Overview

URL h818.top/
IP23.27.7.130
ASNEGIHOSTING
Location United States
Report completed2022-09-04 01:30:12 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-04 2 js.users.51.la/21128257.js Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (13)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-03 05:49:56 UTC 143.204.55.25
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-03 05:01:24 UTC 34.117.237.239
mnemonic passive DNS h818.top (1) 0 2021-09-23 10:21:37 UTC 2021-09-23 23:01:16 UTC 23.27.7.130 Unknown ranking
mnemonic passive DNS jpvv70.top (16) 0 2022-05-25 04:57:17 UTC 2022-07-23 22:00:29 UTC 172.67.154.35 Unknown ranking
mnemonic passive DNS ocsp.globalsign.com (2) 2075 2012-05-25 06:20:55 UTC 2022-09-03 05:00:17 UTC 104.18.20.226
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-03 09:18:41 UTC 34.120.237.76
mnemonic passive DNS js.users.51.la (1) 53024 2012-05-30 15:10:11 UTC 2022-09-03 04:00:37 UTC 103.143.19.103
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-03 18:20:10 UTC 143.204.55.27
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-03 14:30:54 UTC 93.184.220.29
mnemonic passive DNS www.h818.top (4) 0 No data No data 23.27.7.130 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-03 05:35:54 UTC 35.165.41.15
mnemonic passive DNS hm.baidu.com (2) 8254 2012-05-26 08:38:45 UTC 2022-09-03 08:03:25 UTC 103.235.46.191
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-03 05:00:20 UTC 23.36.77.32


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 23.27.7.130

Date UQ / IDS / BL URL IP
2022-09-04 01:30:12 +0000
0 - 0 - 1 h818.top/ 23.27.7.130

Last 5 reports on ASN: EGIHOSTING

Date UQ / IDS / BL URL IP
2022-12-03 21:17:20 +0000
0 - 0 - 1 7547.hc-yc.com/11039/ 136.0.62.55
2022-12-03 19:09:59 +0000
0 - 0 - 19 keroel.com/ 142.252.231.86
2022-12-03 15:16:13 +0000
0 - 0 - 20 www.bjkytdkj.com/index.php 50.117.17.122
2022-12-03 11:58:22 +0000
0 - 0 - 5 www.kadinbebek.com/feed 142.111.177.192
2022-12-03 10:35:50 +0000
0 - 0 - 5 nadinter.com/ 104.253.151.54

Last 1 reports on domain: h818.top

Date UQ / IDS / BL URL IP
2022-09-04 01:30:12 +0000
0 - 0 - 1 h818.top/ 23.27.7.130

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-30 08:48:36 +0000
0 - 0 - 4 7513555.com/ 104.201.45.219
2022-11-29 14:59:14 +0000
0 - 0 - 4 baigouw.com/ 154.215.243.147
2022-11-28 15:44:13 +0000
0 - 0 - 5 hbclqcsz.com/ 154.93.233.108
2022-11-28 04:41:05 +0000
0 - 0 - 2 www.zx9688.com/index.php 156.244.25.73
2022-11-27 10:15:57 +0000
0 - 0 - 9 meiaokq.com/ 154.92.85.219


JavaScript

Executed Scripts (12)


Executed Evals (2)

#1 JavaScript::Eval (size: 5, repeated: 1) - SHA256: a0b69f041ba716e2e1eba506e3ed0a7bdadd55c5c72471a7190ef8d5954222ec

                                        10 + 10
                                    

#2 JavaScript::Eval (size: 457, repeated: 1) - SHA256: c860ca1e9e9d36c5b3a6f252a070a1d8e50cd0d264d6de262c1a36842f94d2f1

                                        document.write('<title>�N��E8	Pl�</title><div id="showcloneshengxiaon" style="height: 100%; width: 100%; background-color: rgb(255, 255, 255); background-position: initial initial; background-repeat: initial initial;"><iframe scrolling="yes" marginheight=0 marginwidth=0  frameborder="0" width="100%" height="100%" src="http://jpvv70.top"></iframe></div><style type="text/css">html{width:100%;height:100%;}body {width:100%;height:100%;}</style>');
                                    

Executed Writes (2)

#1 JavaScript::Write (size: 105, repeated: 1) - SHA256: b60d02bcb4ecf89a920fe29e86620cba5343633ca7a1e51387b7c92243b6bf44

                                        < script src = "https://wpercent.kasdwergv.com:25688/ty/28FBDB1D-7666-16349-34-5229C7E9EAED.alpha" > < /script>
                                    

#2 JavaScript::Write (size: 438, repeated: 1) - SHA256: 851a8cf714d7282149bafc200d0eea413a7937a548f92be7af6a8cb6855991b5

                                        < title > �N�� E8 Pl� < /title><div id="showcloneshengxiaon" style="height: 100%; width: 100%; background-color: rgb(255, 255, 255); background-position: initial initial; background-repeat: initial initial;"><iframe scrolling="yes" marginheight=0 marginwidth=0  frameborder="0" width="100%" height="100%" src="http:/ / jpvv70.top "></iframe></div><style type="
text / css ">html{width:100%;height:100%;}body {width:100%;height:100%;}</style>
                                    


HTTP Transactions (42)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 04 Sep 2022 00:49:29 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QbGnGNqg0yp7IekZTSCsIxA4-AE4ZTqtO156Zz8aSWT_mzJuDTjJSA==
Age: 2432


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10991
Expires: Sun, 04 Sep 2022 04:33:13 GMT
Date: Sun, 04 Sep 2022 01:30:02 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 175aLzhnWIE6UtoLk449o84gkSO7ksoShEQOS7aSTYbvcCVaZWxIuw==
age: 885
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 04 Sep 2022 01:30:02 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: h818.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         23.27.7.130
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Sun, 04 Sep 2022 01:30:01 GMT
Content-Length: 0
Connection: keep-alive
Location: http://www.h818.top/index.php

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 04 Sep 2022 00:38:16 GMT
Expires: Sun, 04 Sep 2022 00:52:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KHei1CIIDJmzFy-cJ6Hign8Fnip00LTVLPVJrhnfkeDr_pJOCFwaow==
Age: 3106


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6234
Cache-Control: 'max-age=158059'
Date: Sun, 04 Sep 2022 01:30:02 GMT
Last-Modified: Sat, 03 Sep 2022 23:46:08 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /index.php HTTP/1.1 
Host: www.h818.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         23.27.7.130
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Sun, 04 Sep 2022 01:30:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (643), with CRLF line terminators
Size:   528
Md5:    58a080b1bf06d677d995149745217eb6
Sha1:   e4101f300728513bf40f0e9655de65b1a1ce12e7
Sha256: 27c7f1e0dbf4a2eceebcfe4676a90ed186aff701cca6294c217e0c69a4c52eed
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: x8b6dPm8vaw8bUUqK7yFRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.165.41.15
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oZQjhsdyuimhdslFe2Yn2ZSOWco=

                                        
                                            GET /common.js HTTP/1.1 
Host: www.h818.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.h818.top/index.php

                                         
                                         23.27.7.130
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Sun, 04 Sep 2022 01:30:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Size:   681
Md5:    a37f4326098e82427e6fff5f823c5121
Sha1:   25c3bbb22d5be38d21d7353dae809b6c279b4a05
Sha256: d04b299138525edc0c9161cbfe4f0ebf407797c55a005ffc459eaaea8ec3b826
                                        
                                            GET /tj.js HTTP/1.1 
Host: www.h818.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.h818.top/index.php

                                         
                                         23.27.7.130
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Sun, 04 Sep 2022 01:30:02 GMT
Content-Length: 258
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   258
Md5:    988b173f22d1201eb0a3836d01986141
Sha1:   6078feee42f8443587985546e35db02f67e2efb9
Sha256: 19f208ab049748e00b44f8cd264889b224e1589e733f22c2882f938422017f70
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.h818.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.h818.top/index.php

                                         
                                         23.27.7.130
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Sun, 04 Sep 2022 01:30:03 GMT
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Fri, 09 Sep 2022 01:30:03 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    7ef1f0a0093460fe46bb691578c07c95
Sha1:   2da3ffbbf4737ce4dae9488359de34034d1ebfbd
Sha256: 4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
                                        
                                            GET / HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.h818.top/
Upgrade-Insecure-Requests: 1

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Sun, 04 Sep 2022 01:30:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WRJ5z%2FsIPaoncGJ0mlf%2BrPS1g1gV5uXtF67qyVmsaRcb4WXf5D7ln%2FL2Lh3xadl4k0IWjbTbxAlIewC7xXrv1yChdLiuKHq5uzSNsieuTq8SJ1X8MSjv9flRNqMw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52a0f211c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6554), with CRLF line terminators
Size:   7138
Md5:    663ac76554fbbd1c2611ff16fc39f04b
Sha1:   42fd0307a795820d3559dd511bc79bc30b19e26e
Sha256: db7bf45a2dd5845921ab508961eb5340c199449458c98db392cab55cb69a5eaf
                                        
                                            GET /static/js/home.js HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Sep 2022 01:30:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 28 Apr 2020 14:28:02 GMT
Vary: Accept-Encoding
ETag: W/"5ea83d72-994e"
Expires: Sun, 04 Sep 2022 12:51:33 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 1638
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=osJoeoNNntIDqDbHeZK8zveiWzD8orp%2Bliz038SJgpIE3dvp7%2BRlQ8%2BmEIAU6BCrExS3HQVZvzuyD%2BCwcirsAUEYVmXcGwXad8lqjZmJl3lprqDKhGuJ7WXZSi5x"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52cfa070b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (2677), with CRLF line terminators
Size:   10525
Md5:    cf27875c07ac1742b6554d5c6369812f
Sha1:   d7a01a40e5144cdcd36a8588cbb929e317019a78
Sha256: a558013b5c70dc000814a5045bd1988aec1ce0552617fbb38f3349b923119440
                                        
                                            GET /static/js/jquery.autocomplete.js HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Sep 2022 01:30:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Mar 2019 13:12:52 GMT
Vary: Accept-Encoding
ETag: W/"5c850d54-64a8"
Expires: Sun, 04 Sep 2022 12:51:33 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 1638
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=epmJlXWmLse4MzDaTJ%2FHzrWzSbkyj6iH9vrq3peRG9rydl9eoieXQR5%2Fd4sKZgHSo9wiVbfaziXbyM3ad284ttMxD8LlgTdYVHAtxbQQj7IScYS49YoEK%2BLip8Im"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52d0a0c0b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Algol 68 source text\012- Pascal source, Unicode text, UTF-8 text, with CRLF line terminators
Size:   6356
Md5:    d9f67b358ecd6dc03fc709356018ab11
Sha1:   11a75063c50de09d8a323dc8bb93c194729055c0
Sha256: d1f6fa1324f9b17b39672b105b95aa7792ab1a5e10a5a95e625f26b0c1b0a801
                                        
                                            GET /template/jpvv8/js/jquery.lazyload.min.js HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Sep 2022 01:30:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 06 Dec 2020 16:26:43 GMT
Vary: Accept-Encoding
ETag: W/"5fcd0643-d35"
Expires: Sun, 04 Sep 2022 12:51:33 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 1638
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mScxpvRfyMzUS0%2FopLco0MNwEAofPbOfPRlfw3TdarnZrrJsqKfszbjCXv%2Fx1rn6CGJkgrGB7bjhDx2Nq4iUMEs4JNGmLtwFpGXC5gO%2FIS2Fb9DYlgAz2tD7X2M4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52d0a100b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (3309)
Size:   1341
Md5:    fe3a417c05fcbde8246764774497dd92
Sha1:   03bafb954a4e1e582afbceb5406cfd5dd4224830
Sha256: 39eb4e5c1fbdbd957715e47e5eaf631852e1ffcdc09e8f5d0e69a24375ccd486
                                        
                                            GET /template/jpvv8/js/swiper.min.js HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Sep 2022 01:30:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 06 Dec 2020 16:27:02 GMT
Vary: Accept-Encoding
ETag: W/"5fcd0656-1e700"
Expires: Sun, 04 Sep 2022 12:51:33 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 1638
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h8b3DOHjJ1fvnBZB9p1F1oCtvHFpXIhZowrrYtpoJDP7UZEuwucGwO7iGhMDpo7qxdnuTwYch3JjZ8vA2EZ40VwS4mm0K1CUuirjqQoBZ%2BQRccQmihKm10oamMLc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52d1a130b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (65269)
Size:   37721
Md5:    39373734403134c8fbc01dfd978eddf0
Sha1:   4b1005ed20d8645162955504c36b6462e1bd6bdf
Sha256: 2aad78bdf3b7edd157831fca2cc5ccd8447e241441b1269642ba94e3fc075486
                                        
                                            GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Sep 2022 01:30:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 13:16:51 GMT
ETag: W/"630f5f43-4d7"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fhwfZ9v1oZKIUFHtQXbNfuY8tn41j%2FSz%2FFNpTR1ZHCzHmNyY2Apv5DUnF1yb%2BAXMmdgUi0DNZ01%2FMBQt0YwyKQ96uRTWXvKaJpvZ8jHtDkAeIlDpNH2EnBH3uEmz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7452f52d4a2f0b4d-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Tue, 06 Sep 2022 01:30:03 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1238)
Size:   655
Md5:    bc3ba461c8a309acf61b6d9c41cb6236
Sha1:   88482306ecc9258d5e9cbb9ba5314dab223a5db4
Sha256: 31331f1b1519882d2f2fb60367708fd56a7a1ec0bddd0554c635547179c7dc8f
                                        
                                            GET /template/jpvv8/ads/hengfu1.js HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Sep 2022 01:30:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 11:28:37 GMT
Vary: Accept-Encoding
ETag: W/"63133a65-e78"
Expires: Sun, 04 Sep 2022 12:51:33 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 1638
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=46i7mYEeSpf0p7fOxSVBelvBCPYjByiW3jejSP66nlqbF72CsQBC1Ii6uubxnkdsm2IzEdt9FaCUbAw0n4FiNcc9G4Eknbw4kro8E%2BIY0QR%2FWWbelDfLgFy3IpZ9"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52d4a300b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   994
Md5:    9b39e0a919fa620e08446a8063676784
Sha1:   4ccaa024636065198285f2666040718dfea0e595
Sha256: 0d0dcd1560364c220ff59e1afb934b8fbf388c27451d1cc3e6bf88b56708f8e4
                                        
                                            GET /template/jpvv8/ads/hengfu2.js HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Sep 2022 01:30:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Sep 2022 11:38:21 GMT
ETag: W/"631099ad-373"
Expires: Sun, 04 Sep 2022 12:51:33 GMT
Cache-Control: max-age=43200
CF-Cache-Status: HIT
Age: 1638
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XVWufNryNBfPOsZZ%2BEY080AhZ3IMJ7veKr1JIjWT%2BGQszqqWvVW5NmDvmyYJXnuVYcy4oFWAh8BEawuGYXXrEwZAeZgW%2B0IiOV4sYvOBjv1JLW5wdb%2BESUN9vHb0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7452f52d5a330b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   389
Md5:    44531ccaffe6d33a773776a947195a6f
Sha1:   9c69f66e20e189a0145643e8651ed70f7dd6ddba
Sha256: a6c336a9b41420e39d64e8adc3d563c38303a3166fed7f8736d2d03bc787b74b
                                        
                                            GET /template/jpvv8/ads/dl.js HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Sep 2022 01:30:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Jul 2022 08:52:31 GMT
ETag: W/"62ca934f-355"
Expires: Sun, 04 Sep 2022 12:51:33 GMT
Cache-Control: max-age=43200
CF-Cache-Status: HIT
Age: 1638
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q%2BbnJ7ker7zfztumrowCgE0bxwabRtaTkpt5BVMsbBvcee26j9b0sLCPzU1sYXZLtXtKkx4mkaG%2B5jYnHgJovJ1U%2BbXS1gaI3bo3XKUnGTlM0QfUYvHcOyfY44X%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7452f52d6a3a0b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (507), with CRLF line terminators
Size:   566
Md5:    8c7a97b3152adb7907ca1ef6040e5ccc
Sha1:   67ad3e19d4dbfec267cea21622ef388f37b04aab
Sha256: 9b7daab12a003c4177da5fc671dbfffd3c69953e622c12949ec9d536e0134a12
                                        
                                            GET /template/jpvv8/ads/hengfu3.js HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Sep 2022 01:30:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 17 Aug 2022 07:06:03 GMT
Vary: Accept-Encoding
ETag: W/"62fc935b-7ea"
Expires: Sun, 04 Sep 2022 12:51:33 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 1638
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6fVr5ywz2FRVznDg%2F2LA37nEAX1Ldj8ioy6jnp8W%2FuPuvuOVa8ileoXqb9UMtPrTwdMQhQ6BBL7%2BR5akxCYKFmwCucE%2BVlqahW%2BowQdMYKwt4HE5vp%2FFVgODwuTm"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52d6a400b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   625
Md5:    2b7ad97555d4811bda44a7e7782867ac
Sha1:   72cbcffe15c399fb4b8fd42e3a26f5e7b6cd3ba3
Sha256: 1ce579509dd90891fd4fd7be21dfd19fca9130f256af6b9d1ec3bdcd7d7b3b64
                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Sep 2022 01:30:03 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 07 Sep 2022 22:58:16 GMT
ETag: "6667b3c949486dc679533be55aeea42c727a1ca2"
Last-Modified: Sat, 03 Sep 2022 22:58:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1332
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7452f52e9c8eb51d-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    831eef40dc2e7a91bf96fe4970684c91
Sha1:   6667b3c949486dc679533be55aeea42c727a1ca2
Sha256: 725d47f83d0f9ca45a17aa964cbc4581ce2b63f1e474f5956cb68129614cb66a
                                        
                                            GET /template/jpvv8/css/style.css HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 04 Sep 2022 01:30:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Feb 2021 03:52:21 GMT
Vary: Accept-Encoding
ETag: W/"601b6f75-6c09"
Expires: Sun, 04 Sep 2022 13:18:51 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oKjCIA3wJoRuaCkiakn8KueLyO57SicfTiziqkYfnik6uyJaC6S04%2BBU6vALmQUx4ZUaZDOr5Dn8g2ObaEvj2ic3JmXb5jYMjpwPZeVfJG6LJwnlEm3nJwFVgoPo"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52ceb87b50c-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (618)
Size:   7213
Md5:    75dc183454f8959d3912d28d0cfdc776
Sha1:   e63785adb7b3823447c451237dee696f24af7e31
Sha256: d9e2ebe3de9dd800561c2d094419513ba32fae6cb885a0ce568d064e8a66be09
                                        
                                            GET /static/css/home.css HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 04 Sep 2022 01:30:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 08 Jul 2019 02:09:50 GMT
Vary: Accept-Encoding
ETag: W/"5d22a5ee-5501"
Expires: Sun, 04 Sep 2022 13:18:51 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jhsg6%2Bxf4E%2Be6I0xA0yd4iTC3ii2oiMfqBDlT9f9EhV0poTuCZB87nAWVmoy%2FxuK8U8uWW7Iz8CPmmuCn6ZWMF4YkLaG190oUgjwrYy1JZfyRtqPqKHUIPNLBGJc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52ce92b1c06-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (310), with CRLF line terminators
Size:   5898
Md5:    363ab79bd3cd42fd360bd10229a70042
Sha1:   9bc0232d1b50d5ae9fd981cefaf29324ee7a443d
Sha256: c000deb565563d05f4285c70b58783e681e8147fd7933ffa9f87b9f93655c0fb
                                        
                                            GET /template/jpvv8/css/swiper.min.css HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 04 Sep 2022 01:30:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 06 Dec 2020 16:26:19 GMT
Vary: Accept-Encoding
ETag: W/"5fcd062b-4d43"
Expires: Sun, 04 Sep 2022 13:18:52 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PxGN6QXLqUr3wnknRdpzdchF1939QKXgYk2qbFHdC2T0%2BMcHp2RGxhX3YvIYir1%2BCaa66kXO5Lw7cQpxFbf%2FuYhw3gLIX7OXz5jN%2BjTq%2F0C%2Bm0%2BC%2BPl5jpTo4UO4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52cec8fb524-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (19512)
Size:   3487
Md5:    b89961554017f5cc842eed99b4b20037
Sha1:   7da3fbf0edcde1771a315c2c4225cb3430f7669a
Sha256: 364dcc1b84b1c408ee4fad0578eee15d30c975da9a298d82ce71443c5ad95d6f
                                        
                                            GET /template/jpvv8/css/mmcdy.css HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 04 Sep 2022 01:30:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 06 Dec 2020 16:26:19 GMT
Vary: Accept-Encoding
ETag: W/"5fcd062b-34be"
Expires: Sun, 04 Sep 2022 13:18:52 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RhzV0hPw80DXlJyI%2BMEzKsnETIBgTlBOLzSde3wLYBI283lqCwGOORf2MTbtG5%2BC3J1NSVCTKNjJtgSzphkCVU6dfw6AdXlA7ReQnJcj5QHKQmmuUEPJhSlu0jjw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52cffceb50b-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   3597
Md5:    8c965590bdf3480f74f258e81ac2f468
Sha1:   5942a89448d0b9dfb77497edf1a2eefe7fec9d17
Sha256: ef836a07b197fbd69add5c83d611bbdd6bbceaebfa49bd5b2909fd92fa0badbc
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10560
Expires: Sun, 04 Sep 2022 04:26:04 GMT
Date: Sun, 04 Sep 2022 01:30:04 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10560
Expires: Sun, 04 Sep 2022 04:26:04 GMT
Date: Sun, 04 Sep 2022 01:30:04 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10560
Expires: Sun, 04 Sep 2022 04:26:04 GMT
Date: Sun, 04 Sep 2022 01:30:04 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6541786-c935-4aec-88da-fa887f01bef4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6467
x-amzn-requestid: 169eaa82-3472-4aca-a26e-c78080d20bc6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxLzHFWDIAMFeeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631059ad-6df745c367d8e79b57e34c24;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 07:05:17 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0WMwVsmclvutywUm14huz5mAirMV5WqfpCKSgxIIN7lO7vI-vvb8vw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 11:20:22 GMT
age: 50982
etag: "87f505d3df68138cf008a469a5d04096a51c93e8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6467
Md5:    536d923c7abb89ac7d14f3e6e2e5dc90
Sha1:   87f505d3df68138cf008a469a5d04096a51c93e8
Sha256: ba9e66c37fd20175d6ebd01b9f92d5a514f926ad6129525802434bca05f1412a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8688
x-amzn-requestid: 1c5fbc89-8ce8-4792-b713-f2c0ceeab737
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wifFJYoAMFi0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7a9-214311e155c661ff77d89906;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wd9SF3txQNTVUaSPcKQ_nQfPt1pBjFbuHzSZiQjfbGBSb-i7J8Rgjg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:44:29 GMT
age: 13535
etag: "2768253dacaaad6cb498c6b2eb7694208b0ce0a6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8688
Md5:    6bb4b1d74f1443bc3328301ab3ae6464
Sha1:   2768253dacaaad6cb498c6b2eb7694208b0ce0a6
Sha256: 07dcc95dab7757402998a5a61b540c965ce95c8bd51a814a09438981693b563a
                                        
                                            POST /gsgccr3dvtlsca2020 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Sep 2022 01:30:04 GMT
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 07 Sep 2022 22:34:24 GMT
ETag: "0907370b2e75f712056c7765162b39e511667c17"
Last-Modified: Sat, 03 Sep 2022 22:34:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 187
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7452f52fdd57b51d-OSL


--- Additional Info ---
Magic:  data
Size:   1414
Md5:    88940c40406b2de57b8adde94d7d76dc
Sha1:   0907370b2e75f712056c7765162b39e511667c17
Sha256: 826e9949cc4e677154447277374e67560bb1dd2a11447a346ab0cd8750474e10
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87cad5e1-a1b5-47c6-9dc3-339735fecc60.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6129
x-amzn-requestid: 93447f39-3086-4613-8d08-5c766fb52a16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5xR7GuyoAMF0DA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c8d8-7f2c8d6d0edee0d05a3f8a72;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:36:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6IvNAKj8WXAxkIgrqalpdeYP18ZN8DfAlt_8Q54Wob-pWr6mpZILGA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:47:09 GMT
age: 13375
etag: "87d4277c53e3320b8f0f9e564c112ade8e6fa8d9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6129
Md5:    963f97e0ee4ae7015a7d9c6920aeb064
Sha1:   87d4277c53e3320b8f0f9e564c112ade8e6fa8d9
Sha256: ee1a5565dec52bb123104a4a4f9edf764e2ad7929869299a14307f6e00a50fee
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09148d75-a4a3-47e6-8d91-01e8dfad4bc7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8931
x-amzn-requestid: cfc0940f-ad6a-4535-91b7-70b200af68d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwGEVEoAMFriw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-5b6e6e5e3401eba533fb63df;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aa71ssSsXM8Z0Q2V4AitycF3hefEZXNqIYsr0vsJyhpE9cDpNEwh6Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:14:56 GMT
age: 11708
etag: "5d5c724e26af57967b9a132a77d3986ba8d6ed9c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8931
Md5:    0eecb70391b63b662d13355e32d95ea1
Sha1:   5d5c724e26af57967b9a132a77d3986ba8d6ed9c
Sha256: 2c7f2aa1c725a5d39daf44ee746bb24b5c15aab41c67cf160814f7f87d1aacdf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48ddd9c9-1923-443a-8dbf-f936630b1f9b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4615
x-amzn-requestid: a28cc354-9caf-45e8-805e-a9d076f4c55d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wxXFsZIAMFbVQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c808-118caff17f74408d6ba251b9;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WHCYmwxGwIVneoRpk4rVJ_GVWnEhyayaW_Uj9ejqyTsOFab8oJ9RGA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:47:53 GMT
etag: "c9e50dd6d25825a3fff305261dc8f85a7113150a"
age: 13331
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4615
Md5:    7602d55b1969744668194d6433ad2490
Sha1:   c9e50dd6d25825a3fff305261dc8f85a7113150a
Sha256: 9ab721edb038aad74dabe751f7790fe21915884893ea9f471e407ae526495701
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a65f81-cc75-4344-b2c9-b175dee43d52.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6879
x-amzn-requestid: 75e0d594-5ef0-4cc0-b34b-7a20d2f1a85e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3i5GhRoAMFjyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2df-10e5e0bb386fbccb79250553;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: syvwE4ZcHBHq7TWYY1slrqkqZzVvF0gby2q8TGUNARtdKjxnDWLvog==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 00:59:04 GMT
age: 1860
etag: "fd24bc01d65805deff463e77bd875a1a299e8b9d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6879
Md5:    8c7c7824789fc28f90fdfc7afe9856bd
Sha1:   fd24bc01d65805deff463e77bd875a1a299e8b9d
Sha256: 1c5afb4c9648efb6c0117a47cb7613aa1072f7731fa3c7c325228373c8e07106
                                        
                                            GET /static/js/jquery.js HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 04 Sep 2022 01:30:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 10 Mar 2019 13:12:52 GMT
Vary: Accept-Encoding
ETag: W/"5c850d54-169d9"
Expires: Sun, 04 Sep 2022 13:18:51 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4bwbXrp7FKXMd8QypOGpAYlEhJhVfqige060de1Q5oTRZQu0wO%2BCcisLfAix%2BU4IJPBrg6HKWrXpwVkWH6WiYlP1eTXCFipuD882TvyPgFyZKxaEHO8H6giHHIhY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7452f52cfaa7b517-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (32089), with CRLF line terminators
Size:   36748
Md5:    cb8b32d2a46a250954f981780ea7d0d3
Sha1:   149d7140bb977c0ea043397cd72f067e56974692
Sha256: 080e5c45daae1e54faf78ecb600d5bd6680e7889343ebf220f94b6b9a343beae
                                        
                                            GET /template/jpvv8/images/loading.gif HTTP/1.1 
Host: jpvv70.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jpvv70.top/

                                         
                                         172.67.154.35
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 04 Sep 2022 01:30:04 GMT
Content-Length: 1388
Connection: keep-alive
Last-Modified: Sun, 06 Dec 2020 16:26:48 GMT
ETag: "5fcd0648-56c"
Expires: Tue, 04 Oct 2022 01:18:52 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yVgK5WzHNP2nyxewQMGjpZ1fSFheB9PEdyKU5Qk7fUE3FxVCF7E%2BfVb4cothDlUA6Zx1XUFBufHnU6742wtVJ0c5%2BQbrkIL60fJmTPts4EasQO%2BaLbJMQNj3k7y2"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7452f5314bf20b4d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 16\012- data
Size:   1388
Md5:    c3d6947988790580587d57af4acd8d97
Sha1:   889897b6bc89c1198aa9c04710bf6afd6877b698
Sha256: d1c8e64dcc04555103890ff2c8c7b16a5c739846f9d419b57041f6131b49ec6f
                                        
                                            GET /21128257.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jpvv70.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.143.19.103
HTTP/1.1 403 Forbidden
Content-Type: application/javascript; charset=utf-8
                                        
Server: CloudWAF
Date: Sun, 04 Sep 2022 01:30:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=feb42577b59ba539e4a; path=/ HWWAFSESTIME=1662254999637; path=/
Content-Encoding: gzip


--- Additional Info ---
Magic:  very short file (no magic)
Size:   21
Md5:    1a60c330fb42841e8dcf3cd507a70bfc
Sha1:   9ba9c8d18f6be7851b4d88e3b608a9979f56a083
Sha256: 7fa5a93246b84491c51c9c8b4493d30518932a2bb45d67df757bc8a332b1f2d1

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /hm.js?5ad636bfe16d111e5b73a04177bc0ecc HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.h818.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11339
Date: Sun, 04 Sep 2022 01:30:04 GMT
Etag: 338738ee55f7d0cd0571a2e63c9f4963
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=462D21C90244C46C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (626)
Size:   11339
Md5:    d12afd9df4878f53c0e26647fb66f9f6
Sha1:   643619ab61c9e3b94ad5c64a28159b71d40e0efc
Sha256: d7c5a6c5cac9add957b414635a3243c10c0bdbf2a669260bb87bdb1c3e2ae217
                                        
                                            GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2015298796&si=5ad636bfe16d111e5b73a04177bc0ecc&v=1.2.97&lv=1&sn=25262&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.h818.top%2Findex.php&tt=%E5%B4%87%E5%B7%A6%E6%B5%8E%E6%92%AC%E5%9B%BD%E9%99%85%E8%B4%B8%E6%98%93%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.h818.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Sun, 04 Sep 2022 01:30:05 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=AEC95EAA85B1969F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda