firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 11 Oct 2022 21:48:54 GMT
Expires: Tue, 11 Oct 2022 22:30:39 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: d0t0GxzXClirQP4Gx-l-I_xDH3RnMcg7Fad4BIZH3560t3Wz2GPZQA==
Age: 2210
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e0602913f3d432ffbfaa654440972ee1
e5aaf31749e65875fd840091f9a3bba641de413d
5495ad212166703dcd1d17d7aa6ff4d1c40e73dfad703d24f00f60f35bc7d56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5495AD212166703DCD1D17D7AA6FF4D1C40E73DFAD703D24F00F60F35BC7D56C"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7580
Expires: Wed, 12 Oct 2022 00:32:04 GMT
Date: Tue, 11 Oct 2022 22:25:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ceb45134349ef6afcb5b4bb730678041
15dc3ecb18e30e77cd7c694dd237bff9be583e7a
a39e0827fa31257562bb681e312ec2944a862e9ad4e568a803f6e09e994a6018
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A39E0827FA31257562BB681E312EC2944A862E9AD4E568A803F6E09E994A6018"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2627
Expires: Tue, 11 Oct 2022 23:09:31 GMT
Date: Tue, 11 Oct 2022 22:25:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JRlj3VgvzaY0JuD3iysTddZlX+wIW0mX1VouftxU79FABmHhK61kD+LQegVJ0XCC9pufupqrfx4=
x-amz-request-id: KHHY7W413FZY6RXP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 11 Oct 2022 21:33:05 GMT
age: 3159
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 22:25:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Tue, 11 Oct 2022 21:29:41 GMT
Cache-Control: max-age=3600
Expires: Tue, 11 Oct 2022 21:41:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uukaky5g-9-9T1EgVhqvbjVr4lG2Ut0f3WOHAzfyhM2f6LyghgI4-Q==
Age: 3363
ocsp.digicert.com/
200 OK 471 B IP
Hash 34c15fee665f03aab24038618bb2d9a7
6b90ea5a496581b83daf1764938d1db1a5a32bb4
93e99055eb4a94f808eed2fac338d6c480047c30a56498b2a65036a7d5bdea04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5140
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 22:25:44 GMT
Last-Modified: Tue, 11 Oct 2022 21:00:04 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
cjmodel.net/view_18/view_17/view_16/id_22.html
200 OK 5.5 kB URL HTTP/1.1 cjmodel.net/view_18/view_17/view_16/id_22.html
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1471), with CRLF, CR, LF line terminators
Hash 7d03d941472a846a917fd447914185df
326e408072c8ec1f4e33b862699e1ee6a373cd2a
1cf219a892344959918f29a63f9c6537f37e2c861144060864568178bdf36a53
Analyzer Verdict Alert fortinet Malware
GET /view_18/view_17/view_16/id_22.html HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55; path=/; HttpOnly
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yzn1s7QayvIff+yGEKhqxQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IAGnHEbdtqEB+TuLQKnHgsqpH9g=
cjmodel.net/templates/css/index.css
200 OK 8.0 kB URL HTTP/1.1 cjmodel.net/templates/css/index.css
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type ISO-8859 text, with very long lines (679), with CRLF, LF line terminators
Hash a18952afb833d17ade0e937e316736b5
7473380cd2324532bc8a0f6f357a006957ba0c44
2c252b589e6fa617fee09c2955edfe9792cfc68b085246285771dc286b273a8e
GET /templates/css/index.css HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 26 Sep 2017 09:44:38 GMT
Accept-Ranges: bytes
ETag: "0c78311ac36d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 7999
cjmodel.net/templates/css/typography.css
200 OK 1.2 kB URL HTTP/1.1 cjmodel.net/templates/css/typography.css
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash d843923fdeed166bb288f808dafd01f6
901ee0a8a1f385f4de7435b041dea0cfb3acca3c
133e60871ca9314d6ceb869b608c4dbc2ab530da325dfffcff104ca5d67beb2b
GET /templates/css/typography.css HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 30 Dec 2019 09:07:14 GMT
Accept-Ranges: bytes
ETag: "04dc886f0bed51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 1215
cjmodel.net/templates/js/slider.js
200 OK 2.4 kB URL HTTP/1.1 cjmodel.net/templates/js/slider.js
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash f0bbcc357769e3bba96de8eff82c6fe5
0234b2cd51f75fcd68bd053e1ba069875de0c819
3dc63843077e1a41e3c43fd0ec2b1dc989b2d0b0b2de5d51739f38e21fe7f233
Analyzer Verdict Alert fortinet Malware
GET /templates/js/slider.js HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Sat, 15 Apr 2017 08:37:03 GMT
Accept-Ranges: bytes
ETag: "69895475c3b5d21:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 2399
cjmodel.net/templates/js/ScrollPic.js
200 OK 2.6 kB URL HTTP/1.1 cjmodel.net/templates/js/ScrollPic.js
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type Unicode text, UTF-8 (with BOM) text, with very long lines (6737), with CRLF line terminators
Hash f7b4187cb2ccb2ae660d8159f89584e2
f31f21fab22ba0056f862755a98832e54607f169
4786c6de227535cdf1878ffb9fe6580dfd53722ff98b6e59714cd3ac90e6f442
Analyzer Verdict Alert fortinet Malware
GET /templates/js/ScrollPic.js HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Sat, 23 Sep 2017 03:48:10 GMT
Accept-Ranges: bytes
ETag: "213954c61e34d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 2569
cjmodel.net/templates/js/jquery.lightbox-0.5.js
200 OK 6.4 kB URL HTTP/1.1 cjmodel.net/templates/js/jquery.lightbox-0.5.js
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type ISO-8859 text, with very long lines (805), with CRLF line terminators
Hash 99d5564aef44e00851c8e91acd0350c0
d297a77f97e222c884bc0ab12991dfb6cbdced5f
88dc958bf55e53d90db905f7c6c10edbfdd7ec0e922629cb820588c2996e44bd
Analyzer Verdict Alert fortinet Malware
GET /templates/js/jquery.lightbox-0.5.js HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Thu, 11 May 2017 08:35:20 GMT
Accept-Ranges: bytes
ETag: "ae6c948631cad21:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 6436
cjmodel.net/templates/js/jquery.1.4.2-min.js
200 OK 34 kB URL HTTP/1.1 cjmodel.net/templates/js/jquery.1.4.2-min.js
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type ASCII text, with very long lines (820), with CRLF line terminators
Hash fc332c76c5d0c4d0fe307e5c40b40064
ebf1f2b467324818749308e45a8d5367b3fbd994
5c7a35ae680765ef46d2f9d98433b51df9ab2734089e4d09465e714291633568
Analyzer Verdict Alert fortinet Malware
GET /templates/js/jquery.1.4.2-min.js HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Fri, 17 Feb 2017 07:09:22 GMT
Accept-Ranges: bytes
ETag: "5a50eac3ec88d21:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 33874
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash befa75dbbe9d5dfa501f9c1f03b7cdfa
73814c47bdcd6bebffc963b71d0a20fb361fad50
76b8f843416709a64e030343fbea3e04b9ee9faf2872ddba29f7c8ea28041e28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 22:25:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-559LXF3
200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-559LXF3
IP
File type ASCII text, with very long lines (2199)
Hash 33ac368415aae8b7cd51cfb4f9abbe05
fb10bcfe3d8f3e5b373989dd49711e33fad77a1b
8cc4953652d3d4f5e5bfbf010ab3c80f19ba371424bd8ac32ce22c68752d5500
GET /gtm.js?id=GTM-559LXF3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cjmodel.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 11 Oct 2022 22:25:45 GMT
expires: Tue, 11 Oct 2022 22:25:45 GMT
cache-control: private, max-age=900
last-modified: Tue, 11 Oct 2022 21:12:56 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45879
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash befa75dbbe9d5dfa501f9c1f03b7cdfa
73814c47bdcd6bebffc963b71d0a20fb361fad50
76b8f843416709a64e030343fbea3e04b9ee9faf2872ddba29f7c8ea28041e28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 22:25:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cjmodel.net/uploadfile/1702231036325799.jpg
200 OK 49 kB URL HTTP/1.1 cjmodel.net/uploadfile/1702231036325799.jpg
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1080, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 284x230, components 3\012- data
Hash 245fa28c24023d55bed2723bdf55eae1
14483ab4d718931ef5c8c38bf2385db39f70e5e1
44e7589240b2c030e5d3d0f6284a103aa14d619437a8ed492d6a57bdf63c48b9
GET /uploadfile/1702231036325799.jpg HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Thu, 23 Feb 2017 02:36:32 GMT
Accept-Ranges: bytes
ETag: "7149daa47d8dd21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 49198
cjmodel.net/templates/css/fonts/open_sans/OpenSans-Regular-webfont.woff
404 Not Found 1.2 kB URL HTTP/1.1 cjmodel.net/templates/css/fonts/open_sans/OpenSans-Regular-webfont.woff
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
Analyzer Verdict Alert fortinet Malware
GET /templates/css/fonts/open_sans/OpenSans-Regular-webfont.woff HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cjmodel.net/templates/css/typography.css
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 404 Not Found
Cache-Control: max-age=2592000
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 1163
cjmodel.net/uploadfile/17022310361890511.jpg
200 OK 56 kB URL HTTP/1.1 cjmodel.net/uploadfile/17022310361890511.jpg
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1080, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 284x230, components 3\012- data
Hash 1ebd30598618802b187a621a8a46d11d
cdc5e6b859185a96d66ddd05e402e2795ad210fe
a4190ad0775360c2d326351009e41aec3b6ee323ca9d7e134c4d4d5c9c7aeb0d
GET /uploadfile/17022310361890511.jpg HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Thu, 23 Feb 2017 02:36:18 GMT
Accept-Ranges: bytes
ETag: "d850af9c7d8dd21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 56222
cjmodel.net/uploadfile/1702161047228853.jpg
200 OK 83 kB URL HTTP/1.1 cjmodel.net/uploadfile/1702161047228853.jpg
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2017:02:16 09:23:53], baseline, precision 8, 284x230, components 3\012- data
Hash b383db280d10cfefd67747a634d9e02e
061d0b112c8c2deb14c014fa158a46b971fafe5a
60134cb44caefa4048e04f70ac4ec3808765fe070feced35e8edabab0290a095
GET /uploadfile/1702161047228853.jpg HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Thu, 16 Feb 2017 02:47:00 GMT
Accept-Ranges: bytes
ETag: "0ea13f2fe87d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 83088
cjmodel.net/uploadfile/17022310330537346.jpg
200 OK 59 kB URL HTTP/1.1 cjmodel.net/uploadfile/17022310330537346.jpg
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2017:02:23 10:26:40 DIY-Thermocam raw data\012- (Lepton 2.x), scale 25972-27759, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 270853723378262441197568.000000, slope 77741957468662897071327165808640.000000], baseline, precision 8, 280x230, components 3\012- data
Hash 31138286084c9d4dcf895252960a5806
62ddf7e77a6a30d58e988c41bbcea1376301ab0f
89c1a4af2b02ea5464fb37feb9355f6d211dfeee83d4dfe77b1747ffa21c6b98
GET /uploadfile/17022310330537346.jpg HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Thu, 23 Feb 2017 02:33:05 GMT
Accept-Ranges: bytes
ETag: "52eaa297d8dd21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 58926
cjmodel.net/templates/css/fonts/akzidenz_bold/akzidenz-grotesk-bold.woff
404 Not Found 1.2 kB URL HTTP/1.1 cjmodel.net/templates/css/fonts/akzidenz_bold/akzidenz-grotesk-bold.woff
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
Analyzer Verdict Alert fortinet Malware
GET /templates/css/fonts/akzidenz_bold/akzidenz-grotesk-bold.woff HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cjmodel.net/templates/css/typography.css
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 404 Not Found
Cache-Control: max-age=2592000
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 1163
cjmodel.net/uploadfile/17021610501330746.jpg
200 OK 80 kB URL HTTP/1.1 cjmodel.net/uploadfile/17021610501330746.jpg
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=230, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=284], baseline, precision 8, 284x230, components 3 DIY-Thermocam raw data\012- (Lepton 3.x), scale 14646-13869, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 0.000000, slope 62031788633866794696704.000000\012- data
Hash 82376441bd9764383ddce260570d06f0
7a5ff0a4d28764839aa547c522a62625b54e8880
5d9afdd9861523e3a06c35fb92f4bf9f906c8972f6fd2b542ca3be0769eee115
GET /uploadfile/17021610501330746.jpg HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Thu, 16 Feb 2017 02:50:00 GMT
Accept-Ranges: bytes
ETag: "0bc5d5dff87d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 80373
cjmodel.net/templates/images/logo.png
200 OK 7.4 kB URL HTTP/1.1 cjmodel.net/templates/images/logo.png
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type PNG image data, 200 x 70, 8-bit/color RGB, non-interlaced\012- data
Hash c3bffe3504145a586fc7997edb4339f2
6774696d41a5a405a422cbd0ebf79aff597251ce
6167a54bc8fe592c42926d6998bae57a7e529085ad06066e6e13960e3c909748
GET /templates/images/logo.png HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Sat, 15 Apr 2017 09:02:14 GMT
Accept-Ranges: bytes
ETag: "26e57bf9c6b5d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 7445
cjmodel.net/templates/images/phone.png
200 OK 1.2 kB URL HTTP/1.1 cjmodel.net/templates/images/phone.png
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash e013f4a8d70f8f8be2dc7622785bd30a
146681ae6489dd8e5747992ef617ac98205dd080
7972d55c9a9bc20a67b6c922ad6345679a1e2e439d0b8516486fe596255a8bf2
GET /templates/images/phone.png HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/templates/css/index.css
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Tue, 21 Feb 2017 02:13:22 GMT
Accept-Ranges: bytes
ETag: "51afd313e88bd21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 1194
cjmodel.net/uploadfile/17021610500243193.jpg
200 OK 74 kB URL HTTP/1.1 cjmodel.net/uploadfile/17021610500243193.jpg
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=230, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=284], baseline, precision 8, 284x230, components 3\012- data
Hash 3875fdafe483a37eeed976090cc9b0bd
0d736f4b80383f558424a6e6e79c494cd846b72d
24122ae0a2ff24702dc528e2d9a7affa2e9f147bb196b492505bc2d08c060dd5
GET /uploadfile/17021610500243193.jpg HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Thu, 16 Feb 2017 02:50:00 GMT
Accept-Ranges: bytes
ETag: "0bc5d5dff87d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:44 GMT
Content-Length: 74235
cjmodel.net/templates/images/tel.png
200 OK 680 B URL HTTP/1.1 cjmodel.net/templates/images/tel.png
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash a8d55b704ca5b597cee956b3c284da00
9b71655087b1a4bc95ba79ecde9da2023a3789f8
ab038f37c9e03cab65693db18c2642dd4eb4e948b56951fb9c44bf7cd7ef5720
GET /templates/images/tel.png HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/templates/css/index.css
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Tue, 21 Feb 2017 02:13:14 GMT
Accept-Ranges: bytes
ETag: "b6adbaee88bd21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 680
cjmodel.net/templates/css/fonts/akzidenz_bold/akzidenz-grotesk-bold.woff
404 Not Found 1.2 kB URL HTTP/1.1 cjmodel.net/templates/css/fonts/akzidenz_bold/akzidenz-grotesk-bold.woff
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
Analyzer Verdict Alert fortinet Malware
GET /templates/css/fonts/akzidenz_bold/akzidenz-grotesk-bold.woff HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cjmodel.net/templates/css/typography.css
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 404 Not Found
Cache-Control: max-age=2592000
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 1163
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13322
Expires: Wed, 12 Oct 2022 02:07:48 GMT
Date: Tue, 11 Oct 2022 22:25:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13322
Expires: Wed, 12 Oct 2022 02:07:48 GMT
Date: Tue, 11 Oct 2022 22:25:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13322
Expires: Wed, 12 Oct 2022 02:07:48 GMT
Date: Tue, 11 Oct 2022 22:25:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647e8146-dad8-449f-a0ea-efe8d7b14e99.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647e8146-dad8-449f-a0ea-efe8d7b14e99.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6943f4735bdb3eaf396cd0edbd101dae
3be209d8b74abe0d12033cf6149da04eb9e1a116
7578a8981216adc59909baf4e41ef4044d5a592e6dc7f80f4fa8f5f1cc1b282f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647e8146-dad8-449f-a0ea-efe8d7b14e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5957
x-amzn-requestid: e7388c82-006d-4114-84e1-f6c5af236edb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zt4h5EMzoAMF5GQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63423ad8-135cd65273a99b4c1719796b;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 03:07:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: H6aoPUjEEPgK6GhTjcpiUg0lVa0e78LQa7cbpYT-QR8NKUzn7UL1Sw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 04:12:36 GMT
age: 65590
etag: "3be209d8b74abe0d12033cf6149da04eb9e1a116"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc6dbf06-fc04-4aa0-be3e-1b1f5a988e0f.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc6dbf06-fc04-4aa0-be3e-1b1f5a988e0f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a7910c19b8c04b1c7a9a03949dc54b8
40b0931f4705cc826564bd29418d17edbed84d7d
1f14b664a3587ad9b73b3d5bc37a670900622c467287f9a0dfad1f8bdf69606f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc6dbf06-fc04-4aa0-be3e-1b1f5a988e0f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10795
x-amzn-requestid: 8efcb814-aa05-476a-b66a-161185920ed8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj_dQHvHoAMFy_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e45ee-7eb4a30a5d0b102845ba50d6;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 03:05:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3gYj2RrQnvATq2N75NXCUmL8QB3cZKEtrRq2g-LphjXO6Es15eGW_A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 15:53:08 GMT
age: 23558
etag: "40b0931f4705cc826564bd29418d17edbed84d7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ea1c33c-766b-4b55-98a5-0a22380c61ce.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ea1c33c-766b-4b55-98a5-0a22380c61ce.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a8720e1bfd92ce7ccfeb8ab6ca2477a
1277a8a73b2fbf48562a7f767c3219d836b1faa9
61cfaa0a0338ae710735fab66822d8227adeb6a8bc4035686fae4a4de6247f1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ea1c33c-766b-4b55-98a5-0a22380c61ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6645
x-amzn-requestid: 6e75c182-93bc-4339-a679-b069f78a397c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZzuQ0H3qoAMFi5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634490d1-4e134a93174cbf3559bea75c;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:38:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9MryE-BvJE8PcHjgJIrsuJxUOS57T4zJDQmSxgojquXsnACLoMfIIA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:10:40 GMT
age: 906
etag: "1277a8a73b2fbf48562a7f767c3219d836b1faa9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 5f2ce4dd-0df8-4df7-a12d-e6fffd622752
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZnTQHGADIAMFXfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f98cd-5044665325e5d64975c1ff0c;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 03:11:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZKsi1hYgZdJQNWpphaMVLfpg69dC93J575Y2RsOzFV3ZzBb6x-nrew==
via: 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:22:17 GMT
age: 209
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cjmodel.net/templates/images/search.png
200 OK 682 B URL HTTP/1.1 cjmodel.net/templates/images/search.png
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type PNG image data, 28 x 28, 8-bit colormap, non-interlaced\012- data
Hash fdff41f0be3538f6a84e1d3fd4785299
2b6176ca97f0e343e674a4fba2da2e9f324fabf2
1d3d87bddfbc2f566ff78a575f7cf7e3fece7ef8f85907e7145332a48bea0035
GET /templates/images/search.png HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/templates/css/index.css
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Sat, 15 Apr 2017 09:02:43 GMT
Accept-Ranges: bytes
ETag: "112af8ac7b5d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 682
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a938ec-0f85-4cc4-b114-6a3bb049c111.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a938ec-0f85-4cc4-b114-6a3bb049c111.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e6761274cf8c2ed62e317e310f74ac3
32b3631be51d3385f061fee29e41ed28fad4b914
45d68ffebd269cae06ae471a11a128c32070367db85f525b81df4164f510adea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a938ec-0f85-4cc4-b114-6a3bb049c111.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11336
x-amzn-requestid: 2f64751f-13d2-49c3-85c4-fb0f28186a37
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zzt8mFh7IAMF_lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449050-100b2d49411d4bed369655c1;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kp8kW5HXLkRuxZ9Px3dMTGXKMUA7G81quHzkamU3x0uYjZ4FAk_cbQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:56:00 GMT
age: 1786
etag: "32b3631be51d3385f061fee29e41ed28fad4b914"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cjmodel.net/templates/images/mail.png
200 OK 830 B URL HTTP/1.1 cjmodel.net/templates/images/mail.png
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash 07b1d823134abefe279bd4812f27513f
3f6913d6796428c2f692f199c174245e8dc41658
6389e6545d6595e4781d6365f4dbd7162dcb4043cbc4bb957607cff0c8a41ded
GET /templates/images/mail.png HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/templates/css/index.css
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Sat, 15 Apr 2017 09:02:52 GMT
Accept-Ranges: bytes
ETag: "72ff9610c7b5d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 830
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ff8cfe3904cca89e3bdfa8186ae382ba
0b9dce744f5facad9a0a136d81cf24e928211856
a6f0925a9666a43d018c05d717310f57b86316290fb4a7cdd309c35842e557a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7674
x-amzn-requestid: d31d1c0c-02a2-4912-b757-aa166018d5ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHkZFqeoAMFW0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec82-73f20af53f27f6f66e2906f2;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:32:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6IvU7Nkd48yGZUoGRwMEzLkIOBVKLvf8st0hggogDdKSCuzkPsnSQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:58:51 GMT
age: 1615
etag: "0b9dce744f5facad9a0a136d81cf24e928211856"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cjmodel.net/templates/images/down.png
200 OK 251 B URL HTTP/1.1 cjmodel.net/templates/images/down.png
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type PNG image data, 20 x 20, 8-bit colormap, non-interlaced\012- data
Hash f829836ce67f48eeba91fd01d55a1025
c4c67fd8bfc330dcd585cff65ffac11ac84fc845
7b339fc7dc7179e2eb201468791db5e82857afc775eb4825d203e9f989c54510
GET /templates/images/down.png HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/templates/css/index.css
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Tue, 21 Feb 2017 02:13:04 GMT
Accept-Ranges: bytes
ETag: "9b21b78e88bd21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 251
cjmodel.net/templates/images/online.png
200 OK 383 B URL HTTP/1.1 cjmodel.net/templates/images/online.png
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type PNG image data, 100 x 50, 8-bit grayscale, non-interlaced\012- data
Hash 399c354a4045c14b6a416dc49de55a23
fd00f4d2f8606d3bcec16dbfae969070a6be9de0
97ef4083d26b7aaa654354e427e7d4891364530dfa5ad8f2033131f28b9adeef
GET /templates/images/online.png HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/templates/css/index.css
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Sat, 15 Apr 2017 09:02:23 GMT
Accept-Ranges: bytes
ETag: "25f748ffc6b5d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 383
cjmodel.net/templates/images/skype.png
200 OK 1.6 kB URL HTTP/1.1 cjmodel.net/templates/images/skype.png
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type PNG image data, 100 x 32, 8-bit/color RGB, non-interlaced\012- data
Hash 04a7bdec40c11263e9346b6d538c3fc6
7d87c83585c63f839e5c799727373c9a9fa0c5ec
1651d02639193c8818998f9ea5a9ae6b21ee9bd06445fa3769bcae8df78d367a
GET /templates/images/skype.png HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Sat, 15 Apr 2017 09:02:33 GMT
Accept-Ranges: bytes
ETag: "40badd4c7b5d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 1634
cjmodel.net/view_18/view_17/view_16/Photo.scr
404 Not Found 1.2 kB URL HTTP/1.1 cjmodel.net/view_18/view_17/view_16/Photo.scr
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
Analyzer Verdict Alert fortinet Malware
GET /view_18/view_17/view_16/Photo.scr HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 1163
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cjmodel.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 11 Oct 2022 20:41:09 GMT
expires: Tue, 11 Oct 2022 22:41:09 GMT
cache-control: public, max-age=7200
age: 6277
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=15860535&t=pageview&_s=1&dl=http%3A%2F%2Fcjmodel.net%2Fview_18%2Fview_17%2Fview_16%2Fid_22.html&ul=en-us&de=UTF-8&dt=About%20Us%20-%20Guangzhou%20TRANKA%20Architecture%20Model%20Co.%2C%20Ltd.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAAABAAAAAC~&jid=9638403&gjid=1753454929&cid=766701020.1665527147&tid=UA-98102417-1&_gid=1194462188.1665527147&_r=1>m=2wgaa0559LXF3&z=1090942959
200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=15860535&t=pageview&_s=1&dl=http%3A%2F%2Fcjmodel.net%2Fview_18%2Fview_17%2Fview_16%2Fid_22.html&ul=en-us&de=UTF-8&dt=About%20Us%20-%20Guangzhou%20TRANKA%20Architecture%20Model%20Co.%2C%20Ltd.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAAABAAAAAC~&jid=9638403&gjid=1753454929&cid=766701020.1665527147&tid=UA-98102417-1&_gid=1194462188.1665527147&_r=1>m=2wgaa0559LXF3&z=1090942959
IP
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j98&a=15860535&t=pageview&_s=1&dl=http%3A%2F%2Fcjmodel.net%2Fview_18%2Fview_17%2Fview_16%2Fid_22.html&ul=en-us&de=UTF-8&dt=About%20Us%20-%20Guangzhou%20TRANKA%20Architecture%20Model%20Co.%2C%20Ltd.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAAABAAAAAC~&jid=9638403&gjid=1753454929&cid=766701020.1665527147&tid=UA-98102417-1&_gid=1194462188.1665527147&_r=1>m=2wgaa0559LXF3&z=1090942959 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://cjmodel.net
Connection: keep-alive
Referer: http://cjmodel.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://cjmodel.net
date: Tue, 11 Oct 2022 22:25:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cjmodel.net/templates/images/favicon.ico
200 OK 17 kB URL HTTP/1.1 cjmodel.net/templates/images/favicon.ico
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel\012- data
Hash debc701d495e9f180c50a509d0c6e26e
8a507e69ac68ba77a7f71bde331f882ea32e38fb
88c8bdaf3a15ec604b5630ffcc48790a697536029b96b629ae36af22d2f9affd
GET /templates/images/favicon.ico HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/x-icon
Last-Modified: Mon, 17 Apr 2017 06:15:13 GMT
Accept-Ranges: bytes
ETag: "55844bf941b7d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 16958
cjmodel.net/templates/css/fonts/open_sans/OpenSans-Regular-webfont.ttf
200 OK 30 kB URL HTTP/1.1 cjmodel.net/templates/css/fonts/open_sans/OpenSans-Regular-webfont.ttf
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type TrueType Font data, 16 tables, 1st "FFTM", 8 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegularwebfontOpen Sans Reg\012- data
Hash 98b25ed8f8a57633895435395edf05d4
1bda9f65b10d2b75b5b8049cd9107e6109112d7d
3098c00be7e6765d5f86bd98ba72dcdccf713d2087b2773e26954de4403bd7d5
Analyzer Verdict Alert fortinet Malware
GET /templates/css/fonts/open_sans/OpenSans-Regular-webfont.ttf HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/templates/css/typography.css
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/octet-stream
Last-Modified: Fri, 17 Feb 2017 07:09:25 GMT
Accept-Ranges: bytes
ETag: "75b942c5ec88d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 29744
cjmodel.net/templates/css/fonts/akzidenz_bold/akzidenz-grotesk-bold.ttf
200 OK 48 kB URL HTTP/1.1 cjmodel.net/templates/css/fonts/akzidenz_bold/akzidenz-grotesk-bold.ttf
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type TrueType Font data, 17 tables, 1st "FFTM", 11 names, Microsoft, language 0x409, Copyright (c) 1989, 1993 Adobe Systems Incorporated. All Rights Reserved.Akzidenz Grotesk is a \012- data
Hash 8114eb4c35c708f61c55c72165dc2350
7ed51a16d199158e42d9f99186ead0d7dcb69411
0469acfae365bab9e028f9772f32d41f3dc4fdd63165d77624bf54d55eafab44
Analyzer Verdict Alert fortinet Malware
GET /templates/css/fonts/akzidenz_bold/akzidenz-grotesk-bold.ttf HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/templates/css/typography.css
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/octet-stream
Last-Modified: Fri, 17 Feb 2017 07:09:24 GMT
Accept-Ranges: bytes
ETag: "cb958c5ec88d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 47988
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b328dd45b340d747021ad1da23ede95d
92811e18e93271b7b7fc75b2e0ff9d3617f0417e
8e3a7c1a63d37d561dc08f9cec0863582709bb8248214c0f08586bbf3040cad2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 22:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-98102417-1&cid=766701020.1665527147&jid=9638403&gjid=1753454929&_gid=1194462188.1665527147&_u=YEBAAAAAAAAAAC~&z=1718699406
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-98102417-1&cid=766701020.1665527147&jid=9638403&gjid=1753454929&_gid=1194462188.1665527147&_u=YEBAAAAAAAAAAC~&z=1718699406
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-98102417-1&cid=766701020.1665527147&jid=9638403&gjid=1753454929&_gid=1194462188.1665527147&_u=YEBAAAAAAAAAAC~&z=1718699406 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://cjmodel.net
Connection: keep-alive
Referer: http://cjmodel.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://cjmodel.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 11 Oct 2022 22:25:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cjmodel.net/uploadfile/17021610502477515.jpg
200 OK 74 kB URL HTTP/1.1 cjmodel.net/uploadfile/17021610502477515.jpg
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=230, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=284], baseline, precision 8, 284x230, components 3\012- data
Hash 80b10d3d25c95cc63e9ee28c572dcc62
32669e49d492715ab860d5664569abfe8edf8541
7cd9019ebdf730a1fb4fa4205e14d9e327a4d54ac290ee42f5a2f333080e2c89
GET /uploadfile/17021610502477515.jpg HTTP/1.1
Host: cjmodel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cjmodel.net/view_18/view_17/view_16/id_22.html
Cookie: ASP.NET_SessionId=d2sam0fi0mo2xyzgy1ekpd55
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Thu, 16 Feb 2017 02:50:00 GMT
Accept-Ranges: bytes
ETag: "0bc5d5dff87d21:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 11 Oct 2022 22:25:45 GMT
Content-Length: 74483
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b328dd45b340d747021ad1da23ede95d
92811e18e93271b7b7fc75b2e0ff9d3617f0417e
8e3a7c1a63d37d561dc08f9cec0863582709bb8248214c0f08586bbf3040cad2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 22:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5d0a0ed90364e0eea045f6e6cbc6521d
f76cac3b64a0310a0f5dc859cd2310802c024426
26caffaa8fc4b28a0fbe229d64d4f14c621178610521c58881b5cc5b39102382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 22:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ec8c3be288c030a2f21f77da38609a2c
5dce231ac91002054bbdbc6b19f6d1aa0d6c32bc
fa3abfefbd26a9339066ee03360614fc68312aefd2aa7e47e291589f426a7265
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 22:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-98102417-1&cid=766701020.1665527147&jid=9638403&_u=YEBAAAAAAAAAAC~&z=634103101
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-98102417-1&cid=766701020.1665527147&jid=9638403&_u=YEBAAAAAAAAAAC~&z=634103101
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-98102417-1&cid=766701020.1665527147&jid=9638403&_u=YEBAAAAAAAAAAC~&z=634103101 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cjmodel.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 11 Oct 2022 22:25:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-98102417-1&cid=766701020.1665527147&jid=9638403&_u=YEBAAAAAAAAAAC~&z=634103101
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-98102417-1&cid=766701020.1665527147&jid=9638403&_u=YEBAAAAAAAAAAC~&z=634103101
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-98102417-1&cid=766701020.1665527147&jid=9638403&_u=YEBAAAAAAAAAAC~&z=634103101 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cjmodel.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 11 Oct 2022 22:25:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5d0a0ed90364e0eea045f6e6cbc6521d
f76cac3b64a0310a0f5dc859cd2310802c024426
26caffaa8fc4b28a0fbe229d64d4f14c621178610521c58881b5cc5b39102382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 22:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b8e058c50dbe0871b6ccde4ed4cc8785
06b0c34d584624df99282c1fff1d766b9ed00e64
3319073b74402c41450cc9ca2162140dbe8b231db146cf8e77cb0b43fa461b4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 22:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33b0daac-7759-4c24-876e-0081209775ee.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33b0daac-7759-4c24-876e-0081209775ee.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbb9ff33a7a2e6ce3960c9c90b9606be
9a7c7f0f1a0fce0c7cdf7b842c6b0e23793a9b7c
8e937db0d312a1f0667038ab6cb5ff49eb22d1c7f5addfe9ed9f1988481476af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33b0daac-7759-4c24-876e-0081209775ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5986
x-amzn-requestid: c5a80a04-65d8-4949-8a74-fde444516732
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZxttuEUdIAMF4mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6343c324-47150b855f93b773337cfa4e;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 07:00:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jodPGlde5O_RT-2AQ6-HyoR7EO7DmO0GMou2B7HKpJ_xVn6u1oHKdg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 07:14:28 GMT
age: 54685
etag: "9a7c7f0f1a0fce0c7cdf7b842c6b0e23793a9b7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
47.89.182.3
23.36.77.32
93.184.220.29