www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
200 OK 1.1 kB URL User Request GET HTTP/1.1 www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 71dfe7ed542a2cebe47e04af52083e97
bde00ea4ba3baf634bd298b72b68ff1c7a381ce4
b6dc6a8889fe49b8ab5f00af28d21eabafc7a535cf3bb5a016d40ba3890899ba
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /2018-6-10/xglhkjjl2014zxzt.html HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:24:13 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/jquery.min.js
200 OK 704 B URL GET HTTP/1.1 www.cjtaobaojie.com/jquery.min.js
IP
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
File type HTML document, ASCII text, with very long lines (3686)
Hash 77e024e950ad659c119e9515fcb05d45
7624d1e9898b607465f8abde519b8425840ca7c0
4c42a77c6e30924838b854b1dec7baf0578f857c539ad517644e50bdd843afc1
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /jquery.min.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:24:14 GMT
Content-Type: application/javascript
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64e40fe8-ed1"
Expires: Mon, 02 Oct 2023 12:24:14 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip
www.zhong2021.cc/jquery.minjs.js
200 OK 4.3 kB URL GET HTTP/1.1 www.zhong2021.cc/jquery.minjs.js
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerTrustAsia Technologies, Inc.
Subjectzhong2021.cc
Fingerprint5C:A8:A0:50:1A:4C:D6:5E:17:2F:1A:D9:AD:56:8A:C8:FA:9C:1B:24
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type ASCII text, with very long lines (54610), with CRLF line terminators
Hash 0ae3a0bbe549b4e7470df716754e8c5a
9f52e9fe1886f2d2aaec02af557cd6281d7c0e0a
cb53a28d1c0689aa226454348ac90b2f9f0fed2557bf4c586f76b70c35257655
GET /jquery.minjs.js HTTP/1.1
Host: www.zhong2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:23:20 GMT
Content-Type: application/javascript
Last-Modified: Mon, 25 Oct 2021 19:42:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6177089c-d554"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip
ocsp.trust-provider.cn/
600 B IP
ASN #4808 China Unicom Beijing Province Network
Hash 23367a994e78147417aa7e63d9a1c8c5
785b8e147359cc9e51e6970e0b7f958dd2e30e3c
3422b58cd8649d66ebf2f882512a0872dc9c3564a3d834b2e5b2c20fc91dffa2
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 11:23:21 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e19f9a98a0faba-SJC
ETag: "785b8e147359cc9e51e6970e0b7f958dd2e30e3c"
Expires: Fri, 06 Oct 2023 04:10:20 GMT
Last-Modified: Fri, 29 Sep 2023 04:10:21 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb6
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 CS-000-01AKa25:7 (Cdn Cache Server V2.0), 1.1 PS-PEK-01Tf243:5 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651aa829_PS-PEK-01juf42_10576-3684
via: n173-090-132.bdcdn-bjcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696245801b414d229fe101146f7011f97e906774f
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #4808 China Unicom Beijing Province Network
Hash a897af2fa59f1c221537593d9906dd66
116482e6d89719905721eb56d90a71c326d98084
0455e85d03e1fecf04f64bb206685aeca22a520631be6bd5614c52fe9f2a7fee
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 11:23:22 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80fb9026ae469e62-SJC
ETag: "116482e6d89719905721eb56d90a71c326d98084"
Expires: Mon, 09 Oct 2023 08:16:49 GMT
Last-Modified: Mon, 02 Oct 2023 08:16:50 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb2
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 sx196:6 (Cdn Cache Server V2.0), 1.1 PS-PEK-01tkp33:7 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651aa82a_PS-PEK-01tkp33_48228-53536
via: n173-090-132.bdcdn-bjcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696245802f25850d239ee5c14e9da9ddd7057b3e5
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #4808 China Unicom Beijing Province Network
Hash a897af2fa59f1c221537593d9906dd66
116482e6d89719905721eb56d90a71c326d98084
0455e85d03e1fecf04f64bb206685aeca22a520631be6bd5614c52fe9f2a7fee
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 11:23:22 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80fb9026ae469e62-SJC
ETag: "116482e6d89719905721eb56d90a71c326d98084"
Expires: Mon, 09 Oct 2023 08:16:49 GMT
Last-Modified: Mon, 02 Oct 2023 08:16:50 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb2
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 sx196:6 (Cdn Cache Server V2.0), 1.1 PS-PEK-01tkp33:7 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651aa82a_PS-PEK-015pK32_19619-9064
via: n173-090-132.bdcdn-bjcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 16962458024f4e42448d9a4a77cc5c8ef67c378b1c
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0
www.zhu2021.cc/hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F2018-6-10%2Fxglhkjjl2014zxzt.html&referer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=9555
200 OK 902 B URL GET HTTP/1.1 www.zhu2021.cc/hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F2018-6-10%2Fxglhkjjl2014zxzt.html&referer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=9555
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerTrustAsia Technologies, Inc.
Subjectzhu2021.cc
Fingerprint49:B8:00:87:CA:49:6E:B3:FD:AC:C8:66:99:26:30:C8:F5:6D:3E:F5
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2954), with no line terminators
Hash 427fac19715ac34791fc242e9705b380
11a42d69e4d65447bade8b66f4e63cdaa6490d25
41de33f6121739e7193b112b032270051a360fa2ae14c2fd5397fe9b699eba1b
GET /hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F2018-6-10%2Fxglhkjjl2014zxzt.html&referer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=9555 HTTP/1.1
Host: www.zhu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.cjtaobaojie.com
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:23:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip
www.cjtaobaojie.com/tj.js
200 OK 208 B URL GET HTTP/1.1 www.cjtaobaojie.com/tj.js
IP
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
File type HTML document, ASCII text, with CRLF line terminators
Hash a12ec3bef32b2f95374cba4e9d2b68a6
ac669d2986c5e23bfef8d91ff7b2358a1ab4f50a
8fe1b02a503b713d544527e6e22b342970853b959944ac092fb1de51bd9f7cd7
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /tj.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:24:18 GMT
Content-Type: application/javascript
Content-Length: 208
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Connection: keep-alive
ETag: "64e40fe8-d0"
Expires: Mon, 02 Oct 2023 12:24:18 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
ocsp.trust-provider.cn/
600 B IP
ASN #4808 China Unicom Beijing Province Network
Hash f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 11:23:23 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e494dbd88815ef-SJC
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PS-000-01N9V58:8 (Cdn Cache Server V2.0), 1.1 PS-PEK-01Tf243:5 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651aa82b_PS-PEK-01Tf243_7295-23714
via: n173-090-132.bdcdn-bjcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 16962458038a17528919ee72285f3106e9a5371763
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #4808 China Unicom Beijing Province Network
Hash f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 11:23:23 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e494dbd88815ef-SJC
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PS-000-01N9V58:8 (Cdn Cache Server V2.0), 1.1 PS-PEK-01Tf243:5 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651aa82b_PS-PEK-01juf42_11676-51403
via: n173-090-132.bdcdn-bjcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696245803299a4d4b1879458a98e53e6f3d6d22c6
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #4808 China Unicom Beijing Province Network
Hash f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 11:23:23 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e494dbd88815ef-SJC
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PS-000-01N9V58:8 (Cdn Cache Server V2.0), 1.1 PS-PEK-01tkp33:10 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651aa82b_PS-PEK-015pK32_19672-58608
via: n173-090-132.bdcdn-bjcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 169624580382f4d9158f7f9613a12d3546a3c88860
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #4808 China Unicom Beijing Province Network
Hash f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 11:23:23 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e494dbd88815ef-SJC
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PS-000-01N9V58:8 (Cdn Cache Server V2.0), 1.1 PS-PEK-01tkp33:10 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651aa82b_PS-PEK-01tkp33_48182-64418
via: n173-090-132.bdcdn-bjcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 16962458032489defa2b43a6d04665b1acee8ff0cb
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0
js.users.51.la/21748769.js
200 OK 2.5 kB URL GET HTTP/1.1 js.users.51.la/21748769.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT
File type HTML document, ASCII text, with very long lines (5207), with no line terminators
Hash eb50412385cd647b82c55b7f122a1f09
c3dd9819b7d4b498479877ace31866a4189efd80
dea92b41e6d405db77a675c1150d36870517ce02d13cd0e108915b3496955396
GET /21748769.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 11:23:23 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ocsp.trust-provider.cn/
600 B IP
ASN #4808 China Unicom Beijing Province Network
Hash f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 11:23:23 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e494dbd88815ef-SJC
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PS-000-01N9V58:8 (Cdn Cache Server V2.0), 1.1 PS-PEK-01Tf243:5 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651aa82b_PS-PEK-01Tf243_7540-17637
via: n173-090-132.bdcdn-bjcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 16962458035679e983891426e730b867476673decd
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=3, edge;dur=0
www.cjtaobaojie.com/favicon.ico
200 OK 9.7 kB URL GET HTTP/1.1 www.cjtaobaojie.com/favicon.ico
IP
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
File type MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data
Hash 1af6c08eb07f675c862fa3cd50640511
bfc9fbddea831a3cae067a570bcb4450280c7f45
7fc7fdb7ea134949cefdbd00ac02724e091e0201c1cee06795f84db28a1586d4
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /favicon.ico HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:24:20 GMT
Content-Type: image/x-icon
Content-Length: 9662
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Connection: keep-alive
ETag: "64e40fe8-25be"
Accept-Ranges: bytes
js.users.51.la/21749309.js
200 OK 2.3 kB URL GET HTTP/1.1 js.users.51.la/21749309.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT
File type ASCII text, with very long lines (4898), with no line terminators
Hash e90c523bbf455485954994cf43247cdd
7914ab8cb5e6539aaf078b7c1e8a60916a8e4b44
83a978597a73bbf186e3857ba3909e9aa198bf10dc563d46da1cb98fcb5d78d1
GET /21749309.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 11:23:24 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ia.51.la/go1?id=21748769&rt=1696245804422&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1696245804422&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2018-6-10%252Fxglhkjjl2014zxzt.html&pu=
200 OK 0 B URL GET HTTP/1.1 ia.51.la/go1?id=21748769&rt=1696245804422&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1696245804422&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2018-6-10%252Fxglhkjjl2014zxzt.html&pu=
IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21748769&rt=1696245804422&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1696245804422&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2018-6-10%252Fxglhkjjl2014zxzt.html&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Mon, 02 Oct 2023 11:21:41 GMT
Ali-Swift-Global-Savetime: 1696245804
Via: cache8.l2de2[198,197,200-0,M], cache3.l2de2[199,0], cache8.se1[220,219,200-0,M], cache2.se1[222,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 02 Oct 2023 11:23:24 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616962458044603344e
www.tu2021.cc/uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg
200 OK 56 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 87a9d827f6fd871223024b40b2646b9c
43bcec1633466893da0118ff81ebc1d875392f66
0c4a77dab5f3db9cc2269f073c9d8b182029128598d56c90a7d14b43f9f62947
GET /uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:23:24 GMT
Content-Type: image/jpeg
Content-Length: 56006
Last-Modified: Sun, 28 Mar 2021 16:11:41 GMT
Connection: keep-alive
ETag: "6060aabd-dac6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg
200 OK 57 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 2e599e6d4d3d33ff4de9f6729899c960
ba96b8f555d5907c0b67c723aaeba8250098e61c
3bba9661f9ad5b20934c5a85fdb31b01006948f2dcb27ff7f81cbd958b2c4fb5
GET /uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:23:24 GMT
Content-Type: image/jpeg
Content-Length: 57413
Last-Modified: Sun, 28 Mar 2021 16:11:36 GMT
Connection: keep-alive
ETag: "6060aab8-e045"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
ia.51.la/go1?id=21749309&rt=1696245804718&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=2&ekc=&sid=1696245804718&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2018-6-10%252Fxglhkjjl2014zxzt.html&pu=
200 OK 0 B URL GET HTTP/1.1 ia.51.la/go1?id=21749309&rt=1696245804718&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=2&ekc=&sid=1696245804718&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2018-6-10%252Fxglhkjjl2014zxzt.html&pu=
IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21749309&rt=1696245804718&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=2&ekc=&sid=1696245804718&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2018-6-10%252Fxglhkjjl2014zxzt.html&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Mon, 02 Oct 2023 11:22:39 GMT
Ali-Swift-Global-Savetime: 1696245804
Via: cache38.l2fr1[380,380,200-0,M], cache28.l2fr1[381,0], cache1.se1[442,441,200-0,M], cache5.se1[444,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 02 Oct 2023 11:23:24 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9916962458044641168e
www.tu2021.cc/uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg
200 OK 50 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 7925f7dd6392dcb4f188398fa87e8c0c
030ad16e6e28d2b8520427bf57d48e7fa38a65a4
552c475fe29e8eabac0760a6d4e5f74a0165ca447e269614a01bdbc7b60a7353
GET /uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:23:24 GMT
Content-Type: image/jpeg
Content-Length: 50516
Last-Modified: Sun, 28 Mar 2021 16:11:40 GMT
Connection: keep-alive
ETag: "6060aabc-c554"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg
122 kB URL www.tu2021.cc/uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg
IP
ASN #64050 BGPNET Global ASN
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x300, components 3\012- data
Size 122 kB (122448 bytes)
Hash bdb928b9f05aebbae9e7cf032ac28efd
c32b54c79ac41e763385dec605225ab93f3e0232
ae45a91af40072d1e132cfe05bcf84cf182de0af80d71f52eff96448c5d38835
GET /uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:23:24 GMT
Content-Type: image/jpeg
Content-Length: 122448
Last-Modified: Sun, 28 Mar 2021 16:11:43 GMT
Connection: keep-alive
ETag: "6060aabf-1de50"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg
200 OK 53 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 09a9c5e99ec33235f28bdca03b58682e
81d68e1a6bc09d122f9a0984c23dffc01b8d1c1c
0a5fbab46d0fed48a729000dc2c5415bea823742bc19cc2e4118f8844627414b
GET /uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:23:25 GMT
Content-Type: image/jpeg
Content-Length: 52696
Last-Modified: Sun, 28 Mar 2021 16:11:40 GMT
Connection: keep-alive
ETag: "6060aabc-cdd8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg
200 OK 62 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash c8e43ccc9c88624a86c0c190719d55ba
c273eba44ea68dbccaf44c36ef5d4c24cfdaee26
c34da23b1f8b51d2f0799b39e06ea1342347e7d4b32f39bbd94fa4cfb0cc1cfb
GET /uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:23:25 GMT
Content-Type: image/jpeg
Content-Length: 62211
Last-Modified: Sun, 28 Mar 2021 16:11:39 GMT
Connection: keep-alive
ETag: "6060aabb-f303"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg
200 OK 57 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 795fdd629261bbfff623483c6cb6f160
deca291d31bff5e123c3e192d7404976b2192ec5
8e948fa556ac4998fe70fd5eb00c0c14988c884e83d204f711bb5f59c444fdff
GET /uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:23:25 GMT
Content-Type: image/jpeg
Content-Length: 56884
Last-Modified: Sun, 28 Mar 2021 16:11:46 GMT
Connection: keep-alive
ETag: "6060aac2-de34"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/fzo19d83tvcadjbhcsz7.png
200 OK 255 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/fzo19d83tvcadjbhcsz7.png
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type PNG image data, 1000 x 200, 8-bit/color RGB, non-interlaced\012- data
Size 255 kB (255290 bytes)
Hash 9b7839cc32f8daa06bb7d870900882a0
23b0c93464743e63954eafed8057ca0ec3d4effb
baaa64f64b837b8ad5e3c1e6e4c9aa4b4f7b0a96d179049f1e26ad66a290eaf8
GET /uploads/fzo19d83tvcadjbhcsz7.png HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:23:24 GMT
Content-Type: image/png
Content-Length: 255290
Last-Modified: Fri, 28 Oct 2022 04:40:50 GMT
Connection: keep-alive
ETag: "635b5d52-3e53a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif
200 OK 295 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type GIF image data, version 89a, 1000 x 90\012- data
Size 295 kB (294842 bytes)
Hash 85163b53631e93551465219ff0e8d8fb
59b7a0a3ab620f45ce48de1c27afdfeb88c6bed6
b77899e0b4dac978615eb40d7efffc1dd8cb0acc5271b57273c589cf601396a9
GET /uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 11:23:24 GMT
Content-Type: image/gif
Content-Length: 294842
Last-Modified: Fri, 19 Mar 2021 18:33:26 GMT
Connection: keep-alive
ETag: "6054ee76-47fba"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
js.users.51.la/21763327.js
0 B URL GET js.users.51.la/21763327.js
IP
Requested by http://www.cjtaobaojie.com/2018-6-10/xglhkjjl2014zxzt.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /21763327.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
142.252.210.181
111.206.23.199
43.243.30.13
47.246.44.146
0.0.0.0