{"report_id":"061ed8ab-e028-4d04-9b76-32fc74424e81","version":6,"status":"done","tags":[],"date":"2026-04-11T18:55:36Z","url":{"schema":"http","addr":"jt928.com","fqdn":"jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":0,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"title":"BET体育平台首页（中国）有限公司","dom":{"size":2707,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2679), with no line terminators","md5":"95ea0f593a0deb3e99248a9e9354d98e","sha1":"e43861d4d3cbf846e711a61ed5dbae3e74db1880","sha256":"94c3d16773524b47fc32e96433c0939989cd242eca2bf2e15df45d2a31a14062","sha512":"9a84ad15f9b2a93e742fc4085fc5274e7a1b67a8afc53e96ac2fbd6726ffe2e60c5d5f9b5a6483c1caa667c54488ac0f9c2eba286374c82aaa039292e6a4e2c6","ssdeep":"","tlshash":"f251ecb3c885d10e5821e9c8e575eade9217205fcb239c4aeeb025dee6446f889721cd","dom_hash":"domhash9b1b5b490131f49c846d9c9e4b0ff99f","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"jt928.com","fqdn":"jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":0,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-16T18:55:36Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":0}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-11T18:55:14Z","timestamp":1775933714,"ip_dst":{"addr":"Client IP","port":37438,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"severity":"medium","alert":"ET INFO JJEncode Encoded Script","source":"{\"timestamp\":\"2026-04-11T18:55:14.881752+0000\",\"flow_id\":502522331626336,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"170.130.251.21\",\"src_port\":80,\"dest_ip\":\"172.18.0.6\",\"dest_port\":37438,\"proto\":\"TCP\",\"tx_id\":1,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2017127,\"rev\":2,\"signature\":\"ET INFO JJEncode Encoded Script\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_07_11\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2019_07_26\"]}},\"http\":{\"hostname\":\"www.jt928.com\",\"url\":\"/jquery.min.js\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"application/javascript\",\"http_refer\":\"http://www.jt928.com/\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":714},\"files\":[{\"filename\":\"/jquery.min.js\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":3793,\"tx_id\":1}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":14,\"pkts_toclient\":12,\"bytes_toserver\":2111,\"bytes_toclient\":12946,\"start\":\"2026-04-11T18:55:13.818016+0000\"}}"}],"analyzer":null,"urlquery":null},"summary":[{"fqdn":"www.baidu.com","ip":{"addr":"103.235.46.102","port":443,"asn":55967,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"domain_registered":"1999-10-11","domain_rank":6810,"first_seen":"2017-01-30T06:01:42Z","last_seen":"2026-04-04T21:17:13.126486Z","alert_count":0,"request_count":1,"received_data":1185,"sent_data":442,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]},{"fqdn":"www.zhu2021.cc","ip":{"addr":"43.243.30.13","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2021-10-25","domain_rank":0,"first_seen":"2021-10-30T18:04:49Z","last_seen":"2026-04-04T21:51:39.229818Z","alert_count":0,"request_count":8,"received_data":1086203,"sent_data":4022,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"www.jt928.com","ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":1,"request_count":36,"received_data":2182033,"sent_data":15681,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery:1.8.3","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"js.users.51.la","ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"domain_registered":"2005-01-17","domain_rank":746636,"first_seen":"2012-05-30T15:10:11Z","last_seen":"2026-04-09T09:31:33.441702Z","alert_count":0,"request_count":3,"received_data":16107,"sent_data":1233,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}]},{"fqdn":"ia.51.la","ip":{"addr":"43.159.107.113","port":80,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"domain_registered":"2005-01-17","domain_rank":696517,"first_seen":"2017-10-31T08:01:51Z","last_seen":"2026-04-09T09:31:34.713178Z","alert_count":0,"request_count":3,"received_data":542,"sent_data":2181,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.sogou.com","ip":{"addr":"43.153.236.147","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"domain_registered":"2001-12-19","domain_rank":93150,"first_seen":"2012-05-22T18:01:25Z","last_seen":"2026-04-05T14:28:51.106621Z","alert_count":0,"request_count":1,"received_data":3824,"sent_data":457,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"p1.qhimg.com","ip":{"addr":"14.0.37.193","port":80,"asn":54994,"as":"ML-1432-54994","country":"Japan","country_code":"JP"},"domain_registered":"2011-02-17","domain_rank":2264339,"first_seen":"2012-10-16T18:15:19Z","last_seen":"2026-04-09T09:31:34.678696Z","alert_count":0,"request_count":1,"received_data":3514,"sent_data":359,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.hntxsj.com","ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":26,"received_data":1896183,"sent_data":9565,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"api.map.baidu.com","ip":{"addr":"180.76.11.161","port":80,"asn":55967,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"China","country_code":"CN"},"domain_registered":"1999-10-11","domain_rank":82712,"first_seen":"2014-07-17T10:32:55Z","last_seen":"2026-04-05T11:03:01.319297Z","alert_count":0,"request_count":3,"received_data":323861,"sent_data":1074,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]},{"fqdn":"api.share.baidu.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"1999-10-11","domain_rank":1421601,"first_seen":"2013-04-25T14:45:11Z","last_seen":"2026-04-08T23:25:58.99785Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":375,"comment":"","tags":null,"fingerprints":null},{"fqdn":"jt928.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":189,"sent_data":872,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.zhong2021.cc","ip":{"addr":"43.243.30.15","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2021-10-25","domain_rank":0,"first_seen":"2021-10-30T18:04:49Z","last_seen":"2026-04-04T21:51:39.140352Z","alert_count":0,"request_count":1,"received_data":55019,"sent_data":417,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"push.zhanzhang.baidu.com","ip":{"addr":"182.61.201.93","port":80,"asn":38365,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"China","country_code":"CN"},"domain_registered":"1999-10-11","domain_rank":1485849,"first_seen":"2015-07-22T05:44:02Z","last_seen":"2026-04-09T05:21:11.482831Z","alert_count":0,"request_count":1,"received_data":426,"sent_data":336,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"api.map.baidu.com/api?key=\u0026v=1.1\u0026services=true","fqdn":"api.map.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"180.76.11.161","port":80,"asn":55967,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"714ad33953b9ad729e7662d3c5c460be","sha1":"70c69c87806795a13e00477feda30c4e5f981a75","sha256":"ac3f5a852dd5b5f590ee9b2a23d062c4f420cf7b9bca3f61485ee9c9ad457dca","sha512":"b3d6bdb3cc15a694549283bd4973c6c736aa264548e6611a97e8b520c5dd1efa48303cc3db3811463fd6046b165b9d470227a2854538e2ee80a20f7a610c3959","ssdeep":"","tlshash":"2fe07d074c03fb21d0014ecde837e214d0bea3619940ec4165fe482664c43ef1cbae4c","size":317,"data":"","first_seen":"2023-03-08T16:10:01Z","last_seen":"2026-04-11T18:55:58.572414Z","times_seen":292,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/jquery.min.js","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"77e024e950ad659c119e9515fcb05d45","sha1":"7624d1e9898b607465f8abde519b8425840ca7c0","sha256":"4c42a77c6e30924838b854b1dec7baf0578f857c539ad517644e50bdd843afc1","sha512":"8909dfbe1a4ccd46d8e5d3ad2dc38c6aea687399a19c69407e4915f1ae02580f3d328153d5ea81e03807f07864c421d23189cfcf8b294676e3e2b5a6e29003b0","ssdeep":"","tlshash":"7d71d86a586f541496cd037ac83c427682fa7ec4e1e0f5fea8c4e3146fe547a624387b","size":3793,"data":"","first_seen":"2023-08-16T23:32:39Z","last_seen":"2026-04-11T18:55:58.571264Z","times_seen":690,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-11T18:55:14Z","timestamp":1775933714,"ip_dst":{"addr":"172.18.0.6","port":37438,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"severity":"medium","alert":"ET INFO JJEncode Encoded Script","source":"{\"timestamp\":\"2026-04-11T18:55:14.881752+0000\",\"flow_id\":502522331626336,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"170.130.251.21\",\"src_port\":80,\"dest_ip\":\"172.18.0.6\",\"dest_port\":37438,\"proto\":\"TCP\",\"tx_id\":1,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2017127,\"rev\":2,\"signature\":\"ET INFO JJEncode Encoded Script\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_07_11\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2019_07_26\"]}},\"http\":{\"hostname\":\"www.jt928.com\",\"url\":\"/jquery.min.js\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"application/javascript\",\"http_refer\":\"http://www.jt928.com/\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":714},\"files\":[{\"filename\":\"/jquery.min.js\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":3793,\"tx_id\":1}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":14,\"pkts_toclient\":12,\"bytes_toserver\":2111,\"bytes_toclient\":12946,\"start\":\"2026-04-11T18:55:13.818016+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"e6e202be3b91024705d88945543c96ea","sha1":"cc4d30c4cdc10aef026a70d2f89af0675de6ca39","sha256":"5979c89b4cb4844f8e249cb6bf9e2c8bb0b87613b4ffa7bcc49997a6085b21e3","sha512":"66166caa350e736f1d665b1c4247cb1e6f84680649ebfa76c0f4e1359a5105fc5e884b639b2695e6cdac351687c1910150ec5d286009c29ba87c6a5b79f13f14","ssdeep":"96:WPY7uEO9U4ik995GON5VYtxBNVbxxUxKUi6H/XraBpx7p6f3QwUUH3aeydHR:iYbBXbxexDi3p3KXS","tlshash":"dfc1c2760d4450e958b611bfacb76887f1ffa4eccf8b23c61d121cba108da41e4996f1","size":6107,"data":"","first_seen":"2023-04-12T09:52:34Z","last_seen":"2026-04-11T18:55:58.622537Z","times_seen":870,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"2d313be4b5d93e9b681de954aaeb3006","sha1":"1e0508be1026244daf1812f988033612c3945bdb","sha256":"9059d0d74efaf0e229d59a9c05ace7b975b42ccacea21e01aa64c56b2157048c","sha512":"83b5d773d5184b8feefc9c7fa2637098ad1c9ca5839ac5dd68f59372c7b4329b8298f1236c8d9247b3b2fd6afc159b9dc8cabbd6a8bbe8e5e2707dd6a7fbc82b","ssdeep":"","tlshash":"b99002c9f196a475e2b96030551b9205a0164c4d8c3c415c6100347e381559a8857679","size":57,"data":"","first_seen":"2023-03-07T01:19:11Z","last_seen":"2026-04-11T19:58:49.961389Z","times_seen":9167,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"81914ec4b2ad4c2185d1b4083ad68991","sha1":"ab9826e4f345a256f15fad4c1e238ab69085f88e","sha256":"551468d02f6c4f8c701d62d1fbd515caa25669347369292f71c66bd7b6efd8b1","sha512":"635469bf9bfcf755d25cd58f72af554f3648ec8f471785e55ec84879cc71990a94a530aaecefd93447e456f6e62bc7cb63b4fb1c1698ca2d270139a01d2b14fe","ssdeep":"","tlshash":"dba00226cc27918668076815722c1008a5800a770144c781358cb5046fc2845421d8f6","size":66,"data":"","first_seen":"2026-04-11T18:55:58.627882Z","last_seen":"2026-04-11T18:55:58.627882Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/js/jquery.flexslider-min.js","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5438ac28d6124aaf61125469670864c1","sha1":"9a63ba01c0edfc08e25c4b8863ee034cdd693dbf","sha256":"b7e38a7c07e64233a626f9d7cc58206679e87af5005a85ba2bb08f0ffae248a6","sha512":"414876ef9510fef1c46e88d263bec2c251f7af48fd2be990616d8d6654f9a91854c7c5f896dd6c3f734eecafe49d4f2779f0008b75f9570c9450dc1181efe99c","ssdeep":"384:ymE4TjopcnfxNiYK0E8g8MXromIsnBscyVTnmhrpb0SXEk98VeE:Zr86npNx3sro5sjG+tbjUJV5","tlshash":"10a28324f2503972cfe722ae7e0fd40669b3d441e816c83d3a3d574a2d641859b33eea","size":21411,"data":"","first_seen":"2024-10-24T11:11:05.258993Z","last_seen":"2026-04-11T18:55:58.54069Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"91862680df880ab56f799547b01a5900","sha1":"bd184fe6e0e046873c1a606c89ce2d3eed4b689f","sha256":"6520359b93c2e43efd5a58f422af308b43c718769a0989344a10f00b345ca0b2","sha512":"2afcf14c790e641a87b98e38359cf558cfd65bd51174ceeafc39acb3af36f21260923b565009018ee7f283c1a911aa6427258f3defddeebb4df9c7a920bf30a8","ssdeep":"","tlshash":"ace02b6e9cb706b43a5114ba452fa818f1ea512f1044d402754cfc014f20da74b1dae4","size":404,"data":"","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-04-11T21:00:05.644661Z","times_seen":13618,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"ad0b6f18075e1a85f8e31f0db62f602c","sha1":"2c2e02f166065372c48dfedf2668d928d5697d87","sha256":"f918e73feaba5cf55d6e89d952189209086f3f81dea83f612959153cfef533b3","sha512":"53550c45f808521cd3470a9cc61df95a6d4bddb94a2abe43654b4e5e3161d0f15c0150668307e3c2cb6a9c3ef1f07c5bdc2fb68f887a583351463c9b1cb73ddb","ssdeep":"","tlshash":"5a513458ff8d52a34a9130e11d2f59dc281e75227e14e87bb90438d486f8d39851edbd","size":2704,"data":"","first_seen":"2023-04-12T09:52:34Z","last_seen":"2026-04-11T18:55:58.63099Z","times_seen":870,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"push.zhanzhang.baidu.com/push.js","fqdn":"push.zhanzhang.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"182.61.201.93","port":80,"asn":38365,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"1bb5a3267c9865ad4abe8d937734b62b","sha1":"b5478dd2edb3e64242eced1db2dbd945ef81f592","sha256":"674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2","sha512":"33318ed944a49a8fa334983408d68853b1fbe4f80b19adef6235f23d7708b616cd4f8dd28c8b8ebfbb5776aab8088229f3060cd789af34fe1db5038a98bd0d39","ssdeep":"","tlshash":"91d02be874a0c41c0ce710b17fab328cfab20b2755244d40c05b90013614b1f824bfe9","size":281,"data":"","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-04-11T21:19:30.266315Z","times_seen":21148,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.users.51.la/21833025.js","fqdn":"js.users.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"21a0a71e23c596227c4dd946c8a40dc5","sha1":"ce73229bc267d4d8ec813ebd79b196dbbd9495ab","sha256":"787f549844aee9435eb12865c517e10fa147428591d5f31209dc2127bf325258","sha512":"d2d4ba12c764706637a80118be3de316a82666ff52087630efe464c84a772180c42e9941ea42d1269030fa8ec52ba73e5125d52f3dc7324fa7a637bb0beadebb","ssdeep":"96:kHmPg4EY5Qc1dnqW7aUWp36QXiWgQ95qEIopwm3B5fXOiDgCQgeKrmpj:KmPZEY+cRpeUS36QXiWL5jfpwQXOiDgT","tlshash":"98a1954e70e1b89207c721b5502f640ff2786a60589cd590ea63e8e13d7499f4333f6d","size":4898,"data":"","first_seen":"2024-08-20T14:48:41.013047Z","last_seen":"2026-04-11T18:55:58.56634Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d48d644d61f267cde7e00a6d65439438","sha1":"01d7989e78a2b36268bce10ea1e300087d8bc596","sha256":"614552affaeb75d1a5ad16618eb30a426e9cafb4b6cb4dad7813a1bffb9d2572","sha512":"c5b28e415ab91259b8e2c88363ac73ae0041ee87d6708bceb44a392f741a098da3fc4bd4b10c7a0b540be988cb52c3074c75d09eddf02d3a50eb9a937dd735ee","ssdeep":"","tlshash":"afe02bcde2dddb201338e7314f1f018b4a041082d88a8cbda07504beb42427d97e3d2c","size":392,"data":"","first_seen":"2026-04-11T18:55:58.632253Z","last_seen":"2026-04-11T18:55:58.632253Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"fa80ef6b97c7dbc7ff0f4fe3c47db7cd","sha1":"96fc4fceae35679b08f2b85fc2be8044e3a7b434","sha256":"ffb656ee5df398dd5cf3ecdb3c61d0f9a2801517d779dc6786737e152e261868","sha512":"13682a38f2c53511b0736467e6efc67642dd1a23d41a57dde9689612fac71c9f6b17541bff6da56b00bf38da4bee78fb852be9e9346742a3ef531ece185cbb52","ssdeep":"","tlshash":"2ae026767c915018839f0904fcaf5d8572e7a0c29f4f236b5c209cb601ec910e02fbb4","size":348,"data":"","first_seen":"2023-04-12T09:52:34Z","last_seen":"2026-04-11T18:55:58.635927Z","times_seen":879,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"78d264cae48e242715f22678930663b1","sha1":"5f963ce5cf05cb95e090f51027c6c8dd8a71cc09","sha256":"c72c003633467d2233040fabafcbd285a75e0ff93800bf2c185b6b16b585c8a6","sha512":"0f271de9d20898ec3baec540f35c799401f1b73f27da5dd2cff0bfc25884dea98a1c8c8081d22370ab1713c906779526bd5c82467c4811e6c4d28a6abea21e44","ssdeep":"","tlshash":"3ec08c0b6c01ee49466245c4e032e96cc0ac7136e580fc8940ea50945a80ae80904c28","size":154,"data":"","first_seen":"2023-04-12T09:52:34Z","last_seen":"2026-04-11T18:55:58.637074Z","times_seen":881,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/js/jquery.flexslider-min.js","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5438ac28d6124aaf61125469670864c1","sha1":"9a63ba01c0edfc08e25c4b8863ee034cdd693dbf","sha256":"b7e38a7c07e64233a626f9d7cc58206679e87af5005a85ba2bb08f0ffae248a6","sha512":"414876ef9510fef1c46e88d263bec2c251f7af48fd2be990616d8d6654f9a91854c7c5f896dd6c3f734eecafe49d4f2779f0008b75f9570c9450dc1181efe99c","ssdeep":"384:ymE4TjopcnfxNiYK0E8g8MXromIsnBscyVTnmhrpb0SXEk98VeE:Zr86npNx3sro5sjG+tbjUJV5","tlshash":"10a28324f2503972cfe722ae7e0fd40669b3d441e816c83d3a3d574a2d641859b33eea","size":21411,"data":"","first_seen":"2024-10-24T11:11:05.258993Z","last_seen":"2026-04-11T18:55:58.54069Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0ed2c359112663a3a676b1fb4e02de78","sha1":"905dccc0a99e0bb2e56b44cd8a374a371faacca8","sha256":"b81974d6655ac07585bedebbca6c4cb48e60687c7700559e63de9659d6ef9352","sha512":"88cfd96f21382518cfb4ce0c882d057600041eb9dfcfd5e2a15820a5719b8bce762901e6edd228e17bd3f81e14a9834a19f20fad96fe8f415bd8b115636cc9cf","ssdeep":"","tlshash":"8cf0285ce65c2a26087b23c61f6f54dae4ba2849655b0439d8bc5120cce4b3e121beec","size":589,"data":"","first_seen":"2026-04-11T18:55:58.638187Z","last_seen":"2026-04-11T18:55:58.638187Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.users.51.la/21748103.js","fqdn":"js.users.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"302eb68082eb476028e76079ee6dfa7b","sha1":"f18741bcebd1bcd73f8d59be3a32d1523243f377","sha256":"414b1c906397784da167ad9254cfa3aa6e6182a1b21b36f5f1ee8b475b6bf0ac","sha512":"ff19d3ac3135f98825efc38a77ec923aa3ca1f167700869972bd5363b3b270b211e7fc276411d466570d43a561d41bdd43860cce1d2d5151785af0fb1bd77e18","ssdeep":"96:SHmPg4EY5Qc1dnqW7aUWp36QXiWgQ95qEIopwm3B5fXOiDgCQgeKrmpj:UmPZEY+cRpeUS36QXiWL5jfpwQXOiDgT","tlshash":"faa1954e70e1b89207c721b5502f640ff2786a60589cd590ea63e8e53d7499f4333f6d","size":4898,"data":"","first_seen":"2023-08-13T09:53:57Z","last_seen":"2026-04-11T18:55:58.581593Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.users.51.la/21763327.js","fqdn":"js.users.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"ca6da77f0f7fcadae6959c7cb507d43d","sha1":"5d128ceae4058038dce16dc13d0ac5c86aeb29e6","sha256":"21cd39717870246ba51b265d6a519ad8c16e8f917a1dd34294d534c1c5fab1c5","sha512":"b8884186e553a5283e3d5d25c209b65896d648360189066bcc1ca2f39b10cb8434fd0757f1b79c1d2a558e32a999a61151f696f5eafe80efa8d903a6ee68e90f","ssdeep":"96:YbyHmPg4EY5Qc1dnqW7aUWp36QXiWgQ95qEIopwm3B5fXOiDgCQgeKrmpj:3mPZEY+cRpeUS36QXiWL5jfpwQXOiDgT","tlshash":"a4b1a64e71d1b4a247d621b9512f650ff1386a20589cc590ea63e8f53cb45af4333f5d","size":5207,"data":"","first_seen":"2023-08-16T23:32:39Z","last_seen":"2026-04-11T18:55:58.559292Z","times_seen":608,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.zhong2021.cc/jquery.minjs.js","fqdn":"www.zhong2021.cc","domain":"zhong2021.cc","tld":"cc"},"ip":{"addr":"43.243.30.15","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"0ae3a0bbe549b4e7470df716754e8c5a","sha1":"9f52e9fe1886f2d2aaec02af557cd6281d7c0e0a","sha256":"cb53a28d1c0689aa226454348ac90b2f9f0fed2557bf4c586f76b70c35257655","sha512":"fc1021000d49b1adaaa6bcc0059ce1415206658030fc4286d4d7050219fb69e72799458f10ebc97f6d4aa97a70fa5149a59d0473a70a1c84be417250acaee834","ssdeep":"96:T8JS5VZVTwsi9hgw0kRQXkL9DLTe/wdjKrwdrK/QAAJWyLDyjVUA:sDBjKrwdm/QAAY","tlshash":"8133305b086f5010cacd07b6d83c426a82fa7ec491e4f5fea9c4e3546ff557a620783a","size":54612,"data":"","first_seen":"2023-03-07T12:04:22Z","last_seen":"2026-04-11T18:55:58.602776Z","times_seen":875,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/tj.js","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4fad282542ceb63a0340b6c4a0d7210e","sha1":"99a015756df0c060c4abcec1331d051d122fa2aa","sha256":"0a6cb317cad9024b078745794b7ea4e58ccba0f1b377dd6bc54aab08e1496be7","sha512":"c3b105168cc64572dc5179e80bc381202985d9af6af5cbcc6c42c754ae59cc820160985c896bb4732f84ab66ccde8a75d05df9fb1ca2c10daf8b0c28923fd4bd","ssdeep":"","tlshash":"18d0122b3cd6ed58420048c8dc74e43c447d9439f961e91584ffc81c3141fec0c05a2c","size":206,"data":"","first_seen":"2024-08-20T14:48:41.036258Z","last_seen":"2026-04-11T18:55:58.53599Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"d4404b8ea4d91da7095c0f78c44a8d00","sha1":"2c2893dfd3677b2eb5abe57f631cad8a46f09f65","sha256":"aa4d876db3b2e0d4e046a51e84c7b59a802ad4c038bf0e136d80ce42c9e28285","sha512":"3261f044c0c501a8f641cc1c8c053fa7ff13d1f400094103f2b050282c93e65fa7e74617c5178819d687ed42223347c8a577888f2ceb36077c956bea4f9db2cc","ssdeep":"","tlshash":"ceb0120604025e1690004e41e4155100c0f946470214d88221a5043a15840e530f8a0d","size":88,"data":"","first_seen":"2023-03-08T16:10:01Z","last_seen":"2026-04-11T18:55:58.640539Z","times_seen":77,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"a55b11734f45c7ca70c2297c26aa20a4","sha1":"9e686608926b5df5c6759b996fad2559d1f66fba","sha256":"c752c222494e54727bae52024b8dbd7644f628dacff2564fcb6674d7b6bf7235","sha512":"666a3d5c02b48b4fcb726464f97e5243af3f557b829207d7da94a4c86610633063b1d3d21874d0c92dc197ed615906cb07f07a5e8310a9738b9dc8b254c079d1","ssdeep":"","tlshash":"f551dc73c485d20f9411e8c8e675dade9213205fdb33684bfea025aed6442b88a731cd","size":2446,"data":"","first_seen":"2026-04-08T09:03:20.564756Z","last_seen":"2026-04-11T18:55:58.551235Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"163323d11d562e45c8fa717948c8b079","sha1":"452975d1e9c3812b9a5826164d8158394c2c74c0","sha256":"cf8844d928e3f0f3c7208a8f136bb609ff3baa90cbbbb47307978178134d4973","sha512":"076ec106b2caf705cb5afeb499a6f28c77851d30d9323022bd1040fa295bbd14d3cd608928e74babeb187e881cbc43ec4e931424a9c671429a8e39f052e5072d","ssdeep":"","tlshash":"60a0222f3ccac008800008c8ccb0f83c802ca82aca20cc08ccf0c8083200fec0c0ab3c","size":82,"data":"","first_seen":"2024-08-20T14:48:41.050317Z","last_seen":"2026-04-11T18:55:58.642491Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"2f26613b805ef62e19672a61f9ce45f8","sha1":"8856779302697b6458ced31245b510e10c1279d5","sha256":"1f6fc509f12b31fa5acfedfb8d260aebfd15f4079dea10757cae45169d7b2fa6","sha512":"65dabbaf4d8e02c42c778d167f78a4eb7e14b503b49ddae59d100182185ab442cdbe3c478757f95ae31ed4484c6b1f525bc0640346d71c681c4d6bf07853a286","ssdeep":"","tlshash":"07a0112b3c8ac888820008c8cc28e82c8008a8288a20e80a80f0c0083200aec0c0aa28","size":82,"data":"","first_seen":"2023-08-13T09:53:57Z","last_seen":"2026-04-11T18:55:58.643484Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"dcb3fbe3effe6d9b34200284c5eb0d51","sha1":"6fdaeb6c9e2f513acca77edc3a4a38982b320d66","sha256":"b56319d601f26bb1e9c05dd0ea7299d3a44d22149f5702b9a59db4f21b268fc5","sha512":"c5ac74ceabc32fc97527f3d413ddb496ecd0bed75d0797f5cf55b2ee83842f589ac06f0164a925fa58be7ff11c3ff0b0968bc1c5b03956c3c738d483ee213ba6","ssdeep":"","tlshash":"2fb0120f7d01cc4e546189c8d072f93cc0497237c150fcce80d21084a680aec0d10425","size":109,"data":"","first_seen":"2023-03-07T12:04:22Z","last_seen":"2026-04-11T18:55:58.644407Z","times_seen":881,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"e5d7376d826668db1d2f9073d2630d52","sha1":"d0b6b5337b6c25232e8e6eb9836c09acf1409506","sha256":"5412b78ff8a9402523edf7e9d623ec9ee58ea4056dc9f2f96beda578e8957148","sha512":"1d16dfe1eda7b09a935b9fe879063001e75e45f41e2047c5740a528c1ecba86ec29874c161f495304d681b5bb09aa10d09b3f39235c814f2db122430f395d0cd","ssdeep":"","tlshash":"c2a0222f3c8ac808800008c8cc30e83c800eb80b8a00ec0c88f8c00ab300fec0c0fb28","size":82,"data":"","first_seen":"2023-08-16T23:32:39Z","last_seen":"2026-04-11T18:55:58.645161Z","times_seen":686,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"107a685b26749844b27e72ee2f059d0e","sha1":"d4c2198d5384a492e2537005c2fc33afe539b1ea","sha256":"d32969876700cf662c056a987a03375b059e3bb6c0edd37f10489bcf59d72606","sha512":"bd00ed7e023c1ef33e0e263a9ec8514a15139574c88749764c2dd36900a2d30694e7048e35b09c072f1afff2e21fe429ee2d003448122b2ea46d49ebf646fd2e","ssdeep":"","tlshash":"b1d02b21c35651a0f420849bf691f76870050a5a94c30b12e486a738a5c7276320230d","size":258,"data":"","first_seen":"2023-08-16T23:32:39Z","last_seen":"2026-04-11T18:55:58.645959Z","times_seen":646,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"283036f685ab678c5dc84d7194a216af","sha1":"1576c84df9c47c83eabff482bb683cae0b1ab3dc","sha256":"f2b91b1c2fdbed5c7f2533a8c2ec3537864182c89881cb1d4d853261a3278d0e","sha512":"48855b292ab379fa06c359bdd6898ca90a33cb9f9d3addb854610aa5833ef6d88d9ec4c93542eb4a29eeef40bafceab83468e63e63e9dbd72184f1c42bb714ce","ssdeep":"","tlshash":"d6b092864c97d521c0418ec9d9b2f024816d92908184ed41aae88852a584bfe2ca2a8e","size":122,"data":"","first_seen":"2023-03-08T16:10:01Z","last_seen":"2026-04-11T18:55:58.646727Z","times_seen":75,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/ban04.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.889Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ban04.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 308075\r\nConnection: keep-alive\r\nLast-Modified: Mon, 20 Nov 2023 08:43:38 GMT\r\nETag: \"102b-4b36b-60a917b740280\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":308075,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x500, components 3","md5":"295a74fcd5fa689645bca7f190693a77","sha1":"22dc65b7cb1b739ddaa859537757079d3ebb97d8","sha256":"01cdc6b246e2ee232fcaf0b6d2747ef3a5e9e913a71daca29f7d8f8d7ea5ffe2","sha512":"08ef6dfd2818261fd4cbad9164dc10ac2ce1180c0ae3211b004eff4db4702fd2973f1acca18ac052e628e2de8a34da02864245d908f1e9c016f1b9a86bf47981","ssdeep":"6144:dgzs/qB/pCEl9p4dktNR5myWDR7jX84yB98HuRvaaexPjW0f1Lsackf:dgz5CA9p4+tNPmygpjMy0abjxAkf","tlshash":"cc6423d52ea33ebaa35b0db538c17d0060e04e99ddf74a91e0ecb5560ec7858e75c8c4","first_seen":"2026-04-11T18:55:58.529484Z","last_seen":"2026-04-11T18:55:58.529484Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2267,"timings":{"blocked":1067,"dns":0,"connect":0,"send":0,"wait":240,"receive":960,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"api.map.baidu.com/getscript?v=1.1\u0026ak=\u0026services=true\u0026t=20130716024058","fqdn":"api.map.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"180.76.11.161","port":80,"asn":55967,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.165Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /getscript?v=1.1\u0026ak=\u0026services=true\u0026t=20130716024058 HTTP/1.1\r\nHost: api.map.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nCache-Control: max-age=600\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nContent-Type: text/javascript;charset=utf-8\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nExpires: Sat, 11 Apr 2026 19:05:16 GMT\r\nHttp_x_bd_logid: 3316287600\r\nHttp_x_bd_logid64: 3316287893422934026\r\nHttp_x_bd_product: map\r\nHttp_x_bd_subsys: apimap\r\nP3p: CP=\" OTI DSP COR IVA OUR IND COM \", CP=\" OTI DSP COR IVA OUR IND COM \"\r\nServer: apache\r\nSet-Cookie: BAIDUID=3A4FD8888010B923CD834C559D3D05BE:FG=1; expires=Sun, 11-Apr-27 18:55:16 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1\nBAIDUID=27668F61FE30F14FBC8DDC8A4F77E9D7:FG=1; expires=Sun, 11-Apr-27 18:55:16 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1\r\nTracecode: 33162876003953014794041202\r\nVary: Accept-Encoding\r\nTransfer-Encoding: chunked\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":313024,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1486), with CRLF line terminators","md5":"33df95a7f58a0683a9ef03e9bb6d5790","sha1":"aa5f11b22477373a1fb2e9996221c702d9ba9e86","sha256":"aa5fd4db7431410cae0d415f9768cafd7605ad89f890b6d361528264ad49e565","sha512":"612fdaa235ede1600a554d01dd0b1cd1037ba3a1095ed6e5257db8aae3190b2259a3ea8b4222054a82d839366126ef0c5ec45be3be97f7336f0beb2d3a7baf83","ssdeep":"6144:KZWi7Go8cxJGcPunGRFmKJppKMehE2Q/AGhm:6TxJGcPunGRF5qGhm","tlshash":"1c64b40e67882425d177b3388e7f560af632552b408589497ebc90d95fb883853baffc","first_seen":"2026-04-11T18:55:58.532017Z","last_seen":"2026-04-11T18:55:58.532017Z","times_seen":1,"resource_available":false,"data":null}},"time_used":763,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":300,"receive":463,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.zhu2021.cc/uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.gif","fqdn":"www.zhu2021.cc","domain":"zhu2021.cc","tld":"cc"},"ip":{"addr":"43.243.30.13","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.989Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zhu2021.cc","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 25 Oct 2025 00:00:00 GMT","end":"Sun, 25 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AD:D4:B3:CE:7E:E5:E0:18:33:7F:5B:FE:1F:7E:F1:39:7D:BE:31:AB","sha256":"3B:6B:99:6B:63:29:3E:B0:BE:14:B9:5F:DA:B8:26:5F:6C:FC:67:EB:06:E2:CA:D2:44:08:C6:4C:9C:5E:C3:86"}}},"request":{"raw":"GET /uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.gif HTTP/1.1\r\nHost: www.zhu2021.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:18 GMT\r\nContent-Type: image/gif\r\nContent-Length: 203084\r\nLast-Modified: Sun, 04 Feb 2024 13:23:04 GMT\r\nConnection: keep-alive\r\nETag: \"65bf8fb8-3194c\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Headers: X-Requested-With\r\nAccess-Control-Allow-Methods: GET,POST,OPTIONS\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":203084,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1000 x 100","md5":"9ddb53f442a1b3e80d46a2bbd7a83f18","sha1":"f35cbf9cec87b96d4262afcadf1ddeec50722515","sha256":"f40bbaa5710bc5c205a76a3a19a0bf7c8f48f52df36c901112ecdb74552ba58c","sha512":"1a87fad7525691654d8634e08a47668b03bf68990ae755650c7b0ac59fd58160c20e3d325825834b5fa1f6acef4a196da6693079b2077eaca87a21d9d5caab2d","ssdeep":"6144:vE5ufpmYL3KV48lVrCL3KVu/Gy/UBXbnn/Ui:c5wIYeV4mNCeV+1un3","tlshash":"7f141299a0e54713294fb93d0477d911a89da2f17b3db9049eec3121ec18ea1743eb8f","first_seen":"2024-02-05T14:16:46Z","last_seen":"2026-04-11T18:55:58.534733Z","times_seen":402,"resource_available":false,"data":null}},"time_used":3130,"timings":{"blocked":884,"dns":0,"connect":292,"send":0,"wait":595,"receive":756,"ssl":599},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/tj.js","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.992Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /tj.js HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 206\r\nLast-Modified: Fri, 29 Dec 2023 08:06:10 GMT\r\nConnection: keep-alive\r\nETag: \"658e7df2-ce\"\r\nExpires: Sat, 11 Apr 2026 19:55:17 GMT\r\nCache-Control: max-age=3600\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":206,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"4fad282542ceb63a0340b6c4a0d7210e","sha1":"99a015756df0c060c4abcec1331d051d122fa2aa","sha256":"0a6cb317cad9024b078745794b7ea4e58ccba0f1b377dd6bc54aab08e1496be7","sha512":"c3b105168cc64572dc5179e80bc381202985d9af6af5cbcc6c42c754ae59cc820160985c896bb4732f84ab66ccde8a75d05df9fb1ca2c10daf8b0c28923fd4bd","ssdeep":"","tlshash":"18d0122b3cd6ed58420048c8dc74e43c447d9439f961e91584ffc81c3141fec0c05a2c","first_seen":"2024-08-20T14:48:41.036258Z","last_seen":"2026-04-11T18:55:58.53599Z","times_seen":3,"resource_available":true,"data":null}},"time_used":147,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":147,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/xx.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.710Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/xx.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/xx.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":294,"timings":{"blocked":140,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/logo.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.263Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/logo.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/logo.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":48589,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":626,"timings":{"blocked":463,"dns":0,"connect":0,"send":0,"wait":163,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/uploads/181217/1-1Q21GJ23H20.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.270Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/181217/1-1Q21GJ23H20.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/uploads/181217/1-1Q21GJ23H20.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":50251,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":1127,"timings":{"blocked":457,"dns":1,"connect":139,"send":0,"wait":155,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/uploads/181217/1-1Q21GI250G6.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.053Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/181217/1-1Q21GI250G6.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 49471\r\nConnection: keep-alive\r\nLast-Modified: Mon, 17 Dec 2018 09:32:50 GMT\r\nETag: \"1165-c13f-57d3476e45480\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":49471,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=334, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=484], baseline, precision 8, 448x334, components 3","md5":"3e18e01ec6ac20ddb66fa0f28c73faa8","sha1":"7cd960a6dc068121addd13d7b9831684eec7c94a","sha256":"b035bae93149092f9d752307ed3587aa53c2687334196d686324b1d2c0a1372a","sha512":"32d7ddfc41b63a7d103511f9f2383e3347c3ee202e5ae50613d2e72e8e839100474a3480c006ce3b934caddc30bb1e9ddce9b9b94b2ae9fbab0a93007670558e","ssdeep":"768:BYy3sI1PZYy3sI2zxNXK/6w+amuauBy2xfxBe2EARmvzyu3inr3v+EtGh+tAY:Br5rIzO/F/en2zkyRiyu3wr3xGh+uY","tlshash":"c623c036afb9df61e8e086389c70ebc76351fe99a32325a6309c78257f752c44d1d025","first_seen":"2026-04-11T18:55:58.538201Z","last_seen":"2026-04-11T18:55:58.538201Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1766,"timings":{"blocked":-1,"dns":750,"connect":253,"send":0,"wait":257,"receive":506,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/loading.gif","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.690Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/loading.gif HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/loading.gif\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":156,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/js/jquery.flexslider-min.js","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.990Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/js/jquery.flexslider-min.js HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: application/javascript;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/5.4.41\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":21411,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (21315)","md5":"5438ac28d6124aaf61125469670864c1","sha1":"9a63ba01c0edfc08e25c4b8863ee034cdd693dbf","sha256":"b7e38a7c07e64233a626f9d7cc58206679e87af5005a85ba2bb08f0ffae248a6","sha512":"414876ef9510fef1c46e88d263bec2c251f7af48fd2be990616d8d6654f9a91854c7c5f896dd6c3f734eecafe49d4f2779f0008b75f9570c9450dc1181efe99c","ssdeep":"384:ymE4TjopcnfxNiYK0E8g8MXromIsnBscyVTnmhrpb0SXEk98VeE:Zr86npNx3sro5sjG+tbjUJV5","tlshash":"10a28324f2503972cfe722ae7e0fd40669b3d441e816c83d3a3d574a2d641859b33eea","first_seen":"2024-10-24T11:11:05.258993Z","last_seen":"2026-04-11T18:55:58.54069Z","times_seen":18,"resource_available":true,"data":null}},"time_used":159,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":156,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.zhu2021.cc/uploads/paitzj07zvxugn13378sow5zwetoygu2894.gif","fqdn":"www.zhu2021.cc","domain":"zhu2021.cc","tld":"cc"},"ip":{"addr":"43.243.30.13","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.984Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zhu2021.cc","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 25 Oct 2025 00:00:00 GMT","end":"Sun, 25 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AD:D4:B3:CE:7E:E5:E0:18:33:7F:5B:FE:1F:7E:F1:39:7D:BE:31:AB","sha256":"3B:6B:99:6B:63:29:3E:B0:BE:14:B9:5F:DA:B8:26:5F:6C:FC:67:EB:06:E2:CA:D2:44:08:C6:4C:9C:5E:C3:86"}}},"request":{"raw":"GET /uploads/paitzj07zvxugn13378sow5zwetoygu2894.gif HTTP/1.1\r\nHost: www.zhu2021.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:18 GMT\r\nContent-Type: image/gif\r\nContent-Length: 162061\r\nLast-Modified: Sun, 04 Feb 2024 13:20:35 GMT\r\nConnection: keep-alive\r\nETag: \"65bf8f23-2790d\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Headers: X-Requested-With\r\nAccess-Control-Allow-Methods: GET,POST,OPTIONS\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":162061,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1000 x 300","md5":"4fb4afe26198c3287fb8e1a05be78270","sha1":"7f2f7b226aef1c717e47b49c29301efa77568374","sha256":"238929b5dc9d4726fd89356e5a33fa365a42d4168943a3934cb7753170bcc7fa","sha512":"5ff12adcefc3bad13c9130fcdd3a3d6c9917ee840bb63d31d5ad8901a770992b24a3a35babd62d4b6ba96898c403a228f38a157fb672addef9d1e40825679fdc","ssdeep":"3072:kW4NNuRHKOxC/DmufPzz76plgJXaBz7KT44Oz8vbM:kWuuRqUC/Dmuf7z7sqXaBz7KU4W8vbM","tlshash":"6ef3123900c89622ae6e3b2d157d86c59556f962acb02eff3b911378aff50df80054ed","first_seen":"2024-02-16T03:28:22Z","last_seen":"2026-04-11T18:55:58.543673Z","times_seen":312,"resource_available":false,"data":null}},"time_used":3187,"timings":{"blocked":867,"dns":1,"connect":293,"send":268,"wait":574,"receive":600,"ssl":583},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.zhu2021.cc/uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg","fqdn":"www.zhu2021.cc","domain":"zhu2021.cc","tld":"cc"},"ip":{"addr":"43.243.30.13","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zhu2021.cc","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 25 Oct 2025 00:00:00 GMT","end":"Sun, 25 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AD:D4:B3:CE:7E:E5:E0:18:33:7F:5B:FE:1F:7E:F1:39:7D:BE:31:AB","sha256":"3B:6B:99:6B:63:29:3E:B0:BE:14:B9:5F:DA:B8:26:5F:6C:FC:67:EB:06:E2:CA:D2:44:08:C6:4C:9C:5E:C3:86"}}},"request":{"raw":"GET /uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg HTTP/1.1\r\nHost: www.zhu2021.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 56006\r\nLast-Modified: Tue, 24 Oct 2023 07:00:33 GMT\r\nConnection: keep-alive\r\nETag: \"65376b91-dac6\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Headers: X-Requested-With\r\nAccess-Control-Allow-Methods: GET,POST,OPTIONS\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":56006,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3","md5":"87a9d827f6fd871223024b40b2646b9c","sha1":"43bcec1633466893da0118ff81ebc1d875392f66","sha256":"0c4a77dab5f3db9cc2269f073c9d8b182029128598d56c90a7d14b43f9f62947","sha512":"d4d75e0c89f37961f62c17b8fc9837855fe412cc023791dcf9efbaf3d5bf35135612925c30151e7706a0e964a4e4376fd55f1335de0179c3558db31fb5c6bad8","ssdeep":"1536:eHErE8OBwxNmyJVmUIlbsSoFiqhrM6jOPS+fK:eHh8tHPoUIlbs9Fiquxa+y","tlshash":"7f4302dd5728e2b2b3fae43692d0d751327c0e4e0927425a0d41d8b8d266f075fe974b","first_seen":"2023-04-30T19:02:42Z","last_seen":"2026-04-11T18:55:58.544712Z","times_seen":521,"resource_available":false,"data":null}},"time_used":2662,"timings":{"blocked":874,"dns":1,"connect":291,"send":0,"wait":589,"receive":312,"ssl":592},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/nohover.gif","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.705Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/nohover.gif HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/nohover.gif\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":55,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":287,"timings":{"blocked":135,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/tel.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.265Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/tel.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/tel.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":618,"timings":{"blocked":461,"dns":0,"connect":0,"send":0,"wait":157,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/js/custom.js","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.297Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/js/custom.js HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: application/javascript;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/5.4.41\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":2584,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"83d2ceb0646c3ddca71af6ca1469ab77","sha1":"20a5ef82cf562fc5bc01ba96779ba87b8f07d968","sha256":"7c3e9c60212a0db23a9ffae7e9508662d6af59d2a6fef958e27f03b48f49d151","sha512":"726129f88454071103683f3c7f3e5003f6486f25ab3c520534a9388c47af4027fbbca4cda4ef36a1fca41a5e53bd28569db658612bd462d8b4f0d31ca1aa5209","ssdeep":"","tlshash":"5151441db6f714f8987b306a5b5f901c2bb60113718bd004bd4c6ac05f61679829efde","first_seen":"2026-04-11T18:55:58.546122Z","last_seen":"2026-04-11T18:55:58.546122Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1127,"timings":{"blocked":51,"dns":1,"connect":137,"send":0,"wait":938,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/weixin.png","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.211Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/weixin.png HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/uploads/181217/1-1Q21GI10J93.JPG","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.215Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/181217/1-1Q21GI10J93.JPG HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/titbg.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.716Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/titbg.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/titbg.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":1289,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":408,"timings":{"blocked":255,"dns":0,"connect":0,"send":0,"wait":153,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/nohover.gif","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.999Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/nohover.gif HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: image/gif\r\nContent-Length: 55\r\nConnection: keep-alive\r\nLast-Modified: Fri, 01 Jun 2018 19:39:10 GMT\r\nETag: \"105e-37-56d99bce37380\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":55,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 7 x 7","md5":"f672f854b483b7bc432f0903277f870d","sha1":"eddee618272dae4806512a306b04ad84a952651e","sha256":"ed3762fd316e60f9db08e45a7502b54b2f78a4548a455813b6a84d841e57322d","sha512":"a5de277306cb0d9dbe115750ffa1f64279e1e3d504bfb71cd9814f07117f3658cd1aa3105dad8a6322e0afcfb70a1edc27a22ed240f9690c537c36fe94ff28e5","ssdeep":"","tlshash":"0090025abddd4398dd64a6751a35474011288440de480b451046701d530a0600022030","first_seen":"2025-10-16T00:50:23.434335Z","last_seen":"2026-04-11T18:55:58.548331Z","times_seen":2,"resource_available":false,"data":null}},"time_used":981,"timings":{"blocked":744,"dns":0,"connect":0,"send":0,"wait":237,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.zhu2021.cc/hbt/index.php?keyword=BET%E4%BD%93%E8%82%B2%E5%B9%B3%E5%8F%B0%E9%A6%96%E9%A1%B5%EF%BC%88%E4%B8%AD%E5%9B%BD%EF%BC%89%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8\u0026from=pc\u0026originurl=http%3A%2F%2Fwww.jt928.com%2F\u0026referer=\u0026userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026v=779","fqdn":"www.zhu2021.cc","domain":"zhu2021.cc","tld":"cc"},"ip":{"addr":"43.243.30.13","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.629Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zhu2021.cc","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 25 Oct 2025 00:00:00 GMT","end":"Sun, 25 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AD:D4:B3:CE:7E:E5:E0:18:33:7F:5B:FE:1F:7E:F1:39:7D:BE:31:AB","sha256":"3B:6B:99:6B:63:29:3E:B0:BE:14:B9:5F:DA:B8:26:5F:6C:FC:67:EB:06:E2:CA:D2:44:08:C6:4C:9C:5E:C3:86"}}},"request":{"raw":"GET /hbt/index.php?keyword=BET%E4%BD%93%E8%82%B2%E5%B9%B3%E5%8F%B0%E9%A6%96%E9%A1%B5%EF%BC%88%E4%B8%AD%E5%9B%BD%EF%BC%89%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8\u0026from=pc\u0026originurl=http%3A%2F%2Fwww.jt928.com%2F\u0026referer=\u0026userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026v=779 HTTP/1.1\r\nHost: www.zhu2021.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: http://www.jt928.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/5.4.41\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Headers: X-Requested-With\r\nAccess-Control-Allow-Methods: GET,POST,OPTIONS\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":2446,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (2446), with no line terminators","md5":"a55b11734f45c7ca70c2297c26aa20a4","sha1":"9e686608926b5df5c6759b996fad2559d1f66fba","sha256":"c752c222494e54727bae52024b8dbd7644f628dacff2564fcb6674d7b6bf7235","sha512":"666a3d5c02b48b4fcb726464f97e5243af3f557b829207d7da94a4c86610633063b1d3d21874d0c92dc197ed615906cb07f07a5e8310a9738b9dc8b254c079d1","ssdeep":"","tlshash":"f551dc73c485d20f9411e8c8e675dade9213205fdb33684bfea025aed6442b88a731cd","first_seen":"2026-04-08T09:03:20.564756Z","last_seen":"2026-04-11T18:55:58.551235Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1268,"timings":{"blocked":0,"dns":77,"connect":294,"send":0,"wait":298,"receive":0,"ssl":599},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/uploads/181217/1-1Q21GI10J93.JPG","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.291Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/181217/1-1Q21GI10J93.JPG HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/uploads/181217/1-1Q21GI10J93.JPG\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":905,"timings":{"blocked":749,"dns":0,"connect":0,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/ad2.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.025Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ad2.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 470064\r\nConnection: keep-alive\r\nLast-Modified: Mon, 23 Jul 2018 11:52:08 GMT\r\nETag: \"1026-72c30-571a946652a00\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":470064,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=264, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=1200], progressive, precision 8, 1200x264, components 3","md5":"8983b9352f715e8a91eac7ca2a385d3e","sha1":"5aa68988ff9666b67e1f29ae4a34da1a85969d58","sha256":"81267566890e4786ea5468b5bb85112632400ea833ae8fa732ec943591a11134","sha512":"6f2cb69c25d4a384fa0160aad8d56954a06bcc1db16194b259f4157a3141a6ab41dd91b48bcf1c3ab6938eb1226153fd2e572832575aa522f733854c81bd2dd5","ssdeep":"6144:fuxXzjG+wh83lhR500DAC4pjaAKmUCBUsU51:fGBj3lNlfgUgUsU51","tlshash":"1fa48f897c94a841a80db668e4fc9845dbf72ed10c30452eafeadc950f51edc8de48db","first_seen":"2026-04-11T18:55:58.553733Z","last_seen":"2026-04-11T18:55:58.553733Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2182,"timings":{"blocked":1228,"dns":0,"connect":0,"send":0,"wait":238,"receive":716,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/link.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.170Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/link.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 9105\r\nConnection: keep-alive\r\nLast-Modified: Fri, 01 Jun 2018 19:20:16 GMT\r\nETag: \"1057-2391-56d99794bfc00\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9105,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 237x58, components 3","md5":"f34a9c6c73ac9be7f2a98068b739cab4","sha1":"b1c7aea10c45d7934ef909f42fbe8f4bed05555e","sha256":"b8562dba0b375f4c3e34e9ff6cdfbc23acc008bb945c2de357cd026abc102b0b","sha512":"dd407de3bef8c08ae9606f20fa505558d2fbd44eb73b92a116cac7e8250e47f792dffb37b57e13c1b6d3004e42109b2f17e91b6d920902286c9e8b81bc379835","ssdeep":"96:dTvWVmpst05uYU+cXKBA82JP/AjjUGmFN6nsPjxaG14N7TMKY6h9iWwSD7agorRK:pi905iHKed1oPhNGCYT6h9rZorb1nBn0","tlshash":"e2129d0be187b8938e2bc5b02df601480d238fd1aae3c67fe1fec5a6dc55139450868b","first_seen":"2025-07-03T10:32:44.217104Z","last_seen":"2026-04-11T18:55:58.556224Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1720,"timings":{"blocked":1462,"dns":0,"connect":0,"send":0,"wait":257,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/uploads/181217/1-1Q21GI94J03.JPG","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.288Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/181217/1-1Q21GI94J03.JPG HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/uploads/181217/1-1Q21GI94J03.JPG\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":100851,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":761,"timings":{"blocked":601,"dns":0,"connect":0,"send":0,"wait":160,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.users.51.la/21763327.js","fqdn":"js.users.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.364Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.users.51.la","organization":"广州有啦网络科技有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 25 Mar 2025 01:23:19 GMT","end":"Sun, 26 Apr 2026 01:23:18 GMT"},"fingerprint":{"sha1":"F7:D4:70:77:2E:9F:2D:06:FB:AE:8D:0A:D1:3B:90:C6:9B:F7:CF:2D","sha256":"E7:E6:B9:38:0C:D2:69:98:96:FE:5A:E8:2D:93:9F:DF:C7:D1:F6:2F:EB:16:4D:63:F4:28:F7:88:A1:49:38:CF"}}},"request":{"raw":"GET /21763327.js HTTP/1.1\r\nHost: js.users.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncache-control: no-store\r\ndate: Sat, 11 Apr 2026 18:55:14 GMT\r\neo-log-uuid: 10990871239319586737\r\neo-cache-status: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":5207,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (5207), with no line terminators","md5":"ca6da77f0f7fcadae6959c7cb507d43d","sha1":"5d128ceae4058038dce16dc13d0ac5c86aeb29e6","sha256":"21cd39717870246ba51b265d6a519ad8c16e8f917a1dd34294d534c1c5fab1c5","sha512":"b8884186e553a5283e3d5d25c209b65896d648360189066bcc1ca2f39b10cb8434fd0757f1b79c1d2a558e32a999a61151f696f5eafe80efa8d903a6ee68e90f","ssdeep":"96:YbyHmPg4EY5Qc1dnqW7aUWp36QXiWgQ95qEIopwm3B5fXOiDgCQgeKrmpj:3mPZEY+cRpeUS36QXiWL5jfpwQXOiDgT","tlshash":"a4b1a64e71d1b4a247d621b9512f650ff1386a20589cc590ea63e8f53cb45af4333f5d","first_seen":"2023-08-16T23:32:39Z","last_seen":"2026-04-11T18:55:58.559292Z","times_seen":608,"resource_available":true,"data":null}},"time_used":464,"timings":{"blocked":101,"dns":40,"connect":19,"send":0,"wait":261,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/ad2.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.712Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ad2.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/ad2.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":470064,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":300,"timings":{"blocked":138,"dns":0,"connect":0,"send":0,"wait":162,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/css/style.css","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.257Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/css/style.css HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/css;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/5.4.41\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18683,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (309)","md5":"7a43ca8a0e0700362e91d2719631193f","sha1":"85c9e21253ea7c3c6e68defc508f7de00b5c56dc","sha256":"bb7c23fbc24deb725b1ec96981ab7c8066ec6ee658438aa835a361567ba04267","sha512":"8a512964d0a639a562d83db4e09ba53d18fdaed5c8a07e5e1e94ed2999c9cb48c6bb44f33042926d0cf1a01cead910372717a696a143461476ffa4aa8389365b","ssdeep":"384:opOjCVMwkE9UXV5x+B4TARD/tlKwewDzt2s:CSEJlKrizt/","tlshash":"3d827731e2a5210ef12bd2f6b961ab9a6214c00bf3470af8fdb53471e5ce05925777ca","first_seen":"2026-04-11T18:55:58.560128Z","last_seen":"2026-04-11T18:55:58.560128Z","times_seen":1,"resource_available":false,"data":null}},"time_used":393,"timings":{"blocked":91,"dns":1,"connect":138,"send":0,"wait":163,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.zhu2021.cc/uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg","fqdn":"www.zhu2021.cc","domain":"zhu2021.cc","tld":"cc"},"ip":{"addr":"43.243.30.13","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zhu2021.cc","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 25 Oct 2025 00:00:00 GMT","end":"Sun, 25 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AD:D4:B3:CE:7E:E5:E0:18:33:7F:5B:FE:1F:7E:F1:39:7D:BE:31:AB","sha256":"3B:6B:99:6B:63:29:3E:B0:BE:14:B9:5F:DA:B8:26:5F:6C:FC:67:EB:06:E2:CA:D2:44:08:C6:4C:9C:5E:C3:86"}}},"request":{"raw":"GET /uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg HTTP/1.1\r\nHost: www.zhu2021.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:18 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 56884\r\nLast-Modified: Tue, 24 Oct 2023 07:00:33 GMT\r\nConnection: keep-alive\r\nETag: \"65376b91-de34\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Headers: X-Requested-With\r\nAccess-Control-Allow-Methods: GET,POST,OPTIONS\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":56884,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3","md5":"795fdd629261bbfff623483c6cb6f160","sha1":"deca291d31bff5e123c3e192d7404976b2192ec5","sha256":"8e948fa556ac4998fe70fd5eb00c0c14988c884e83d204f711bb5f59c444fdff","sha512":"cb49d968755d0e217e3baea78d742167127960088dfb49ff0a924fbcbb11d2750293dee3c22630e80b490d3f16d03c5d1ed760993876b5bbf8fc99e780c1b67a","ssdeep":"1536:J9ql4N22V+V1WIgG9YPrvpL4490SuDFtrw6y7KXW:J9ql4JgVQIg37p0EuD3w6USW","tlshash":"f343021c763a68abc66ecab8417524a0c33417707990759eac8f730276e147e7498ff2","first_seen":"2023-04-30T19:02:18Z","last_seen":"2026-04-11T18:55:58.562278Z","times_seen":924,"resource_available":false,"data":null}},"time_used":2154,"timings":{"blocked":1769,"dns":0,"connect":0,"send":0,"wait":315,"receive":70,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-11T18:55:13.821Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/html;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/5.4.41\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery:1.8.3","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":25394,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators","md5":"4839b4447472f626ecb83aac517954d4","sha1":"1fd2d2f6cf85e23dca6d79c1102cb844d307361c","sha256":"732eb4aaff58fd27505d1fad705eef7d61e3db9658a750a26c537d68be7497be","sha512":"e41a8f62e98bc50ef0b482a7c52bd1e7108a1781d5ee050fe0b121f05d346c6f7f3b3256cdce19d524d9f5ed2a142e8d57a3b22eed7b07fe1e6e15029021ab2b","ssdeep":"384:8GbOQxC0vOlPsyToypDX4X9Xyr6/jgcb6/jgc9+qCTj5y/xoukqKoaQCTYbH9KHQ:82OCC0vOlP+XGpCTjqVCTiBzxBll5","tlshash":"5fb2ca0089dedd7b017642caa9a45b0ca8ff7d3bd0625950f2ff09a9dfc5e8229074d9","first_seen":"2026-04-11T18:55:58.563099Z","last_seen":"2026-04-11T18:55:58.563099Z","times_seen":1,"resource_available":true,"data":null}},"time_used":432,"timings":{"blocked":136,"dns":1,"connect":140,"send":0,"wait":154,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/cplei3.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.906Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/cplei3.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/contactimg.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.213Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/contactimg.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"api.share.baidu.com/s.gif?l=http://www.jt928.com/","fqdn":"api.share.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.438Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /s.gif?l=http://www.jt928.com/ HTTP/1.1\r\nHost: api.share.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.zhu2021.cc/uploads/fzo19d83tvcadjbhcsz7.png","fqdn":"www.zhu2021.cc","domain":"zhu2021.cc","tld":"cc"},"ip":{"addr":"43.243.30.13","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.986Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zhu2021.cc","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 25 Oct 2025 00:00:00 GMT","end":"Sun, 25 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AD:D4:B3:CE:7E:E5:E0:18:33:7F:5B:FE:1F:7E:F1:39:7D:BE:31:AB","sha256":"3B:6B:99:6B:63:29:3E:B0:BE:14:B9:5F:DA:B8:26:5F:6C:FC:67:EB:06:E2:CA:D2:44:08:C6:4C:9C:5E:C3:86"}}},"request":{"raw":"GET /uploads/fzo19d83tvcadjbhcsz7.png HTTP/1.1\r\nHost: www.zhu2021.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:18 GMT\r\nContent-Type: image/png\r\nContent-Length: 255290\r\nLast-Modified: Tue, 24 Oct 2023 07:00:33 GMT\r\nConnection: keep-alive\r\nETag: \"65376b91-3e53a\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Headers: X-Requested-With\r\nAccess-Control-Allow-Methods: GET,POST,OPTIONS\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":255290,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1000 x 200, 8-bit/color RGB, non-interlaced","md5":"9b7839cc32f8daa06bb7d870900882a0","sha1":"23b0c93464743e63954eafed8057ca0ec3d4effb","sha256":"baaa64f64b837b8ad5e3c1e6e4c9aa4b4f7b0a96d179049f1e26ad66a290eaf8","sha512":"096094d4273eb471c59c5629796c24dd1e70130edca6042fd1a0ac38423516d5d0320f3d88bdb469d9f62d72b14f3a73a93aeb010689d66368d7a4fc11c04537","ssdeep":"6144:WWomRtI+Um5klUnTf6H+qRE3jiTkIEeCID0dsTyr:tZRK+Um5klMejD/EenD0ds2r","tlshash":"b744239b33b7ac1240525c4b98af8ef4fb08c88dd135b7a2b209677d229662133d7719","first_seen":"2023-04-30T19:02:18Z","last_seen":"2026-04-11T18:55:58.565344Z","times_seen":853,"resource_available":false,"data":null}},"time_used":3262,"timings":{"blocked":878,"dns":1,"connect":293,"send":0,"wait":584,"receive":909,"ssl":595},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.users.51.la/21833025.js","fqdn":"js.users.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:17.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.users.51.la","organization":"广州有啦网络科技有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 25 Mar 2025 01:23:19 GMT","end":"Sun, 26 Apr 2026 01:23:18 GMT"},"fingerprint":{"sha1":"F7:D4:70:77:2E:9F:2D:06:FB:AE:8D:0A:D1:3B:90:C6:9B:F7:CF:2D","sha256":"E7:E6:B9:38:0C:D2:69:98:96:FE:5A:E8:2D:93:9F:DF:C7:D1:F6:2F:EB:16:4D:63:F4:28:F7:88:A1:49:38:CF"}}},"request":{"raw":"GET /21833025.js HTTP/1.1\r\nHost: js.users.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncache-control: no-store\r\ndate: Sat, 11 Apr 2026 18:55:17 GMT\r\neo-log-uuid: 7216916653025553386\r\neo-cache-status: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4898,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (4898), with no line terminators","md5":"21a0a71e23c596227c4dd946c8a40dc5","sha1":"ce73229bc267d4d8ec813ebd79b196dbbd9495ab","sha256":"787f549844aee9435eb12865c517e10fa147428591d5f31209dc2127bf325258","sha512":"d2d4ba12c764706637a80118be3de316a82666ff52087630efe464c84a772180c42e9941ea42d1269030fa8ec52ba73e5125d52f3dc7324fa7a637bb0beadebb","ssdeep":"96:kHmPg4EY5Qc1dnqW7aUWp36QXiWgQ95qEIopwm3B5fXOiDgCQgeKrmpj:KmPZEY+cRpeUS36QXiWL5jfpwQXOiDgT","tlshash":"98a1954e70e1b89207c721b5502f640ff2786a60589cd590ea63e8e13d7499f4333f6d","first_seen":"2024-08-20T14:48:41.013047Z","last_seen":"2026-04-11T18:55:58.56634Z","times_seen":3,"resource_available":true,"data":null}},"time_used":297,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":297,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/ban04.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.703Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ban04.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/ban04.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":308075,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":154,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jt928.com/","fqdn":"jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-11T18:55:12.845Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":188,"timings":{"blocked":188,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/contactimg.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.293Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/contactimg.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/contactimg.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":901,"timings":{"blocked":745,"dns":0,"connect":0,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/images/powery.png","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.295Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/images/powery.png HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/images/powery.png\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1101,"size_decoded":0,"mime_type":"image/png","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":593,"timings":{"blocked":431,"dns":0,"connect":0,"send":0,"wait":162,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/uploads/181217/1-1Q21GI94J03.JPG","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.068Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/181217/1-1Q21GI94J03.JPG HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 122623\r\nConnection: keep-alive\r\nLast-Modified: Mon, 17 Dec 2018 09:39:48 GMT\r\nETag: \"1174-1deff-57d348fce8100\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":100851,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:09:02 16:12:53], baseline, precision 8, 362x268, components 3","md5":"4843a72c4a05473c2db588a9af3630b0","sha1":"919a8068944269f6013319c58ac4af20876967a1","sha256":"2581b0cedead580ef210d725c990fde9a5b9e2b3fe9f4538c8c4838a4645574e","sha512":"eec269eaad1ca734c9efc6e2c55845553bc6e919298bf1d7d9f84a73c23ae95abc60b10041a09d0c27b9e3782cd4fef0d28193c4546983f3595594331fc0d1ea","ssdeep":"1536:EcUGCQcUGCkvXab6+iNkHS05HNuZ7aSk2YXPakbiRNH2hudcXi:Echc5aboISKtpgkbdwcy","tlshash":"c4a3f139aba796e2fa91b67ae5f0d7e446b3fa70825316c1b9cc8d017b1c2c04e0d516","first_seen":"2026-04-11T18:55:58.567436Z","last_seen":"2026-04-11T18:55:58.567436Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2139,"timings":{"blocked":983,"dns":0,"connect":252,"send":0,"wait":255,"receive":649,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/aboutimg.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.218Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/aboutimg.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/link.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.717Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/link.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/link.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":9105,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":440,"timings":{"blocked":287,"dns":0,"connect":0,"send":0,"wait":153,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.zhu2021.cc/uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif","fqdn":"www.zhu2021.cc","domain":"zhu2021.cc","tld":"cc"},"ip":{"addr":"43.243.30.13","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.987Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zhu2021.cc","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 25 Oct 2025 00:00:00 GMT","end":"Sun, 25 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AD:D4:B3:CE:7E:E5:E0:18:33:7F:5B:FE:1F:7E:F1:39:7D:BE:31:AB","sha256":"3B:6B:99:6B:63:29:3E:B0:BE:14:B9:5F:DA:B8:26:5F:6C:FC:67:EB:06:E2:CA:D2:44:08:C6:4C:9C:5E:C3:86"}}},"request":{"raw":"GET /uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif HTTP/1.1\r\nHost: www.zhu2021.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:18 GMT\r\nContent-Type: image/gif\r\nContent-Length: 294842\r\nLast-Modified: Tue, 24 Oct 2023 07:00:33 GMT\r\nConnection: keep-alive\r\nETag: \"65376b91-47fba\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Headers: X-Requested-With\r\nAccess-Control-Allow-Methods: GET,POST,OPTIONS\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":294842,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1000 x 90","md5":"85163b53631e93551465219ff0e8d8fb","sha1":"59b7a0a3ab620f45ce48de1c27afdfeb88c6bed6","sha256":"b77899e0b4dac978615eb40d7efffc1dd8cb0acc5271b57273c589cf601396a9","sha512":"5b905f2986e1c0d4d3171f302473d7b1a4c4208e15a101c445a3ab67ae302dc29ef980c565b48c288865681dc58f32f2c5de3f331e1761ac402413458fbd8234","ssdeep":"6144:EhfScTna34X7OwUsDgkCg9z0I8Fse8pcIFmRPgx2uZ6DY89RDlYdPIC:Ehqcrz7Ow7x8SgRPgJZ6DrRDlgPIC","tlshash":"d454238ac096a1855a60ff30c179dd5e7e81f246356cdcef058ca5eceb90cbd126b2d2","first_seen":"2023-04-30T19:02:18Z","last_seen":"2026-04-11T18:55:58.569893Z","times_seen":857,"resource_available":false,"data":null}},"time_used":3355,"timings":{"blocked":883,"dns":1,"connect":295,"send":0,"wait":594,"receive":981,"ssl":599},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/jquery.min.js","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.255Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /jquery.min.js HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 29 Dec 2023 08:06:10 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"658e7df2-ed1\"\r\nExpires: Sat, 11 Apr 2026 19:55:14 GMT\r\nCache-Control: max-age=3600\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3793,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with very long lines (3686)","md5":"77e024e950ad659c119e9515fcb05d45","sha1":"7624d1e9898b607465f8abde519b8425840ca7c0","sha256":"4c42a77c6e30924838b854b1dec7baf0578f857c539ad517644e50bdd843afc1","sha512":"8909dfbe1a4ccd46d8e5d3ad2dc38c6aea687399a19c69407e4915f1ae02580f3d328153d5ea81e03807f07864c421d23189cfcf8b294676e3e2b5a6e29003b0","ssdeep":"","tlshash":"7d71d86a586f541496cd037ac83c427682fa7ec4e1e0f5fea8c4e3146fe547a624387b","first_seen":"2023-08-16T23:32:39Z","last_seen":"2026-04-11T18:55:58.571264Z","times_seen":690,"resource_available":true,"data":null}},"time_used":139,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":139,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-11T18:55:14Z","timestamp":1775933714,"ip_dst":{"addr":"172.18.0.6","port":37438,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"severity":"medium","alert":"ET INFO JJEncode Encoded Script","source":"{\"timestamp\":\"2026-04-11T18:55:14.881752+0000\",\"flow_id\":502522331626336,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"170.130.251.21\",\"src_port\":80,\"dest_ip\":\"172.18.0.6\",\"dest_port\":37438,\"proto\":\"TCP\",\"tx_id\":1,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2017127,\"rev\":2,\"signature\":\"ET INFO JJEncode Encoded Script\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_07_11\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2019_07_26\"]}},\"http\":{\"hostname\":\"www.jt928.com\",\"url\":\"/jquery.min.js\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"application/javascript\",\"http_refer\":\"http://www.jt928.com/\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":714},\"files\":[{\"filename\":\"/jquery.min.js\",\"sid\":[],\"gaps\":false,\"state\":\"CLOSED\",\"stored\":false,\"size\":3793,\"tx_id\":1}],\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":14,\"pkts_toclient\":12,\"bytes_toserver\":2111,\"bytes_toclient\":12946,\"start\":\"2026-04-11T18:55:13.818016+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/js/jquery.flexslider-min.js","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.261Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/js/jquery.flexslider-min.js HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: application/javascript;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/5.4.41\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21411,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (21315)","md5":"5438ac28d6124aaf61125469670864c1","sha1":"9a63ba01c0edfc08e25c4b8863ee034cdd693dbf","sha256":"b7e38a7c07e64233a626f9d7cc58206679e87af5005a85ba2bb08f0ffae248a6","sha512":"414876ef9510fef1c46e88d263bec2c251f7af48fd2be990616d8d6654f9a91854c7c5f896dd6c3f734eecafe49d4f2779f0008b75f9570c9450dc1181efe99c","ssdeep":"384:ymE4TjopcnfxNiYK0E8g8MXromIsnBscyVTnmhrpb0SXEk98VeE:Zr86npNx3sro5sjG+tbjUJV5","tlshash":"10a28324f2503972cfe722ae7e0fd40669b3d441e816c83d3a3d574a2d641859b33eea","first_seen":"2024-10-24T11:11:05.258993Z","last_seen":"2026-04-11T18:55:58.54069Z","times_seen":18,"resource_available":true,"data":null}},"time_used":391,"timings":{"blocked":87,"dns":1,"connect":138,"send":0,"wait":163,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/uploads/181217/1-1Q21GJ111R4.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.270Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/181217/1-1Q21GJ111R4.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/uploads/181217/1-1Q21GJ111R4.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":100851,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":783,"timings":{"blocked":620,"dns":0,"connect":0,"send":0,"wait":163,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"api.map.baidu.com/api?key=\u0026v=1.1\u0026services=true","fqdn":"api.map.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"180.76.11.161","port":80,"asn":55967,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.296Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /api?key=\u0026v=1.1\u0026services=true HTTP/1.1\r\nHost: api.map.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nCache-Control: max-age=86400\r\nConnection: keep-alive\r\nContent-Length: 317\r\nContent-Type: text/javascript;charset=utf-8\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nExpires: Sun, 12 Apr 2026 18:55:15 GMT\r\nHttp_x_bd_logid: 3315307828\r\nHttp_x_bd_logid64: 3315307381957246986\r\nHttp_x_bd_product: map\r\nHttp_x_bd_subsys: apimap\r\nP3p: CP=\" OTI DSP COR IVA OUR IND COM \", CP=\" OTI DSP COR IVA OUR IND COM \"\r\nServer: apache\r\nSet-Cookie: BAIDUID=66276BC0D61D90A404CEF9E8D8A746BC:FG=1; expires=Sun, 11-Apr-27 18:55:15 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1\nBAIDUID=2E9F3DB9E94673386A3A032D913EA449:FG=1; expires=Sun, 11-Apr-27 18:55:15 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1\r\nTracecode: 33153078282849581322041202\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":317,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (317), with no line terminators","md5":"714ad33953b9ad729e7662d3c5c460be","sha1":"70c69c87806795a13e00477feda30c4e5f981a75","sha256":"ac3f5a852dd5b5f590ee9b2a23d062c4f420cf7b9bca3f61485ee9c9ad457dca","sha512":"b3d6bdb3cc15a694549283bd4973c6c736aa264548e6611a97e8b520c5dd1efa48303cc3db3811463fd6046b165b9d470227a2854538e2ee80a20f7a610c3959","ssdeep":"","tlshash":"2fe07d074c03fb21d0014ecde837e214d0bea3619940ec4165fe482664c43ef1cbae4c","first_seen":"2023-03-08T16:10:01Z","last_seen":"2026-04-11T18:55:58.572414Z","times_seen":292,"resource_available":true,"data":null}},"time_used":2101,"timings":{"blocked":886,"dns":668,"connect":259,"send":0,"wait":287,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/ad3.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.714Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ad3.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/ad3.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":54840,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":300,"timings":{"blocked":139,"dns":0,"connect":0,"send":0,"wait":161,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/ban03.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.888Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ban03.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 230031\r\nConnection: keep-alive\r\nLast-Modified: Mon, 20 Nov 2023 06:13:13 GMT\r\nETag: \"102a-3828f-60a8f61857040\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":230031,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.0 (Windows), datetime=2023:11:20 14:10:22], baseline, precision 8, 1920x500, components 3","md5":"e59110fc1c4b66d709cd6de90fa4068b","sha1":"3924b0c6caf3a4346c6311ae1cee42effb8f2ee3","sha256":"282d57494456e4532b249722d2d8a15cf31fcb5bbc0f6b5ba5cee170013f09b2","sha512":"58a16406a04e03de999acb3b57f216a173278d3bbd5d0e6d475df9e5cab586192ee698f1ec64e59d8d9edc6297bdef0f0f055f366a34413e36ba1d4e30726639","ssdeep":"6144:lO0Lef1noDgf3jx0v9fXmadcQsH3Tfh4rv:l56f1rf10v9fXmaDAzh4rv","tlshash":"422412244f254fc1dde660334780cd6d62328ea886e366a2fe5c26943bbccb494347b7","first_seen":"2026-04-11T18:55:58.574802Z","last_seen":"2026-04-11T18:55:58.574802Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1741,"timings":{"blocked":955,"dns":0,"connect":0,"send":0,"wait":258,"receive":528,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/ban02.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.892Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ban02.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 224221\r\nConnection: keep-alive\r\nLast-Modified: Tue, 18 Dec 2018 06:38:04 GMT\r\nETag: \"1029-36bdd-57d4623b80b00\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":224221,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x520, components 3","md5":"eed078ac11f902b235085d6aed4b377a","sha1":"0a27585a848a40e189f9c3c5af5c0363c6ca9d00","sha256":"998c03deed709151f913cbe00e782f9ea30e00186d46b3b69fbb079c33d4ce3c","sha512":"0bad8b7cf488c571edea1d19a01db3b31615f43f454146e7e6d42342b9b7c691dd0be6d6a8ee2a429809413f953e0692f93d1f626bad869536c29b6a4cdeff13","ssdeep":"6144:O/X9gBGpGtc9Kin+UvzhGZs8SV/dwxrpx:gicK8+QdqvMlwTx","tlshash":"fc2423231d5607d2cfb120197ba37816b871d7f7de9ad8167e1cb0f84cd0152aba09ae","first_seen":"2026-04-11T18:55:58.577757Z","last_seen":"2026-04-11T18:55:58.577757Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1860,"timings":{"blocked":569,"dns":0,"connect":0,"send":0,"wait":258,"receive":1033,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/aboutimg.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.292Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/aboutimg.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/aboutimg.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":912,"timings":{"blocked":757,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/tel.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.909Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/tel.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/cplei.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.056Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/cplei.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ia.51.la/go1?id=21763327\u0026rt=1775933715629\u0026rl=1280*1024\u0026lang=en-US\u0026ct=unknow\u0026pf=1\u0026ins=1\u0026vd=1\u0026ce=1\u0026cd=24\u0026ds=\u0026ing=1\u0026ekc=\u0026sid=1775933715629\u0026tt=BET%25E4%25BD%2593%25E8%2582%25B2%25E5%25B9%25B3%25E5%258F%25B0%25E9%25A6%2596%25E9%25A1%25B5%25EF%25BC%2588%25E4%25B8%25AD%25E5%259B%25BD%25EF%25BC%2589%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8\u0026kw=\u0026cu=http%253A%252F%252Fwww.jt928.com%252F\u0026pu=","fqdn":"ia.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":80,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.638Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /go1?id=21763327\u0026rt=1775933715629\u0026rl=1280*1024\u0026lang=en-US\u0026ct=unknow\u0026pf=1\u0026ins=1\u0026vd=1\u0026ce=1\u0026cd=24\u0026ds=\u0026ing=1\u0026ekc=\u0026sid=1775933715629\u0026tt=BET%25E4%25BD%2593%25E8%2582%25B2%25E5%25B9%25B3%25E5%258F%25B0%25E9%25A6%2596%25E9%25A1%25B5%25EF%25BC%2588%25E4%25B8%25AD%25E5%259B%25BD%25EF%25BC%2589%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8\u0026kw=\u0026cu=http%253A%252F%252Fwww.jt928.com%252F\u0026pu= HTTP/1.1\r\nHost: ia.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: TencentEdgeOne\r\nContent-Length: 0\r\nConnection: keep-alive\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nEO-LOG-UUID: 15637518528511011849\r\nEO-Cache-Status: MISS\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":378,"timings":{"blocked":-1,"dns":60,"connect":19,"send":0,"wait":299,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ia.51.la/go1?id=21833025\u0026rt=1775933717435\u0026rl=1280*1024\u0026lang=en-US\u0026ct=unknow\u0026pf=1\u0026ins=1\u0026vd=1\u0026ce=1\u0026cd=24\u0026ds=\u0026ing=2\u0026ekc=\u0026sid=1775933717435\u0026tt=BET%25E4%25BD%2593%25E8%2582%25B2%25E5%25B9%25B3%25E5%258F%25B0%25E9%25A6%2596%25E9%25A1%25B5%25EF%25BC%2588%25E4%25B8%25AD%25E5%259B%25BD%25EF%25BC%2589%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8\u0026kw=\u0026cu=http%253A%252F%252Fwww.jt928.com%252F\u0026pu=","fqdn":"ia.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":80,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:17.441Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /go1?id=21833025\u0026rt=1775933717435\u0026rl=1280*1024\u0026lang=en-US\u0026ct=unknow\u0026pf=1\u0026ins=1\u0026vd=1\u0026ce=1\u0026cd=24\u0026ds=\u0026ing=2\u0026ekc=\u0026sid=1775933717435\u0026tt=BET%25E4%25BD%2593%25E8%2582%25B2%25E5%25B9%25B3%25E5%258F%25B0%25E9%25A6%2596%25E9%25A1%25B5%25EF%25BC%2588%25E4%25B8%25AD%25E5%259B%25BD%25EF%25BC%2589%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8\u0026kw=\u0026cu=http%253A%252F%252Fwww.jt928.com%252F\u0026pu= HTTP/1.1\r\nHost: ia.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: TencentEdgeOne\r\nContent-Length: 0\r\nConnection: keep-alive\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nEO-LOG-UUID: 3545883412664413526\r\nEO-Cache-Status: MISS\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":547,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":547,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/cplei3.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.269Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/cplei3.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/cplei3.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":613,"timings":{"blocked":457,"dns":0,"connect":0,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/weixin.png","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.294Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/weixin.png HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/weixin.png\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":900,"timings":{"blocked":745,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/ban01.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.693Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ban01.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/ban01.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":210003,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":163,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":163,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/xx.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.012Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/xx.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nContent-Type: text/html\r\nContent-Length: 648\r\nConnection: keep-alive\r\nLast-Modified: Sat, 23 Oct 2021 03:00:38 GMT\r\nETag: \"265-462-5cefc5513e180\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding,User-Agent\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":1241,"timings":{"blocked":968,"dns":0,"connect":0,"send":0,"wait":273,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.zhu2021.cc/uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg","fqdn":"www.zhu2021.cc","domain":"zhu2021.cc","tld":"cc"},"ip":{"addr":"43.243.30.13","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.990Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zhu2021.cc","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 25 Oct 2025 00:00:00 GMT","end":"Sun, 25 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AD:D4:B3:CE:7E:E5:E0:18:33:7F:5B:FE:1F:7E:F1:39:7D:BE:31:AB","sha256":"3B:6B:99:6B:63:29:3E:B0:BE:14:B9:5F:DA:B8:26:5F:6C:FC:67:EB:06:E2:CA:D2:44:08:C6:4C:9C:5E:C3:86"}}},"request":{"raw":"GET /uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg HTTP/1.1\r\nHost: www.zhu2021.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:18 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 52696\r\nLast-Modified: Tue, 24 Oct 2023 07:00:33 GMT\r\nConnection: keep-alive\r\nETag: \"65376b91-cdd8\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Headers: X-Requested-With\r\nAccess-Control-Allow-Methods: GET,POST,OPTIONS\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":52696,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3","md5":"09a9c5e99ec33235f28bdca03b58682e","sha1":"81d68e1a6bc09d122f9a0984c23dffc01b8d1c1c","sha256":"0a5fbab46d0fed48a729000dc2c5415bea823742bc19cc2e4118f8844627414b","sha512":"ed1e8d0be73626944e89801a2fd3fec1636e2700633709d651e1823f4868a925159869d98277e8ef853560a8fe65d13262037b813b3f740699d62ab6b611191a","ssdeep":"1536:pF5H822End50KAVfznwOQNh/DOKCDkCyyqd:nu2hd5d1OQNVOnDkgqd","tlshash":"eb33020137613b2e61ced67dc180860fe22093a1e9f77fed6819680dbfc59559acc874","first_seen":"2023-04-30T19:02:18Z","last_seen":"2026-04-11T18:55:58.580644Z","times_seen":971,"resource_available":false,"data":null}},"time_used":2728,"timings":{"blocked":896,"dns":0,"connect":298,"send":0,"wait":603,"receive":319,"ssl":609},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.users.51.la/21748103.js","fqdn":"js.users.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:17.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.users.51.la","organization":"广州有啦网络科技有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 25 Mar 2025 01:23:19 GMT","end":"Sun, 26 Apr 2026 01:23:18 GMT"},"fingerprint":{"sha1":"F7:D4:70:77:2E:9F:2D:06:FB:AE:8D:0A:D1:3B:90:C6:9B:F7:CF:2D","sha256":"E7:E6:B9:38:0C:D2:69:98:96:FE:5A:E8:2D:93:9F:DF:C7:D1:F6:2F:EB:16:4D:63:F4:28:F7:88:A1:49:38:CF"}}},"request":{"raw":"GET /21748103.js HTTP/1.1\r\nHost: js.users.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncache-control: no-store\r\ndate: Sat, 11 Apr 2026 18:55:17 GMT\r\neo-log-uuid: 141266900855032627\r\neo-cache-status: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":4898,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (4898), with no line terminators","md5":"302eb68082eb476028e76079ee6dfa7b","sha1":"f18741bcebd1bcd73f8d59be3a32d1523243f377","sha256":"414b1c906397784da167ad9254cfa3aa6e6182a1b21b36f5f1ee8b475b6bf0ac","sha512":"ff19d3ac3135f98825efc38a77ec923aa3ca1f167700869972bd5363b3b270b211e7fc276411d466570d43a561d41bdd43860cce1d2d5151785af0fb1bd77e18","ssdeep":"96:SHmPg4EY5Qc1dnqW7aUWp36QXiWgQ95qEIopwm3B5fXOiDgCQgeKrmpj:UmPZEY+cRpeUS36QXiWL5jfpwQXOiDgT","tlshash":"faa1954e70e1b89207c721b5502f640ff2786a60589cd590ea63e8e53d7499f4333f6d","first_seen":"2023-08-13T09:53:57Z","last_seen":"2026-04-11T18:55:58.581593Z","times_seen":19,"resource_available":true,"data":null}},"time_used":306,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":306,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ia.51.la/go1?id=21748103\u0026rt=1775933717446\u0026rl=1280*1024\u0026lang=en-US\u0026ct=unknow\u0026pf=1\u0026ins=1\u0026vd=1\u0026ce=1\u0026cd=24\u0026ds=\u0026ing=3\u0026ekc=\u0026sid=1775933717446\u0026tt=BET%25E4%25BD%2593%25E8%2582%25B2%25E5%25B9%25B3%25E5%258F%25B0%25E9%25A6%2596%25E9%25A1%25B5%25EF%25BC%2588%25E4%25B8%25AD%25E5%259B%25BD%25EF%25BC%2589%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8\u0026kw=\u0026cu=http%253A%252F%252Fwww.jt928.com%252F\u0026pu=","fqdn":"ia.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":80,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:17.454Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /go1?id=21748103\u0026rt=1775933717446\u0026rl=1280*1024\u0026lang=en-US\u0026ct=unknow\u0026pf=1\u0026ins=1\u0026vd=1\u0026ce=1\u0026cd=24\u0026ds=\u0026ing=3\u0026ekc=\u0026sid=1775933717446\u0026tt=BET%25E4%25BD%2593%25E8%2582%25B2%25E5%25B9%25B3%25E5%258F%25B0%25E9%25A6%2596%25E9%25A1%25B5%25EF%25BC%2588%25E4%25B8%25AD%25E5%259B%25BD%25EF%25BC%2589%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8\u0026kw=\u0026cu=http%253A%252F%252Fwww.jt928.com%252F\u0026pu= HTTP/1.1\r\nHost: ia.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: TencentEdgeOne\r\nContent-Length: 0\r\nConnection: keep-alive\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nEO-LOG-UUID: 13095491519661427439\r\nEO-Cache-Status: MISS\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":243,"timings":{"blocked":0,"dns":1,"connect":19,"send":0,"wait":223,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/cplei.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.267Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/cplei.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/cplei.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":773,"timings":{"blocked":616,"dns":0,"connect":0,"send":0,"wait":157,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/uploads/181217/1-1Q21GI250G6.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.290Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/181217/1-1Q21GI250G6.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/uploads/181217/1-1Q21GI250G6.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":49471,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":748,"timings":{"blocked":593,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/uploads/201103/1-2011031J641M8.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.055Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/201103/1-2011031J641M8.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/ban03.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.699Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ban03.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/ban03.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":230031,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":156,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":156,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/loading.gif","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.884Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/loading.gif HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: text/html\r\nContent-Length: 648\r\nConnection: keep-alive\r\nLast-Modified: Sat, 23 Oct 2021 03:00:38 GMT\r\nETag: \"265-462-5cefc5513e180\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding,User-Agent\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":1186,"timings":{"blocked":932,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/ban01.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.890Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ban01.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 210003\r\nConnection: keep-alive\r\nLast-Modified: Thu, 25 Mar 2021 00:10:44 GMT\r\nETag: \"1028-33453-5be513f1c4900\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":210003,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x500, components 3","md5":"3bd5f77b4311bb228b67fd0c57115b6e","sha1":"43e836cd585e1ee689a57f9f558c0e2d0eeba3d1","sha256":"07973f6ea9b6e8f0da3d6d02c8d77a3f012f28986875536c0ef498eec8e13cc1","sha512":"11a1e9980c75ad2a577df108b395f44f8fe3a56a87b089fb1d03c08b48a9c29972e7721bcb7c687f7639dc54b6d01f813cbbb7c62a5dc4992991fe50c3bf6a94","ssdeep":"6144:Jjx82FoNYp5O/eZDGUdT61sWOrifc1mJMZkJ:JVtkYQeZ5dTuoibJM6J","tlshash":"152423bdc404a17ce4ba752938e997ec5e6373f1c99c26c6e9d69118f0e7b06036f482","first_seen":"2026-04-11T18:55:58.582551Z","last_seen":"2026-04-11T18:55:58.582551Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2353,"timings":{"blocked":1066,"dns":0,"connect":0,"send":0,"wait":258,"receive":1029,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/ad1.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.015Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ad1.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 32567\r\nConnection: keep-alive\r\nLast-Modified: Tue, 18 Dec 2018 07:43:04 GMT\r\nETag: \"1025-7f37-57d470c2d5200\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":32567,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1200x264, components 3","md5":"491c69cd3259c3a34eb8b44b53f58bb0","sha1":"30c97e0ae363b1c9e214f5ad79ba5e19e304ecb8","sha256":"c202701edbccf871adfc15b779ed60317d9f22bf8c44809be60d45ea20d568be","sha512":"b86504cbad5eeda921cd36eb7a7eab11f783bdfe9763884c908736e0547b1fa945a9e1fc5e497d20d6b5d4dd04de87d62fb1f458e83c076f9f33d4c68a7733a4","ssdeep":"768:kbUJTEXCdD36eyMEfW3czJxUvr3HxgYyF0euQNO:0UCylyMEGctxE3xFT","tlshash":"d6e2e16bcd6f59e7f8aa33b90c651e25f9c0ada2e729d5430cc6c59b28120ea0e08519","first_seen":"2026-04-11T18:55:58.584874Z","last_seen":"2026-04-11T18:55:58.584874Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1312,"timings":{"blocked":1056,"dns":0,"connect":0,"send":0,"wait":254,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/ad3.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.027Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ad3.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 54840\r\nConnection: keep-alive\r\nLast-Modified: Tue, 18 Dec 2018 07:33:10 GMT\r\nETag: \"1027-d638-57d46e8c59980\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":54840,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1200x320, components 3","md5":"def97ecec083c2d22300d728eed79a56","sha1":"e4b778b6f479d243bc5b2925004e6778f4772d7d","sha256":"860661f11c3fec58ca929ca77b1e21f663cb29cd58bbb4dfd2107722c7688fa3","sha512":"388a0fabd5db38a09001c300b2e8a2a49260208f4235b44f9d0c419d5cc7933bb3c08cba04c0e508c7a25aeefce544c559bc27709df371746fe83345be31db5c","ssdeep":"768:k2Aoo/vh2FopLvPa7RXJa32K4fZ3bdwI96E9Fr4BrzsCQ1ULQlaIKm349D/wxC3j:6zn+wLviVsg/oE9F8ku9DKC+6j","tlshash":"b733f1f90b129a2bf04045f600b1aa67ad67ff143770a64a75c02d35b764be2dc7634b","first_seen":"2026-04-11T18:55:58.600589Z","last_seen":"2026-04-11T18:55:58.600589Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1561,"timings":{"blocked":1300,"dns":0,"connect":0,"send":0,"wait":254,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.zhong2021.cc/jquery.minjs.js","fqdn":"www.zhong2021.cc","domain":"zhong2021.cc","tld":"cc"},"ip":{"addr":"43.243.30.15","port":443,"asn":152194,"as":"CTG Server Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.359Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zhong2021.cc","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Sat, 25 Oct 2025 00:00:00 GMT","end":"Sun, 25 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"59:B2:D6:02:24:12:7B:8D:7C:80:4B:34:55:BE:18:E2:7E:2C:87:F7","sha256":"59:0D:D6:52:52:F0:45:C9:1D:7C:F7:59:06:E4:16:18:FA:BC:80:42:03:0B:D5:CF:BC:FF:0B:E8:30:00:51:29"}}},"request":{"raw":"GET /jquery.minjs.js HTTP/1.1\r\nHost: www.zhong2021.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Mon, 25 Oct 2021 19:42:20 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"6177089c-d554\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Headers: X-Requested-With\r\nAccess-Control-Allow-Methods: GET,POST,OPTIONS\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":54612,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (54610), with CRLF line terminators","md5":"0ae3a0bbe549b4e7470df716754e8c5a","sha1":"9f52e9fe1886f2d2aaec02af557cd6281d7c0e0a","sha256":"cb53a28d1c0689aa226454348ac90b2f9f0fed2557bf4c586f76b70c35257655","sha512":"fc1021000d49b1adaaa6bcc0059ce1415206658030fc4286d4d7050219fb69e72799458f10ebc97f6d4aa97a70fa5149a59d0473a70a1c84be417250acaee834","ssdeep":"96:T8JS5VZVTwsi9hgw0kRQXkL9DLTe/wdjKrwdrK/QAAJWyLDyjVUA:sDBjKrwdm/QAAY","tlshash":"8133305b086f5010cacd07b6d83c426a82fa7ec491e4f5fea9c4e3546ff557a620783a","first_seen":"2023-03-07T12:04:22Z","last_seen":"2026-04-11T18:55:58.602776Z","times_seen":875,"resource_available":true,"data":null}},"time_used":2163,"timings":{"blocked":935,"dns":58,"connect":289,"send":0,"wait":290,"receive":1,"ssl":587},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"push.zhanzhang.baidu.com/push.js","fqdn":"push.zhanzhang.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"182.61.201.93","port":80,"asn":38365,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.656Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /push.js HTTP/1.1\r\nHost: push.zhanzhang.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Encoding: gzip\r\nContent-Length: 232\r\nContent-Type: text/javascript\r\nServer: bfe\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":281,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with no line terminators","md5":"1bb5a3267c9865ad4abe8d937734b62b","sha1":"b5478dd2edb3e64242eced1db2dbd945ef81f592","sha256":"674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2","sha512":"33318ed944a49a8fa334983408d68853b1fbe4f80b19adef6235f23d7708b616cd4f8dd28c8b8ebfbb5776aab8088229f3060cd789af34fe1db5038a98bd0d39","ssdeep":"","tlshash":"91d02be874a0c41c0ce710b17fab328cfab20b2755244d40c05b90013614b1f824bfe9","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-04-11T21:19:30.266315Z","times_seen":21148,"resource_available":true,"data":null}},"time_used":776,"timings":{"blocked":0,"dns":340,"connect":218,"send":0,"wait":218,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/ban02.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.696Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ban02.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/ban02.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":224221,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":162,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":162,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"api.map.baidu.com/res/11/bmap.css","fqdn":"api.map.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"180.76.11.161","port":80,"asn":55967,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.167Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /res/11/bmap.css HTTP/1.1\r\nHost: api.map.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nCache-Control: max-age=86400\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nContent-Type: text/css\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nEtag: W/\"69bb5cf7-2070\"\r\nExpires: Sun, 12 Apr 2026 18:55:16 GMT\r\nHttp_x_bd_logid: 3316293699\r\nHttp_x_bd_logid64: 3316293542845980682\r\nHttp_x_bd_product: map\r\nHttp_x_bd_subsys: apimap\r\nLast-Modified: Thu, 19 Mar 2026 02:18:31 GMT\r\nP3p: CP=\" OTI DSP COR IVA OUR IND COM \"\r\nServer: apache\r\nSet-Cookie: BAIDUID=81134CE03A2B5471970586C505F4CC0D:FG=1; expires=Sun, 11-Apr-27 18:55:16 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1\r\nVary: Accept-Encoding\r\nTransfer-Encoding: chunked\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":8304,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (8304), with no line terminators","md5":"95eae98697ec838883e06e4ad96ed192","sha1":"adffb17b9e472c88596562089926e109aa083b41","sha256":"5dd837fc2af9d7917a54666b5df03cdfa83da06b6e47449f17aacbcf87ac963a","sha512":"ffcac0cddf5c7087cc5b6a40745fc6eccd00c88fee3394edb050e28af3dee8d75315f21945d8fbead2d5aa656e484f195d626378ac78ec13ef6f12419bb8993e","ssdeep":"96:MxGnn4gxnztp4Pf+pjoQRfEGoIOL7PZ63n4tl4JHze29AjGyACJyv+/OmnPOlwCU:WGTWascfE79nPZ63pJTe2sTcqyGaLc","tlshash":"f00244b11e43031fe53eeb2374a1dacc6079d04be8531f6ee95a1874d88f29d1439aa9","first_seen":"2023-06-27T10:38:47Z","last_seen":"2026-04-11T18:55:58.604764Z","times_seen":99,"resource_available":false,"data":null}},"time_used":294,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":294,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jt928.com/","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-11T18:55:13.472Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":197,"timings":{"blocked":197,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.sogou.com/web/index/images/logo_440x140.v.4.png","fqdn":"www.sogou.com","domain":"sogou.com","tld":"com"},"ip":{"addr":"43.153.236.147","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.301Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.sogou.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1","organization":"DigiCert, Inc."},"validity":{"start":"Tue, 20 May 2025 00:00:00 GMT","end":"Sat, 20 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"34:BC:52:B5:0C:78:D8:86:70:2C:C5:F1:AF:00:4D:9F:C3:04:05:71","sha256":"58:07:E1:1D:A7:02:A6:8E:56:2B:EB:79:02:F5:85:E9:F2:C3:54:4D:57:C6:4F:1A:C5:3E:03:D2:4A:85:2B:F2"}}},"request":{"raw":"GET /web/index/images/logo_440x140.v.4.png HTTP/1.1\r\nHost: www.sogou.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: image/png\r\nContent-Length: 2950\r\nConnection: keep-alive\r\nLast-Modified: Wed, 17 Dec 2025 13:13:54 GMT\r\nSet-Cookie: ABTEST=0|1775933715|v17; expires=Mon, 11-May-26 18:55:15 GMT; path=/\nIPLOC=NO; expires=Sun, 11-Apr-27 18:55:15 GMT; domain=.sogou.com; path=/\nSUID=9A2A5A5B36A5A20B0000000069DA9913; expires=Fri, 06-Apr-2046 18:55:15 GMT; domain=.sogou.com; path=/\r\nP3P: CP=\"CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR\", CP=\"CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR\", CP=\"CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR\"\r\nETag: \"6942ac92-b86\"\r\nExpires: Thu, 08 Oct 2026 18:55:15 GMT\r\nCache-Control: max-age=15552000\r\nUUID: 41f5d896-4b1a-49cf-8b41-bce9f0bd5e61\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2950,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 440 x 140, 8-bit colormap, non-interlaced","md5":"31de1d2fa7d918fab2f59984391db1c8","sha1":"4f4b78796b3fbf19971f182175bcd92b01ee470f","sha256":"29f87d6615f36a54e3edc8c7f05eb9b480d1f2989dec8da68e82747d060aea85","sha512":"6fcbe53cd766c7a8c9a866be753f6f58a7bc65b9ad5a0fd05057ae716c51b180f824726cfb1e47a5420b64cfce812778d3dd33bbccda06378b2f972e83cab950","ssdeep":"","tlshash":"515119d45862d572f7924a64d34b7ac17e70091f3f841012fdb82747a81116acce2ef0","first_seen":"2023-04-30T19:02:18Z","last_seen":"2026-04-11T18:55:58.605643Z","times_seen":2758,"resource_available":false,"data":null}},"time_used":1452,"timings":{"blocked":425,"dns":0,"connect":172,"send":0,"wait":311,"receive":0,"ssl":544},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"p1.qhimg.com/d/_onebox/search.png","fqdn":"p1.qhimg.com","domain":"qhimg.com","tld":"com"},"ip":{"addr":"14.0.37.193","port":80,"asn":54994,"as":"ML-1432-54994","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.302Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /d/_onebox/search.png HTTP/1.1\r\nHost: p1.qhimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: image/png\r\nContent-Length: 2941\r\nConnection: keep-alive\r\nExpires: Tue, 05 May 2026 18:59:02 GMT\r\nServer: nginx\r\nLast-Modified: Tue, 26 Aug 2025 10:24:41 GMT\r\nxzp: zhkbrquvsxaf\r\nCache-Control: max-age=7776000\r\nAccess-Control-Allow-Origin: *\r\nTiming-Allow-Origin: *\r\nXCS: HIT\r\nAccept-Ranges: bytes, bytes\r\nx-via: 1.1 PS-000-016u250:2 (Cdn Cache Server V2.0), 1.1 PS-SVO-04vWG245:18 (Cdn Cache Server V2.0)\r\nage: 1\r\nX-Cache: HIT from cache.51cdn.com\r\nx-ws-request-id: 69da9912_PS-SVO-04vWG245_50709-33239\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2941,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 260 x 43, 8-bit colormap, non-interlaced","md5":"996729035d9ea7dbd1dcf49bf99e78d9","sha1":"aba797d529929ca0c864eaf7d3261aee61f3ad78","sha256":"f7b46e16e323b71d7e8308e8aa62ab36453dd3b57935424f4b4166947f0e5863","sha512":"8f769d5a351769cd0d9dffd1596d811c6cfae25143c369a8f7961e7bb7466acde2e3a68b0b9ac21f15f34279bdcc64975a65a8cac8e022b6ca98b0aa91eb7452","ssdeep":"","tlshash":"1351190ea2415d83934ab2c120ba233799b37980d4c0d7d6a29b991a4bb90f8519a0de","first_seen":"2023-04-27T06:45:24Z","last_seen":"2026-04-11T18:55:58.606532Z","times_seen":1643,"resource_available":false,"data":null}},"time_used":528,"timings":{"blocked":423,"dns":1,"connect":51,"send":0,"wait":52,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/uploads/181217/1-1Q21GJ23H20.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.904Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/181217/1-1Q21GJ23H20.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 50251\r\nConnection: keep-alive\r\nLast-Modified: Mon, 17 Dec 2018 09:42:36 GMT\r\nETag: \"117f-c44b-57d3499d1fb00\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":50251,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=337, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=448], baseline, precision 8, 448x334, components 3","md5":"b3dda1fc112502950a70d85fd5aa8ab2","sha1":"e697f7757fc30eb254a4b335d6e4f4a126fee6ec","sha256":"980aa00f00a579f4bdb882c6f60c77a7cab1094bfbb15b82a18d4b5ef9070d14","sha512":"36e9f17e4d5aaffad4ce8ba584738a4a395c687a135f59b480c6a8b18433f9ae094a42bb83020aaaae2b7a6bd82ecfc6fe9fd67e6d5a144b15e3c0f55664f00f","ssdeep":"1536:c6C9Mv6C9MbzK1T3TE9t36rXCXRvVqdDUI:c7Mv7Mm3AD3eCh8dDJ","tlshash":"a333e035f767ce20ece1d13454e5e384a3113a68db935783b01da69f37b06e59d8c24a","first_seen":"2026-04-11T18:55:58.607334Z","last_seen":"2026-04-11T18:55:58.607334Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2969,"timings":{"blocked":1131,"dns":895,"connect":235,"send":0,"wait":237,"receive":471,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/images/powery.png","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.916Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/images/powery.png HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: image/png\r\nContent-Length: 1101\r\nConnection: keep-alive\r\nLast-Modified: Tue, 23 Apr 2019 06:30:34 GMT\r\nETag: \"fdc-44d-5872cb8e6d680\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1101,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 98 x 12, 8-bit/color RGBA, non-interlaced","md5":"4af8943d11e7b62301c0fe748f75048d","sha1":"ce77a321dc2a249c67da89b9db60647e263b4693","sha256":"a3a0f29e850f4c7d33276fd2e30f9d190e643d4d809ac34a4d95b07638d819b7","sha512":"06fe016ba10a5a1387e5718f704e70b8b4fad9f3b2758eba81e878749b9da66ce2e69786e9dd2bd04a6ee93981b2b0896166c08269b0e1346b1e6e0b5e6be06d","ssdeep":"","tlshash":"4e11b9817f395c159ae7ae685a1ad02ac631f8774b2ae9a9e0892f2d230498f4544885","first_seen":"2025-07-03T10:32:44.200496Z","last_seen":"2026-04-11T18:55:58.609215Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1415,"timings":{"blocked":-1,"dns":886,"connect":257,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/titbg.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:16.129Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/titbg.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 1289\r\nConnection: keep-alive\r\nLast-Modified: Sun, 26 Nov 2017 16:00:00 GMT\r\nETag: \"107a-509-55ee4e0c34000\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1289,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 6x35, components 3","md5":"41d8b0a187c560c65e95f090f92d68b4","sha1":"8dd9d654c21b1754e14d1f5d9d5f4f59659b754a","sha256":"51fd4bb39f2c7516ca9f08f2c001fa085736f38bf103917b8b1dd0071dbf9df6","sha512":"2324c6b678bb69b6f4803353b40b8451bf3c12be5a25eb1d61b4940370d555410ffd579bb1b14686ef52d5f38aeb78790a6bd7a7d2344d1fff5bfcbd49cc6843","ssdeep":"","tlshash":"f221670af5433850e468ed713cf7001b5b551bc0bdc3e46164dd841ac9a80fb99654df","first_seen":"2026-04-11T18:55:58.61149Z","last_seen":"2026-04-11T18:55:58.61149Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1721,"timings":{"blocked":1461,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"jt928.com/","fqdn":"jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-11T18:55:13.190Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:13 GMT\r\nContent-Type: text/html\r\nContent-Length: 178\r\nConnection: keep-alive\r\nLocation: http://www.jt928.com/\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":413,"timings":{"blocked":136,"dns":1,"connect":138,"send":0,"wait":137,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.baidu.com/img/baidu_jgylogo3.gif","fqdn":"www.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"103.235.46.102","port":443,"asn":55967,"as":"Beijing Baidu Netcom Science and Technology Co., Ltd.","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.300Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"baidu.com","organization":"Beijing Baidu Netcom Science Technology Co., Ltd"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 09 Jul 2025 07:01:02 GMT","end":"Mon, 10 Aug 2026 07:01:01 GMT"},"fingerprint":{"sha1":"21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63","sha256":"0D:82:2C:9A:90:5A:EF:E9:8F:37:12:C0:E0:26:30:EE:95:33:2C:45:5F:E7:74:5D:F0:8D:BC:79:F4:B0:A1:49"}}},"request":{"raw":"GET /img/baidu_jgylogo3.gif HTTP/1.1\r\nHost: www.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=315360000\r\nContent-Length: 705\r\nContent-Type: image/gif\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nEtag: \"2c1-64c2be3a7e5c0\"\r\nExpires: Tue, 08 Apr 2036 18:55:15 GMT\r\nLast-Modified: Wed, 04 Mar 2026 05:14:07 GMT\r\nP3p: CP=\" OTI DSP COR IVA OUR IND COM \"\r\nServer: Apache\r\nSet-Cookie: BAIDUID=3FD557A8D9C1BE718EC20877D7EFF230:FG=1; expires=Sun, 11-Apr-27 18:55:15 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":705,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 117 x 38","md5":"803bb46a6acef395ed9353de2dcf26f5","sha1":"684764e45ebb267a15c337a6eb671047c7873ead","sha256":"dc506b4253e2bb145e5b370f6088842382a8c2bd0632d9b265744f706727f7f5","sha512":"c4a0592062b3ae535213a51ccee72989f9d33b887ba8374a2778dc0799f92ce4076aa6000e4f8f40f97e66b8ebd1aad6392c0d8a291e79d6ed04d1796fee132c","ssdeep":"","tlshash":"0001440d9253bafbd32d5438485da6b2771c95dfc6cd8212a19f327871284b03161142","first_seen":"2023-04-27T06:45:24Z","last_seen":"2026-04-11T18:55:58.613821Z","times_seen":3429,"resource_available":false,"data":null}},"time_used":1464,"timings":{"blocked":426,"dns":1,"connect":249,"send":0,"wait":267,"receive":0,"ssl":521},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/static/tenx/img/logo.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.918Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/logo.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 48589\r\nConnection: keep-alive\r\nLast-Modified: Thu, 25 Mar 2021 00:15:06 GMT\r\nETag: \"1058-bdcd-5be514eba1680\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48589,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 865x79, components 3","md5":"286731e7f61350fd55ce3d2d88dd4d10","sha1":"7a01efa87237427bc127a601693dd6b463090e5f","sha256":"a434ec5867d6bfbf16bdc0b7bcc942b197abdebdcffacbda85de0d447143922b","sha512":"e772c543f76ef042a1e11246021b95112f8ec4802cc66eb716d8d5d2df6c25dd4807bfa82c217ab668e22f24d2eec988322130a269abd3dd496ee7c39a54655f","ssdeep":"768:a3LwQPjCyAXjN8M1CpA6s+7qXJquWHkdlNIcIISm5a5/Nq+xOdBpGS2TiNzCsCU0:a3L8ysP/+sLSuBImGqDbP/NzbtlyVx","tlshash":"6f23f1d83c63e856c7e12bee468edf5f39679f08706b245db84990f58778119243a288","first_seen":"2026-04-11T18:55:58.614782Z","last_seen":"2026-04-11T18:55:58.614782Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1929,"timings":{"blocked":-1,"dns":885,"connect":256,"send":0,"wait":273,"receive":514,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/js/jquery-1.8.3.min.js","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.675Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/js/jquery-1.8.3.min.js HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: application/javascript;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/5.4.41\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":94161,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (60948), with CRLF, LF line terminators","md5":"005a042a95a7a07ee842ab19a6b6226b","sha1":"7f81fca90e71e3b82f3697e85b4270054941111f","sha256":"19f70f221feb697b4144708baf0b2bf98546177576bde961776e9a66ec093087","sha512":"9adc759693b7c0e02687fbf9260962c672a65706882d169d45e96685bc33eb69e315b6131ebff5e74faaeda382b4d5841a188780a27c04b3d5ef29a9aaec7140","ssdeep":"1536:Z6IzaJETpavYSGaW4snuHEk/yosnSFngC/VEEG0vd0KO4emAp2LSEMBoviR+I1zN:7HvIklosn/BLXjRzMhsSQ","tlshash":"d893f7ed73c6717243ab30ae00af650ef1361869280d8410f129e8f9bc79a499277f7d","first_seen":"2026-04-11T18:55:58.617216Z","last_seen":"2026-04-11T18:55:58.617216Z","times_seen":1,"resource_available":false,"data":null}},"time_used":296,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":156,"receive":140,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/img/ad1.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.707Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/img/ad1.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/static/tenx/css/style.css\r\nCookie: __tins__21763327=%7B%22sid%22%3A%201775933715629%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201775935515629%7D; __51cke__=; __51laig__=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:15 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/static/tenx/img/ad1.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":32567,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":297,"timings":{"blocked":142,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/static/tenx/js/jquery-1.8.3.min.js","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.259Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tenx/js/jquery-1.8.3.min.js HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: application/javascript;charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nX-Powered-By: PHP/5.4.41\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":94161,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (60948), with CRLF, LF line terminators","md5":"005a042a95a7a07ee842ab19a6b6226b","sha1":"7f81fca90e71e3b82f3697e85b4270054941111f","sha256":"19f70f221feb697b4144708baf0b2bf98546177576bde961776e9a66ec093087","sha512":"9adc759693b7c0e02687fbf9260962c672a65706882d169d45e96685bc33eb69e315b6131ebff5e74faaeda382b4d5841a188780a27c04b3d5ef29a9aaec7140","ssdeep":"1536:Z6IzaJETpavYSGaW4snuHEk/yosnSFngC/VEEG0vd0KO4emAp2LSEMBoviR+I1zN:7HvIklosn/BLXjRzMhsSQ","tlshash":"d893f7ed73c6717243ab30ae00af650ef1361869280d8410f129e8f9bc79a499277f7d","first_seen":"2026-04-11T18:55:58.617216Z","last_seen":"2026-04-11T18:55:58.617216Z","times_seen":1,"resource_available":false,"data":null}},"time_used":529,"timings":{"blocked":92,"dns":1,"connect":138,"send":0,"wait":156,"receive":141,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.jt928.com/uploads/201103/1-2011031J641M8.jpg","fqdn":"www.jt928.com","domain":"jt928.com","tld":"com"},"ip":{"addr":"170.130.251.21","port":80,"asn":62904,"as":"AS62904","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:14.289Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/201103/1-2011031J641M8.jpg HTTP/1.1\r\nHost: www.jt928.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jt928.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:14 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/5.4.41\r\nLocation: http://www.hntxsj.com/uploads/201103/1-2011031J641M8.jpg\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":[{"name":"PHP:5.4.41","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T21:55:53.359181Z","times_seen":13637190,"resource_available":true,"data":null}},"time_used":749,"timings":{"blocked":594,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.hntxsj.com/uploads/181217/1-1Q21GJ111R4.jpg","fqdn":"www.hntxsj.com","domain":"hntxsj.com","tld":"com"},"ip":{"addr":"47.104.143.161","port":80,"asn":37963,"as":"Hangzhou Alibaba Advertising Co.,Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jt928.com/","date":"2026-04-11T18:55:15.071Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /uploads/181217/1-1Q21GJ111R4.jpg HTTP/1.1\r\nHost: www.hntxsj.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://www.jt928.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 11 Apr 2026 18:55:16 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 157844\r\nConnection: keep-alive\r\nLast-Modified: Mon, 17 Dec 2018 09:41:12 GMT\r\nETag: \"117b-26894-57d3494d03e00\"\r\nAccept-Ranges: bytes\r\nVary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":100851,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:09:02 16:10:09], baseline, precision 8, 362x268, components 3","md5":"a62d00d415cf47ae871b4e853861401e","sha1":"c1e57bed3daba96a9a479e3895cec7be1b2d0869","sha256":"885266ce371db498f7fa5682ffdcd0d41cda74aa733a0a4ce662cda900ed2558","sha512":"aec17ba7e2421e14cfa0a6f09f97398e0122008eca203ddaa174e8949a6668b1d00c38e069d170ea0930b1c94a65c53a6e8bfc7945424a14953fe6a16d215434","ssdeep":"1536:ZFQrzFQrkvwWNBqmZGHSl2VZMX5rxG+HzFr2/HKiyf6H7CcnglfF62:ZGzG1WNBqmkHSkVZYtrr6uuglt62","tlshash":"e2a30116dba7cca1dec9617ca4f6e2c193521b4dcf231749b05c6b92ab703c19d8d14b","first_seen":"2026-04-11T18:55:58.620353Z","last_seen":"2026-04-11T18:55:58.620353Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2119,"timings":{"blocked":963,"dns":0,"connect":235,"send":0,"wait":237,"receive":684,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}