Report - m2n8.xyz/

Report Overview

Visited public
2025-02-23 09:22:17
Tags
URL
m2n8.xyz/
Finishing URL
xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
IP / ASN
23.224.2.202
#40065 CNSERVERS
Title
xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
img.meituan.net	71853	2010-01-25	2017-02-03	2025-02-17	5.7 kB	1.6 MB	43.152.140.107
i.ugc.corp3g.cn	unknown	2007-07-06	2017-02-03	2025-02-19	444 B	17 kB	116.169.184.169
cdn.cnbj1.fds.api.mi-img.com	19229	2012-06-15	2017-04-24	2025-02-19	6.0 kB	2.1 MB	47.246.44.224
img.jmyqsl.com	unknown	2024-07-01	2024-12-07	2025-02-18	423 B	297 B	39.174.97.17
img.alicdn.com	8663	2008-06-25	2015-03-04	2025-02-22	456 B	28 kB	47.246.44.249
vasz01.trafficmanager.net	unknown	2005-11-25	2025-01-21	2025-02-22	515 B	1.7 kB	216.180.227.131
156bc.homl.console.hllxind.com	unknown	2024-08-31	2025-02-19	2025-02-19	436 B	304 B	0.0.0.0
node65.aizhantj.com	unknown	2024-07-29	2024-12-12	2025-02-19	1.1 kB	86 kB	163.171.134.109
ali-ec.static.yximgs.com	129329	2012-04-19	2019-06-10	2025-02-21	504 B	92 kB	163.181.154.239
vac.gtimg.cn	unknown	2008-10-09	2015-12-25	2025-02-19	427 B	79 kB	203.205.136.86
img.cospa3600.top	unknown	2024-11-17	2025-02-07	2025-02-16	409 B	934 B	0.0.0.0
p.kamept.com	unknown	2022-06-15	2022-10-27	2025-02-19	427 B	2.2 kB	104.21.51.166
hlb-eaxfvgbnvw0qzp0dt6bo.cn-hongkong.hlb.sgmor.club	unknown	2024-08-26	2024-12-19	2025-02-18	460 B	165 kB	45.207.231.250
txdy.2016os.com	unknown	2016-01-20	2025-02-06	2025-02-16	403 B	59 kB	116.162.127.61
hlb-hanandha3hiyu8x4d7.cn-hongkong.hlb.sgmor.club	unknown	2024-08-26	2025-02-11	2025-02-19	917 B	280 kB	121.127.231.170
lcap-static-saas.nos-eastchina1.126.net	unknown	1998-02-28	2023-11-22	2025-02-21	439 B	231 kB	115.236.121.20
classify-client.services.mozilla.com	3824	1994-10-18	2019-01-09	2025-02-19	369 B	385 B	35.190.72.216
cdn.gilcdn.com	unknown	2023-12-13	2023-12-15	2025-02-19	998 B	32 kB	54.240.174.61
images.835images29.com	unknown	2025-02-01	2025-02-02	2025-02-19	420 B	93 kB	38.47.118.214
sezhang.s3.ap-southeast-1.amazonaws.com	unknown	2005-08-18	2024-12-04	2025-02-19	420 B	125 kB	52.219.124.155
img.sxjxdyqfw.com	unknown	2024-08-30	2025-01-11	2025-02-16	405 B	80 kB	123.6.18.17
m2n8.xyz	unknown	2024-07-09	2025-02-23	2025-02-23	475 B	285 B	103.45.64.202
kano.guahao.cn	unknown	2006-02-03	2016-06-06	2025-02-19	2.4 kB	2.0 MB	43.152.140.79
cbu01.alicdn.com	44205	2008-06-25	2015-04-17	2025-02-18	1.3 kB	354 kB	163.181.49.228
455img.315qxf.com	unknown	2024-08-29	2025-02-04	2025-02-18	419 B	352 B	40.81.31.119
gif.ssjljk.com	unknown	2024-07-01	2024-10-19	2025-02-18	402 B	296 B	154.91.91.13
vnsimg.hfzkgw.com	unknown	2023-10-11	2024-10-10	2025-02-19	426 B	296 B	154.91.91.55
hlb-315j5user25qep0odr.cn-hongkong.hlb.sgmor.club	unknown	2024-08-26	2025-01-28	2025-02-19	458 B	301 kB	142.0.128.57
normandy.cdn.mozilla.net	3562	1998-01-31	2017-01-30	2025-02-19	341 B	1.5 kB	34.49.51.44
xa1jgfbdlwf2ncxq.412979.com	unknown	2025-01-27	2025-02-23	2025-02-23	1.5 kB	12 kB	192.238.225.11
hm-tjj.xuezhumall.com	unknown	2016-12-14	2024-12-25	2025-02-19	476 B	543 B	138.113.181.2
sm-api.xuezhumall.com	unknown	2016-12-14	2024-12-05	2025-02-19	9.2 kB	455 kB	163.171.134.109
768guangg1.oss-cn-guangzhou.aliyuncs.com	unknown	2012-04-01	2023-03-06	2025-02-18	428 B	83 kB	8.134.16.184
hlb-8id50tfy2q07ug4dpp.cn-hongkong.hlb.sgmor.club	unknown	2024-08-26	2024-08-26	2025-02-19	458 B	164 kB	142.4.119.243
gif.cznnvq.com	unknown	2024-07-01	2025-02-16	2025-02-16	409 B	353 kB	34.81.75.41
vns3.ezrent.hk	unknown	2022-03-27	2024-10-25	2025-02-19	425 B	395 B	0.0.0.0
hm-static.xuezhumall.com	unknown	2016-12-14	2024-12-18	2025-02-19	20 kB	870 kB	138.113.181.2
hm-media.xuezhumall.com	unknown	2016-12-14	2024-12-12	2025-02-19	929 B	139 kB	138.113.181.2
y.gtimg.cn	24534	2008-10-09	2016-06-06	2025-02-17	3.9 kB	3.0 MB	23.36.77.83
g.gtimg.cn	401980	2008-10-09	2019-09-20	2025-02-19	3.9 kB	580 kB	203.205.137.227
images.shencut.com	unknown	2017-05-03	2018-06-23	2020-04-07	838 B	67 kB	114.80.179.239
87img.ezrent.hk	unknown	2022-03-27	2025-02-16	2025-02-16	424 B	58 kB	155.102.29.90
newamjs.cqpwz.com	unknown	2024-08-24	2025-01-22	2025-02-16	418 B	130 kB	218.12.76.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-02-23 09:21:41	low	103.45.64.202	Client IP	ET INFO Observed ZeroSSL Certificate for Suspicious TLD (.xyz)
2025-02-23 09:21:41	low	103.45.64.202	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate
2025-02-23 09:21:41	low	103.45.64.202	Client IP	ET INFO Observed ZeroSSL Certificate for Suspicious TLD (.xyz)
2025-02-23 09:21:41	low	103.45.64.202	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate
2025-02-23 09:21:51	low	Client IP	8.134.16.184	ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)
2025-02-23 09:21:51	low	Client IP	8.134.16.184	ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-02-23	medium	jmyqsl.com	Sinkholed
2025-02-22	medium	hfzkgw.com	Sinkholed
2025-02-22	medium	cznnvq.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (43)

	URL	From	Size	First Seen	Last Seen
	hm-static.xuezhumall.com/lib/axios.browser.min.js	ScriptElement	41 kB	2024-08-04	2025-05-19
Pretty URL hm-static.xuezhumall.com/lib/axios.browser.min.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-04 18:34 Last Seen2025-05-19 00:37 Times Seen373 Hash d3f64bf39e1c78db67f0e0af79401f85 abccd4812975c730ae586e713b3e6e1dddf97c57 01364708e4333d2a60da0613cd415c80bab45e6aa7cc1183137cd8a0b459d387 Loading...

	hm-static.xuezhumall.com/static/js/6206.f50e204a.js	ScriptElement	50 kB	2025-02-11	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/6206.f50e204a.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-11 18:52 Last Seen2025-02-23 09:43 Times Seen21 Hash f65fd5530a56377aadd92a911229c405 b012a6798bf4bd5ec2f9e57badc9e5a24ca6a511 40e4b969933aa337f41c99bede17f586d07ca7bbd29b6fc48f12a5ef0f64e38f Loading...

	hm-static.xuezhumall.com/static/js/main.b2419ebc.js	ScriptElement	66 kB	2025-02-11	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/main.b2419ebc.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-11 18:52 Last Seen2025-02-23 09:43 Times Seen21 Hash 1d4665253644fe499c80fd119c513232 be6995b53615b427cf7fe9123ed8a5a62a1027da d69f1de25b7e2d29eb2983d1a01742265070b3c96a239b98085b8db242c5233e Loading...

	hm-static.xuezhumall.com/static/js/vendor.lodash-es.ba9887da.chunk.js	ScriptElement	16 kB	2024-12-12	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/vendor.lodash-es.ba9887da.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 05:24 Last Seen2025-02-23 09:43 Times Seen91 Hash ae3a0a93eea50c309170fba248d442e0 4bca9a02950b6f5c3b4103f57ecc03d445a93c8d 89bec07d757f36672cba23cace3f3953a0d1b93e3af05586bd6ac205c6bb2f78 Loading...

	hm-static.xuezhumall.com/static/js/vendor.antd-mobile.739df9f1.chunk.js	ScriptElement	48 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/vendor.antd-mobile.739df9f1.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash c42dd33689edac4dcfd4df14961e0c97 45763da902092be754037d9968dd549bb1c94e12 c119b580f50a35b51582c779951b592b92805987d857719f0928e0fb2e324ca9 Loading...

	hm-static.xuezhumall.com/static/js/vendor.floating-ui.c33e6c7f.chunk.js	ScriptElement	18 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/vendor.floating-ui.c33e6c7f.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash 73b5e00455a86f2317db85875d306544 2889c8f16cdb8e38675997042cce083195f26f22 1e5dcdfe18375e6e74a4dfd91c8c6edc225a9796af4f32eb971bd5d2916776bc Loading...

	unknown	Function	37 B	2023-04-11	2025-05-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:49 Last Seen2025-05-20 03:28 Times Seen35012 Hash 1c5c9160600df2d96d69a4ea16cec7ed 3cf678c9135cc952ba6970ef545035bb757a443f a3520fe88e248d2b6c9c6db93309a037ef969fe297208e5bd7e49a55bb32c808 Loading...

	hm-static.xuezhumall.com/lib/fernet.browser.min.js	ScriptElement	103 kB	2024-08-04	2025-05-19
Pretty URL hm-static.xuezhumall.com/lib/fernet.browser.min.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-04 18:34 Last Seen2025-05-19 00:37 Times Seen373 Hash 9364c84c5bee0f1154f632fe0170bbe3 35ef16950cc05eec545f31abc1d21dd2c1116ab8 6030505565de11135c40ad84d9cb45915a82fd403ff2369590a2709247ee54df Loading...

	hm-static.xuezhumall.com/static/js/vendor.emotion.3e58fbd4.js	ScriptElement	25 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/vendor.emotion.3e58fbd4.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash 3e189e65eba5c908c7b4b21440e94d31 4686c443bc5594020c18838feab44ef3d2ed41df 8870c55647b36f5edf4ac7f61069674c1cdf091f01d84d3fa3b9cb292ddb20f8 Loading...

	xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41	ScriptElement	43 B	2024-12-25	2025-05-15
Pretty URL xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41 IP 192.238.225.11 ASN #395954 LEASEWEB-USA-LAX Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-25 01:50 Last Seen2025-05-15 23:51 Times Seen295 Hash 8da76cf39564307668fba14a539dfebf a845d034fa46fb618d6f4c3e506bf65c85251dfe 1dfd0dffc1ff23437f37005fae7afa761920615ac65460c09befac68df9d1501 Loading...

	hm-static.xuezhumall.com/lib/react-dom.min.js	ScriptElement	132 kB	2024-07-25	2025-05-19
Pretty URL hm-static.xuezhumall.com/lib/react-dom.min.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-25 19:25 Last Seen2025-05-19 00:37 Times Seen392 Hash 428f751a03ca768d0b116c3a69dbfb93 ec6d351a3cdc4e69a61db1bd89b6f22c1cf558c6 76b1f64bd873f39acbd44a3b8753a4d49302334982f13197d21265ac0a29a1c6 Loading...

	hm-static.xuezhumall.com/static/js/vendor.react-spring.96d5df8e.chunk.js	ScriptElement	47 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/vendor.react-spring.96d5df8e.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash 85686e547728c2b270eceef7b4d31018 aa7cfbeadc65acd0bcfa409a26c1547c168e7126 b5f5d220cda8c4a80841d8edaf76d5eaf8925cc61458df8d4c1f6d31499fc75a Loading...

	hm-static.xuezhumall.com/static/js/vendor.react-router-dom.fb43507a.chunk.js	ScriptElement	1.3 kB	2024-12-12	2025-05-19
Pretty URL hm-static.xuezhumall.com/static/js/vendor.react-router-dom.fb43507a.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 05:24 Last Seen2025-05-19 00:37 Times Seen327 Hash 491131427dce797cae93212cc559855b 59c3fc5a79509d38ae4eece685a4109457647e2d e428ed62b3eec1c7b52c76fec2c267eea56ffbb8474f5f9e2d3540dd043a7a94 Loading...

	hm-static.xuezhumall.com/static/js/vendor.react-router.5bdec470.chunk.js	ScriptElement	9.9 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/vendor.react-router.5bdec470.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash 2fdfd6b8a16de856e5c0f1b740c9fa20 201ec2936ce5b917b3323e6faee263862c0b600b 2f59156d0a768262d4afb078df112f7d6878533e3da129969a12596c50ef5b81 Loading...

	hm-static.xuezhumall.com/static/js/vendor.react-lazy-load-image-component.cf57fee4.chunk.js	ScriptElement	28 kB	2025-01-17	2025-05-19
Pretty URL hm-static.xuezhumall.com/static/js/vendor.react-lazy-load-image-component.cf57fee4.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-05-19 00:37 Times Seen272 Hash d0e1bbeb141d14ff4055956073ad6ad3 458f60558a94156c3487ff6f05a083c8b4557ce0 c21d4469e5b9375e5e51ef20eca97f778dbe5fa85b42e2e8e1ca9b9ebb401a3d Loading...

	hm-static.xuezhumall.com/static/js/1131.3428b492.chunk.js	ScriptElement	64 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/1131.3428b492.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash 83f66f2548a1d12adae5ec890832abd6 3a371c5e814c130269985abfbc1247a35701decb 648222726990940dec60b1f8bd26da76c63874dbd5cfc6ad8d56842433808d14 Loading...

	unknown	Function	361 B	2025-02-23	2025-02-23
Pretty Introduced by Function Embedded in HTML false Observations First Seen2025-02-23 09:22 Last Seen2025-02-23 09:22 Times Seen1 Hash b5ac3782fc481b386e540eed5a5c1572 a2bda6bc76b8272c265dd65cbc8ef869451cc5c9 ce636436e2913e30da8805a302f88aa0e8fe61d72174dc80d02b00e7b5856257 Loading...

	xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41	ScriptElement	10 kB	2025-02-23	2025-02-23
Pretty URL xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41 IP 192.238.225.11 ASN #395954 LEASEWEB-USA-LAX Introduced by scriptElement Embedded in HTML true Observations First Seen2025-02-23 09:22 Last Seen2025-02-23 09:22 Times Seen1 Hash 82f096a84babb456925f2f988076bdb9 019c2727943f8451c9e755c801e190d534dc9597 347cf13939422b593aa447f422c6501d48f9f8846a12fde62df08d3c8a92abf9 Loading...

	hm-static.xuezhumall.com/static/js/vendor.lodash.540c273f.chunk.js	ScriptElement	34 kB	2024-12-12	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/vendor.lodash.540c273f.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 05:24 Last Seen2025-02-23 09:43 Times Seen91 Hash 11dc35990822f863c293b911acec1e43 d40f1f051f5270a2f06759113795dfba8869e319 160a43e64c316d1a483f8baff658f2d4df9ffb255aac36b9ae09aa91b3521bd5 Loading...

	hm-static.xuezhumall.com/static/js/vendor.formik.5c2b3122.chunk.js	ScriptElement	15 kB	2024-12-12	2025-03-17
Pretty URL hm-static.xuezhumall.com/static/js/vendor.formik.5c2b3122.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 05:24 Last Seen2025-03-17 02:38 Times Seen188 Hash a666995b69d8bfa4e8e7de80a513ab94 5adf43760ec734a9caac669a4902a845d903d7fe 01462a2df904a8c37f8e38d6d57158103bc37ee4bca0d7cb25c5f273681e06d7 Loading...

	hm-static.xuezhumall.com/static/js/vendor.intersection-observer.c3d4c99b.chunk.js	ScriptElement	9.0 kB	2024-12-12	2025-03-17
Pretty URL hm-static.xuezhumall.com/static/js/vendor.intersection-observer.c3d4c99b.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 05:24 Last Seen2025-03-17 02:38 Times Seen188 Hash 74b33af2474a5ac3cf2be780ae0f83b1 71e02e7f0b1c81b1769099592bf6695035c8ec40 f997599e7e0f59d1fd43dbf2bccf0805e78c6694b07cc5cb76f226d704be61e0 Loading...

	hm-static.xuezhumall.com/static/js/vendor.remix-run.3d135c5a.chunk.js	ScriptElement	9.2 kB	2024-12-12	2025-05-19
Pretty URL hm-static.xuezhumall.com/static/js/vendor.remix-run.3d135c5a.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 05:24 Last Seen2025-05-19 00:37 Times Seen327 Hash 44eb36f30ad913eda020dd5fc0efaf81 d8181c75ec740a5409f40df91b4ad4660cd10812 fa1593af13b3143efe3e3f29c31475398ae8fda23bc97603e6dd9020a48723a0 Loading...

	hm-static.xuezhumall.com/static/js/vendor.better-scroll.ce04fde0.chunk.js	ScriptElement	40 kB	2024-12-12	2025-05-19
Pretty URL hm-static.xuezhumall.com/static/js/vendor.better-scroll.ce04fde0.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 05:24 Last Seen2025-05-19 00:37 Times Seen327 Hash 58b3915ee3d282f3cbb3d992f7700fd5 d39ea2e081b0a56abbe67b39096d1cb9b4b748f5 cd6c1626752fb2b099adf68cd496786c36634b01abe2c868f155fcc08d2878ed Loading...

	xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41	ScriptElement	237 B	2024-08-01	2025-05-18
Pretty URL xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41 IP 192.238.225.11 ASN #395954 LEASEWEB-USA-LAX Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-01 12:49 Last Seen2025-05-18 08:11 Times Seen178 Hash 3a4229069507a3ee4c51f245b66e2d8d 9c921dab96b71c8059d53de7181a1494eb1fd98b 073892726fcc835e9faf5911e48ef19295a1a2f8eec69d7373a8c8f77f705daf Loading...

	xa1jgfbdlwf2ncxq.412979.com:8283/script.pageview-props.js	ScriptElement	1.6 kB	2024-12-20	2025-05-19
Pretty URL xa1jgfbdlwf2ncxq.412979.com:8283/script.pageview-props.js IP 192.238.225.11 ASN #395954 LEASEWEB-USA-LAX Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-20 10:25 Last Seen2025-05-19 00:37 Times Seen258 Hash e00f554ec7310e21a484238b2040da8d bf0e24296b9f5811acd0a8d37a1a89bc2c2b22f5 9504223602af53f7db597af98908f6c8e3665bf5f9560cfb63e3a440433a8bef Loading...

	hm-static.xuezhumall.com/static/js/vendor.reduxjs.1d10375a.js	ScriptElement	8.0 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/vendor.reduxjs.1d10375a.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash a36cbf3fc58cdd7e5227291c9c669efa 6104a5ba44ebaa4281250ef50fdb76994b94cf12 ae5653e3da8dd0b1a46a544b2906c8159d4e18147b5be1407cfc9e19a3f8f97f Loading...

	hm-static.xuezhumall.com/static/js/9001.8423e09f.js	ScriptElement	54 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/9001.8423e09f.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash e676a0e9d44ba70c12e852bc042c169a 49467659698c7ac38b3fcb29cc217ca758fa47fd 3d7f77926b008d0ba5b6d2e22a5869c766ef624dbfda9f1a1b12ec8eeec0671a Loading...

	hm-static.xuezhumall.com/static/js/vendor.use-gesture.78ed009b.chunk.js	ScriptElement	24 kB	2024-12-12	2025-03-17
Pretty URL hm-static.xuezhumall.com/static/js/vendor.use-gesture.78ed009b.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 05:24 Last Seen2025-03-17 02:38 Times Seen188 Hash dc84fa529230a09b2fe1f1b6fd30679e 628b18a7b1b978a3bc2a074e344b744140f8873d 7db94557b0d31635000ccba9f9e7ee642dcfc5b41d92973952a9b18a89e130fa Loading...

	hm-static.xuezhumall.com/static/js/vendor.modern-screenshot.2b883ed1.chunk.js	ScriptElement	26 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/vendor.modern-screenshot.2b883ed1.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash 910539a570195a5ff0ca8e08f7dec861 eba651c68cd14448a5414bf9ab18f8478bbc097c ee1ac33a7d2518fcab2cf455ae97806a2d9beca4dadb9a836a535817848a0061 Loading...

	hm-static.xuezhumall.com/static/js/2618.b3e5bf0a.chunk.js	ScriptElement	32 kB	2025-02-11	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/2618.b3e5bf0a.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-11 18:52 Last Seen2025-02-23 09:43 Times Seen21 Hash f12ca6f5cab177b5b5d2bb18bd001335 92924a64bbd3495973517d75fac8e837ec9020c4 4e1e90bc74a8fafcad7d05c020e258cd42118d5814b46a90e5bad9450da1cc19 Loading...

	xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41	ScriptElement	237 B	2024-09-11	2025-05-17
Pretty URL xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41 IP 192.238.225.11 ASN #395954 LEASEWEB-USA-LAX Introduced by scriptElement Embedded in HTML true Observations First Seen2024-09-11 20:52 Last Seen2025-05-17 21:26 Times Seen23 Hash 012796c625311a225cfa2dca410a1e6a c07d1b61f41696acde67f4e0ce315197d392d063 6135e9fed08a07996606e97f5dcabcb1e67cb20efa6ade2c7a982bfab73d20b0 Loading...

	hm-static.xuezhumall.com/static/js/vendor.qrcode.react.4718d689.chunk.js	ScriptElement	16 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/vendor.qrcode.react.4718d689.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash 8f7dc7bf258d751a10c648ae9a556b66 63c58304e193f6c2276c0edec5b0593c301a689f 16385fa284886ae61ffe646427a9944cffe6fe9c1229279d1fcf62c420d643c0 Loading...

	unknown	Function	26 B	2023-04-11	2025-05-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:13 Last Seen2025-05-20 00:41 Times Seen128220 Hash 1c862db5f2555377c2dc1e62ed7b3981 c29e6dc25c08a70995127ec13ded6f80d9a36174 27d373a6961f797edf69a80f7f24877ef85c2fc4f9f770b2540b1bf5e66823ac Loading...

	hm-static.xuezhumall.com/static/js/1301.a29eb308.chunk.js	ScriptElement	16 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/1301.a29eb308.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash 948e5560ad46eec8b88491cc8fdf1261 841796947576d9053982df20ecf78cffa5dd749f 54fd6adb03308d417fee42793a33ce79a0aa0613796edb97b15f5cddd9cbb978 Loading...

	hm-static.xuezhumall.com/static/js/1420.ceb54bd5.chunk.js	ScriptElement	20 kB	2025-02-07	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/1420.ceb54bd5.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-07 07:22 Last Seen2025-02-23 09:43 Times Seen24 Hash 86d9b8865b8d9bcf062c11c3c0d6fdba d35e7cd1b5ec257af61eb09a055830563c373d22 08adebd16d09655279e2f26d876d04762d5791d2a24c90cd2bc96f0e54cbb022 Loading...

	hm-static.xuezhumall.com/lib/react.min.js	ScriptElement	10 kB	2024-07-25	2025-05-19
Pretty URL hm-static.xuezhumall.com/lib/react.min.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-25 19:25 Last Seen2025-05-19 00:37 Times Seen393 Hash 240f5bd7803171d4828d047df9e5cdfc 3e177218f2dafd6af7b19f51783038718da846e4 d685b086fedc81c4590a8ff96d5eb88c6bbb428629bb80de6db38826ebdad7be Loading...

	xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41	ScriptElement	257 B	2025-01-15	2025-05-19
Pretty URL xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41 IP 192.238.225.11 ASN #395954 LEASEWEB-USA-LAX Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-15 11:02 Last Seen2025-05-19 00:37 Times Seen215 Hash 103cae0dbdd58e73b5d6e7a2dd354048 42c7900d7631f9694f26a4e78d7489335c61cb5d e77cfa9890a9cdccd08760bbd667fef19de365f50875cfcb386cb277fe0ca1c2 Loading...

	xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41	ScriptElement	237 B	2025-01-21	2025-05-17
Pretty URL xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41 IP 192.238.225.11 ASN #395954 LEASEWEB-USA-LAX Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-21 03:43 Last Seen2025-05-17 21:26 Times Seen12 Hash 0932d9172c301ed987d816cc8c00e8c9 b6f9ce066f210f6cd0ccb6871cb02e13e89f7923 85be3be55f4fb98681944c56c5b9a46230bb178dc762335b117b8f06c33e5526 Loading...

	hm-static.xuezhumall.com/static/js/vendor.yup.b1180c3a.chunk.js	ScriptElement	36 kB	2024-12-12	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/vendor.yup.b1180c3a.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 05:24 Last Seen2025-02-23 09:43 Times Seen91 Hash c2ecdff0cb7097655fc7d9d7d6b19c85 52af6ade2f84a4d089f75dcbb99aea6af07bed39 878ad0fa6b77aead05542be3c9a9998a99e9807300d14909485a65fa08936f75 Loading...

	hm-static.xuezhumall.com/static/js/1711.7c451141.chunk.js	ScriptElement	32 kB	2025-01-17	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/1711.7c451141.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-17 05:41 Last Seen2025-02-23 09:43 Times Seen36 Hash df48bbb073c141616596d6ebc27fd23d 24126bd3e2fa83aa643b7176029bfd17d01876e4 b19645e358c8a496f607840c849ed2c6b702d610c41256cfcf1cd62f6c67b15d Loading...

	hm-static.xuezhumall.com/static/js/587.110cd4c7.chunk.js	ScriptElement	94 kB	2025-02-11	2025-02-23
Pretty URL hm-static.xuezhumall.com/static/js/587.110cd4c7.chunk.js IP 138.113.181.2 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-11 18:52 Last Seen2025-02-23 09:43 Times Seen21 Hash 07f650e18ff1e1480d97f768d41877e6 3f24dde509f54ce4835b31557338d7b0391518fc 53169e4803d10581f8fd1f6209cef7ab0b669197f8b26dc075678c27ba274af0 Loading...

	node65.aizhantj.com:21233/tjjs/?k=9fh7x3i4rov	ScriptElement	35 kB	2025-01-15	2025-03-14
Pretty URL node65.aizhantj.com:21233/tjjs/?k=9fh7x3i4rov IP 163.171.134.109 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-15 11:02 Last Seen2025-03-14 06:23 Times Seen123 Hash 9032b6c94c0237f14b2544efd7bdaf35 9f2b5049a0b8e3a463eef38faa7c517c7224e1b4 708e7555376a09d5123664d8b8915986f031a4fc3aad92ea5cb2e53fbfc51075 Loading...

	xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41	ScriptElement	237 B	2024-09-01	2025-05-17
Pretty URL xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41 IP 192.238.225.11 ASN #395954 LEASEWEB-USA-LAX Introduced by scriptElement Embedded in HTML true Observations First Seen2024-09-01 23:38 Last Seen2025-05-17 21:26 Times Seen84 Hash 7ea02755b73858829fa1082d991b0293 3e846bc73d47de186cc2293f25abb070da46207a ffb0770b69878d09598dfb0f2738fd281a3bd9aa0f49cbfc6144e85a4e6ab224 Loading...

HTTP Transactions (156)

URL IP Response Size

m2n8.xyz/

103.45.64.202

200 OK

112 B

URL
m2n8.xyz/
IP
103.45.64.202:0
ASN
#152194 CTG Server Limited

File type
HTML document, ASCII text, with no line terminators
Size
112 B (112 bytes)
Hash
a587644afa22d32e02c71770002abcd1
74a14ab4152bdba7f735e5460ce59f9caf038514
0b9fbecc735b8734e4ce90d416a515236744b97b15f23fb03f829930f16a064a

HTTP Headers

GET / HTTP/1.1
Host: m2n8.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Apache
Content-Type: text/html; charset=utf-8
Accept-Ranges: bytes
Cache-Control: max-age=86400
Age: 1
Connection: Close
Content-Length: 112

vasz01.trafficmanager.net:9527/?nb=gj&bm=41&ml=kp

216.180.227.131

200 OK

1.4 kB

URL
vasz01.trafficmanager.net:9527/?nb=gj&bm=41&ml=kp
IP
216.180.227.131:0
ASN
#47191 blue tech technology Co., Limited

File type
HTML document, Unicode text, UTF-8 text
Size
1.4 kB (1383 bytes)
Hash
827883d701d86b00b0f10cdc0e480eab
eaeee0043494395d64501194f3f0d6755cc69bb9
0d7722e7de1fa51e360b325663a870fe3c339648c72661cfb490fa2e5582f0fa

HTTP Headers

GET /?nb=gj&bm=41&ml=kp HTTP/1.1
Host: vasz01.trafficmanager.net:9527
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=60, public
content-type: text/html; charset=utf-8
date: Sun, 23 Feb 2025 09:21:24 GMT
etag: "1740302520"
last-modified: Sun, 23 Feb 2025 09:22:00 GMT
server: APISIX
x-cache: HIT, server, disk
content-length: 1383
X-Firefox-Spdy: h2

xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41

192.238.225.11

200 OK

9.0 kB

URL User Request GET HTTP/1.1
xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
IP
192.238.225.11:8283
ASN
#395954 LEASEWEB-USA-LAX

Certificate
IssuerLet's Encrypt
Subjectxa1jgfbdlwf2ncxq.414875.com
Fingerprint38:74:7C:5E:F5:C0:FB:7D:8E:21:6B:E6:06:DB:19:96:B1:37:C4:EC
ValidityWed, 19 Feb 2025 12:44:58 GMT - Tue, 20 May 2025 12:44:57 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (11731)
Size
9.0 kB (9000 bytes)
Hash
507641c17e8da4d2cc3d4e9df8c2ef8a
a4ea821d84ab3666f15f274218497f20055247a3
0af0adcc9490a921e0cd159680811bf8438caf49271c5607f115bcc1e39cecfc

HTTP Headers

GET /home?channel=gj-41 HTTP/1.1
Host: xa1jgfbdlwf2ncxq.412979.com:8283
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vasz01.trafficmanager.net:9527/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Age: 756
Apisix-Cache-Status: HIT
Cache-Control: max-age=1200, public
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Date: Sun, 23 Feb 2025 08:50:27 GMT
ETag: "1740301747"
Last-Modified: Sun, 23 Feb 2025 09:09:07 GMT
Server: APISIX
X-Cache: HIT, server, disk
X-Process-Time: 0.0153
X-Request-Cache: HIT
X-Request-Cache-Time: 1740300545
X-Request-Id: 1effbb4434464618a0b07a45e2be8b6b
Transfer-Encoding: chunked

xa1jgfbdlwf2ncxq.412979.com:8283/script.pageview-props.js

192.238.225.11

200 OK

1.6 kB

URL GET HTTP/1.1
xa1jgfbdlwf2ncxq.412979.com:8283/script.pageview-props.js
IP
192.238.225.11:8283
ASN
#395954 LEASEWEB-USA-LAX

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectxa1jgfbdlwf2ncxq.414875.com
Fingerprint38:74:7C:5E:F5:C0:FB:7D:8E:21:6B:E6:06:DB:19:96:B1:37:C4:EC
ValidityWed, 19 Feb 2025 12:44:58 GMT - Tue, 20 May 2025 12:44:57 GMT

File type
JavaScript source, ASCII text, with very long lines (1602)
Size
1.6 kB (1604 bytes)
Hash
e00f554ec7310e21a484238b2040da8d
bf0e24296b9f5811acd0a8d37a1a89bc2c2b22f5
9504223602af53f7db597af98908f6c8e3665bf5f9560cfb63e3a440433a8bef

HTTP Headers

GET /script.pageview-props.js HTTP/1.1
Host: xa1jgfbdlwf2ncxq.412979.com:8283
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Age: 38
Apisix-Cache-Status: HIT
Cache-Control: max-age=31536000, public
Content-Length: 1604
Content-Type: application/javascript; charset=utf-8
Date: Thu, 19 Dec 2024 12:33:40 GMT
ETag: "1740302466"
Last-Modified: Sun, 23 Feb 2025 09:21:06 GMT
Server: APISIX
X-Cache: HIT, server, disk

hm-static.xuezhumall.com/lib/react.min.js

138.113.181.2

200 OK

10 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/lib/react.min.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (630)
Size
10 kB (10500 bytes)
Hash
240f5bd7803171d4828d047df9e5cdfc
3e177218f2dafd6af7b19f51783038718da846e4
d685b086fedc81c4590a8ff96d5eb88c6bbb428629bb80de6db38826ebdad7be

HTTP Headers

GET /lib/react.min.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 10500
Connection: keep-alive
Expires: Sat, 24 Jan 2026 12:22:39 GMT
Last-Modified: Thu, 16 Jan 2025 13:51:56 GMT
ETag: "67890efc-2904"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=By4wfOZI6rfif7FFEY3DIQTjFzCBtHxgN4JELGcp6ZUaAlVY0DJOiKMoaEAM2pe1wNkFrVjvpVXM%2Fk%2Bqqp%2BGgdQG9tncfkGha%2BNxyrgBF8ob8YMS6V%2FUtfvifG7MOpD1rq4dFUE%2FXA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 906f3baff80c9206-MUC
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5346&min_rtt=5346&rtt_var=2673&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=658&delivery_rate=0&cwnd=233&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSdgflkfFRA1bh123:8 (W), 1.1 PS-ARN-046HI117:6 (W)
Age: 2581145
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51088-10989

hm-static.xuezhumall.com/static/js/vendor.emotion.3e58fbd4.js

138.113.181.2

200 OK

25 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.emotion.3e58fbd4.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (25014), with no line terminators
Size
25 kB (25014 bytes)
Hash
3e189e65eba5c908c7b4b21440e94d31
4686c443bc5594020c18838feab44ef3d2ed41df
8870c55647b36f5edf4ac7f61069674c1cdf091f01d84d3fa3b9cb292ddb20f8

HTTP Headers

GET /static/js/vendor.emotion.3e58fbd4.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 12:22:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-61b6"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FM9IK9Niqpirft9pmtl8UWIDCybnDPyGb2DpZitqkWp%2FKYvMBYoWDCmhQFrw52a6QtPyR7Ia%2FcgAVxwwakIx1n0oSdkdAPPqeMxTiWxXR7fb6vkLYWdUbqZN7Y5U1rh69oQiGwU1EA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 906f3bb1b9adf04b-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=929&min_rtt=929&rtt_var=464&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=686&delivery_rate=0&cwnd=30&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 ld81:12 (W), 1.1 PS-ARN-04kSW118:8 (W)
Age: 2581146
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_40822-45720

hm-static.xuezhumall.com/static/js/vendor.reduxjs.1d10375a.js

138.113.181.2

200 OK

8.0 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.reduxjs.1d10375a.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (7988), with no line terminators
Size
8.0 kB (7988 bytes)
Hash
a36cbf3fc58cdd7e5227291c9c669efa
6104a5ba44ebaa4281250ef50fdb76994b94cf12
ae5653e3da8dd0b1a46a544b2906c8159d4e18147b5be1407cfc9e19a3f8f97f

HTTP Headers

GET /static/js/vendor.reduxjs.1d10375a.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 12:22:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-1f34"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8uUoC4cUbsODp7VvJssAAaRTq2ntoFvW7usl6YhaFkfsIiZp8icrQy%2Fl%2BHHNUSZuaw8THQjgX28mQjnHfPgdgh730j9QEJzXUB7HKMS66gvnyA5RmQMiuYipoxmGQNLWjVvbfDWvKw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 906f3bb239e7d1f9-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=900&min_rtt=900&rtt_var=450&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=686&delivery_rate=0&cwnd=99&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 ld85:8 (W), 1.1 PS-ARN-046HI117:11 (W)
Age: 2581146
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51902-37972

hm-static.xuezhumall.com/lib/axios.browser.min.js

138.113.181.2

200 OK

41 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/lib/axios.browser.min.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (41442), with no line terminators
Size
41 kB (41442 bytes)
Hash
d3f64bf39e1c78db67f0e0af79401f85
abccd4812975c730ae586e713b3e6e1dddf97c57
01364708e4333d2a60da0613cd415c80bab45e6aa7cc1183137cd8a0b459d387

HTTP Headers

GET /lib/axios.browser.min.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 12:22:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:51:56 GMT
ETag: W/"67890efc-a1e2"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6GXkJQ00CqQs%2F8TCkMP5JgFkB905QekrZB6jipZzJT31soWrW%2Ft0ogNnkYGqrSGCAkbkMqouM%2BNjUnoYydrHxI03mbdwdTLFKtsp2d45gvhmNVjPEt8ddvumFg7fsBUaG9ZIK6ZRhg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 906f3bb12e824d86-FRA
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=530&min_rtt=530&rtt_var=265&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=674&delivery_rate=0&cwnd=223&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSdgflkfFRA1bh123:2 (W), 1.1 PS-ARN-046HI117:10 (W)
Age: 2581146
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51766-12856

hm-static.xuezhumall.com/lib/fernet.browser.min.js

138.113.181.2

200 OK

103 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/lib/fernet.browser.min.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators, with escape sequences
Size
103 kB (103126 bytes)
Hash
9364c84c5bee0f1154f632fe0170bbe3
35ef16950cc05eec545f31abc1d21dd2c1116ab8
6030505565de11135c40ad84d9cb45915a82fd403ff2369590a2709247ee54df

HTTP Headers

GET /lib/fernet.browser.min.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 103126
Connection: keep-alive
Expires: Sat, 24 Jan 2026 12:22:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:51:56 GMT
ETag: "67890efc-192d6"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bysy9jbHFyJcsj9PkyqvQk3rRiS14d7AJOHNqgYgFev%2BahyOXjb1RrJ7bXcWG2MmVq3s5THfCn4fo4LWxk1hXaVHAiICwQPVqVXGJhb%2BsnoNFrtxj%2FLTMrb1HTW6ApgX8jk0YncA3A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 906f3baf38e06ef0-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=561&min_rtt=561&rtt_var=280&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=673&delivery_rate=0&cwnd=241&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSfgblPAR2bz95:0 (W), 1.1 PS-ARN-04kSW118:15 (W)
Age: 2581146
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_41396-11682

hm-static.xuezhumall.com/static/js/9001.8423e09f.js

138.113.181.2

200 OK

54 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/9001.8423e09f.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (53675)
Size
54 kB (53746 bytes)
Hash
e676a0e9d44ba70c12e852bc042c169a
49467659698c7ac38b3fcb29cc217ca758fa47fd
3d7f77926b008d0ba5b6d2e22a5869c766ef624dbfda9f1a1b12ec8eeec0671a

HTTP Headers

GET /static/js/9001.8423e09f.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 53746
Connection: keep-alive
Expires: Sat, 24 Jan 2026 12:22:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: "67890f26-d1f2"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YVFYMy7YnSnOIAJH1Mt0c4y%2BTEjsgFSylo1c2VV9T3m8LwJfMA1EEZGs8tFfXYi9Nm0wgEPREmDATSdwuq6FgtahOREf%2FVWX%2F5%2BEt0sHUtjtjtIeE65DSJZ0Ato4eyQ1AtNmjWSrhg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 906f3bb2a99cd14e-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1241&min_rtt=1241&rtt_var=620&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=675&delivery_rate=0&cwnd=218&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSfgblPAR2cm93:0 (W), 1.1 PS-ARN-046HI117:6 (W)
Age: 2581146
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51088-10990

hm-static.xuezhumall.com/static/js/6206.f50e204a.js

138.113.181.2

200 OK

50 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/6206.f50e204a.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (50452)
Size
50 kB (50523 bytes)
Hash
f65fd5530a56377aadd92a911229c405
b012a6798bf4bd5ec2f9e57badc9e5a24ca6a511
40e4b969933aa337f41c99bede17f586d07ca7bbd29b6fc48f12a5ef0f64e38f

HTTP Headers

GET /static/js/6206.f50e204a.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 50523
Connection: keep-alive
Expires: Tue, 17 Feb 2026 16:33:47 GMT
Last-Modified: Tue, 11 Feb 2025 16:23:38 GMT
ETag: "67ab798a-c55b"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BqVqOVTTlUucXYwM%2BLABp166QEtrdu%2FZrFiItS%2BMZlvOwBiweFSBVEBtPz0HmYvguGF1I%2FUt39AABV2wz6L%2BdIuOljR6h83LRnq6q7ibGGiLbTdQkKJos4BXQk6om%2FNDUD0Gj%2BT%2F3g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 9107747fc9e8956e-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1100&min_rtt=1100&rtt_var=550&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=679&delivery_rate=0&cwnd=129&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 ld84:9 (W), 1.1 PS-ARN-04kSW118:8 (W)
Age: 492477
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_40822-45722

hm-static.xuezhumall.com/static/css/main.e5c9da01.css

138.113.181.2

200 OK

1.6 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/css/main.e5c9da01.css
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
ASCII text, with very long lines (6989), with no line terminators
Size
1.6 kB (1577 bytes)
Hash
5103436fb88c08d28a5d0df376c08200
a66919d36d70b1b4eb6300c5a01dc2ecc76c5797
7ae930f0cf556f06dc1c9dc3982cb59356dbb512e67000a8df4157dce9a81674

HTTP Headers

GET /static/css/main.e5c9da01.css HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 06 Feb 2026 15:39:10 GMT
Last-Modified: Thu, 06 Feb 2025 15:23:16 GMT
ETag: W/"67a4d3e4-1b4d"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HwP5ak8Td3e1QujWv4FjJ4hHDgfYuVV4TtudTYiTOZ2NPc9BTqM7hy8hoXb4CZhnMmj4jkmcuKD8W%2F6YHfMoTUoFpsEBvH4Q9dSNCVkqiOrhEJ%2Bz67fHIjLNfqhLKhiv2gRggKTA2g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 90dc33ea1df2d0be-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1078&min_rtt=1078&rtt_var=539&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=663&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 bl69:6 (W), 1.1 PS-ARN-046HI117:10 (W)
Age: 1446154
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51766-12857

hm-static.xuezhumall.com/static/css/main.e5c9da018b955e0b55a3.css

138.113.181.2

200 OK

1.6 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/css/main.e5c9da018b955e0b55a3.css
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
ASCII text, with very long lines (6989), with no line terminators
Size
1.6 kB (1577 bytes)
Hash
5103436fb88c08d28a5d0df376c08200
a66919d36d70b1b4eb6300c5a01dc2ecc76c5797
7ae930f0cf556f06dc1c9dc3982cb59356dbb512e67000a8df4157dce9a81674

HTTP Headers

GET /static/css/main.e5c9da018b955e0b55a3.css HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 06 Feb 2026 15:39:10 GMT
Last-Modified: Thu, 06 Feb 2025 15:23:16 GMT
ETag: W/"67a4d3e4-1b4d"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LGA%2BF8DRGEaY3LLyMedY9K%2FO88NdzRhm9ei0Oy5J7pMfAGGdW3scFDnDh4FaBltQ2pweapQvp2L5LM0mG%2BhhY1lODvt4ErzzEm3kKpuVvmBkywNQZxc3asqNcXBFHoyeO%2BOLIfvg1w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 90dc33eb6b3fef06-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=925&min_rtt=925&rtt_var=462&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=676&delivery_rate=0&cwnd=92&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 ld86:5 (W), 1.1 PS-ARN-04kSW118:15 (W)
Age: 1446154
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_41396-11683

hm-static.xuezhumall.com/lib/react-dom.min.js

138.113.181.2

200 OK

132 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/lib/react-dom.min.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (945)
Size
132 kB (131594 bytes)
Hash
428f751a03ca768d0b116c3a69dbfb93
ec6d351a3cdc4e69a61db1bd89b6f22c1cf558c6
76b1f64bd873f39acbd44a3b8753a4d49302334982f13197d21265ac0a29a1c6

HTTP Headers

GET /lib/react-dom.min.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 131594
Connection: keep-alive
Expires: Sat, 24 Jan 2026 12:22:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:51:56 GMT
ETag: "67890efc-2020a"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4m13vdlRS%2BFv%2F7ir3b6VtEMKOCxo%2F7SYlYbjSs2XOgw3jFkNl3O9gRAPKxSfXi2gOLn0M47tWBMEuPTqOgY4pl%2Fi97cqu9BPuFiUDv5xgX7TD%2B3epip0Lk%2Bx1wBw9GxiJxh9tGeo6w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 906f3bb08f400485-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=487&min_rtt=487&rtt_var=243&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=663&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01Wla65:8 (W), 1.1 PS-ARN-04kSW118:12 (W)
Age: 2581146
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_41158-43360

hm-static.xuezhumall.com/static/js/main.b2419ebc.js

138.113.181.2

200 OK

66 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/main.b2419ebc.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
66 kB (65749 bytes)
Hash
1d4665253644fe499c80fd119c513232
be6995b53615b427cf7fe9123ed8a5a62a1027da
d69f1de25b7e2d29eb2983d1a01742265070b3c96a239b98085b8db242c5233e

HTTP Headers

GET /static/js/main.b2419ebc.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 65749
Connection: keep-alive
Expires: Tue, 17 Feb 2026 16:33:47 GMT
Last-Modified: Tue, 11 Feb 2025 16:23:38 GMT
ETag: "67ab798a-100d5"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ca8BnfShpcaGiiwZZft54XF6P1051NhthYwRh0kA1SgxUNlffAKesNNnBwUOJbf1oB8zau8rI4BaFxLixe7CzCTwMlwKyP%2BAgz2TXOAdbUsEDnZsHoYkvVfaeacdeOg2K71ARGQhNw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 91077480adc79764-FRA
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=593&min_rtt=593&rtt_var=296&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=691&delivery_rate=0&cwnd=227&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSdgflkfFRA1ft122:1 (W), 1.1 PS-ARN-046HI117:11 (W)
Age: 492477
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51902-37973

hm-static.xuezhumall.com/static/media/coverLoadingBright.ea956356f4dbf061eb29.image

138.113.181.2

200 OK

8.6 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/media/coverLoadingBright.ea956356f4dbf061eb29.image
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
ASCII text, with very long lines (8637), with no line terminators
Size
8.6 kB (8637 bytes)
Hash
bceb996f2ee62ae74d6fea88558e8512
2b8a1cd9e666f802f4f6d2b0947e1080197facd0
235869d262345d92199dc994e9121367caf77cdb5cfc94c0a5c43dfb68c35069

HTTP Headers

GET /static/media/coverLoadingBright.ea956356f4dbf061eb29.image HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/octet-stream
Content-Length: 8637
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:23:28 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: "67890f26-21bd"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Accept-Ranges: bytes
cf-cache-status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B4ZqyEblv%2BhUbPyuW2T%2FhvkbeP3e80WGtnyqG66jKIVrzWi%2FlXSbTXKm5tSRkBUcWGu%2BYU2bZ5spsIz2o3XwbufOBGShCpuBu8jw1%2F8rQPQqHQhvPsHeHV4Rfd12lT0XHk0GUyGq3w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0df9ac80265-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=908&min_rtt=908&rtt_var=454&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=869&delivery_rate=0&cwnd=237&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSfgblPAR2ab92:10 (W), 1.1 PS-ARN-046HI117:14 (W)
Age: 2591896
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_52137-32833

hm-static.xuezhumall.com/static/js/vendor.lodash.540c273f.chunk.js

138.113.181.2

200 OK

12 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.lodash.540c273f.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (33899), with no line terminators
Size
12 kB (12073 bytes)
Hash
11dc35990822f863c293b911acec1e43
d40f1f051f5270a2f06759113795dfba8869e319
160a43e64c316d1a483f8baff658f2d4df9ffb255aac36b9ae09aa91b3521bd5

HTTP Headers

GET /static/js/vendor.lodash.540c273f.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:23:26 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-846b"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Content-Encoding: gzip
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yunUEuaR6udD8A9D%2BRqKI2OFnAUyYuO7ejxVomplUa5ko8so4e9H0EQ42x5TZpPlJQ8e1Wq5RYeSgt8gtImWGAOsdcXtQAXdDq01xiun%2BbKzurFCKme5g0fD5HWaRuREZi6f4OaCow%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0e1fc97ef2f-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=786&min_rtt=786&rtt_var=393&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=778&delivery_rate=0&cwnd=93&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 ld81:0 (W), 1.1 PS-ARN-04kSW118:12 (W)
Age: 2591898
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_41158-43362

hm-static.xuezhumall.com/static/js/vendor.antd-mobile.739df9f1.chunk.js

138.113.181.2

200 OK

15 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.antd-mobile.739df9f1.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (47760), with no line terminators
Size
15 kB (15245 bytes)
Hash
c42dd33689edac4dcfd4df14961e0c97
45763da902092be754037d9968dd549bb1c94e12
c119b580f50a35b51582c779951b592b92805987d857719f0928e0fb2e324ca9

HTTP Headers

GET /static/js/vendor.antd-mobile.739df9f1.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:23:26 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-ba90"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mjfS9PDRdWGK%2F%2BDzmDcETleaRxbKPcYchDBFUwpO6ouAapmbC0wgmie%2FNMoCEY1R0khNBVI65nrZ32Cp5%2BU87KD0lj%2B9AM%2FrLsGcbX%2B85EyfLVRR%2BJpFVbEO6tr2WgvLzHxrLfin3A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0e348cd6ed8-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=921&min_rtt=921&rtt_var=460&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=798&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01jDc66:11 (W), 1.1 PS-ARN-04kSW118:15 (W)
Age: 2591898
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_41396-11690

hm-static.xuezhumall.com/static/js/vendor.lodash-es.ba9887da.chunk.js

138.113.181.2

200 OK

5.1 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.lodash-es.ba9887da.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (15778), with no line terminators
Size
5.1 kB (5085 bytes)
Hash
ae3a0a93eea50c309170fba248d442e0
4bca9a02950b6f5c3b4103f57ecc03d445a93c8d
89bec07d757f36672cba23cace3f3953a0d1b93e3af05586bd6ac205c6bb2f78

HTTP Headers

GET /static/js/vendor.lodash-es.ba9887da.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:23:26 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-3da2"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FAehTsp%2Bb57gMRKDU2wUbmwpcUmdd6JdGTwMVRMKRM0j2gcC5LCeRJ9FmdK2k6VIDwBTzxhXFiurGGSa9zXmM4hIH1tLkSJVYb7l2mmLix4WzPgW6Wb39IHWn47cUr%2BbL%2BwOqERL%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0e42b7a2c8d-DFW
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=171465&min_rtt=171465&rtt_var=85732&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=796&delivery_rate=0&cwnd=30&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSdgflkfFRA2fd90:13 (W), 1.1 PS-ARN-04kSW118:12 (W)
Age: 2591898
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_41158-43363

hm-static.xuezhumall.com/static/js/vendor.yup.b1180c3a.chunk.js

138.113.181.2

200 OK

12 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.yup.b1180c3a.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (36514), with no line terminators
Size
12 kB (12113 bytes)
Hash
c2ecdff0cb7097655fc7d9d7d6b19c85
52af6ade2f84a4d089f75dcbb99aea6af07bed39
878ad0fa6b77aead05542be3c9a9998a99e9807300d14909485a65fa08936f75

HTTP Headers

GET /static/js/vendor.yup.b1180c3a.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:23:26 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-8ea2"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Content-Encoding: gzip
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FJF26gdzQLDhoOUcYooQ0mBt2HulZ5nmDeCd7bV8QryoEwkUfjA1zqxoiIceHYLOOo9SBCfFMb4hmZb2SN1lLHVcQu6chTKbe%2B1S1DGe6aReYqodY5gahbu%2FP2cp5XGf5IybrUOegQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0e3fb149f05-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=705&min_rtt=561&rtt_var=37&sent=21&recv=23&lost=0&retrans=0&sent_bytes=27290&recv_bytes=1538&delivery_rate=35203045&cwnd=257&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSfgblPAR2bz95:11 (W), 1.1 PS-ARN-046HI117:11 (W)
Age: 2591898
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51902-37978

hm-static.xuezhumall.com/static/js/vendor.react-spring.96d5df8e.chunk.js

138.113.181.2

200 OK

18 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.react-spring.96d5df8e.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (47412), with no line terminators
Size
18 kB (18046 bytes)
Hash
85686e547728c2b270eceef7b4d31018
aa7cfbeadc65acd0bcfa409a26c1547c168e7126
b5f5d220cda8c4a80841d8edaf76d5eaf8925cc61458df8d4c1f6d31499fc75a

HTTP Headers

GET /static/js/vendor.react-spring.96d5df8e.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:20 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-b934"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N1VjRQE2lZ%2F1VI4iqbbLDbVqhN1EELIE7fvuSm0gXt6Q%2FZ5Wh9Qb%2BRAqw81YkSvXTBIu%2FNe42iEImUlTNRfL93xlZ7tzWkcpK%2FA%2FgIPj7KVgk65jNZq%2BMVIuhg4RBwgfPRTHiCRvyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0e5893b2a0d-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1329&min_rtt=1329&rtt_var=664&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=800&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01tTu64:11 (W), 1.1 PS-ARN-046HI117:6 (W)
Age: 2591844
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51088-10994

hm-static.xuezhumall.com/static/js/vendor.formik.5c2b3122.chunk.js

138.113.181.2

200 OK

4.7 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.formik.5c2b3122.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (14757)
Size
4.7 kB (4745 bytes)
Hash
a666995b69d8bfa4e8e7de80a513ab94
5adf43760ec734a9caac669a4902a845d903d7fe
01462a2df904a8c37f8e38d6d57158103bc37ee4bca0d7cb25c5f273681e06d7

HTTP Headers

GET /static/js/vendor.formik.5c2b3122.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:23:26 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-39fb"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lNk9ogGeXQnD6Woh0Dfy5gOrr5wv8xOWIkF6UqkVnqObPTpUWT%2BluntzFR7yHhlZl9ykdgLfG6dRKxhcT5zJVWZPLXTWRUCLA98ECt1S0Zn5mN2BcLso6xPequDCx8FHUatjBa%2FFkA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0e7ab72d0b4-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1350&min_rtt=1136&rtt_var=39&sent=34&recv=36&lost=0&retrans=0&sent_bytes=44077&recv_bytes=1534&delivery_rate=32512178&cwnd=255&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01jDc66:11 (W), 1.1 PS-ARN-04kSW118:15 (W)
Age: 2591898
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_41396-11691

hm-static.xuezhumall.com/static/js/vendor.floating-ui.c33e6c7f.chunk.js

138.113.181.2

200 OK

7.0 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.floating-ui.c33e6c7f.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (18350), with no line terminators
Size
7.0 kB (6989 bytes)
Hash
73b5e00455a86f2317db85875d306544
2889c8f16cdb8e38675997042cce083195f26f22
1e5dcdfe18375e6e74a4dfd91c8c6edc225a9796af4f32eb971bd5d2916776bc

HTTP Headers

GET /static/js/vendor.floating-ui.c33e6c7f.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:23:26 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-47ae"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qbItZgMv2zQBsBSa%2BcVSTRM3BExfa5HPh9OmEPRrkaSboJQO2Wt%2BKyfFQ3DnJu7S%2FO%2FHCjWxqIHQ9zQloAvUH%2FRKme4nUKYq0bPHyVdL62HrBZAG2wZddP0oqmCsKPxVqdVB53FiJw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0e67b22d0bf-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1116&min_rtt=1116&rtt_var=558&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=798&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01tTu64:5 (W), 1.1 PS-ARN-04kSW118:12 (W)
Age: 2591898
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_41158-43364

hm-static.xuezhumall.com/static/js/vendor.qrcode.react.4718d689.chunk.js

138.113.181.2

200 OK

5.8 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.qrcode.react.4718d689.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (15684)
Size
5.8 kB (5781 bytes)
Hash
8f7dc7bf258d751a10c648ae9a556b66
63c58304e193f6c2276c0edec5b0593c301a689f
16385fa284886ae61ffe646427a9944cffe6fe9c1229279d1fcf62c420d643c0

HTTP Headers

GET /static/js/vendor.qrcode.react.4718d689.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:20 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-3da0"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lL2Evk4cpH8LA8jedt7aCzPUvO1QZ6jy3kXYr21p3DZwZLAMPhd6e1r0CLM4U6yXcPsXH%2FRuJGYRzI8Cd9KHeQYxzGz8a9uwZFV0ozQcm%2FG3%2Bd%2BpeSEliq7G%2BWRQLIPr09Dh52KBjA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0ea5fe1ebb2-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1169&min_rtt=1169&rtt_var=584&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=800&delivery_rate=0&cwnd=246&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01yXC70:4 (W), 1.1 PS-ARN-04kSW118:8 (W)
Age: 2591844
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_40822-45726

hm-static.xuezhumall.com/static/js/vendor.use-gesture.78ed009b.chunk.js

138.113.181.2

200 OK

7.4 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.use-gesture.78ed009b.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (23513), with no line terminators
Size
7.4 kB (7360 bytes)
Hash
dc84fa529230a09b2fe1f1b6fd30679e
628b18a7b1b978a3bc2a074e344b744140f8873d
7db94557b0d31635000ccba9f9e7ee642dcfc5b41d92973952a9b18a89e130fa

HTTP Headers

GET /static/js/vendor.use-gesture.78ed009b.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:23:28 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-5bd9"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=58WCnkZonTu%2F7eFGXvJUKTdJmR9HGnubsPctNgcpHlSuTzA9g33nsy38OD36GPi%2FdW1sRDczn8WPsQh%2BPP9UPyUKE%2BYmDr8aXMibAeTtDP%2BxTYk4KlNMpf02aFqt6j9RmP0MO9wtCg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0ea0b1703fd-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=305&min_rtt=159&rtt_var=75&sent=16&recv=18&lost=0&retrans=0&sent_bytes=18940&recv_bytes=1556&delivery_rate=53789473&cwnd=256&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSfgblPAR2bz95:13 (W), 1.1 PS-ARN-046HI117:11 (W)
Age: 2591896
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51902-37979

hm-static.xuezhumall.com/static/js/vendor.modern-screenshot.2b883ed1.chunk.js

138.113.181.2

200 OK

11 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.modern-screenshot.2b883ed1.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (26393), with no line terminators
Size
11 kB (11073 bytes)
Hash
910539a570195a5ff0ca8e08f7dec861
eba651c68cd14448a5414bf9ab18f8478bbc097c
ee1ac33a7d2518fcab2cf455ae97806a2d9beca4dadb9a836a535817848a0061

HTTP Headers

GET /static/js/vendor.modern-screenshot.2b883ed1.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:20 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-6719"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
Content-Encoding: gzip
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fF7heptm5w1J6N%2F%2FKOvBsC6QotxKE%2BHueyVp36rOAeBqXRphNgeBYDN6VZQG6wZd%2FjS5oxeZWJukU7U1B8f6ioygJFY%2BDsFp5Up4ZS9UtV%2BTGSKVTlsEaiDogSah4P3U7%2BJXCCKvwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0eb1ebc71d5-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=864&min_rtt=822&rtt_var=113&sent=8&recv=10&lost=0&retrans=0&sent_bytes=8192&recv_bytes=1588&delivery_rate=10895522&cwnd=128&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 ld84:9 (W), 1.1 PS-ARN-046HI117:10 (W)
Age: 2591844
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51766-12861

hm-static.xuezhumall.com/static/js/vendor.react-router-dom.fb43507a.chunk.js

138.113.181.2

200 OK

677 B

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.react-router-dom.fb43507a.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (1270), with no line terminators
Size
677 B (677 bytes)
Hash
491131427dce797cae93212cc559855b
59c3fc5a79509d38ae4eece685a4109457647e2d
e428ed62b3eec1c7b52c76fec2c267eea56ffbb8474f5f9e2d3540dd043a7a94

HTTP Headers

GET /static/js/vendor.react-router-dom.fb43507a.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:20 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-4f6"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LOn6%2BgTXUFQOx9StRJWY%2FcuNitc3lIzK7GG4k3ou60Tt%2BREP%2BpLSIGlT0ht9RUVMIMrqXsmTpqbsSAFdolv1riXCD%2FR4gzEE6AhPhiT3xfKXMPU38c662LPw9K4SVZW384zKt%2B1H7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0ef0c3bbfbd-ATL
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=133068&min_rtt=133068&rtt_var=66534&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=810&delivery_rate=0&cwnd=30&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-FRA-01KiO164:4 (W), 1.1 PS-ARN-04kSW118:15 (W)
Age: 2591844
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_41396-11693

hm-static.xuezhumall.com/static/js/vendor.react-router.5bdec470.chunk.js

138.113.181.2

200 OK

3.7 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.react-router.5bdec470.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (9791)
Size
3.7 kB (3684 bytes)
Hash
2fdfd6b8a16de856e5c0f1b740c9fa20
201ec2936ce5b917b3323e6faee263862c0b600b
2f59156d0a768262d4afb078df112f7d6878533e3da129969a12596c50ef5b81

HTTP Headers

GET /static/js/vendor.react-router.5bdec470.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:23:28 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-269b"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=exs4NrLWL8Tm6m5YVOFz%2Ff6XQX8d%2FI7YNYDTTRB9tZhcjMxhRiQnuqYGqwHxadp1tILx3hzMepdeE7oSTsuul3Pvlq7PffP3HohLsVtqIJEoRewuXZh4%2BZa0wETSlyDnM%2FjLuMXriA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0ec5c42ef2f-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=744&min_rtt=696&rtt_var=85&sent=12&recv=11&lost=0&retrans=0&sent_bytes=13247&recv_bytes=1568&delivery_rate=21820652&cwnd=104&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 ld81:6 (W), 1.1 PS-ARN-046HI117:6 (W)
Age: 2591896
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51088-10995

hm-static.xuezhumall.com/static/js/vendor.intersection-observer.c3d4c99b.chunk.js

138.113.181.2

200 OK

3.0 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.intersection-observer.c3d4c99b.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (9032), with no line terminators
Size
3.0 kB (3043 bytes)
Hash
74b33af2474a5ac3cf2be780ae0f83b1
71e02e7f0b1c81b1769099592bf6695035c8ec40
f997599e7e0f59d1fd43dbf2bccf0805e78c6694b07cc5cb76f226d704be61e0

HTTP Headers

GET /static/js/vendor.intersection-observer.c3d4c99b.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:20 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-2348"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1T42tt8oQ%2BqhO%2B%2BrV4axMhF5gQf7gyjX1HwJo1FoEc3rqUjFBPEQYSmPZJjIYKwgK%2FJGW8wHER5upQUTxfcN4Gekbx%2FYsq8SZtkBO5Fsi2ui3%2FGVCbjFukL%2BlQDLwPs4OJYj4biQiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0ee18cc2a0d-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1380&min_rtt=1279&rtt_var=47&sent=17&recv=19&lost=0&retrans=0&sent_bytes=19222&recv_bytes=1618&delivery_rate=15293296&cwnd=257&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01jDc66:7 (W), 1.1 PS-ARN-04kSW118:12 (W)
Age: 2591844
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_41158-43365

hm-static.xuezhumall.com/static/js/vendor.remix-run.3d135c5a.chunk.js

138.113.181.2

200 OK

4.0 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.remix-run.3d135c5a.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (9124)
Size
4.0 kB (3966 bytes)
Hash
44eb36f30ad913eda020dd5fc0efaf81
d8181c75ec740a5409f40df91b4ad4660cd10812
fa1593af13b3143efe3e3f29c31475398ae8fda23bc97603e6dd9020a48723a0

HTTP Headers

GET /static/js/vendor.remix-run.3d135c5a.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:20 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-23fd"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JJ25OZ0bDOz%2BsCUZQSy70ghs5gv0f79RBFyoa6IFTtL%2FcRP6z%2B1AbJKa9tVuUGusjUeMD6hspd2maJyajigspodkDfE2pphxnl28gJ8BuOAQXf7dz8xkhXrosYzPZ2WGkSAC3zfFuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0ee1f0bd6e2-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=839&min_rtt=839&rtt_var=419&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=794&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01yXC70:9 (W), 1.1 PS-ARN-04kSW118:8 (W)
Age: 2591844
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_40822-45727

hm-static.xuezhumall.com/static/js/1711.7c451141.chunk.js

138.113.181.2

200 OK

10 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/1711.7c451141.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (31771)
Size
10 kB (10386 bytes)
Hash
df48bbb073c141616596d6ebc27fd23d
24126bd3e2fa83aa643b7176029bfd17d01876e4
b19645e358c8a496f607840c849ed2c6b702d610c41256cfcf1cd62f6c67b15d

HTTP Headers

GET /static/js/1711.7c451141.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:20 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-7c68"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QPDfIw7P9J9V2orQXnFanR543cxdReKJvJl5arhbBYefat%2B9ydjVUPHrpEAfZEaOfyd%2FV5%2F0U1YOQrEiv4BIVPZqkfWKYg49W%2Bldlse%2FADE6v7r0BMk4EeuWnNlTXQDk3zllQXIhxw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0f0edacd0bf-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1189&min_rtt=1108&rtt_var=197&sent=9&recv=11&lost=0&retrans=0&sent_bytes=8162&recv_bytes=1568&delivery_rate=7141858&cwnd=256&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01yXC70:4 (W), 1.1 PS-ARN-046HI117:11 (W)
Age: 2591844
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51902-37980

hm-static.xuezhumall.com/static/js/587.110cd4c7.chunk.js

138.113.181.2

200 OK

21 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/587.110cd4c7.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
21 kB (20883 bytes)
Hash
07f650e18ff1e1480d97f768d41877e6
3f24dde509f54ce4835b31557338d7b0391518fc
53169e4803d10581f8fd1f6209cef7ab0b669197f8b26dc075678c27ba274af0

HTTP Headers

GET /static/js/587.110cd4c7.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 11 Feb 2026 16:29:45 GMT
Last-Modified: Tue, 11 Feb 2025 16:23:38 GMT
ETag: W/"67ab798a-16f60"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lefwFuL3SqJ1Tm%2FIeozy4XvwHEFkPCH8mKIppejX0kQ19GjS0osy0lnyc1kLVvobfTZgPoQDEherS49U%2F2rWvZV%2BDAKPQ6oCUjJhKgtY3fgpW2I%2BxbjCdBDn4rexgAUg9SJcNRT15w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 9105b780f9ced3af-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1661&min_rtt=1661&rtt_var=830&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=912&delivery_rate=0&cwnd=244&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01tTu64:4 (W), 1.1 PS-ARN-04kSW118:15 (W)
Age: 1011119
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a8_PS-ARN-04kSW118_41396-11695

hm-static.xuezhumall.com/static/css/587.5be3f7ae3f6f2535512d.css

138.113.181.2

200 OK

27 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/css/587.5be3f7ae3f6f2535512d.css
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
Unicode text, UTF-8 text, with very long lines (26840), with no line terminators
Size
27 kB (26860 bytes)
Hash
5d3cd26ebb969c7741f6307d7df8d39c
acde8cdc29b67a4f17831d05b86b6233283b80cf
7fbd9c39498dd06dd986c4e7598f5a9cf3da6f6f7021e53c947d9079ed86f9a9

HTTP Headers

GET /static/css/587.5be3f7ae3f6f2535512d.css HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:44 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 31 Jan 2026 21:22:52 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-68ec"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AHvHv2zbEyYYY3jG5YROH4TfWIg8n%2FNqPBVy%2BrXE%2BSHMCU7mlxrClIZtDs5ST9l3PkfarcxZKXRrH3juMHws6Zt6yPjiggFPKC56FVDLwDC66ZgO9yUoAKhBHFWiMtgDU%2F8qnUYANg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 906f3bc48913bd95-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=821&min_rtt=821&rtt_var=410&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=691&delivery_rate=0&cwnd=127&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 ld85:1 (W), 1.1 PS-ARN-046HI117:10 (W)
Age: 1943932
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_51766-12862

hm-static.xuezhumall.com/static/js/1301.a29eb308.chunk.js

138.113.181.2

200 OK

6.8 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/1301.a29eb308.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (16270), with no line terminators
Size
6.8 kB (6822 bytes)
Hash
948e5560ad46eec8b88491cc8fdf1261
841796947576d9053982df20ecf78cffa5dd749f
54fd6adb03308d417fee42793a33ce79a0aa0613796edb97b15f5cddd9cbb978

HTTP Headers

GET /static/js/1301.a29eb308.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:20 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-3f8e"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kkK0ZLZvjR467tPX07TFEqzSGLGkZRo1ldffTfS1IRMJbk3uKVrjPe7bs%2FJZN5tY7flq7q4jKjnTZecJsOSkWVxKMtd33zbzI2G504B%2Bk9eCg4XjBowiHsjfkhVTK%2FnDlYbRi4UIPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0f839dfd6e2-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=864&min_rtt=839&rtt_var=130&sent=7&recv=9&lost=0&retrans=0&sent_bytes=5131&recv_bytes=1564&delivery_rate=7891891&cwnd=254&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01Wla65:3 (W), 1.1 PS-ARN-04kSW118:15 (W)
Age: 2591845
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a9_PS-ARN-04kSW118_41396-11700

hm-static.xuezhumall.com/static/js/vendor.react-lazy-load-image-component.cf57fee4.chunk.js

138.113.181.2

200 OK

6.0 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.react-lazy-load-image-component.cf57fee4.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (27772), with no line terminators
Size
6.0 kB (6025 bytes)
Hash
d0e1bbeb141d14ff4055956073ad6ad3
458f60558a94156c3487ff6f05a083c8b4557ce0
c21d4469e5b9375e5e51ef20eca97f778dbe5fa85b42e2e8e1ca9b9ebb401a3d

HTTP Headers

GET /static/js/vendor.react-lazy-load-image-component.cf57fee4.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:20 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-6c7c"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B3M9d3eqE5PbPq3OsMbqsg9qH8QCXKL2nXJfKfyYockejvncRwtV0A5Q7yMCpJm%2FJwt9eG%2BLASEQQWhE79lSG4Y0AXBRxfhbLH1cwa0rfhqEoqcgbuuL3Xhkm2vIGwucOvBNv1%2B8XQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0f82cff9f05-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=675&min_rtt=561&rtt_var=23&sent=33&recv=35&lost=0&retrans=0&sent_bytes=40594&recv_bytes=2376&delivery_rate=35203045&cwnd=257&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSfgblPAR2cm93:5 (W), 1.1 PS-ARN-04kSW118:12 (W)
Age: 2591845
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a9_PS-ARN-04kSW118_41158-43366

hm-static.xuezhumall.com/static/js/1131.3428b492.chunk.js

138.113.181.2

200 OK

16 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/1131.3428b492.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (64339), with no line terminators
Size
16 kB (15903 bytes)
Hash
83f66f2548a1d12adae5ec890832abd6
3a371c5e814c130269985abfbc1247a35701decb
648222726990940dec60b1f8bd26da76c63874dbd5cfc6ad8d56842433808d14

HTTP Headers

GET /static/js/1131.3428b492.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:20 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-fb53"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZE9ih6ovGPC4FOneziLW00pMifr%2FD6jDZ1xjycb%2B60wa4L4ymn5x8c7N6fEW9B2b%2FHN1IS53eS5gfW7eTsXPPmvMvX0jPNc5B4dle7h%2BDQh5QxnPoDFoTPO3fBfjs%2BwDEFCfr2C%2FDg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0fa7bbb8bb6-ATL
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=133641&min_rtt=133641&rtt_var=66820&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=772&delivery_rate=0&cwnd=65&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSdgflkfFRA2hg92:10 (W), 1.1 PS-ARN-046HI117:11 (W)
Age: 2591845
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a9_PS-ARN-046HI117_51902-37982

hm-static.xuezhumall.com/static/js/vendor.better-scroll.ce04fde0.chunk.js

138.113.181.2

200 OK

13 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/vendor.better-scroll.ce04fde0.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (39381)
Size
13 kB (12797 bytes)
Hash
58b3915ee3d282f3cbb3d992f7700fd5
d39ea2e081b0a56abbe67b39096d1cb9b4b748f5
cd6c1626752fb2b099adf68cd496786c36634b01abe2c868f155fcc08d2878ed

HTTP Headers

GET /static/js/vendor.better-scroll.ce04fde0.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:20 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: W/"67890f26-9a32"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
Content-Encoding: gzip
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HfvgafA2dq%2FK833PcZJST402Eia8R5aJK6n2m7W%2F6CaEi1Uw9YZ%2FOwvCbQf%2FHNx1yM1PyqgNd0NoXY46RfjFqAOlb6lxYWL20b9JVDnKfLqUMTStGv0M0vB%2FedXbWwZYbjBlVNL07Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0fbc88103fd-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=260&min_rtt=159&rtt_var=45&sent=24&recv=26&lost=0&retrans=0&sent_bytes=27483&recv_bytes=2358&delivery_rate=53789473&cwnd=256&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSfgblPAR2av94:1 (W), 1.1 PS-ARN-046HI117:6 (W)
Age: 2591845
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a9_PS-ARN-046HI117_51088-10997

hm-static.xuezhumall.com/static/js/2618.b3e5bf0a.chunk.js

138.113.181.2

200 OK

9.0 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/2618.b3e5bf0a.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (31582), with no line terminators
Size
9.0 kB (8950 bytes)
Hash
f12ca6f5cab177b5b5d2bb18bd001335
92924a64bbd3495973517d75fac8e837ec9020c4
4e1e90bc74a8fafcad7d05c020e258cd42118d5814b46a90e5bad9450da1cc19

HTTP Headers

GET /static/js/2618.b3e5bf0a.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 11 Feb 2026 16:29:45 GMT
Last-Modified: Tue, 11 Feb 2025 16:23:38 GMT
ETag: W/"67ab798a-7b5e"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wSfsxJ%2FLvkfHs%2FPQGrSL4v4JSxJT%2FE1xdcfiCuckAzN1J5Qt0C2cY3XFUKj9CIYvmpWnANmrBK5Q3V1p3mDH43gDJb2W8yEW0qBBCVjsGTATo4vuvPm4QuSAWED9HJU84hHO8hL%2FYw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 9105b7885fd4e8fe-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2476&min_rtt=2476&rtt_var=1238&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=904&delivery_rate=0&cwnd=137&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 ld84:8 (W), 1.1 PS-ARN-04kSW118:8 (W)
Age: 1011120
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8a9_PS-ARN-04kSW118_40822-45730

hm-static.xuezhumall.com/static/js/1420.ceb54bd5.chunk.js

138.113.181.2

200 OK

4.7 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/js/1420.ceb54bd5.chunk.js
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
JavaScript source, ASCII text, with very long lines (20081), with no line terminators
Size
4.7 kB (4667 bytes)
Hash
86d9b8865b8d9bcf062c11c3c0d6fdba
d35e7cd1b5ec257af61eb09a055830563c373d22
08adebd16d09655279e2f26d876d04762d5791d2a24c90cd2bc96f0e54cbb022

HTTP Headers

GET /static/js/1420.ceb54bd5.chunk.js HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 06 Feb 2026 15:47:01 GMT
Last-Modified: Thu, 06 Feb 2025 15:23:16 GMT
ETag: W/"67a4d3e4-4e71"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AkwLUq%2Bp1y%2BbUD0lOHStccJqGYGm2xjBq0YuDO5uBXpviWoi5%2BpYLdXnHpuizatcxAbX9b7d0GVzSL6D3dGizbAR4B4jU1vwIzJXR3f52aUksIWEfOjqftzjf9wwjSdyJXobsqf8%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 90dc342e4bcf6f12-CDG
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=567&min_rtt=567&rtt_var=283&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=657&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSfgblPAR2ab92:7 (W), 1.1 PS-ARN-046HI117:10 (W)
Age: 1445684
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a9_PS-ARN-046HI117_51766-12863

hm-tjj.xuezhumall.com/api/event

138.113.181.2

202 Accepted

2 B

URL POST HTTP/1.1
hm-tjj.xuezhumall.com/api/event
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-tjj.xuezhumall.com
Fingerprint3A:70:A8:AA:3D:E3:E8:51:8E:C5:41:6F:0D:3E:A0:23:0B:54:58:74
ValidityTue, 24 Dec 2024 17:08:53 GMT - Mon, 24 Mar 2025 17:08:52 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /api/event HTTP/1.1
Host: hm-tjj.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 203
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 202 Accepted
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
Server: PWS/8.3.1.0.8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: 
cache-control: max-age=0, private, must-revalidate
x-request-id: GCbL6Gi-SRdzSeEkmrNE
via: 1.1 PSdgflkfFRA1ft122:6 (W), 1.1 PS-ARN-046HI117:15 (W)
X-Px: ms PS-ARN-046HI117none, ms PSdgflkfFRA1ft122none(origin)
x-ws-request-id: 67bae8a8_PS-ARN-046HI117_52219-23221

hm-static.xuezhumall.com/static/media/iconfont.a7a2e075cb72c302c64a.woff2

138.113.181.2

200 OK

30 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/media/iconfont.a7a2e075cb72c302c64a.woff2
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 29732, version 1.0
Size
30 kB (29732 bytes)
Hash
e03f74d203f295cb2c0811a8994d10c4
16fe6ba546f7e8a43c4f0297af218394d2c7d451
a043546ce715080b347b105bb4c13ffa6bbce7a79064b90bdef7fc723243801d

HTTP Headers

GET /static/media/iconfont.a7a2e075cb72c302c64a.woff2 HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Referer: https://hm-static.xuezhumall.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: font/woff2
Content-Length: 29732
Connection: keep-alive
Last-Modified: Tue, 11 Feb 2025 16:23:38 GMT
ETag: "67ab798a-7424"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UlcgmwDEuJv87c%2BLs7KpX%2FueEQ0YrXsww91LH1dsfER%2Fp3QT57M6AQUO0o1OkWNk3AU5o5i5uPHH%2Bk4WVEiMvwak17UsU3j97r9f%2BPo1jg5pU6e%2F8hnmkBMWRPpvafFFzNlE%2F%2Fm4Kg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 9107daf97cc763ad-LHR
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=919&min_rtt=919&rtt_var=459&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=769&delivery_rate=0&cwnd=248&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 ld86:11 (W), 1.1 PS-ARN-046HI117:14 (W)
Age: 8298
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a9_PS-ARN-046HI117_52137-32837

hm-static.xuezhumall.com/static/media/domain_bg.476ae3d858e31316da9c.image

138.113.181.2

200 OK

46 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/media/domain_bg.476ae3d858e31316da9c.image
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
ASCII text, with very long lines (46101), with no line terminators
Size
46 kB (46101 bytes)
Hash
75d405b8b0f88d8778256eb58545bc39
cf4b7b578a53d759d4a6c159d4bb6bb239b74dff
605ab629eb61cd1d56f68b9b770554691e32ec141fc7900bbdb65ff61e70ae44

HTTP Headers

GET /static/media/domain_bg.476ae3d858e31316da9c.image HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: application/octet-stream
Content-Length: 46101
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:24:21 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: "67890f26-b415"
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Accept-Ranges: bytes
cf-cache-status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cL82g2n7gtdiweS3OWjvxXxpK0RFvyMOvXqWXRmbbFJec7V1fSwmHV9vrTPZst6mF3TcLrJyD%2Bk4rJsTdfBmSzaCEAx1pVUHhOSGrvJQysVxEg6gk66p8k8PyAbJLVEMXc4Sm9g01g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 906ef1095fffd2ae-FRA
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=803&min_rtt=803&rtt_var=401&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=738&delivery_rate=0&cwnd=248&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSdgflkfFRA1hy124:0 (W), 1.1 PS-ARN-046HI117:14 (W)
Age: 2591844
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8a9_PS-ARN-046HI117_52137-32838

sm-api.xuezhumall.com/signup/visitor?channel_id=518&site_id=6

163.171.134.109

200 OK

0 B

URL POST HTTP/1.1
sm-api.xuezhumall.com/signup/visitor?channel_id=518&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /signup/visitor?channel_id=518&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Via: 1.1 PS-ARN-016FX94:2 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_2739-57292

sm-api.xuezhumall.com/api/vod/tag_group?page=1&per_page=1000&site_id=6

163.171.134.109

200 OK

39 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/vod/tag_group?page=1&per_page=1000&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
39 kB (39129 bytes)
Hash
c1441f924d194852b6bdcab2caf2f514
19491cba04247ef57d7ceaa6cb8709078036259a
e280540092873fdbce76fb6ab53c5255d14291a3b540f04aad1b992148029ad6

HTTP Headers

GET /api/vod/tag_group?page=1&per_page=1000&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: application/json
Content-Length: 39129
Connection: keep-alive
with-cache: 3600
x-request-id: 22efd39fe7124904a6c1455896ce66c6
x-process-time: 0.9869
Cache-Control: max-age=3600, public
x-request-cache: HIT
x-request-cache-time: 1740301995
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PSrdsdgemSTO1sw92:14 (W)
X-Px: ms PSrdsdgemSTO1sw92ARN(origin)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_4541-10324

sm-api.xuezhumall.com/signup/visitor?channel_id=518&site_id=6

163.171.134.109

200 OK

1.1 kB

URL POST HTTP/1.1
sm-api.xuezhumall.com/signup/visitor?channel_id=518&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
1.1 kB (1073 bytes)
Hash
42900b0a02341b49c78c8d38fec3eb6c
4963a4f04ee354024fc71dcf2f7399cd10ea1099
0778a758961a20e20e36c9f556c49cc1d8009237c7e5d7279bb37a2d314749b4

HTTP Headers

POST /signup/visitor?channel_id=518&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 2
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: application/json
Content-Length: 1073
Connection: keep-alive
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Via: 1.1 PS-ARN-016FX94:2 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_4441-34948

sm-api.xuezhumall.com/api/vod/tag?page=1&per_page=1000&site_id=6

163.171.134.109

200 OK

115 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/vod/tag?page=1&per_page=1000&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
115 kB (115417 bytes)
Hash
94ad5c0fde1c795806cd8d867b5c74ad
ff934831f2dcc54e1f0920589703fa6d407cb9e8
25424db5c83d9eb84d485604ec601b68adfb0fd55479e4144fff1dbf6300545b

HTTP Headers

GET /api/vod/tag?page=1&per_page=1000&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: application/json
Content-Length: 115417
Connection: keep-alive
with-cache: 3600
x-request-id: b77fc23f7c314a06b3df1c3c69c3beec
x-process-time: 0.0415
Cache-Control: max-age=3600, public
x-request-cache: HIT
x-request-cache-time: 1740302262
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:18 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_2739-57291

sm-api.xuezhumall.com/api/common_ads?page=1&per_page=2000&site_id=6

163.171.134.109

200 OK

165 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/common_ads?page=1&per_page=2000&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
165 kB (165105 bytes)
Hash
4daf2e05cd22b818ab66c3e6afc1bbb7
54812f2d86009d7d7f8c04ae72ccbdfb6fa1ec51
2894775eec69b9e0ff249432e00c401b1bb91f7b184b51823fbe81da7db4d2f0

HTTP Headers

GET /api/common_ads?page=1&per_page=2000&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:45 GMT
Content-Type: application/json
Content-Length: 165105
Connection: keep-alive
with-cache: 600
x-request-id: a2d392187c8c4bb09969639b8723494d
x-process-time: 0.1709
Cache-Control: max-age=600, public
x-request-cache: HIT
x-request-cache-time: 1740301999
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-01C8L93:18 (W)
X-Px: ms PS-ARN-01C8L93ARN(origin)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_3947-1795

sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=668%2C546%2C496%2C479%2C431%2C300&site_id=6

163.171.134.109

200 OK

12 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=668%2C546%2C496%2C479%2C431%2C300&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
12 kB (11633 bytes)
Hash
621815f08cf1dc4065221671dbd6f135
4a968919a9cfd718be069a306f7480986488df36
f38cb52d539c06ad55f7f07be2936b732a8a32b8681d42a17e9c5c5f697b0797

HTTP Headers

GET /api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=668%2C546%2C496%2C479%2C431%2C300&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 11633
Connection: keep-alive
with-cache: 1800
x-request-id: cf110a7ed96f4226b1e69463310f08df
x-process-time: 0.6983
x-request-cache: HIT
x-request-cache-time: 1740300738
Cache-Control: max-age=1800, public
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:18 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_3947-1802

img.meituan.net/csc/e9fdb414386f5a71e4a37294e5ee7deb2745.png

43.152.140.107

200 OK

2.7 kB

URL GET HTTP/2
img.meituan.net/csc/e9fdb414386f5a71e4a37294e5ee7deb2745.png
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
PNG image data, 88 x 92, 8-bit colormap, non-interlaced
Size
2.7 kB (2745 bytes)
Hash
e9fdb414386f5a71e4a37294e5ee7deb
d615d29a7a201c792015911425474908d1e95dad
6ca5f8e780637b96f71ddf20e4ad9b592028da00acccc7c9cc39a1a2f70f2936

HTTP Headers

GET /csc/e9fdb414386f5a71e4a37294e5ee7deb2745.png HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 12 Feb 2025 11:59:46 GMT
server: openresty
date: Thu, 16 Jan 2025 18:32:15 GMT
content-type: image/png
access-control-allow-private-network: true
m-traceid: ton7n0weovi8lu0mvh04
age: 2874749
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 2745
accept-ranges: bytes
x-nws-log-uuid: 8178322502056022131
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

img.meituan.net/csc/706cb4143179a2bffa94a9de783b8abf3718.png

43.152.140.107

200 OK

4.0 kB

URL GET HTTP/2
img.meituan.net/csc/706cb4143179a2bffa94a9de783b8abf3718.png
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
PNG image data, 120 x 94, 8-bit colormap, non-interlaced
Size
4.0 kB (4013 bytes)
Hash
f820a710f460188ce9f52ef40d34ca6d
59d5ef00754b56dfaa360d26b351a01d9db68b04
481524a51beb2cdf8f90f3971ca87d74eda95459876eb77ae6acd19d7a973091

HTTP Headers

GET /csc/706cb4143179a2bffa94a9de783b8abf3718.png HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 22 Nov 2024 15:02:33 GMT
server: openresty
date: Mon, 23 Sep 2024 15:02:45 GMT
content-type: image/png
access-control-allow-private-network: true
m-traceid: jtu6v30mrnh9vxalhixw
age: 12
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 4013
accept-ranges: bytes
x-nws-log-uuid: 16417451393822643467
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

img.meituan.net/csc/064ccc832f9167766a1bd73851ad95a03533.png

43.152.140.107

200 OK

3.6 kB

URL GET HTTP/2
img.meituan.net/csc/064ccc832f9167766a1bd73851ad95a03533.png
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
PNG image data, 88 x 92, 8-bit colormap, non-interlaced
Size
3.6 kB (3623 bytes)
Hash
f8c451a2a195c85383a8eacc2077d0ac
f48b79829806590c28cec0fdb57d64bb985db379
8c75bde0111fe45541129e8faecdd0fa6ab9915b93d77a9ef3f7fd1c132c84ad

HTTP Headers

GET /csc/064ccc832f9167766a1bd73851ad95a03533.png HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 22 Nov 2024 15:02:33 GMT
server: openresty
date: Mon, 23 Sep 2024 15:06:17 GMT
content-type: image/png
access-control-allow-private-network: true
m-traceid: vw5iwicqfcalns2m9lfq
age: 224
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 3623
accept-ranges: bytes
x-nws-log-uuid: 17012234773316008824
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

img.meituan.net/csc/30de102a1d5ab3e2c08a333fdcfb28db3098.png

43.152.140.107

200 OK

3.2 kB

URL GET HTTP/2
img.meituan.net/csc/30de102a1d5ab3e2c08a333fdcfb28db3098.png
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
PNG image data, 88 x 92, 8-bit colormap, non-interlaced
Size
3.2 kB (3195 bytes)
Hash
3655c367014d1638fdaa7d6a80f626e1
24f2b41e62fb22a2823d5865c5d94fba52ab70d5
d2bbdb39fc829f191dfbe41b9710a8e69ebb4194571791aee79f6e4a370abcfa

HTTP Headers

GET /csc/30de102a1d5ab3e2c08a333fdcfb28db3098.png HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 22 Nov 2024 15:02:29 GMT
server: openresty
date: Mon, 23 Sep 2024 15:04:07 GMT
content-type: image/png
access-control-allow-private-network: true
m-traceid: sczefwfwf9nvgibauijp
age: 98
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 3195
accept-ranges: bytes
x-nws-log-uuid: 3858891316315022396
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

img.meituan.net/csc/b9c69f90dc3852b24811658d35fa89db4006.png

43.152.140.107

200 OK

4.2 kB

URL GET HTTP/2
img.meituan.net/csc/b9c69f90dc3852b24811658d35fa89db4006.png
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
PNG image data, 120 x 94, 8-bit colormap, non-interlaced
Size
4.2 kB (4209 bytes)
Hash
bff1566e4ffbc59b134d2f20ae5b4206
f6d3987684d45d979d910fec76ac8000980926cd
a1ee26df4eff26eff8f55b59d6703c10b5ed76222ff0c3a366d1a817d2934440

HTTP Headers

GET /csc/b9c69f90dc3852b24811658d35fa89db4006.png HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 22 Nov 2024 15:02:32 GMT
server: openresty
date: Mon, 23 Sep 2024 15:07:21 GMT
content-type: image/png
access-control-allow-private-network: true
m-traceid: 3d1tgfsnminr8u0iawl3
age: 289
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 4209
accept-ranges: bytes
x-nws-log-uuid: 3372004186424669642
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

img.meituan.net/csc/6c7249beb2373eb3d5f34345ce86c2683783.png

43.152.140.107

200 OK

3.8 kB

URL GET HTTP/2
img.meituan.net/csc/6c7249beb2373eb3d5f34345ce86c2683783.png
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
PNG image data, 120 x 94, 8-bit colormap, non-interlaced
Size
3.8 kB (3783 bytes)
Hash
6c7249beb2373eb3d5f34345ce86c268
4dea983d02feb94fcaa36fdf814c1af74b712376
6e07b74711526710c7d5a891d92d6ea2cb38afe9230f108fd57aaf13c9f6e7a0

HTTP Headers

GET /csc/6c7249beb2373eb3d5f34345ce86c2683783.png HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sat, 08 Mar 2025 00:17:15 GMT
server: openresty
date: Tue, 21 Jan 2025 02:45:31 GMT
content-type: image/png
access-control-allow-private-network: true
m-traceid: v7sa6r6s9d0qv7bd25xs
age: 1218496
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 3783
accept-ranges: bytes
x-nws-log-uuid: 5726379379909792669
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

img.meituan.net/csc/ebafaee85f99c4df285f2fd2103281293406.png

43.152.140.107

200 OK

3.5 kB

URL GET HTTP/2
img.meituan.net/csc/ebafaee85f99c4df285f2fd2103281293406.png
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
PNG image data, 120 x 94, 8-bit colormap, non-interlaced
Size
3.5 kB (3544 bytes)
Hash
e67dddd3cbb103690655a1ac1b384190
9a095dbabaa105f7d97909334ed840f6fb4dc65f
7404508b47564474be21c079c048c400dabc781abd518d9aaff41e307e523700

HTTP Headers

GET /csc/ebafaee85f99c4df285f2fd2103281293406.png HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 22 Nov 2024 15:02:32 GMT
server: openresty
date: Mon, 23 Sep 2024 15:04:20 GMT
content-type: image/png
access-control-allow-private-network: true
m-traceid: 399woj2ppjl9lcaieq44
age: 108
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 3544
accept-ranges: bytes
x-nws-log-uuid: 14734698996107715085
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

img.meituan.net/csc/48f0853257728ebfb4638eac2215a8873882.png

43.152.140.107

200 OK

3.9 kB

URL GET HTTP/2
img.meituan.net/csc/48f0853257728ebfb4638eac2215a8873882.png
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
PNG image data, 120 x 94, 8-bit colormap, non-interlaced
Size
3.9 kB (3882 bytes)
Hash
48f0853257728ebfb4638eac2215a887
6fa43cb42d70855504362967433535692cd15458
7dba2185f57cc6a2e758f0224a3db56e55d9bf0e5ef9dd3cf9da55ee8b10672e

HTTP Headers

GET /csc/48f0853257728ebfb4638eac2215a8873882.png HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 17 Jan 2025 01:56:39 GMT
server: openresty
date: Tue, 19 Nov 2024 16:37:48 GMT
content-type: image/png
access-control-allow-private-network: true
m-traceid: uab4pp40rcfb1cr7ogzr
age: 139269
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 3882
accept-ranges: bytes
x-nws-log-uuid: 18117515426738269669
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=165&site_id=6

163.171.134.109

200 OK

10 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=165&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
10 kB (10225 bytes)
Hash
001670cdcac8f65faa905a1f8a1913f3
7310a806c4d992abf198124b2c6e2b37d6bd502d
817d8d8c05c6dd2af5e2182528206b802c4248a506dc54624f1beac47e9ec507

HTTP Headers

GET /api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=165&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 10225
Connection: keep-alive
with-cache: 1800
x-request-id: 31adca988fc34f03bf159a0eb85a07dd
x-process-time: 19.5703
Cache-Control: max-age=1800, public
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:18 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_2739-57314

sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=1032%2C891%2C703%2C154&site_id=6

163.171.134.109

200 OK

11 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=1032%2C891%2C703%2C154&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
11 kB (10777 bytes)
Hash
fc21ace49ebdd092b512d2539a7f61b8
9cf003cb83675d0b886c8ffadc07c9d440db2aeb
2c230a7678d7f2250f307abf96c820c197a54962d9b9cfebd7e20d4b230bf7f3

HTTP Headers

GET /api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=1032%2C891%2C703%2C154&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 10777
Connection: keep-alive
with-cache: 1800
x-request-id: 60dd5e4d3d544d33a1007d2cbe503578
x-process-time: 19.4846
Cache-Control: max-age=1800, public
x-request-cache: HIT
x-request-cache-time: 1740301020
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:18 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_4441-34954

sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=878%2C859%2C693%2C673%2C652%2C641%2C440%2C430%2C427%2C426%2C421%2C420%2C419%2C373%2C299&site_id=6

163.171.134.109

200 OK

12 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=878%2C859%2C693%2C673%2C652%2C641%2C440%2C430%2C427%2C426%2C421%2C420%2C419%2C373%2C299&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
12 kB (11505 bytes)
Hash
66112ee4b9c1c58aea33ce0e111ad91b
fd27185a4a9aafbefe9d88ed3e4f3cb529644dc3
de4222be5e7e56d4dae509f36316322bdc4d33ee367a07b1dd156b59e7fbcff4

HTTP Headers

GET /api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=878%2C859%2C693%2C673%2C652%2C641%2C440%2C430%2C427%2C426%2C421%2C420%2C419%2C373%2C299&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 11505
Connection: keep-alive
with-cache: 1800
x-request-id: f862a9f242094a5a944ace7e2559f69e
x-process-time: 20.1629
Cache-Control: max-age=1800, public
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:18 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_4541-10337

sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=598%2C293&site_id=6

163.171.134.109

200 OK

10 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=598%2C293&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
10 kB (10289 bytes)
Hash
711f1b90c23f0549bd362ca81ded8db9
821d27bd3cef9b5a6720171f835d8e05ec523e0e
1139df9f751f34845bd241370e527801ef7cb1f14fb6c991200e6d8a72020677

HTTP Headers

GET /api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=598%2C293&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 10289
Connection: keep-alive
with-cache: 1800
x-request-id: 32e2d909e9854869beb0d83a3d0af76c
x-process-time: 0.6211
x-request-cache: HIT
x-request-cache-time: 1740299651
Cache-Control: max-age=1800, public
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:18 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8aa_PSrdsdgemSTO1sw92_3947-1805

sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=1211%2C428&site_id=6

163.171.134.109

200 OK

10 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=1211%2C428&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
10 kB (10457 bytes)
Hash
8dd985e16c2dc4a541224c6c90f135d2
622dc45629d8a91b6e4574612df9c92cc7ba8b57
a2e6e48bc87e8105ced1f3ce71b31bf0388d8ea092533baf435874a4109a32a8

HTTP Headers

GET /api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=1211%2C428&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 10457
Connection: keep-alive
with-cache: 1800
x-request-id: 765d41f86a5248d397a8b7e8a58a54c8
x-process-time: 27.8593
Cache-Control: max-age=1800, public
x-request-cache: HIT
x-request-cache-time: 1740301366
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:18 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_2739-57315

sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=1812%2C1266%2C1202%2C93%2C1364&site_id=6

163.171.134.109

200 OK

14 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=1812%2C1266%2C1202%2C93%2C1364&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
14 kB (13529 bytes)
Hash
88328ac55134e44ffaff79fc009476be
795a26a87a844da97ca56deee00ea2717914602c
11532a23bce385ddcfefec790bcb6c5c45fbe6dd953aa3a2040ae89e65a29374

HTTP Headers

GET /api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=1812%2C1266%2C1202%2C93%2C1364&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 13529
Connection: keep-alive
with-cache: 1800
x-request-id: 35250d85c4374758b4a5a817aaa1cf8c
x-process-time: 22.2295
Cache-Control: max-age=1800, public
x-request-cache: HIT
x-request-cache-time: 1740300927
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:18 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8aa_PSrdsdgemSTO1sw92_4541-10340

sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=894%2C825%2C809%2C808%2C609%2C374&site_id=6

163.171.134.109

200 OK

13 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=894%2C825%2C809%2C808%2C609%2C374&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
13 kB (12913 bytes)
Hash
6ff65733630174cab2b9352513288ae3
d1b6c097692c4db6661ce48ee26db7c2edb17f3e
a7033cabe8ee73e6a2cde3d45148e6fb4bd337b4a29c9a201d93fc15f209ff9b

HTTP Headers

GET /api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=894%2C825%2C809%2C808%2C609%2C374&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 12913
Connection: keep-alive
with-cache: 1800
x-request-id: 59f19a99fef64bb5afd2e5a25984f0be
x-process-time: 20.2473
Cache-Control: max-age=1800, public
x-request-cache: HIT
x-request-cache-time: 1740301250
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:18 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8aa_PSrdsdgemSTO1sw92_2739-57332

sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=296&site_id=6

163.171.134.109

200 OK

16 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=296&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
16 kB (15877 bytes)
Hash
6fdad548376f83aa7ff0ddd156d0f8b4
ef802e049d8a0ddc5f0f73565ce30253307395b0
9f89f9151a1c47dc473633ee0eb30f675cfcd60649647446dda74a1959f1dcaa

HTTP Headers

GET /api/vod/video?count=false&page=1&per_page=6&random_data=1&tag=296&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 15877
Connection: keep-alive
with-cache: 1800
x-request-id: 978a1ada1b75400b9b7de5ba38c16752
x-process-time: 19.2527
Cache-Control: max-age=1800, public
x-request-cache: HIT
x-request-cache-time: 1740301217
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:18 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8aa_PSrdsdgemSTO1sw92_4441-34960

sm-api.xuezhumall.com/api/webtoons?count=false&page=1&per_page=6&random_data=1&tag=1297%2C1285%2C1245%2C932%2C607%2C406%2C128&site_id=6

163.171.134.109

200 OK

7.3 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/webtoons?count=false&page=1&per_page=6&random_data=1&tag=1297%2C1285%2C1245%2C932%2C607%2C406%2C128&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
7.3 kB (7321 bytes)
Hash
1061623a6a44578e05de9abb8c47c2a2
4cbfeeb528e36552dd9e5e53fce8858a1f1d874b
814e312266b84fb00636a3f7af11de5c4dcf54282fc92be8450819ce755637ef

HTTP Headers

GET /api/webtoons?count=false&page=1&per_page=6&random_data=1&tag=1297%2C1285%2C1245%2C932%2C607%2C406%2C128&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 7321
Connection: keep-alive
with-cache: 1800
x-request-id: 6ae1a592f0004842919a12dd50413de1
x-process-time: 0.5854
Cache-Control: max-age=1800, public
x-request-cache: HIT
x-request-cache-time: 1740301630
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:8 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8aa_PSrdsdgemSTO1sw92_4541-10341

sm-api.xuezhumall.com/api/photos?count=false&page=1&per_page=4&random_data=1&tag=1238%2C1237%2C1236%2C179&site_id=6

163.171.134.109

200 OK

2.8 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/photos?count=false&page=1&per_page=4&random_data=1&tag=1238%2C1237%2C1236%2C179&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
2.8 kB (2757 bytes)
Hash
c5830f65883d2281d00c0741ebc3b4a5
cfdcd00e0880b5d8892176002d497e463638fee0
b377ab74c2b1b9f872cd8ca1e4a83e19809eb7e5758833b91f5120816b1d2cc8

HTTP Headers

GET /api/photos?count=false&page=1&per_page=4&random_data=1&tag=1238%2C1237%2C1236%2C179&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 2757
Connection: keep-alive
with-cache: 1800
x-request-id: 742e14d946ed4de3aa4a877cd02cbfd4
x-process-time: 6.0766
Cache-Control: max-age=1800, public
x-request-cache: HIT
x-request-cache-time: 1740301863
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PSrdsdgemSTO1sw92:5 (W)
X-Px: ms PSrdsdgemSTO1sw92ARN(origin)
x-ws-request-id: 67bae8aa_PSrdsdgemSTO1sw92_3947-1807

sm-api.xuezhumall.com/api/novles?count=false&page=1&per_page=10&random_data=1&tag=1280%2C1278%2C1254%2C1250%2C30&channel_id=518&site_id=6

163.171.134.109

200 OK

6.6 kB

URL GET HTTP/1.1
sm-api.xuezhumall.com/api/novles?count=false&page=1&per_page=10&random_data=1&tag=1280%2C1278%2C1254%2C1250%2C30&channel_id=518&site_id=6
IP
163.171.134.109:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectsm-api.xuezhumall.com
Fingerprint6A:FB:91:C6:7A:FF:38:45:8D:19:DA:94:FF:8E:4A:BF:B4:84:93:90
ValidityThu, 13 Feb 2025 11:41:27 GMT - Wed, 14 May 2025 11:41:26 GMT

File type
JSON text data
Size
6.6 kB (6577 bytes)
Hash
f3c6b6e82e257ac7547b39ff881fa006
45b9ed35a6710368b8faf3312f9505e88e27a6d8
ace4728f4532a2e3f605e644bfc8a51c7ff5d842d0c7ed46b7e5092c3fb1d0f7

HTTP Headers

GET /api/novles?count=false&page=1&per_page=10&random_data=1&tag=1280%2C1278%2C1254%2C1250%2C30&channel_id=518&site_id=6 HTTP/1.1
Host: sm-api.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:46 GMT
Content-Type: application/json
Content-Length: 6577
Connection: keep-alive
with-cache: 1800
x-request-id: 48a6a05263a6417eb34c94b4f47c0c23
x-process-time: 0.2244
x-request-cache: HIT
x-request-cache-time: 1740299410
Cache-Control: max-age=1800, public
Server: PWS/8.3.1.0.8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
Via: 1.1 PS-ARN-016FX94:1 (W)
X-Px: ms PS-ARN-016FX94ARN(origin)
x-ws-request-id: 67bae8aa_PSrdsdgemSTO1sw92_2739-57336

i.ugc.corp3g.cn/idc_1/group62/Xm/S1/fc80127f731118614122b620f36be21f.png

116.169.184.169

200 OK

17 kB

URL GET HTTP/1.1
i.ugc.corp3g.cn/idc_1/group62/Xm/S1/fc80127f731118614122b620f36be21f.png
IP
116.169.184.169:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert Inc
Subject*.ugc.corp3g.cn
Fingerprint32:8C:96:59:82:A1:54:B0:EE:DA:86:72:5B:D4:18:24:6F:59:15:75
ValidityMon, 15 Apr 2024 00:00:00 GMT - Tue, 13 May 2025 23:59:59 GMT

File type
PNG image data, 399 x 92, 8-bit/color RGBA, non-interlaced
Size
17 kB (17003 bytes)
Hash
405306d3f886fe1e345434a97e7586ce
c03806ee1b221b19370dc766a298fbaff807d527
8627a67c033c255e9d0759830dc852e76daa59c689d332397d0b0c51ff653307

HTTP Headers

GET /idc_1/group62/Xm/S1/fc80127f731118614122b620f36be21f.png HTTP/1.1
Host: i.ugc.corp3g.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
X-Trace-ID: 3902a7bbc0c63db1b0699fbf7e16e174
Apisix-Cache-Status: HIT
Server: WebServer
Content-Length: 17003
Accept-Ranges: bytes
Connection: keep-alive
Date: Sun, 23 Feb 2025 09:21:46 GMT
Cache-Control: max-age=3600
EO-LOG-UUID: 4213482295544758638
EO-Cache-Status: HIT

xa1jgfbdlwf2ncxq.412979.com:8283/favicon.ico

192.238.225.11

200 OK

68 B

URL GET HTTP/1.1
xa1jgfbdlwf2ncxq.412979.com:8283/favicon.ico
IP
192.238.225.11:8283
ASN
#395954 LEASEWEB-USA-LAX

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectxa1jgfbdlwf2ncxq.414875.com
Fingerprint38:74:7C:5E:F5:C0:FB:7D:8E:21:6B:E6:06:DB:19:96:B1:37:C4:EC
ValidityWed, 19 Feb 2025 12:44:58 GMT - Tue, 20 May 2025 12:44:57 GMT

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced
Size
68 B (68 bytes)
Hash
949b10d30ba15bae8f371f3b30736169
b4659bbce2a1caeafb6e7b80f1c15c9e707e2ba1
6dee38ff2d137d60ba3b52da4eb3054339862948125ce0e226f63a5cf455a7c0

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: xa1jgfbdlwf2ncxq.412979.com:8283
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: Hm_tf_9fh7x3i4rov=1740302505; Hm_lvt_9fh7x3i4rov=1740302505; Hm_lpvt_9fh7x3i4rov=1740302505
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Age: 1363
Apisix-Cache-Status: HIT
Cache-Control: max-age=31536000, public
Content-Length: 68
Content-Type: image/png
Date: Sat, 02 Nov 2024 14:18:54 GMT
ETag: "1740301143"
Last-Modified: Sun, 23 Feb 2025 08:59:03 GMT
Server: APISIX
X-Cache: HIT, server, disk

hm-static.xuezhumall.com/static/media/slick.295183786cd8a1389865.woff

138.113.181.2

200 OK

1.4 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/media/slick.295183786cd8a1389865.woff
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
Web Open Font Format, CFF, length 1380, version 1.0
Size
1.4 kB (1380 bytes)
Hash
b7c9e1e479de3b53f1e4e30ebac2403a
af91c12f0f406a4f801aeb3b398768fe41d8f864
26726bac4060abb1226e6ceebc1336e84930fe7a7af1b3895a109d067f5b5dcc

HTTP Headers

GET /static/media/slick.295183786cd8a1389865.woff HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Referer: https://hm-static.xuezhumall.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:48 GMT
Content-Type: font/woff
Content-Length: 1380
Connection: keep-alive
Last-Modified: Tue, 11 Feb 2025 16:23:38 GMT
ETag: "67ab798a-564"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S1GFHedtD9AV4iils66jhLYiFN1H1Cre%2FUewvXl8%2Fvy1WkJKJtIbvhOf2ZEJ8CuLpfzy78UhAAmabH%2FMmZ5VAT0cmem936gr8RvPr2YwtkoSrorFyb5VS1iz5hWb5RhCqdNn0WaHNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: PWS/8.3.1.0.8
CF-RAY: 91084e0ccc24f10c-CDG
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=179&min_rtt=179&rtt_var=89&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=753&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSfgblPAR2bz95:12 (W), 1.1 PS-ARN-046HI117:14 (W)
Age: 17237
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8ac_PS-ARN-046HI117_52137-32845

hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png

138.113.181.2

200 OK

1.5 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
PNG image data, 42 x 36, 8-bit colormap, non-interlaced
Size
1.5 kB (1487 bytes)
Hash
6cab69730d646c6fd60efbd7a9a3486e
47f418ac8093c8503e432386213ed7072541e101
3c8823de15bbcf78d9b0389a85cdbf2cc899a501e9373f867a500079a13d4887

HTTP Headers

GET /static/media/gold-ingot.9d348c1b178f6a0adbc0.png HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:48 GMT
Content-Type: image/png
Content-Length: 1487
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:35:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: "67890f26-5cf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Cache-Control: max-age=31536000, public
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2OZtKjkdlU4zbVUw9MZsmfGayiVHv6WThjB3jgJ0CtMTXW4lBbWf7VgNymvd5gFFZ16NrYRV%2B%2FshxUq%2FlCwJG3c%2F0%2FYyA%2Bbqj4CSfxS2N80T2TbfFCtW4cCWc4QiegIwJpIzIMkYPg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0888b826fa6-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1409&min_rtt=1409&rtt_var=704&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=908&delivery_rate=0&cwnd=244&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01hkT71:0 (W), 1.1 PS-ARN-046HI117:14 (W)
Age: 2591170
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8ac_PS-ARN-046HI117_52137-32846

kano.guahao.cn/qZG946747518

43.152.140.79

200 OK

446 kB

URL GET HTTP/2
kano.guahao.cn/qZG946747518
IP
43.152.140.79:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.guahao.cn
FingerprintF1:2A:90:46:D7:BE:74:70:C9:30:B5:3E:75:9B:65:CA:9A:F2:E9:BE
ValidityMon, 16 Dec 2024 00:00:00 GMT - Tue, 16 Dec 2025 23:59:59 GMT

File type
GIF image data, version 89a, 300 x 450
Size
446 kB (446461 bytes)
Hash
209d24415f9d997131419b313ccc508b
ff331123f5f9dec1b76a1e1b791e09d3b5b807f6
bed2817d71c0f8f21855cb15d5f4702a862eba7ca54f96d5a33ddac3e74d1f7a

HTTP Headers

GET /qZG946747518 HTTP/1.1
Host: kano.guahao.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sat, 15 Feb 2025 12:09:00 GMT
content-type: image/gif
content-length: 446461
accept-ranges: bytes
x-nws-log-uuid: 12171269167229413101
server: Lego Server
date: Sun, 23 Feb 2025 09:21:48 GMT
x-cache-lookup: Cache Hit
access-control-allow-origin: *
X-Firefox-Spdy: h2

hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png

138.113.181.2

200 OK

1.5 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
PNG image data, 42 x 36, 8-bit colormap, non-interlaced
Size
1.5 kB (1487 bytes)
Hash
6cab69730d646c6fd60efbd7a9a3486e
47f418ac8093c8503e432386213ed7072541e101
3c8823de15bbcf78d9b0389a85cdbf2cc899a501e9373f867a500079a13d4887

HTTP Headers

GET /static/media/gold-ingot.9d348c1b178f6a0adbc0.png HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:48 GMT
Content-Type: image/png
Content-Length: 1487
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:35:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: "67890f26-5cf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Cache-Control: max-age=31536000, public
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2OZtKjkdlU4zbVUw9MZsmfGayiVHv6WThjB3jgJ0CtMTXW4lBbWf7VgNymvd5gFFZ16NrYRV%2B%2FshxUq%2FlCwJG3c%2F0%2FYyA%2Bbqj4CSfxS2N80T2TbfFCtW4cCWc4QiegIwJpIzIMkYPg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0888b826fa6-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1409&min_rtt=1409&rtt_var=704&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=908&delivery_rate=0&cwnd=244&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01hkT71:0 (W), 1.1 PS-ARN-046HI117:14 (W)
Age: 2591170
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8ac_PS-ARN-046HI117_52137-32847

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/5e31fedf5c2b473dddab3fb2bc49bcdb.gif

47.246.44.224

200 OK

517 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/5e31fedf5c2b473dddab3fb2bc49bcdb.gif
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
GIF image data, version 89a, 300 x 450
Size
517 kB (517411 bytes)
Hash
99f690d421d8fb6e6d7e125ec05d0376
a513f699ac471cace20e59da5775242ae125b0a5
ffcccac813414b8ed7d3a9b0f7c39d7897db12e18059b60c9800b29289efe7cf

HTTP Headers

GET /mitv-ueap/5e31fedf5c2b473dddab3fb2bc49bcdb.gif HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 517411
date: Mon, 17 Feb 2025 08:36:34 GMT
cache-control: max-age=86400
last-modified: Mon, 17 Feb 2025 07:47:32 GMT
x-xiaomi-meta-content-length: 517411
etag: "99f690d421d8fb6e6d7e125ec05d0376"
content-md5: 99f690d421d8fb6e6d7e125ec05d0376
x-xiaomi-hash-crc64ecma: 4465779832645016643
x-xiaomi-request-id: aed7ce7b-ff08-5ee7-0000-0195130d5133
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length, accept-ranges
via: ens-cache3.l2de3[0,0,200-0,H], ens-cache9.l2de3[12,0], ens-cache7.se2[0,0,200-0,H], ens-cache12.se2[5,0]
age: 521113
ali-swift-global-savetime: 1739781395
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Mon, 17 Feb 2025 13:33:33 GMT
x-swift-cachetime: 2574182
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025089042876e
X-Firefox-Spdy: h2

kano.guahao.cn/wsx946678966

43.152.140.79

200 OK

511 kB

URL GET HTTP/2
kano.guahao.cn/wsx946678966
IP
43.152.140.79:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.guahao.cn
FingerprintF1:2A:90:46:D7:BE:74:70:C9:30:B5:3E:75:9B:65:CA:9A:F2:E9:BE
ValidityMon, 16 Dec 2024 00:00:00 GMT - Tue, 16 Dec 2025 23:59:59 GMT

File type
GIF image data, version 89a, 270 x 400
Size
511 kB (510766 bytes)
Hash
7e306804337820f396e57ef2cdf57ff4
4e4f6f0ac5dc1767187f07cd9efb4c2c8d676b41
eedb83b1f4645a046c033df72af9ac4c41507d5159c65997eba33552b9a23d12

HTTP Headers

GET /wsx946678966 HTTP/1.1
Host: kano.guahao.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 14 Feb 2025 20:40:41 GMT
content-type: image/gif
content-length: 510766
accept-ranges: bytes
x-nws-log-uuid: 9004974391453616164
server: Lego Server
date: Sun, 23 Feb 2025 09:21:49 GMT
x-cache-lookup: Cache Hit
access-control-allow-origin: *
X-Firefox-Spdy: h2

hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png

138.113.181.2

200 OK

1.5 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
PNG image data, 42 x 36, 8-bit colormap, non-interlaced
Size
1.5 kB (1487 bytes)
Hash
6cab69730d646c6fd60efbd7a9a3486e
47f418ac8093c8503e432386213ed7072541e101
3c8823de15bbcf78d9b0389a85cdbf2cc899a501e9373f867a500079a13d4887

HTTP Headers

GET /static/media/gold-ingot.9d348c1b178f6a0adbc0.png HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:49 GMT
Content-Type: image/png
Content-Length: 1487
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:35:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: "67890f26-5cf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Cache-Control: max-age=31536000, public
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2OZtKjkdlU4zbVUw9MZsmfGayiVHv6WThjB3jgJ0CtMTXW4lBbWf7VgNymvd5gFFZ16NrYRV%2B%2FshxUq%2FlCwJG3c%2F0%2FYyA%2Bbqj4CSfxS2N80T2TbfFCtW4cCWc4QiegIwJpIzIMkYPg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0888b826fa6-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1409&min_rtt=1409&rtt_var=704&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=908&delivery_rate=0&cwnd=244&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01hkT71:0 (W), 1.1 PS-ARN-046HI117:14 (W)
Age: 2591171
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8ad_PS-ARN-046HI117_52137-32849

hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png

138.113.181.2

200 OK

1.5 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
PNG image data, 42 x 36, 8-bit colormap, non-interlaced
Size
1.5 kB (1487 bytes)
Hash
6cab69730d646c6fd60efbd7a9a3486e
47f418ac8093c8503e432386213ed7072541e101
3c8823de15bbcf78d9b0389a85cdbf2cc899a501e9373f867a500079a13d4887

HTTP Headers

GET /static/media/gold-ingot.9d348c1b178f6a0adbc0.png HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:49 GMT
Content-Type: image/png
Content-Length: 1487
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:35:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: "67890f26-5cf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Cache-Control: max-age=31536000, public
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2OZtKjkdlU4zbVUw9MZsmfGayiVHv6WThjB3jgJ0CtMTXW4lBbWf7VgNymvd5gFFZ16NrYRV%2B%2FshxUq%2FlCwJG3c%2F0%2FYyA%2Bbqj4CSfxS2N80T2TbfFCtW4cCWc4QiegIwJpIzIMkYPg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0888b826fa6-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1409&min_rtt=1409&rtt_var=704&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=908&delivery_rate=0&cwnd=244&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01hkT71:0 (W), 1.1 PS-ARN-046HI117:14 (W)
Age: 2591171
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8ad_PS-ARN-046HI117_52137-32850

hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png

138.113.181.2

200 OK

1.5 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
PNG image data, 42 x 36, 8-bit colormap, non-interlaced
Size
1.5 kB (1487 bytes)
Hash
6cab69730d646c6fd60efbd7a9a3486e
47f418ac8093c8503e432386213ed7072541e101
3c8823de15bbcf78d9b0389a85cdbf2cc899a501e9373f867a500079a13d4887

HTTP Headers

GET /static/media/gold-ingot.9d348c1b178f6a0adbc0.png HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:49 GMT
Content-Type: image/png
Content-Length: 1487
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:35:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: "67890f26-5cf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Cache-Control: max-age=31536000, public
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2OZtKjkdlU4zbVUw9MZsmfGayiVHv6WThjB3jgJ0CtMTXW4lBbWf7VgNymvd5gFFZ16NrYRV%2B%2FshxUq%2FlCwJG3c%2F0%2FYyA%2Bbqj4CSfxS2N80T2TbfFCtW4cCWc4QiegIwJpIzIMkYPg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0888b826fa6-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1409&min_rtt=1409&rtt_var=704&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=908&delivery_rate=0&cwnd=244&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01hkT71:0 (W), 1.1 PS-ARN-046HI117:13 (W)
Age: 2591171
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8ad_PS-ARN-046HI117_52035-58545

hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png

138.113.181.2

200 OK

1.5 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
PNG image data, 42 x 36, 8-bit colormap, non-interlaced
Size
1.5 kB (1487 bytes)
Hash
6cab69730d646c6fd60efbd7a9a3486e
47f418ac8093c8503e432386213ed7072541e101
3c8823de15bbcf78d9b0389a85cdbf2cc899a501e9373f867a500079a13d4887

HTTP Headers

GET /static/media/gold-ingot.9d348c1b178f6a0adbc0.png HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:49 GMT
Content-Type: image/png
Content-Length: 1487
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:35:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: "67890f26-5cf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Cache-Control: max-age=31536000, public
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2OZtKjkdlU4zbVUw9MZsmfGayiVHv6WThjB3jgJ0CtMTXW4lBbWf7VgNymvd5gFFZ16NrYRV%2B%2FshxUq%2FlCwJG3c%2F0%2FYyA%2Bbqj4CSfxS2N80T2TbfFCtW4cCWc4QiegIwJpIzIMkYPg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0888b826fa6-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1409&min_rtt=1409&rtt_var=704&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=908&delivery_rate=0&cwnd=244&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01hkT71:0 (W), 1.1 PS-ARN-046HI117:4 (W)
Age: 2591171
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8ad_PS-ARN-046HI117_50934-35067

hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png

138.113.181.2

200 OK

1.5 kB

URL GET HTTP/1.1
hm-static.xuezhumall.com/static/media/gold-ingot.9d348c1b178f6a0adbc0.png
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-static.xuezhumall.com
Fingerprint4A:25:78:49:87:9B:B2:C5:C2:AB:0D:09:16:57:D6:F4:13:EA:AA:73
ValidityMon, 02 Dec 2024 14:33:23 GMT - Sun, 02 Mar 2025 14:33:22 GMT

File type
PNG image data, 42 x 36, 8-bit colormap, non-interlaced
Size
1.5 kB (1487 bytes)
Hash
6cab69730d646c6fd60efbd7a9a3486e
47f418ac8093c8503e432386213ed7072541e101
3c8823de15bbcf78d9b0389a85cdbf2cc899a501e9373f867a500079a13d4887

HTTP Headers

GET /static/media/gold-ingot.9d348c1b178f6a0adbc0.png HTTP/1.1
Host: hm-static.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:49 GMT
Content-Type: image/png
Content-Length: 1487
Connection: keep-alive
Expires: Sat, 24 Jan 2026 09:35:38 GMT
Last-Modified: Thu, 16 Jan 2025 13:52:38 GMT
ETag: "67890f26-5cf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Cache-Control: max-age=31536000, public
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2OZtKjkdlU4zbVUw9MZsmfGayiVHv6WThjB3jgJ0CtMTXW4lBbWf7VgNymvd5gFFZ16NrYRV%2B%2FshxUq%2FlCwJG3c%2F0%2FYyA%2Bbqj4CSfxS2N80T2TbfFCtW4cCWc4QiegIwJpIzIMkYPg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 906ef0888b826fa6-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1409&min_rtt=1409&rtt_var=704&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=908&delivery_rate=0&cwnd=244&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01hkT71:0 (W), 1.1 PS-ARN-04kSW118:10 (W)
Age: 2591171
X-Px: ht PS-ARN-04kSW118none
x-ws-request-id: 67bae8ad_PS-ARN-04kSW118_41016-716

kano.guahao.cn/s9X946749283

43.152.140.79

200 OK

461 kB

URL GET HTTP/2
kano.guahao.cn/s9X946749283
IP
43.152.140.79:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.guahao.cn
FingerprintF1:2A:90:46:D7:BE:74:70:C9:30:B5:3E:75:9B:65:CA:9A:F2:E9:BE
ValidityMon, 16 Dec 2024 00:00:00 GMT - Tue, 16 Dec 2025 23:59:59 GMT

File type
GIF image data, version 89a, 300 x 450
Size
461 kB (461002 bytes)
Hash
f02d3b28e6490eeab347411a2a2fc198
fd805669bb64eedfe4e19c2eb16e5ab255d89db3
63ce4fd43acb63fd54d165e949fae852d0b73d1051eebbb8e260b00ea4e911e7

HTTP Headers

GET /s9X946749283 HTTP/1.1
Host: kano.guahao.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sat, 15 Feb 2025 12:08:08 GMT
content-type: image/gif
content-length: 461002
accept-ranges: bytes
x-nws-log-uuid: 12501854427096398043
server: Lego Server
date: Sun, 23 Feb 2025 09:21:49 GMT
x-cache-lookup: Cache Hit
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/7bf9fe30d1a7b630b823fef73f0d85e7.gif

47.246.44.224

200 OK

99 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/7bf9fe30d1a7b630b823fef73f0d85e7.gif
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
GIF image data, version 89a, 300 x 450
Size
99 kB (98984 bytes)
Hash
25e3af6cb412852cf114a064b093567d
7e9e6afe2d67195884ed7c74147dcc332cb80aa2
da8c1c1e9f861661b419558f0dfb70691e8c06ca17a24e5f5f7f4e7ddcf06695

HTTP Headers

GET /mitv-ueap/7bf9fe30d1a7b630b823fef73f0d85e7.gif HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 98984
date: Mon, 17 Feb 2025 08:36:35 GMT
cache-control: max-age=86400
last-modified: Mon, 17 Feb 2025 07:47:28 GMT
x-xiaomi-meta-content-length: 98984
etag: "25e3af6cb412852cf114a064b093567d"
content-md5: 25e3af6cb412852cf114a064b093567d
x-xiaomi-hash-crc64ecma: 4489802987263579902
x-xiaomi-request-id: 9c1cc78c-809f-97c7-0000-0195130d5149
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length
via: ens-cache16.l2de3[0,0,200-0,H], ens-cache10.l2de3[1,0], ens-cache7.se2[0,0,200-0,H], ens-cache12.se2[3,0]
age: 521114
ali-swift-global-savetime: 1739781395
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Mon, 17 Feb 2025 13:33:33 GMT
x-swift-cachetime: 2574182
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025097503935e
X-Firefox-Spdy: h2

img.meituan.net/video/1ab6d536bdf0cca7b1666145d1424f98390521.gif

43.152.140.107

200 OK

390 kB

URL GET HTTP/2
img.meituan.net/video/1ab6d536bdf0cca7b1666145d1424f98390521.gif
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
GIF image data, version 89a, 640 x 360
Size
390 kB (390521 bytes)
Hash
1ab6d536bdf0cca7b1666145d1424f98
2f7952109f563277ee5acaa2260cb0d1dccf6cca
577f3f387d4fa89aeae4c7ba9573b90f9f0db06a20a8c94e065ee32338b76bab

HTTP Headers

GET /video/1ab6d536bdf0cca7b1666145d1424f98390521.gif HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 12 Apr 2025 18:16:52 GMT
server: openresty
date: Tue, 11 Feb 2025 18:18:21 GMT
content-type: image/gif
access-control-allow-private-network: true
m-traceid: 7uvilrl4id9dqagh2wh6
age: 90
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 390521
accept-ranges: bytes
x-nws-log-uuid: 6220330668806313776
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

kano.guahao.cn/nYQ946751269

43.152.140.79

200 OK

310 kB

URL GET HTTP/2
kano.guahao.cn/nYQ946751269
IP
43.152.140.79:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.guahao.cn
FingerprintF1:2A:90:46:D7:BE:74:70:C9:30:B5:3E:75:9B:65:CA:9A:F2:E9:BE
ValidityMon, 16 Dec 2024 00:00:00 GMT - Tue, 16 Dec 2025 23:59:59 GMT

File type
GIF image data, version 89a, 640 x 150
Size
310 kB (310474 bytes)
Hash
27fccb0ecedc4fbf112461c527d99e5d
4e522f197d3b3430cfaf93b095952ac44229c957
490bd8feb870a889a1e69ca43cb56f21b4c6ef8db016b64edbbff10b89c7f52d

HTTP Headers

GET /nYQ946751269 HTTP/1.1
Host: kano.guahao.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 15 Feb 2025 12:34:57 GMT
content-type: image/gif
content-length: 310474
accept-ranges: bytes
x-nws-log-uuid: 14352582558713817791
server: Lego Server
date: Sun, 23 Feb 2025 09:21:50 GMT
x-cache-lookup: Cache Hit
access-control-allow-origin: *
X-Firefox-Spdy: h2

img.meituan.net/video/b3f060dcb192799fb5953752a26052c7470675.gif

43.152.140.107

200 OK

471 kB

URL GET HTTP/2
img.meituan.net/video/b3f060dcb192799fb5953752a26052c7470675.gif
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
GIF image data, version 89a, 640 x 360
Size
471 kB (470675 bytes)
Hash
b3f060dcb192799fb5953752a26052c7
cb6a88e02d0df2de88683b7a88b7fb2c529d3dcd
022e53098ff087f332452acebea561b4d33ac45e17a1dbd72c0ef63026e1f42b

HTTP Headers

GET /video/b3f060dcb192799fb5953752a26052c7470675.gif HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 12 Apr 2025 13:19:49 GMT
server: openresty
date: Tue, 11 Feb 2025 13:19:53 GMT
content-type: image/gif
access-control-allow-private-network: true
m-traceid: 7848ei6dg87cbjzmmlk3
age: 4
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 470675
accept-ranges: bytes
x-nws-log-uuid: 18128758830533445516
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

kano.guahao.cn/mrX946751128

43.152.140.79

200 OK

230 kB

URL GET HTTP/2
kano.guahao.cn/mrX946751128
IP
43.152.140.79:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.guahao.cn
FingerprintF1:2A:90:46:D7:BE:74:70:C9:30:B5:3E:75:9B:65:CA:9A:F2:E9:BE
ValidityMon, 16 Dec 2024 00:00:00 GMT - Tue, 16 Dec 2025 23:59:59 GMT

File type
GIF image data, version 89a, 640 x 150
Size
230 kB (230428 bytes)
Hash
2f623dfb1b7e455bfaa1c5f66fc9a2e4
6c348555dd72960c6e9b71fca37f874dc385199d
ccd209581d43b56fcd9b1ed0bcbd89c2a065aa3e0d53fc31006c3eb0375530dc

HTTP Headers

GET /mrX946751128 HTTP/1.1
Host: kano.guahao.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 15 Feb 2025 12:24:43 GMT
content-type: image/gif
content-length: 230428
accept-ranges: bytes
x-nws-log-uuid: 478559931322181886
server: Lego Server
date: Sun, 23 Feb 2025 09:21:50 GMT
x-cache-lookup: Cache Hit
access-control-allow-origin: *
X-Firefox-Spdy: h2

img.meituan.net/csc/b792ddeaa0f48de5325224010f15a7519964.gif

43.152.140.107

200 OK

10 kB

URL GET HTTP/2
img.meituan.net/csc/b792ddeaa0f48de5325224010f15a7519964.gif
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
GIF image data, version 89a, 96 x 96
Size
10 kB (9964 bytes)
Hash
b792ddeaa0f48de5325224010f15a751
b2786e3ab6a68bb38b7aaff1065e7fd5f094a107
56c8b92ac91c5238048e719b93a6018e4cdcbb9f08070dd235310d8946193f90

HTTP Headers

GET /csc/b792ddeaa0f48de5325224010f15a7519964.gif HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 06 Mar 2025 15:09:52 GMT
server: openresty
date: Tue, 14 Jan 2025 05:30:02 GMT
content-type: image/gif
access-control-allow-private-network: true
m-traceid: lkw0hiv3c6mqepomt4w5
age: 742810
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 9964
accept-ranges: bytes
x-nws-log-uuid: 2663039224399970445
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

node65.aizhantj.com:21233/tjgif/?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1361109869&si=9fh7x3i4rov&su=https%3A%2F%2Fvasz01.trafficmanager.net%3A9527%2F&v=23.01.26&lv=1&sn=20580&r=0&ww=1280&u=https%3A%2F%2Fxa1jgfbdlwf2ncxq.412979.com%3A8283%2Fhome%3Fchannel%3Dgj-41&lvt=1740302505&tf=1740302505

163.171.134.109

200 OK

50 kB

URL GET HTTP/2
node65.aizhantj.com:21233/tjgif/?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1361109869&si=9fh7x3i4rov&su=https%3A%2F%2Fvasz01.trafficmanager.net%3A9527%2F&v=23.01.26&lv=1&sn=20580&r=0&ww=1280&u=https%3A%2F%2Fxa1jgfbdlwf2ncxq.412979.com%3A8283%2Fhome%3Fchannel%3Dgj-41&lvt=1740302505&tf=1740302505
IP
163.171.134.109:21233
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.aizhantj.com
Fingerprint26:01:F1:1E:2C:43:7E:B9:25:67:E6:CA:E6:61:29:78:06:5C:77:41
ValiditySat, 07 Sep 2024 08:00:09 GMT - Thu, 09 Oct 2025 08:00:08 GMT

File type
GIF image data, version 89a, 1 x 1
Size
50 kB (50061 bytes)
Hash
cf5ee650022e22e9b2593e84adf7b824
2b892d8710acd7be74ce5ae96e66f0103a398b9b
f41b9cdb824dd58d454edec316f92d283c024aad61742166580f9dbacc855c07

HTTP Headers

GET /tjgif/?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1361109869&si=9fh7x3i4rov&su=https%3A%2F%2Fvasz01.trafficmanager.net%3A9527%2F&v=23.01.26&lv=1&sn=20580&r=0&ww=1280&u=https%3A%2F%2Fxa1jgfbdlwf2ncxq.412979.com%3A8283%2Fhome%3Fchannel%3Dgj-41&lvt=1740302505&tf=1740302505 HTTP/1.1
Host: node65.aizhantj.com:21233
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 23 Feb 2025 09:21:46 GMT
content-type: image/gif
access-control-allow-origin: *
access-control-allow-methods: GET, PUT, POST, DELETE, OPTIONS
set-cookie: _aztj_sess=fh22390ftr4vl38v4e8c1ss90v; expires=Sun, 09 Mar 2025 09:21:46 GMT; Max-Age=1209600; path=/; secure; SameSite=None
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
server: Aztj(w-01)
x-via: 1.1 PSrdsdgemSTO1sw92:10 (Cdn Cache Server V2.0)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_4282-22068
X-Firefox-Spdy: h2

kano.guahao.cn/JN6947265942

43.152.140.79

200 OK

55 kB

URL GET HTTP/2
kano.guahao.cn/JN6947265942
IP
43.152.140.79:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.guahao.cn
FingerprintF1:2A:90:46:D7:BE:74:70:C9:30:B5:3E:75:9B:65:CA:9A:F2:E9:BE
ValidityMon, 16 Dec 2024 00:00:00 GMT - Tue, 16 Dec 2025 23:59:59 GMT

File type
GIF image data, version 89a, 150 x 150
Size
55 kB (55239 bytes)
Hash
548bb84737d10bcca123faa477e8789f
47d2b051df69fc2301f3e663215a1ea01bd2e440
95f37ffa4441753a79d00f75c7d7f9e360de083c8ac2ac3997d54919b83613f9

HTTP Headers

GET /JN6947265942 HTTP/1.1
Host: kano.guahao.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 21 Feb 2025 05:30:08 GMT
content-type: image/gif
content-length: 55239
accept-ranges: bytes
x-nws-log-uuid: 7134090996081982301
server: Lego Server
date: Sun, 23 Feb 2025 09:21:50 GMT
x-cache-lookup: Cache Refresh Hit
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/305d9b0b2371552701615af0eea14cc8.gif

47.246.44.224

200 OK

81 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/305d9b0b2371552701615af0eea14cc8.gif
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
GIF image data, version 89a, 150 x 150
Size
81 kB (80652 bytes)
Hash
dc9d7d3f0e38df688b66e34f2d3ec17c
9abf20688256cc5a66ac00a386f997589cbacaa6
ffbbf9f875acdd1d4c3e6895116914e91e26283ebfc68061941d2eb579b0e54a

HTTP Headers

GET /mitv-ueap/305d9b0b2371552701615af0eea14cc8.gif HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 80652
date: Tue, 18 Feb 2025 16:57:57 GMT
cache-control: max-age=86400
last-modified: Tue, 18 Feb 2025 16:50:19 GMT
x-xiaomi-meta-content-length: 80652
etag: "dc9d7d3f0e38df688b66e34f2d3ec17c"
content-md5: dc9d7d3f0e38df688b66e34f2d3ec17c
x-xiaomi-hash-crc64ecma: -8004045950956523476
x-xiaomi-request-id: 8542800c-b759-0d57-0000-019519feb31d
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length, accept-ranges
via: ens-cache15.l2de3[0,0,200-0,H], ens-cache1.l2de3[2,0], ens-cache6.se2[0,0,200-0,H], ens-cache12.se2[14,0]
age: 404633
ali-swift-global-savetime: 1739897877
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Tue, 18 Feb 2025 17:08:51 GMT
x-swift-cachetime: 2591346
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025105454718e
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/28a2dc784670965b3ecab2169ea495f9.png

47.246.44.224

200 OK

15 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/28a2dc784670965b3ecab2169ea495f9.png
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced
Size
15 kB (15350 bytes)
Hash
9d4515cc9fbc3aa713ca59bcde69dd88
81a27aae48cc9f2638baf07b5791f4f1d4a5cc9b
ae85c9843653cd319143d6f1db4ef75ebe57472eda7035e8a682db3ad29cb7e9

HTTP Headers

GET /mitv-ueap/28a2dc784670965b3ecab2169ea495f9.png HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 15350
date: Thu, 20 Feb 2025 16:50:37 GMT
cache-control: max-age=86400
last-modified: Thu, 20 Feb 2025 16:32:34 GMT
x-xiaomi-meta-content-length: 15350
etag: "9d4515cc9fbc3aa713ca59bcde69dd88"
content-md5: 9d4515cc9fbc3aa713ca59bcde69dd88
x-xiaomi-hash-crc64ecma: 4854661000293711165
x-xiaomi-request-id: 501ab2ff-0d89-e1f3-0000-01952444b4bd
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length, accept-ranges
via: ens-cache10.l2de3[0,0,200-0,H], ens-cache8.l2de3[1,0], ens-cache8.se2[0,0,200-0,H], ens-cache12.se2[14,0]
age: 232273
ali-swift-global-savetime: 1740070237
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Thu, 20 Feb 2025 17:07:54 GMT
x-swift-cachetime: 2590963
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025105454727e
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/8f3e6bfb0f3426950ea7d8cdcfcd60a2.png

47.246.44.224

200 OK

24 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/8f3e6bfb0f3426950ea7d8cdcfcd60a2.png
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced
Size
24 kB (24128 bytes)
Hash
693429ec28e9b69eaafa7c1b171e5573
8b2c0fd90db1862d9d063385f640680d7f1bc085
eb715f65a4c60d33c48446e11c2a0ac9f7f77982a610469a877eb4b0a2494426

HTTP Headers

GET /mitv-ueap/8f3e6bfb0f3426950ea7d8cdcfcd60a2.png HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 24128
date: Mon, 17 Feb 2025 21:34:20 GMT
cache-control: max-age=86400
last-modified: Mon, 17 Feb 2025 21:23:23 GMT
x-xiaomi-meta-content-length: 24128
etag: "693429ec28e9b69eaafa7c1b171e5573"
content-md5: 693429ec28e9b69eaafa7c1b171e5573
x-xiaomi-hash-crc64ecma: 7537316852088151617
x-xiaomi-request-id: 4a0f1cc6-77a6-2c2a-0000-019515d56130
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length
via: ens-cache12.l2de3[0,0,200-0,H], ens-cache4.l2de3[0,0], ens-cache20.se2[0,-1,200-0,H], ens-cache12.se2[14,0]
age: 474449
ali-swift-global-savetime: 1739828061
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Mon, 17 Feb 2025 21:38:37 GMT
x-swift-cachetime: 2591744
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025105454728e
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/c4fb36443f5b2ac0f793831c93577e14.png

47.246.44.224

200 OK

19 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/c4fb36443f5b2ac0f793831c93577e14.png
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced
Size
19 kB (18927 bytes)
Hash
552344f7c7a4108c695ea3a162e19db3
acced4d6252bf6439d5a2942f6c2ac211ea0b308
54750743039dcc1597cbbf8fe37706c8b4d557bf0c82d4c5e99f6c577d2ca232

HTTP Headers

GET /mitv-ueap/c4fb36443f5b2ac0f793831c93577e14.png HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 18927
date: Thu, 20 Feb 2025 16:50:37 GMT
cache-control: max-age=86400
last-modified: Thu, 20 Feb 2025 16:32:34 GMT
x-xiaomi-meta-content-length: 18927
etag: "552344f7c7a4108c695ea3a162e19db3"
content-md5: 552344f7c7a4108c695ea3a162e19db3
x-xiaomi-hash-crc64ecma: 2383335830528599033
x-xiaomi-request-id: b2afc5c2-19b0-c4d8-0000-01952444b4fe
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length
via: ens-cache12.l2de3[0,0,200-0,H], ens-cache5.l2de3[1,0], ens-cache20.se2[0,0,200-0,H], ens-cache12.se2[22,0]
age: 232273
ali-swift-global-savetime: 1740070237
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Thu, 20 Feb 2025 17:07:54 GMT
x-swift-cachetime: 2590963
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025105454729e
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/3c75f2a71237bd1633dff3ccb47b7788.png

47.246.44.224

200 OK

23 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/3c75f2a71237bd1633dff3ccb47b7788.png
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced
Size
23 kB (23357 bytes)
Hash
80d97b4f99a684f46761816577e9f8bb
f07e34a8e8d3be264c1e7af68df170b95a6e9ca1
e1c753a93fac5a9cb22c29ed4dc9d5ed8413aec1c24ede7d298bf028bdca2fe6

HTTP Headers

GET /mitv-ueap/3c75f2a71237bd1633dff3ccb47b7788.png HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 23357
date: Thu, 20 Feb 2025 16:50:37 GMT
cache-control: max-age=86400
last-modified: Thu, 20 Feb 2025 16:32:36 GMT
x-xiaomi-meta-content-length: 23357
etag: "80d97b4f99a684f46761816577e9f8bb"
content-md5: 80d97b4f99a684f46761816577e9f8bb
x-xiaomi-hash-crc64ecma: 5017530708713798360
x-xiaomi-request-id: 4d96539f-8649-281f-0000-01952444b49b
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length, accept-ranges
via: ens-cache2.l2de3[0,0,200-0,H], ens-cache1.l2de3[1,0], ens-cache4.se2[0,0,200-0,H], ens-cache12.se2[8,0]
age: 232273
ali-swift-global-savetime: 1740070237
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Thu, 20 Feb 2025 17:07:54 GMT
x-swift-cachetime: 2590963
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025105594732e
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/ed9a79105e8e45ea413b77cad34d3103.gif

47.246.44.224

200 OK

434 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/ed9a79105e8e45ea413b77cad34d3103.gif
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
GIF image data, version 89a, 180 x 180
Size
434 kB (433880 bytes)
Hash
adbb2863ffe138e96bdc81d5a10c7b0d
9f468b0bfdb5bd870071edc8bad4ce017ab87f26
4cd6333286abef5f840d8807ddd1bce53bc3ed7d520c5db47546011c2ac61266

HTTP Headers

GET /mitv-ueap/ed9a79105e8e45ea413b77cad34d3103.gif HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 433880
date: Mon, 17 Feb 2025 20:40:47 GMT
cache-control: max-age=86400
last-modified: Mon, 17 Feb 2025 20:40:09 GMT
x-xiaomi-meta-content-length: 433880
etag: "adbb2863ffe138e96bdc81d5a10c7b0d"
content-md5: adbb2863ffe138e96bdc81d5a10c7b0d
x-xiaomi-hash-crc64ecma: -3658511600397420948
x-xiaomi-request-id: 055cae1c-b375-1982-0000-019515a45993
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length
via: ens-cache16.l2de3[0,0,200-0,H], ens-cache16.l2de3[1,0], ens-cache2.se2[0,0,200-0,H], ens-cache12.se2[14,0]
age: 477663
ali-swift-global-savetime: 1739824847
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Mon, 17 Feb 2025 20:49:07 GMT
x-swift-cachetime: 2591500
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025105454723e
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/e5f4d9d07e473625a48c873c8051e0b0.gif

47.246.44.224

200 OK

316 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/e5f4d9d07e473625a48c873c8051e0b0.gif
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
GIF image data, version 89a, 180 x 180
Size
316 kB (315956 bytes)
Hash
e01fa47fc42f9f6434a057895349e0c3
29d1825ec6961ce04aeea1870fc7e45ddc06314c
50df3525cd1e8bc581d4d2d05dacb59b2261cfc8bcf2355783525aebfe12b040

HTTP Headers

GET /mitv-ueap/e5f4d9d07e473625a48c873c8051e0b0.gif HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 315956
date: Mon, 17 Feb 2025 19:10:22 GMT
cache-control: max-age=86400
last-modified: Mon, 17 Feb 2025 19:05:45 GMT
x-xiaomi-meta-content-length: 315956
etag: "e01fa47fc42f9f6434a057895349e0c3"
content-md5: e01fa47fc42f9f6434a057895349e0c3
x-xiaomi-hash-crc64ecma: -9076271598827316027
x-xiaomi-request-id: 2e050e7b-11a4-3721-0000-019515519165
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length, accept-ranges
via: ens-cache9.l2de3[0,0,200-0,H], ens-cache12.l2de3[1,0], ens-cache1.se2[0,0,200-0,H], ens-cache12.se2[14,0]
age: 483088
ali-swift-global-savetime: 1739819422
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Mon, 17 Feb 2025 19:15:12 GMT
x-swift-cachetime: 2591710
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025105454725e
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/670019394e9b7a2e7609e8864e5be66d.png

47.246.44.224

200 OK

20 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/670019394e9b7a2e7609e8864e5be66d.png
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced
Size
20 kB (19863 bytes)
Hash
4ccd226fb923c7998328de5d4ba37672
0f6c13e2dad2f6ef93179f0d2f743ef7217e6165
4cba0782b8f70de125fa33a1802d36decc4670cbf409d7b6b255f61af2b2198f

HTTP Headers

GET /mitv-ueap/670019394e9b7a2e7609e8864e5be66d.png HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 19863
date: Thu, 20 Feb 2025 16:50:37 GMT
cache-control: max-age=86400
last-modified: Thu, 20 Feb 2025 16:32:35 GMT
x-xiaomi-meta-content-length: 19863
etag: "4ccd226fb923c7998328de5d4ba37672"
content-md5: 4ccd226fb923c7998328de5d4ba37672
x-xiaomi-hash-crc64ecma: 3517343449326379231
x-xiaomi-request-id: da6ef445-d043-42b0-0000-01952444b4ec
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length
via: ens-cache16.l2de3[0,0,200-0,H], ens-cache18.l2de3[1,0], ens-cache4.se2[0,0,200-0,H], ens-cache12.se2[4,0]
age: 232273
ali-swift-global-savetime: 1740070237
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Thu, 20 Feb 2025 17:07:54 GMT
x-swift-cachetime: 2590963
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025105984759e
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/30dd0afbd37d1e3fcb8c416438b178f4.gif

47.246.44.224

200 OK

508 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/30dd0afbd37d1e3fcb8c416438b178f4.gif
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
GIF image data, version 89a, 150 x 150
Size
508 kB (508169 bytes)
Hash
22a6152a5c559bf08c7d44b442e4d9df
98498a55b7ec1418c48cfcff03055d6443d50939
9727627f957741a8f5fbcb06a925f6ead7e6ea0354645e39eb5d86705e24fc6b

HTTP Headers

GET /mitv-ueap/30dd0afbd37d1e3fcb8c416438b178f4.gif HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 508169
date: Mon, 17 Feb 2025 19:10:22 GMT
cache-control: max-age=86400
last-modified: Mon, 17 Feb 2025 19:07:12 GMT
x-xiaomi-meta-content-length: 508169
etag: "22a6152a5c559bf08c7d44b442e4d9df"
content-md5: 22a6152a5c559bf08c7d44b442e4d9df
x-xiaomi-hash-crc64ecma: -2621932683438973809
x-xiaomi-request-id: 3740e681-d5b8-1060-0000-0195155192a8
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length, accept-ranges
via: ens-cache10.l2de3[0,0,200-0,H], ens-cache10.l2de3[1,0], ens-cache12.se2[0,0,200-0,H], ens-cache12.se2[14,0]
age: 483088
ali-swift-global-savetime: 1739819422
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Mon, 17 Feb 2025 19:15:13 GMT
x-swift-cachetime: 2591709
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025105454722e
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/3a6edd30798887d5d08d9de5f0055bd8.gif

47.246.44.224

200 OK

19 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/3a6edd30798887d5d08d9de5f0055bd8.gif
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
GIF image data, version 89a, 150 x 150
Size
19 kB (18838 bytes)
Hash
0e608204a4b4b5b32911e06ab2296705
a72c832744e248b11abf7b6d4e500b3b683fcb17
527d43cc2785ef90dfb6e6a54f50dff1414ba176af7aaec9e3ec6a20ecedc750

HTTP Headers

GET /mitv-ueap/3a6edd30798887d5d08d9de5f0055bd8.gif HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 18838
date: Mon, 17 Feb 2025 21:53:26 GMT
cache-control: max-age=86400
last-modified: Mon, 17 Feb 2025 21:40:47 GMT
x-xiaomi-meta-content-length: 18838
etag: "0e608204a4b4b5b32911e06ab2296705"
content-md5: 0e608204a4b4b5b32911e06ab2296705
x-xiaomi-hash-crc64ecma: 1920515119401330616
x-xiaomi-request-id: 072bc507-4398-f174-0000-019515e6dd27
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length, accept-ranges
via: ens-cache18.l2de3[0,0,200-0,H], ens-cache7.l2de3[1,0], ens-cache1.se2[0,0,200-0,H], ens-cache12.se2[3,0]
age: 473304
ali-swift-global-savetime: 1739829206
x-cache: HIT TCP_HIT dirn:10:62482487
x-swift-savetime: Tue, 18 Feb 2025 03:48:05 GMT
x-swift-cachetime: 2570721
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025106204779e
X-Firefox-Spdy: h2

hm-media.xuezhumall.com/source/202407/09/1311325522/source_jpg.image

138.113.181.2

200 OK

61 kB

URL GET HTTP/1.1
hm-media.xuezhumall.com/source/202407/09/1311325522/source_jpg.image
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-media.xuezhumall.com
FingerprintCF:32:BD:AB:38:BA:E0:EB:CA:A3:02:24:E8:37:94:46:10:F8:30:07
ValidityMon, 02 Dec 2024 14:35:15 GMT - Sun, 02 Mar 2025 14:35:14 GMT

File type
ASCII text, with very long lines (61201), with no line terminators
Size
61 kB (61201 bytes)
Hash
94157288b109b24a9b801dac1cceb1fb
cfd641e6d490094e7cf1981d290ac5a5f2786d7b
7f0ecd1052087f8d4ab56af71831e8ec56e82be6db110687c3a730bdec87bd27

HTTP Headers

GET /source/202407/09/1311325522/source_jpg.image HTTP/1.1
Host: hm-media.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:50 GMT
Content-Type: application/octet-stream
Content-Length: 61201
Connection: keep-alive
Last-Modified: Thu, 18 Jul 2024 06:26:12 GMT
ETag: "6698b584-ef11"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Cache-Control: public, max-age=31536000
Access-Control-Allow-Headers: *
Apisix-Cache-Status: MISS
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fRpL9ZbcbuHRCAdASy8NPfXZEki%2FdKlwmeTnyKvHgcez7DAN1MDWRY33NcCadzjvAZh6o%2BxnfsjQ4vBWoursGu7f9h%2F5tI%2BWhZzHGe7MtJ3DayLSDpnvCx4hVuWBNtOmTsvwdSSIDRk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 90833e406fe3bb52-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=993&min_rtt=993&rtt_var=496&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=838&delivery_rate=0&cwnd=233&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PSfgblPAR2bz95:1 (W), 1.1 PS-ARN-046HI117:9 (W)
Age: 397815
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8ae_PS-ARN-046HI117_51688-29697

hm-media.xuezhumall.com/source/202407/09/649839496/source_jpg.image

138.113.181.2

200 OK

75 kB

URL GET HTTP/1.1
hm-media.xuezhumall.com/source/202407/09/649839496/source_jpg.image
IP
138.113.181.2:443
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthm-media.xuezhumall.com
FingerprintCF:32:BD:AB:38:BA:E0:EB:CA:A3:02:24:E8:37:94:46:10:F8:30:07
ValidityMon, 02 Dec 2024 14:35:15 GMT - Sun, 02 Mar 2025 14:35:14 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
75 kB (74997 bytes)
Hash
6aa4336a5940fc8a33907015f04bfdee
69dc7677fb1216855d7b059930e5404fa74f72ab
d41526018d0c0dfc2db5d8dd18a11ebf507533043de1e1762d2f34bc2d1bf9d6

HTTP Headers

GET /source/202407/09/649839496/source_jpg.image HTTP/1.1
Host: hm-media.xuezhumall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xa1jgfbdlwf2ncxq.412979.com:8283
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:50 GMT
Content-Type: application/octet-stream
Content-Length: 74997
Connection: keep-alive
Last-Modified: Thu, 18 Jul 2024 06:26:09 GMT
ETag: "6698b581-124f5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 86400
Cache-Control: public, max-age=31536000
Access-Control-Allow-Headers: *
Apisix-Cache-Status: HIT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lZXIah%2F%2BbH9FB5oQ3ele5lJysc8VsYXdm43p%2Fzb5dMuui%2FIVFrzvIblIlSTB9diVBJBGI85HkFvhsE2XyaAJGhAlhsO%2FozAA3sn3yikArN4MX%2FohbCSv0M4UXh%2B35P%2ByVRZ2UVlHGCY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: PWS/8.3.1.0.8
CF-RAY: 907bb01449c422a4-CDG
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=485&min_rtt=485&rtt_var=242&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=831&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
Via: 1.1 PS-CDG-01jDc66:11 (W), 1.1 PS-ARN-046HI117:10 (W)
Age: 1764434
X-Px: ht PS-ARN-046HI117none
x-ws-request-id: 67bae8ae_PS-ARN-046HI117_51766-12878

y.gtimg.cn/music/photo_new/T053M000001eX8Tc3SjTKp.jpg

23.36.77.83

200 OK

49 kB

URL GET HTTP/2
y.gtimg.cn/music/photo_new/T053M000001eX8Tc3SjTKp.jpg
IP
23.36.77.83:443
ASN
#20940 Akamai International B.V.

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint63:66:F6:13:09:B0:E7:FC:86:1C:D7:0F:6E:E2:20:35:3B:DF:A8:5A
ValiditySun, 01 Sep 2024 00:00:00 GMT - Wed, 03 Sep 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
49 kB (48752 bytes)
Hash
d561314db43e2d3af7a1d895294e5c72
33b9268a5a44677f0bf257d1cb35c7e9926bcbb6
9ae3e8fe44a7723aa0994bec0c27c8d2a21f9d8e7384586a8b66bf268b7f6954

HTTP Headers

GET /music/photo_new/T053M000001eX8Tc3SjTKp.jpg HTTP/1.1
Host: y.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 48752
server: tws
last-modified: Wed, 05 Feb 2025 02:23:13 GMT
x-delay: 2656 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 1
x-reqgue: 0
size: 48752
chid: 0
fid: 0
cache-control: max-age=983448
date: Sun, 23 Feb 2025 09:21:50 GMT
X-Firefox-Spdy: h2

y.gtimg.cn/music/photo_new/T053M000004ZuKHm2IXLdR.jpg

23.36.77.83

200 OK

15 kB

URL GET HTTP/2
y.gtimg.cn/music/photo_new/T053M000004ZuKHm2IXLdR.jpg
IP
23.36.77.83:443
ASN
#20940 Akamai International B.V.

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint63:66:F6:13:09:B0:E7:FC:86:1C:D7:0F:6E:E2:20:35:3B:DF:A8:5A
ValiditySun, 01 Sep 2024 00:00:00 GMT - Wed, 03 Sep 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
15 kB (15400 bytes)
Hash
5744814e6a97bc5bfb97204deae8f1a9
89e2dd933501de55990661bad0cbb92a2c2a5aad
bb41b3b1d83de617e540ebd54e9fbdeb91834843676ccc42e39455d80dbcf84b

HTTP Headers

GET /music/photo_new/T053M000004ZuKHm2IXLdR.jpg HTTP/1.1
Host: y.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 15400
server: tws
last-modified: Sat, 01 Feb 2025 01:35:23 GMT
x-delay: 1248 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 1
x-reqgue: 0
size: 15400
chid: 0
fid: 0
cache-control: max-age=635399
date: Sun, 23 Feb 2025 09:21:50 GMT
X-Firefox-Spdy: h2

y.gtimg.cn/music/photo_new/T053M0000039H3kP2kkWgK.jpg

23.36.77.83

200 OK

16 kB

URL GET HTTP/2
y.gtimg.cn/music/photo_new/T053M0000039H3kP2kkWgK.jpg
IP
23.36.77.83:443
ASN
#20940 Akamai International B.V.

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint63:66:F6:13:09:B0:E7:FC:86:1C:D7:0F:6E:E2:20:35:3B:DF:A8:5A
ValiditySun, 01 Sep 2024 00:00:00 GMT - Wed, 03 Sep 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
16 kB (16342 bytes)
Hash
1fdae0fd425e43f6dcf87f19c2b90499
6a88e881866d942087f0227c16393e2015e35d7d
19ab936c6ca4e46473178070596a93ea3af8db2edd64f1596f1c6c1eda1e71ca

HTTP Headers

GET /music/photo_new/T053M0000039H3kP2kkWgK.jpg HTTP/1.1
Host: y.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 16342
server: tws
last-modified: Sat, 01 Feb 2025 01:36:05 GMT
x-delay: 1048 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 1
x-reqgue: 0
size: 16342
chid: 0
fid: 0
cache-control: max-age=634653
date: Sun, 23 Feb 2025 09:21:50 GMT
X-Firefox-Spdy: h2

y.gtimg.cn/music/photo_new/T053M0000010NJSz3i6Edb.jpg

23.36.77.83

200 OK

82 kB

URL GET HTTP/2
y.gtimg.cn/music/photo_new/T053M0000010NJSz3i6Edb.jpg
IP
23.36.77.83:443
ASN
#20940 Akamai International B.V.

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint63:66:F6:13:09:B0:E7:FC:86:1C:D7:0F:6E:E2:20:35:3B:DF:A8:5A
ValiditySun, 01 Sep 2024 00:00:00 GMT - Wed, 03 Sep 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
82 kB (82028 bytes)
Hash
2ecbd65d01e6d398db948c452defcf64
836ee3725dd78b452d50054af76f9a555b098d62
93b809174cdcb3ea70b4659e326b0eca7bdd22ac594b60f16c5226a00918f72e

HTTP Headers

GET /music/photo_new/T053M0000010NJSz3i6Edb.jpg HTTP/1.1
Host: y.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 82028
server: tws
last-modified: Wed, 05 Feb 2025 02:34:59 GMT
x-delay: 2964 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 1
x-reqgue: 0
size: 82028
chid: 0
fid: 0
cache-control: max-age=983778
date: Sun, 23 Feb 2025 09:21:51 GMT
X-Firefox-Spdy: h2

y.gtimg.cn/music/photo_new/T053M000001k45Io2KwpX0.jpg

23.36.77.83

200 OK

159 kB

URL GET HTTP/2
y.gtimg.cn/music/photo_new/T053M000001k45Io2KwpX0.jpg
IP
23.36.77.83:443
ASN
#20940 Akamai International B.V.

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint63:66:F6:13:09:B0:E7:FC:86:1C:D7:0F:6E:E2:20:35:3B:DF:A8:5A
ValiditySun, 01 Sep 2024 00:00:00 GMT - Wed, 03 Sep 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
159 kB (158574 bytes)
Hash
cf801ae1d4ccc41927c7ce7cff730d7c
c3edea4ba79af1f23ecf014326f85381d8dbaabc
d4b91b3d44dda61181faba08257b82087e9ef04958980d5ca99ddf3b45cb27d6

HTTP Headers

GET /music/photo_new/T053M000001k45Io2KwpX0.jpg HTTP/1.1
Host: y.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 158574
server: tws
last-modified: Tue, 11 Feb 2025 00:58:05 GMT
x-delay: 4871 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 1
x-reqgue: 0
size: 158574
chid: 0
fid: 0
cache-control: max-age=1496529
date: Sun, 23 Feb 2025 09:21:51 GMT
X-Firefox-Spdy: h2

y.gtimg.cn/music/photo_new/T053M000001emyGb4IYTHi.jpg

23.36.77.83

200 OK

186 kB

URL GET HTTP/2
y.gtimg.cn/music/photo_new/T053M000001emyGb4IYTHi.jpg
IP
23.36.77.83:443
ASN
#20940 Akamai International B.V.

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint63:66:F6:13:09:B0:E7:FC:86:1C:D7:0F:6E:E2:20:35:3B:DF:A8:5A
ValiditySun, 01 Sep 2024 00:00:00 GMT - Wed, 03 Sep 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
186 kB (186158 bytes)
Hash
e8419a703b0aef0e5c8c306bab846a18
269b9315e1948897c74e8fba5527a659f6776f68
abdcf2963141068a39179dfd115a5e959f2039f571f94ddab4d6e413fe4d6e61

HTTP Headers

GET /music/photo_new/T053M000001emyGb4IYTHi.jpg HTTP/1.1
Host: y.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 186158
server: tws
last-modified: Thu, 06 Feb 2025 20:51:54 GMT
x-delay: 4519 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 1
x-reqgue: 0
size: 186158
chid: 0
fid: 0
cache-control: max-age=1136071
date: Sun, 23 Feb 2025 09:21:51 GMT
X-Firefox-Spdy: h2

y.gtimg.cn/music/photo_new/T053M000003H54pa36nPIT.jpg

23.36.77.83

200 OK

372 kB

URL GET HTTP/2
y.gtimg.cn/music/photo_new/T053M000003H54pa36nPIT.jpg
IP
23.36.77.83:443
ASN
#20940 Akamai International B.V.

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint63:66:F6:13:09:B0:E7:FC:86:1C:D7:0F:6E:E2:20:35:3B:DF:A8:5A
ValiditySun, 01 Sep 2024 00:00:00 GMT - Wed, 03 Sep 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
372 kB (372136 bytes)
Hash
383da72d730b604c5f95a93ca02579ce
d12c7361743bac507776f08d8727bd625fa6c5f6
8730047311fe76dd3f74f6e90f5e7827c9ca4f6744d7f35711e3245b252d9114

HTTP Headers

GET /music/photo_new/T053M000003H54pa36nPIT.jpg HTTP/1.1
Host: y.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 372136
server: tws
last-modified: Mon, 10 Feb 2025 22:51:28 GMT
x-delay: 5906 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 1
x-reqgue: 0
size: 372136
chid: 0
fid: 0
cache-control: max-age=1489739
date: Sun, 23 Feb 2025 09:21:51 GMT
X-Firefox-Spdy: h2

y.gtimg.cn/music/photo_new/T053M000003OcMky1zZkdO.jpg

23.36.77.83

200 OK

876 kB

URL GET HTTP/2
y.gtimg.cn/music/photo_new/T053M000003OcMky1zZkdO.jpg
IP
23.36.77.83:443
ASN
#20940 Akamai International B.V.

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint63:66:F6:13:09:B0:E7:FC:86:1C:D7:0F:6E:E2:20:35:3B:DF:A8:5A
ValiditySun, 01 Sep 2024 00:00:00 GMT - Wed, 03 Sep 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
876 kB (875616 bytes)
Hash
57b7d84cd530b17dd841c57a6de6c8a4
c3f2c3cd432b4137736fac8bbedc24d5acf7ccc9
84e0dca0ad30bd8d7d44f2b70835bb5cfc3ce2eecacd386c6726b20075602e37

HTTP Headers

GET /music/photo_new/T053M000003OcMky1zZkdO.jpg HTTP/1.1
Host: y.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 875616
server: tws
last-modified: Sun, 02 Feb 2025 23:48:42 GMT
x-delay: 13015 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 1
x-reqgue: 0
size: 875616
chid: 0
fid: 0
cache-control: max-age=801453
date: Sun, 23 Feb 2025 09:21:51 GMT
X-Firefox-Spdy: h2

ali-ec.static.yximgs.com/bs2/upload-kwaishop-themis-bucket/109188b2-c16d-4adc-a05a-12ddef18a5ca_30c219baade1421dd9c0951222f46d09.jpg

163.181.154.239

200 OK

91 kB

URL GET HTTP/2
ali-ec.static.yximgs.com/bs2/upload-kwaishop-themis-bucket/109188b2-c16d-4adc-a05a-12ddef18a5ca_30c219baade1421dd9c0951222f46d09.jpg
IP
163.181.154.239:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.static.yximgs.com
FingerprintB0:A9:09:AD:3C:10:A6:F5:83:FB:3A:A3:12:61:59:2C:2E:1B:B3:68
ValidityTue, 24 Sep 2024 01:11:02 GMT - Sun, 26 Oct 2025 01:11:01 GMT

File type
GIF image data, version 89a, 120 x 120
Size
91 kB (90967 bytes)
Hash
30c219baade1421dd9c0951222f46d09
3a924c6a11ee631818a4bc191d470beafaebe51f
b3ba6e460a40f3694fce47b22c985baa04e7de7ea2de5e1cd993587c3bc620a1

HTTP Headers

GET /bs2/upload-kwaishop-themis-bucket/109188b2-c16d-4adc-a05a-12ddef18a5ca_30c219baade1421dd9c0951222f46d09.jpg HTTP/1.1
Host: ali-ec.static.yximgs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: image/jpeg
content-length: 90967
date: Mon, 06 Jan 2025 04:58:13 GMT
x-oss-request-id: 677B62E5C1E0C23435374CF2
x-oss-cdn-auth: success
accept-ranges: bytes
etag: "30C219BAADE1421DD9C0951222F46D09"
last-modified: Sun, 29 Dec 2024 03:36:13 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6253809354996241081
x-oss-storage-class: Standard
expires: Sun, 05 Jan 2025 03:36:13 GMT
cache-control: max-age=2592000
x-oss-expiration: expiry-date="Wed, 29 Jan 2025 00:00:00 GMT", rule-id="b9199bf5-bd93-4d4d-98ad-cde46af3d1d7"
content-md5: MMIZuq3hQh3ZwJUSIvRtCQ==
x-oss-server-time: 29
via: cache13.l2nu20-8[0,12,200-0,H], cache25.l2nu20-8[14,0], cache20.l2fr1[1059,1059,200-0,M], cache5.l2fr1[1060,0], ens-cache17.gb4[0,0,200-0,H], ens-cache11.gb4[3,0]
age: 4163018
ali-swift-global-savetime: 1736139493
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Mon, 06 Jan 2025 10:21:52 GMT
x-swift-cachetime: 7756581
kwaisign: null
x-ks-client-ip: 91.90.42.154
x-ks-cache: HIT from 163.181.154.239
x-ks-request-id: a3b59a9f17403025118596896e
access-control-expose-headers: x-ks-request-id,x-ks-client-ip,Content-Length
access-control-allow-origin: *
timing-allow-origin: *
eagleid: a3b59a9f17403025118596896e
X-Firefox-Spdy: h2

cbu01.alicdn.com/img/ibank/O1CN01UuHxei1Bs31OUb9pj_!!0-1-cib.gif

163.181.49.228

200 OK

134 kB

URL GET HTTP/2
cbu01.alicdn.com/img/ibank/O1CN01UuHxei1Bs31OUb9pj_!!0-1-cib.gif
IP
163.181.49.228:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.tbcdn.cn
FingerprintC8:28:74:DB:88:66:17:4F:5C:A5:AB:AD:F0:E1:14:74:AC:F8:FE:8F
ValidityWed, 19 Jun 2024 09:06:02 GMT - Mon, 21 Jul 2025 09:06:01 GMT

File type
GIF image data, version 89a, 150 x 150
Size
134 kB (134415 bytes)
Hash
5234220fed1beb3f9e0e5d8a9f5ed90b
8e595606eb139324cb7e71578c40e038a59b27a8
4098f35a0cd1ce01a4425fb81068affce3ac71c4bea3edc32233654d1d558808

HTTP Headers

GET /img/ibank/O1CN01UuHxei1Bs31OUb9pj_!!0-1-cib.gif HTTP/1.1
Host: cbu01.alicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 134415
date: Fri, 20 Dec 2024 16:33:33 GMT
last-modified: Fri, 20 Dec 2024 13:22:01 GMT
picasso-ret-code: SUCCESS
picasso-cache-info: MISS
request-time: 0.006
traceid: 2ff6079817347124135931055e
x-powered-by: Picasso
picasso-image-type: normal
picasso-fmt: gif2
cache-control: max-age=31536000
via: cache13.l2fr1[0,0,200-0,H], cache1.l2fr1[1,0], ens-cache5.es5[0,0,200-0,H], ens-cache10.es5[1,0]
access-control-allow-origin: *
age: 5590097
ali-swift-global-savetime: 1734712414
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Fri, 20 Dec 2024 16:39:38 GMT
x-swift-cachetime: 31535636
timing-allow-origin: *
eagleid: a3b5319e17403025119085069e
X-Firefox-Spdy: h2

cbu01.alicdn.com/img/ibank/O1CN01yCvh1L1Bs31vUeQ88_!!0-1-cib.gif

163.181.49.228

200 OK

71 kB

URL GET HTTP/2
cbu01.alicdn.com/img/ibank/O1CN01yCvh1L1Bs31vUeQ88_!!0-1-cib.gif
IP
163.181.49.228:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.tbcdn.cn
FingerprintC8:28:74:DB:88:66:17:4F:5C:A5:AB:AD:F0:E1:14:74:AC:F8:FE:8F
ValidityWed, 19 Jun 2024 09:06:02 GMT - Mon, 21 Jul 2025 09:06:01 GMT

File type
GIF image data, version 89a, 150 x 150
Size
71 kB (70752 bytes)
Hash
f7fd6ce44d2aeb9a6d977e2913d6344f
3cd7001ecbce42424b80bcc0fee7359944e966b4
224ce2480341747866e7d623c1d94573ee388f1343628d8c843c52d278addcbe

HTTP Headers

GET /img/ibank/O1CN01yCvh1L1Bs31vUeQ88_!!0-1-cib.gif HTTP/1.1
Host: cbu01.alicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 70752
date: Mon, 20 Jan 2025 08:20:11 GMT
last-modified: Mon, 20 Jan 2025 08:06:33 GMT
picasso-ret-code: SUCCESS
picasso-cache-info: MISS
request-time: 0.013
traceid: a3b5319917373612116666615e
x-powered-by: Picasso
picasso-image-type: normal
picasso-fmt: gif2
cache-control: max-age=31536000
via: cache14.l2fr1[364,364,200-0,M], cache38.l2fr1[366,0], ens-cache3.es5[0,0,200-0,H], ens-cache10.es5[5,0]
access-control-allow-origin: *
age: 2941299
ali-swift-global-savetime: 1737361212
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Mon, 20 Jan 2025 08:20:12 GMT
x-swift-cachetime: 31536000
timing-allow-origin: *
eagleid: a3b5319e17403025119715256e
X-Firefox-Spdy: h2

cbu01.alicdn.com/img/ibank/O1CN01KKHRFz1Bs31zXLk6w_!!0-1-cib.gif

163.181.49.228

200 OK

146 kB

URL GET HTTP/2
cbu01.alicdn.com/img/ibank/O1CN01KKHRFz1Bs31zXLk6w_!!0-1-cib.gif
IP
163.181.49.228:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.tbcdn.cn
FingerprintC8:28:74:DB:88:66:17:4F:5C:A5:AB:AD:F0:E1:14:74:AC:F8:FE:8F
ValidityWed, 19 Jun 2024 09:06:02 GMT - Mon, 21 Jul 2025 09:06:01 GMT

File type
GIF image data, version 89a, 150 x 150
Size
146 kB (146156 bytes)
Hash
ef71afe9bcec227ed79221a0c43907bd
5f180a3b28b45a2a6d686f78728842357da776a3
0f35c10ae7acec777b843a019a57da8789e1188f29d2c31e5d8bc966e3367c4b

HTTP Headers

GET /img/ibank/O1CN01KKHRFz1Bs31zXLk6w_!!0-1-cib.gif HTTP/1.1
Host: cbu01.alicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 146156
date: Tue, 04 Feb 2025 05:06:38 GMT
last-modified: Tue, 04 Feb 2025 05:06:14 GMT
picasso-ret-code: SUCCESS
picasso-cache-info: MISS
request-time: 0.009
traceid: 2ff632a117386455983194532e
x-powered-by: Picasso
picasso-image-type: normal
picasso-fmt: gif2
cache-control: max-age=31536000
via: ens-cache7.l2de3[0,0,200-0,H], ens-cache15.l2de3[1,0], ens-cache5.es5[0,0,200-0,H], ens-cache10.es5[1,0]
access-control-allow-origin: *
age: 1656914
ali-swift-global-savetime: 1738645598
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Tue, 04 Feb 2025 05:06:45 GMT
x-swift-cachetime: 31535993
timing-allow-origin: *
eagleid: a3b5319e17403025120155394e
X-Firefox-Spdy: h2

p.kamept.com/52a5ed370bb9cd745a52c02894dc97cc-Full.webp

104.21.51.166

302 Found

745 B

URL GET HTTP/2
p.kamept.com/52a5ed370bb9cd745a52c02894dc97cc-Full.webp
IP
104.21.51.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectkamept.com
Fingerprint0F:83:46:F5:37:0E:7F:5A:AE:00:B5:0F:0C:C4:3F:42:38:5A:AE:23
ValiditySun, 02 Feb 2025 14:19:10 GMT - Sat, 03 May 2025 14:19:09 GMT

File type
data
Size
745 B (745 bytes)
Hash
ef4148f6d73bb4ad170ef139e0de1c21
53e9dea1560a866834f06196c6fac57680567379
35799cab881055bc5fd590d3f36a74f45a91666935e27719eb00b2c1cafce356

HTTP Headers

GET /52a5ed370bb9cd745a52c02894dc97cc-Full.webp HTTP/1.1
Host: p.kamept.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sun, 23 Feb 2025 09:21:50 GMT
content-type: text/html; charset=UTF-8
location: https://cdn.gilcdn.com/ContentMediaGenericFiles/52a5ed370bb9cd745a52c02894dc97cc-Full.webp?Expires=1740308026&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzQwMzA4MDI2fX19XX0_&Signature=A0Am9AIE-j7xKB4G2F8dniuv5b8UpGm-tlJmb2vNJiQiKnP32c5T-PU5JtcDzocQSd9MYmQNTVJa0kK3QvbHxsAZT-ulLV8uxNOsqRHT4hlFeZQioDtDMW9vd4ToDoF-VPNg1RoprDiW4OBo1kKR0ENonk%7EIXXK-LDh4F-y5NAfXBFJ3HwGSj2ebI0ox3noc8PMUckfNsIKvU-8vra4v02PiKZykiJCfa4T4b1064M18KIGv1kJ2GOzi4OCs6mGLVwc%7E3ygB-ZZoEV0gKZ4srkWYvlhvhVLvDb-PNxkaqRqv1Bhu19xoB4pACqFxc6RHF6muzkAHYIjruwJCAu3XcQ__&Key-Pair-Id=K1FFKFZRWAZSB
cache-control: max-age=14400
cf-cache-status: HIT
age: 441
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xcKNspBNDqQkj%2BA53EB88l9OSMw%2BoG7AkQC%2FJyNxeODPAqokZ9lHK1rFUeG7Ae8ZrqD4Vci%2B2JRE7dblxvPy4KKlK4ACrKpgqM0jkANakflD1YoWu7OdN7G%2BxRWQVis%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 916625e47f3ab50f-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=456&min_rtt=409&rtt_var=135&sent=5&recv=10&lost=0&retrans=0&sent_bytes=2845&recv_bytes=1177&delivery_rate=4441717&cwnd=253&unsent_bytes=0&cid=354bb6fc9a62be85&ts=182&x=0"
X-Firefox-Spdy: h2

455img.315qxf.com/images/3415bb26-e186-X150x150

40.81.31.119

301 Moved Permanently

0 B

URL GET HTTP/2
455img.315qxf.com/images/3415bb26-e186-X150x150
IP
40.81.31.119:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerZeroSSL
Subject455img.315qxf.com
Fingerprint2D:37:A5:6F:A3:29:DC:A6:F3:2F:58:42:00:50:47:C4:0E:D5:26:36
ValiditySat, 08 Feb 2025 00:00:00 GMT - Fri, 09 May 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /images/3415bb26-e186-X150x150 HTTP/1.1
Host: 455img.315qxf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-type: text/html; charset=UTF-8
date: Sun, 23 Feb 2025 09:21:52 GMT
location: https://img.alicdn.com/imgextra/i1/2218176644353/O1CN01tGkxlh1i1j6cJSmKJ_!!2218176644353.gif
server: nginx
x-cache: BYPASS, Status: 301
content-length: 0
X-Firefox-Spdy: h2

cdn.gilcdn.com/ContentMediaGenericFiles/52a5ed370bb9cd745a52c02894dc97cc-Full.webp?Expires=1740308026&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzQwMzA4MDI2fX19XX0_&Signature=A0Am9AIE-j7xKB4G2F8dniuv5b8UpGm-tlJmb2vNJiQiKnP32c5T-PU5JtcDzocQSd9MYmQNTVJa0kK3QvbHxsAZT-ulLV8uxNOsqRHT4hlFeZQioDtDMW9vd4ToDoF-VPNg1RoprDiW4OBo1kKR0ENonk%7EIXXK-LDh4F-y5NAfXBFJ3HwGSj2ebI0ox3noc8PMUckfNsIKvU-8vra4v02PiKZykiJCfa4T4b1064M18KIGv1kJ2GOzi4OCs6mGLVwc%7E3ygB-ZZoEV0gKZ4srkWYvlhvhVLvDb-PNxkaqRqv1Bhu19xoB4pACqFxc6RHF6muzkAHYIjruwJCAu3XcQ__&Key-Pair-Id=K1FFKFZRWAZSB

54.240.174.61

200 OK

31 kB

URL GET HTTP/2
cdn.gilcdn.com/ContentMediaGenericFiles/52a5ed370bb9cd745a52c02894dc97cc-Full.webp?Expires=1740308026&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzQwMzA4MDI2fX19XX0_&Signature=A0Am9AIE-j7xKB4G2F8dniuv5b8UpGm-tlJmb2vNJiQiKnP32c5T-PU5JtcDzocQSd9MYmQNTVJa0kK3QvbHxsAZT-ulLV8uxNOsqRHT4hlFeZQioDtDMW9vd4ToDoF-VPNg1RoprDiW4OBo1kKR0ENonk%7EIXXK-LDh4F-y5NAfXBFJ3HwGSj2ebI0ox3noc8PMUckfNsIKvU-8vra4v02PiKZykiJCfa4T4b1064M18KIGv1kJ2GOzi4OCs6mGLVwc%7E3ygB-ZZoEV0gKZ4srkWYvlhvhVLvDb-PNxkaqRqv1Bhu19xoB4pACqFxc6RHF6muzkAHYIjruwJCAu3XcQ__&Key-Pair-Id=K1FFKFZRWAZSB
IP
54.240.174.61:443
ASN
#16509 AMAZON-02

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerAmazon
Subject*.gilcdn.com
Fingerprint41:83:27:1E:9E:97:88:B9:D6:16:61:A4:F1:37:F9:FF:44:0F:3B:40
ValidityWed, 13 Nov 2024 00:00:00 GMT - Sat, 13 Dec 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
31 kB (30842 bytes)
Hash
d1eea5f678c8fb7fb7ac6033abb05d8b
6edd7c78f281cc63f1ffaad5e342b544956518ae
809d7ba975d0d84d8def1c4c75dc7b6a030f1f9fb2b91c8ca1eaeb25d735b178

HTTP Headers

GET /ContentMediaGenericFiles/52a5ed370bb9cd745a52c02894dc97cc-Full.webp?Expires=1740308026&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzQwMzA4MDI2fX19XX0_&Signature=A0Am9AIE-j7xKB4G2F8dniuv5b8UpGm-tlJmb2vNJiQiKnP32c5T-PU5JtcDzocQSd9MYmQNTVJa0kK3QvbHxsAZT-ulLV8uxNOsqRHT4hlFeZQioDtDMW9vd4ToDoF-VPNg1RoprDiW4OBo1kKR0ENonk%7EIXXK-LDh4F-y5NAfXBFJ3HwGSj2ebI0ox3noc8PMUckfNsIKvU-8vra4v02PiKZykiJCfa4T4b1064M18KIGv1kJ2GOzi4OCs6mGLVwc%7E3ygB-ZZoEV0gKZ4srkWYvlhvhVLvDb-PNxkaqRqv1Bhu19xoB4pACqFxc6RHF6muzkAHYIjruwJCAu3XcQ__&Key-Pair-Id=K1FFKFZRWAZSB HTTP/1.1
Host: cdn.gilcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 30842
date: Sat, 01 Feb 2025 19:39:29 GMT
last-modified: Sat, 01 Feb 2025 19:37:29 GMT
etag: "d1eea5f678c8fb7fb7ac6033abb05d8b"
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
x-amz-meta-jsonsecure: 4f51fcde6ae23b62bd18dea05c9caa8fb36188b7b910d90da3a786b28cfbec222930845de847a98e6bdfd2c1d0d91a8ad5ede442a8a5b322ee0ee97cafec29a26fccca3870c91f5cc43a7a89a4070240ecd99e44551e50a5cca4497a08b37c4a046c474e.88e5bf3f2a19f18485842d71c1e31230.919832c6d2a99636aeb6e33ac160b57bf908e1f168af42bb89146fc6b52a5fe7
x-amz-version-id: VYJc4n5zgxicXk1V1W4aaSTKbKvZ6uZC
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: BFUioq8lGqmC7CuUUEz5PkeTZArFUwqyMqzeLntHv42eEM-H0eQeFw==
age: 1863744
vary: Origin
X-Firefox-Spdy: h2

img.jmyqsl.com/2df7e3592284c1446e61f03b0bf0287a.gif

39.174.97.17

302 Found

0 B

URL GET HTTP/2
img.jmyqsl.com/2df7e3592284c1446e61f03b0bf0287a.gif
IP
39.174.97.17:443
ASN
#56041 China Mobile communications corporation

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerUnizeto Technologies S.A.
Subjectwg1.zjqjs.com
Fingerprint62:32:93:E5:23:17:B0:60:2A:F4:95:F7:3B:22:45:D7:7E:4A:C4:BD
ValidityMon, 18 Nov 2024 14:49:34 GMT - Thu, 18 Dec 2025 14:49:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /2df7e3592284c1446e61f03b0bf0287a.gif HTTP/1.1
Host: img.jmyqsl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: NgxFence
date: Sun, 23 Feb 2025 09:21:52 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://87img.ezrent.hk/2df7e3592284c1446e61f03b0bf0287a.gif
strict-transport-security: max-age=31536000; includeSubdomains; preload
X-Firefox-Spdy: h2

g.gtimg.cn/music/photo_new/T053XD01003c3acJ4YyAHH.gif

203.205.137.227

200 OK

22 kB

URL GET HTTP/2
g.gtimg.cn/music/photo_new/T053XD01003c3acJ4YyAHH.gif
IP
203.205.137.227:443
ASN
#132203 Tencent Building, Kejizhongyi Avenue

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.gtimg.cn
Fingerprint85:06:BD:FD:B9:48:F6:84:32:16:4E:CB:6C:00:98:9A:28:EC:87:30
ValidityMon, 04 Nov 2024 00:00:00 GMT - Mon, 01 Dec 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
22 kB (21648 bytes)
Hash
a4d3c12f5f49a096aec1dfa8c844aae8
d6a48337cc3d9b1379d620e489b84149800b501a
d1b5f84a6dbaad755ff48f6fb856fcfba07556066bf4e7f7383dec6cebeda1c5

HTTP Headers

GET /music/photo_new/T053XD01003c3acJ4YyAHH.gif HTTP/1.1
Host: g.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Feb 2025 16:05:24 GMT
server: NWS_X2_MID
date: Sun, 23 Feb 2025 09:10:34 GMT
expires: Sun, 23 Feb 2025 09:20:34 GMT
content-type: image/webp
x-verify-code: ba11076487b2dfc72918a48cebede81e
x-daa-tunnel: hop_count=1
cache-control: max-age=600
age: 77
content-length: 21648
accept-ranges: bytes
x-nws-log-uuid: 11717347374935262749
x-cache-lookup: Cache Hit
vary: Accept
X-Firefox-Spdy: h2

g.gtimg.cn/music/photo_new/T053XD010031JGbT2ru3FQ.gif

203.205.137.227

200 OK

17 kB

URL GET HTTP/2
g.gtimg.cn/music/photo_new/T053XD010031JGbT2ru3FQ.gif
IP
203.205.137.227:443
ASN
#132203 Tencent Building, Kejizhongyi Avenue

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.gtimg.cn
Fingerprint85:06:BD:FD:B9:48:F6:84:32:16:4E:CB:6C:00:98:9A:28:EC:87:30
ValidityMon, 04 Nov 2024 00:00:00 GMT - Mon, 01 Dec 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
17 kB (16636 bytes)
Hash
723e88bf0f52b98726cb3cb9e288adb3
bc11ffb5beda98e2c7ece5382b6dadf30998b242
b58b4411387f94486a24dd2d7fc75fa6df3b694a418ed70d5889f128076a872e

HTTP Headers

GET /music/photo_new/T053XD010031JGbT2ru3FQ.gif HTTP/1.1
Host: g.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Feb 2025 17:09:41 GMT
server: NWS_X2_MID
date: Sun, 23 Feb 2025 09:18:00 GMT
expires: Sun, 23 Feb 2025 09:28:00 GMT
content-type: image/webp
x-verify-code: 8a4c353a8511a076ff185a64e7cbb2d2
x-daa-tunnel: hop_count=1
cache-control: max-age=600
age: 232
content-length: 16636
accept-ranges: bytes
x-nws-log-uuid: 3457684315738181158
x-cache-lookup: Cache Hit
vary: Accept
X-Firefox-Spdy: h2

hlb-eaxfvgbnvw0qzp0dt6bo.cn-hongkong.hlb.sgmor.club/hlrzn771zjtll8s797je47h70dw6lfiu.gif

45.207.231.250

200 OK

164 kB

URL GET
hlb-eaxfvgbnvw0qzp0dt6bo.cn-hongkong.hlb.sgmor.club/hlrzn771zjtll8s797je47h70dw6lfiu.gif
IP
45.207.231.250:0
ASN
#54801 ZILLION-NETWORK

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthlb-eaxfvgbnvw0qzp0dt6bo.cn-hongkong.hlb.sgmor.club
FingerprintB6:60:03:EC:A4:BC:19:C4:49:65:F2:B1:F0:3C:30:B0:0F:01:2F:59
ValidityTue, 11 Feb 2025 14:37:10 GMT - Mon, 12 May 2025 14:37:09 GMT

File type
GIF image data, version 89a, 200 x 200
Size
164 kB (164356 bytes)
Hash
6c38ff550cdb70859df00e739be140b3
6440ceb38ac79371f0f54f387b872fdaea10c202
0340f22d433f53f52647c0f4aacc974f4f5876d865a6aae578af7a2f888c6bca

HTTP Headers

GET /hlrzn771zjtll8s797je47h70dw6lfiu.gif HTTP/1.1
Host: hlb-eaxfvgbnvw0qzp0dt6bo.cn-hongkong.hlb.sgmor.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:52 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2025 07:53:58 GMT
Vary: Accept-Encoding
ETag: W/"677a3a96-326b8"
Expires: Mon, 03 Mar 2025 10:14:03 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
Server: cdnwaf
X-Cache-Status: HIT

g.gtimg.cn/music/photo_new/T053XD01001gGRqk13M9lf.gif

203.205.137.227

200 OK

15 kB

URL GET HTTP/2
g.gtimg.cn/music/photo_new/T053XD01001gGRqk13M9lf.gif
IP
203.205.137.227:443
ASN
#132203 Tencent Building, Kejizhongyi Avenue

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.gtimg.cn
Fingerprint85:06:BD:FD:B9:48:F6:84:32:16:4E:CB:6C:00:98:9A:28:EC:87:30
ValidityMon, 04 Nov 2024 00:00:00 GMT - Mon, 01 Dec 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
15 kB (15448 bytes)
Hash
325d5b5b8131d01a7478c2461adce54e
873f39c1636c24f6b6b10f0fdb2c66e81e658916
6ce56d5b879b7dca8d5d749f0d6f26c566d4d2fa41c0d36ec78be08fa47e9374

HTTP Headers

GET /music/photo_new/T053XD01001gGRqk13M9lf.gif HTTP/1.1
Host: g.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Feb 2025 16:27:18 GMT
server: NWS_X2_MID
date: Sun, 23 Feb 2025 09:12:30 GMT
expires: Sun, 23 Feb 2025 09:22:30 GMT
content-type: image/webp
x-verify-code: 09d271f5f4e2cd9fb0590469a93e135f
x-daa-tunnel: hop_count=1
cache-control: max-age=600
age: 561
content-length: 15448
accept-ranges: bytes
x-nws-log-uuid: 8633208475097701101
x-cache-lookup: Cache Hit
vary: Accept
X-Firefox-Spdy: h2

images.835images29.com:6699/images/ky150x150.gif

38.47.118.214

200 OK

93 kB

URL GET HTTP/2
images.835images29.com:6699/images/ky150x150.gif
IP
38.47.118.214:6699
ASN
#979 NETLAB-SDN

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectimages.835images29.com
FingerprintAE:13:C6:5D:6E:51:67:76:4A:95:42:2F:40:37:E5:4A:73:6F:A7:10
ValiditySat, 01 Feb 2025 11:29:24 GMT - Fri, 02 May 2025 11:29:23 GMT

File type
GIF image data, version 89a, 150 x 150
Size
93 kB (93164 bytes)
Hash
824006c0843099e4480fce3319cc2922
217d1bd43ec98f4d68566669b1449dcb1aa77888
f4f0768b46518af663af9451c6edd676b921aa67dfb60902afd69cb001a574e1

HTTP Headers

GET /images/ky150x150.gif HTTP/1.1
Host: images.835images29.com:6699
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
date: Sun, 23 Feb 2025 04:00:45 GMT
etag: "6770fe86-16bec"
last-modified: Sun, 23 Feb 2025 04:00:46 GMT
server: nginx
x-cache: HIT, policy, disk
content-length: 93164
X-Firefox-Spdy: h2

images.shencut.com/2025-02-21/67b7761232675.gif

114.80.179.239

200 OK

35 kB

URL GET HTTP/2
images.shencut.com/2025-02-21/67b7761232675.gif
IP
114.80.179.239:443
ASN
#4812 China Telecom Group

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.shencut.com
Fingerprint80:43:B1:30:13:89:6D:FC:D9:16:4E:D6:B8:89:04:2D:32:8B:8D:C5
ValidityFri, 07 Jun 2024 00:00:00 GMT - Sat, 28 Jun 2025 23:59:59 GMT

File type
GIF image data, version 89a, 150 x 150
Size
35 kB (35418 bytes)
Hash
f2906ca4e25c5056e69498b19e568311
fe606f43af6538e48205ba8e082e0435e5401529
1d1f34472613a6cc6964367be39a82298c806ab5d99b158d107642fe06f57071

HTTP Headers

GET /2025-02-21/67b7761232675.gif HTTP/1.1
Host: images.shencut.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 35418
date: Thu, 20 Feb 2025 18:36:05 GMT
last-modified: Thu, 20 Feb 2025 18:36:02 GMT
etag: "67b77612-8a5a"
expires: Sat, 22 Mar 2025 18:36:05 GMT
cache-control: max-age=2592000
accept-ranges: bytes
via: cache26.l2cn7533[0,0,200-0,H], cache35.l2cn7533[1,0], cache5.cn3259[0,0,200-0,H], cache5.cn3259[1,0]
age: 225942
ali-swift-global-savetime: 1740076565
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Thu, 20 Feb 2025 18:38:44 GMT
x-swift-cachetime: 2591841
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-headers: *
access-control-allow-origin: *, *
timing-allow-origin: *
eagleid: 7250b39917403025075775875e
X-Firefox-Spdy: h2

img.alicdn.com/imgextra/i1/2218176644353/O1CN01tGkxlh1i1j6cJSmKJ_!!2218176644353.gif

47.246.44.249

200 OK

27 kB

URL GET HTTP/2
img.alicdn.com/imgextra/i1/2218176644353/O1CN01tGkxlh1i1j6cJSmKJ_!!2218176644353.gif
IP
47.246.44.249:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.tbcdn.cn
FingerprintC8:28:74:DB:88:66:17:4F:5C:A5:AB:AD:F0:E1:14:74:AC:F8:FE:8F
ValidityWed, 19 Jun 2024 09:06:02 GMT - Mon, 21 Jul 2025 09:06:01 GMT

File type
GIF image data, version 89a, 100 x 100
Size
27 kB (27010 bytes)
Hash
36849cae8e4dc7babbbb921a302ea2e2
de9893e96b4ed6f3f2a9c29f4ca3d0b7c45f0332
87e390c3afcdc795a121eb9c6e01c4e5d9c17a4389060489c6b95c13e576b43b

HTTP Headers

GET /imgextra/i1/2218176644353/O1CN01tGkxlh1i1j6cJSmKJ_!!2218176644353.gif HTTP/1.1
Host: img.alicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 27010
date: Wed, 05 Feb 2025 13:17:50 GMT
last-modified: Wed, 05 Feb 2025 12:41:46 GMT
picasso-ret-code: SUCCESS
picasso-cache-info: MISS
request-time: 0.008
traceid: 2ff62e9b17387614703566138e
x-powered-by: Picasso
picasso-image-type: normal
picasso-fmt: gif2
cache-control: max-age=31536000
via: ens-cache10.l2de3[0,0,200-0,H], ens-cache17.l2de3[1,0], ens-cache4.se2[0,0,200-0,H], ens-cache7.se2[1,0]
access-control-allow-origin: *
age: 1541042
ali-swift-global-savetime: 1738761470
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Tue, 11 Feb 2025 08:30:57 GMT
x-swift-cachetime: 31034813
vary: Accept
s-rt: 1
timing-allow-origin: *
eagleid: 2ff62c9b17403025127425425e
X-Firefox-Spdy: h2

gif.ssjljk.com/388-100x100.gif

154.91.91.13

302 Found

0 B

URL GET HTTP/2
gif.ssjljk.com/388-100x100.gif
IP
154.91.91.13:443
ASN
#399077 TERAEXCH

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerUnizeto Technologies S.A.
Subjectgif.ssjljk.com
Fingerprint47:8C:34:BE:FA:C9:29:E6:42:AA:BD:AE:B2:3C:9C:E7:52:55:8B:25
ValidityWed, 16 Oct 2024 13:25:23 GMT - Sat, 15 Nov 2025 13:25:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /388-100x100.gif HTTP/1.1
Host: gif.ssjljk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: NgxFence
date: Sun, 23 Feb 2025 09:21:52 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://img.sxjxdyqfw.com/388-100x100.gif
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
X-Firefox-Spdy: h2

768guangg1.oss-cn-guangzhou.aliyuncs.com/768-100x100.gif

8.134.16.184

200 OK

83 kB

URL GET HTTP/1.1
768guangg1.oss-cn-guangzhou.aliyuncs.com/768-100x100.gif
IP
8.134.16.184:443
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subjectcn-heyuan.oss.aliyuncs.com
Fingerprint6E:93:1A:62:D4:2E:96:AC:EC:54:97:59:E8:FE:53:44:6B:F6:6A:3F
ValidityFri, 07 Feb 2025 02:17:01 GMT - Thu, 04 Sep 2025 00:00:00 GMT

File type
GIF image data, version 89a, 100 x 100
Size
83 kB (82860 bytes)
Hash
7d0f318d2361a61a66975beba0721e00
37ea7d2d2b8bb5004302fe631eed2c2092d0b9d5
0a2819815fb184d0e4a8d9af37792d7cbe66ce7191dadf0e2160d5f6f5e016e4

HTTP Headers

GET /768-100x100.gif HTTP/1.1
Host: 768guangg1.oss-cn-guangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 23 Feb 2025 09:21:52 GMT
Content-Type: image/gif
Content-Length: 82860
Connection: keep-alive
x-oss-request-id: 67BAE8B09C19B431338D83C4
Accept-Ranges: bytes
ETag: "7D0F318D2361A61A66975BEBA0721E00"
Last-Modified: Tue, 10 Dec 2024 04:06:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9204938421609086860
x-oss-storage-class: Standard
Content-MD5: fQ8xjSNhphpml1vroHIeAA==
x-oss-server-time: 1

vnsimg.hfzkgw.com/b9fb3076983380cf2d30af608afa0f94.gif

154.91.91.55

302 Found

0 B

URL GET
vnsimg.hfzkgw.com/b9fb3076983380cf2d30af608afa0f94.gif
IP
154.91.91.55:0
ASN
#399077 TERAEXCH

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerUnizeto Technologies S.A.
Subjectvnsimg.hfzkgw.com
FingerprintCA:0C:77:DA:9F:4B:7B:6E:CD:B4:5A:3F:CC:BC:85:68:0D:F0:F1:F3
ValidityWed, 02 Oct 2024 17:23:41 GMT - Sat, 01 Nov 2025 17:23:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b9fb3076983380cf2d30af608afa0f94.gif HTTP/1.1
Host: vnsimg.hfzkgw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: NgxFence
date: Sun, 23 Feb 2025 09:21:49 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://vns3.ezrent.hk/b9fb3076983380cf2d30af608afa0f94.gif
strict-transport-security: max-age=31536000; includeSubdomains; preload
X-Firefox-Spdy: h2

hlb-8id50tfy2q07ug4dpp.cn-hongkong.hlb.sgmor.club/t6nmu8alqfxsyoxd5qni3um4pvqban5q.gif

142.4.119.243

200 OK

163 kB

URL GET
hlb-8id50tfy2q07ug4dpp.cn-hongkong.hlb.sgmor.club/t6nmu8alqfxsyoxd5qni3um4pvqban5q.gif
IP
142.4.119.243:0
ASN
#54600 PEG-SV

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthlb-8id50tfy2q07ug4dpp.cn-hongkong.hlb.sgmor.club
Fingerprint4A:B2:C8:42:09:3E:75:BE:89:65:3A:EC:1C:E2:E9:CC:31:72:13:B7
ValidityThu, 26 Dec 2024 03:05:18 GMT - Wed, 26 Mar 2025 03:05:17 GMT

File type
GIF image data, version 89a, 150 x 150
Size
163 kB (163376 bytes)
Hash
7b0cc5635f7628d4b3ca61a2398440af
d78be8ccaeb0386bca83a9697192fc3b0baf000d
a2ce9576d84411c49e8be39467efc55b29709ac0b95a1525a9db6392f38f4696

HTTP Headers

GET /t6nmu8alqfxsyoxd5qni3um4pvqban5q.gif HTTP/1.1
Host: hlb-8id50tfy2q07ug4dpp.cn-hongkong.hlb.sgmor.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:52 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 16 Dec 2024 15:25:50 GMT
Vary: Accept-Encoding
ETag: W/"6760467e-37a82"
Expires: Mon, 03 Mar 2025 10:45:04 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
Server: cdnwaf
X-Cache-Status: HIT

images.shencut.com/2025-02-21/67b777d331cb3.gif

114.80.179.239

200 OK

30 kB

URL GET HTTP/2
images.shencut.com/2025-02-21/67b777d331cb3.gif
IP
114.80.179.239:443
ASN
#4812 China Telecom Group

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.shencut.com
Fingerprint80:43:B1:30:13:89:6D:FC:D9:16:4E:D6:B8:89:04:2D:32:8B:8D:C5
ValidityFri, 07 Jun 2024 00:00:00 GMT - Sat, 28 Jun 2025 23:59:59 GMT

File type
GIF image data, version 89a, 150 x 150
Size
30 kB (30474 bytes)
Hash
6542eaa237bd33d06a69483bd2ec85a4
e82718d25069b17957bc7375b7c2159445770d83
266b666e3a61c81f81ea0b4f164bcc87606e7f72ab9819114a4b369a4755c155

HTTP Headers

GET /2025-02-21/67b777d331cb3.gif HTTP/1.1
Host: images.shencut.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 30474
date: Thu, 20 Feb 2025 18:43:34 GMT
last-modified: Thu, 20 Feb 2025 18:43:31 GMT
etag: "67b777d3-770a"
expires: Sat, 22 Mar 2025 18:43:34 GMT
cache-control: max-age=2592000
accept-ranges: bytes
via: cache29.l2cn7533[0,0,200-0,H], cache22.l2cn7533[0,0], cache8.cn3259[0,0,200-0,H], cache5.cn3259[2,0]
age: 225495
ali-swift-global-savetime: 1740077014
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Thu, 20 Feb 2025 18:56:20 GMT
x-swift-cachetime: 2591234
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-headers: *
access-control-allow-origin: *, *
timing-allow-origin: *
eagleid: 7250b39917403025075775877e
X-Firefox-Spdy: h2

g.gtimg.cn/music/photo_new/T053XD01001XJpNq1R23kT.gif

203.205.137.227

200 OK

22 kB

URL GET HTTP/2
g.gtimg.cn/music/photo_new/T053XD01001XJpNq1R23kT.gif
IP
203.205.137.227:443
ASN
#132203 Tencent Building, Kejizhongyi Avenue

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.gtimg.cn
Fingerprint85:06:BD:FD:B9:48:F6:84:32:16:4E:CB:6C:00:98:9A:28:EC:87:30
ValidityMon, 04 Nov 2024 00:00:00 GMT - Mon, 01 Dec 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
22 kB (21784 bytes)
Hash
aeee3eb25c51b8a8b9d2396fab1dbd6a
f3ee85b952d0d27b923ab5e48c2c1b147e3aa68f
ac4f9ff535055c10c7a3f663b9ded6b4b4d124104c70064cd26b01552f40faad

HTTP Headers

GET /music/photo_new/T053XD01001XJpNq1R23kT.gif HTTP/1.1
Host: g.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 16 Dec 2024 23:26:07 GMT
server: NWS_X2_MID
date: Sun, 23 Feb 2025 09:08:50 GMT
expires: Sun, 23 Feb 2025 09:18:50 GMT
content-type: image/webp
x-verify-code: 9c7de399391ac76e948acfb28b2af4f3
x-daa-tunnel: hop_count=1
cache-control: max-age=600
age: 182
content-length: 21784
accept-ranges: bytes
x-nws-log-uuid: 2255672168470625184
x-cache-lookup: Cache Hit
vary: Accept
X-Firefox-Spdy: h2

g.gtimg.cn/music/photo_new/T053XD01002MImoE3LftGu.gif

203.205.137.227

200 OK

29 kB

URL GET HTTP/2
g.gtimg.cn/music/photo_new/T053XD01002MImoE3LftGu.gif
IP
203.205.137.227:443
ASN
#132203 Tencent Building, Kejizhongyi Avenue

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.gtimg.cn
Fingerprint85:06:BD:FD:B9:48:F6:84:32:16:4E:CB:6C:00:98:9A:28:EC:87:30
ValidityMon, 04 Nov 2024 00:00:00 GMT - Mon, 01 Dec 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (29294 bytes)
Hash
8449f5fc1ab78b49ec172ee97fcaa539
abb4a3db4a86054025181b2a8372f0eb751362dd
bb8556d07754daaa1751524c4d45fd61e4a477e96fff9aaa4bb0f3fb7db54eb9

HTTP Headers

GET /music/photo_new/T053XD01002MImoE3LftGu.gif HTTP/1.1
Host: g.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sun, 23 Feb 2025 15:56:32 GMT
server: NWS_X2_MID
date: Sun, 23 Feb 2025 09:13:44 GMT
expires: Sun, 23 Feb 2025 09:23:44 GMT
content-type: image/webp
x-verify-code: 59d8bb8caa8db9e1633830f85b37d27e
x-daa-tunnel: hop_count=1
cache-control: max-age=600
age: 487
content-length: 29294
accept-ranges: bytes
x-nws-log-uuid: 1521369554237445393
x-cache-lookup: Cache Hit
vary: Accept
X-Firefox-Spdy: h2

87img.ezrent.hk/2df7e3592284c1446e61f03b0bf0287a.gif

155.102.29.90

200 OK

58 kB

URL GET HTTP/1.1
87img.ezrent.hk/2df7e3592284c1446e61f03b0bf0287a.gif
IP
155.102.29.90:443
ASN
#0

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerUnizeto Technologies S.A.
Subject87img.ezrent.hk
Fingerprint5F:13:A3:BF:BB:9D:EE:B9:13:E2:FE:71:FD:39:47:25:3F:47:EB:AC
ValiditySun, 16 Feb 2025 05:29:47 GMT - Wed, 18 Mar 2026 05:29:46 GMT

File type
GIF image data, version 89a, 200 x 200
Size
58 kB (57617 bytes)
Hash
2704ae5989a0aeaaaa42c12606345feb
245ef003a2e14fe2d384460b480701215fb4014c
994d7cf9c91f2f2d8c56853dd1cda443c1f508a90a88dab3f86e57835046d5a5

HTTP Headers

GET /2df7e3592284c1446e61f03b0bf0287a.gif HTTP/1.1
Host: 87img.ezrent.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/gif
Content-Length: 57617
Connection: keep-alive
Date: Thu, 20 Feb 2025 04:32:03 GMT
Last-Modified: Wed, 12 Feb 2025 07:00:42 GMT
Vary: Accept-Encoding
ETag: "67ac471a-e111"
Expires: Sat, 22 Mar 2025 04:32:03 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Via: ens-cache18.l2de3[0,0,200-0,H], ens-cache7.l2de3[1,0], ens-cache8.nl3[0,0,200-0,H], ens-cache2.nl3[1,0]
Age: 276590
Ali-Swift-Global-Savetime: 1740025923
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2
X-Swift-SaveTime: Thu, 20 Feb 2025 04:37:43 GMT
X-Swift-CacheTime: 2591660
Timing-Allow-Origin: *
EagleId: 2ff6309617403025130174208e

g.gtimg.cn/music/photo_new/T053XD01003Fyzdm3B9dlH.gif

203.205.137.227

200 OK

18 kB

URL GET HTTP/2
g.gtimg.cn/music/photo_new/T053XD01003Fyzdm3B9dlH.gif
IP
203.205.137.227:443
ASN
#132203 Tencent Building, Kejizhongyi Avenue

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.gtimg.cn
Fingerprint85:06:BD:FD:B9:48:F6:84:32:16:4E:CB:6C:00:98:9A:28:EC:87:30
ValidityMon, 04 Nov 2024 00:00:00 GMT - Mon, 01 Dec 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
18 kB (18174 bytes)
Hash
a58c0aecb73560bfa8c4c82db48d6fd8
e1eb925e05d5d76c808ad6891cbd04700daece54
d18a02fec7fb6264e17f042b9f3de124d41019305298426a68d15b3692273693

HTTP Headers

GET /music/photo_new/T053XD01003Fyzdm3B9dlH.gif HTTP/1.1
Host: g.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 16 Dec 2024 17:37:09 GMT
server: NWS_X2_MID
date: Sun, 23 Feb 2025 09:16:11 GMT
expires: Sun, 23 Feb 2025 09:26:11 GMT
content-type: image/webp
x-verify-code: 5c3cbec9ab0d2e0efd8ad885f8f03e0a
x-daa-tunnel: hop_count=1
cache-control: max-age=600
age: 340
content-length: 18174
accept-ranges: bytes
x-nws-log-uuid: 7037793255398868543
x-cache-lookup: Cache Hit
vary: Accept
X-Firefox-Spdy: h2

txdy.2016os.com/150x150-d-1.gif

116.162.127.61

200 OK

58 kB

URL GET HTTP/2
txdy.2016os.com/150x150-d-1.gif
IP
116.162.127.61:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecttxdy.2016os.com
FingerprintE7:5F:81:4A:4E:88:2F:A0:68:C2:F7:26:53:28:C3:30:B7:C8:DB:3B
ValidityWed, 05 Feb 2025 22:32:01 GMT - Tue, 06 May 2025 22:32:00 GMT

File type
GIF image data, version 89a, 150 x 150
Size
58 kB (58278 bytes)
Hash
a92335255c35fe8948d6ca51b54269d0
536d5bc9643cb677af83cd2c9871af00d17f0811
ff742838029a27282f853e0a8401baff41b8738f199a00f4408411358b340c51

HTTP Headers

GET /150x150-d-1.gif HTTP/1.1
Host: txdy.2016os.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 23 Feb 2025 09:21:52 GMT
content-type: image/gif
content-length: 58278
server: openresty
last-modified: Tue, 11 Feb 2025 16:08:55 GMT
vary: Accept-Encoding
etag: "67ab7617-e3a6"
expires: Thu, 13 Mar 2025 17:12:02 GMT
via: CHN-HNchangsha-CUCC13-CACHE41[4],CHN-HNchangsha-CUCC13-CACHE16[0,TCP_HIT,1],CHN-HNchangsha-GLOBAL1-CACHE46[15],CHN-HNchangsha-GLOBAL1-CACHE80[0,TCP_HIT,7]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 2592000
x-ccdn-req-id-46b1: 1a9eda379b657812d4c8af8ef70b76ee
nginx-hit: 1
age: 1008504
cache-control: max-age=2592000
accept-ranges: bytes
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

g.gtimg.cn/music/photo_new/T053XD01000dROcH0piKDe.gif

203.205.137.227

200 OK

33 kB

URL GET HTTP/2
g.gtimg.cn/music/photo_new/T053XD01000dROcH0piKDe.gif
IP
203.205.137.227:443
ASN
#132203 Tencent Building, Kejizhongyi Avenue

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.gtimg.cn
Fingerprint85:06:BD:FD:B9:48:F6:84:32:16:4E:CB:6C:00:98:9A:28:EC:87:30
ValidityMon, 04 Nov 2024 00:00:00 GMT - Mon, 01 Dec 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
33 kB (32990 bytes)
Hash
78e1df1d789c0df69c9939bf4e767546
fb052d21d518318bf76f46904a7c03a3c1c0db42
de5bb233c05636814632cc6c8cf5e0f73e468445b0f1f3351ba22d9690c29077

HTTP Headers

GET /music/photo_new/T053XD01000dROcH0piKDe.gif HTTP/1.1
Host: g.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sun, 23 Feb 2025 17:15:08 GMT
server: NWS_X2_MID
date: Sun, 23 Feb 2025 09:19:13 GMT
expires: Sun, 23 Feb 2025 09:29:13 GMT
content-type: image/webp
x-verify-code: 6b6d4460803b3caaad0a3607adfd4b57
x-daa-tunnel: hop_count=1
cache-control: max-age=600
age: 158
content-length: 32990
accept-ranges: bytes
x-nws-log-uuid: 2997456167520495243
x-cache-lookup: Cache Hit
vary: Accept
X-Firefox-Spdy: h2

sezhang.s3.ap-southeast-1.amazonaws.com/150t.gif

52.219.124.155

200 OK

125 kB

URL GET HTTP/1.1
sezhang.s3.ap-southeast-1.amazonaws.com/150t.gif
IP
52.219.124.155:443
ASN
#16509 AMAZON-02

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerAmazon
Subject*.s3-ap-southeast-1.amazonaws.com
Fingerprint5C:3B:95:BC:BB:51:9B:92:DA:5C:F9:FD:25:DC:9F:C2:CD:B7:EB:D4
ValidityMon, 06 Jan 2025 00:00:00 GMT - Tue, 30 Dec 2025 23:59:59 GMT

File type
GIF image data, version 89a, 150 x 150
Size
125 kB (125041 bytes)
Hash
d6b9cad1f6f33072c275292cacf9cef1
d7a9743498072965542e393e28373ea643a029b3
4794d6ff0964bac9ceb197b0c9cd17f9efd8427e270598bca36206644e8b35de

HTTP Headers

GET /150t.gif HTTP/1.1
Host: sezhang.s3.ap-southeast-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: iaIW8UbrHRbGS6iBSgZUVwSXoQgGv8yHRPOkQUFGKrvbidiMBNf1/31KrfByGoGLYbI0Eff0+Yk=
x-amz-request-id: YWNY1TC8D75P6P34
Date: Sun, 23 Feb 2025 09:21:53 GMT
Last-Modified: Sat, 23 Nov 2024 12:36:14 GMT
ETag: "d6b9cad1f6f33072c275292cacf9cef1"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Content-Length: 125041
Server: AmazonS3

hlb-hanandha3hiyu8x4d7.cn-hongkong.hlb.sgmor.club/1v2zxeo6qxdeo4es1hqimu7wobcd3f1l7.gif

121.127.231.170

200 OK

148 kB

URL GET
hlb-hanandha3hiyu8x4d7.cn-hongkong.hlb.sgmor.club/1v2zxeo6qxdeo4es1hqimu7wobcd3f1l7.gif
IP
121.127.231.170:0
ASN
#152194 CTG Server Limited

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthlb-hanandha3hiyu8x4d7.cn-hongkong.hlb.sgmor.club
FingerprintD7:DA:43:F4:9D:5A:83:0D:FD:15:42:96:FF:54:F1:0A:DA:8E:62:D0
ValidityTue, 07 Jan 2025 15:42:52 GMT - Mon, 07 Apr 2025 15:42:51 GMT

File type
GIF image data, version 89a, 220 x 220
Size
148 kB (148441 bytes)
Hash
46b5fe91805a55936749085b1d34a19e
6237decdc519d4c10bd397ed39e99124ff71a8a7
ec2a75f276259eb153738b148e48f278e7d9b1dbf1534ca20a02c604efca45f6

HTTP Headers

GET /1v2zxeo6qxdeo4es1hqimu7wobcd3f1l7.gif HTTP/1.1
Host: hlb-hanandha3hiyu8x4d7.cn-hongkong.hlb.sgmor.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:52 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 01 Feb 2025 14:09:46 GMT
Vary: Accept-Encoding
ETag: W/"679e2b2a-24ce7"
Expires: Mon, 10 Mar 2025 17:03:38 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
Server: cdnwaf
X-Cache-Status: HIT

hlb-315j5user25qep0odr.cn-hongkong.hlb.sgmor.club/lztbnzhwqw4isifizz9h1w9m1entgdgv.gif

142.0.128.57

200 OK

300 kB

URL GET
hlb-315j5user25qep0odr.cn-hongkong.hlb.sgmor.club/lztbnzhwqw4isifizz9h1w9m1entgdgv.gif
IP
142.0.128.57:0
ASN
#54600 PEG-SV

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthlb-315j5user25qep0odr.cn-hongkong.hlb.sgmor.club
FingerprintEF:07:B5:BF:1F:BA:03:E3:CD:BD:20:74:A0:83:37:04:F0:B7:7A:54
ValidityMon, 20 Jan 2025 00:45:28 GMT - Sun, 20 Apr 2025 00:45:27 GMT

File type
GIF image data, version 89a, 150 x 150
Size
300 kB (300395 bytes)
Hash
fc01cd079726dfb11dca107bf4956fc2
e1894805b2d928fab69747a0641dec21deb2978a
ae47c51fe01255c5258cce46e80a0e8565c2be0c5f9f16944d01c8787263e1f1

HTTP Headers

GET /lztbnzhwqw4isifizz9h1w9m1entgdgv.gif HTTP/1.1
Host: hlb-315j5user25qep0odr.cn-hongkong.hlb.sgmor.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:52 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Jan 2025 11:31:20 GMT
Vary: Accept-Encoding
ETag: W/"67937a08-4a431"
Expires: Mon, 03 Mar 2025 08:38:49 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
Server: cdnwaf
X-Cache-Status: HIT

gif.cznnvq.com/xpj/xpj555x150x150.gif

34.81.75.41

200 OK

352 kB

URL GET HTTP/2
gif.cznnvq.com/xpj/xpj555x150x150.gif
IP
34.81.75.41:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerZeroSSL
Subjectgif.cznnvq.com
FingerprintAF:89:44:8F:22:4D:BF:C1:9F:E4:D6:53:4C:68:75:AC:79:D5:A4:01
ValidityFri, 14 Feb 2025 00:00:00 GMT - Thu, 15 May 2025 23:59:59 GMT

File type
GIF image data, version 89a, 150 x 150
Size
352 kB (351913 bytes)
Hash
3bee45305d497d484d76300b0aa356b2
ea5fba85d6d822651e98825add24bd26770d6007
429f207a22961f9fe90d08478613add4d044217ff1c44fee018ec70472f68e1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /xpj/xpj555x150x150.gif HTTP/1.1
Host: gif.cznnvq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.25.3
date: Sun, 23 Feb 2025 09:21:52 GMT
content-type: image/gif
content-length: 351913
last-modified: Tue, 18 Feb 2025 12:12:36 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: "67b47934-55ea9"
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 741D:2A38B:55D05:5DC99:67B5D60E
age: 7
x-served-by: cache-qpg120092-QPG
x-cache-hits: 1
x-timer: S1740301227.217940,VS0,VE6
vary: Accept-Encoding
x-fastly-request-id: bb6f2314cebc930375ef9366fe4f501c18d7d594
x-country: NO
x-cache: HIT, HIT@journey-x637
accept-ranges: bytes
X-Firefox-Spdy: h2

hlb-hanandha3hiyu8x4d7.cn-hongkong.hlb.sgmor.club/rh5mrzoflupcfhw37ry7i6dwwnnrlv86.gif

121.127.231.170

200 OK

131 kB

URL GET
hlb-hanandha3hiyu8x4d7.cn-hongkong.hlb.sgmor.club/rh5mrzoflupcfhw37ry7i6dwwnnrlv86.gif
IP
121.127.231.170:0
ASN
#152194 CTG Server Limited

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjecthlb-hanandha3hiyu8x4d7.cn-hongkong.hlb.sgmor.club
FingerprintD7:DA:43:F4:9D:5A:83:0D:FD:15:42:96:FF:54:F1:0A:DA:8E:62:D0
ValidityTue, 07 Jan 2025 15:42:52 GMT - Mon, 07 Apr 2025 15:42:51 GMT

File type
GIF image data, version 89a, 150 x 150
Size
131 kB (130989 bytes)
Hash
a706f05055a1b48382b5f5cb34b3340a
9ea154cac6b6eaefe20b675cad5b3b582a144ea2
c5b658c2710020cce4fc6d3daa11cfd69668c07e32a228c56cb45f2fb3dbb513

HTTP Headers

GET /rh5mrzoflupcfhw37ry7i6dwwnnrlv86.gif HTTP/1.1
Host: hlb-hanandha3hiyu8x4d7.cn-hongkong.hlb.sgmor.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:52 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 01 Feb 2025 14:09:46 GMT
Vary: Accept-Encoding
ETag: W/"679e2b2a-20c9d"
Expires: Sat, 08 Mar 2025 10:12:52 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
Server: cdnwaf
X-Cache-Status: HIT

g.gtimg.cn/music/photo_new/T053XD01000H0Pqy0LIZOn.gif

203.205.137.227

200 OK

104 kB

URL GET HTTP/2
g.gtimg.cn/music/photo_new/T053XD01000H0Pqy0LIZOn.gif
IP
203.205.137.227:443
ASN
#132203 Tencent Building, Kejizhongyi Avenue

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.gtimg.cn
Fingerprint85:06:BD:FD:B9:48:F6:84:32:16:4E:CB:6C:00:98:9A:28:EC:87:30
ValidityMon, 04 Nov 2024 00:00:00 GMT - Mon, 01 Dec 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
104 kB (104300 bytes)
Hash
92f249bcbdeee113ce0a2f8d2f5ba0e1
0aa0d1379af06629822b879fa008da089d377e41
f09f87651817ab87ca63fbb6b3232015abe1fd231acfd6f82f25ca91c01fec8a

HTTP Headers

GET /music/photo_new/T053XD01000H0Pqy0LIZOn.gif HTTP/1.1
Host: g.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sun, 23 Feb 2025 16:00:31 GMT
server: NWS_X2_MID
date: Sun, 23 Feb 2025 09:21:41 GMT
expires: Sun, 23 Feb 2025 09:31:41 GMT
content-type: image/webp
x-verify-code: 89c65b4f100ae7567b5952dbd1349d75
x-daa-tunnel: hop_count=1
cache-control: max-age=600
age: 10
content-length: 104300
accept-ranges: bytes
x-nws-log-uuid: 2448416187350609418
x-cache-lookup: Cache Hit
vary: Accept
X-Firefox-Spdy: h2

newamjs.cqpwz.com/3391/1372/1372-150x150-1.gif

218.12.76.163

200 OK

129 kB

URL GET HTTP/1.1
newamjs.cqpwz.com/3391/1372/1372-150x150-1.gif
IP
218.12.76.163:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerTrustAsia Technologies, Inc.
Subjectnewamjs.cqpwz.com
Fingerprint41:3F:9A:5C:21:83:8E:5B:EE:CD:C7:F3:5D:42:AE:70:D2:2A:30:D2
ValidityTue, 21 Jan 2025 00:00:00 GMT - Sun, 20 Apr 2025 23:59:59 GMT

File type
GIF image data, version 89a, 150 x 150
Size
129 kB (129067 bytes)
Hash
b0fef48add9003016e0c30956fb59d63
47c0672bd0f8b98039d7ec542ad7ce7c1baf6f2f
ae2245abf0b1cd26c14f2a77d99aef3bfa8ce34acc59ddf09e873713fdbb11fe

HTTP Headers

GET /3391/1372/1372-150x150-1.gif HTTP/1.1
Host: newamjs.cqpwz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 23 Feb 2025 09:21:52 GMT
Content-Type: image/gif
Content-Length: 129067
Connection: keep-alive
Server: openresty
Last-Modified: Sun, 19 Jan 2025 10:36:39 GMT
Vary: Accept-Encoding
ETag: "678cd5b7-1f82b"
Expires: Wed, 19 Mar 2025 10:56:53 GMT
X-CCDN-Expires: 2586445
via: CHN-HEshijiazhuang-AREACUCC1-CACHE47[2],CHN-HEshijiazhuang-AREACUCC1-CACHE23[0,TCP_HIT,0],CHN-TJ-GLOBAL1-CACHE36[10],CHN-TJ-GLOBAL1-CACHE93[0,TCP_HIT,0]
x-hcs-proxy-type: 1
X-CCDN-CacheTTL: 2592000
X-CCDN-REQ-ID-46B1: fd20e51490e470390fdf91ce31696b2e
nginx-hit: 1
Age: 512484
Cache-Control: max-age=2592000
Accept-Ranges: bytes

img.meituan.net/csc/41e83f1b3a5b0337e167faa204cb322e467581.gif

43.152.140.107

200 OK

468 kB

URL GET HTTP/2
img.meituan.net/csc/41e83f1b3a5b0337e167faa204cb322e467581.gif
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
GIF image data, version 89a, 640 x 360
Size
468 kB (467581 bytes)
Hash
41e83f1b3a5b0337e167faa204cb322e
733fd9dd28c1cb6a8b50e3216b5498b804904d9d
7ef7921aec48acece5dbe40e9135c2c9125d22e4f042aae163655938b188c341

HTTP Headers

GET /csc/41e83f1b3a5b0337e167faa204cb322e467581.gif HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 14 Jan 2025 18:42:57 GMT
server: openresty
date: Fri, 15 Nov 2024 19:17:24 GMT
content-type: image/gif
access-control-allow-private-network: true
m-traceid: skzd9jfxmt0ie5sj5x2x
age: 2067
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 467581
accept-ranges: bytes
x-nws-log-uuid: 7475614852716436796
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

vac.gtimg.cn/music/photo_new/T053XD01001QGatG4UOLJf.gif

203.205.136.86

200 OK

78 kB

URL GET HTTP/2
vac.gtimg.cn/music/photo_new/T053XD01001QGatG4UOLJf.gif
IP
203.205.136.86:443
ASN
#132203 Tencent Building, Kejizhongyi Avenue

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subjectv.qq.com
Fingerprint93:BE:16:87:82:0B:10:D0:A7:9C:50:6E:EC:99:A7:FC:7E:16:35:81
ValiditySun, 03 Nov 2024 00:00:00 GMT - Wed, 03 Dec 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
78 kB (78532 bytes)
Hash
378651e8b92f1783cfa3d7ec9dbb1230
c161461ed194a985fcce03ea4ad6925bf3e98bfe
a4b79e0a43f4cbc11ce11967590255798bcb214d5390a9d59260f5b28241d8b2

HTTP Headers

GET /music/photo_new/T053XD01001QGatG4UOLJf.gif HTTP/1.1
Host: vac.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 23 Feb 2025 09:21:53 GMT
content-type: image/webp
content-length: 78532
server: NWS_CDN_P1
cache-control: max-age=259200
expires: Wed, 26 Feb 2025 09:21:52 GMT
last-modified: Thu, 26 Sep 2024 22:03:12 GMT
x-nws-log-uuid: ebbdc9f6-2bca-4522-b63a-1b8afe8f2d8e
x-cache-lookup: Hit From Disktank3
X-Firefox-Spdy: h2

img.sxjxdyqfw.com/388-100x100.gif

123.6.18.17

200 OK

79 kB

URL GET HTTP/2
img.sxjxdyqfw.com/388-100x100.gif
IP
123.6.18.17:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerUnizeto Technologies S.A.
Subjectimg.sxjxdyqfw.com
FingerprintC5:A4:AB:90:4B:00:9F:7B:8A:AD:A2:46:B1:AC:51:84:B8:D3:CB:B3
ValidityMon, 06 Jan 2025 12:14:45 GMT - Thu, 05 Feb 2026 12:14:44 GMT

File type
GIF image data, version 89a, 100 x 100
Size
79 kB (79123 bytes)
Hash
3c536bc08df05f0fab6cfdbb40b3b102
2bb0a59baa44eea0bcc47777e791f1bd203bf79b
b6388d1fd43cb0d36dc90e007ba0ff417eb4f6aa682b8777de75aa25d286051a

HTTP Headers

GET /388-100x100.gif HTTP/1.1
Host: img.sxjxdyqfw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: NgxFence
date: Sun, 23 Feb 2025 09:21:53 GMT
content-type: image/gif
content-length: 79123
x-oss-request-id: 678F9A9581C2E1C47A07F965
etag: "3C536BC08DF05F0FAB6CFDBB40B3B102"
last-modified: Fri, 20 Dec 2024 13:40:18 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11913595180582554054
x-oss-storage-class: Standard
x-oss-ec: 0048-00000111
content-disposition: attachment
x-oss-force-download: true
content-md5: PFNrwI3wXw+rbP27QLOxAg==
x-oss-server-time: 2
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

g.gtimg.cn/music/photo_new/T053XD01004elvRR2BIZZd.gif

203.205.137.227

200 OK

316 kB

URL GET HTTP/2
g.gtimg.cn/music/photo_new/T053XD01004elvRR2BIZZd.gif
IP
203.205.137.227:443
ASN
#132203 Tencent Building, Kejizhongyi Avenue

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.gtimg.cn
Fingerprint85:06:BD:FD:B9:48:F6:84:32:16:4E:CB:6C:00:98:9A:28:EC:87:30
ValidityMon, 04 Nov 2024 00:00:00 GMT - Mon, 01 Dec 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
316 kB (316208 bytes)
Hash
f2224b542230f16ee156153495c4bc3c
e5909617ff841a6816d969b9da0be65d5ae7465c
dd6486737892e4e82b91807f91cbcc02c1187ef9fbb6a6a82f4b4f35954d2d5b

HTTP Headers

GET /music/photo_new/T053XD01004elvRR2BIZZd.gif HTTP/1.1
Host: g.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sun, 23 Feb 2025 17:09:01 GMT
server: NWS_X2_MID
date: Sun, 23 Feb 2025 09:14:30 GMT
expires: Sun, 23 Feb 2025 09:24:30 GMT
content-type: image/webp
x-verify-code: ea869d5a8f65cbec9d0960ac728cbebf
x-daa-tunnel: hop_count=1
cache-control: max-age=600
age: 441
content-length: 316208
accept-ranges: bytes
x-nws-log-uuid: 3202264457444857883
x-cache-lookup: Cache Hit
vary: Accept
X-Firefox-Spdy: h2

y.gtimg.cn/music/photo_new/T053M000001afkSk1fYW5j.jpg

23.36.77.83

200 OK

1.2 MB

URL GET HTTP/2
y.gtimg.cn/music/photo_new/T053M000001afkSk1fYW5j.jpg
IP
23.36.77.83:443
ASN
#20940 Akamai International B.V.

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint63:66:F6:13:09:B0:E7:FC:86:1C:D7:0F:6E:E2:20:35:3B:DF:A8:5A
ValiditySun, 01 Sep 2024 00:00:00 GMT - Wed, 03 Sep 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.2 MB (1245074 bytes)
Hash
cdff1da8f6cab5c517d18a320ed5ac3d
c7882389ef1791601c6e9c54820549bbb04f7040
c6bae840e58957c7037dc23bc762efdaa70c548eee6c627b9bc1f367ea146ed6

HTTP Headers

GET /music/photo_new/T053M000001afkSk1fYW5j.jpg HTTP/1.1
Host: y.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 1245074
server: tws
last-modified: Tue, 11 Feb 2025 21:33:48 GMT
x-delay: 23166 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 1
x-reqgue: 0
size: 1245074
chid: 0
fid: 0
cache-control: max-age=1571099
date: Sun, 23 Feb 2025 09:21:57 GMT
X-Firefox-Spdy: h2

img.meituan.net/video/c8ad5200a0c37600406ce64cfd22650a215046.gif

43.152.140.107

200 OK

215 kB

URL GET HTTP/2
img.meituan.net/video/c8ad5200a0c37600406ce64cfd22650a215046.gif
IP
43.152.140.107:443
ASN
#139341 ACE

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.meituan.net
Fingerprint43:45:60:7E:F4:CB:2C:62:54:62:AF:1A:39:46:40:BA:D9:8A:A6:97
ValidityFri, 31 May 2024 08:22:02 GMT - Tue, 01 Jul 2025 06:40:09 GMT

File type
GIF image data, version 89a, 640 x 358
Size
215 kB (215046 bytes)
Hash
c8ad5200a0c37600406ce64cfd22650a
7aba4a6b245d629b9ce569acd57471642b88e33a
7c2a19f538462b287f86a702fd1dff3357ea137571649e16cb03c9b64b8a72ef

HTTP Headers

GET /video/c8ad5200a0c37600406ce64cfd22650a215046.gif HTTP/1.1
Host: img.meituan.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 12 Apr 2025 18:17:22 GMT
server: openresty
date: Tue, 11 Feb 2025 18:20:41 GMT
content-type: image/gif
access-control-allow-private-network: true
m-traceid: xn1u5ai0mwxpeumf8vz2
age: 199
timing-allow-origin: *
cache-control: max-age=5184000
content-length: 215046
accept-ranges: bytes
x-nws-log-uuid: 5412195350704965005
x-cache-lookup: Cache Hit
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

lcap-static-saas.nos-eastchina1.126.net/app/2_20250121130537319.gif

115.236.121.20

200 OK

231 kB

URL GET HTTP/1.1
lcap-static-saas.nos-eastchina1.126.net/app/2_20250121130537319.gif
IP
115.236.121.20:443
ASN
#58461 CT-HangZhou-IDC

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerDigiCert, Inc.
Subject*.nos-eastchina1.126.net
Fingerprint23:E6:76:EB:C0:88:E6:64:25:2C:25:76:42:C5:C6:6C:F5:10:85:33
ValidityTue, 23 Jul 2024 00:00:00 GMT - Sat, 16 Aug 2025 23:59:59 GMT

File type
GIF image data, version 89a, 640 x 360
Size
231 kB (230657 bytes)
Hash
d04665bbdd678012c09544f363b18f2f
e467ba50db47c130ced439ba3aa59a7badaea7d8
fbf24df636cba707f1d10cb5faaf4c240618e941b1ccfccc5f823f59cc235a0e

HTTP Headers

GET /app/2_20250121130537319.gif HTTP/1.1
Host: lcap-static-saas.nos-eastchina1.126.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty/1.11.2.5
Date: Sun, 23 Feb 2025 09:22:04 GMT
Content-Type: image/gif
Content-Length: 230657
Connection: keep-alive
x-nos-request-id: 8d5e7431-2296-4306-84c5-2a456bbcdf57
x-nos-requesttype: GetObject
x-nos-object-name: app%2F2_20250121130537319.gif
ETag: "d04665bbdd678012c09544f363b18f2f"
x-nos-storage-class: STANDARD
Content-Disposition: inline; filename="app%2F2_20250121130537319.gif"
Last-Modified: Tue, 21 Jan 2025 05:05:37 GMT

normandy.cdn.mozilla.net/api/v1/

34.49.51.44

200 OK

598 B

URL
normandy.cdn.mozilla.net/api/v1/
IP
34.49.51.44:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JSON text data
Size
598 B (598 bytes)
Hash
3076f9a5cb273105528b893ff7111e41
b8990c145fe71b9a2410eea41a60a712b43b82bf
69c578fb0c03a28141a975833f660f4571e7991dc28ae7f9cead37672ee2c9b3

HTTP Headers

GET /api/v1/ HTTP/1.1
Host: normandy.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-guploader-uploadid: AHMx-iGnvQagFuLHeutA5cwx784a13p03g_EitV3RRIpYrJDvcGzdQzWhEZ3mHRyA1L6bG50
x-goog-generation: 1733538086068448
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 598
x-goog-hash: crc32c=kFVz4A==, md5=MHb5pcsnMQVSi4k/9xEeQQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 598
server: nginx
via: 1.1 google
date: Sun, 23 Feb 2025 08:44:55 GMT
expires: Sun, 23 Feb 2025 09:44:55 GMT
cache-control: public, max-age=3600
age: 2233
last-modified: Sat, 07 Dec 2024 02:21:26 GMT
etag: "3076f9a5cb273105528b893ff7111e41"
content-type: application/json
x-content-type-options: nosniff
allow: GET, HEAD, OPTIONS
vary: Accept-Encoding,Accept, Origin
x-xss-protection: 1; mode=block
x-frame-options: DENY
alt-svc: clear
X-Firefox-Spdy: h2

classify-client.services.mozilla.com/api/v1/classify_client/

35.190.72.216

200 OK

64 B

URL
classify-client.services.mozilla.com/api/v1/classify_client/
IP
35.190.72.216:0
ASN
#15169 GOOGLE

File type
JSON text data
Size
64 B (64 bytes)
Hash
b283fd79229db315e78519c4f2413ee5
e78b9959b78fa7fb281e8acbc93944a4861d1e3e
f33d15db4a728f8d2d8b84ad5830a9d3b740e8a4336cfec84b212c61737f1e40

HTTP Headers

GET /api/v1/classify_client/ HTTP/1.1
Host: classify-client.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 23 Feb 2025 09:22:08 GMT
content-type: application/json
content-length: 64
cache-control: max-age=0, no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/d19171e5210e46cc562a72bf2669a370.gif

47.246.44.224

200 OK

50 kB

URL GET HTTP/2
cdn.cnbj1.fds.api.mi-img.com/mitv-ueap/d19171e5210e46cc562a72bf2669a370.gif
IP
47.246.44.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGoDaddy.com, Inc.
Subjectcdn.cnbj1.fds.api.mi-img.com
Fingerprint88:98:B7:F7:BC:21:BF:A3:0E:A6:03:6A:90:24:1F:D0:97:FC:D4:76
ValidityThu, 06 Jun 2024 02:08:49 GMT - Sun, 22 Jun 2025 04:19:59 GMT

File type
GIF image data, version 89a, 150 x 150
Size
50 kB (50018 bytes)
Hash
4bf2e2c879cea7f80b6c967e1dd1084e
1ab9a9363eb81ce27fc453d7fe0386348dda1a05
cdf837a4e4302b488d8848c89a94cac65b3838ed2bd70d6579b1a2890eebc34d

HTTP Headers

GET /mitv-ueap/d19171e5210e46cc562a72bf2669a370.gif HTTP/1.1
Host: cdn.cnbj1.fds.api.mi-img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 50018
date: Mon, 17 Feb 2025 20:30:42 GMT
cache-control: max-age=86400
last-modified: Mon, 17 Feb 2025 20:26:44 GMT
x-xiaomi-meta-content-length: 50018
etag: "4bf2e2c879cea7f80b6c967e1dd1084e"
content-md5: 4bf2e2c879cea7f80b6c967e1dd1084e
x-xiaomi-hash-crc64ecma: -7258113419143590613
x-xiaomi-request-id: 17765a33-717d-a56a-0000-0195159b1d4e
accept-ranges: bytes
access-control-allow-credentials: true
access-control-expose-headers: content-md5, upload-time, x-xiaomi-meta-content-length, accept-ranges
via: ens-cache15.l2de3[0,0,200-0,H], ens-cache8.l2de3[1,0], ens-cache8.se2[0,0,200-0,H], ens-cache12.se2[14,0]
age: 478268
ali-swift-global-savetime: 1739824242
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Mon, 17 Feb 2025 20:37:20 GMT
x-swift-cachetime: 2591602
xm-cache-status: hit
access-control-allow-origin: *
xm-remote-address: 47.246.44.224
xm-cdn-prov: 1
timing-allow-origin: *
eagleid: 2ff62ca017403025105454716e
X-Firefox-Spdy: h2

vns3.ezrent.hk/b9fb3076983380cf2d30af608afa0f94.gif

0.0.0.0

200 OK

0 B

URL GET
vns3.ezrent.hk/b9fb3076983380cf2d30af608afa0f94.gif
IP
0.0.0.0:0
ASN
#0

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerUnizeto Technologies S.A.
Subjectvns2.ezrent.hk
Fingerprint44:A0:78:48:7E:76:FA:A6:79:1D:74:AA:3F:5F:A5:7D:80:73:DB:90
ValidityTue, 08 Oct 2024 07:35:45 GMT - Fri, 07 Nov 2025 07:35:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b9fb3076983380cf2d30af608afa0f94.gif HTTP/1.1
Host: vns3.ezrent.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: NgxFence
date: Sun, 23 Feb 2025 09:21:53 GMT
content-type: image/gif
last-modified: Wed, 18 Oct 2023 15:53:17 GMT
vary: Accept-Encoding
etag: W/"652fff6d-1c7e9"
expires: Sat, 07 Dec 2024 17:44:27 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
X-Firefox-Spdy: h2

node65.aizhantj.com:21233/tjjs/?k=9fh7x3i4rov

163.171.134.109

200 OK

35 kB

URL GET HTTP/2
node65.aizhantj.com:21233/tjjs/?k=9fh7x3i4rov
IP
163.171.134.109:21233
ASN
#54994 ML-1432-54994

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerGlobalSign nv-sa
Subject*.aizhantj.com
Fingerprint26:01:F1:1E:2C:43:7E:B9:25:67:E6:CA:E6:61:29:78:06:5C:77:41
ValiditySat, 07 Sep 2024 08:00:09 GMT - Thu, 09 Oct 2025 08:00:08 GMT

File type
JavaScript source, ASCII text
Size
35 kB (35220 bytes)
Hash
9032b6c94c0237f14b2544efd7bdaf35
9f2b5049a0b8e3a463eef38faa7c517c7224e1b4
708e7555376a09d5123664d8b8915986f031a4fc3aad92ea5cb2e53fbfc51075

HTTP Headers

GET /tjjs/?k=9fh7x3i4rov HTTP/1.1
Host: node65.aizhantj.com:21233
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 23 Feb 2025 09:21:45 GMT
content-type: application/javascript; charset=UTF-8
expires: Sun, 23 Feb 2025 09:39:09 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, PUT, POST, DELETE, OPTIONS
cache-control: max-age=1800, public
content-encoding: gzip
server: Aztj(w-01)
age: 756
x-via: 1.1 PSdgflkfFRA1ox201:0 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:10 (Cdn Cache Server V2.0)
x-ws-request-id: 67bae8a9_PSrdsdgemSTO1sw92_4282-22067
X-Firefox-Spdy: h2

156bc.homl.console.hllxind.com:1027/232CPA/1-14/tb/100-100.gif

0.0.0.0

200 OK

0 B

URL GET
156bc.homl.console.hllxind.com:1027/232CPA/1-14/tb/100-100.gif
IP
0.0.0.0:0
ASN
#0

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerUnizeto Technologies S.A.
Subject*.homl.console.hllxind.com
Fingerprint3F:70:C3:55:59:12:F9:28:E0:3B:A5:A7:3F:DD:7D:AB:81:F7:6D:D2
ValidityMon, 27 Jan 2025 06:39:33 GMT - Thu, 26 Feb 2026 06:39:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /232CPA/1-14/tb/100-100.gif HTTP/1.1
Host: 156bc.homl.console.hllxind.com:1027
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 23 Feb 2025 09:21:52 GMT
content-type: image/gif
server: nginx
last-modified: Wed, 15 Jan 2025 04:27:23 GMT
vary: Accept-Encoding
etag: W/"6787392b-c996"
expires: Tue, 25 Mar 2025 09:21:52 GMT
cache-control: max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2

img.cospa3600.top/xinjia150x150.gif

0.0.0.0

200 OK

0 B

URL GET
img.cospa3600.top/xinjia150x150.gif
IP
0.0.0.0:0
ASN
#0

Requested by
https://xa1jgfbdlwf2ncxq.412979.com:8283/home?channel=gj-41
Certificate
IssuerLet's Encrypt
Subjectimg.cospa3600.top
Fingerprint07:24:AE:6C:94:AC:C1:73:10:D1:BC:82:DD:1E:64:FD:61:8E:D3:6C
ValidityMon, 10 Feb 2025 15:26:37 GMT - Sun, 11 May 2025 15:26:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /xinjia150x150.gif HTTP/1.1
Host: img.cospa3600.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 1464981
cf-cache-status: HIT
cf-ray: 9165ae8539068ef5-FRA
content-encoding: gzip
content-type: image/gif
date: Sun, 23 Feb 2025 08:00:21 GMT
etag: W/"67a47af5-166de"
expires: Tue, 25 Mar 2025 08:00:21 GMT
last-modified: Sun, 23 Feb 2025 08:00:21 GMT
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L4GyVJzGK0NbgCqcf3M64QLLM9w2I74wD5I5Op0rEkOwSI%2FSm%2BTYbOPRMo%2Bjq%2Fa6uZFtkpZ06ayeHfrRtZiS4%2B7ggawRq2W1Fnwmd6C6JlTd3P6xVP%2BBjGCTWlQs5dIcCR5GrthTM1jG4gswvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=5575&min_rtt=5561&rtt_var=2096&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3094&recv_bytes=1150&delivery_rate=727207&cwnd=252&unsent_bytes=0&cid=c538960472de662c&ts=22&x=0"
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (43)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL