r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5443
Expires: Wed, 07 Dec 2022 08:11:47 GMT
Date: Wed, 07 Dec 2022 06:41:04 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash f83c5e33ba42e312ee398848bbb711f5
caa1fd23b1fbbe883292ded04404c1cfd861eb09
106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5989
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:41:04 GMT
Last-Modified: Wed, 07 Dec 2022 05:01:15 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5455
Expires: Wed, 07 Dec 2022 08:11:59 GMT
Date: Wed, 07 Dec 2022 06:41:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 06:20:28 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1236
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QHU52SPM09eUBOvAxWVhjaz504M8NN2CwxcG6lcVIflS+yJ50ZVFjK6REFeEzbXUcFq0SwdfpH4=
x-amz-request-id: 7QV16YKC53D17QWW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 05:47:23 GMT
age: 3221
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.dxjyy124.xyz/
301 Moved Permanently 162 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 07 Dec 2022 06:41:04 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.dxjyy124.xyz/
Strict-Transport-Security: max-age=31536000
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 06:08:58 GMT
cache-control: public,max-age=3600
age: 1927
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4a4a011468c9c231a23d8f52ffb21620
100a2e4b073ab5a7153543c0e35c39c82250cca1
56fae106a09187d82fc2a2c27cbe84a58c22754c1f4a921f9d0b2b569f192147
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56FAE106A09187D82FC2A2C27CBE84A58C22754C1F4A921F9D0B2B569F192147"
Last-Modified: Tue, 06 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21540
Expires: Wed, 07 Dec 2022 12:40:05 GMT
Date: Wed, 07 Dec 2022 06:41:05 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5921
Cache-Control: max-age=101066
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:41:05 GMT
Etag: "638f062a-1d7"
Expires: Thu, 08 Dec 2022 10:45:31 GMT
Last-Modified: Tue, 06 Dec 2022 09:06:50 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iHcQOsPBXzoy0GUK7NIxOA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hAdg4kib1zYvScN5TxLqXBMfLeE=
ocsp.digicert.com/
200 OK 279 B IP
Hash bd8048ccc4a7aa85c68b5cfb32b1c038
da766786adaac1938f69367719135892a66c4ec0
7554350b4fb8e0a94bbc41c532208c227ec99acc014cc864759143a3fd0c9eaf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5909
Cache-Control: max-age=157946
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:41:06 GMT
Etag: "638fe467-117"
Expires: Fri, 09 Dec 2022 02:33:32 GMT
Last-Modified: Wed, 07 Dec 2022 00:55:03 GMT
Server: ECS (amb/6BC1)
X-Cache: HIT
Content-Length: 279
www.huolacdn.cc/AD/AD_Gif/0121.gif
200 OK 222 kB URL HTTP/2 www.huolacdn.cc/AD/AD_Gif/0121.gif
IP
File type RIFF (little-endian) data, Web/P image\012- data
Size 222 kB (222236 bytes)
Hash d57fda02bc3be86d7a0660b82dea9eac
77f16bb895e80cd62802338c47d011b84ada5383
58095c4b2a9e60b4f766c391f6fb451a2e6ab12fe8c36831952eccf497b2f904
GET /AD/AD_Gif/0121.gif HTTP/1.1
Host: www.huolacdn.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/gif
content-length: 222236
last-modified: Fri, 28 Jan 2022 07:17:20 GMT
etag: "61f39880-3641c"
expires: Mon, 02 Jan 2023 19:26:21 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 299685
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gtTvcOD5eFD8V9UjjS80%2Fsv%2Bwx7RtdjI8s9uzbziEua7wjvybyqf%2FyBN9W0RlDmwStcMHA9HSzMgChBTsYM9uKI%2FKuQDY3ibA%2F2aDIsmKEBLH2MBwwN6Elx3WJK3KD3BZQo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775b460ccaeb1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash bd8048ccc4a7aa85c68b5cfb32b1c038
da766786adaac1938f69367719135892a66c4ec0
7554350b4fb8e0a94bbc41c532208c227ec99acc014cc864759143a3fd0c9eaf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5909
Cache-Control: max-age=157946
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:41:06 GMT
Etag: "638fe467-117"
Expires: Fri, 09 Dec 2022 02:33:32 GMT
Last-Modified: Wed, 07 Dec 2022 00:55:03 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 36e3d5acc73bf1de335107c4501cfab1
e54b9b710c2ffe1275b98e0ce4d4183456413e13
ff669df32341f8bfb8952d62a10272fa1fd9286f5fc53308cd95ad4168537770
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "FF669DF32341F8BFB8952D62A10272FA1FD9286F5FC53308CD95AD4168537770"
Last-Modified: Mon, 05 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Wed, 07 Dec 2022 12:40:12 GMT
Date: Wed, 07 Dec 2022 06:41:06 GMT
Connection: keep-alive
www.dxjyy124.xyz/static/images/hot.gif
200 OK 254 B URL HTTP/2 www.dxjyy124.xyz/static/images/hot.gif
IP
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
Analyzer Verdict Alert quad9 Sinkholed
GET /static/images/hot.gif HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:05 GMT
content-type: image/gif
content-length: 254
last-modified: Wed, 29 Sep 2021 05:51:09 GMT
etag: "6153fecd-fe"
expires: Fri, 06 Jan 2023 06:41:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.dxjyy124.xyz/static/images/empty.jpg
200 OK 47 kB URL HTTP/2 www.dxjyy124.xyz/static/images/empty.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.0 (Macintosh), datetime=2020:05:13 21:35:29], baseline, precision 8, 235x141, components 3\012- data
Hash 23eb9e82fb7523ac495688e32e3b484b
a8b2b1cfa9b7587e5a29482317104d1655087fd3
166172be9d739f235271d347708bcfd323f5222d1fa573afdcfd345b4019fd97
Analyzer Verdict Alert quad9 Sinkholed
GET /static/images/empty.jpg HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:05 GMT
content-type: image/jpeg
content-length: 46597
last-modified: Thu, 07 Apr 2022 12:02:06 GMT
etag: "624ed2be-b605"
expires: Fri, 06 Jan 2023 06:41:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.dxjyy124.xyz/static/images/sprite.gif
200 OK 55 B URL HTTP/2 www.dxjyy124.xyz/static/images/sprite.gif
IP
File type GIF image data, version 89a, 10 x 10\012- data
Hash 8647a09907f1a5c35a56aaf41e8e0132
b55547d0446299a57eed391407359d1378032a09
d16e2c8d92eb72e4b584790314f6ca14916e3d5ae9374358515429b5b999bd31
Analyzer Verdict Alert quad9 Sinkholed
GET /static/images/sprite.gif HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:05 GMT
content-type: image/gif
content-length: 55
last-modified: Thu, 30 Sep 2021 05:50:28 GMT
etag: "61555024-37"
expires: Fri, 06 Jan 2023 06:41:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
loadimg.cdn-xxx.com/images/gif/98.gif
200 OK 110 kB URL HTTP/2 loadimg.cdn-xxx.com/images/gif/98.gif
IP
File type GIF image data, version 89a, 350 x 350\012- data
Size 110 kB (109872 bytes)
Hash 91f76cb46bc896ad3b7dc09fecfa2811
cc7d36f91d8a4635e5b16c4a3ba603392e12ceff
012d186e1e2e62ee389aabd839cc5bad6f4367302215b33b60ff6434fbfad3d3
GET /images/gif/98.gif HTTP/1.1
Host: loadimg.cdn-xxx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/gif
content-length: 109872
last-modified: Sun, 04 Sep 2022 06:54:16 GMT
etag: "63144b98-1ad30"
expires: Fri, 25 Nov 2022 08:47:21 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1875066
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e2KQGBgdt1%2FKH7kBZmDRidutWESntWJoL%2FsEPbl5ZoZh96VA6VqvuTpkQFX3iXcG6zNbvUgxveGHN6UqEWMp75606bZpaqZduwIX%2FWyyiN5xvfP6k6aCuyrEV7NvKL8BkfTy9%2F5n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775b460f4b7474c1-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 36e3d5acc73bf1de335107c4501cfab1
e54b9b710c2ffe1275b98e0ce4d4183456413e13
ff669df32341f8bfb8952d62a10272fa1fd9286f5fc53308cd95ad4168537770
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "FF669DF32341F8BFB8952D62A10272FA1FD9286F5FC53308CD95AD4168537770"
Last-Modified: Mon, 05 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Wed, 07 Dec 2022 12:40:12 GMT
Date: Wed, 07 Dec 2022 06:41:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8e0e4b61c3b52531ff09a0f2f56cacbf
52c434d3b04a1cfdcc3122e3297e9d853b2d6f4b
c57a0f988ebb5417e87f56924ee3fe32496480e7fb43ebdedf52bc4f34db08da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57A0F988EBB5417E87F56924EE3FE32496480E7FB43EBDEDF52BC4F34DB08DA"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1561
Expires: Wed, 07 Dec 2022 07:07:07 GMT
Date: Wed, 07 Dec 2022 06:41:06 GMT
Connection: keep-alive
www.dxjyy124.xyz/static/images/hfyp.gif
200 OK 179 kB URL HTTP/2 www.dxjyy124.xyz/static/images/hfyp.gif
IP
File type GIF image data, version 89a, 960 x 240\012- data
Size 179 kB (178672 bytes)
Hash efee8a79540ee00db69bebdc99794192
d0065a17839693634546f59f1adcf59f8b4da39f
3a56867d2650ebcbaed66b0255e1752f0236284585167348be04fbd52aea4037
Analyzer Verdict Alert quad9 Sinkholed
GET /static/images/hfyp.gif HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:05 GMT
content-type: image/gif
content-length: 178672
last-modified: Fri, 18 Nov 2022 07:24:26 GMT
etag: "6377332a-2b9f0"
expires: Fri, 06 Jan 2023 06:41:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.dxjyy124.xyz/dingbu.html
200 OK 178 B URL HTTP/2 www.dxjyy124.xyz/dingbu.html
IP
File type HTML document, ASCII text
Hash 7a01b06409b6f8a214fef101490046aa
c912ac561ee6405b5865b6d84580635cd723db81
ad26f7f2e21816b94ec2153356e211d991f895150a04ed0cf13134eab9546bbc
Analyzer Verdict Alert quad9 Sinkholed
GET /dingbu.html HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: text/html
content-length: 178
last-modified: Sat, 03 Dec 2022 11:55:29 GMT
etag: "638b3931-b2"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/home.js
200 OK 11 kB URL HTTP/2 www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/home.js
IP
Hash 5c97dbe0c9ca54999df8f9cd9ffc4357
365090ee9aeec4bbff4563da37af1627a20d6358
e6e9467d5ff0f48c4e0613bd174dee772b146680bbd40bd8b101d49e755ae931
GET /template/RX@04dgr@r/static/henniu/home.js HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:05 GMT
content-type: application/javascript
last-modified: Thu, 30 Sep 2021 05:43:46 GMT
vary: Accept-Encoding
etag: W/"61554e92-994b"
expires: Wed, 07 Dec 2022 18:41:05 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.dxjyy124.xyz/smbaidu/yxf.js
200 OK 1.3 kB URL HTTP/2 www.dxjyy124.xyz/smbaidu/yxf.js
IP
Hash 9d28f1b5e4a3e8f5a510e194bdf77919
b5015e56a5fae2369ede8ca83a06b528c6cac5c1
c3430e546e5c122f30bb38b4d840fbd59fc1f3f5057e2237bd61f6fed8d7da42
Analyzer Verdict Alert quad9 Sinkholed
GET /smbaidu/yxf.js HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: application/javascript
last-modified: Tue, 06 Dec 2022 06:48:38 GMT
vary: Accept-Encoding
etag: W/"638ee5c6-69e"
expires: Wed, 07 Dec 2022 18:41:06 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c3fcffc4686136e6bd5dcc26a9806a01
970ccb7d5b98550d147273c1ab4b257113bf31fb
0fb32112568cbc2c3d549d9bd4e8c4deacec16d723b97885ee3729d3676e324b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FB32112568CBC2C3D549D9BD4E8C4DEACEC16D723B97885EE3729D3676E324B"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Wed, 07 Dec 2022 12:40:37 GMT
Date: Wed, 07 Dec 2022 06:41:06 GMT
Connection: keep-alive
ocsp.sectigo.com/
200 OK 471 B IP
Hash c211f13f7f9aa7bc3891d79ca88e2302
6c28b3f8d02de98df3a91851a21884589a8c03a3
aff24c20f574084fbcdefb18fb94709a9b1b34181bde8072e38eb7667baf73e9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 06:41:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 02:28:25 GMT
Expires: Sun, 11 Dec 2022 02:28:24 GMT
Etag: "6c28b3f8d02de98df3a91851a21884589a8c03a3"
Cache-Control: max-age=329837,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775b46105e5b0b41-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c3fcffc4686136e6bd5dcc26a9806a01
970ccb7d5b98550d147273c1ab4b257113bf31fb
0fb32112568cbc2c3d549d9bd4e8c4deacec16d723b97885ee3729d3676e324b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FB32112568CBC2C3D549D9BD4E8C4DEACEC16D723B97885EE3729D3676E324B"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21561
Expires: Wed, 07 Dec 2022 12:40:27 GMT
Date: Wed, 07 Dec 2022 06:41:06 GMT
Connection: keep-alive
www.dxjyy124.xyz/static/images/pngtree-icon-close-button-png-image_1357955.jpg
200 OK 9.2 kB URL HTTP/2 www.dxjyy124.xyz/static/images/pngtree-icon-close-button-png-image_1357955.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
Analyzer Verdict Alert quad9 Sinkholed
GET /static/images/pngtree-icon-close-button-png-image_1357955.jpg HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Thu, 30 Jun 2022 06:45:34 GMT
etag: "62bd468e-23ce"
expires: Fri, 06 Jan 2023 06:41:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash d241fb328305ed7d9011100b13e1a195
94473e0e4fa673a3a168c3f25b2b466efdde798a
a746919ea2ae3c62ab9667e87b1491bd449a7854e7fda3686e9770403c334b04
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 11 Dec 2022 05:58:33 GMT
ETag: "94473e0e4fa673a3a168c3f25b2b466efdde798a"
Last-Modified: Wed, 07 Dec 2022 05:58:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 07 Dec 2022 06:41:06 GMT
Age: 1749
X-Served-By: cache-qpg1231-QPG, cache-bma1663-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 12, 1
X-Timer: S1670395267.746100,VS0,VE1
ocsp.sectigo.com/
200 OK 471 B IP
Hash c211f13f7f9aa7bc3891d79ca88e2302
6c28b3f8d02de98df3a91851a21884589a8c03a3
aff24c20f574084fbcdefb18fb94709a9b1b34181bde8072e38eb7667baf73e9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 06:41:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 02:28:25 GMT
Expires: Sun, 11 Dec 2022 02:28:24 GMT
Etag: "6c28b3f8d02de98df3a91851a21884589a8c03a3"
Cache-Control: max-age=329837,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775b46105d00fac0-OSL
www.dxjyy124.xyz/static/images/0014.gif
200 OK 1.6 MB URL HTTP/2 www.dxjyy124.xyz/static/images/0014.gif
IP
File type GIF image data, version 89a, 300 x 300\012- data
Size 1.6 MB (1583966 bytes)
Hash 3285720fd270589ce38bcdebed53f5b5
0dd19db1385b075fb6dddfe77601e6c8c2b746bf
9f6ed1aac754f83ada40f1e6d4cfd0589defca5b143140f9aa8d626b243cea48
Analyzer Verdict Alert quad9 Sinkholed
GET /static/images/0014.gif HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:05 GMT
content-type: image/gif
content-length: 1583966
last-modified: Thu, 01 Dec 2022 12:34:22 GMT
etag: "63889f4e-182b5e"
expires: Fri, 06 Jan 2023 06:41:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.dxjyy124.xyz/template/RX@04dgr@r/static/images/010.gif
200 OK 490 kB URL HTTP/2 www.dxjyy124.xyz/template/RX@04dgr@r/static/images/010.gif
IP
File type GIF image data, version 89a, 960 x 160\012- data
Size 490 kB (490015 bytes)
Hash 922936542a621b4b8559d40a9ce225a3
cd1ecd6bcf1b2d9b61bf7e13af6c3be67e43be3c
15693ba94472c80449d43f20b8ef8ab3cbfcbf52d9fdf331609feaa1ad05caf4
GET /template/RX@04dgr@r/static/images/010.gif HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/dingbu.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/gif
content-length: 490015
last-modified: Sat, 03 Dec 2022 11:54:05 GMT
etag: "638b38dd-77a1f"
expires: Fri, 06 Jan 2023 06:41:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.dxjyy124.xyz/DXJ.png
200 OK 4.2 kB IP
File type PNG image data, 399 x 81, 4-bit colormap, non-interlaced\012- data
Hash 1d8ce1ae2e88160af2d6442a55c6ced0
8e56e18fda5cc79c78e04ba812a3553e6fe170a7
cf8a03743d5c4d4f947722af7df1b7ce4e21d45a8f7f34d0450d1b9221bb7828
Analyzer Verdict Alert quad9 Sinkholed
GET /DXJ.png HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/logo.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/png
content-length: 4237
last-modified: Tue, 13 Sep 2022 15:39:46 GMT
etag: "6320a442-108d"
expires: Fri, 06 Jan 2023 06:41:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash ce7432410fcd6bb1d50bc16a3fe43e13
2ad3a7ebe8e559fd2166575305c8ce4b8b6eb98e
8ed7f0508b748787ef2a99a3fba002dcc427c08e625dd692814bee1ca78c2923
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 11 Dec 2022 05:57:31 GMT
ETag: "2ad3a7ebe8e559fd2166575305c8ce4b8b6eb98e"
Last-Modified: Wed, 07 Dec 2022 05:57:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 07 Dec 2022 06:41:06 GMT
Age: 2614
X-Served-By: cache-qpg1233-QPG, cache-bma1679-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 22, 1
X-Timer: S1670395267.897650,VS0,VE1
zerossl.ocsp.sectigo.com/
200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP
Hash 853dbec9937f0a572cef3297cbf66520
8a27ab226f84e46795bc10d95714e5b075878f04
4e5ade82281820e652ac0b8af16258f5061386f7b9926ce41dbc376f82072a8d
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 06:41:07 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 23:09:48 GMT
Expires: Mon, 12 Dec 2022 23:09:47 GMT
Etag: "8a27ab226f84e46795bc10d95714e5b075878f04"
Cache-Control: max-age=490720,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775b461278250b65-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f9c760a65bc2208a8a1268feaba2b5cf
e7703ccdae4c66eeef3fff03c2dbbfd586b729b0
8c92c565e04b50aadd372b6dfc101b2f7e58302096235aa2918ffe22df566378
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8C92C565E04B50AADD372B6DFC101B2F7E58302096235AA2918FFE22DF566378"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3078
Expires: Wed, 07 Dec 2022 07:32:25 GMT
Date: Wed, 07 Dec 2022 06:41:07 GMT
Connection: keep-alive
sdk.51.la/js-sdk-pro.min.js
200 OK 13 kB URL HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (34110)
Hash 29243483fe441404931c046d27be80a6
92a0c68b0169eff0addb8cc05a53f6e009d41d47
4865f22b0a68c6a0a6c2d3cbedb9a190ffbea105c4f1e2a5806172919456f3b1
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Wed, 07 Dec 2022 06:41:07 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 15 Jul 2022 04:05:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"62d0e7a4-861a"
Cache-Control: max-age=1296000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash 2a42eee3908c61502eb0810ed400978b
653b75871c1a6dd1fef6c3a77b7274cb7d6df91e
33a243273986b710df85b5a85a10ab08cee03ca0c206850716d02c376f482759
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 11 Dec 2022 04:28:18 GMT
ETag: "653b75871c1a6dd1fef6c3a77b7274cb7d6df91e"
Last-Modified: Wed, 07 Dec 2022 04:28:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 07 Dec 2022 06:41:07 GMT
Age: 726
X-Served-By: cache-qpg1239-QPG, cache-bma1663-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 8, 1
X-Timer: S1670395267.951380,VS0,VE187
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash 2a42eee3908c61502eb0810ed400978b
653b75871c1a6dd1fef6c3a77b7274cb7d6df91e
33a243273986b710df85b5a85a10ab08cee03ca0c206850716d02c376f482759
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 11 Dec 2022 04:28:18 GMT
ETag: "653b75871c1a6dd1fef6c3a77b7274cb7d6df91e"
Last-Modified: Wed, 07 Dec 2022 04:28:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 07 Dec 2022 06:41:07 GMT
Age: 726
X-Served-By: cache-qpg1239-QPG, cache-bma1663-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 8, 2
X-Timer: S1670395267.156240,VS0,VE0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8763
Expires: Wed, 07 Dec 2022 09:07:10 GMT
Date: Wed, 07 Dec 2022 06:41:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19897
Expires: Wed, 07 Dec 2022 12:12:44 GMT
Date: Wed, 07 Dec 2022 06:41:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8763
Expires: Wed, 07 Dec 2022 09:07:10 GMT
Date: Wed, 07 Dec 2022 06:41:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8763
Expires: Wed, 07 Dec 2022 09:07:10 GMT
Date: Wed, 07 Dec 2022 06:41:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg
200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fb1ea0161d261518c99909aff49e6f58
c3b915cb579b651db25442fea0bbedd0d292c0fc
d877a21abfd883a368da0136c4e56d7f590fa9e9ea09dec3675823211fe56385
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6110
x-amzn-requestid: 2ebf542a-dacc-472a-81c0-0c69cb1ec143
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEQAH2doAMFljA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb3ff-7173ff7941b57fa163e3cc6b;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fxuPjC35VBDaymSCPY_iBxDnQY4CFHgolHSmnDhCRUjzw5UzY7ovA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 04:14:32 GMT
age: 8795
etag: "c3b915cb579b651db25442fea0bbedd0d292c0fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b92721cbe24623f1713a5248d6a7c1b2
3628390c62642dcc375b28f58c9b48180c4abd73
37d0451c03bc7cf0253aba6d3204cbf38502692a0fbc751a3ead01b07e9a65d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9613
x-amzn-requestid: 3542fd4f-74e3-450b-b7fc-04034d680bf4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cslIEEDtIAMFfuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e8233-40eaebed627d374d0910e456;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 23:43:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2aI7z8gOkQiNDlj2tbsoWibfupjl25ZjoO_QRbfmXQKwO-yF455yXg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 07:18:37 GMT
age: 84150
etag: "3628390c62642dcc375b28f58c9b48180c4abd73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d0219e6bee2a28f003f396f872eecf0
b3d22d146c6094cb539de40a72b9c5a140802ee5
41c1b037e8e654c19f36b74cceccd1fc841cc9fb7de39ac552ab5089dc3e82db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7609
x-amzn-requestid: 02299a39-6804-49ae-b415-313b6e06b2ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfj24G39oAMF25Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63894cf8-5f578e3f211063bd125b645a;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 00:55:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uMTaiFjrcbJxWm4M7BuSHPu0BFUMp9UIpMvnvlLs_dajlM0_iObY2A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:57:52 GMT
age: 31395
etag: "b3d22d146c6094cb539de40a72b9c5a140802ee5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9367069b-64ab-4e4d-b8c9-fa115e0681a9.jpeg
200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9367069b-64ab-4e4d-b8c9-fa115e0681a9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bdf4703f3372054a7aadce1cb0e11bd0
84d060f66accd412503d52c385ee47cb35795c07
c5853b653ee328e567e2456be12450e04c1704ed64fb6234f008532e4b6c8363
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9367069b-64ab-4e4d-b8c9-fa115e0681a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3744
x-amzn-requestid: 73eab74b-e50c-46d1-adde-3ef85fb772f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlj7FDiIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb618-70ffb1925e3a9ef6081d1cd1;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: F-LcglSz1NX1Q2t84r1dv0vQzONyYMhlGB6TdS6CeKf9I8Krk1mDUg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:41 GMT
etag: "84d060f66accd412503d52c385ee47cb35795c07"
content-type: image/jpeg
age: 31526
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a7ee62c5e846e8ad4808f4724f15146d
6d55b299f906908309f91eaf0a720ad65866db04
0d8f51d6f7f3bad4bb9d9c3000999739147f6dd718b290b0dca71a4cba85cb38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6846
x-amzn-requestid: 53452103-6559-460c-ac40-4685e6816aa4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGx4E-mIAMFatg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a5-5327ec9a2f247cc91654df80;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Znjnq24wuXoi43Bfc9aPdcUHhMh-a00hSCXUHFpHq3sTtQQoUYe6Uw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 07:29:49 GMT
age: 83478
etag: "6d55b299f906908309f91eaf0a720ad65866db04"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e3174edbfe337cc29266cc38abb51e
80283cb298a1b2326620be406ee3daa42ee0b3ef
520858a9d9540d5768988d0ebb04f0162ded5eb9cd8f4718989b033d04702111
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 3b64a1cf-0ad7-4ecf-a25e-ca65c06330ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csVFcECMoAMF1SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6889-42dde2da60f083383ab06b82;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:54:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z3yEknYzqJG3oEe-t3nxHYkDXSYGdWkRdbB1V4ixYcJjV5DjxzLzEA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 09:19:50 GMT
age: 76877
etag: "80283cb298a1b2326620be406ee3daa42ee0b3ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 727 B IP
Hash a1c0dfa2ec40eb71b23dbef88feffb84
294b797bee53778344c562b33b93d41cfff3c713
74e8ee08b3031000de45647164cc31d1e4ca2794a6ff12e8531adc25190378be
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=86141
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:41:07 GMT
Etag: "638ee300-2d7"
Expires: Thu, 08 Dec 2022 06:36:48 GMT
Last-Modified: Tue, 06 Dec 2022 06:36:48 GMT
Server: nginx
Content-Length: 727
taiwtp1.com/img/200200.gif
200 OK 75 kB URL HTTP/2 taiwtp1.com/img/200200.gif
IP
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 200 x 200\012- data
Hash 03c13356e00c2033df2c88cb919251eb
f3a334a0366ddda6a87034f7d6c889c4d159dc8d
0c184e206259e8d0c54d3fc12d3d5332e9f6ff5f0404630fcb2daefe65fe1bfe
GET /img/200200.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:38:35 GMT
content-type: image/gif
content-length: 75259
last-modified: Wed, 09 Mar 2022 04:51:10 GMT
etag: "6228323e-125fb"
expires: Fri, 06 Jan 2023 06:38:35 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.firefoxcartoon.com/image/a9.gif
200 OK 32 kB URL HTTP/2 img.firefoxcartoon.com/image/a9.gif
IP
File type GIF image data, version 89a, 80 x 80\012- data
Hash de948955b8e6d65433eb907119bf18c8
28696320fefa6fe75cd4d23965be6ed184a913c3
f7f9f85b540b478227170770328ae067b159c9d7c9eb0c08a291d687463041fc
GET /image/a9.gif HTTP/1.1
Host: img.firefoxcartoon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/gif
content-length: 32370
last-modified: Thu, 21 Jul 2022 11:37:06 GMT
etag: "62d93a62-7e72"
expires: Fri, 06 Jan 2023 06:41:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.firefoxcartoon.com/image/202.gif
200 OK 14 kB URL HTTP/2 img.firefoxcartoon.com/image/202.gif
IP
File type GIF image data, version 89a, 120 x 120\012- data
Hash 380d2a538e661645a65fcc38f3f996cb
c6830ee1a1241d88941d79b6a08ba6e7309ad7cc
ff06350bafb5d7d3f580a67171254416d2f358791bb85922a7603ef7e1cb6e0b
GET /image/202.gif HTTP/1.1
Host: img.firefoxcartoon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/gif
content-length: 13987
last-modified: Mon, 14 Nov 2022 10:58:35 GMT
etag: "63721f5b-36a3"
expires: Fri, 06 Jan 2023 06:41:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.firefoxcartoon.com/image/a6.gif
200 OK 253 kB URL HTTP/2 img.firefoxcartoon.com/image/a6.gif
IP
File type GIF image data, version 89a, 120 x 120\012- data
Size 253 kB (252949 bytes)
Hash 7171cfea1cf96b0008296a127c03deb7
74fe57752752cbb12a6768eff807d15622560aa0
76f12223e3483c523839c89116f38c6719c9a46e7251bd561188f38b8265fcec
GET /image/a6.gif HTTP/1.1
Host: img.firefoxcartoon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/gif
content-length: 252949
last-modified: Thu, 21 Jul 2022 11:37:50 GMT
etag: "62d93a8e-3dc15"
expires: Fri, 06 Jan 2023 06:41:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dcc3c1a0c6561cb4d96145f0b2a22d1d
54ee4bdd7be30dc2acf0742b4c588b7e1c04e72c
c9eedd55fced89362e5bcaaaa8067a8e2968b9d09e80ead4e70848113e54b505
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9EEDD55FCED89362E5BCAAAA8067A8E2968B9D09E80EAD4E70848113E54B505"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3097
Expires: Wed, 07 Dec 2022 07:32:44 GMT
Date: Wed, 07 Dec 2022 06:41:07 GMT
Connection: keep-alive
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 06808446bf5b9b45befba1e254940809
79d13de72b3886e1c43a7fb10f380eb8a49f6628
9de994106e7363480cfb3f19281bb08dcf776d7f92ef23c57781e79eaa69b21f
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 11 Dec 2022 03:26:11 GMT
ETag: "79d13de72b3886e1c43a7fb10f380eb8a49f6628"
Last-Modified: Wed, 07 Dec 2022 03:26:12 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 07 Dec 2022 06:41:08 GMT
Age: 3137
X-Served-By: cache-qpg1274-QPG, cache-bma1679-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 17, 1
X-Timer: S1670395268.041288,VS0,VE1
www.se-app.cc/static11s/picture/0001.gif
200 OK 297 kB URL HTTP/2 www.se-app.cc/static11s/picture/0001.gif
IP
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 300 x 300\012- data
Size 297 kB (297139 bytes)
Hash fb706fd89ae589086d0d88b5063244ff
777dc37837fc04b79a80c97b5e01df84a77ec239
1d153c21de679c2cbb26b65553cb10800918eafb5dc1e28e5bbc887df9fe9619
GET /static11s/picture/0001.gif HTTP/1.1
Host: www.se-app.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/gif
content-length: 297139
last-modified: Wed, 25 May 2022 05:16:03 GMT
etag: "628dbb93-488b3"
expires: Fri, 06 Jan 2023 06:41:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.se-app.cc/static11s/picture/914.gif
200 OK 269 kB URL HTTP/2 www.se-app.cc/static11s/picture/914.gif
IP
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 120 x 120\012- data
Size 269 kB (269177 bytes)
Hash 3be5bc895ae3e525bbcfbb2a2696ed0f
1f3d2c548412b47b65acf224f1a6b7bf89dcf876
59c730a313db642dd842aad1586e7d3a29dabe14be7404a1cd0a0d25138e669c
GET /static11s/picture/914.gif HTTP/1.1
Host: www.se-app.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/gif
content-length: 269177
last-modified: Sun, 05 Dec 2021 03:18:52 GMT
etag: "61ac2f9c-41b79"
expires: Fri, 06 Jan 2023 06:41:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
8499483.com/8499/960x80.gif
200 OK 421 kB URL HTTP/2 8499483.com/8499/960x80.gif
IP
File type GIF image data, version 89a, 960 x 80\012- data
Size 421 kB (421071 bytes)
Hash 41fc4b2f1acf5b50b851104423f2d6c4
27a1bf7990c02235227ebda30ddfee1aeb4e33db
c49449d823452f844a67cda8057f6d3896f977a92a4d8de62707a9f218291ce0
GET /8499/960x80.gif HTTP/1.1
Host: 8499483.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:41:07 GMT
content-type: image/gif
content-length: 421071
last-modified: Wed, 09 Nov 2022 06:22:39 GMT
etag: "66ccf-5ed03aef43c05"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
mt66g.com/image/960X160-1.gif
200 OK 210 kB URL HTTP/2 mt66g.com/image/960X160-1.gif
IP
File type GIF image data, version 89a, 960 x 160\012- data
Size 210 kB (209562 bytes)
Hash e42537f39970a680706efec4d24379a3
834a6cbafe7f6743bd823ec5a7acdbbba90f237d
8ec6c208b1375d57c8dda661fb095de6daae0e15c4f34998064837fcfd269dc1
GET /image/960X160-1.gif HTTP/1.1
Host: mt66g.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:41:07 GMT
content-type: image/gif
content-length: 209562
last-modified: Thu, 06 Oct 2022 07:58:15 GMT
etag: "633e8a97-3329a"
expires: Fri, 06 Jan 2023 04:37:34 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?50a05674b1caecdee6d4f03c0f24301c
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?50a05674b1caecdee6d4f03c0f24301c
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (622)
Hash 955540736b3e6fb444570475bb60469c
58f2ef914183cf587ba7b3415b9042576e1145a3
de3f24151e4ef372efad5d7125a73f96f5753cf66cc2405dc6e4a46ddb8a047d
GET /hm.js?50a05674b1caecdee6d4f03c0f24301c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11260
Content-Type: application/javascript
Date: Wed, 07 Dec 2022 06:41:08 GMT
Etag: 4f17cafa1714cb870fe33a5229214edb
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=17F299C7C3E2B350; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
img.firefoxcartoon.com/image/22cc.gif
200 OK 840 kB URL HTTP/2 img.firefoxcartoon.com/image/22cc.gif
IP
File type GIF image data, version 89a, 128 x 128\012- data
Size 840 kB (840352 bytes)
Hash 367441fd0f9cc373d70d8fc69e97d46a
fb39591de5c3e2692f952801ffb34e88f4765c47
b22f3ed319624e493ebe8e41e7ef367fe86e9bc5b0ddbcc22d1ab75deafe05a3
GET /image/22cc.gif HTTP/1.1
Host: img.firefoxcartoon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/gif
content-length: 840352
last-modified: Sun, 23 Oct 2022 07:47:52 GMT
etag: "6354f1a8-cd2a0"
expires: Fri, 06 Jan 2023 06:41:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.firefoxcartoon.com/image/im4.webp
200 OK 362 kB URL HTTP/2 img.firefoxcartoon.com/image/im4.webp
IP
File type GIF image data, version 89a, 156 x 156\012- data
Size 362 kB (362153 bytes)
Hash 3906b55b535728017f6f334a34c2a4ed
7881c601a56f4f58c7c73c1cbb41431886bd9b0c
9bf1372b607e5ed48897c858929729d40c3c7a90999634ed0c50de9e149f36ce
GET /image/im4.webp HTTP/1.1
Host: img.firefoxcartoon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/webp
content-length: 362153
last-modified: Mon, 14 Nov 2022 08:14:17 GMT
etag: "6371f8d9-586a9"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.firefoxcartoon.com/image/a7.gif
200 OK 1.3 MB URL HTTP/2 img.firefoxcartoon.com/image/a7.gif
IP
File type GIF image data, version 89a, 200 x 200\012- data
Size 1.3 MB (1264586 bytes)
Hash 24276ed40d33cdc7c91be6aee4a5c649
406a93691820e9768a0190f7a216c61b939ce22c
e6ed2d7c48fa4150292f76a06067d50597c16e7f402b030c9d2d22d8540ff733
GET /image/a7.gif HTTP/1.1
Host: img.firefoxcartoon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/gif
content-length: 1264586
last-modified: Thu, 21 Jul 2022 11:37:53 GMT
etag: "62d93a91-134bca"
expires: Fri, 06 Jan 2023 06:41:06 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=435654157&si=50a05674b1caecdee6d4f03c0f24301c&v=1.3.0&lv=1&sn=39189&r=0&ww=1280&u=https%3A%2F%2Fwww.dxjyy124.xyz%2F&tt=%F0%9F%8D%8C%E9%A6%99%E8%95%89%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E5%BD%B1%E8%A7%86%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E5%BD%B1%E5%BA%93%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E8%A7%86%E9%A2%91%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E5%BD%B1%E9%99%A2%20-%F0%9F%8D%8C%20D%20X%20J%20Y%20Y%20.%20X%20Y%20Z%F0%9F%8D%8C
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=435654157&si=50a05674b1caecdee6d4f03c0f24301c&v=1.3.0&lv=1&sn=39189&r=0&ww=1280&u=https%3A%2F%2Fwww.dxjyy124.xyz%2F&tt=%F0%9F%8D%8C%E9%A6%99%E8%95%89%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E5%BD%B1%E8%A7%86%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E5%BD%B1%E5%BA%93%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E8%A7%86%E9%A2%91%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E5%BD%B1%E9%99%A2%20-%F0%9F%8D%8C%20D%20X%20J%20Y%20Y%20.%20X%20Y%20Z%F0%9F%8D%8C
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=435654157&si=50a05674b1caecdee6d4f03c0f24301c&v=1.3.0&lv=1&sn=39189&r=0&ww=1280&u=https%3A%2F%2Fwww.dxjyy124.xyz%2F&tt=%F0%9F%8D%8C%E9%A6%99%E8%95%89%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E5%BD%B1%E8%A7%86%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E5%BD%B1%E5%BA%93%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E8%A7%86%E9%A2%91%2C%F0%9F%8D%8C%E5%A4%A7%E9%A6%99%E8%95%89%E5%BD%B1%E9%99%A2%20-%F0%9F%8D%8C%20D%20X%20J%20Y%20Y%20.%20X%20Y%20Z%F0%9F%8D%8C HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 07 Dec 2022 06:41:09 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E2FE93C1FB5E0968; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
img.firefoxcartoon.com/image/im8.webp
200 OK 1.3 MB URL HTTP/2 img.firefoxcartoon.com/image/im8.webp
IP
File type GIF image data, version 89a, 225 x 225\012- data
Size 1.3 MB (1324517 bytes)
Hash 570ead008ba41f4b6dbda76cd5f4f928
d7f99ac7f3a3c7b4b2bbb11b73f28c5487171829
7a911fb4c82c82d2fd0afcf9fc87a282157aec861cc197e1e0fcc5a940f57c5b
GET /image/im8.webp HTTP/1.1
Host: img.firefoxcartoon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: image/webp
content-length: 1324517
last-modified: Mon, 14 Nov 2022 08:14:21 GMT
etag: "6371f8dd-1435e5"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.dxjyy124.xyz/favicon.ico
200 OK 4.3 kB URL HTTP/2 www.dxjyy124.xyz/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash c746760d1b6445f4903901ebb54861f9
f66b94cb3918213cbd0f9626d2e1b890806eb609
45b9e1a125421cfd27d4fedbd633a4c3b4039033e147b8532e2a7a40fe3cdd1c
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Cookie: __vtins__JoWb8Uil4MsSg6VE=%7B%22sid%22%3A%20%22ca5e1e21-a8bc-55d0-b6ad-41fb8ffa0c5d%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201670397066808%2C%20%22ct%22%3A%201670395266808%7D; __51uvsct__JoWb8Uil4MsSg6VE=1; __51vcke__JoWb8Uil4MsSg6VE=4ea26681-ebe6-5db5-bf09-1fe155d720a5; __51vuft__JoWb8Uil4MsSg6VE=1670395266816; Hm_lvt_50a05674b1caecdee6d4f03c0f24301c=1670395269; Hm_lpvt_50a05674b1caecdee6d4f03c0f24301c=1670395269
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:10 GMT
content-type: image/x-icon
content-length: 4286
last-modified: Tue, 13 Sep 2022 15:38:39 GMT
etag: "6320a3ff-10be"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
p9.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/dcadd199aa5e4cb291ed40729e0fa5a9~noop.image
200 OK 807 kB URL HTTP/2 p9.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/dcadd199aa5e4cb291ed40729e0fa5a9~noop.image
IP
File type GIF image data, version 89a, 400 x 420\012- data
Size 807 kB (806826 bytes)
Hash ce6a32bc15190689f6891ff7973e913f
99a64f0bdb4351f86032d9b1c9d9079ea6667cc8
18cdc10ae1ad7de191dd2adc346add24ded8e35c69f25a63bb91c928fe837331
GET /img/tos-cn-i-siecs4i2o7/dcadd199aa5e4cb291ed40729e0fa5a9~noop.image HTTP/1.1
Host: p9.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 806826
date: Mon, 25 Jul 2022 09:10:29 GMT
server: nginx
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 31 Mar 2022 10:03:03 GMT
nw-session-id: 2022033118030201019409901840A77C0Endgts03la
nw-session-trace: 2022-03-31T18:03:03.257713369+08:00 344
x-bdcdn-cache-status: TCP_HIT
x-length: 806826
x-powered-by: ImageX
x-response-date: Thu, 31 Mar 2022 18:03:03 GMT
x-tt-logid: 2022033118030201019409901840A77C0E
x-tt-trace-tag: id=09;cdn-cache=hit;type=static
x-response-lb: image
x-ser: BC177_dx-lt-yd-zhejiang-jinhua-12-cache-13, BC177_dx-lt-yd-zhejiang-jinhua-12-cache-13, BC6_US-Michigan-chieago-1-cache-1, BC102_US-Colorado-Denver-1-cache-1
x-cache: HIT from BC102_US-Colorado-Denver-1-cache-1(baishan)
server-timing: cdn-cache;desc=HIT,edge;dur=1
access-control-allow-origin: *
timing-allow-origin: *
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
X-Firefox-Spdy: h2
rootnetworksdv.ocsp-certum.com/
200 OK 1.5 kB URL HTTP/1.1 rootnetworksdv.ocsp-certum.com/
IP
ASN #20940 Akamai International B.V.
Hash d23493626da8aa44bdc2ce2f53b88634
1f44628698f1ff3beb8c510c0a4d0480651b3774
38e4b16a97cd177d58e47e85f716a228cdcb6fa3856c508409f7210a9b06eccc
POST / HTTP/1.1
Host: rootnetworksdv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1490
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=435
Date: Wed, 07 Dec 2022 06:41:10 GMT
Connection: keep-alive
X-N: S
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash c132c2022e1f3efece900a0c4be00604
f45ccafcde7425ca77b8b68e739a18653e492944
4c370b1e7b0f227b81af916671ee1a2f13a94923bcb1fa31e9212c1641692610
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 11 Dec 2022 06:05:14 GMT
ETag: "f45ccafcde7425ca77b8b68e739a18653e492944"
Last-Modified: Wed, 07 Dec 2022 06:05:15 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 07 Dec 2022 06:41:11 GMT
Age: 0
X-Served-By: cache-qpg1245-QPG, cache-bma1679-BMA
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1670395271.079798,VS0,VE210
ocsp.digicert.com/
200 OK 727 B IP
Hash 1316779cbea735811b67a74c57ef2907
05768e3d409c2a911eecb4dbc6bdc1fca3799ac1
4082d0b08d2aac27b5b51871367802dceedff628f851b1f028649c89e436a418
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=109540
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:41:13 GMT
Etag: "638f3e6d-2d7"
Expires: Thu, 08 Dec 2022 13:06:53 GMT
Last-Modified: Tue, 06 Dec 2022 13:06:53 GMT
Server: nginx
Content-Length: 727
kkkkyle.oss-cn-hangzhou.aliyuncs.com/250x250.gif
200 OK 0 B URL HTTP/1.1 kkkkyle.oss-cn-hangzhou.aliyuncs.com/250x250.gif
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
GET /250x250.gif HTTP/1.1
Host: kkkkyle.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 07 Dec 2022 06:41:07 GMT
Content-Type: image/gif
Content-Length: 255424
Connection: keep-alive
x-oss-request-id: 63903583818A313437FF1FE9
Accept-Ranges: bytes
ETag: "B153906387D6A826EF20FBA234889900"
Last-Modified: Mon, 03 Oct 2022 13:45:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7820142102547500808
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: sVOQY4fWqCbvIPuiNIiZAA==
x-oss-server-time: 3
www.dxjyy124.xyz/
200 OK 0 B IP
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
cdn-xinghuatupian-cdn.com/xh/200x200.gif
200 OK 0 B URL HTTP/2 cdn-xinghuatupian-cdn.com/xh/200x200.gif
IP
GET /xh/200x200.gif HTTP/1.1
Host: cdn-xinghuatupian-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:41:07 GMT
content-type: image/gif
content-length: 173918
last-modified: Sun, 02 Oct 2022 06:51:55 GMT
etag: "6339350b-2a75e"
expires: Fri, 06 Jan 2023 02:57:34 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.dxjyy124.xyz/static/fonts/voltaire.woff
404 Not Found 0 B URL HTTP/2 www.dxjyy124.xyz/static/fonts/voltaire.woff
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /static/fonts/voltaire.woff HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
X-Firefox-Spdy: h2
kjimg10.360buyimg.com/ott/jfs/t1/100541/13/34425/1368366/6380d2c7E557223e9/c7ab328a6bf1c202.gif
200 OK 0 B URL HTTP/2 kjimg10.360buyimg.com/ott/jfs/t1/100541/13/34425/1368366/6380d2c7E557223e9/c7ab328a6bf1c202.gif
IP
ASN #38283 CHINANET SiChuan Telecom Internet Data Center
GET /ott/jfs/t1/100541/13/34425/1368366/6380d2c7E557223e9/c7ab328a6bf1c202.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:11 GMT
content-type: image/gif
content-length: 1368366
cache-control: max-age=315360000
expires: Mon, 22 Nov 2032 14:53:07 GMT
last-modified: Fri, 25 Nov 2022 14:35:51 GMT
age: 1007284
via: http/1.1 ORI-CLOUD-HUN-MIX-37 (jcs [cRs f ]), http/1.1 SCchengdu-CT-11-MIX-27 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1669387987433-0-0-15-60-60;200;200-1669452082653-0-0-0-1-1;200-1670395271401-0-0-0-1-1
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/PiajxSqBRaEJ9B4UlyASnW3oH3MPQFqEtXG2iaiak1YbXWyQMiaSmBJTfEBVEF1bXCbbRK75uKZFyGQ/0
200 OK 0 B URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaEJ9B4UlyASnW3oH3MPQFqEtXG2iaiak1YbXWyQMiaSmBJTfEBVEF1bXCbbRK75uKZFyGQ/0
IP
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /qqmail_head/PiajxSqBRaEJ9B4UlyASnW3oH3MPQFqEtXG2iaiak1YbXWyQMiaSmBJTfEBVEF1bXCbbRK75uKZFyGQ/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 07 Dec 2022 06:41:07 GMT
content-type: image/gif
content-length: 421071
vary: Accept,Origin
last-modified: Sat, 12 Nov 2022 14:19:32 GMT
cache-control: max-age=2592000
x-delay: 60813 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 421071
chid: 0
fid: 0
x-nws-log-uuid: d0e90f86-fe6c-40f6-976b-3ae22070395f
X-Firefox-Spdy: h2
www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/style.css
200 OK 0 B URL HTTP/2 www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/style.css
IP
GET /template/RX@04dgr@r/static/henniu/style.css HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:05 GMT
content-type: text/css
last-modified: Wed, 14 Sep 2022 07:59:07 GMT
vary: Accept-Encoding
etag: W/"632189cb-56b1"
expires: Wed, 07 Dec 2022 18:41:05 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.dxjyy124.xyz/static/fonts/voltaire.woff
404 Not Found 0 B URL HTTP/2 www.dxjyy124.xyz/static/fonts/voltaire.woff
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /static/fonts/voltaire.woff HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 07 Dec 2022 06:41:06 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/jquery.base.js
200 OK 0 B URL HTTP/2 www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/jquery.base.js
IP
GET /template/RX@04dgr@r/static/henniu/jquery.base.js HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:05 GMT
content-type: application/javascript
last-modified: Thu, 30 Sep 2021 05:43:08 GMT
vary: Accept-Encoding
etag: W/"61554e6c-1917"
expires: Wed, 07 Dec 2022 18:41:05 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/jquery.autocomplete.js
200 OK 0 B URL HTTP/2 www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/jquery.autocomplete.js
IP
GET /template/RX@04dgr@r/static/henniu/jquery.autocomplete.js HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:05 GMT
content-type: application/javascript
last-modified: Thu, 30 Sep 2021 05:40:42 GMT
vary: Accept-Encoding
etag: W/"61554dda-64a0"
expires: Wed, 07 Dec 2022 18:41:05 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/jquery.superslide.js
200 OK 0 B URL HTTP/2 www.dxjyy124.xyz/template/RX@04dgr@r/static/henniu/jquery.superslide.js
IP
GET /template/RX@04dgr@r/static/henniu/jquery.superslide.js HTTP/1.1
Host: www.dxjyy124.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dxjyy124.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:41:05 GMT
content-type: application/javascript
last-modified: Thu, 30 Sep 2021 05:41:32 GMT
vary: Accept-Encoding
etag: W/"61554e0c-2506"
expires: Wed, 07 Dec 2022 18:41:05 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
173.231.38.153
220.128.218.220
93.184.220.29
103.235.46.191
23.36.79.17
47.110.23.111
188.114.96.1
104.21.233.158