{w<\>Z]t5HDDA^V5([^VXX?=sy9adqpp>e0>Cq[p,;SuU#CX"bSFX$=U!Zd0-) GQ6y6!m%J[jc2
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"E726F5D197306F32279372C037A9A0EE"Last-Modified: Sun, 02 Jan 2022 06:35:44 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 28570Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:57 GMTDate: Thu, 13 Mar 2025 09:03:57 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.1eb6655f.1741856637.7227118cdnsip: 95.101.182.34cdncip: 8.46.123.189Timing-Allow-Origin: Server-Timing: ak_p; desc="1741856637302_1600501278_119697688_64_1221_180_0_-";dur=1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 34 5b 05 50 55 db d7 bf 84 84 d2 2a d2 20 20 20 0d 4a 37 5c ba bb 43 1a a4 91 6e 50 e9 ee 2e a5 1b 91 2e e9 06 e9 ee ee 96 fe f6 7d ff f9 ce cc 7b 6f de 8c c8 39 7b af bd d6 af 76 b0 82 9c 38 fa 73 82 e7 10 08 04 5d 52 02 aa 04 81 c0 83 7f 20 7a 28 48 e0 df 3b fe b7 6f c1 7f e0 1c 95 c4 85 21 65 c3 44 bb e0 7f 10 1d 85 25 55 50 c0 e3 89 62 1c 04 81 90 41 24 a1 42 2a ae 69 07 e9 2e 9e af 54 a7 7b 7c 5c 4c 5d c6 e9 50 fd be 2a 50 a8 42 85 b1 5f bd 93 52 14 3c 75 3b 09 46 e7 29 17 12 52 81 16 65 7d 7e a3 f8 ca ed 87 3a 76 17 34 25 8e 0c 05 0e 4d 49 18 05 15 4b 04 85 41 50 42 b8 37 cf 6a 39 99 eb 98 34 15 75 a0 2a 95 64 b4 e7 c6 9b ff c5 6c 32 cf 75 86 c7 d6 d1 f0 ac e3 08 5f a2 90 d0 2a d3 9f c9 52 ed 87 d0 5a ab e0 ce f6 0b 05 be 1e 4f cf 40 8c ba 21 bb 2b 61 47 b5 a2 eb 4d 51 a1 67 d1 9c 19 f6 9d 13 19 fe 54 3f 82 87 8b 55 3b 45 07 7e ff 70 dc d8 fc 69 f4 d0 f8 e6 d7 de f4 31 7c e3 93 f7 aa da b5 88 10 78 56 33 11 1a 27 e1 69 ee cf c9 4a 13 06 e8 f3 70 21 a3 3f bc ce 8f d4 bd 6f 6a 12 0f 17 ba ae 78 63 1b 34 a5 bf c8 4a 56 dc c6 0c 15 ad 85 8b d9 85 1d 04 c4 b1 48 40 c9 ba 21 cc 82 1b 6d 41 6d 6e 77 be d7 27 cc a7 4b 19 26 3a 06 12 6f 2d 9a c6 79 b9 97 13 36 f1 09 ea b6 73 44 b9 dd a6 6b 33 f5 9a 7f a6 ab 2a 80 e7 5f a6 18 cb 8f 57 36 cf 7f 4c 3a e4 4f ee 0d 37 f0 21 23 dd c4 69 21 cd c9 65 86 22 41 b4 ed 15 3f b8 32 db 35 3d 0f 43 09 53 0e c0 43 66 86 47 a8 8e 54 40 c2 b2 3b c4 ec 26 c3 86 60 e1 51 fa 42 25 28 fd 11 e1 70 7a c8 e6 ac 14 4e 09 8a 27 f2 74 31 ec 17 ca a8 5c be 2c 91 3e fe 3b 49 6f 89 e4 d7 b2 1b 78 95 05 7b 4e 04 82 0d 25 de 7f a4 a5 ae 99 c3 5a b5 ec 0b 28 ea c8 cf 68 70 bf 37 66 62 eb cc 4b d3 c4 ac 41 b6 65 ca da 7a 0b 4f 66 b8 12 8c 2c f4 b5 13 25 8c c5 b7 e0 8f 8d 03 5e 1e 74 9a a3 0d 82 85 10 fd 40 d0 7d e0 23 1d 83 22 57 25 4c e9 cb 22 df f6 61 a7 49 7f e4 a8 b5 a2 cd d7 49 91 58 e4 8a b5 54 ad 41 92 16 f6 51 0a ff 48 61 5f 45 f0 ed c2 7e 5d eb c4 2c 34 63 8a 54 de a7 5b c9 b3 be b8 1c 52 c0 e7 69 60 0c 61 21 21 Data Ascii: 4[PU J7\CnP..}{o9{v8s]R z(H;o!eD%UPbA$Bi.T{\|\L]PPB_R<u;F)Re}~:v4%MIKAPB7j94udl2u_RZO@!+aGMQgT?U;E~pi1\|xV3'iJp!?ojxc4JVH@!mAmnw'K&:o-y6sD
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Wed, 17 Jul 2024 05:04:47 GMTETag: W/"81cb192b6e3ea564be9bc5dfdbc46e93"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 4968Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:57 GMTDate: Thu, 13 Mar 2025 09:03:57 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.1eb6655f.1741856637.7227124cdnsip: 95.101.182.34cdncip: 8.46.123.189Timing-Allow-Origin: *Server-Timing: ak_p; desc="1741856637311_1600501278_119697700_60_1465_182_0_-";dur=1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 ac 55 07 58 93 c9 ba 0e 5d a9 ba 28 45 41 b2 01 14 94 90 06 09 89 10 50 6a 68 22 a2 20 2e 48 3a 91 92 40 02 84 0e 52 14 51 58 c3 01 54 3a a2 d8 68 82 c2 d2 8c 22 b0 a0 18 04 16 10 75 09 e2 52 a4 2f 55 ea 09 b6 b3 e7 9e 3d 7b ce bd cf cd f3 fc f9 e7 9f 79 e7 fd de ef 9b 77 66 12 1c ec 2d 65 24 77 49 02 00 00 19 9c 95 99 a3 e0 dd 2e 78 34 b6 88 0b fe 97 0a 2b 42 05 af ad 0c ab 93 4c 00 40 f6 e9 e6 23 94 7a 40 76 37 00 20 fe 90 e6 e4 c2 72 b1 b3 c5 10 e9 3e ba 78 12 9d 40 d6 65 fb 30 04 68 00 c0 d0 98 cd c0 13 bd c8 2c 20 81 4c a5 f9 1a 81 a6 6a 1e 81 80 34 92 11 c8 59 df 0e 6a c7 30 25 7b d2 ac 42 fc c9 c7 42 ec 9d 88 21 5e 44 34 09 64 8c 05 1a b2 31 02 02 1f 32 0b 0f 64 fb 78 fb 32 31 6c 23 d0 27 5e 8c a0 bd d9 0d 01 01 3f 41 58 5e 46 a0 43 9b 03 40 17 3b 07 a0 29 dd 9f 0c d4 d7 45 82 89 30 3d 38 10 85 d6 85 21 a1 68 b8 9e 0e 10 0e 85 a1 20 50 14 04 86 00 43 61 18 28 12 83 40 03 bf fc 40 82 68 fe 24 0a c6 d1 cc e2 4b 2c c1 97 11 c8 93 c5 62 60 20 90 a0 a0 20 dd 20 84 2e dd 9f 0a 81 a1 d1 68 08 14 0e 81 c3 c1 02 04 98 19 ec cb c2 b3 c1 be 4c f5 af 0c 66 64 26 d1 9f c6 60 d1 e8 be c0 4d 46 3c 81 1e c0 32 02 09 94 7e 4e c1 87 f1 8d d6 97 f9 a5 4c 82 82 41 d8 78 06 04 a6 0b dd 4c e9 13 90 44 fc 86 63 04 f8 7b 7f 0a 4e 22 42 c8 de 64 1f b2 2f 8b 29 c0 c2 be 61 19 9e 74 16 9d e9 49 ff 37 d4 df 86 ff 29 80 a0 6e 76 76 7f ad c5 c7 e7 5b 08 26 cb 3c 50 90 c6 97 82 fc a9 72 a6 53 30 83 0c 71 24 33 e9 01 fe 44 b2 79 a0 40 a6 fa 66 36 0c 8c a9 3f 19 cf a2 fb 3b d1 e9 de 5f 17 ca e1 ab 64 a0 a9 29 50 cb 99 e6 4b a2 07 31 b5 ff 00 27 9b e1 59 64 23 10 1c 0a 87 82 61 30 30 1c e5 04 d3 c3 e8 43 31 fa c8 03 50 03 0c 14 fa 19 6a 47 27 d1 28 c1 7f 84 c2 c1 50 b8 13 0c 81 81 19 60 f4 d0 ff 04 15 18 86 84 67 e1 ff 23 98 44 c4 50 e8 fe 3e 78 41 ba 34 1f 3c 95 0c 61 f8 52 41 c0 6f 45 c4 98 d2 bd e9 fe 82 c0 02 75 88 3f f6 e3 4c 4d 1d fc e9 14 9a b7 60 80 e9 68 79 18 88 33 37 45 c2 d0 48 24 18 ae 0b Data Ascii: UX](EAPjh" .H:@RQXT:h"uR/U={ywf-e$wI.x4+BL@#z@v7 r>x@e0h, Lj4Yj0%{BB!^D4d12dx21l#'^?AX^FC@;)E0=8!h PCa(@@h$K,b` .hLfd&`MF<2~NLAxLDc{N"Bd/)atI7)
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"35261E7AAC28E782FA30D1CE487DE7AC"Last-Modified: Wed, 12 Mar 2025 08:20:43 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 449969Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:57 GMTDate: Thu, 13 Mar 2025 09:03:57 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856637.869406bcdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: *Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 2f 40 d0 bf 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 01 e0 00 00 02 0c 08 06 00 00 00 2d ba 7f f1 00 00 20 00 49 44 41 54 78 9c 9c bd 59 af 6d 59 76 26 f4 cd 66 75 bb 39 dd 6d 23 c3 11 99 91 8d 9d 76 a6 5b 5c aa b4 b1 e4 42 05 16 48 34 a2 78 a0 c4 0b 02 09 09 f1 00 ff 81 27 de 10 f0 ce 63 49 20 57 a9 24 a0 b0 cb a8 b0 55 72 9f 76 d9 c6 4e 3b 9d 91 7d b4 b7 3b e7 ec 6e b5 73 4e 34 c6 98 73 ad b5 f7 39 37 32 b3 4e e8 c6 3d f7 9c bd d7 5e cd 9c a3 f9 c6 37 be a1 fe 87 07 cb 00 28 c8 57 80 4a df 8e 3f c3 ec 67 47 3f 46 50 1a d0 0a 1a 72 08 85 00 ad 02 8c 96 f7 d0 df d6 28 28 ad e5 6d c1 4f 9f 43 6f 05 f8 f5 72 7c 05 c5 df 68 a8 a0 e5 58 da cf 7e 4e ef 8a e7 a2 d2 89 84 f1 e7 81 5e 17 0c 10 02 7c f0 f0 de 83 de 3d 84 c0 2f a0 d7 38 3e 67 f0 6b 74 3a ae f2 f4 dd e9 a5 c5 23 62 fc 0c d0 b1 e5 4a 4f 5e 15 10 e8 33 8f de 03 68 8d 78 5c 7a 05 fd 43 f3 b9 0f de 23 f8 80 e0 15 e8 0c e9 bd fc 47 e9 e9 46 cf 3e 44 29 83 fb be c2 e9 89 a8 f4 57 38 ba 10 b9 5d f4 9f be ef e5 e3 55 c4 07 14 3f 53 f1 39 4d e7 30 ad 0f 59 23 c7 ef 56 f1 e7 38 f9 8c f9 19 9c 7e dc dd 63 df ff c5 e7 72 fa fe 78 10 75 f4 34 02 e6 eb f8 ee cf ef 2e 62 5a 27 2a 58 54 c3 02 9b a2 47 6f 1a 54 43 8f 1e 1e bb ce e1 df fd b5 ff 10 5f 7a fb 0b f8 9b 3f fe 63 f8 4a c3 54 19 b2 eb e7 50 af 9e a3 f5 1e fb 66 c0 a6 a9 71 d3 36 d8 7a 8f 86 9e 2f 3d 47 18 68 af 60 82 82 e6 67 1b c6 fb 19 66 e7 96 7e 36 9e 75 38 be 5f 69 6d 1c 5d f5 f8 ef b4 2e ef 3c c9 d9 e2 b8 e7 be f9 4f be df b3 6d c5 ff 70 71 65 ab e3 5f 1c 9d 57 98 7d 9e 52 7a f6 b3 d3 45 1a 5f 95 f6 f3 fd bf fe e4 d3 bb e7 f4 d5 7d 06 4a 01 5a 6e 46 fc b7 1f 5f 71 7a 4f e7 c7 d6 7a dc c1 27 b6 50 1d ad 7d fa 5b a9 74 6c 59 a1 9a 7e 16 f7 c2 68 ab d2 ea 9d 6d 0f da d3 7c 44 be 57 6a fc 1c 3e 9e 96 f3 f6 26 a0 33 0e 99 07 0a af 90 7b 0d 38 85 15 72 3c 7f be c7 4f fc 77 ff 19 7e fe bf fd 2f 30 6c 5a 7c f8 2f fe 18 0d 16 b8 fc e2 97 11 16 c0 ca 0e a8 ea 0d be fd db ff 1c f5 37 bf 81 cb b6 c6 c5 d0 a3 54 03 b4 f2 08 c6 43 57 e7 50 36 03 ba 96 6d 12 8c 81 cd 0b b8 7e c0 e0 7a 5e bb 26 68 f8 61 80 eb 06 d8 da 43 0d 1e 75 e8 91 5f ac 61 d6 0b 60 51 f0 9f a6 6f d9 96 e9 2c 67 5b ef ea 06 e8 1c ac 35 b0 99 e5 7b e5 82 e7 5b 90 15 a5 5c ac 77 80 1b 64 11 f0 cd 22 bb ef e4 d9 Data Ascii: /@PNGIHDR- IDATxYmYv&fu9m#v[\BH4x'cI W$UrvN;};nsN4s972N=^7(WJ?gG?FPr((mOCor\|hX~N
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"EE3D3D7A9E21B6E33BFC791ACDD593C7"Last-Modified: Fri, 17 Jan 2025 09:04:01 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1081088Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:57 GMTDate: Thu, 13 Mar 2025 09:03:57 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856637.8694669cdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: *Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 37 40 c8 bf 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 05 00 00 00 02 d0 08 06 00 00 00 cf 7d dd 56 00 00 20 00 49 44 41 54 78 9c ec bd e9 92 24 49 72 1e a8 66 e6 1e 11 79 d4 d9 33 40 03 43 80 24 b8 4b 62 0f 01 39 5c 91 dd 1f 2b 2b f8 b3 14 d9 77 c0 db ec 2b e1 3d 16 24 05 3f 20 20 39 33 98 c6 cc 74 d7 5d 79 c5 e1 6e 66 2b 7a 9a ba 47 44 1e 55 d9 35 33 44 7b 4b 74 56 46 66 7a b8 9b 9b a9 a9 7e fa e9 a7 e1 7f ff 7f fe df 0a 00 50 6b a5 17 94 22 ff ce 50 4a 81 52 47 7e 1f 0a 7d 9f 77 19 86 61 84 9c 47 fa 3a 96 0a 21 04 e8 fb 1e ba b4 80 d4 2f a0 eb 7b 88 1d 7e df d1 57 3a 7f ec f0 7f 00 31 d1 f7 f8 37 f3 03 3f 27 67 7c 65 18 4b 81 31 8f 90 c7 0c 35 e3 6b 84 3a 8e 50 c6 01 c2 38 42 00 bc ce 11 20 14 b9 3e 80 9c 0b 00 44 fe 3e 4e cf 1f f0 f3 e9 3a 12 84 10 21 c9 f7 7a 44 f9 be 04 fa 25 88 a1 83 8c c3 11 22 8c 90 20 c3 02 76 a5 83 6d ed 20 2d ce e1 f9 1f fe 04 5e fe f8 27 d0 9f 3c 85 9b f5 08 57 37 6b d8 6e b7 30 e6 4c f7 16 a1 00 fe 65 80 1d a4 90 a1 8b 05 3a a8 fc 7e 19 a0 96 1d 84 71 0b 00 5b 80 bc a3 fb 1b f3 8e c6 98 ae bf e2 7d e0 a8 77 90 c2 12 42 77 02 21 2e 21 a6 13 88 dd 0a 62 5a 42 48 3d 7d 0a 5e 73 8c fc 8c e8 15 8a 0e 33 84 4a bf 01 09 2a 04 18 21 86 1d 7d 3e 8c 37 50 86 2b 80 dd 35 7d 1f e8 79 0f 00 a5 42 c9 05 0a 64 88 a1 d2 b9 86 61 a0 f3 ae 56 2b 58 2c 16 fc ec 42 69 83 57 23 84 90 78 ec 21 02 d4 8e 9f 37 1d 91 ef 25 f0 88 d0 3d 8d 11 06 7c ce 25 c3 58 f9 3c 75 36 17 ca de f4 88 93 f7 23 a4 c9 fb 31 f6 7c 5d 31 d0 57 9d 5f 21 06 48 31 41 ea 02 44 1d 94 f6 29 32 7f 76 90 f3 00 b9 f0 fc 81 b2 00 08 4b a8 e1 04 00 96 50 e2 09 d4 78 02 39 2c 60 88 11 72 88 50 3b be a7 1a 12 44 9c 2f 10 21 e0 7c 2c 99 c6 13 9f 7d ac 5b 08 c3 0d 8c db 8f 50 36 ef a1 6c 3e 42 dd 7d 80 30 5e 43 1c 70 fc af 21 8f 37 50 f3 96 c6 bf d6 01 0a 7e 85 0c 55 c6 97 c6 15 c7 13 bf e2 3d c6 25 a4 b4 84 d4 2f a1 c3 af dd 09 f4 1d ce 8f 9e d6 60 5a 74 d0 77 b8 fe 3a e8 96 fc 5e 8c 11 6a 94 71 d2 71 39 b0 fe e8 7d 7c 16 a5 d2 fa c6 79 18 e4 c1 8c e3 16 c6 31 43 19 9b 3d a0 f7 6b a1 f9 a2 73 37 54 f9 0c bb 7e fd 1c fe 59 28 6c 67 e8 3e f5 d9 3b 7b 03 f4 f3 02 25 b4 9f c9 85 4f ce 87 6b 38 d0 e7 25 e8 62 84 3e f6 50 c2 0a 86 70 0a bb 70 0e 79 f1 15 8c 8b e7 90 97 cf 60 b7 3c 87 f8 e2 25 2c 7e fc Data Ascii: 7@PNGIHDR}V IDATx$Irfy3@C$Kb9\++w+=$? 93t]ynf+zGDU53D{KtVFfz~Pk"PJRG~}waG:!/{~W:17?'g\|eK15k:P
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"C0E7469DCA89098BAC79026650707867"Last-Modified: Wed, 26 Jan 2022 11:01:16 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 533010Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:57 GMTDate: Thu, 13 Mar 2025 09:03:57 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856637.8694712cdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 34 9b 77 5c 52 ff 17 ff 9d 38 d1 1c a9 e1 ca ac 6c 59 5a e2 cc 5d 6a 9f d2 5c 29 e1 c2 4c 53 70 a6 b8 71 96 5a e6 ca d2 72 2b e6 02 15 07 ee 85 a6 54 a6 66 0a ee 51 56 2a 88 23 c5 81 a1 3f be bf c7 ef c7 e3 71 1f 5c 2e f7 c1 1f 87 f7 fb dc 73 5e cf d7 79 61 69 61 0a e4 07 f1 b3 b1 b1 01 ef 98 dd b2 66 63 e3 c1 b2 b1 71 75 f0 02 58 57 34 33 83 c6 58 6f ec 81 d6 a6 46 6c 35 c3 32 ab ac 0f b7 dc 21 77 3c cc cd d9 2e b1 ce 79 d9 d8 13 bd d8 b8 fe 77 0b eb 00 b1 0e 36 36 ce 22 76 36 ce ff 7b 85 75 ad 88 e3 ff 7f cb 83 2d e2 fc ff e7 5c 1d ff bb 91 e6 60 7c 91 8d 57 55 e2 ce 2d 43 db d0 e9 b5 b9 a9 e0 25 b3 fa f3 94 a8 54 a7 53 c5 ef 33 3f 1a 3e c4 b7 db 6f f0 5e 14 07 99 19 bd fc 8a a5 04 0e 07 ee ba 17 e6 46 55 a2 48 f6 65 e7 cd 62 82 34 23 55 42 34 e4 d9 42 ab e9 d7 32 c4 f9 e2 de 9c 39 73 b7 30 aa e1 f8 af cb 4d e6 46 33 e6 78 bf b0 db 09 75 a8 1f dd ce 48 3b 16 cc a1 5e fa fd fb ee 7a d3 dd 3f 4f 37 23 dd f4 7e 6e 3b bc 8d 76 bb aa f1 14 3f 08 0c 64 9e 8f ec 9a 8f 2c 1f a2 87 30 dc 12 42 6b 44 6e cb 71 4d e4 6a 09 64 99 62 f2 1c 4a a3 66 7f ff 5a d5 27 26 d3 a3 87 a3 a2 4d cb 16 af 96 67 5e cc 64 fc 2b 6b 4f 9b fc 9a 74 dd e9 e4 df c6 e1 86 b0 75 bb da 08 52 c7 95 91 2c 81 88 08 d7 b7 9f 9f ce 60 5e 65 e7 ce 15 f2 9c 1f 34 3f 54 7f 8d e5 0b d4 5e f7 ec fa 73 b5 56 f7 66 36 a3 75 30 6d ee 73 82 40 c8 cc 1c b4 80 22 a5 b1 66 ba 1e 58 4f 9c 2c 2c 5f c9 9b 39 35 58 ff 49 75 70 57 ea eb e1 d5 88 63 d5 3d f9 17 5d 76 6b a6 a4 df 64 37 cc f6 9f 5a 87 c7 bd 8f bf 46 aa 85 39 52 55 ef 5e 9d 5d de 8d 96 bf 9b 3a c6 7b 1c d2 b2 de 95 ec b3 71 34 c4 9f 59 f2 72 ad 8d a6 5a 39 4c d5 9d ba 27 f2 63 83 ba a4 f5 78 24 39 6c 78 95 ff fd 39 2b c7 42 bf db ff 66 ef fe 9c 90 5c 42 fd 8d 3c 12 23 b8 ff d8 5b fe 72 86 6b 59 bf ee 5f 83 fb ce b2 45 e0 51 13 11 cf 8c 78 f6 17 41 fd bb 67 f3 5f f4 44 89 f3 f2 97 0d 6a 1e 7c 7e f0 42 b4 69 a9 f8 d1 46 c0 67 5a c3 83 1b 63 05 cf 51 4e 37 08 3e ff 98 6f 0e 98 e8 30 2d 25 25 a5 27 06 ad d5 bd ce cb fa 13 95 b3 d1 ff 0a db 17 16 8e 97 a3 57 a7 8f 83 2d ff 75 b3 82 7f d4 6a fc 73 b3 f5 d1 99 36 e5 ff ba 54 e5 87 fe e6 5e 9d 08 d8 fe cd 88 b0 78 2f 4d b9 c9 bb 4d b2 37 29 b9 79 5d 7e 4b eb c6 d7 83 7d e2 32 69 ed 20 b0 de 71 c3 3a 72 78 7d 21 e3 62 cb e0 ea e3 aa af Data Ascii: 4w\R8lYZ]j\)LSpqZr+TfQV#?q\.s^yaiafcquXW43XoFl52!w<.yw66"v6{u-\`\|WU-C%TS3?>o^
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"9E3A55B72DA94D6F40C19CD73577E8A2"Last-Modified: Thu, 06 Feb 2025 07:16:34 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 360607Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:59 GMTDate: Thu, 13 Mar 2025 09:03:59 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856639.8693b2dcdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 34 7b 77 3c 5c df f3 f7 12 3e 5a 10 5d 74 12 35 ac 48 a2 b7 44 89 16 44 ef 04 11 41 f4 5e 56 ef 35 ea 92 28 d1 5b f4 5e 56 ef bd f7 be 58 ac be 58 ac f2 90 ef ef d9 3f f6 de d7 dd 3d 73 cf cc 99 79 cf 9c 99 39 61 9f 95 64 f0 71 a9 70 01 00 00 be 9c ac 94 2a 00 80 f9 70 8b 3e 86 fd df c3 65 14 b4 ac 09 00 30 00 e4 a4 3e a8 bb a5 ee 43 dc e3 a1 f5 71 5b 70 80 2c 3b 53 d5 9e e6 f9 01 1d 75 55 ad c5 ef a3 fb b4 15 f1 23 d1 aa 8a 14 43 1b eb 94 58 22 62 b4 c8 06 53 46 ec 58 a6 9a e0 24 04 bc 94 9a 3d ec 55 df b3 e7 21 bd b7 05 b3 b3 5a ca 0f 64 df 07 a9 ee e5 30 9e dc 2d 80 29 20 f7 a6 e2 08 f7 a0 09 47 d4 51 8f 96 da f0 36 0b 79 36 21 6d ba 25 ca 95 1c ae a8 df 4a 5b 6a 14 63 9b ef 32 7d 5a 3d df ea 51 73 ef f8 06 25 ae 35 b5 c9 33 2d 1f 3b ab 3b c2 73 37 5a f0 71 86 bb 4c f1 85 78 0d c1 a4 d5 64 e0 95 c6 e5 52 72 f5 b2 71 ab 93 3e 37 b7 9a 05 97 78 1a 72 33 2d 3e 83 74 54 da 5b 54 80 35 8d 19 c6 e9 7c 53 85 97 a1 e3 6e ab 30 23 74 3a 12 8f b8 f1 a6 48 ca e8 69 bf aa 17 07 02 85 6f d4 5d dc de 1b 54 94 96 1b 82 f3 13 d7 17 04 7d 97 ef 4e 44 df 9e 1f e5 ff 12 a4 87 23 a6 27 0a 5b 57 a1 30 66 c0 1a 25 41 53 cb 3a 92 08 00 48 8f ff af 97 f6 81 1b 40 1d 46 84 da 88 a0 aa 61 ac d6 07 4a 05 7f 27 f2 52 f5 cb 80 e9 ae 59 20 ae af 88 01 d7 65 18 03 db 11 59 56 e2 91 d4 9a c2 86 d1 e5 28 7e a0 f0 e3 18 00 80 0e 13 db f7 f1 5a 8f 13 87 2d b3 61 3e be ee 0c a6 71 6d df 92 51 6c 74 7e 2e 44 db cd bb 03 22 07 c4 ef c8 8c d7 50 2c 79 05 0d 76 07 5f c5 5f c2 44 68 5e ff 1b bb 66 ef 07 c0 7e b8 fa 16 93 74 d5 7f ae 9d 71 97 19 b0 67 2f 67 ea ee ce d5 8d 75 6e bf 32 2f c0 e9 b6 18 88 37 fb 50 16 91 5b a9 61 51 a5 a9 bb 0d a7 f5 85 14 c0 20 11 a5 1d 2b cb f9 78 f9 46 c4 58 58 04 ed 44 03 a3 a2 18 92 ff 28 da c9 bc 07 60 3c 5c 81 7d ed 90 3b 16 81 da 17 a6 86 f7 7e a2 cf 08 0d 47 23 e9 7a 8a 95 d1 a9 90 31 f1 86 de 9c 37 ec 5c b7 f9 73 27 bd c2 bb 93 2d 8d ea 0b d4 b4 be 0d 72 06 37 29 98 cd f5 26 cc 11 f1 ca 55 c7 fc 6c 57 e7 39 03 2d 5e 53 c2 f7 96 3c 65 2e 4f ff 03 af 1d 53 ea b7 7c 76 3b 24 3f 18 4b f7 3b 3f ad c5 1a 21 fc f7 c6 c3 e7 ff c7 bf 50 e1 6c 3a 39 da a8 9c 76 f8 85 e2 d8 ad 10 b7 cd fb f6 10 55 03 8a 65 7f 48 28 05 a6 04 b5 b4 90 46 23 e2 66 cd fc d6 36 65 54 cf 61 86 40 df ef cd b0 2c 55 70 Data Ascii: 4{w<\>Z]t5HDDA^V5([^VXX?=sy9adqpp>e0>Cq[p,;SuU#CX"bSFX$=U!Zd0-) GQ6y6!m%J[jc2
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"35261E7AAC28E782FA30D1CE487DE7AC"Last-Modified: Wed, 12 Mar 2025 08:20:43 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 449969Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:59 GMTDate: Thu, 13 Mar 2025 09:03:59 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.1eb6655f.1741856639.722711ccdnsip: 95.101.182.34cdncip: 8.46.123.189Timing-Allow-Origin: Server-Timing: ak_p; desc="1741856639227_1600501278_119697692_146_1142_95_0_-";dur=1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 2f 40 d0 bf 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 01 e0 00 00 02 0c 08 06 00 00 00 2d ba 7f f1 00 00 20 00 49 44 41 54 78 9c 9c bd 59 af 6d 59 76 26 f4 cd 66 75 bb 39 dd 6d 23 c3 11 99 91 8d 9d 76 a6 5b 5c aa b4 b1 e4 42 05 16 48 34 a2 78 a0 c4 0b 02 09 09 f1 00 ff 81 27 de 10 f0 ce 63 49 20 57 a9 24 a0 b0 cb a8 b0 55 72 9f 76 d9 c6 4e 3b 9d 91 7d b4 b7 3b e7 ec 6e b5 73 4e 34 c6 98 73 ad b5 f7 39 37 32 b3 4e e8 c6 3d f7 9c bd d7 5e cd 9c a3 f9 c6 37 be a1 fe 87 07 cb 00 28 c8 57 80 4a df 8e 3f c3 ec 67 47 3f 46 50 1a d0 0a 1a 72 08 85 00 ad 02 8c 96 f7 d0 df d6 28 28 ad e5 6d c1 4f 9f 43 6f 05 f8 f5 72 7c 05 c5 df 68 a8 a0 e5 58 da cf 7e 4e ef 8a e7 a2 d2 89 84 f1 e7 81 5e 17 0c 10 02 7c f0 f0 de 83 de 3d 84 c0 2f a0 d7 38 3e 67 f0 6b 74 3a ae f2 f4 dd e9 a5 c5 23 62 fc 0c d0 b1 e5 4a 4f 5e 15 10 e8 33 8f de 03 68 8d 78 5c 7a 05 fd 43 f3 b9 0f de 23 f8 80 e0 15 e8 0c e9 bd fc 47 e9 e9 46 cf 3e 44 29 83 fb be c2 e9 89 a8 f4 57 38 ba 10 b9 5d f4 9f be ef e5 e3 55 c4 07 14 3f 53 f1 39 4d e7 30 ad 0f 59 23 c7 ef 56 f1 e7 38 f9 8c f9 19 9c 7e dc dd 63 df ff c5 e7 72 fa fe 78 10 75 f4 34 02 e6 eb f8 ee cf ef 2e 62 5a 27 2a 58 54 c3 02 9b a2 47 6f 1a 54 43 8f 1e 1e bb ce e1 df fd b5 ff 10 5f 7a fb 0b f8 9b 3f fe 63 f8 4a c3 54 19 b2 eb e7 50 af 9e a3 f5 1e fb 66 c0 a6 a9 71 d3 36 d8 7a 8f 86 9e 2f 3d 47 18 68 af 60 82 82 e6 67 1b c6 fb 19 66 e7 96 7e 36 9e 75 38 be 5f 69 6d 1c 5d f5 f8 ef b4 2e ef 3c c9 d9 e2 b8 e7 be f9 4f be df b3 6d c5 ff 70 71 65 ab e3 5f 1c 9d 57 98 7d 9e 52 7a f6 b3 d3 45 1a 5f 95 f6 f3 fd bf fe e4 d3 bb e7 f4 d5 7d 06 4a 01 5a 6e 46 fc b7 1f 5f 71 7a 4f e7 c7 d6 7a dc c1 27 b6 50 1d ad 7d fa 5b a9 74 6c 59 a1 9a 7e 16 f7 c2 68 ab d2 ea 9d 6d 0f da d3 7c 44 be 57 6a fc 1c 3e 9e 96 f3 f6 26 a0 33 0e 99 07 0a af 90 7b 0d 38 85 15 72 3c 7f be c7 4f fc 77 ff 19 7e fe bf fd 2f 30 6c 5a 7c f8 2f fe 18 0d 16 b8 fc e2 97 11 16 c0 ca 0e a8 ea 0d be fd db ff 1c f5 37 bf 81 cb b6 c6 c5 d0 a3 54 03 b4 f2 08 Data Ascii: /@PNGIHDR- IDATxYmYv&fu9m#v[\BH4x'cI W$UrvN;};nsN4s972N=^7(WJ?gG?FPr((mOCor\|hX~N^\|=/8>gkt:#bJO^3hx\zC#GF>D)W8]U?S9M0Y#V8~crxu4.bZ'XTGoTC
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"25623F07C791072ABAA9D16BD1794F9B"Last-Modified: Mon, 03 Mar 2025 09:29:23 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1246216Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:59 GMTDate: Thu, 13 Mar 2025 09:03:59 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.1eb6655f.1741856639.72271e3cdnsip: 95.101.182.34cdncip: 8.46.123.189Timing-Allow-Origin: Server-Timing: ak_p; desc="1741856639232_1600501278_119697891_377_1317_82_0_-";dur=1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 34 9b 65 58 d4 df d3 c6 bf 4b 77 2a 5d 22 a1 d2 21 48 83 a0 80 34 48 a7 34 d2 dd 25 d2 dd 5d 4a 77 2f cd d2 dd c8 d2 4b 77 d7 02 4b 3c bf ff 8b e7 d5 9c b7 73 5d e7 9c b9 67 ee cf 84 2b 2b 4a e3 62 51 60 01 00 80 2b 2b 23 a5 0a 00 a8 ff 1d 91 a6 30 d0 fe 0b 93 be ab 1a 00 40 07 c8 4a 49 7c f7 c8 3a ee 90 ae a8 58 8c 67 22 e9 92 cb 85 76 20 f4 fe 95 d3 47 36 e1 2e c1 65 c8 64 f7 2b 35 66 3e eb ca be b5 2c 8d 0f 20 6c 98 e5 a5 33 a2 ab dc 1e 3f 46 c5 98 fa c6 92 be f8 11 45 56 24 c3 9c 32 70 55 7f 96 b5 2e a2 c2 b8 c5 e2 d4 1b 5a 3c 09 c3 20 64 ee bc 1a 14 48 f7 3c f3 ae a0 8f b4 99 c7 67 98 79 da bd 23 be e8 27 25 1c 86 21 f0 9f 33 43 c2 4a 64 2d f7 54 5e a1 ee ac e2 b9 0a 52 8f d4 45 65 14 e5 b7 56 ed fc 63 d5 bc ec 34 a8 b6 aa d5 9a 72 6a 29 28 2b db 6e 17 9e 2c 95 e1 f9 96 f0 7b 86 37 99 d4 7f a0 1b be 71 e6 23 92 3b 3a e8 c3 95 ec 5d 91 ca 92 31 b9 37 77 74 53 c2 2a a7 53 9d ea 64 a0 da 66 5d 20 ef a9 58 5e 96 84 98 77 95 2d ff 17 91 50 94 e4 54 44 2e 2b 70 27 28 2a 66 b5 22 99 c9 64 35 5a 35 49 8b 83 c6 bb 06 fb fb f4 e4 bb 44 49 3b 84 78 7e ce 7f f4 f3 15 89 47 b0 6a 30 8e 9b f3 64 c8 df 7d cc 3f 70 f9 30 49 49 8b 7b 50 6e f8 f4 81 51 41 52 53 53 f3 7a 5a 9a 76 ba de 62 72 7f 5c ba 7a 36 d3 be 53 76 b5 3d 6e af 6a b4 b0 01 1f 1a 99 3b 7c d2 5b 7d ea f1 6e 67 8f db bd 4d bf 94 38 d5 b6 53 67 e4 69 3a 66 05 ef 71 c2 b6 77 f2 0c 1f fd b4 73 f4 fb e1 0f 43 4b 7b 51 9a 8e fb 90 33 f0 ec ac da 7b ca d4 ec a3 be ae ea 79 67 81 ea b5 e9 7b 3d 12 51 fb 16 83 7b 44 d4 a0 c9 21 1c a1 1a 63 30 ff f7 e8 c8 ba 94 12 bc dc dd 1d e8 b3 4b 0a 86 59 f2 fe b9 ba 72 3e 90 14 cd cd 1d bd f1 3a 69 84 16 ac be 33 94 4b 37 6c f7 90 a0 f5 bb cb 6f bf 6a 7c a4 ea 7c 36 bc 6f 7b 21 5a 6d 73 57 9a b8 7f 86 77 29 9d 75 bd 74 da e3 8b 9e e9 c2 1e d9 3c cd 99 39 1e 3f 6d 23 38 52 9d 3d 4f 63 fd 1f 4d 04 dc f9 b2 67 84 ce da 25 63 69 c5 52 f6 9e d7 ce 9e 62 56 dc f9 0c 67 fa fb 83 57 22 07 bf 57 ef 8d ac 50 5e 17 e2 b6 50 f9 18 fe d4 13 4a 55 10 72 33 95 Data Ascii: 4eXKw]"!H4H4%]Jw/KwK<s]g++JbQ`++#0@JI\|:Xg"v G6.ed+5f>, l3?FEV$2pU.Z< dH<gy#'%!3CJd-T^REeVc4rj)(+n,{7q#;:]17wtSSdf] X^w-PTD.+p'(f"d5Z5IDI;x~Gj0d}?p0II{PnQARSSzZvbr\z6
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"8DB335ECA018E3E00A6395558BE3A560"Last-Modified: Wed, 12 Mar 2025 08:19:33 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1239731Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:59 GMTDate: Thu, 13 Mar 2025 09:03:59 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.1eb6655f.1741856639.7227218cdnsip: 95.101.182.34cdncip: 8.46.123.189Timing-Allow-Origin: *Server-Timing: ak_p; desc="1741856639237_1600501278_119697944_235_908_89_0_-";dur=1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 28 40 d7 bf 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 05 00 00 00 02 d0 08 06 00 00 00 cf 7d dd 56 00 00 20 00 49 44 41 54 78 9c ec bd 59 b3 2d c9 75 1e f6 65 66 55 ed bd cf b9 e7 0e dd 40 a3 1b 03 01 88 04 38 d8 32 ad 10 41 53 94 15 8a b0 3c 85 c2 e1 70 04 1f 14 7e f0 9b 9f fd 63 fc e4 1f e1 07 87 1c 61 87 49 85 6c 86 44 d1 16 49 53 b6 25 80 02 28 42 00 89 6e f4 7c 87 33 ec 5d 55 99 e9 58 2b 57 4e 35 9c bd cf 1d 1a 40 a3 13 b8 bd cf ae 5d 43 56 0e 2b d7 fa f2 5b 6b a9 ff a1 d1 1e 45 a1 2f ce 2b 3e e0 7d f5 d3 6a 99 9e e7 f4 f2 99 4e 2d 1f 8f 57 2b 15 4e 50 7e f9 c4 53 eb 23 37 99 1f 52 f9 be c7 ef 55 ff ae 56 ea be 7e 75 43 57 ad ff 7e d2 f3 7d 55 67 fa ce 47 d5 fc 3c 14 c7 d5 89 95 5d 3a af 6a 23 35 3f 4e 9f 4e b9 e5 1a 4f 8e 6b a5 40 ff 5b 7b 57 2f ef 53 de 5f eb e9 e0 c9 d7 c6 73 ea 36 70 f5 6f b3 57 aa 7f 57 3a b6 a9 87 f1 40 d3 34 68 3c d5 d2 c9 27 f8 13 f1 5d 7c a8 4f 7e 07 35 e9 57 79 3f 4f 9f e1 be e1 dc 70 9e 75 1e ce e5 6b 9d f7 b0 70 f0 0e 72 0d fd ee d2 f9 f4 bb f7 93 36 73 f1 63 a5 1d e5 dc b5 f9 a5 dc ed bf 2f dd b5 7c 7e 35 4e a8 be b7 dc 67 69 cc 4c ef b7 58 f4 1d 27 98 94 e5 91 58 d4 49 6e ab 6f 99 8b 27 15 75 5c 06 4c e7 d3 f4 bb 97 b1 ad d2 3c 0d 6d a2 e5 d3 e8 70 8d 52 8e e7 81 51 3e cc 07 3e a6 00 37 ce ae a7 e3 5a 5a 21 4f 1d 3a 5f a7 31 15 45 a1 e6 f3 fd 62 dd e4 b2 d5 97 74 f1 be de a4 be f4 de c9 78 f5 fc 3b fd 1d 87 7a ec 97 d8 fe f1 1a a3 a4 92 13 59 61 66 fd 13 9f 58 b5 20 e0 db 30 e7 16 6b 99 24 64 a8 d7 c2 ef 34 cc ea a1 a6 e0 55 ec 97 30 ff 46 e7 f8 b9 de c9 7c 94 39 9d de 5b 99 95 a7 cb 1d 8f fc 7e 6c 2a 1c 1b 67 1a 41 ae ae dc 7d f9 98 aa e7 f3 d2 7c ac c7 84 5b 38 86 d9 ef 54 9b 63 b5 5d 2a d3 e5 f9 d4 35 ab 3c d7 af e8 09 a1 f8 95 b6 28 cb 9a f4 58 7b 27 9d c7 00 3c 36 e3 3d 18 67 f0 e1 d9 1e 83 19 b0 1b 7b 34 de a3 57 1e 03 8d e9 f6 1c ff d5 ef fc d7 78 eb d1 5b f8 fe 3f ff 13 3c 79 fa 21 9a 56 63 ec 9f a1 69 80 b3 71 80 ea 6f 30 d8 11 7d 6f 71 b3 ef 71 79 38 e0 ea b0 c7 a5 1d b0 Data Ascii: (@PNGIHDR}V IDATxY-uefU@82AS<p~caIlDIS%(Bn\|3]UX+WN5@]CV+[kE/+>}jN-W+NP~S#7RUV~uCW~}UgG<]:j#5?NNOk@[{W/S_s6poWW:@4h<']\|O~5Wy?Opukpr6sc/\|~5NgiLX'XIno'u\L<m
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"1A7AC7594F938A84CE9C82987B1579BE"Last-Modified: Mon, 17 Feb 2025 09:50:33 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1359271Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:59 GMTDate: Thu, 13 Mar 2025 09:03:59 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856639.8693b3dcdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 2a 40 d5 bf 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 05 00 00 00 02 d0 08 06 00 00 00 cf 7d dd 56 00 00 20 00 49 44 41 54 78 9c a4 bd e9 92 1c 49 92 26 a6 66 7e c4 91 99 00 0a 55 d5 dd b3 3d dc 59 0a c9 e5 8a f0 51 f8 2c 14 e1 db 90 22 14 3e 16 7f 70 49 ca ce 70 76 76 ba aa 01 e4 15 97 1f 66 4e f9 3e 55 35 b7 08 24 50 35 c3 80 a4 24 32 33 c2 dd dc 0e 3d 3e fd 54 35 fc 6f 7f f8 af 96 65 c9 b2 dd ee 64 b3 d9 c8 30 0c 32 4d a3 e0 95 52 92 b6 6d e5 e1 e1 81 3f 1f 0e 07 99 e7 24 29 cd fc b9 eb 3a e9 ba 5e 76 bb ad 9c 4e 27 19 c7 49 e6 79 92 be ef a5 ed 7b d9 df ed 65 1c 47 b9 5c 2e b2 88 c8 b2 2c 92 97 85 df fd 15 d7 ff 0a c6 21 f6 3e bc b2 7d 8f 21 48 d3 b4 12 9b c8 9f e7 69 e2 bd 7e fa e9 47 79 7e 7e 96 18 9b f2 b7 34 cf f2 e1 c3 0f fc ff d3 d3 a3 34 6d 2b f5 eb 6e bf 95 d7 c3 41 ee ee ee e4 78 3c ca 92 b3 8e b7 eb 24 c6 c8 7b e3 b9 a7 69 e2 7d 30 06 cc 41 d3 34 3a fe d9 9e bd ed 24 84 20 79 4e 92 73 2a e3 0e 8b 48 83 f1 b4 8d 84 18 64 b2 6b b5 9b 9e f3 3b 4f f8 59 af 81 cf e1 be 0f f7 0f 72 3a 1d cb 28 71 4f dc 3b e5 2c 4d 8c 5c 9b 87 87 7b f9 f2 f8 28 f3 34 c8 34 cf f2 f3 cf 3f f3 bd ba 5e 53 b9 3f bf 72 96 db 57 88 3a 3f 41 1a fd 1e 83 7e 26 2f 5f bd 17 d7 d8 ee 7a ce 0b d6 0f f7 10 c9 f6 dc bd dc dd df cb e1 f5 95 e3 0b a1 e1 fa 70 ee 31 de d0 ca fd c3 83 e4 3c cb cb cb 8b 2c 92 a4 ef 3a 09 51 38 5f fe dc 98 03 9f b7 10 62 f9 db ed 77 ec 27 bd bf 70 0f 88 44 8e ab 6b 5b 99 53 e2 cf 6d d3 70 0f e8 f3 63 df 66 de 17 7b a1 69 a3 fc f8 e3 8f 72 3c be f2 3a 29 2d 32 cf b8 77 e6 7a ef b6 7b 79 ff fe bd 1c 0e 47 99 70 af cb c4 eb fc db bf fb 5b 79 7a 7a 92 cb e5 e4 ab e2 3b f6 6a 8f 2e 5f 4d b5 cd 73 10 db 93 b9 cc 1f d6 1f 7f c7 9c fe f0 e1 03 c7 8f 29 c0 3c 60 cd 73 ca 3c 4f 77 77 f7 72 38 3c 73 3e d3 3c f2 7d 5d d7 70 0f 36 b1 e5 fc e3 fe c7 c3 81 f3 bf db ed 65 4e b3 1c 0f 47 c9 69 b1 b5 cd d7 e3 0e f6 7d 89 6f 8e d7 d7 0f 7f df 6d b7 9c 37 5d 9f cc fd 76 7f bf e3 99 9b a6 b4 9e cf 94 a4 ef b7 f2 c3 0f 1f b9 d6 e7 f3 49 b0 24 dc 0f 76 bf ae 57 f9 f1 f4 f4 85 d7 c3 fe c3 7c fc 9b 3f ff 99 7b 68 18 a6 b2 07 f4 7b c3 b5 0f 45 30 ac cf 81 35 5b 96 50 c6 cb f7 d9 fb 71 2d ec bb 28 0d e7 f2 87 1f de c9 e9 7c 96 61 38 db 78 33 bf 77 5d 2b fb fd 1d c7 5b 9e db e4 19 d6 07 73 Data Ascii: @PNGIHDR}V IDATxI&f~U=YQ,">pIpvvfN>U5$P5$23=>T5oed02MRm?$):^vN'Iy{eG\.,!>}!Hi
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"C0E7469DCA89098BAC79026650707867"Last-Modified: Wed, 26 Jan 2022 11:01:16 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 533010Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:59 GMTDate: Thu, 13 Mar 2025 09:03:59 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856639.8695214cdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 34 9b 77 5c 52 ff 17 ff 9d 38 d1 1c a9 e1 ca ac 6c 59 5a e2 cc 5d 6a 9f d2 5c 29 e1 c2 4c 53 70 a6 b8 71 96 5a e6 ca d2 72 2b e6 02 15 07 ee 85 a6 54 a6 66 0a ee 51 56 2a 88 23 c5 81 a1 3f be bf c7 ef c7 e3 71 1f 5c 2e f7 c1 1f 87 f7 fb dc 73 5e cf d7 79 61 69 61 0a e4 07 f1 b3 b1 b1 01 ef 98 dd b2 66 63 e3 c1 b2 b1 71 75 f0 02 58 57 34 33 83 c6 58 6f ec 81 d6 a6 46 6c 35 c3 32 ab ac 0f b7 dc 21 77 3c cc cd d9 2e b1 ce 79 d9 d8 13 bd d8 b8 fe 77 0b eb 00 b1 0e 36 36 ce 22 76 36 ce ff 7b 85 75 ad 88 e3 ff 7f cb 83 2d e2 fc ff e7 5c 1d ff bb 91 e6 60 7c 91 8d 57 55 e2 ce 2d 43 db d0 e9 b5 b9 a9 e0 25 b3 fa f3 94 a8 54 a7 53 c5 ef 33 3f 1a 3e c4 b7 db 6f f0 5e 14 07 99 19 bd fc 8a a5 04 0e 07 ee ba 17 e6 46 55 a2 48 f6 65 e7 cd 62 82 34 23 55 42 34 e4 d9 42 ab e9 d7 32 c4 f9 e2 de 9c 39 73 b7 30 aa e1 f8 af cb 4d e6 46 33 e6 78 bf b0 db 09 75 a8 1f dd ce 48 3b 16 cc a1 5e fa fd fb ee 7a d3 dd 3f 4f 37 23 dd f4 7e 6e 3b bc 8d 76 bb aa f1 14 3f 08 0c 64 9e 8f ec 9a 8f 2c 1f a2 87 30 dc 12 42 6b 44 6e cb 71 4d e4 6a 09 64 99 62 f2 1c 4a a3 66 7f ff 5a d5 27 26 d3 a3 87 a3 a2 4d cb 16 af 96 67 5e cc 64 fc 2b 6b 4f 9b fc 9a 74 dd e9 e4 df c6 e1 86 b0 75 bb da 08 52 c7 95 91 2c 81 88 08 d7 b7 9f 9f ce 60 5e 65 e7 ce 15 f2 9c 1f 34 3f 54 7f 8d e5 0b d4 5e f7 ec fa 73 b5 56 f7 66 36 a3 75 30 6d ee 73 82 40 c8 cc 1c b4 80 22 a5 b1 66 ba 1e 58 4f 9c 2c 2c 5f c9 9b 39 35 58 ff 49 75 70 57 ea eb e1 d5 88 63 d5 3d f9 17 5d 76 6b a6 a4 df 64 37 cc f6 9f 5a 87 c7 bd 8f bf 46 aa 85 39 52 55 ef 5e 9d 5d de 8d 96 bf 9b 3a c6 7b 1c d2 b2 de 95 ec b3 71 34 c4 9f 59 f2 72 ad 8d a6 5a 39 4c d5 9d ba 27 f2 63 83 ba a4 f5 78 24 39 6c 78 95 ff fd 39 2b c7 42 bf db ff 66 ef fe 9c 90 5c 42 fd 8d 3c 12 23 b8 ff d8 5b fe 72 86 6b 59 bf ee 5f 83 fb ce b2 45 e0 51 13 11 cf 8c 78 f6 17 41 fd bb 67 f3 5f f4 44 89 f3 f2 97 0d 6a 1e 7c 7e f0 42 b4 69 a9 f8 d1 46 c0 67 5a c3 83 1b 63 05 cf 51 4e 37 08 3e ff 98 6f 0e 98 e8 30 2d 25 25 a5 27 06 ad d5 bd ce cb fa 13 95 b3 d1 ff 0a db 17 16 8e 97 a3 57 a7 8f 83 2d ff 75 b3 82 7f d4 6a fc 73 b3 f5 d1 99 36 e5 ff ba 54 e5 87 fe e6 5e 9d 08 d8 fe cd 88 b0 78 2f 4d b9 c9 bb 4d b2 37 29 b9 79 5d 7e 4b eb c6 d7 83 7d e2 32 69 ed 20 b0 de 71 c3 3a 72 78 7d 21 e3 62 cb e0 ea e3 aa af Data Ascii: 4w\R8lYZ]j\)LSpqZr+TfQV#?q\.s^yaiafcquXW43XoFl52!w<.yw66"v6{u-\`\|WU-C%TS3?>o^
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingETag: W/"EE3D3D7A9E21B6E33BFC791ACDD593C7"Last-Modified: Fri, 17 Jan 2025 09:04:01 GMTX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1081088Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:03:59 GMTDate: Thu, 13 Mar 2025 09:03:59 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856639.8695213cdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: *Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 37 40 c8 bf 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 05 00 00 00 02 d0 08 06 00 00 00 cf 7d dd 56 00 00 20 00 49 44 41 54 78 9c ec bd e9 92 24 49 72 1e a8 66 e6 1e 11 79 d4 d9 33 40 03 43 80 24 b8 4b 62 0f 01 39 5c 91 dd 1f 2b 2b f8 b3 14 d9 77 c0 db ec 2b e1 3d 16 24 05 3f 20 20 39 33 98 c6 cc 74 d7 5d 79 c5 e1 6e 66 2b 7a 9a ba 47 44 1e 55 d9 35 33 44 7b 4b 74 56 46 66 7a b8 9b 9b a9 a9 7e fa e9 a7 e1 7f ff 7f fe df 0a 00 50 6b a5 17 94 22 ff ce 50 4a 81 52 47 7e 1f 0a 7d 9f 77 19 86 61 84 9c 47 fa 3a 96 0a 21 04 e8 fb 1e ba b4 80 d4 2f a0 eb 7b 88 1d 7e df d1 57 3a 7f ec f0 7f 00 31 d1 f7 f8 37 f3 03 3f 27 67 7c 65 18 4b 81 31 8f 90 c7 0c 35 e3 6b 84 3a 8e 50 c6 01 c2 38 42 00 bc ce 11 20 14 b9 3e 80 9c 0b 00 44 fe 3e 4e cf 1f f0 f3 e9 3a 12 84 10 21 c9 f7 7a 44 f9 be 04 fa 25 88 a1 83 8c c3 11 22 8c 90 20 c3 02 76 a5 83 6d ed 20 2d ce e1 f9 1f fe 04 5e fe f8 27 d0 9f 3c 85 9b f5 08 57 37 6b d8 6e b7 30 e6 4c f7 16 a1 00 fe 65 80 1d a4 90 a1 8b 05 3a a8 fc 7e 19 a0 96 1d 84 71 0b 00 5b 80 bc a3 fb 1b f3 8e c6 98 ae bf e2 7d e0 a8 77 90 c2 12 42 77 02 21 2e 21 a6 13 88 dd 0a 62 5a 42 48 3d 7d 0a 5e 73 8c fc 8c e8 15 8a 0e 33 84 4a bf 01 09 2a 04 18 21 86 1d 7d 3e 8c 37 50 86 2b 80 dd 35 7d 1f e8 79 0f 00 a5 42 c9 05 0a 64 88 a1 d2 b9 86 61 a0 f3 ae 56 2b 58 2c 16 fc ec 42 69 83 57 23 84 90 78 ec 21 02 d4 8e 9f 37 1d 91 ef 25 f0 88 d0 3d 8d 11 06 7c ce 25 c3 58 f9 3c 75 36 17 ca de f4 88 93 f7 23 a4 c9 fb 31 f6 7c 5d 31 d0 57 9d 5f 21 06 48 31 41 ea 02 44 1d 94 f6 29 32 7f 76 90 f3 00 b9 f0 fc 81 b2 00 08 4b a8 e1 04 00 96 50 e2 09 d4 78 02 39 2c 60 88 11 72 88 50 3b be a7 1a 12 44 9c 2f 10 21 e0 7c 2c 99 c6 13 9f 7d ac 5b 08 c3 0d 8c db 8f 50 36 ef a1 6c 3e 42 dd 7d 80 30 5e 43 1c 70 fc af 21 8f 37 50 f3 96 c6 bf d6 01 0a 7e 85 0c 55 c6 97 c6 15 c7 13 bf e2 3d c6 25 a4 b4 84 d4 2f a1 c3 af dd 09 f4 1d ce 8f 9e d6 60 5a 74 d0 77 b8 fe 3a e8 96 fc 5e 8c 11 6a 94 71 d2 71 39 b0 fe e8 7d 7c 16 a5 d2 fa c6 79 18 e4 c1 8c e3 16 c6 31 43 19 9b 3d a0 f7 6b a1 f9 a2 73 37 54 f9 0c bb 7e fd 1c fe 59 28 6c 67 e8 3e f5 d9 3b 7b 03 f4 f3 02 25 b4 9f c9 85 4f ce 87 6b 38 d0 e7 25 e8 62 84 3e f6 50 c2 0a 86 70 0a bb 70 0e 79 f1 15 8c 8b e7 90 97 cf 60 b7 3c 87 f8 e2 25 2c 7e fc Data Ascii: 7@PNGIHDR}V IDATx$Irfy3@C$Kb9\++w+=$? 93t]ynf+zGDU53D{KtVFfz~Pk"PJRG~}waG:!/{~W:17?'g\|eK15k:P
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Tue, 16 Jul 2024 20:29:43 GMTETag: W/"81cb192b6e3ea564be9bc5dfdbc46e93"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 4968Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:04:03 GMTDate: Thu, 13 Mar 2025 09:04:03 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856643.86942decdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: *Data Raw: 1f 8b 08 00 00 00 00 00 00 03 ac 55 07 58 93 c9 ba 0e 5d a9 ba 28 45 41 b2 01 14 94 90 06 09 89 10 50 6a 68 22 a2 20 2e 48 3a 91 92 40 02 84 0e 52 14 51 58 c3 01 54 3a a2 d8 68 82 c2 d2 8c 22 b0 a0 18 04 16 10 75 09 e2 52 a4 2f 55 ea 09 b6 b3 e7 9e 3d 7b ce bd cf cd f3 fc f9 e7 9f 79 e7 fd de ef 9b 77 66 12 1c ec 2d 65 24 77 49 02 00 00 19 9c 95 99 a3 e0 dd 2e 78 34 b6 88 0b fe 97 0a 2b 42 05 af ad 0c ab 93 4c 00 40 f6 e9 e6 23 94 7a 40 76 37 00 20 fe 90 e6 e4 c2 72 b1 b3 c5 10 e9 3e ba 78 12 9d 40 d6 65 fb 30 04 68 00 c0 d0 98 cd c0 13 bd c8 2c 20 81 4c a5 f9 1a 81 a6 6a 1e 81 80 34 92 11 c8 59 df 0e 6a c7 30 25 7b d2 ac 42 fc c9 c7 42 ec 9d 88 21 5e 44 34 09 64 8c 05 1a b2 31 02 02 1f 32 0b 0f 64 fb 78 fb 32 31 6c 23 d0 27 5e 8c a0 bd d9 0d 01 01 3f 41 58 5e 46 a0 43 9b 03 40 17 3b 07 a0 29 dd 9f 0c d4 d7 45 82 89 30 3d 38 10 85 d6 85 21 a1 68 b8 9e 0e 10 0e 85 a1 20 50 14 04 86 00 43 61 18 28 12 83 40 03 bf fc 40 82 68 fe 24 0a c6 d1 cc e2 4b 2c c1 97 11 c8 93 c5 62 60 20 90 a0 a0 20 dd 20 84 2e dd 9f 0a 81 a1 d1 68 08 14 0e 81 c3 c1 02 04 98 19 ec cb c2 b3 c1 be 4c f5 af 0c 66 64 26 d1 9f c6 60 d1 e8 be c0 4d 46 3c 81 1e c0 32 02 09 94 7e 4e c1 87 f1 8d d6 97 f9 a5 4c 82 82 41 d8 78 06 04 a6 0b dd 4c e9 13 90 44 fc 86 63 04 f8 7b 7f 0a 4e 22 42 c8 de 64 1f b2 2f 8b 29 c0 c2 be 61 19 9e 74 16 9d e9 49 ff 37 d4 df 86 ff 29 80 a0 6e 76 76 7f ad c5 c7 e7 5b 08 26 cb 3c 50 90 c6 97 82 fc a9 72 a6 53 30 83 0c 71 24 33 e9 01 fe 44 b2 79 a0 40 a6 fa 66 36 0c 8c a9 3f 19 cf a2 fb 3b d1 e9 de 5f 17 ca e1 ab 64 a0 a9 29 50 cb 99 e6 4b a2 07 31 b5 ff 00 27 9b e1 59 64 23 10 1c 0a 87 82 61 30 30 1c e5 04 d3 c3 e8 43 31 fa c8 03 50 03 0c 14 fa 19 6a 47 27 d1 28 c1 7f 84 c2 c1 50 b8 13 0c 81 81 19 60 f4 d0 ff 04 15 18 86 84 67 e1 ff 23 98 44 c4 50 e8 fe 3e 78 41 ba 34 1f 3c 95 0c 61 f8 52 41 c0 6f 45 c4 98 d2 bd e9 fe 82 c0 02 75 88 3f f6 e3 4c 4d 1d fc e9 14 9a b7 60 80 e9 68 79 18 88 33 37 45 c2 d0 48 24 18 ae 0b fb 24 d7 ce 0e 83 f3 65 b2 f0 be 44 32 ce cc 08 24 e8 d1 a5 d1 48 18 24 c2 40 0f 46 41 a3 c0 24 12 cc 00 4c d0 d7 83 82 d1 28 24 0a ac 87 82 22 e1 64 34 81 42 40 a2 be ce 37 a3 13 03 36 0d b0 39 ff f3 5e 20 d1 89 02 8e 7f c8 c3 a3 49 44 14 09 8a 00 eb 43 f5 Data Ascii: UX](EAPjh" .H:@RQXT:h"uR/U={ywf-e$wI.x4+BL@#z@v7 r>x@e0h, Lj4Yj0%{BB!^D4d12dx21l#'^?AX^FC@;)E0=
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Tue, 16 Jul 2024 20:27:21 GMTETag: W/"798b58eff75a7d3ba010fa4c5707d5ff"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1202Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:04:03 GMTDate: Thu, 13 Mar 2025 09:04:03 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856643.86966e9cdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 13 04 ec fb 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 27 00 00 00 27 08 06 00 00 00 8c a3 51 35 00 00 00 04 73 42 49 54 08 08 08 08 7c 08 64 88 00 00 00 09 70 48 59 73 00 00 0e c4 00 00 0e c4 01 95 2b 0e 1b 00 00 00 19 74 45 58 74 53 6f 66 74 77 61 72 65 00 77 77 77 2e 69 6e 6b 73 63 61 70 65 2e 6f 72 67 9b ee 3c 1a 00 00 04 13 49 44 41 54 58 85 c5 98 4b 6c 95 45 14 c7 7f 73 29 78 2f 60 91 aa e0 2b 0a 46 8d 48 02 16 8c 20 31 3e 31 31 1a 57 3e e2 83 95 11 4c 34 46 17 b0 d3 88 4b 63 e2 ca 85 86 05 51 56 2a 4d 4c d8 f1 88 52 8c 09 4a 04 62 34 2c b4 45 63 50 83 2d d1 16 41 1e fd b9 98 f9 e8 57 f8 be db fb b5 b7 f8 4f 6e e6 cc 99 33 73 fe df 99 b9 33 67 26 90 83 da 00 d6 01 4f 00 8b 80 cb 99 7a 0c 00 3f 00 5b 81 4d 21 84 13 17 58 a8 cb d4 c3 fe bf e8 57 bb 8b 88 0d 8d d3 f1 0d 75 9d 3a 98 ea bd a9 be ad cd 04 87 ce 11 54 1b b6 16 b1 97 93 fd 27 a9 fe 42 aa 7f de 66 72 1a 23 58 af 11 d7 d8 0d 2d ac 8d a7 52 b9 23 95 bb d4 2e e0 ee aa 8b ac 05 2c 00 d6 a2 ee 69 f1 6b ce aa d7 a9 0b d4 3e 00 75 4d 6a 1b 56 b7 a8 ef ab 47 72 7d 7a d4 dd 49 de a5 7e 56 21 7a bb 51 07 2a 74 78 29 91 da 90 ca 8f 13 e9 15 d9 27 ab f3 d5 5f 92 7d 5d 7d 28 c9 ab d4 ae 0a be fe ac 01 73 2b 84 fb 91 54 be a7 ce 00 1e 06 7a 43 08 7b d5 f5 ea a7 21 84 3f 80 8f 26 3f b3 74 d5 80 50 a1 c3 03 6a 23 ed 45 f7 01 9d c0 cf a9 6d 15 70 6f 92 0f b7 81 5c a8 55 ec d0 00 ee 4f f2 63 a9 3c 95 ca 69 e9 97 d7 4d 0a 55 c9 41 fc 27 01 2c 6c 07 81 66 98 08 b9 8b 86 76 90 eb 4c e5 30 30 94 e4 4b 73 ed a6 f2 4c d5 81 3b 26 41 2a c3 52 35 00 1f 00 3b 93 ee f6 54 ce 02 0e 01 af 01 df 50 6d 67 68 4b e4 6e 05 36 02 5f 85 10 36 ab 8f 03 6b 52 db 1d c0 11 62 44 97 55 1d 38 a8 8e 6f d6 12 fe 01 4e 02 5d 39 dd 19 e0 ef f3 74 2d a3 2a b9 21 e0 58 fa e5 d7 d0 5f c0 48 ae 5e 03 e6 e4 ea 1d c4 29 9d cb d8 f5 d8 1c e3 1c 21 3b d4 d5 ea 3c 75 7a 85 8f 68 e6 af 43 bd 52 7d 50 dd de cc 79 33 72 db d4 29 dd 6a d4 9a 4d 92 81 66 e4 96 4c 25 b1 1c c1 45 55 c9 0d a5 8e cf 97 b4 bf d5 c4 99 6a 6f 45 82 83 45 4e ca a6 ed c7 54 1e 21 ee 5d 3b 73 6d 3b 81 be 2a ce 5b 40 f1 78 25 91 e9 29 b3 1b cf cb 04 23 d7 53 25 72 43 25 fa 6c b0 6e 75 9f fa 8c 31 81 dc a7 be 9e 33 99 a6 be ab fe aa be Data Ascii: PNGIHDR''Q5sBIT\|dpHYs+tEXtSoftwarewww.inkscape.org<IDATXKlEs)x/`+FH 1>11W>L4FKcQVMLRJb4,EcP-AWOn3s3g&Oz?[M!XWu
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Tue, 16 Jul 2024 20:27:21 GMTETag: W/"e39b2177ad759b9a7835f4b8cf1b7ef1"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 4470Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:04:03 GMTDate: Thu, 13 Mar 2025 09:04:03 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856643.8696806cdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 94 57 79 38 14 5c db 9f c5 32 76 7a b3 3c 96 1a eb 63 9d 42 85 2c 4d 93 65 26 c9 23 64 1d 6b 8d 26 83 b1 cd 68 06 8d 42 45 31 28 0c d2 eb 31 52 96 24 1a 32 d2 24 a2 0c 32 12 13 c3 94 5d d6 68 c8 52 df f4 fd f9 fd f7 9d eb ba cf 7d dd bf 73 9f 7b b9 ce 75 ae df 39 b7 fe 39 eb 24 23 a9 2a 09 00 00 64 50 48 fb 73 42 dd fd 47 20 62 c2 b9 d6 fb 49 a9 50 89 c4 22 50 1e 10 e1 48 84 5c b8 29 b4 25 f0 48 9f 58 00 40 b6 e3 8f 00 ef 19 c9 aa 09 c1 bf e2 1c bc e3 dc a3 30 71 c4 e0 98 8b 00 22 91 08 c3 46 86 c7 86 06 e3 2f c2 a2 62 c2 8a 97 6d 54 01 00 05 79 94 fd 49 8f 84 92 25 1e 99 1a 10 9f d4 b5 b6 f9 77 7a a1 ca 3f 1c c9 18 03 11 90 ee 74 16 42 11 4b 49 b5 ce fa 37 28 8d 94 f2 4b 5b 6f 48 f2 7d e3 75 f7 d1 7d 06 b7 bd f5 1d c4 7a 2a 8e c7 8b 4d ee 07 9b 5d 2a f3 86 de c5 e7 18 28 bf b8 0b d7 f1 82 9f 46 ee d7 05 ee db f7 7d e9 e0 ab 86 77 b9 8b 76 3b 8b cb 3f 4b d7 ad 67 7f b6 61 08 2a 82 ef 3b 49 eb 8b eb dc d8 1d b4 3d 8a 8d 33 3b 0c b6 94 2e 94 5c 04 ee da 3d 35 79 ea e2 b3 97 fa a1 9f 14 24 b3 1a 1e 64 b0 ea cc d7 e4 47 a2 fa ef 0d a4 38 ae bf c1 30 fe c6 eb ad fa 04 3d 30 93 94 2c d3 91 4a b1 62 fd c8 cd bf d3 98 a3 20 da c1 96 05 fd 92 dc 92 5e cd ca 21 1c 40 88 1e 03 35 01 95 4f 93 2e 35 9f b0 a9 a1 14 72 77 28 ce 29 fd 32 9b 61 a7 ba 59 fe fc 9e dc f3 71 3b 60 f4 ab 77 bd 8b 83 ac 57 80 d1 ec ff 3e 95 8f 59 93 5c 55 ce 8d 9c 9b 29 be 21 7d 93 76 07 fc 04 d4 77 e0 62 b0 e6 d4 94 2a df 1f 15 45 d8 7e 98 05 34 6d b8 c5 72 61 dd d2 55 52 42 c0 66 80 95 a7 49 f1 4f a3 54 8e 40 31 0c 0d bc f8 aa e6 8d 76 44 77 e7 75 d6 5a ee 27 e9 8d 4e 53 70 d2 33 cb da 22 e7 54 ed c6 89 2f 2c 13 8c a0 2f a5 cd 32 08 8e 1c 56 8f f6 55 24 75 9a b2 14 c1 49 c1 d5 ee c6 e6 d6 1a 73 0b 92 27 52 f3 7f 96 d0 ad f6 4e ac 31 28 fb fb ad 4a 35 23 a7 d3 c7 37 ac 83 02 51 bf 87 37 6f 99 b8 d6 c3 b4 db 15 48 c3 64 4a 94 e0 77 c7 43 ed 9b b4 24 40 42 61 02 e2 00 a9 18 b8 52 b0 61 d9 ba 07 f9 6e 61 6f 89 90 37 90 2a fe 55 19 e5 b1 ac 25 f6 aa 5a 11 71 88 0b 39 93 d3 d8 7a 48 3e 4c e1 0b a4 ac 5f 85 43 19 73 71 a2 a6 75 24 66 c9 6f 93 7d 39 c9 66 0d bc 94 e9 78 af ff 20 d2 f5 b2 81 59 b5 cc 0c 79 b3 a3 49 d2 f8 4b 3c cf 54 ea e3 53 5d 54 25 6f 88 26 2e 62 c1 3b e8 Data Ascii: Wy8\2vz<cB,Me&#dk&hBE1(1R$2$2]hR}s{u99$#dPHsBG bIP"PH\)%HX@0q"F/bmTyI%wz?tBKI7(K[oH}u}zM](
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Tue, 16 Jul 2024 20:29:43 GMTETag: W/"81cb192b6e3ea564be9bc5dfdbc46e93"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 4968Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:04:03 GMTDate: Thu, 13 Mar 2025 09:04:03 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.1eb6655f.1741856643.7227bb3cdnsip: 95.101.182.34cdncip: 8.46.123.189Timing-Allow-Origin: *Server-Timing: ak_p; desc="1741856643840_1600501278_119700403_57_1063_89_0_-";dur=1Data Raw: 1f 8b 08 00 00 00 00 00 00 03 ac 55 07 58 93 c9 ba 0e 5d a9 ba 28 45 41 b2 01 14 94 90 06 09 89 10 50 6a 68 22 a2 20 2e 48 3a 91 92 40 02 84 0e 52 14 51 58 c3 01 54 3a a2 d8 68 82 c2 d2 8c 22 b0 a0 18 04 16 10 75 09 e2 52 a4 2f 55 ea 09 b6 b3 e7 9e 3d 7b ce bd cf cd f3 fc f9 e7 9f 79 e7 fd de ef 9b 77 66 12 1c ec 2d 65 24 77 49 02 00 00 19 9c 95 99 a3 e0 dd 2e 78 34 b6 88 0b fe 97 0a 2b 42 05 af ad 0c ab 93 4c 00 40 f6 e9 e6 23 94 7a 40 76 37 00 20 fe 90 e6 e4 c2 72 b1 b3 c5 10 e9 3e ba 78 12 9d 40 d6 65 fb 30 04 68 00 c0 d0 98 cd c0 13 bd c8 2c 20 81 4c a5 f9 1a 81 a6 6a 1e 81 80 34 92 11 c8 59 df 0e 6a c7 30 25 7b d2 ac 42 fc c9 c7 42 ec 9d 88 21 5e 44 34 09 64 8c 05 1a b2 31 02 02 1f 32 0b 0f 64 fb 78 fb 32 31 6c 23 d0 27 5e 8c a0 bd d9 0d 01 01 3f 41 58 5e 46 a0 43 9b 03 40 17 3b 07 a0 29 dd 9f 0c d4 d7 45 82 89 30 3d 38 10 85 d6 85 21 a1 68 b8 9e 0e 10 0e 85 a1 20 50 14 04 86 00 43 61 18 28 12 83 40 03 bf fc 40 82 68 fe 24 0a c6 d1 cc e2 4b 2c c1 97 11 c8 93 c5 62 60 20 90 a0 a0 20 dd 20 84 2e dd 9f 0a 81 a1 d1 68 08 14 0e 81 c3 c1 02 04 98 19 ec cb c2 b3 c1 be 4c f5 af 0c 66 64 26 d1 9f c6 60 d1 e8 be c0 4d 46 3c 81 1e c0 32 02 09 94 7e 4e c1 87 f1 8d d6 97 f9 a5 4c 82 82 41 d8 78 06 04 a6 0b dd 4c e9 13 90 44 fc 86 63 04 f8 7b 7f 0a 4e 22 42 c8 de 64 1f b2 2f 8b 29 c0 c2 be 61 19 9e 74 16 9d e9 49 ff 37 d4 df 86 ff 29 80 a0 6e 76 76 7f ad c5 c7 e7 5b 08 26 cb 3c 50 90 c6 97 82 fc a9 72 a6 53 30 83 0c 71 24 33 e9 01 fe 44 b2 79 a0 40 a6 fa 66 36 0c 8c a9 3f 19 cf a2 fb 3b d1 e9 de 5f 17 ca e1 ab 64 a0 a9 29 50 cb 99 e6 4b a2 07 31 b5 ff 00 27 9b e1 59 64 23 10 1c 0a 87 82 61 30 30 1c e5 04 d3 c3 e8 43 31 fa c8 03 50 03 0c 14 fa 19 6a 47 27 d1 28 c1 7f 84 c2 c1 50 b8 13 0c 81 81 19 60 f4 d0 ff 04 15 18 86 84 67 e1 ff 23 98 44 c4 50 e8 fe 3e 78 41 ba 34 1f 3c 95 0c 61 f8 52 41 c0 6f 45 c4 98 d2 bd e9 fe 82 c0 02 75 88 3f f6 e3 4c 4d 1d fc e9 14 9a b7 60 80 e9 68 79 18 88 33 37 45 c2 d0 48 24 18 ae 0b fb Data Ascii: UX](EAPjh" .H:@RQXT:h"uR/U={ywf-e$wI.x4+BL@#z@v7 r>x@e0h, Lj4Yj0%{BB!^D4d12dx21l#'^?AX^FC@;)E0=8!h PCa(@@h$K,b` .hLfd&`MF<2~NLAxLDc{N"Bd/)atI7
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Tue, 16 Jul 2024 20:27:21 GMTETag: W/"798b58eff75a7d3ba010fa4c5707d5ff"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 1202Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:04:03 GMTDate: Thu, 13 Mar 2025 09:04:03 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856643.86968accdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 00 13 04 ec fb 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 27 00 00 00 27 08 06 00 00 00 8c a3 51 35 00 00 00 04 73 42 49 54 08 08 08 08 7c 08 64 88 00 00 00 09 70 48 59 73 00 00 0e c4 00 00 0e c4 01 95 2b 0e 1b 00 00 00 19 74 45 58 74 53 6f 66 74 77 61 72 65 00 77 77 77 2e 69 6e 6b 73 63 61 70 65 2e 6f 72 67 9b ee 3c 1a 00 00 04 13 49 44 41 54 58 85 c5 98 4b 6c 95 45 14 c7 7f 73 29 78 2f 60 91 aa e0 2b 0a 46 8d 48 02 16 8c 20 31 3e 31 31 1a 57 3e e2 83 95 11 4c 34 46 17 b0 d3 88 4b 63 e2 ca 85 86 05 51 56 2a 4d 4c d8 f1 88 52 8c 09 4a 04 62 34 2c b4 45 63 50 83 2d d1 16 41 1e fd b9 98 f9 e8 57 f8 be db fb b5 b7 f8 4f 6e e6 cc 99 33 73 fe df 99 b9 33 67 26 90 83 da 00 d6 01 4f 00 8b 80 cb 99 7a 0c 00 3f 00 5b 81 4d 21 84 13 17 58 a8 cb d4 c3 fe bf e8 57 bb 8b 88 0d 8d d3 f1 0d 75 9d 3a 98 ea bd a9 be ad cd 04 87 ce 11 54 1b b6 16 b1 97 93 fd 27 a9 fe 42 aa 7f de 66 72 1a 23 58 af 11 d7 d8 0d 2d ac 8d a7 52 b9 23 95 bb d4 2e e0 ee aa 8b ac 05 2c 00 d6 a2 ee 69 f1 6b ce aa d7 a9 0b d4 3e 00 75 4d 6a 1b 56 b7 a8 ef ab 47 72 7d 7a d4 dd 49 de a5 7e 56 21 7a bb 51 07 2a 74 78 29 91 da 90 ca 8f 13 e9 15 d9 27 ab f3 d5 5f 92 7d 5d 7d 28 c9 ab d4 ae 0a be fe ac 01 73 2b 84 fb 91 54 be a7 ce 00 1e 06 7a 43 08 7b d5 f5 ea a7 21 84 3f 80 8f 26 3f b3 74 d5 80 50 a1 c3 03 6a 23 ed 45 f7 01 9d c0 cf a9 6d 15 70 6f 92 0f b7 81 5c a8 55 ec d0 00 ee 4f f2 63 a9 3c 95 ca 69 e9 97 d7 4d 0a 55 c9 41 fc 27 01 2c 6c 07 81 66 98 08 b9 8b 86 76 90 eb 4c e5 30 30 94 e4 4b 73 ed a6 f2 4c d5 81 3b 26 41 2a c3 52 35 00 1f 00 3b 93 ee f6 54 ce 02 0e 01 af 01 df 50 6d 67 68 4b e4 6e 05 36 02 5f 85 10 36 ab 8f 03 6b 52 db 1d c0 11 62 44 97 55 1d 38 a8 8e 6f d6 12 fe 01 4e 02 5d 39 dd 19 e0 ef f3 74 2d a3 2a b9 21 e0 58 fa e5 d7 d0 5f c0 48 ae 5e 03 e6 e4 ea 1d c4 29 9d cb d8 f5 d8 1c e3 1c 21 3b d4 d5 ea 3c 75 7a 85 8f 68 e6 af 43 bd 52 7d 50 dd de cc 79 33 72 db d4 29 dd 6a d4 9a 4d 92 81 66 e4 96 4c 25 b1 1c c1 45 55 c9 0d a5 8e cf 97 b4 bf d5 c4 99 6a 6f 45 82 83 45 4e ca a6 ed c7 54 1e 21 ee 5d 3b 73 6d 3b 81 be 2a ce 5b 40 f1 78 25 91 e9 29 b3 1b cf cb 04 23 d7 53 25 72 43 25 fa 6c b0 6e 75 9f fa 8c 31 81 dc a7 be 9e 33 99 a6 be ab fe aa be Data Ascii: PNGIHDR''Q5sBIT\|dpHYs+tEXtSoftwarewww.inkscape.org<IDATXKlEs)x/`+FH 1>11W>L4FKcQVMLRJb4,EcP-AWOn3s3g&Oz?[M!XWu
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKVary: Accept-EncodingLast-Modified: Tue, 16 Jul 2024 20:27:21 GMTETag: W/"e39b2177ad759b9a7835f4b8cf1b7ef1"Server: CCTVAMCLOUDX-UA-Compatible: IE=EmulateIE7Content-Encoding: gzipContent-Length: 4470Cache-Control: max-age=86400Expires: Fri, 14 Mar 2025 09:04:05 GMTDate: Thu, 13 Mar 2025 09:04:05 GMTConnection: keep-aliveContent-Type: image/pngX-AK-Request-ID: 0.0eb6655f.1741856645.86968facdnsip: 95.101.182.18cdncip: 8.46.123.189Timing-Allow-Origin: Data Raw: 1f 8b 08 00 00 00 00 00 00 03 94 57 79 38 14 5c db 9f c5 32 76 7a b3 3c 96 1a eb 63 9d 42 85 2c 4d 93 65 26 c9 23 64 1d 6b 8d 26 83 b1 cd 68 06 8d 42 45 31 28 0c d2 eb 31 52 96 24 1a 32 d2 24 a2 0c 32 12 13 c3 94 5d d6 68 c8 52 df f4 fd f9 fd f7 9d eb ba cf 7d dd bf 73 9f 7b b9 ce 75 ae df 39 b7 fe 39 eb 24 23 a9 2a 09 00 00 64 50 48 fb 73 42 dd fd 47 20 62 c2 b9 d6 fb 49 a9 50 89 c4 22 50 1e 10 e1 48 84 5c b8 29 b4 25 f0 48 9f 58 00 40 b6 e3 8f 00 ef 19 c9 aa 09 c1 bf e2 1c bc e3 dc a3 30 71 c4 e0 98 8b 00 22 91 08 c3 46 86 c7 86 06 e3 2f c2 a2 62 c2 8a 97 6d 54 01 00 05 79 94 fd 49 8f 84 92 25 1e 99 1a 10 9f d4 b5 b6 f9 77 7a a1 ca 3f 1c c9 18 03 11 90 ee 74 16 42 11 4b 49 b5 ce fa 37 28 8d 94 f2 4b 5b 6f 48 f2 7d e3 75 f7 d1 7d 06 b7 bd f5 1d c4 7a 2a 8e c7 8b 4d ee 07 9b 5d 2a f3 86 de c5 e7 18 28 bf b8 0b d7 f1 82 9f 46 ee d7 05 ee db f7 7d e9 e0 ab 86 77 b9 8b 76 3b 8b cb 3f 4b d7 ad 67 7f b6 61 08 2a 82 ef 3b 49 eb 8b eb dc d8 1d b4 3d 8a 8d 33 3b 0c b6 94 2e 94 5c 04 ee da 3d 35 79 ea e2 b3 97 fa a1 9f 14 24 b3 1a 1e 64 b0 ea cc d7 e4 47 a2 fa ef 0d a4 38 ae bf c1 30 fe c6 eb ad fa 04 3d 30 93 94 2c d3 91 4a b1 62 fd c8 cd bf d3 98 a3 20 da c1 96 05 fd 92 dc 92 5e cd ca 21 1c 40 88 1e 03 35 01 95 4f 93 2e 35 9f b0 a9 a1 14 72 77 28 ce 29 fd 32 9b 61 a7 ba 59 fe fc 9e dc f3 71 3b 60 f4 ab 77 bd 8b 83 ac 57 80 d1 ec ff 3e 95 8f 59 93 5c 55 ce 8d 9c 9b 29 be 21 7d 93 76 07 fc 04 d4 77 e0 62 b0 e6 d4 94 2a df 1f 15 45 d8 7e 98 05 34 6d b8 c5 72 61 dd d2 55 52 42 c0 66 80 95 a7 49 f1 4f a3 54 8e 40 31 0c 0d bc f8 aa e6 8d 76 44 77 e7 75 d6 5a ee 27 e9 8d 4e 53 70 d2 33 cb da 22 e7 54 ed c6 89 2f 2c 13 8c a0 2f a5 cd 32 08 8e 1c 56 8f f6 55 24 75 9a b2 14 c1 49 c1 d5 ee c6 e6 d6 1a 73 0b 92 27 52 f3 7f 96 d0 ad f6 4e ac 31 28 fb fb ad 4a 35 23 a7 d3 c7 37 ac 83 02 51 bf 87 37 6f 99 b8 d6 c3 b4 db 15 48 c3 64 4a 94 e0 77 c7 43 ed 9b b4 24 40 42 61 02 e2 00 a9 18 b8 52 b0 61 d9 ba 07 f9 6e 61 6f 89 90 37 90 2a fe 55 19 e5 b1 ac 25 f6 aa 5a 11 71 88 0b 39 93 d3 d8 7a 48 3e 4c e1 0b a4 ac 5f 85 43 19 73 71 a2 a6 75 24 66 c9 6f 93 7d 39 c9 66 0d bc 94 e9 78 af ff 20 d2 f5 b2 81 59 b5 cc 0c 79 b3 a3 49 d2 f8 4b 3c cf 54 ea e3 53 5d 54 25 6f 88 26 2e 62 c1 3b e8 Data Ascii: Wy8\2vz<cB,Me&#dk&hBE1(1R$2$2]hR}s{u99$#dPHsBG bIP"PH\)%HX@0q"F/bmTyI%wz?tBKI7(K[oH}u}zM](

Source: global traffic	HTTP traffic detected: GET /__aplus_plugin_cctv.js,aplus_plugin_aplus_u.js HTTP/1.1Host: js.data.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u301.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u309.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/headerDown.png?a HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://r.img.cctvpic.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/qrCode.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u301.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u309.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/headerDown.png?a HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /cmsdatainterface/guowai/new/page/PAGEAcAwQE2rxqQd91IljaY7210126_1.jsonp HTTP/1.1Host: global.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cmsdatainterface/guowai/new/page/PAGEHo0GzuvzyA5MIci6BUsg210126_1.jsonp HTTP/1.1Host: global.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cmsdatainterface/guowai/new/page/PAGEZ8HZ8JSmzO1F6GiAYTi9211130_1.jsonp HTTP/1.1Host: global.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/qrCode.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/05/2025030515410488156.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/01/22/2025012217494281075.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/07/2025030715573997095.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/04/2025030417555522663.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/20/2025022017485724978.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /2025/03/04/VIDEDanTkGdnKhqWobUGrOWv250304.shtml HTTP/1.1Host: global.cctv.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_ws_sbu/sbu_hc.js HTTP/1.1Host: global.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://global.cctv.com/2025/03/04/VIDEDanTkGdnKhqWobUGrOWv250304.shtmlAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=5ad1643fafad2564f5f4d3e09f33b9dbe9b0ab11b8e94ae1262dd889eb537d33cf0a93913a3e28ef7eafe4750475f6c005ed1374beedeaa3368c502d493d257d9d
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/05/2025030515410488156.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/01/22/2025012217494281075.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /creator/swfobject.js HTTP/1.1Host: js.player.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /creator/liveplayer.js HTTP/1.1Host: js.player.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /creator/vodplayer.js HTTP/1.1Host: js.player.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTEJPeICF1vmheNurgKmG9y210128/font_2289754_26kyl81v1x6h.css HTTP/1.1Host: r.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /newcctv/global/topcontaindetail/style/style.css?663f9c943b97d55c28d126056c0650b3 HTTP/1.1Host: r.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /whereis?client=html5 HTTP/1.1Host: ip.apps.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTEnNVyOjEur48OX4pmtTvc210125/moment.min.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTEnNVyOjEur48OX4pmtTvc210125/moment-with-locales.min.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTEb9d46l9PrknkCbJF7vpo201225/getArea.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/findGetParameter3.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cmsdatainterface/guowai/new/video/PAGEnL0TSDsFQ26XkCx4G7Kl210126_1.jsonp HTTP/1.1Host: global.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cmsdatainterface/guowai/new/page/PAGEMURMOWpDxCfQkQPW3nKA210126_1.jsonp HTTP/1.1Host: global.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: sg-adh7.vv.885210.xyzConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=fd656856b333de59231f027bf295f44e9112999ea0670b4eff45c73a24b4ce314621e5b9dc532f3b582133e16a3120c816c5643ad1d27ef29367784dc357f38135; country_code=US; cna=hI1ZIHqIOHsCAQgue70C3Gy5; HBB_HC=d727697f36d56c85bd15b730b628471f2f022bc83ea7e36466588c27f2793863eeb42ac770b07eb3c7f76083ec8fb7e431
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/04/2025030417555522663.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/07/2025030715573997095.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/js/jquery-1.7.2.min.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTEGOTucs2RKGcaiRh3Vf5j211209/better-scroll.min.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2025/03/10/43fb98009aed406ca10d4db6baed41f9-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/headerDown.png?a HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://r.img.cctvpic.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2025/03/07/37e3e2700fda4f5da25b1acbf863dd41-1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/jweixin-1.6.0.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dingding/open-develop/1.9.0/dingtalk.js HTTP/1.1Host: g.alicdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cmsdatainterface/guowai/new/video/newestvideo.jsonp?newest=newest&_=1741856667620 HTTP/1.1Host: global.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"X-Requested-With: XMLHttpRequestUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, /; q=0.01sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://global.cctv.com/2025/03/04/VIDEDanTkGdnKhqWobUGrOWv250304.shtmlAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=5ad1643fafad2564f5f4d3e09f33b9dbe9b0ab11b8e94ae1262dd889eb537d33cf0a93913a3e28ef7eafe4750475f6c005ed1374beedeaa3368c502d493d257d9d; HBB_HC=7f6be916c71d41196d65855564227b42d11b0a4a469e9f33070da0a0b923762bc97cbf0960d5178f3f11abadeae83cb388; HOY_TR=GYZOPKLIJBNQWAXS,AD2346758B9CEF01,Nmaodyqprtgwbclj,0
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/12/31/ab5059c9774d4df5bdfb117a3b72cb9b-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2025/03/10/a0bfccff6a2044f88f736f37a5c38492-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/12/10/d4a8974e2a1f4959ae5d94bc510a884c-1.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/jiantou.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/md_hd.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/time_icon.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/jianjie_icon.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/play_1920_740.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2025/03/10/43fb98009aed406ca10d4db6baed41f9-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /fmspic/2025/03/07/37e3e2700fda4f5da25b1acbf863dd41-1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/12/31/ab5059c9774d4df5bdfb117a3b72cb9b-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /fmspic/2025/03/10/a0bfccff6a2044f88f736f37a5c38492-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/jiantou.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/time_icon.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/19/2025021916465535619.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/17/2025021717474139198.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /cmsdatainterface/guowai/new/video/newestvideo.jsonp?newest=newest&_=1741856667620 HTTP/1.1Host: global.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=5ad1643fafad2564f5f4d3e09f33b9dbe9b0ab11b8e94ae1262dd889eb537d33cf0a93913a3e28ef7eafe4750475f6c005ed1374beedeaa3368c502d493d257d9d; HBB_HC=6381526565e0792397518baae9605cea25544ec5ce117466fada7ce108422fda625918235682d6b3883adcb736586a0e6a
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/12/10/d4a8974e2a1f4959ae5d94bc510a884c-1.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /list/getWeiXinSignature?t=jsonp&cb=cb1&appid=newstiket&serviceId=cmsty&url=https%25253A%25252F%25252Fglobal.cctv.com%25252F2025%25252F03%25252F04%25252FVIDEDanTkGdnKhqWobUGrOWv250304.shtml HTTP/1.1Host: api.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /__aplus_plugin_cctv.js,aplus_plugin_aplus_u.js HTTP/1.1Host: js.data.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/17/2025021717474139198.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /ge.js HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E4%B8%8D%E8%A6%81%E6%89%93%E6%89%B0%E5%A6%88%E5%A6%88%E5%90%83%E9%A5%AD_%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=http%3A%2F%2Fsg-adh7.vv.885210.xyz%2F&scr=1280x1024&spm-cnt=0.0.0.0.60cd5f83BUydH9&&aplus&v_id=&title=&cache=13aa0f9&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=https%253A%252F%252Fglobal.cctv.com%252F2025%252F03%252F04%252FVIDEDanTkGdnKhqWobUGrOWv250304.shtml&unixts=1741856680724&tag=0&stag=-2&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: global.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/2025/03/04/VIDEDanTkGdnKhqWobUGrOWv250304.shtmlAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=5ad1643fafad2564f5f4d3e09f33b9dbe9b0ab11b8e94ae1262dd889eb537d33cf0a93913a3e28ef7eafe4750475f6c005ed1374beedeaa3368c502d493d257d9d; HBB_HC=6381526565e0792397518baae9605cea25544ec5ce117466fada7ce108422fda625918235682d6b3883adcb736586a0e6a; cna=q41ZIC7AOgACAaLsAAaYb95f; sca=b79d42ac; atpsida=3e43edebc36ee7dfc54ed9a0_1741856684_1
Source: global traffic	HTTP traffic detected: GET /creator/fingerprint2.js HTTP/1.1Host: js.player.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cmsdatainterface/guowai/new/video/PAGEBaWhj2ZEWMJOi90M4Jmc211130_1.jsonp HTTP/1.1Host: global.cctv.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://global.cctv.com/2025/03/04/VIDEDanTkGdnKhqWobUGrOWv250304.shtmlAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=5ad1643fafad2564f5f4d3e09f33b9dbe9b0ab11b8e94ae1262dd889eb537d33cf0a93913a3e28ef7eafe4750475f6c005ed1374beedeaa3368c502d493d257d9d; HBB_HC=6381526565e0792397518baae9605cea25544ec5ce117466fada7ce108422fda625918235682d6b3883adcb736586a0e6a; cna=q41ZIC7AOgACAaLsAAaYb95f; sca=b79d42ac; atpsida=3e43edebc36ee7dfc54ed9a0_1741856684_1
Source: global traffic	HTTP traffic detected: GET /h5vod/vodh5player.min.js HTTP/1.1Host: player.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E4%B8%8D%E8%A6%81%E6%89%93%E6%89%B0%E5%A6%88%E5%A6%88%E5%90%83%E9%A5%AD_%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=http%3A%2F%2Fsg-adh7.vv.885210.xyz%2F&scr=1280x1024&spm-cnt=0.0.0.0.60cd5f83BUydH9&&aplus&v_id=&title=&cache=13aa0f9&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=https%253A%252F%252Fglobal.cctv.com%252F2025%252F03%252F04%252FVIDEDanTkGdnKhqWobUGrOWv250304.shtml&unixts=1741856680724&tag=0&stag=-2&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cna=q41ZIC7AOgACAaLsAAaYb95f; sca=b79d42ac; atpsida=3e43edebc36ee7dfc54ed9a0_1741856684_1
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: global.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=5ad1643fafad2564f5f4d3e09f33b9dbe9b0ab11b8e94ae1262dd889eb537d33cf0a93913a3e28ef7eafe4750475f6c005ed1374beedeaa3368c502d493d257d9d; HBB_HC=6381526565e0792397518baae9605cea25544ec5ce117466fada7ce108422fda625918235682d6b3883adcb736586a0e6a; cna=q41ZIC7AOgACAaLsAAaYb95f; sca=b79d42ac; atpsida=3e43edebc36ee7dfc54ed9a0_1741856684_1
Source: global traffic	HTTP traffic detected: GET /fmspic/2025/02/04/f39f74da3ba14825b75a6431b3c79bc4-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/11/2025021111202087715.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/12/27/2024122714504016973.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/11/2025021111202087715.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/12/03/2024120314061337900.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /h5vod/video_novhs.min.js HTTP/1.1Host: player.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/11/22/2024112210150936333.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/12/27/2024122714504016973.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /h5vod/vhs_drm2.min.js HTTP/1.1Host: player.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/jiantou_hover.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/jianjie_icon_hover.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/jiantou_hover_top.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/jianjie_icon_hover.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/DEPA1565254619482142/jiantou_hover.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/12/03/2024120314061337900.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /h5vod/zh-CN.js HTTP/1.1Host: player.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /h5vod/hlsp2p.js HTTP/1.1Host: player.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /h5vod/config/cctv1.json HTTP/1.1Host: player.cntv.cnConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://global.cctv.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: sg-adh7.vv.885210.xyzConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_ws_sbu/sbu_hc.js HTTP/1.1Host: sg-adh7.vv.885210.xyzConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=fd656856b333de59231f027bf295f44e9112999ea0670b4eff45c73a24b4ce314621e5b9dc532f3b582133e16a3120c816c5643ad1d27ef29367784dc357f38135
Source: global traffic	HTTP traffic detected: GET /whereis?client=html5 HTTP/1.1Host: ip.apps.cntv.cnConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /newcctv/global/style/style.css?fd387d8801d19c400aa3d55842d19735 HTTP/1.1Host: r.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/css,/;q=0.1Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /newcctv/global/topcontain/style/style.css?3ad9f21d24f6a1be5679f14843c34c34 HTTP/1.1Host: r.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/css,/;q=0.1Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTEvyhAGpxUV8VgQYkuUBlr211217/jquery.min.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/polyfill.min.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/babel.min.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/getArea.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/findGetParameter3.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639647981712_576.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/17/1639725024967_844.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639647978733_722.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639647987066_668.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/jweixin-1.6.0.js HTTP/1.1Host: r.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dingding/open-develop/1.9.0/dingtalk.js HTTP/1.1Host: g.alicdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639647981712_576.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/17/1639725024967_844.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /newcctv/global/gotop/style/style.css?818b157b3541946e85e765e6839861c1 HTTP/1.1Host: r.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/css,/;q=0.1Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/5/15/1684143163285_351.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTETdowvcN0ylAq0ygHSCRR211231/logo_03.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/04/2025030416084696224.jpg HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/26/2025022613424915424.jpg HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639647987066_668.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639647978733_722.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/19/2025021916465535619.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/11/2025021111202087715.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2025/02/04/f39f74da3ba14825b75a6431b3c79bc4-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/01/27/2025012714583875799.jpg HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/3/12/1741767564969_699.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/3/3/1740994156179_738.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/11/2025021111202087715.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/2/17/1739785828923_54.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/5/15/1684143163285_351.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTETdowvcN0ylAq0ygHSCRR211231/logo_03.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/04/2025030416084696224.jpg HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/26/2025022613424915424.jpg HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/01/27/2025012714583875799.jpg HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/2/6/1738826185032_318.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/1/27/1737969826838_238.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/8/13/1723539674447_757.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/1/17/1737104633752_729.png HTTP/1.1Host: p4.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/1/5/1704444622973_15.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_white.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/3/12/1741767634948_584.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/3/4/1741075836799_78.jpg HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/1/26/1643194869234_993.png HTTP/1.1Host: p4.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/2/28/1740736028301_750.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_block.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/02/19/2025021916465535619.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2025/02/04/f39f74da3ba14825b75a6431b3c79bc4-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_white.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/1/5/1704444622973_15.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/2/6/1738826185032_318.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/3/12/1741767564969_699.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_block.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/3/3/1740994156179_738.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/8/13/1723539674447_757.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/3/12/1741767634948_584.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/2/17/1739785828923_54.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/2/28/1740736028301_750.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/3/4/1741075836799_78.jpg HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/1/26/1643194869234_993.png HTTP/1.1Host: p4.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/1/17/1737104633752_729.png HTTP/1.1Host: p4.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /r/gsr1.crl HTTP/1.1Cache-Control: max-age = 3000Connection: Keep-AliveAccept: /If-Modified-Since: Tue, 07 Jan 2025 07:28:00 GMTUser-Agent: Microsoft-CryptoAPI/10.0Host: c.pki.goog
Source: global traffic	HTTP traffic detected: GET /r/r4.crl HTTP/1.1Cache-Control: max-age = 3000Connection: Keep-AliveAccept: /If-Modified-Since: Thu, 25 Jul 2024 14:48:00 GMTUser-Agent: Microsoft-CryptoAPI/10.0Host: c.pki.goog
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2025/1/27/1737969826838_238.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/8/10/1691655318774_246.jpg HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/10/28/1666941831543_1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/5/25/1653470368153_51.jpg HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/9/18/1726651696206_691.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/9/13/1726218692378_477.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/8/10/1691655318774_246.jpg HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/10/28/1666941831543_1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/9/13/1726218692378_477.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/9/18/1726651696206_691.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/5/25/1653470368153_51.jpg HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/2/6/1707213737619_980.jpg HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/8/10/1691655318774_246.jpg HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/8/13/1723539805375_472.jpg HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/5/25/1653470368153_51.jpg HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/11/14/1699954619809_805.jpg HTTP/1.1Host: p4.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/10/28/1666941831543_1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/12/2025031216090022947.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/12/2025031216111230766.jpg HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/12/2025031216102117524.jpg HTTP/1.1Host: p4.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/11/2025031116221391433.jpg HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/11/2025031115132361431.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/9/13/1726218692378_477.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/9/18/1726651696206_691.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/11/2025031115143785172.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/31/1640920871087_908.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/27/1640578397052_827.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/11/14/1699954619809_805.jpg HTTP/1.1Host: p4.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/2/6/1707213737619_980.jpg HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/8/13/1723539805375_472.jpg HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/27/1640578423094_12.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/12/2025031216102117524.jpg HTTP/1.1Host: p4.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/27/1640578430802_655.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/27/1640578435474_24.png HTTP/1.1Host: p4.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/12/2025031216111230766.jpg HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/12/2025031216090022947.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/27/1640578397052_827.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/11/2025031116221391433.jpg HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/11/2025031115132361431.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/videoTime.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639642349883_416.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/31/1640920871087_908.png HTTP/1.1Host: p3.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2025/03/11/2025031115143785172.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639642945608_585.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/wd.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/yj.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/27/1640578423094_12.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/qiu.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ge.js HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3D3acf64b&cna=&spm-cnt=undefined&logtype=2 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /list/getWeiXinSignature?t=jsonp&cb=cb1&appid=newstiket&serviceId=cmsty&url=http%25253A%25252F%25252Fsg-adh7.vv.885210.xyz%25252F HTTP/1.1Host: api.cntv.cnConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=&scr=1280x1024&spm-cnt=0.0.0.0.6aae7f85XAC94T&aplus&sidx=aplusSidex&cache=a068eaa&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=http%253A%252F%252Fsg-adh7.vv.885210.xyz%252F&unixts=1741856638118&tag=0&stag=-2&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/27/1640578430802_655.png HTTP/1.1Host: p5.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/27/1640578435474_24.png HTTP/1.1Host: p4.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/videoTime.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/wd.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/qiu.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/yj.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639642945608_585.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=38a7aeddec49935d61bf9ce7028ee4014cad229f1685ecee05e029311004e9668a95bc25727bf1a2abfbc37a58ab8c51e6e512624d1030106db40b04731d6e7b9a
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639642349883_416.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3D3acf64b&cna=&spm-cnt=undefined&logtype=2 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=&scr=1280x1024&spm-cnt=0.0.0.0.6aae7f85XAC94T&aplus&sidx=aplusSidex&cache=a068eaa&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=http%253A%252F%252Fsg-adh7.vv.885210.xyz%252F&unixts=1741856638118&tag=0&stag=-2&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jkdwq.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jkdwq.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=e08d13fc3f73e828e467de300a296328cc54f9f5135dc78628ee5d00917c90377eca7d3eb1b5e8f5d371649fca17c2cae9b49feb1ca7f3f92753b2fffbb10d77bb
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: sg-adh7.vv.885210.xyzConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Referer: http://sg-adh7.vv.885210.xyz/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: HMF_CI=fd656856b333de59231f027bf295f44e9112999ea0670b4eff45c73a24b4ce314621e5b9dc532f3b582133e16a3120c816c5643ad1d27ef29367784dc357f38135; country_code=US; HBB_HC=2c3ef4f3c7cb8688deba39933a76bfe2a3b5aeb820ed0d319331ed061e7b4a26368b774b23a20b008abf7de0c1a15cf00d; HOY_TR=UBJSYWRVKITGCEAL,812ADB90653C4EF7,Ktrjmbunypkzfscq,0; cna=hI1ZIHqIOHsCAQgue70C3Gy5

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: sg-adh7.vv.885210.xyz
Source: global traffic	DNS traffic detected: DNS query: r.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: ip.apps.cntv.cn
Source: global traffic	DNS traffic detected: DNS query: js.data.cctv.com
Source: global traffic	DNS traffic detected: DNS query: p2.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: p5.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: g.alicdn.com
Source: global traffic	DNS traffic detected: DNS query: p3.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: p1.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: p4.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: global.cctv.com
Source: global traffic	DNS traffic detected: DNS query: p.data.cctv.com
Source: global traffic	DNS traffic detected: DNS query: api.cntv.cn
Source: global traffic	DNS traffic detected: DNS query: js.player.cntv.cn
Source: global traffic	DNS traffic detected: DNS query: player.cntv.cn

Source: global traffic

HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:04:24 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91fa5d171aea7bcf-ATL

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 55137 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 55125 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 55126 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 49697 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 55131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 55120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49702
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49701
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 55130 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49701 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49702 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 55129 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 55135 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 55124 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 55134 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49697
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55122
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55123
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 55122 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49683
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55128
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55129
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55125
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55126
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55131
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55132
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55134
Source: unknown	Network traffic detected: HTTP traffic on port 55139 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55130
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 55123 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55139
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55135
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 55137
Source: unknown	Network traffic detected: HTTP traffic on port 49683 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 55128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 55121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49679 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 55132 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\scoped_dir1752_1529605196	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1752_661081556	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1752_661081556\privacy-sandbox-attestations.dat	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1752_661081556\manifest.json	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1752_661081556\_metadata\	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1752_661081556\_metadata\verified_contents.json	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1752_661081556\manifest.fingerprint	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Windows\SystemTemp\scoped_dir1752_1006540577	Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1964,i,7488705212206366076,12196477073181415663,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2016 /prefetch:3
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://sg-adh7.vv.885210.xyz/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1964,i,7488705212206366076,12196477073181415663,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2016 /prefetch:3	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	Path Interception	1 Process Injection	1 Masquerading	OS Credential Dumping	1 Security Software Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Extra Window Memory Injection	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	1 File Deletion	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	1 Extra Window Memory Injection	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	4 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Source	Detection	Scanner	Label
https://dreammail.jp	0%	Avira URL Cloud	safe
https://privacy-sandbox-demos-dsp-a.dev	0%	Avira URL Cloud	safe
https://privacy-sandbox-demos-dsp.dev	0%	Avira URL Cloud	safe
https://privacy-sandcastle-dev-ssp.web.app	0%	Avira URL Cloud	safe
https://gama.globo	0%	Avira URL Cloud	safe
https://privacy-sandcastle-dev-dsp.web.app	0%	Avira URL Cloud	safe
http://ldncctvwbndhwy.cntv.myhwcdn.cn/ldncctvwbnd/ldcctv1_2/index.m3u8	0%	Avira URL Cloud	safe
https://privacy-sandbox-demos-ssp-y.dev	0%	Avira URL Cloud	safe
https://eloan.co.jp	0%	Avira URL Cloud	safe
https://superfine.org	0%	Avira URL Cloud	safe
https://api.live.cntv.cn/livestatic/zs/livestatic_config/unity_pcweb.json	0%	Avira URL Cloud	safe
https://shared-storage-demo-publisher-a.web.app	0%	Avira URL Cloud	safe
https://nexxen.tech	0%	Avira URL Cloud	safe
https://aqfer.com	0%	Avira URL Cloud	safe
https://atirun.com	0%	Avira URL Cloud	safe
https://privacy-sandbox-demos-ssp-b.dev	0%	Avira URL Cloud	safe
https://bypass.jp	0%	Avira URL Cloud	safe
https://boost-web.com	0%	Avira URL Cloud	safe
https://privacy-sandcastle-dev-ssp-a.web.app	0%	Avira URL Cloud	safe
http://sg-adh7.vv.885210.xyz/favicon.ico	100%	Avira URL Cloud	malware
https://privacy-sandcastle-dev-ad-server.web.app	0%	Avira URL Cloud	safe

Name	IP	Active	Malicious	Reputation
p2.img.cctvpic.com.wscdns.com	163.171.132.119	true	false	high
global.cctv.com.wsglb0.com	157.185.128.19	true	false	high
ip.apps.cntv.cn.wsglb0.com	163.171.130.92	true	false	high
e106384.dscb.akamaiedge.net	95.101.182.18	true	false	high
p.data.cctv.com	115.182.216.178	true	false	high
player.cntv.cn.wsglb0.com	163.171.128.148	true	false	unknown
r.img.cctvpic.com.wsglb0.com	163.171.128.148	true	false	high
p1.img.cctvpic.com.wscdns.com	163.171.147.15	true	false	high
sg-adh7.vv.885210.xyz	188.114.97.3	true	true	unknown
js.player.cntv.cn.wsglb0.com	163.171.128.148	true	false	high
g.alicdn.com.danuoyi.alicdn.com	163.181.131.244	true	false	high
www.google.com	142.250.185.132	true	false	high
api.cntv.cn.wscdns.com	163.171.132.119	true	false	high
g2.ctc.cctvcdn.net.lxdns.com	163.171.128.148	true	false	high
js.data.cctv.com	unknown	unknown	false	high
p3.img.cctvpic.com	unknown	unknown	false	high
js.player.cntv.cn	unknown	unknown	false	high
player.cntv.cn	unknown	unknown	false	high
p4.img.cctvpic.com	unknown	unknown	false	high
ip.apps.cntv.cn	unknown	unknown	false	high
p1.img.cctvpic.com	unknown	unknown	false	high
r.img.cctvpic.com	unknown	unknown	false	high
p2.img.cctvpic.com	unknown	unknown	false	high
g.alicdn.com	unknown	unknown	false	high
p5.img.cctvpic.com	unknown	unknown	false	high
global.cctv.com	unknown	unknown	false	high
api.cntv.cn	unknown	unknown	false	high

Name	Malicious	Antivirus Detection	Reputation
http://p5.img.cctvpic.com/photoAlbum/page/performance/img/2021/12/17/1639725024967_844.png	false		high
http://p5.img.cctvpic.com/photoAlbum/page/performance/img/2024/8/13/1723539805375_472.jpg	false		high
https://p2.img.cctvpic.com/photoworkspace/2025/02/17/2025021717474139198.png	false		high
http://p2.img.cctvpic.com/photoAlbum/page/performance/img/2024/8/13/1723539674447_757.png	false		high
https://p1.img.cctvpic.com/photoAlbum/templet/common/DEPA1565254619482142/time_icon.png	false		high
https://ip.apps.cntv.cn/whereis?client=html5	false		high
https://p1.img.cctvpic.com/photoworkspace/2025/02/19/2025021916465535619.jpg	false		high
https://player.cntv.cn/h5vod/vodh5player.min.js	false		high
http://p2.img.cctvpic.com/photoAlbum/page/performance/img/2024/9/18/1726651696206_691.jpg	false		high
http://p1.img.cctvpic.com/photoAlbum/page/performance/img/2024/9/13/1726218692378_477.jpg	false		high
https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEZ8HZ8JSmzO1F6GiAYTi9211130_1.jsonp	false		high
https://p1.img.cctvpic.com/photoworkspace/2025/03/04/2025030417555522663.png	false		high
http://r.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/polyfill.min.js	false		high
https://r.img.cctvpic.com/photoAlbum/templet/common/TPTEGOTucs2RKGcaiRh3Vf5j211209/better-scroll.min.js	false		high
http://p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jkdwq.jpg	false		high
http://p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_block.png	false		high
http://p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_white.png	false		high
https://p1.img.cctvpic.com/photoAlbum/templet/common/DEPA1565254619482142/md_hd.png	false		high
https://player.cntv.cn/h5vod/config/cctv1.json	false		high
http://p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/videoTime.png	false		high
https://p2.img.cctvpic.com/photoworkspace/2025/02/11/2025021111202087715.jpg	false		high
http://r.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/jweixin-1.6.0.js	false		high
http://p3.img.cctvpic.com/photoAlbum/page/performance/img/2021/12/27/1640578397052_827.png	false		high
https://p1.img.cctvpic.com/fmspic/2024/12/31/ab5059c9774d4df5bdfb117a3b72cb9b-1.jpg	false		high
http://p.data.cctv.com/ge.js	false		high
http://p3.img.cctvpic.com/photoAlbum/page/performance/img/2025/3/12/1741767564969_699.png	false		high
https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEMURMOWpDxCfQkQPW3nKA210126_1.jsonp	false		high
https://r.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/jweixin-1.6.0.js	false		high
https://p1.img.cctvpic.com/photoworkspace/2024/11/22/2024112210150936333.jpg	false		high
https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEAcAwQE2rxqQd91IljaY7210126_1.jsonp	false		high
http://sg-adh7.vv.885210.xyz/favicon.ico	true	Avira URL Cloud: malware	unknown
http://p3.img.cctvpic.com/photoAlbum/page/performance/img/2025/3/12/1741767634948_584.png	false		high
http://p5.img.cctvpic.com/photoAlbum/page/performance/img/2025/2/6/1738826185032_318.png	false		high

Name	Source	Malicious	Antivirus Detection	Reputation
https://connatix.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://mediaintelligence.de	privacy-sandbox-attestations.dat.0.dr	false		high
https://privacy-sandcastle-dev-dsp.web.app	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://privacy-sandbox-demos-dsp-a.dev	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://permutive.app	privacy-sandbox-attestations.dat.0.dr	false		high
https://privacy-sandbox-demos-dsp.dev	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://adthrive.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://a.app.qq.com/o/simple.jsp?pkgname=cn.cntvhd&android_schema=	chromecache_504.3.dr	false		high
https://ad.gt	privacy-sandbox-attestations.dat.0.dr	false		high
https://trkkn.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://media6degrees.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://privacy-sandcastle-dev-ssp.web.app	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://33across.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://dreammail.jp	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://jkforum.net	privacy-sandbox-attestations.dat.0.dr	false		high
http://ldncctvwbndhwy.cntv.myhwcdn.cn/ldncctvwbnd/ldcctv1_2/index.m3u8	chromecache_504.3.dr	false	Avira URL Cloud: safe	unknown
https://privacy-sandbox-demos-ssp-y.dev	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://aphub.ai	privacy-sandbox-attestations.dat.0.dr	false		high
https://gama.globo	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
http://js.data.cctv.com/__aplus_plugin_cctv.js	chromecache_504.3.dr	false		high
https://audienceproject.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://adsrvr.org	privacy-sandbox-attestations.dat.0.dr	false		high
https://edkt.io	privacy-sandbox-attestations.dat.0.dr	false		high
https://rubiconproject.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://sitescout.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://player.cntv.cn/html5Player/images/20190905/cctvnews_loading.gif	chromecache_504.3.dr	false		high
https://apex-football.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://dotomi.com	privacy-sandbox-attestations.dat.0.dr	false		high
http://ldncctvwbcdcnc.v.wscdns.com/ldncctvwbcd/cdrmldcctv1_1/index.m3u8	chromecache_504.3.dr	false		high
https://ctnsnet.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://shinobi.jp	privacy-sandbox-attestations.dat.0.dr	false		high
https://superfine.org	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://360yield.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://eloan.co.jp	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://postrelease.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://aqfer.com	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://shared-storage-demo-publisher-a.web.app	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://weborama-tech.ru	privacy-sandbox-attestations.dat.0.dr	false		high
https://nexxen.tech	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://advividnetwork.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://undertone.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://creative-serving.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://unrulymedia.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://api.live.cntv.cn/livestatic/zs/livestatic_config/unity_pcweb.json	chromecache_504.3.dr	false	Avira URL Cloud: safe	unknown
https://paa-reporting-advertising.amazon	privacy-sandbox-attestations.dat.0.dr	false		high
https://privacy-sandbox-demos-ssp-b.dev	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://bypass.jp	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://atirun.com	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://impact-ad.jp	privacy-sandbox-attestations.dat.0.dr	false		high
https://admatrix.jp	privacy-sandbox-attestations.dat.0.dr	false		high
https://taboola.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://i-mobile.co.jp	privacy-sandbox-attestations.dat.0.dr	false		high
https://uinterbox.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://vdnad.apps.cntv.cn/api/getIpadInfoAd.do?pid=	chromecache_504.3.dr	false		high
https://privacy-sandcastle-dev-ssp-a.web.app	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://adnxs.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://seedtag.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://semafor.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://lwadm.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://elle.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://pinterest.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://boost-web.com	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown
https://tiktok.com	privacy-sandbox-attestations.dat.0.dr	false		high
http://ldncctvwbcdbd.a.bdydns.com/ldncctvwbcd/cdrmldcctv1_1/index.m3u8	chromecache_504.3.dr	false		high
https://moshimo.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://adroll.com	privacy-sandbox-attestations.dat.0.dr	false		high
https://privacy-sandcastle-dev-ad-server.web.app	privacy-sandbox-attestations.dat.0.dr	false	Avira URL Cloud: safe	unknown

IP	Domain	Country	ASN	ASN Name	Malicious
163.171.147.15	p1.img.cctvpic.com.wscdns.com	European Union	54994	QUANTILNETWORKSUS	false
163.171.132.119	p2.img.cctvpic.com.wscdns.com	European Union	54994	QUANTILNETWORKSUS	false
115.182.9.46	unknown	China	4808	CHINA169-BJChinaUnicomBeijingProvinceNetworkCN	false
115.182.216.169	unknown	China	4808	CHINA169-BJChinaUnicomBeijingProvinceNetworkCN	false
138.113.27.66	unknown	United States	776	FR-INRIA-SOPHIAINRIASophia-AntipolisEU	false
115.182.216.178	p.data.cctv.com	China	4808	CHINA169-BJChinaUnicomBeijingProvinceNetworkCN	false
163.181.131.244	g.alicdn.com.danuoyi.alicdn.com	United States	24429	TAOBAOZhejiangTaobaoNetworkCoLtdCN	false
138.113.147.185	unknown	United States	776	FR-INRIA-SOPHIAINRIASophia-AntipolisEU	false
2.21.65.137	unknown	European Union	20940	AKAMAI-ASN1EU	false
163.171.128.148	player.cntv.cn.wsglb0.com	European Union	54994	QUANTILNETWORKSUS	false
95.101.182.34	unknown	European Union	20940	AKAMAI-ASN1EU	false
157.185.128.19	global.cctv.com.wsglb0.com	United States	54994	QUANTILNETWORKSUS	false
95.101.182.18	e106384.dscb.akamaiedge.net	European Union	20940	AKAMAI-ASN1EU	false
142.250.185.132	www.google.com	United States	15169	GOOGLEUS	false
163.171.130.92	ip.apps.cntv.cn.wsglb0.com	European Union	54994	QUANTILNETWORKSUS	false
2.21.65.135	unknown	European Union	20940	AKAMAI-ASN1EU	false
59.110.133.46	unknown	China	37963	CNNIC-ALIBABA-CN-NET-APHangzhouAlibabaAdvertisingCoLtd	false
188.114.97.3	sg-adh7.vv.885210.xyz	European Union	13335	CLOUDFLARENETUS	true
188.114.96.3	unknown	European Union	13335	CLOUDFLARENETUS	false

Joe Sandbox version:	42.0.0 Malachite
Analysis ID:	1636994
Start date and time:	2025-03-13 10:02:36 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 4m 34s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	http://sg-adh7.vv.885210.xyz/
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	15
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal64.phis.troj.win@25/463@100/21
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Source: chromecache_504.3.dr	String found in binary or memory: http://js.data.cctv.com/__aplus_plugin_cctv.js
Source: chromecache_504.3.dr	String found in binary or memory: http://js.player.cntv.cn/creator/h5.worker?v=220805
Source: chromecache_504.3.dr	String found in binary or memory: http://js.player.cntv.cn/creator/html5player_analysis_lib.js
Source: chromecache_504.3.dr	String found in binary or memory: http://js.player.cntv.cn/creator/liveplayer_controls.js
Source: chromecache_504.3.dr	String found in binary or memory: http://ldncctvwbcdbd.a.bdydns.com/ldncctvwbcd/cdrmldcctv1_1/index.m3u8
Source: chromecache_504.3.dr	String found in binary or memory: http://ldncctvwbcdcnc.v.wscdns.com/ldncctvwbcd/cdrmldcctv1_1/index.m3u8
Source: chromecache_504.3.dr	String found in binary or memory: http://ldncctvwbcdhwy.cntv.myhwcdn.cn/ldncctvwbcd/cdrmldcctv1_1/index.m3u8
Source: chromecache_504.3.dr	String found in binary or memory: http://ldncctvwbcdks.v.kcdnvip.com/ldncctvwbcd/cdrmldcctv1_1/index.m3u8
Source: chromecache_504.3.dr	String found in binary or memory: http://ldncctvwbcdtxy.liveplay.myqcloud.com/ldncctvwbcd/cdrmldcctv1_1/index.m3u8
Source: chromecache_504.3.dr	String found in binary or memory: http://ldncctvwbndali.v.myalicdn.com/ldncctvwbnd/ldcctv1_2/index.m3u8
Source: chromecache_504.3.dr	String found in binary or memory: http://ldncctvwbndcnc.v.wscdns.com/ldncctvwbnd/ldcctv1_2/index.m3u8
Source: chromecache_504.3.dr	String found in binary or memory: http://ldncctvwbndhwy.cntv.myhwcdn.cn/ldncctvwbnd/ldcctv1_2/index.m3u8
Source: chromecache_504.3.dr	String found in binary or memory: http://ldncctvwbndks.v.kcdnvip.com/ldncctvwbnd/ldcctv1_2/index.m3u8
Source: chromecache_504.3.dr	String found in binary or memory: http://ldncctvwbndtxy.liveplay.myqcloud.com/ldncctvwbnd/ldcctv1_2/index.m3u8
Source: chromecache_504.3.dr	String found in binary or memory: http://vdnad.apps.cntv.cn/api/getIpadInfoAd.do?pid=
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://2k.com
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://33across.com
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://360yield.com
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://3lift.com
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://a-mo.net
Source: chromecache_504.3.dr	String found in binary or memory: https://a.app.qq.com/o/simple.jsp?pkgname=cn.cntv&android_schema=
Source: chromecache_504.3.dr	String found in binary or memory: https://a.app.qq.com/o/simple.jsp?pkgname=cn.cntv&ios_scheme=
Source: chromecache_504.3.dr	String found in binary or memory: https://a.app.qq.com/o/simple.jsp?pkgname=cn.cntvhd&android_schema=
Source: chromecache_504.3.dr	String found in binary or memory: https://a.app.qq.com/o/simple.jsp?pkgname=cn.cntvhd&ios_scheme=
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://acxiom.com
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://ad-score.com
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://ad-stir.com
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://ad.gt
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://adentifi.com
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://adform.net
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://adingo.jp
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://admatrix.jp
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://admission.net
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://admixer.net
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://adnami.io
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://adnxs.com
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://adroll.com
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://adsafeprotected.com
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://adscale.de
Source: privacy-sandbox-attestations.dat.0.dr	String found in binary or memory: https://adsmeasurement.com

IP
192.168.2.4
192.168.2.12

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	1792
Entropy (8bit):	6.019348476983808
Encrypted:	false
SSDEEP:	48:p/hP+drAdRW37aktiyC2xCe69xqYGCRk7NOzPI4Ek:RSQw37anyC+CDGGccA4f
MD5:	0F48EA696FDF31DABB72FD4A472E4A93
SHA1:	A24862DAB4B7146073F74165D733E8EDA45C5185
SHA-256:	57645239B1AECD3BFF0EDF2C489A55221855D4DD690541F57129449D34DC2CE6
SHA-512:	1A32EE516B00800EBE49A17D0DC05A0A21589016A28A6B0CA2934A951DF0E09CDF46B75A9DE7AF62435807DF1EEB10F128284E03AD84A324F7F71EE9AD191CBF
Malicious:	false
Reputation:	low
Preview:	[{"description":"treehash per file","signed_content":{"payload":"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","signatures":[{"header":{"kid":"publisher"},"protected":"eyJhbGciOiJSUzI1NiJ9","signature":"D1yGWCJ13w_a4aZS-GmRy1UaSnKuPyDaexx705PHm_LYjgxXA8UjTQ9bScleEJZkORAwk9gKs65NUkOIZOPGdPUDhQg3gDWqrESXFzPZk4RzaEwwlPh-33zUE0qWXcz4FwKu1WGN_Ok4HrKRgdihn7ea4OvP8VqvfNRP56CMpOuQxMLdGtj33weeTm9wBG2D-g2De2hqPBC6G0Jr9FnJ_wLkuNsuMmotIuVgQMViTCStpvxyrUiSyBwWdJH9By924Uu66zgVGLnpcv5tMoSwVylMy3ouQ3_lj2ul-hu5YJa7RzW2gOxCwb7ZtnFkfFx

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report http://sg-adh7.vv.885210.xyz/

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Compliance

Software Vulnerabilities

Networking

System Summary

Malware Analysis System Evasion

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1752_661081556\_metadata\verified_contents.json

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1752_661081556\manifest.fingerprint

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1752_661081556\manifest.json

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1752_661081556\privacy-sandbox-attestations.dat

Chrome Cache Entry: 217

Chrome Cache Entry: 218

Chrome Cache Entry: 219

Chrome Cache Entry: 220

Chrome Cache Entry: 221

Chrome Cache Entry: 222

Chrome Cache Entry: 223

Chrome Cache Entry: 224

Chrome Cache Entry: 225

Chrome Cache Entry: 226

Chrome Cache Entry: 227

Chrome Cache Entry: 228

Chrome Cache Entry: 229

Chrome Cache Entry: 230

Chrome Cache Entry: 231

Chrome Cache Entry: 232

Chrome Cache Entry: 233

Chrome Cache Entry: 234

Chrome Cache Entry: 235

Chrome Cache Entry: 236

Chrome Cache Entry: 237

Chrome Cache Entry: 238

Windows Analysis Report
http://sg-adh7.vv.885210.xyz/