www.googletagmanager.com/gtag/js?id=UA-165362072-4
142.250.74.168200 OK 73 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-165362072-4
IP 142.250.74.168:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File type JavaScript source, ASCII text, with very long lines (4179)
Hash a72e458d754ed2c8df370ba3f45ddcd7
f73a293d9cc63655dfeaced800e4bf1e5f05fe7c
462a0406979fb8948b82719995d766f2d3721a7e83956505278f3c19f18a02ef
GET /gtag/js?id=UA-165362072-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 18:22:35 GMT
expires: Fri, 26 Apr 2024 18:22:35 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 Apr 2024 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73251
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
indexs.zjqfart.cn/json/umi.2b583632.css
115.56.90.188200 OK 16 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/umi.2b583632.css
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7cb95b6ec47bc915d9d156b0120b6603
96ad98dff5b22630ca84328f316b39316d5c26d2
084f0b067a0e1535035005db856918cb8808830604c6e722242439f253ddaac7
GET /json/umi.2b583632.css HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: W/"65e7f7f9-20ec3"
Server: nginx
Date: Fri, 12 Apr 2024 14:04:07 GMT
Content-Type: text/css
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 16492
Accept-Ranges: bytes
X-NWS-LOG-UUID: 7349077120603391728
Connection: keep-alive
X-Cache-Lookup: Cache Hit
indexs.zjqfart.cn/json/js/DPlayer.min.js
115.56.90.188200 OK 45 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/js/DPlayer.min.js
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 1364f1d45add93bbc7ab09831751cf05
cc132a863b2c5d427df289c32eadd181f34af9c8
199d8d25d8114dcbd9df360e1303a1f9ecbfd66b71424bb4f9f2bf630da5087b
GET /json/js/DPlayer.min.js HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: W/"65e7f7f9-3531d"
Server: nginx
Date: Fri, 15 Mar 2024 13:27:40 GMT
Content-Type: application/javascript
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 44942
Accept-Ranges: bytes
X-NWS-LOG-UUID: 3257039960865454007
Connection: keep-alive
X-Cache-Lookup: Cache Hit
indexs.zjqfart.cn/json/js/fullscreen.min.js
115.56.90.188200 OK 884 B URL GET HTTP/1.1 indexs.zjqfart.cn/json/js/fullscreen.min.js
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (786)
Hash aa5a0204671b4bb4503672e22a88b0aa
b3aa2afa0829afbb9ec73fad16f3a7503440af7a
0a4a57a2a1e2adba25cfc5e12cde7a8e759aeb9c8b56082aff943e457c28d31e
GET /json/js/fullscreen.min.js HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: "65e7f7f9-c19"
Server: nginx
Date: Sat, 20 Apr 2024 19:43:33 GMT
Content-Type: application/javascript
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 884
Accept-Ranges: bytes
X-NWS-LOG-UUID: 9716117271645793857
Connection: keep-alive
X-Cache-Lookup: Cache Hit
indexs.zjqfart.cn/json/js/hls.min.js
115.56.90.188200 OK 71 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/js/hls.min.js
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 539732563219e1f0ce48aacdb77d62d4
a72c05fff1bcdd12c8865e59c1077ae4e3789fba
3a9297cfa8fada7008059f4e5bc2bf9a69c684dbdbe72231245c800505864274
GET /json/js/hls.min.js HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: "65e7f7f9-3a334"
Server: nginx
Date: Wed, 17 Apr 2024 17:02:22 GMT
Content-Type: application/javascript
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 71420
Accept-Ranges: bytes
X-NWS-LOG-UUID: 16081862775426361736
Connection: keep-alive
X-Cache-Lookup: Cache Hit
baidutongji.baidutongj.com/bootstrap
8.219.174.235200 89 B URL GET HTTP/1.1 baidutongji.baidutongj.com/bootstrap
IP 8.219.174.235:443
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerTrustAsia Technologies, Inc.
Subjectbaidutongji.baidutongj.com
FingerprintEF:8C:A4:00:1B:ED:09:DC:EC:2D:43:8C:DE:55:9E:36:02:E8:A8:E3
ValiditySat, 02 Mar 2024 00:00:00 GMT - Sun, 02 Mar 2025 23:59:59 GMT
File type Unicode text, UTF-8 text, with no line terminators
Hash 0d922787acbc5af0227731175ada54ea
2de490425b76266e1860299c0ab904bb87a0c04a
2597988e23067c758514ffadc0fcf071c4864a8d4c1d09aa0bab2057bb15d0eb
GET /bootstrap HTTP/1.1
Host: baidutongji.baidutongj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx
Date: Fri, 26 Apr 2024 18:22:37 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 89
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=G-S50MDY57KE&l=dataLayer&cx=c
142.250.74.168200 OK 89 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-S50MDY57KE&l=dataLayer&cx=c
IP 142.250.74.168:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File type JavaScript source, ASCII text, with very long lines (5945)
Hash b5cc39de6aa7386bfef32dbb246262d2
97d30ebdc94f3fa9c2fd91e643251048ef2d793a
25031382850b7e888b71160096ffba3fad2f018983fb712b46c20437022cfa20
GET /gtag/js?id=G-S50MDY57KE&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 18:22:37 GMT
expires: Fri, 26 Apr 2024 18:22:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89416
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
indexs.zjqfart.cn/json/umi.35e5d040.js
115.56.90.188200 OK 404 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/umi.35e5d040.js
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 404 kB (403983 bytes)
Hash 07e88c0787f4c89ab7406a8a27edec33
b927251377942b83ede8cfa7376b40a2a0081f41
6e5062971c1c8a242c75c6c1d567867301c7cb4e65a2adbc67f3fedf6b5a1b8d
Analyzer Verdict Alert Public Nextron YARA rules malware Detects hex encoded code that has been base64 encoded
GET /json/umi.35e5d040.js HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Fri, 08 Mar 2024 21:41:37 GMT
Content-Encoding: gzip
Etag: "65eb8611-132b39"
Server: nginx
Date: Fri, 22 Mar 2024 13:45:06 GMT
Content-Type: application/javascript
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 403983
Accept-Ranges: bytes
X-NWS-LOG-UUID: 6473391179074582438
Connection: keep-alive
X-Cache-Lookup: Cache Hit
indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~a9630bf7.b1d3b007.async.js
115.56.90.188200 OK 7.2 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~a9630bf7.b1d3b007.async.js
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (20172), with no line terminators
Hash aa146bb0088faa4c508079a94777dbfe
30879406c97d87412db2aa046c1d452c1894c11e
f6322b42193112414b354524dd5c050a2cceff67b16b987fc938c7897c279c2a
GET /json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~a9630bf7.b1d3b007.async.js HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: W/"65e7f7f9-4ecc"
Server: nginx
Date: Wed, 20 Mar 2024 07:57:10 GMT
Content-Type: application/javascript
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 7244
Accept-Ranges: bytes
X-NWS-LOG-UUID: 13990507473503602138
Connection: keep-alive
X-Cache-Lookup: Cache Hit
indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~14ee3192.6be24bd0.async.js
115.56.90.188200 OK 2.5 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~14ee3192.6be24bd0.async.js
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (6788), with no line terminators
Hash 09b6472a62cb710c1f15e6c9c89d910d
5c5fad8dcdb5426261f4e258d9a18dd2516f7d59
34f594daaa9a4d8e9abb56e02b43c711a09892d8d8af7379d65cb7038ba779cc
GET /json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~14ee3192.6be24bd0.async.js HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: W/"65e7f7f9-1a84"
Server: nginx
Date: Fri, 15 Mar 2024 14:26:16 GMT
Content-Type: application/javascript
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 2527
Accept-Ranges: bytes
X-NWS-LOG-UUID: 11179316023991854563
Connection: keep-alive
X-Cache-Lookup: Cache Hit
indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~14ee3192.be1494e0.chunk.css
115.56.90.188200 OK 8.1 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~14ee3192.be1494e0.chunk.css
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2049c2d18f2978d81f86cb4ec94e9d93
247f6abe98a433a228da5439db9f30e718b5b713
8b9f12cfc6642e82f72137b28b4b5caf79a6960ca5b2385cf0e8b2964d544a05
GET /json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~14ee3192.be1494e0.chunk.css HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: "65e7f7f9-11c19"
Server: nginx
Date: Sun, 14 Apr 2024 01:57:56 GMT
Content-Type: text/css
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 8074
Accept-Ranges: bytes
X-NWS-LOG-UUID: 5915462900907695169
Connection: keep-alive
X-Cache-Lookup: Cache Hit
indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~a9630bf7.26d8372d.chunk.css
115.56.90.188200 OK 2.0 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~a9630bf7.26d8372d.chunk.css
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type ASCII text, with very long lines (10364), with no line terminators
Hash 5c0e97e53bab4418774467eb0f971183
fbcd1cc473b3cc24fcdb4addfd8d3f3128d61547
965f093b1e1f19a4d905b654ce71c593ef7e0d5ff757f0e6648d86a7138dc1f3
GET /json/vendors~layouts__BasicLayout~layouts__SecurityLayout~layouts__UserLayout~layouts__VipLogin~p__AskVid~a9630bf7.26d8372d.chunk.css HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: W/"65e7f7f9-287c"
Server: nginx
Date: Wed, 24 Apr 2024 06:01:49 GMT
Content-Type: text/css
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 1968
Accept-Ranges: bytes
X-NWS-LOG-UUID: 4709712007903165305
Connection: keep-alive
X-Cache-Lookup: Cache Hit
indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__UserLayout~p__AskVideoList~p__BloggerList~p__BloggerListVideo~~9e82a60c.488ee397.async.js
115.56.90.188200 OK 5.0 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__UserLayout~p__AskVideoList~p__BloggerList~p__BloggerListVideo~~9e82a60c.488ee397.async.js
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (23392), with no line terminators
Hash 220664469d005e85a5cfeaceff12852b
f7dda5efdf1b99fef9da3ea2d96c25a766b16758
991fe1e8e4f3600575283f80a94084c481d196805a8fefee3647e223750c426b
GET /json/vendors~layouts__BasicLayout~layouts__UserLayout~p__AskVideoList~p__BloggerList~p__BloggerListVideo~~9e82a60c.488ee397.async.js HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: W/"65e7f7f9-5b60"
Server: nginx
Date: Thu, 21 Mar 2024 10:45:26 GMT
Content-Type: application/javascript
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 4962
Accept-Ranges: bytes
X-NWS-LOG-UUID: 15632675853941126447
Connection: keep-alive
X-Cache-Lookup: Cache Hit
indexs.zjqfart.cn/json/layouts__BasicLayout.6c544512.chunk.css
115.56.90.188200 OK 27 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/layouts__BasicLayout.6c544512.chunk.css
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 90da84e830edfdc98e7425b9468f48ef
8587a1297b4a95c95bdf99a2fbb48f3a3ce7d62b
ebaa5ac15bcc5134a5dfc1de5a16e3e561915839df2897ed62cc7d17ab800de9
GET /json/layouts__BasicLayout.6c544512.chunk.css HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: W/"65e7f7f9-2baf0"
Server: nginx
Date: Wed, 06 Mar 2024 05:03:55 GMT
Content-Type: text/css
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 27392
Accept-Ranges: bytes
X-NWS-LOG-UUID: 10728978595527090195
Connection: keep-alive
X-Cache-Lookup: Cache Hit
hm.baidu.com/hm.js?d72936b577d7f5edb33ab6b7fdea8051
111.45.3.198200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?d72936b577d7f5edb33ab6b7fdea8051
IP 111.45.3.198:443
ASN #56040 China Mobile communications corporation
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (618)
Hash df6baa4bc0a19fd10d8d3cac9f4ffbe6
8f0b141751ee19c94c58acc667892999ebcaffb1
d5dfd63940d7629d8a3b5ec6fbb3518f3456d62aa74494cc9188cfc6cfd8ea06
GET /hm.js?d72936b577d7f5edb33ab6b7fdea8051 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11256
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 18:22:39 GMT
Etag: 8677a2173b981bacb418533e1a514622
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=F0D135EE471B4719; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
indexs.zjqfart.cn/json/layouts__BasicLayout.ca81eb5f.async.js
115.56.90.188200 OK 179 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/layouts__BasicLayout.ca81eb5f.async.js
IP 115.56.90.188:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 179 kB (178640 bytes)
Hash 885917143f813a0147820bbf7f17206c
a80b88899150a8350a0d1a01d7abfede48216d0f
de6834c4624c875b81cee6ad439c9db70ee2e629179c07d037b2f94319215112
GET /json/layouts__BasicLayout.ca81eb5f.async.js HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: W/"65e7f7f9-853cd"
Server: nginx
Date: Wed, 06 Mar 2024 05:03:55 GMT
Content-Type: application/javascript
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 178640
Accept-Ranges: bytes
X-NWS-LOG-UUID: 3303134070655951543
Connection: keep-alive
X-Cache-Lookup: Cache Hit
indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__UserLayout~p__AskVideoList~p__BloggerList~p__BloggerListVideo~~7dd54bcf.137aec48.async.js
123.6.40.224200 OK 353 kB URL GET HTTP/1.1 indexs.zjqfart.cn/json/vendors~layouts__BasicLayout~layouts__UserLayout~p__AskVideoList~p__BloggerList~p__BloggerListVideo~~7dd54bcf.137aec48.async.js
IP 123.6.40.224:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 353 kB (352644 bytes)
Hash 2a78bf399de73f12e433ef5d0f229101
750e1f8b6720476129a99783f14f6e9bcbce50e5
84e228c452561f2dc07ac93f601fef77e37be87723cc808cc90ae176fef6ad60
GET /json/vendors~layouts__BasicLayout~layouts__UserLayout~p__AskVideoList~p__BloggerList~p__BloggerListVideo~~7dd54bcf.137aec48.async.js HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: "65e7f7f9-10c1ce"
Server: nginx
Date: Wed, 06 Mar 2024 09:55:24 GMT
Content-Type: application/javascript
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 352644
Accept-Ranges: bytes
X-NWS-LOG-UUID: 7331760791772857419
Connection: keep-alive
X-Cache-Lookup: Cache Hit
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=77151392&si=d72936b577d7f5edb33ab6b7fdea8051&v=1.3.0&lv=1&sn=22299&r=0&ww=1280&u=https%3A%2F%2Fhfcd66.com%2Fen&tt=91TV
111.45.3.198200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=77151392&si=d72936b577d7f5edb33ab6b7fdea8051&v=1.3.0&lv=1&sn=22299&r=0&ww=1280&u=https%3A%2F%2Fhfcd66.com%2Fen&tt=91TV
IP 111.45.3.198:443
ASN #56040 China Mobile communications corporation
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=77151392&si=d72936b577d7f5edb33ab6b7fdea8051&v=1.3.0&lv=1&sn=22299&r=0&ww=1280&u=https%3A%2F%2Fhfcd66.com%2Fen&tt=91TV HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 26 Apr 2024 18:22:39 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=29B5EA3C799AF04D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
indexs.zjqfart.cn/json/icon.png
115.56.90.188 11 kB URL GET indexs.zjqfart.cn/json/icon.png
IP 115.56.90.188:0
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type PNG image data, 234 x 239, 8-bit/color RGBA, non-interlaced
Hash e7edabb29e5b2694b2c5045335abee62
ceeb132f5c16a2ae210eef62bb2f35978b6791ff
c37f229e2c245dd049c2570feebe7708ef570d6852d8865e9ae0c9f0a94d57df
GET /json/icon.png HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hfcd66.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Content-Encoding: gzip
Etag: W/"65e7f7f9-2bac"
Server: nginx
Date: Fri, 08 Mar 2024 12:20:22 GMT
Content-Type: image/png
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 11167
Accept-Ranges: bytes
X-NWS-LOG-UUID: 6483657848135992586
Connection: keep-alive
X-Cache-Lookup: Cache Hit
Cache-Control: max-age=3600
indexs.zjqfart.cn/json/static/telegram.83e6c0a1.svg
123.6.40.224200 OK 710 B URL GET HTTP/1.1 indexs.zjqfart.cn/json/static/telegram.83e6c0a1.svg
IP 123.6.40.224:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerTrustAsia Technologies, Inc.
Subjectindexs.zjqfart.cn
Fingerprint58:49:CD:8B:D3:8C:F8:80:95:79:C7:7D:93:56:22:2A:CB:58:27:61
ValidityWed, 22 Nov 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Hash 881693c4de111a1fc53c977dc08a38b0
3ea07153ef560e2519c1956002a784f0fd562051
9924b5c6628b75571a26fdd4a9bc6ed2635f04049272f65460d21d93a6922e99
GET /json/static/telegram.83e6c0a1.svg HTTP/1.1
Host: indexs.zjqfart.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 06 Mar 2024 04:58:33 GMT
Etag: "65e7f7f9-2c6"
Server: nginx
Date: Sun, 17 Mar 2024 00:39:38 GMT
Content-Type: image/svg+xml
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With,content-type,app_type,sign,did,time
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Content-Length: 710
Accept-Ranges: bytes
X-NWS-LOG-UUID: 12288407679164834202
Connection: keep-alive
X-Cache-Lookup: Cache Hit
Cache-Control: max-age=3600
enctvmage.bhstz.com/77xxx/files/202403/26/1711443846_RhfmuiMvzw.png
54.230.111.98200 OK 165 kB URL GET HTTP/2 enctvmage.bhstz.com/77xxx/files/202403/26/1711443846_RhfmuiMvzw.png
IP 54.230.111.98:443
Certificate IssuerAmazon
Subjectenctvmage.bhstz.com
FingerprintEC:77:0C:85:DA:D5:BF:0D:5F:91:90:BC:84:AD:4B:27:41:48:CB:2D
ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Size 165 kB (164632 bytes)
Hash 57a3de6c6977029bcc7933c5137ec9aa
6366e2128357383f3e36fc3be98cd8223b823271
3309cad3e9395ec3daac96f45213aca7e10a7015cb27514df1c94739193e1fd6
GET /77xxx/files/202403/26/1711443846_RhfmuiMvzw.png HTTP/1.1
Host: enctvmage.bhstz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 164632
server: openresty
last-modified: Tue, 26 Mar 2024 09:04:06 GMT
accept-ranges: bytes
date: Fri, 26 Apr 2024 18:22:41 GMT
etag: "66028f86-28318"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4ugzlRoD1ga4NnsngRrTAB25UA3C-CKhqSuBwRgphtYZJPOK0fhYSw==
age: 36531
X-Firefox-Spdy: h2
enctvmage.bhstz.com/77xxx/files/202404/08/1712577272_E8hHeUf4il.jpg
54.230.111.98200 OK 30 kB URL GET HTTP/2 enctvmage.bhstz.com/77xxx/files/202404/08/1712577272_E8hHeUf4il.jpg
IP 54.230.111.98:443
Certificate IssuerAmazon
Subjectenctvmage.bhstz.com
FingerprintEC:77:0C:85:DA:D5:BF:0D:5F:91:90:BC:84:AD:4B:27:41:48:CB:2D
ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, progressive, precision 8, 1080x1080, components 3
Hash b621c773dfdeeff742757521f19adf62
8fda197e7f6d73b04339b3616e47135a039b5978
4a811bdddc47f7ea7fd5d6c174e5d78a47127b97220ea0b756be19837b8a6bb4
GET /77xxx/files/202404/08/1712577272_E8hHeUf4il.jpg HTTP/1.1
Host: enctvmage.bhstz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 29505
server: openresty
last-modified: Mon, 08 Apr 2024 11:54:32 GMT
accept-ranges: bytes
date: Fri, 26 Apr 2024 18:22:41 GMT
etag: "6613daf8-7341"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i7WXGDZf4poFjO1iVwhD7cdIOGyZKLI3VfF4eN9rh5uPHDWnFTtpvA==
age: 53417
X-Firefox-Spdy: h2
enctvmage.bhstz.com/77xxx/files/logo1/MaoMiAV.jpeg
54.230.111.98200 OK 2.0 kB URL GET HTTP/2 enctvmage.bhstz.com/77xxx/files/logo1/MaoMiAV.jpeg
IP 54.230.111.98:443
Certificate IssuerAmazon
Subjectenctvmage.bhstz.com
FingerprintEC:77:0C:85:DA:D5:BF:0D:5F:91:90:BC:84:AD:4B:27:41:48:CB:2D
ValidityFri, 09 Jun 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x120, components 3
Hash 6e98c64b4ab1acde7ccfbd750af7a7ec
481cedeb59da60db8c9923976740db1664c34cc9
92eabc41d2cf27d3c744c8ed4079235fb535855ef5b10b67d432ab5ab63818a7
GET /77xxx/files/logo1/MaoMiAV.jpeg HTTP/1.1
Host: enctvmage.bhstz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2049
server: openresty
date: Fri, 26 Apr 2024 06:25:36 GMT
last-modified: Thu, 29 Dec 2022 16:15:04 GMT
etag: "63adbd08-801"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zKEjcB5spNR_y_r48F3Og-4tjT-k8JuGp7dWbhBckGDUus9wQW37ag==
age: 43025
X-Firefox-Spdy: h2
hfcd66.com/api/config/list
194.53.53.10200 OK 3.6 kB URL POST HTTP/3 hfcd66.com/api/config/list
IP 194.53.53.10:443
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services LLC
Subjecthfcd66.com
Fingerprint6C:6C:67:15:B4:8D:F5:3E:73:20:04:81:1D:3C:EC:E2:7C:D5:AD:9D
ValiditySun, 14 Apr 2024 03:36:36 GMT - Sat, 13 Jul 2024 03:36:35 GMT
Hash 3af6adf2145394374d7a47252c43f049
bf490e437d4b2882ddf16e7e4cb00a4b799a05a6
7d8267596ae752d426bda07bea29d31e29e968e1a544a387ab9bb0331df4cf75
POST /api/config/list HTTP/1.1
Host: hfcd66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
suffix: RMAWY8
Content-Length: 124
Origin: https://hfcd66.com
DNT: 1
Connection: keep-alive
Cookie: _ga_S50MDY57KE=GS1.1.1714155758.1.0.1714155758.0.0.0; _ga=GA1.1.1274821359.1714155758; Hm_lvt_d72936b577d7f5edb33ab6b7fdea8051=1714155759; Hm_lpvt_d72936b577d7f5edb33ab6b7fdea8051=1714155759
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:22:40 GMT
content-type: application/json; charset=utf-8
x-powered-by: PHP/7.2.34
access-control-allow-methods: *, GET,POST,OPTIONS,DELETE, GET,POST,PUT,DELETE,OPTIONS
access-control-allow-headers: x-requested-with,content-type,suffix, Origin,XMLHttpRequest,X-Requested-With,Content-Type,Accept,Connection,User-Agent,Cookie,access-control-allow-methods,access-control-allow-origin,content-type,suffix,lang, X-Requested-With,content-type,app_type,sign,did,time
access-control-allow-origin: *, *
x-cache-lookup: Cache Miss, Cache Miss
x-nws-log-uuid: 13617967243217331
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SbULGewpnpaP6Eg1CjX27%2B3NuJTsbhTHxzIrxNL%2BPPTpSVnFPc18g1fw2o14b2r%2Bf47lAn2QsaHPWTGxVlaPHoM%2FWwO8%2BQJSJ0WnKDmwLveIxBZB11KUi%2F2CoYGh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a8997c2ce256c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
image.yahoo10007.icu/KFUB/images/index/logo.jpg
104.208.71.232200 OK 40 kB URL GET HTTP/2 image.yahoo10007.icu/KFUB/images/index/logo.jpg
IP 104.208.71.232:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerUnizeto Technologies S.A.
Subjectgamelist.yahoo10000.icu
FingerprintE2:D6:C9:B4:67:71:D4:E5:E6:F7:98:F3:27:B4:BE:6E:9F:36:11:2F
ValiditySun, 29 Oct 2023 07:44:27 GMT - Wed, 27 Nov 2024 07:44:26 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=154, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=175], baseline, precision 8, 175x154, components 3
Hash 96fdc7002f1258d988337d291965ea5a
9b85bbd0b127ca359cdc8702fbf3992340d84975
0a8b47cf71becd046ee572cd67d740a975fbe5ff290d7c552e0b08008733dcc8
GET /KFUB/images/index/logo.jpg HTTP/1.1
Host: image.yahoo10007.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:22:42 GMT
content-type: image/jpeg
content-length: 39541
last-modified: Fri, 29 Dec 2023 13:07:07 GMT
etag: "658ec47b-9a75"
expires: Fri, 26 Apr 2024 19:22:42 GMT
cache-control: max-age=3600
access-control-allow-origin: *
x-proxy-cache: HIT
x-remote-addr: 91.90.42.154
x-forwarded-port: 443
http-geo-ipcountry: NO
accept-ranges: bytes
X-Firefox-Spdy: h2
www.hgty3379.com/pc2/ypt/static/upload/compression/new/03c3b27f34b01cd851514d9355be4026.png?noHome=1
143.92.34.39200 OK 86 kB URL GET HTTP/1.1 www.hgty3379.com/pc2/ypt/static/upload/compression/new/03c3b27f34b01cd851514d9355be4026.png?noHome=1
IP 143.92.34.39:443
ASN #64050 BGPNET Global ASN
Certificate IssuerLet's Encrypt
Subjectwww.hgty3379.com
FingerprintC0:FB:55:4B:9C:86:B3:6E:07:46:18:C1:B0:DD:EE:D7:84:24:27:F1
ValidityWed, 10 Apr 2024 19:29:30 GMT - Tue, 09 Jul 2024 19:29:29 GMT
File type PNG image data, 2000 x 561, 8-bit/color RGBA, non-interlaced
Hash 82508791e1a0057cea533553d49da2aa
ca753434e69e04b4d50f2ec3e8a5e460623eb408
e9f17d99d4b0b6a5c29e28d5c5cbbaadee4d3ae1570fb497fc007f8baf4754e3
GET /pc2/ypt/static/upload/compression/new/03c3b27f34b01cd851514d9355be4026.png?noHome=1 HTTP/1.1
Host: www.hgty3379.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Length: 85462
Content-Type: image/png
Date: Fri, 26 Apr 2024 09:18:02 GMT
ETag: "1714123082"
Last-Modified: Fri, 26 Apr 2024 09:18:02 GMT
Server: openresty/1.21.4.2
X-Amz-Id-2: ixQtoKhewgyUCpD4z5tERjUld4hI4qhopMitluurMQ/Pxh6sVW81iN43A+cPgxJT+MCXKzg2Kiw=
X-Amz-Request-Id: 9DXKCWB4GN6X2QHA
X-Amz-Version-Id: LydeaKqJjzdxJIOkdfaDBmoc05R6NIdc
X-Cache: HIT, policy, disk
194.53.53.10200 OK 8.3 kB URL User Request GET HTTP/2 IP 194.53.53.10:443
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services LLC
Subjecthfcd66.com
Fingerprint6C:6C:67:15:B4:8D:F5:3E:73:20:04:81:1D:3C:EC:E2:7C:D5:AD:9D
ValiditySun, 14 Apr 2024 03:36:36 GMT - Sat, 13 Jul 2024 03:36:35 GMT
File type HTML document, ASCII text, with very long lines (8727), with no line terminators
Hash cd33dbaca4f0f19c27a6b8d39dcd6c80
226658f091192cc3182cdb95bd44c9db4b0a3574
4c5e39145db3dbb2ff9da2bf1d4f59c690adad7c387eef2ff8b780f573b9640e
GET /en HTTP/1.1
Host: hfcd66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:22:34 GMT
content-type: text/html
last-modified: Wed, 06 Mar 2024 04:58:33 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With,content-type,app_type,sign,did,time
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k1XWITPcM2Ii6bhOhqWVLquHFuwf%2B5whL%2BkfZ8iNVogSGfzsEESo8BOWXc0aHO78WIaZQYb7%2Fzmjw7b3yvt4oYelfxFbUOpXnhXW2X9%2FxJLHQZdZjg%2FPbiazYEDx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a899599b7956c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
hfcd66.com/api/announcement/list
194.53.53.10200 OK 529 B URL POST HTTP/3 hfcd66.com/api/announcement/list
IP 194.53.53.10:443
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services LLC
Subjecthfcd66.com
Fingerprint6C:6C:67:15:B4:8D:F5:3E:73:20:04:81:1D:3C:EC:E2:7C:D5:AD:9D
ValiditySun, 14 Apr 2024 03:36:36 GMT - Sat, 13 Jul 2024 03:36:35 GMT
File type troff or preprocessor input, ASCII text, with very long lines (545), with no line terminators
Hash 8f09569b1a108610108722c88c0a1332
495dd28bffbb18de07523d4402759c2e44c9b26a
1a82d7f90ff12ac8dfc4a6e1b74265dd978706644e78c98d0884df4c00348084
POST /api/announcement/list HTTP/1.1
Host: hfcd66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
suffix: P6N9OD
Content-Length: 168
Origin: https://hfcd66.com
DNT: 1
Connection: keep-alive
Cookie: _ga_S50MDY57KE=GS1.1.1714155758.1.0.1714155758.0.0.0; _ga=GA1.1.1274821359.1714155758; Hm_lvt_d72936b577d7f5edb33ab6b7fdea8051=1714155759; Hm_lpvt_d72936b577d7f5edb33ab6b7fdea8051=1714155759
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:22:41 GMT
content-type: application/json; charset=utf-8
x-powered-by: PHP/7.2.34
access-control-allow-methods: *, GET,POST,OPTIONS,DELETE, GET,POST,PUT,DELETE,OPTIONS
access-control-allow-headers: x-requested-with,content-type,suffix, Origin,XMLHttpRequest,X-Requested-With,Content-Type,Accept,Connection,User-Agent,Cookie,access-control-allow-methods,access-control-allow-origin,content-type,suffix,lang, X-Requested-With,content-type,app_type,sign,did,time
access-control-allow-origin: *, *
x-cache-lookup: Cache Miss, Cache Miss
x-nws-log-uuid: 8886888436227949006
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lEAY0liuAdAF0Ye81bd%2FQTEcp693G1ICTnP3FkStSWwPQpbidR3Grhjd4Mjh2E9deO7xxQrPyVNpt3LhrVbxjTLZlIgnavIkXw87FUGdGNH3rkT9DKxCUhB07JDL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a89982a89356c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hgty3379.com/pc2/ypt/static/upload/compression/new/03c3b27f34b01cd851514d9355be4026.png?noHome=1
16.162.92.0301 Moved Permanently 86 kB URL GET HTTP/1.1 hgty3379.com/pc2/ypt/static/upload/compression/new/03c3b27f34b01cd851514d9355be4026.png?noHome=1
IP 16.162.92.0:443
Certificate IssuerLet's Encrypt
Subjectwww.hgty3379.com
FingerprintC0:FB:55:4B:9C:86:B3:6E:07:46:18:C1:B0:DD:EE:D7:84:24:27:F1
ValidityWed, 10 Apr 2024 19:29:30 GMT - Tue, 09 Jul 2024 19:29:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pc2/ypt/static/upload/compression/new/03c3b27f34b01cd851514d9355be4026.png?noHome=1 HTTP/1.1
Host: hgty3379.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Content-Length: 175
Content-Type: text/html
Date: Fri, 26 Apr 2024 18:22:42 GMT
Location: https://www.hgty3379.com/pc2/ypt/static/upload/compression/new/03c3b27f34b01cd851514d9355be4026.png?noHome=1
Server: openresty/1.21.4.2
X-Cache: BYPASS, Status: 301
hfcd66.com/api/title/list
194.53.53.10200 OK 4.4 kB URL POST HTTP/3 hfcd66.com/api/title/list
IP 194.53.53.10:443
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services LLC
Subjecthfcd66.com
Fingerprint6C:6C:67:15:B4:8D:F5:3E:73:20:04:81:1D:3C:EC:E2:7C:D5:AD:9D
ValiditySun, 14 Apr 2024 03:36:36 GMT - Sat, 13 Jul 2024 03:36:35 GMT
File type troff or preprocessor input, ASCII text, with very long lines (4471), with no line terminators
Hash 4f6127c9a2189f02e8b9ab4bc574e7f1
8b3e07d589c7f1fe3c22420e80c8f0259afda812
7ef280dc9ffaff6dc53f79d9cd9d403dab2cffc14c92f6934db54be03149e8b7
POST /api/title/list HTTP/1.1
Host: hfcd66.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hfcd66.com/en
Content-Type: application/json
suffix: RET79G
Content-Length: 124
Origin: https://hfcd66.com
DNT: 1
Connection: keep-alive
Cookie: _ga_S50MDY57KE=GS1.1.1714155758.1.0.1714155758.0.0.0; _ga=GA1.1.1274821359.1714155758
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:22:39 GMT
content-type: application/json; charset=utf-8
x-powered-by: PHP/7.2.34
access-control-allow-methods: *, GET,POST,OPTIONS,DELETE, GET,POST,PUT,DELETE,OPTIONS
access-control-allow-headers: x-requested-with,content-type,suffix, Origin,XMLHttpRequest,X-Requested-With,Content-Type,Accept,Connection,User-Agent,Cookie,access-control-allow-methods,access-control-allow-origin,content-type,suffix,lang, X-Requested-With,content-type,app_type,sign,did,time
access-control-allow-origin: *, *
x-cache-lookup: Cache Miss, Cache Miss
x-nws-log-uuid: 6552726958209871125
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OnrjvRoKMON1A6OWHO00WOJkUZWfA4T6g6ZY6vFFqnIRp6gOiN3gusnjxwyq5Lnlzu6FPewna9onaZNucTQZH4BKg81H4S6k%2BFMG1eVuFEiIgNEXK8dkxIjO9INA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a89972febc56c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400