GET kh7521.xm17208549.com/hall/api/active/tasks/newcomer_benefit_reward/default.json
200 OK 128 B URL GET kh7521.xm17208549.com/hall/api/active/tasks/newcomer_benefit_reward/default.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with no line terminators
Hash a7e834b36efd8329edea3806050f73eb
967463866812b79bf531e0654d954aafa8d2488b
cca25d512e0297ff987b6fe7f235404259a89e026ce4fc3e31a2468b7732ceb4
GET /hall/api/active/tasks/newcomer_benefit_reward/default.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-md5: p+g0s279gynt6jgGBQ9z6w==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:13 GMT
etag: "A7E834B36EFD8329EDEA3806050F73EB"
last-modified: Sun, 22 Jun 2025 21:10:33 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 17088091697560141252
x-oss-object-type: Normal
x-oss-request-id: 68587CED81C2E1445DCCB110
x-oss-server-time: 2
x-oss-storage-class: Standard
content-length: 128
X-Firefox-Spdy: h2
GET mu1l01-1798-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1917503833254068225.png
200 OK 26 kB URL GET mu1l01-1798-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1917503833254068225.png
IP
ASN #45102 Alibaba US Technology Co., Ltd.
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGlobalSign nv-sa
Subject*.oss-eu-central-1.aliyuncs.com
Fingerprint82:9E:ED:B3:E5:61:6D:0D:52:77:3B:4A:1E:DF:68:54:AE:39:DA:01
ValidityTue, 06 May 2025 02:12:11 GMT - Tue, 03 Feb 2026 06:31:07 GMT
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced
Hash 75573c6d6b2095b7024d558b73532139
b3ac30a96889ce0ec0d0a517b295889482cfe37c
b4091d621e35ab254f657d205ef6cc2c15c0c099e0aafe707fa212337fb92300
GET /siteadmin/upload/img/1917503833254068225.png HTTP/1.1
Host: mu1l01-1798-ppp.oss-accelerate.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 22 Jun 2025 22:00:13 GMT
Content-Type: image/png
Content-Length: 25638
Connection: keep-alive
x-oss-request-id: 68587CEC4C216D319BC58F5B
Vary: Origin
Accept-Ranges: bytes
ETag: "75573C6D6B2095B7024D558B73532139"
Last-Modified: Wed, 30 Apr 2025 08:58:34 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14408503770963039036
x-oss-storage-class: Standard
Cache-Control: max-age=86400
x-oss-ec: 0048-00000111
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: dVc8bWsglbcCTVWLc1MhOQ==
x-oss-server-time: 1
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/polyfills.BHSyO4m2.js
200 OK 107 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/polyfills.BHSyO4m2.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size 107 kB (107348 bytes)
Hash 80f44369387fbf348c307b898dc17cea
cf7226dad725bd4bfd9a11994bececea68039ad9
642862b37720cc8ccddd7bb6d29063ed82b6917dace36c912d160cb6cab2939b
GET /assets/theme-2/polyfills.BHSyO4m2.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:07 GMT
Content-Type: text/javascript
Content-Length: 107348
Connection: keep-alive
x-oss-request-id: 68587CE760F73339306AE751
Vary: Origin
Accept-Ranges: bytes
ETag: "80F44369387FBF348C307B898DC17CEA"
Last-Modified: Thu, 19 Jun 2025 02:20:41 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 783434674072933269
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
Cache-Control: max-age=31622400
Content-MD5: gPRDaTh/vzSMMHuJjcF86g==
x-oss-server-time: 2
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-.9Fs140A-.css
200 OK 5.0 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-.9Fs140A-.css
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type ASCII text, with very long lines (4825)
Hash 8395a0b3f19348fc7b95730e067db432
7d158911a42cd013eafe911b7cb84d9d8864c604
04dd101d3a1ffe31667e4783be95a4e21a9095446541c2ec5d913c903497aad0
GET /assets/vendors/vendor-.9Fs140A-.css HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
x-oss-request-id: 68587CE836F3BB30380FF989
Vary: Accept-Encoding, Origin
Last-Modified: Tue, 17 Jun 2025 07:16:25 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7487077606416589971
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
Cache-Control: max-age=31622400
Content-MD5: g5Wgs/GTSPx7lXMOBn20Mg==
x-oss-server-time: 2
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET kh7521.xm17208549.com/hall/api/lobby/site/getSiteInfo/language/zh.json
200 OK 4.4 kB URL GET kh7521.xm17208549.com/hall/api/lobby/site/getSiteInfo/language/zh.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (4396), with no line terminators
Hash 3c58fad3b529584825a2ad6e1d3a029b
a6241458d50dee326cf34018465286fb67008ae1
942a9fb827f3e3c429e85fc55680f9595099f4a94d224ef7d46ebcad1c2c87e5
GET /hall/api/lobby/site/getSiteInfo/language/zh.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,public,max-age=0
content-disposition: attachment
content-encoding: gzip
content-md5: PFj607UpWEgloq1uHToCmw==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:12 GMT
last-modified: Sat, 21 Jun 2025 19:11:37 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 16863301239844778393
x-oss-object-type: Normal
x-oss-request-id: 68587CEC2599E09E82F4540A
x-oss-server-time: 2
x-oss-storage-class: Standard
content-length: 3389
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/siteadmin/ssocdn.txt
200 OK 2 B URL GET kh7521.xm17208549.com/siteadmin/ssocdn.txt
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with no line terminators
Hash a60852f204ed8028c1c58808b746d115
b0a98216a32426b9e66a4ac1eb6df2e96e1b495c
843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=86400
content-disposition: attachment
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
content-type: text/plain
date: Sun, 22 Jun 2025 22:00:14 GMT
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Wed, 23 Apr 2025 12:36:16 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-object-type: Normal
x-oss-request-id: 68587CEE6971B071CAC3CEEC
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 2
X-Firefox-Spdy: h2
GET hgkgkhgk12.xm26045917.com/siteadmin/ssocdn.txt
200 OK 2 B URL GET hgkgkhgk12.xm26045917.com/siteadmin/ssocdn.txt
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjecthgkgkhgk12.xm26045917.com
FingerprintEC:8F:F1:14:D3:0E:F8:C7:A8:9A:7E:16:CF:0E:B0:A7:8A:F3:F9:8D
ValiditySun, 08 Jun 2025 05:46:55 GMT - Sat, 06 Sep 2025 05:46:54 GMT
File type ASCII text, with no line terminators
Hash a60852f204ed8028c1c58808b746d115
b0a98216a32426b9e66a4ac1eb6df2e96e1b495c
843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: hgkgkhgk12.xm26045917.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=86400
content-disposition: attachment
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
content-type: text/plain
date: Sun, 22 Jun 2025 22:00:15 GMT
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Wed, 23 Apr 2025 12:36:16 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-object-type: Normal
x-oss-request-id: 68587CEF4C216D319BC594A8
x-oss-server-time: 0
x-oss-storage-class: Standard
content-length: 2
X-Firefox-Spdy: h2
GET a.kimiao.xyz/caddy/visit/start?ent_id=7b40686c68f3d9f265b3885557578e2b&track_id=&title=Welcome+to+%E6%98%9F%E6%A2%A6%E5%A8%B1%E4%B9%90-%E5%AE%98%E6%96%B9%E7%9B%B4%E8%90%A5-651.Vip&referrer_url=&url=https:%2F%2Fupa9328f.japaneast.cloudapp.azure.com:20003%2Fhome%2Fregister%3Fid%3D353100632%26currency%3DCNY&is_standalone=false
200 OK 78 kB URL GET a.kimiao.xyz/caddy/visit/start?ent_id=7b40686c68f3d9f265b3885557578e2b&track_id=&title=Welcome+to+%E6%98%9F%E6%A2%A6%E5%A8%B1%E4%B9%90-%E5%AE%98%E6%96%B9%E7%9B%B4%E8%90%A5-651.Vip&referrer_url=&url=https:%2F%2Fupa9328f.japaneast.cloudapp.azure.com:20003%2Fhome%2Fregister%3Fid%3D353100632%26currency%3DCNY&is_standalone=false
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGoogle Trust Services
Subjecta.kimiao.xyz
FingerprintD4:B6:7B:9C:EA:A0:69:3D:38:79:07:08:92:0A:EE:53:B2:D5:1C:7D
ValidityMon, 12 May 2025 03:37:39 GMT - Sun, 10 Aug 2025 04:37:35 GMT
File type Unicode text, UTF-8 text, with very long lines (57509), with no line terminators
Hash 7be1bf5fbf78d174737e126fa43e24d8
ead4aebce43d0bf509dfd7b58eea1ac1d4694145
a8a9e36cd3585a2f96eeca94e2fb1d737dc99098af238070f7d6d92efc39546e
GET /caddy/visit/start?ent_id=7b40686c68f3d9f265b3885557578e2b&track_id=&title=Welcome+to+%E6%98%9F%E6%A2%A6%E5%A8%B1%E4%B9%90-%E5%AE%98%E6%96%B9%E7%9B%B4%E8%90%A5-651.Vip&referrer_url=&url=https:%2F%2Fupa9328f.japaneast.cloudapp.azure.com:20003%2Fhome%2Fregister%3Fid%3D353100632%26currency%3DCNY&is_standalone=false HTTP/1.1
Host: a.kimiao.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Is-Standalone: false
X-Is-Qiabot-Domain: undefined
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:15 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r73mbwA1Ov2igMeNSoT57PG8fXDQaf%2B0L35GWVu22MwhqGIwAgr%2F5PsVK1HgVI%2FJfkLCAhC6zcVkE2z%2BP1A1JjFDaXI79hyqMhJT9sS1jDoYRYexi2roMRik5jkEOTQ%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: br
server: cloudflare
cf-cache-status: DYNAMIC
access-control-allow-origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-expose-headers: *
access-control-max-age: 300
req-arrive-time: 1750629614895
req-cost-time: 57
resp-start-time: 1750629614952
x-envoy-upstream-service-time: 57
cf-ray: 953f0473df57568a-OSL
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/home/register?id=353100632¤cy=CNY
200 OK 79 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/home/register?id=353100632¤cy=CNY
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (63013), with no line terminators
Hash e06780daf950cfe90b23ee8eda5fc873
afda52e8b6ac7ab7383eefcd24276dbbeb21e90e
4121432420010e5e1edaab5526355db5d57efb2f8236350dd46962c4544ea275
GET /home/register?id=353100632¤cy=CNY HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/home/register?id=353100632¤cy=CNY
DNT: 1
Connection: keep-alive
Cookie: web__lobby__persisted__device=%7B%22uuid%22%3A%222a8d7a53-5e28-49c4-b147-9c169a02061e%22%7D; web__lobby__persisted__user=%7B%22userInfos%22%3A%7B%22game_gold%22%3A2000%2C%22account_type%22%3A1%2C%22platfromid%22%3A%22web_lobby_guest_account%22%2C%22mode%22%3A0%2C%22currency%22%3A%22CNY%22%7D%7D; gt_local_id=Hn8rZPXUWvT6sr8eMXO6UHQDfLlda0hqhXBRA/XV6Wjd2a1UuNMIwA==; WIDGET_TRACK_ID=2ysiK8ux6zSjYrXuI0Lk37TxHlx; WIDGET_VISIT_ID=2ysiK7PQ9FzNvznc5W96Qh9vUGJ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
x-oss-request-id: 68587CF027077C343657D9F3
Vary: Accept-Encoding, Origin
Last-Modified: Sun, 22 Jun 2025 20:59:02 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17347189704056396982
x-oss-storage-class: Standard
Cache-Control: s-maxage=600,public,max-age=0
Content-MD5: 4GeA2vlQz+kLI+6O2l/Icw==
x-oss-server-time: 3
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/login/login_icon_yzm.svg?manualVersion=1&version=v6.1.102
200 OK 2.1 kB URL GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/login/login_icon_yzm.svg?manualVersion=1&version=v6.1.102
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type SVG Scalable Vector Graphics image
Hash 19ec8272dca3790dbf05c2f708abfcde
3efebf4ffca0d61344925691a22fef2634f44588
88c4315a34924373bdca8153ee36b0bbf10cd39a26e29a22bd195f7dc70c6f75
GET /siteadmin/skin/lobby_asset/common/web/login/login_icon_yzm.svg?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=604800,public
content-disposition: attachment
content-encoding: br
content-md5: GeyCctyjeQ2/BcL3CKv83g==
content-type: image/svg+xml
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "19EC8272DCA3790DBF05C2F708ABFCDE"
last-modified: Wed, 18 Jun 2025 06:53:16 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 16147313297952050966
x-oss-object-type: Normal
x-oss-request-id: 68587CEC81C2E1445DCCAD95
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 865
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/lobby/webapi/forceUpdate/getForceUpdate.json
200 OK 492 B URL GET kh7521.xm17208549.com/hall/api/lobby/webapi/forceUpdate/getForceUpdate.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (492), with no line terminators
Hash d8c04dc49ca1b9712fff4567ac08433c
451d359f80631acb4d728781ba2a09e9dcb40b23
68ef9e178af893e1de9a31b0437df72437be316fa5a4fcf351aca75ae9192328
GET /hall/api/lobby/webapi/forceUpdate/getForceUpdate.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,public,max-age=0
content-disposition: attachment
content-md5: 2MBNxJyhuXEv/0VnrAhDPA==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "D8C04DC49CA1B9712FFF4567AC08433C"
last-modified: Sat, 21 Jun 2025 19:11:37 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 9594407145566060981
x-oss-object-type: Normal
x-oss-request-id: 68587CEC2F5D69813CD237AD
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 492
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/active/tasks/pop_newcomerBenefit/currency/CNY/language/zh.json
200 OK 192 B URL GET kh7521.xm17208549.com/hall/api/active/tasks/pop_newcomerBenefit/currency/CNY/language/zh.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with no line terminators
Hash 363513a84db8413e06bc87d11185ee77
a95115e6cf5423bd2cd50ad2ba4431e3a3f81b62
4af01c111fed18141ff806f265b4a7412bbefbbc4246ef129d00a00915e971be
GET /hall/api/active/tasks/pop_newcomerBenefit/currency/CNY/language/zh.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-md5: NjUTqE24QT4GvIfREYXudw==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:16 GMT
etag: "363513A84DB8413E06BC87D11185EE77"
last-modified: Sun, 22 Jun 2025 21:53:11 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 11687139645805048270
x-oss-object-type: Normal
x-oss-request-id: 68587CF06971B071CAC3D4B8
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 192
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/active/tasks/pop_taskDay/currency/CNY/language/zh.json
200 OK 4.6 kB URL GET kh7521.xm17208549.com/hall/api/active/tasks/pop_taskDay/currency/CNY/language/zh.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (4588), with no line terminators
Hash a8bb5ed8338023b9503db110baef229c
112ea97876aa879382b7f69c633ccd8b1908bb09
e0da59e11594cb660237bff07c5d4747865e806d0e55997aaae6b7208573c066
GET /hall/api/active/tasks/pop_taskDay/currency/CNY/language/zh.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-encoding: gzip
content-md5: qLte2DOAI7lQPbEQuu8inA==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:16 GMT
last-modified: Sun, 22 Jun 2025 21:53:11 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 3452630355580444053
x-oss-object-type: Normal
x-oss-request-id: 68587CF04C216D319BC59909
x-oss-server-time: 0
x-oss-storage-class: Standard
content-length: 3286
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/index.BFcOs8oT.js
200 OK 2.2 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/index.BFcOs8oT.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, ASCII text, with very long lines (2127)
Hash 97b26a4357ab9d4881c5b0adea9fb2c7
1d7108cbadc05c1b8a789d90ae108dd6554f4881
55cd2a35aab44e18af128cabb10e484465e3ccab66874ec3a8a22b928d407847
GET /assets/theme-2/index.BFcOs8oT.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/commonChunk.2evMLTmP.js
Cookie: web__lobby__persisted__device=%7B%22uuid%22%3A%222a8d7a53-5e28-49c4-b147-9c169a02061e%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:11 GMT
Content-Type: text/javascript
Content-Length: 2171
Connection: keep-alive
x-oss-request-id: 68587CEBDA8A7936340A0C1C
Vary: Origin
Accept-Ranges: bytes
ETag: "97B26A4357AB9D4881C5B0ADEA9FB2C7"
Last-Modified: Thu, 19 Jun 2025 02:20:41 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12475489457173132753
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
Cache-Control: max-age=31622400
Content-MD5: l7JqQ1ernUiBxbCt6p+yxw==
x-oss-server-time: 1
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/common/common/comm_logo_bg.avif?manualVersion=1&version=v6.1.102
200 OK 17 kB URL GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/common/common/comm_logo_bg.avif?manualVersion=1&version=v6.1.102
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
Hash d83880b2451cc3f19cd027f27413fee3
c8c5ef5b75b42ec131a54cdd689dc35c94ad5e67
d40a6bbcd7f9ec82cdbb54453dfbb2122f0388b67d70c4e845066e2606827225
GET /siteadmin/skin/lobby_asset/common/common/common/comm_logo_bg.avif?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=604800,public
content-disposition: attachment
content-md5: 2DiAskUcw/Gc0CfydBP+4w==
content-type: image/avif
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "D83880B2451CC3F19CD027F27413FEE3"
last-modified: Wed, 18 Jun 2025 07:00:50 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 15831584619219682490
x-oss-object-type: Normal
x-oss-request-id: 68587CEC2F5D69813CD236AF
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 16579
X-Firefox-Spdy: h2
GET wqeqr314.xm74256810.com/ipacdn.txt
200 OK 2 B URL GET wqeqr314.xm74256810.com/ipacdn.txt
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectwqeqr314.xm74256810.com
Fingerprint19:47:2A:1F:5D:BD:5C:BC:77:73:1F:A1:BA:E9:EB:65:2F:A5:E9:0A
ValidityFri, 25 Apr 2025 14:31:28 GMT - Thu, 24 Jul 2025 14:31:27 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: wqeqr314.xm74256810.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:14 GMT
content-type: text/plain
content-length: 2
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
x-upper-cache-status: hit
age: 2841845
via: 1.1 jp184:4 (W), 1.1 PS-CDG-04A5e173:12 (W)
x-px: ht PS-CDG-04A5e173CDG
x-ws-request-id: 68587cee_PS-CDG-04koU196_5332-25767
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/backstage/customer/getWebTrans/language/zh.json
200 OK 1.3 MB URL GET kh7521.xm17208549.com/hall/api/backstage/customer/getWebTrans/language/zh.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.3 MB (1298796 bytes)
Hash e64f383687498b4bc9b52f59279c3871
06989d1717ea762fc833877779f6e0b2220f6976
9136e211a8ceefe8521abeb74773c11e8c50ecd988e5dfa2899dcb0c29eecae7
GET /hall/api/backstage/customer/getWebTrans/language/zh.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-encoding: gzip
content-md5: 5k84NodJi0vJtS9ZJ5w4cQ==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:14 GMT
last-modified: Sun, 22 Jun 2025 21:18:10 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 3562436213962908668
x-oss-object-type: Normal
x-oss-request-id: 68587CEE4E6A6A973DEC5764
x-oss-server-time: 2
x-oss-storage-class: Standard
X-Firefox-Spdy: h2
OPTIONS rwqr43424.xm36791052.com/hall/api/agent/promote/pointer/domain
200 OK 0 B URL OPTIONS rwqr43424.xm36791052.com/hall/api/agent/promote/pointer/domain
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectrwqr43424.xm36791052.com
Fingerprint6C:3A:50:7D:9A:BC:6B:6D:05:08:37:B5:80:18:DA:62:C3:FF:4A:FD
ValidityFri, 25 Apr 2025 14:30:01 GMT - Thu, 24 Jul 2025 14:30:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/api/agent/promote/pointer/domain HTTP/1.1
Host: rwqr43424.xm36791052.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:16 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: acw_tc=0a094e3917506296165161631e519ffba7abd839da433de77cac96e832b70b;path=/;HttpOnly;Max-Age=1800
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
via: 1.1 PS-SIN-01RKJ185:6 (W), 1.1 PS-CDG-04A5e173:12 (W)
x-px: ms PS-CDG-04A5e173CDG,ms PS-SIN-01RKJ185SIN(origin)
x-ws-request-id: 68587cf0_PS-CDG-04koU196_4993-33581
X-Firefox-Spdy: h2
POST rwqr43424.xm36791052.com/hall/api/agent/promote/pointer/domain
200 OK 50 B URL POST rwqr43424.xm36791052.com/hall/api/agent/promote/pointer/domain
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectrwqr43424.xm36791052.com
Fingerprint6C:3A:50:7D:9A:BC:6B:6D:05:08:37:B5:80:18:DA:62:C3:FF:4A:FD
ValidityFri, 25 Apr 2025 14:30:01 GMT - Thu, 24 Jul 2025 14:30:00 GMT
Hash 68f7dc5c4ea363df614134954da816a2
99b05433a26e4d6da628153a038efa6397a10f96
9395f63bb008bc3c5be2f3a48c87939804a4e15bb593b65c1b2b708572cefb73
POST /hall/api/agent/promote/pointer/domain HTTP/1.1
Host: rwqr43424.xm36791052.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: zh
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750629610558,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-5
x-data-mode: plain
x-request-id: c1fbf609-dcf3-47a9-870b-b68377891441
device: 2a8d7a53-5e28-49c4-b147-9c169a02061e
currency: CNY
timestamp: 1750629615
nonce: c1fbf609-dcf3-47a9-870b-b68377891441
sign: nLXJtUE47BMGCdL1+WtT12eFep8GhUn1hAmx2gAcb3M/ET3j6myl3qYQTycK6KO7
siteCode: 1798
language: zh
token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: upa9328f.japaneast.cloudapp.azure.com:20003
webauthnDomain: upa9328f.japaneast.cloudapp.azure.com:20003
clienttimezone: 0
x-custom-referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/home/register?id=353100632¤cy=CNY
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Content-Length: 90
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:17 GMT
content-type: application/json; charset=utf-8
content-length: 50
set-cookie: acw_tc=0a094e3517506296169235092e41f4a3ec35bde18b6ffd3f37e39eea36c7f1;path=/;HttpOnly;Max-Age=1800
api-cache: false
cache-control: no-cache
x-env-go-biz-agent-server: 0
x-env-go-biz-gateway: 0
x-server-version: 4.0.0
x-trace-id: 152883f4e799fe97
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
via: 1.1 PSfgblPAR2kx196:7 (W), 1.1 PS-CDG-04A5e173:12 (W)
x-px: ms PS-CDG-04A5e173CDG,ms PSfgblPAR2kx196CDG(origin)
x-ws-request-id: 68587cf0_PS-CDG-04koU196_4993-33584
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/vendorChunk.D7TmZIHS.js
200 OK 2.5 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/vendorChunk.D7TmZIHS.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, ASCII text, with very long lines (2453)
Hash 385b3d981ec180895499bf90ddf50d6e
e5792ad0f1df4971a60ae8d62173d3780ce00a87
cb6bc7e686c808edcebf111fdd042eb43fcd55019b65446925718de269be1709
GET /assets/theme-2/vendorChunk.D7TmZIHS.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/index.BbXr8-Y3.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:09 GMT
Content-Type: text/javascript
Content-Length: 2503
Connection: keep-alive
x-oss-request-id: 68587CE922AAFC353140899A
Vary: Origin
Accept-Ranges: bytes
ETag: "385B3D981EC180895499BF90DDF50D6E"
Last-Modified: Tue, 17 Jun 2025 07:16:25 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14357787392347401165
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
Cache-Control: max-age=31622400
Content-MD5: OFs9mB7BgIlUmb+Q3fUNbg==
x-oss-server-time: 1
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET kh7521.xm17208549.com/hall/api/lobby/config/getAppDownloadInfo.json
200 OK 2.8 kB URL GET kh7521.xm17208549.com/hall/api/lobby/config/getAppDownloadInfo.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (2776), with no line terminators
Hash e475db56c1834f0ec79804edd74ca265
91f556a8f87f4447028a62a1e29f9b4453e6917d
081d65901992d344fa8b76281bcc68481e5b851706280a7f7739a8edc2935676
GET /hall/api/lobby/config/getAppDownloadInfo.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,public,max-age=0
content-disposition: attachment
content-encoding: gzip
content-md5: 5HXbVsGDTw7HmATt10yiZQ==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:11 GMT
last-modified: Sat, 21 Jun 2025 19:11:39 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 16622085262889569858
x-oss-object-type: Normal
x-oss-request-id: 68587CEBB7D61A6A6EEE15B4
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 2163
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/game/hall/listExtLinkV2/currency/CNY/language/zh.json
200 OK 128 B URL GET kh7521.xm17208549.com/hall/api/game/hall/listExtLinkV2/currency/CNY/language/zh.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with no line terminators
Hash b0e4f5ca80c956877973ca8855879131
bdc9e43c3f93ae0333bc2fe53aed19b49557b703
fafe64c11e4ce483cdf07a258d680ad0b4d15ea0217da61d215730b849981d0c
GET /hall/api/game/hall/listExtLinkV2/currency/CNY/language/zh.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,public,max-age=0
content-disposition: attachment
content-md5: sOT1yoDJVod5c8qIVYeRMQ==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "B0E4F5CA80C956877973CA8855879131"
last-modified: Wed, 23 Apr 2025 12:30:31 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 11032282474766206394
x-oss-object-type: Normal
x-oss-request-id: 68587CEC6971B071CAC3C923
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 128
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/login/login_icon_mm02.svg?manualVersion=1&version=v6.1.102
200 OK 1.0 kB URL GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/login/login_icon_mm02.svg?manualVersion=1&version=v6.1.102
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type SVG Scalable Vector Graphics image
Hash 1ffa285646528936f73cb25dfeb296c7
c7775b076708c58da15f86b61855b7c846d1d416
02a0c3d70cb9281c3ad1da5756aa3d4785a5a98d477166df958d9ba7aca89650
GET /siteadmin/skin/lobby_asset/common/web/login/login_icon_mm02.svg?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=604800,public
content-disposition: attachment
content-encoding: br
content-md5: H/ooVkZSiTb3PLJd/rKWxw==
content-type: image/svg+xml
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "1FFA285646528936F73CB25DFEB296C7"
last-modified: Wed, 18 Jun 2025 07:00:55 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 14586647147428271652
x-oss-object-type: Normal
x-oss-request-id: 68587CECCB85505BE2F021EF
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 488
X-Firefox-Spdy: h2
POST riskct.geetest.com/g2/api/v1/client_report
200 OK 1.1 kB URL POST riskct.geetest.com/g2/api/v1/client_report
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerDigiCert Inc
Subject*.geetest.com
Fingerprint0F:57:1F:06:90:26:7E:20:91:D8:77:96:A1:67:16:E7:C9:E8:E4:96
ValidityFri, 17 Jan 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT
Hash 5ffcfe4b375a40c40d6cb3236160c75c
8adf71abcd4b1d36cd696b19fe6013e6a9ae9ae6
6d09df28b181be53d1419e4a0213be0b5f4c353c9e14c97d2c78b2aa1b65143f
POST /g2/api/v1/client_report HTTP/1.1
Host: riskct.geetest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Client-Type: 3
AppID: 9ia4hndgblg9xihxcwgdjt9ztg8sjwaf
API-Version: 1
Content-Type: application/x-www-form-urlencoded
Content-Length: 2998
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
server: TornadoServer/6.1
access-control-allow-origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
access-control-allow-headers: Appid, Client-Type, Api-Version, GeeID, Content-Type
access-control-allow-methods: GET, POST, PUT, DELETE, PATCH, OPTIONS
expires: 0
pragma: no-cache
cache-control: must-revalidate, no-cache, no-store
content-length: 1065
date: Sun, 22 Jun 2025 22:00:13 GMT
eo-log-uuid: 10856568644915764337
eo-cache-status: MISS
X-Firefox-Spdy: h2
GET msf4.xm51482936.com/ipacdn.txt
200 OK 2 B URL GET msf4.xm51482936.com/ipacdn.txt
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectmsf4.xm51482936.com
FingerprintED:AC:0D:70:15:5A:B9:78:90:80:3D:CA:FF:06:13:E5:E6:FB:85:D8
ValiditySun, 08 Jun 2025 05:50:15 GMT - Sat, 06 Sep 2025 05:50:14 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: msf4.xm51482936.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-max-age: 3600
cache-control: s-maxage=315360000,max-age=0,public
content-type: text/plain
date: Sun, 22 Jun 2025 22:00:14 GMT
set-cookie: acw_tc=0a0ccab217506296144891266e4792048cb2749b7dc6192640f503a8e1f175;path=/;HttpOnly;Max-Age=1800
strict-transport-security: max-age=31536000
x-cache: BYPASS
content-length: 2
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/game/hall/listVirtualBonusPoolV2/currency/CNY.json
200 OK 3.2 kB URL GET kh7521.xm17208549.com/hall/api/game/hall/listVirtualBonusPoolV2/currency/CNY.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (3200), with no line terminators
Hash 7678fd1d0e0739dcfededf65a845628a
42bcc59aad68b73a9a6c04afc7fb8202e774c15c
fe1b6bccf645c62ec12d67c5946dfa10f474b03df2993c9df68c0b7613ccf854
GET /hall/api/game/hall/listVirtualBonusPoolV2/currency/CNY.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=300,public,max-age=0
content-disposition: attachment
content-encoding: gzip
content-md5: dnj9HQ4HOdz+3t9lqEViig==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:16 GMT
last-modified: Sun, 22 Jun 2025 21:59:55 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 2863303774090275188
x-oss-object-type: Normal
x-oss-request-id: 68587CF04E6A6A973DEC5CBB
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 2482
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-swiper.CoXUCMPL.css
200 OK 25 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-swiper.CoXUCMPL.css
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type ASCII text, with very long lines (24555)
Hash 62969e2091dbbfb534454be94155e731
44338e52f955d955a597485f9d7f9d605dd04a9f
a604dfa4233199eaa49cce3d38d3828b7961c31d129a8f7116a62f5118b47143
GET /assets/vendors/vendor-swiper.CoXUCMPL.css HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
x-oss-request-id: 68587CE868A3743833D23BD1
Vary: Accept-Encoding, Origin
Last-Modified: Tue, 17 Jun 2025 07:16:25 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2900298986903795848
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
Cache-Control: max-age=31622400
Content-MD5: YpaeIJHbv7U0RUvpQVXnMQ==
x-oss-server-time: 2
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-@sentry.6viaZao7.js
200 OK 336 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-@sentry.6viaZao7.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 336 kB (336043 bytes)
Hash 87fbeb79c5e7a17a5b12566307cfd347
5d96f270dca53747441fc8452b857dd0e510d48a
d57cbf2f3d44db5cabac8a14bc6ab6ccfa54ede78ef9ea135f4661c3b77826dd
GET /assets/vendors/vendor-@sentry.6viaZao7.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/index.BbXr8-Y3.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:09 GMT
Content-Type: text/javascript
Content-Length: 336043
Connection: keep-alive
x-oss-request-id: 68587CE9F27FBE3536DEF2CC
Vary: Origin
Accept-Ranges: bytes
ETag: "87FBEB79C5E7A17A5B12566307CFD347"
Last-Modified: Tue, 17 Jun 2025 07:16:25 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8011717243618773825
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
Cache-Control: max-age=31622400
Content-MD5: h/vrecXnoXpbElZjB8/TRw==
x-oss-server-time: 1
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
OPTIONS msf4.xm51482936.com/hall/api/agent/promote/binding/reportViewV2
200 OK 0 B URL OPTIONS msf4.xm51482936.com/hall/api/agent/promote/binding/reportViewV2
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectmsf4.xm51482936.com
FingerprintED:AC:0D:70:15:5A:B9:78:90:80:3D:CA:FF:06:13:E5:E6:FB:85:D8
ValiditySun, 08 Jun 2025 05:50:15 GMT - Sat, 06 Sep 2025 05:50:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/api/agent/promote/binding/reportViewV2 HTTP/1.1
Host: msf4.xm51482936.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 3600
content-type: application/octet-stream
date: Sun, 22 Jun 2025 22:00:11 GMT
set-cookie: acw_tc=0a094e3717506296118607669e51c1c51475d9e7cf8f6f413d36f8f817abb3;path=/;HttpOnly;Max-Age=1800
strict-transport-security: max-age=31536000
x-cache: BYPASS
content-length: 0
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/active/tasks/newcomer_benefit_reward/default.json
200 OK 128 B URL GET kh7521.xm17208549.com/hall/api/active/tasks/newcomer_benefit_reward/default.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with no line terminators
Hash a7e834b36efd8329edea3806050f73eb
967463866812b79bf531e0654d954aafa8d2488b
cca25d512e0297ff987b6fe7f235404259a89e026ce4fc3e31a2468b7732ceb4
GET /hall/api/active/tasks/newcomer_benefit_reward/default.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-md5: p+g0s279gynt6jgGBQ9z6w==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:11 GMT
etag: "A7E834B36EFD8329EDEA3806050F73EB"
last-modified: Sun, 22 Jun 2025 21:10:33 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 17088091697560141252
x-oss-object-type: Normal
x-oss-request-id: 68587CEB4E6A6A973DEC4F78
x-oss-server-time: 2
x-oss-storage-class: Standard
content-length: 128
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/backstage/system/status/currency/CNY/language/zh/osType/4/platformType/5.json
200 OK 18 kB URL GET kh7521.xm17208549.com/hall/api/backstage/system/status/currency/CNY/language/zh/osType/4/platformType/5.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (18476), with no line terminators
Hash 150e4c7d177b9c0f0e829ca8f289f493
18e07eb973dd85879ae07d12e6d3422b7a31173e
2e5d693d6ab6e8b94f26a84af2e08d62099cb8f89ebad603298f89ec3787a564
GET /hall/api/backstage/system/status/currency/CNY/language/zh/osType/4/platformType/5.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-encoding: gzip
content-md5: FQ5MfRd7nA8Ogpyo8on0kw==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:12 GMT
last-modified: Sun, 22 Jun 2025 20:56:31 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 15735620596157915326
x-oss-object-type: Normal
x-oss-request-id: 68587CEC4E6A6A973DEC5104
x-oss-server-time: 1
x-oss-storage-class: Standard
X-Firefox-Spdy: h2
GET static.geetest.com/g5/v1/static/v1.2.2/js/geeGuard.3747764b5cec7da81f3088319e0cb0d1.js
200 OK 208 kB URL GET static.geetest.com/g5/v1/static/v1.2.2/js/geeGuard.3747764b5cec7da81f3088319e0cb0d1.js
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerDigiCert Inc
Subject*.geetest.com
Fingerprint0F:57:1F:06:90:26:7E:20:91:D8:77:96:A1:67:16:E7:C9:E8:E4:96
ValidityFri, 17 Jan 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 208 kB (208367 bytes)
Hash 1142da50f3c159b5e75cfcb4caddccf9
f9eacc05e637c26b3366ad3c20e76e2236b5c45a
cbd90ba7a7ddf844f140703ca8299e3ebf7c413cb7e84e68a9d77804b21ae276
GET /g5/v1/static/v1.2.2/js/geeGuard.3747764b5cec7da81f3088319e0cb0d1.js HTTP/1.1
Host: static.geetest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:12 GMT
content-type: application/javascript
cf-ray: 953f0464ec05b4eb-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 1239
cache-control: public, max-age=86400
etag: W/"1142da50f3c159b5e75cfcb4caddccf9"
expires: Mon, 23 Jun 2025 22:00:12 GMT
last-modified: Wed, 30 Oct 2024 06:44:14 GMT
vary: Accept-Encoding
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
x-goog-generation: 1730270654976805
x-goog-hash: crc32c=jq329w==, md5=EULaUPPBWbXnXPy0yt3M+Q==
x-goog-meta-goog-reserved-file-mtime: 1730270386
x-goog-meta-mtime: 2024-10-30T06:39:46Z
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 208367
x-guploader-uploadid: ABgVH89feC3mzVZ4YEDhs7PFziC7DTIaLf_jWo8IO9D_QW8MY1o4S-_5dSI8AsEzNHOH_bmzHOfr1wM
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
OPTIONS msf4.xm51482936.com/hall/ipCheck?siteCode=1798¤cy=CNY&language=zh&platformType=5
200 OK 0 B URL OPTIONS msf4.xm51482936.com/hall/ipCheck?siteCode=1798¤cy=CNY&language=zh&platformType=5
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectmsf4.xm51482936.com
FingerprintED:AC:0D:70:15:5A:B9:78:90:80:3D:CA:FF:06:13:E5:E6:FB:85:D8
ValiditySun, 08 Jun 2025 05:50:15 GMT - Sat, 06 Sep 2025 05:50:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/ipCheck?siteCode=1798¤cy=CNY&language=zh&platformType=5 HTTP/1.1
Host: msf4.xm51482936.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 3600
content-type: application/octet-stream
date: Sun, 22 Jun 2025 22:00:13 GMT
set-cookie: acw_tc=0a0f6b7317506296135525568e51fee3622a40d5ae1eba65076a07fecfa02c;path=/;HttpOnly;Max-Age=1800
strict-transport-security: max-age=31536000
x-cache: BYPASS
content-length: 0
X-Firefox-Spdy: h2
GET lhmxcbjn367.xm95472130.com/siteadmin/ssocdn.txt
200 OK 2 B URL GET lhmxcbjn367.xm95472130.com/siteadmin/ssocdn.txt
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerSectigo Limited
Subjectlhmxcbjn367.xm95472130.com
FingerprintFC:DE:01:48:D4:CE:C0:84:88:AD:11:70:74:72:22:F8:17:80:52:39
ValidityFri, 25 Apr 2025 00:00:00 GMT - Sat, 25 Apr 2026 23:59:59 GMT
File type ASCII text, with no line terminators
Hash a60852f204ed8028c1c58808b746d115
b0a98216a32426b9e66a4ac1eb6df2e96e1b495c
843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: lhmxcbjn367.xm95472130.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:15 GMT
content-type: text/plain
content-length: 2
x-oss-request-id: 6858732F34FAB6C338B8C381
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Wed, 23 Apr 2025 12:36:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000111
content-disposition: attachment
x-oss-force-download: true
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
x-oss-server-time: 1
server: gocache
c-type: pf
rid: 8c5a5db45b5a7c3672e5c50edba5c442
x-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
X-Firefox-Spdy: h2
GET a.kimiao.xyz/caddy/client/attrs_jsonp?ent_id=1223&track_id=2ysiK8ux6zSjYrXuI0Lk37TxHlx&visit_id=2ysiK7PQ9FzNvznc5W96Qh9vUGJ&browser_id=5468b363f8c7f0b5bdacb4488e248318&attrs=%7B%22name%22:%22%22,%22u_id%22:%22%22,%22u_name%22:%22%22%7D
200 OK 72 B URL GET a.kimiao.xyz/caddy/client/attrs_jsonp?ent_id=1223&track_id=2ysiK8ux6zSjYrXuI0Lk37TxHlx&visit_id=2ysiK7PQ9FzNvznc5W96Qh9vUGJ&browser_id=5468b363f8c7f0b5bdacb4488e248318&attrs=%7B%22name%22:%22%22,%22u_id%22:%22%22,%22u_name%22:%22%22%7D
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGoogle Trust Services
Subjecta.kimiao.xyz
FingerprintD4:B6:7B:9C:EA:A0:69:3D:38:79:07:08:92:0A:EE:53:B2:D5:1C:7D
ValidityMon, 12 May 2025 03:37:39 GMT - Sun, 10 Aug 2025 04:37:35 GMT
Hash d4cffb8533bb5789a28309fcc5efda75
2f072574a06d61e03cf2c99f31d933ba91215999
ea2501156ab11dd28952ca7bde3635905a86b989de148981733510412037ad6f
GET /caddy/client/attrs_jsonp?ent_id=1223&track_id=2ysiK8ux6zSjYrXuI0Lk37TxHlx&visit_id=2ysiK7PQ9FzNvznc5W96Qh9vUGJ&browser_id=5468b363f8c7f0b5bdacb4488e248318&attrs=%7B%22name%22:%22%22,%22u_id%22:%22%22,%22u_name%22:%22%22%7D HTTP/1.1
Host: a.kimiao.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:16 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UKsbK7eF2LA1kwxaF%2FJk6L2CqrPDLwg4CzbHleE7CDnZ5FQcrC%2FPXcZCk%2FKxZfRsMMyrd2hCbZm%2B1j9BKY3CohGrdEzhNYIygGtBY3FBkZC01f6aww8KRTUdhvki7Ag%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: br
server: cloudflare
cf-cache-status: DYNAMIC
access-control-allow-origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-expose-headers: *
access-control-max-age: 300
req-arrive-time: 1750629616775
req-cost-time: 18
resp-start-time: 1750629616793
x-envoy-upstream-service-time: 18
cf-ray: 953f047dfc6f568a-OSL
X-Firefox-Spdy: h2
GET a.kimiao.xyz/push/info?browser_id=5468b363f8c7f0b5bdacb4488e248318&ent_id=1223&track_id=2ysiK8ux6zSjYrXuI0Lk37TxHlx&visit_id=2ysiK7PQ9FzNvznc5W96Qh9vUGJ&t=1750629616380
200 OK 77 B URL GET a.kimiao.xyz/push/info?browser_id=5468b363f8c7f0b5bdacb4488e248318&ent_id=1223&track_id=2ysiK8ux6zSjYrXuI0Lk37TxHlx&visit_id=2ysiK7PQ9FzNvznc5W96Qh9vUGJ&t=1750629616380
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGoogle Trust Services
Subjecta.kimiao.xyz
FingerprintD4:B6:7B:9C:EA:A0:69:3D:38:79:07:08:92:0A:EE:53:B2:D5:1C:7D
ValidityMon, 12 May 2025 03:37:39 GMT - Sun, 10 Aug 2025 04:37:35 GMT
Hash d22ed3f4124e000c66be5da8acdb2ed7
2377d9ae5f54d4c05a9c89dce08981e171ec9de9
be4b0defb005175fdd12fe3f455eb4c87097f3f160e1d20bcd13422a09cbe1ea
GET /push/info?browser_id=5468b363f8c7f0b5bdacb4488e248318&ent_id=1223&track_id=2ysiK8ux6zSjYrXuI0Lk37TxHlx&visit_id=2ysiK7PQ9FzNvznc5W96Qh9vUGJ&t=1750629616380 HTTP/1.1
Host: a.kimiao.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:16 GMT
content-type: application/json; charset=UTF-8
content-length: 77
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=otrxirlFOgdEndqw70gu24rTyEysEEu2MZMaVaHe1HqDICQywtN3nPcca6jGsqDZF5ZN1QZYRZLus6bOXFysAX%2BX8wkx7RlcSW%2FYIaUCPTnUx6y%2BX%2FNlzhtcIgQWnvA%3D"}],"group":"cf-nel","max_age":604800}
server: cloudflare
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
cache-control: no-store, no-cache, no-transform, must-revalidate, max-age=0
access-control-allow-credentials: true
access-control-expose-headers: *
req-arrive-time: 1750629616854
req-cost-time: 0
resp-start-time: 1750629616855
x-envoy-upstream-service-time: 0
cf-ray: 953f047e8d40568a-OSL
X-Firefox-Spdy: h2
302 Found 79 kB IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerLet's Encrypt
Subjectxm610.top
FingerprintEC:A6:C1:59:FD:0B:75:04:E5:F5:87:77:15:17:5E:FE:9C:1C:25:81
ValidityMon, 19 May 2025 19:40:09 GMT - Sun, 17 Aug 2025 19:40:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: xm326.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Sun, 22 Jun 2025 22:00:06 GMT
Content-Type: text/html
Content-Length: 235
Connection: keep-alive
Location: https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Server: cdn
X-Cache-Status: MISS
GET kh7521.xm17208549.com/cocos/maintain-time.json?timestamp=1750629611197
404 Not Found 395 B URL GET kh7521.xm17208549.com/cocos/maintain-time.json?timestamp=1750629611197
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type XML 1.0 document, ASCII text
Hash 7394b374ea732d171c6c5d32ede59817
2f2238635b65dbc2364f67b7ed32e6d40a9966cb
a2c4e00c12f76d9cb4d203f797542c1fd1374c746d35f6ff2f73a73c6580b41d
GET /cocos/maintain-time.json?timestamp=1750629611197 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
content-type: application/xml
date: Sun, 22 Jun 2025 22:00:11 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0026-00000001
x-oss-request-id: 68587CEB2599E09E82F4530C
x-oss-server-time: 1
content-length: 395
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/game/hall/gameVersion/currency/CNY.json
200 OK 216 B URL GET kh7521.xm17208549.com/hall/api/game/hall/gameVersion/currency/CNY.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with no line terminators
Hash 10ae9ab9a22e870d891ea0320daa91d2
7f9a1fa9852225a2e2f6593df8c4430f62ac57e6
e917433e0c6501867000becaf59456f8d8bdba1813fc6389828589e80e06c233
GET /hall/api/game/hall/gameVersion/currency/CNY.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,public,max-age=0
content-disposition: attachment
content-md5: EK6auaIuhw2JHqAyDaqR0g==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "10AE9AB9A22E870D891EA0320DAA91D2"
last-modified: Wed, 18 Jun 2025 00:39:02 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 11814238028955621983
x-oss-object-type: Normal
x-oss-request-id: 68587CEC6971B071CAC3C920
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 216
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/common/input_icon_zh.svg?manualVersion=1&version=v6.1.102
200 OK 1.5 kB URL GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/common/input_icon_zh.svg?manualVersion=1&version=v6.1.102
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type SVG Scalable Vector Graphics image
Hash b6656df1488aa418b6658f7bbad46309
11d9bdca7e71338758c620f794601383da1c8af6
1af46767152628425d3622ecca99bd75c6cad260d0fc4aca1806692c8a2673f0
GET /siteadmin/skin/lobby_asset/common/web/common/input_icon_zh.svg?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=604800,public
content-disposition: attachment
content-encoding: br
content-md5: tmVt8UiKpBi2ZY97utRjCQ==
content-type: image/svg+xml
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "B6656DF1488AA418B6658F7BBAD46309"
last-modified: Wed, 18 Jun 2025 07:01:50 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 17354386544977869253
x-oss-object-type: Normal
x-oss-request-id: 68587CEC2F5D69813CD236B9
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 558
X-Firefox-Spdy: h2
GET a.kimiao.xyz/static/importer-v1.0.6.widget-priv.20241010_21.js
200 OK 194 kB URL GET a.kimiao.xyz/static/importer-v1.0.6.widget-priv.20241010_21.js
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGoogle Trust Services
Subjecta.kimiao.xyz
FingerprintD4:B6:7B:9C:EA:A0:69:3D:38:79:07:08:92:0A:EE:53:B2:D5:1C:7D
ValidityMon, 12 May 2025 03:37:39 GMT - Sun, 10 Aug 2025 04:37:35 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65407), with no line terminators
Size 194 kB (193610 bytes)
Hash e43afab6fc73dbf97d2886a2999d88cc
67c021816f4cfd32c0cc0539f9cf0c494c501571
c005b1a85fa9612b7fd155f55e253a03a94660d931767347f40ce5216020cc7d
GET /static/importer-v1.0.6.widget-priv.20241010_21.js HTTP/1.1
Host: a.kimiao.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:12 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
content-encoding: br
age: 1237
cf-cache-status: HIT
cache-control: max-age=14400
last-modified: Thu, 10 Oct 2024 01:36:04 GMT
vary: Accept-Encoding
req-arrive-time: 1749130244356
req-cost-time: 1
resp-start-time: 1749130244357
x-envoy-upstream-service-time: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6EO9HXzLgeD%2FPfZiN8bgQMaSP9eAcYgPR8i8U3l%2BCXn6JujRGQamY4O%2BbXm85dMsNsbk2bpY2xzKaXpf3Hv1GG%2F5qjfsp1FwiuFGq3TtOvc07GKdu1ts%2B51pMF68CqY%3D"}],"group":"cf-nel","max_age":604800}
cf-ray: 953f04674e9d568a-OSL
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/common/comm_icon_hide.svg?manualVersion=1&version=v6.1.102
200 OK 1.2 kB URL GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/common/comm_icon_hide.svg?manualVersion=1&version=v6.1.102
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type SVG Scalable Vector Graphics image
Hash 37299dc7df43b6e7e43c7edd9cf5dd5a
d96ed94ce13fd946f2f6342b74b0abd8c86aaa91
2faac1129068f22761b05f4e1497fcb63269301d8bd38f7719a5f1362526eaf3
GET /siteadmin/skin/lobby_asset/common/web/common/comm_icon_hide.svg?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=604800,public
content-disposition: attachment
content-encoding: br
content-md5: Nymdx99DtufkPH7dnPXdWg==
content-type: image/svg+xml
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "37299DC7DF43B6E7E43C7EDD9CF5DD5A"
last-modified: Wed, 18 Jun 2025 07:01:50 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 5454729927980148248
x-oss-object-type: Normal
x-oss-request-id: 68587CEC2F5D69813CD236BE
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 512
X-Firefox-Spdy: h2
GET msf4.xm51482936.com/hall/ipCheck?siteCode=1798&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f¤cy=CNY&language=zh&platformType=5
200 OK 234 B URL GET msf4.xm51482936.com/hall/ipCheck?siteCode=1798&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f¤cy=CNY&language=zh&platformType=5
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectmsf4.xm51482936.com
FingerprintED:AC:0D:70:15:5A:B9:78:90:80:3D:CA:FF:06:13:E5:E6:FB:85:D8
ValiditySun, 08 Jun 2025 05:50:15 GMT - Sat, 06 Sep 2025 05:50:14 GMT
Hash 1539fc795959d5f916f20cda5fb9d04e
e054f14420fe6081af4de9089bc3c5fb15750b5c
c70f2c20ef5049d423733710fa7327100d9814f6b093e6ab40d16bc4cdfa84af
GET /hall/ipCheck?siteCode=1798&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f¤cy=CNY&language=zh&platformType=5 HTTP/1.1
Host: msf4.xm51482936.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: zh
Accept-Encoding: gzip, deflate, br
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750629610558,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-5
x-data-mode: plain
x-request-id: fcd6626c-e2ac-42e5-8864-3efd705ed487
device: 2a8d7a53-5e28-49c4-b147-9c169a02061e
currency: CNY
timestamp: 1750629611
nonce: fcd6626c-e2ac-42e5-8864-3efd705ed487
sign: xhNhQjBqNkBmheL7CHoh3m1HwxY5ARG6V7Cj3r6ey7pWNrDN0npQg2j/86hHkvz+
siteCode: 1798
language: zh
token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: upa9328f.japaneast.cloudapp.azure.com:20003
webauthnDomain: upa9328f.japaneast.cloudapp.azure.com:20003
clienttimezone: 0
x-custom-referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/home/register?id=353100632¤cy=CNY
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 3600
cache-control: no-cache
content-type: application/json; charset=utf-8
date: Sun, 22 Jun 2025 22:00:12 GMT
set-cookie: acw_tc=0a0f6b7917506296125285970e6fe444d5e79f2738d02d484ed28529bfcc9f;path=/;HttpOnly;Max-Age=1800
strict-transport-security: max-age=31536000
x-cache: BYPASS
x-env-go-biz-gateway: 0
x-server-version: 4.0.0
x-trace-id: 44520eaba094cae6
content-length: 234
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-bignumber.HVYCcly-.js
200 OK 38 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-bignumber.HVYCcly-.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (37688)
Hash dccfad4b5f6535d6934fefae88784444
d1ed3ed115c766d2b500150853885b1226f992f1
4bea83f7f215fa27a3f462b4cdec07d5f94ea280630f18ec24e29857623d42ac
GET /assets/vendors/vendor-bignumber.HVYCcly-.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/index.BbXr8-Y3.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:09 GMT
Content-Type: text/javascript
Content-Length: 37746
Connection: keep-alive
x-oss-request-id: 68587CE923C05433379D4295
Vary: Origin
Accept-Ranges: bytes
ETag: "D36B1A2A220192E4677E8E7216042046"
Last-Modified: Tue, 17 Jun 2025 07:16:25 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1162623911067275114
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
Cache-Control: max-age=31622400
Content-MD5: 02saKiIBkuRnfo5yFgQgRg==
x-oss-server-time: 1
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET kh7521.xm17208549.com/cocos/config_data.json?timestamp=1750629610834
200 OK 4.7 kB URL GET kh7521.xm17208549.com/cocos/config_data.json?timestamp=1750629610834
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (4652), with no line terminators
Hash c6260160d760f0edb61a1825ed53bda0
82b2f3df83b5de2c8ae36a71d6ab8d389db9c1e9
5454cbb7ff7900dec892affb094ec445d716c97e853907a417317edb36faa339
GET /cocos/config_data.json?timestamp=1750629610834 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=86400
content-disposition: attachment
content-encoding: gzip
content-md5: xiYBYNdg8O22Ghgl7VO9oA==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:11 GMT
last-modified: Sun, 22 Jun 2025 04:03:11 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 4962459782090032672
x-oss-object-type: Normal
x-oss-request-id: 68587CEB4E6A6A973DEC500B
x-oss-server-time: 2
x-oss-storage-class: Standard
content-length: 3546
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/netstat/point/get/static/idx/353100632/idxType/2.json
200 OK 88 B URL GET kh7521.xm17208549.com/hall/api/netstat/point/get/static/idx/353100632/idxType/2.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with no line terminators
Hash 1e35e911da7765489c217fa14515a417
9f2e91cb06825f88b0ff25893abbc833161bb46e
b2c50986e0218ac161db5780399ab3f81d7a172e5262e64775c3641c68247141
GET /hall/api/netstat/point/get/static/idx/353100632/idxType/2.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-md5: HjXpEdp3ZUicIX+hRRWkFw==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:11 GMT
etag: "1E35E911DA7765489C217FA14515A417"
last-modified: Fri, 20 Jun 2025 11:25:51 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 15428636653539887704
x-oss-object-type: Normal
x-oss-request-id: 68587CEBB7D61A6A6EEE15B0
x-oss-server-time: 4
x-oss-storage-class: Standard
content-length: 88
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/common/comm_icon_gou.svg?manualVersion=1&version=v6.1.102
200 OK 446 B URL GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/common/comm_icon_gou.svg?manualVersion=1&version=v6.1.102
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type SVG Scalable Vector Graphics image
Hash fb9c464a7bf2bb7d90c9cc20a8f5444f
be60d64def64da2c5cfd0414a00d2ff588c12b06
e89fbe2caecbdd670f6c99d42aefe82b447d618c34df51f544f1acee61f52a7c
GET /siteadmin/skin/lobby_asset/common/web/common/comm_icon_gou.svg?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=604800,public
content-disposition: attachment
content-md5: +5xGSnvyu32QycwgqPVETw==
content-type: image/svg+xml
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "FB9C464A7BF2BB7D90C9CC20A8F5444F"
last-modified: Wed, 18 Jun 2025 07:01:50 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 10173272335333948012
x-oss-object-type: Normal
x-oss-request-id: 68587CEC34FAB6C338CF0BF6
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 446
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/common/input_icon_yqm.svg?manualVersion=1&version=v6.1.102
200 OK 5.4 kB URL GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/common/input_icon_yqm.svg?manualVersion=1&version=v6.1.102
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type SVG Scalable Vector Graphics image
Hash ee20807acef94c9720a478d922641e1f
18e39b277a84a4a949fe188d1a9c34fba1594409
722a9c40fdba9d4e69eb34c3b92ca98179ca08abbc4604a20b67d1abe53489c6
GET /siteadmin/skin/lobby_asset/common/web/common/input_icon_yqm.svg?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=604800,public
content-disposition: attachment
content-encoding: br
content-md5: 7iCAes75TJcgpHjZImQeHw==
content-type: image/svg+xml
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "EE20807ACEF94C9720A478D922641E1F"
last-modified: Wed, 18 Jun 2025 07:01:32 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 8373359362244287372
x-oss-object-type: Normal
x-oss-request-id: 68587CEC2599E09E82F454AC
x-oss-server-time: 2
x-oss-storage-class: Standard
content-length: 2232
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/index.BbXr8-Y3.js
200 OK 3.6 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/index.BbXr8-Y3.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type ASCII text, with very long lines (415)
Hash f9511226ef0072e86b384161022e447d
fbf7626d5ac79577a36e346e7cae42b1a3df77f3
d3b4d7e43b03594311f1298eff1b16b1961461df265ab871570c617fe69e7a15
GET /assets/theme-2/index.BbXr8-Y3.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:08 GMT
Content-Type: text/javascript
Content-Length: 3641
Connection: keep-alive
x-oss-request-id: 68587CE834318D32337E467D
Vary: Origin
Accept-Ranges: bytes
ETag: "F9511226EF0072E86B384161022E447D"
Last-Modified: Sat, 21 Jun 2025 07:01:53 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 818935178698802453
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
Cache-Control: max-age=31622400
Content-MD5: +VESJu8AcuhrOEFhAi5EfQ==
x-oss-server-time: 2
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET gds63.xm26975013.com/siteadmin/ssocdn.txt
200 OK 2 B URL GET gds63.xm26975013.com/siteadmin/ssocdn.txt
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerSectigo Limited
Subjectgds63.xm26975013.com
Fingerprint48:2F:60:75:2D:8C:60:FE:02:02:73:5A:24:99:DC:A9:A7:E5:3F:99
ValiditySun, 18 May 2025 00:00:00 GMT - Mon, 18 May 2026 23:59:59 GMT
File type ASCII text, with no line terminators
Hash a60852f204ed8028c1c58808b746d115
b0a98216a32426b9e66a4ac1eb6df2e96e1b495c
843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: gds63.xm26975013.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:15 GMT
content-type: text/plain
content-length: 2
x-oss-request-id: 6858781A2599E09E82E8D193
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Wed, 23 Apr 2025 12:36:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000111
content-disposition: attachment
x-oss-force-download: true
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
x-oss-server-time: 1
server: gocache
c-type: pf
rid: 3911e809201d2831b97d89a84bc711f7
x-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/cocos/config_data.json?timestamp=1750629611102
200 OK 4.7 kB URL GET kh7521.xm17208549.com/cocos/config_data.json?timestamp=1750629611102
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (4652), with no line terminators
Hash c6260160d760f0edb61a1825ed53bda0
82b2f3df83b5de2c8ae36a71d6ab8d389db9c1e9
5454cbb7ff7900dec892affb094ec445d716c97e853907a417317edb36faa339
GET /cocos/config_data.json?timestamp=1750629611102 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=86400
content-disposition: attachment
content-encoding: gzip
content-md5: xiYBYNdg8O22Ghgl7VO9oA==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:11 GMT
last-modified: Sun, 22 Jun 2025 04:03:11 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 4962459782090032672
x-oss-object-type: Normal
x-oss-request-id: 68587CEBCB85505BE2F02034
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 3546
X-Firefox-Spdy: h2
GET a.kimiao.xyz/static/893-32a5051e6f9a11ffaf89.chunk.js
200 OK 15 kB URL GET a.kimiao.xyz/static/893-32a5051e6f9a11ffaf89.chunk.js
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGoogle Trust Services
Subjecta.kimiao.xyz
FingerprintD4:B6:7B:9C:EA:A0:69:3D:38:79:07:08:92:0A:EE:53:B2:D5:1C:7D
ValidityMon, 12 May 2025 03:37:39 GMT - Sun, 10 Aug 2025 04:37:35 GMT
File type JavaScript source, ASCII text, with very long lines (15338), with no line terminators
Hash 5123f44bda0e0284f120655bdb07ca33
47deca7e1406d15d760ebeb10b543c681df5e8b4
cde8ef89dc264a4a42b487f9a467c5ec8154c110b69eee9d16ff74351dcf3d89
GET /static/893-32a5051e6f9a11ffaf89.chunk.js HTTP/1.1
Host: a.kimiao.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:16 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
content-encoding: br
age: 1235
cf-cache-status: HIT
cache-control: max-age=14400
last-modified: Thu, 10 Oct 2024 01:36:04 GMT
vary: Accept-Encoding
req-arrive-time: 1747435398569
req-cost-time: 2
resp-start-time: 1747435398571
x-envoy-upstream-service-time: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BBuZlgVs9wApeUhi89tA07aWZIOQSmfmzvyb6Lj45SWBw%2FV124dSx3uZkN3tUgqYRCMLhBVpkVeZbm58AR983nXxRqmC%2Fn2SlvJeqgjrvInZmupEt3bcQBWi12m3EHo%3D"}],"group":"cf-nel","max_age":604800}
cf-ray: 953f047dbc2d568a-OSL
X-Firefox-Spdy: h2
POST rwqr43424.xm36791052.com/hall/home/heartbeat
200 OK 88 B URL POST rwqr43424.xm36791052.com/hall/home/heartbeat
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectrwqr43424.xm36791052.com
Fingerprint6C:3A:50:7D:9A:BC:6B:6D:05:08:37:B5:80:18:DA:62:C3:FF:4A:FD
ValidityFri, 25 Apr 2025 14:30:01 GMT - Thu, 24 Jul 2025 14:30:00 GMT
File type ASCII text, with no line terminators
Hash bb864b57bb659c7c7665ec91ca1852cb
f736e6cd3cf62c8ae15e9c941edd9b4e0c753cbb
d9242328fac9096ad69be66186fa65f232e3558e96755c96fb7d76fcb4cf2089
POST /hall/home/heartbeat HTTP/1.1
Host: rwqr43424.xm36791052.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: zh
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750629610558,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-5
x-data-mode: chipher
x-request-id: 030fdcdd-a739-4ad3-afb4-bd9ee20dea2a
device: 2a8d7a53-5e28-49c4-b147-9c169a02061e
currency: CNY
timestamp: 1750629619
nonce: 030fdcdd-a739-4ad3-afb4-bd9ee20dea2a
sign: ZMd9+tu5liwVziupEVe/igWtvGjLOP588QDv+IJjX+ht/hPt/uDtxZcw221qccWf
siteCode: 1798
language: zh
token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: upa9328f.japaneast.cloudapp.azure.com:20003
webauthnDomain: upa9328f.japaneast.cloudapp.azure.com:20003
clienttimezone: 0
x-custom-referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/home/register?id=353100632¤cy=CNY
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Content-Length: 44
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:21 GMT
content-type: text/plain; charset=utf-8
content-length: 88
api-cache: false
cache-control: no-cache
set-cookie: acw_tc=0a0ccab017506296212908512e596493c2ffe0610bd237ba49d93f1f84ff6e;path=/;HttpOnly;Max-Age=1800
UserKey=z-v5AtB_J8qaFxubwMQYinbbbOMNCwUsGFq_2aHCaxv7fqUxRfJnPKEDkG0wxa0d; Path=/; Expires=Mon, 22 Jun 2026 22:00:21 GMT; Max-Age=31535999; HttpOnly
x-env-go-biz-gateway: 0
x-env-go-biz-gohal-server: 0
x-server-version: 4.0.0
x-trace-id: 582b571a407295d2
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
via: 1.1 PSfgblPAR2kx196:7 (W), 1.1 PS-CDG-04A5e173:12 (W)
x-px: ms PS-CDG-04A5e173CDG,ms PSfgblPAR2kx196CDG(origin)
x-ws-request-id: 68587cf5_PS-CDG-04koU196_4993-33637
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/libs/monitor/index.js?ver=1.0.2
200 OK 2.5 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/libs/monitor/index.js?ver=1.0.2
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, Unicode text, UTF-8 text
Hash f2021ad2d78cc5e30386bc1bb76f627d
3e994a987a526943b9e7bbe58339a51b31ac42b8
36129b3c2da2bcc128a7f5f1cc75811ab6b746477be643f51175bc8bc1fa009b
GET /libs/monitor/index.js?ver=1.0.2 HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:08 GMT
Content-Type: text/javascript
Content-Length: 2547
Connection: keep-alive
x-oss-request-id: 68587CE834318D30311A447D
Vary: Origin
Accept-Ranges: bytes
ETag: "F2021AD2D78CC5E30386BC1BB76F627D"
Last-Modified: Thu, 19 Jun 2025 02:20:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9299446289922162166
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
Cache-Control: max-age=31622400
Content-MD5: 8gIa0teMxeMDhrwbt29ifQ==
x-oss-server-time: 2
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET kh7521.xm17208549.com/hall/api/game/hall/listPlatformCateLoadV2/currency/CNY/language/zh.json
200 OK 33 kB URL GET kh7521.xm17208549.com/hall/api/game/hall/listPlatformCateLoadV2/currency/CNY/language/zh.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (33068), with no line terminators
Hash cb4032bfe5a243d64d28bd252bd675fd
ede62d335ce512056805397f4f35a27dddac060a
4f901a888643fe5b1332826f275218c5a949dee1d2bacfe2aa005a09a6a23585
GET /hall/api/game/hall/listPlatformCateLoadV2/currency/CNY/language/zh.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,public,max-age=0
content-disposition: attachment
content-encoding: gzip
content-md5: y0Ayv+WiQ9ZNKL0lK9Z1/Q==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:12 GMT
last-modified: Sat, 21 Jun 2025 08:27:44 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 3001395985770506404
x-oss-object-type: Normal
x-oss-request-id: 68587CEC4C216D319BC58D12
x-oss-server-time: 1
x-oss-storage-class: Standard
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/lobby/webapi/optimizationV2/site/config/language/zh.json
200 OK 8.5 kB URL GET kh7521.xm17208549.com/hall/api/lobby/webapi/optimizationV2/site/config/language/zh.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (8472), with no line terminators
Hash 52a2f361fabe1604e9b5c19429b5b0da
2e187cba4b3c2401d337005a5425fb24f2b53713
df3c5917ac4d48530845ac8b11ede6ad87501199d3c2c8a7dcc7c24b44951662
GET /hall/api/lobby/webapi/optimizationV2/site/config/language/zh.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,public,max-age=0
content-disposition: attachment
content-encoding: gzip
content-md5: UqLzYfq+FgTptcGUKbWw2g==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:12 GMT
last-modified: Sat, 21 Jun 2025 19:11:37 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 11743895782089529097
x-oss-object-type: Normal
x-oss-request-id: 68587CEC34FAB6C338CF0CA0
x-oss-server-time: 2
x-oss-storage-class: Standard
X-Firefox-Spdy: h2
GET msf4.xm51482936.com/hall/ipCheck?siteCode=1798¤cy=CNY&language=zh&platformType=5
200 OK 234 B URL GET msf4.xm51482936.com/hall/ipCheck?siteCode=1798¤cy=CNY&language=zh&platformType=5
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectmsf4.xm51482936.com
FingerprintED:AC:0D:70:15:5A:B9:78:90:80:3D:CA:FF:06:13:E5:E6:FB:85:D8
ValiditySun, 08 Jun 2025 05:50:15 GMT - Sat, 06 Sep 2025 05:50:14 GMT
Hash 7a13f9c1c5d41c8cac41700dde652785
0771c5ca5e9882f882b062d41902f0e6eb7764ff
b92407117b33607643b147a3f45d0b4d7a65016db0530bb7a7a4eebb75425000
GET /hall/ipCheck?siteCode=1798¤cy=CNY&language=zh&platformType=5 HTTP/1.1
Host: msf4.xm51482936.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: zh
Accept-Encoding: gzip, deflate, br
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750629610558,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-5
x-data-mode: plain
x-request-id: 14ca66c2-44cb-4ce2-84a5-ad7ff5fd4943
device: 2a8d7a53-5e28-49c4-b147-9c169a02061e
currency: CNY
timestamp: 1750629612
nonce: 14ca66c2-44cb-4ce2-84a5-ad7ff5fd4943
sign: atnQ3FT5Wwxkp4mrhEQYuv2IYdGEDDy5CeQ2pMpgepmID77KtJnDQkbFqd79dPII
siteCode: 1798
language: zh
token:
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: upa9328f.japaneast.cloudapp.azure.com:20003
webauthnDomain: upa9328f.japaneast.cloudapp.azure.com:20003
clienttimezone: 0
x-custom-referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/home/register?id=353100632¤cy=CNY
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 3600
cache-control: no-cache
content-type: application/json; charset=utf-8
date: Sun, 22 Jun 2025 22:00:13 GMT
set-cookie: acw_tc=0a094e3717506296139448091e51c1de0a34ece9f435dd768fb80cdc9c28fd;path=/;HttpOnly;Max-Age=1800
strict-transport-security: max-age=31536000
x-cache: BYPASS
x-env-go-biz-gateway: 0
x-server-version: 4.0.0
x-trace-id: 4a290f73dca9a46e
content-length: 234
X-Firefox-Spdy: h2
GET rwqr43424.xm36791052.com/ipacdn.txt
200 OK 2 B URL GET rwqr43424.xm36791052.com/ipacdn.txt
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectrwqr43424.xm36791052.com
Fingerprint6C:3A:50:7D:9A:BC:6B:6D:05:08:37:B5:80:18:DA:62:C3:FF:4A:FD
ValidityFri, 25 Apr 2025 14:30:01 GMT - Thu, 24 Jul 2025 14:30:00 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: rwqr43424.xm36791052.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:14 GMT
content-type: text/plain
content-length: 2
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
x-upper-cache-status: hit
age: 2841775
via: 1.1 PS-SIN-01RKJ185:6 (W), 1.1 PS-CDG-04A5e173:12 (W)
x-px: ht PS-CDG-04A5e173CDG
x-ws-request-id: 68587cee_PS-CDG-04koU196_4993-33560
X-Firefox-Spdy: h2
POST rwqr43424.xm36791052.com/hall/api/statistics/domain/pointer
200 OK 50 B URL POST rwqr43424.xm36791052.com/hall/api/statistics/domain/pointer
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectrwqr43424.xm36791052.com
Fingerprint6C:3A:50:7D:9A:BC:6B:6D:05:08:37:B5:80:18:DA:62:C3:FF:4A:FD
ValidityFri, 25 Apr 2025 14:30:01 GMT - Thu, 24 Jul 2025 14:30:00 GMT
Hash 30f28bb7969eec8c734bd11ef300c494
6f930614647707d302474829bf59f8905b65132f
1f876513e5c0b661897b8d1b55df65b94f4a97e236773150cd0046a166cfe24b
POST /hall/api/statistics/domain/pointer HTTP/1.1
Host: rwqr43424.xm36791052.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: zh
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750629610558,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-5
x-data-mode: plain
x-request-id: b669eda6-5ab9-4163-9fa5-d842ac5adfa3
device: 2a8d7a53-5e28-49c4-b147-9c169a02061e
currency: CNY
timestamp: 1750629615
nonce: b669eda6-5ab9-4163-9fa5-d842ac5adfa3
sign: pwCmNYpPqIzXnhN6KJYwuOPl/SfQVkkztkxt7CEPCD2ymS5tIOt7EHdVX+8nt1T+
siteCode: 1798
language: zh
token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: upa9328f.japaneast.cloudapp.azure.com:20003
webauthnDomain: upa9328f.japaneast.cloudapp.azure.com:20003
clienttimezone: 0
x-custom-referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/home/register?id=353100632¤cy=CNY
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Content-Length: 82
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:17 GMT
content-type: application/json; charset=utf-8
content-length: 50
set-cookie: acw_tc=0a0f6b7317506296171206364e51fe8a2c199c6bd3cd7063cbd2a7bfff9528;path=/;HttpOnly;Max-Age=1800
api-cache: false
cache-control: no-cache
x-env-go-biz-gateway: 0
x-env-go-biz-statistics-server: 0
x-server-version: 4.0.0
x-trace-id: 797bb5b6d44fa4d0
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
via: 1.1 PSfgblPAR2kx196:7 (W), 1.1 PS-CDG-04A5e173:12 (W)
x-px: ms PS-CDG-04A5e173CDG,ms PSfgblPAR2kx196CDG(origin)
x-ws-request-id: 68587cf0_PS-CDG-04koU196_4993-33586
X-Firefox-Spdy: h2
GET wss://a.kimiao.xyz/push/935/gsvjonfk/websocket?browser_id=5468b363f8c7f0b5bdacb4488e248318&ent_id=1223&track_id=2ysiK8ux6zSjYrXuI0Lk37TxHlx&visit_id=2ysiK7PQ9FzNvznc5W96Qh9vUGJ
101 Switching Protocols 0 B URL GET wss://a.kimiao.xyz/push/935/gsvjonfk/websocket?browser_id=5468b363f8c7f0b5bdacb4488e248318&ent_id=1223&track_id=2ysiK8ux6zSjYrXuI0Lk37TxHlx&visit_id=2ysiK7PQ9FzNvznc5W96Qh9vUGJ
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGoogle Trust Services
Subjecta.kimiao.xyz
FingerprintD4:B6:7B:9C:EA:A0:69:3D:38:79:07:08:92:0A:EE:53:B2:D5:1C:7D
ValidityMon, 12 May 2025 03:37:39 GMT - Sun, 10 Aug 2025 04:37:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /push/935/gsvjonfk/websocket?browser_id=5468b363f8c7f0b5bdacb4488e248318&ent_id=1223&track_id=2ysiK8ux6zSjYrXuI0Lk37TxHlx&visit_id=2ysiK7PQ9FzNvznc5W96Qh9vUGJ HTTP/1.1
Host: a.kimiao.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KLInDzsOuYt4CtaQyouKcA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 22 Jun 2025 22:00:17 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cJHgW2+nCnMd7K6Gy0HkYLTHApg=
cf-cache-status: DYNAMIC
Access-Control-Allow-Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
access-control-allow-credentials: true
access-control-expose-headers: *
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o8NLXuDfcfYVd1pWrEWzTuryHhSUt45%2F5PJ%2Fng7qis9s41xSYnNxXhChklSVP4%2BKkFHrPegZllHw%2BvUsIxKzWolyBExbExpIz9FgMD5yuCEER5FYA%2BpZD7outZzZFGQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 953f0482cf5556bf-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=583&min_rtt=578&rtt_var=125&sent=5&recv=8&lost=0&retrans=0&sent_bytes=3099&recv_bytes=1339&delivery_rate=7400340&cwnd=252&unsent_bytes=0&cid=ea6c3af8ee8deb2b&ts=587&x=0"
GET upa9328f.japaneast.cloudapp.azure.com:20003/libs/rc/gt@5/gt.js
200 OK 13 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/libs/rc/gt@5/gt.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, Unicode text, UTF-8 text
Hash 5c44f03dfa4417f3607058fdcfb38d3f
78ca488aa7969868b18a71b5237300cfdbd3624d
d9eda11c33956bd40daa019eac8079379a050d36fd39725ba7a05c69e55ea54c
GET /libs/rc/gt@5/gt.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/home/register?id=353100632¤cy=CNY
Cookie: web__lobby__persisted__device=%7B%22uuid%22%3A%222a8d7a53-5e28-49c4-b147-9c169a02061e%22%7D; web__lobby__persisted__user=%7B%22userInfos%22%3A%7B%22game_gold%22%3A2000%2C%22account_type%22%3A1%2C%22platfromid%22%3A%22web_lobby_guest_account%22%2C%22mode%22%3A0%2C%22currency%22%3A%22CNY%22%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:11 GMT
Content-Type: text/javascript
Content-Length: 12872
Connection: keep-alive
x-oss-request-id: 68587CEB6B05E237377F9A9E
Vary: Origin
Accept-Ranges: bytes
ETag: "77B767A58588802530FDC97DB129B78B"
Last-Modified: Tue, 17 Jun 2025 07:16:25 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 331822085686857861
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
Cache-Control: max-age=31622400
Content-MD5: d7dnpYWIgCUw/cl9sSm3iw==
x-oss-server-time: 2
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
POST msf4.xm51482936.com/hall/api/agent/promote/binding/reportViewV2
200 OK 80 B URL POST msf4.xm51482936.com/hall/api/agent/promote/binding/reportViewV2
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectmsf4.xm51482936.com
FingerprintED:AC:0D:70:15:5A:B9:78:90:80:3D:CA:FF:06:13:E5:E6:FB:85:D8
ValiditySun, 08 Jun 2025 05:50:15 GMT - Sat, 06 Sep 2025 05:50:14 GMT
Hash 7b1a0ba747e50dba5e9fad6753e8404e
96ae65290328924ab97b0ac776357f41a1b1f093
ea9a96fb3d84892ee2776510431b2c1d03d10f2882c823ad991f9e8c4cac9681
POST /hall/api/agent/promote/binding/reportViewV2 HTTP/1.1
Host: msf4.xm51482936.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: zh
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750629610558,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-5
x-data-mode: plain
x-request-id: 57aa0729-347e-46b9-bec4-27c0c356cfb1
device: 2a8d7a53-5e28-49c4-b147-9c169a02061e
currency: CNY
timestamp: 1750629611
nonce: 57aa0729-347e-46b9-bec4-27c0c356cfb1
sign: 0dgEgh8J9kPt8gr7dQlBhMTWRsgyT7BsS8wABaIq/Y4bMTy4b/I2EyTH/tTKOLEs
siteCode: 1798
language: zh
token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: upa9328f.japaneast.cloudapp.azure.com:20003
webauthnDomain: upa9328f.japaneast.cloudapp.azure.com:20003
clienttimezone: 0
x-custom-referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Content-Length: 169
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 3600
api-cache: false
cache-control: no-cache
content-type: application/json; charset=utf-8
date: Sun, 22 Jun 2025 22:00:12 GMT
set-cookie: acw_tc=0a0ccaaf17506296122424023e49bfcb06dc6b6acb0a321193108124f071ac;path=/;HttpOnly;Max-Age=1800
strict-transport-security: max-age=31536000
x-cache: BYPASS
x-env-go-biz-agent-server: 0
x-env-go-biz-gateway: 0
x-server-version: 4.0.0
x-trace-id: 2faccc84fd3eb5e6
content-length: 80
X-Firefox-Spdy: h2
GET a.kimiao.xyz/static/main-v1.0.6.widget-priv.20241010_21.js
200 OK 1.2 MB URL GET a.kimiao.xyz/static/main-v1.0.6.widget-priv.20241010_21.js
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGoogle Trust Services
Subjecta.kimiao.xyz
FingerprintD4:B6:7B:9C:EA:A0:69:3D:38:79:07:08:92:0A:EE:53:B2:D5:1C:7D
ValidityMon, 12 May 2025 03:37:39 GMT - Sun, 10 Aug 2025 04:37:35 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 1.2 MB (1211877 bytes)
Hash bdf56cba6e39482f5e0961314f1947e8
9906901f97aae06f6c249caa4f1c934651dc5c71
22e898cb3de468732261646a50a055a65a5d947f96773900741999bc28ef1253
GET /static/main-v1.0.6.widget-priv.20241010_21.js HTTP/1.1
Host: a.kimiao.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:12 GMT
content-type: application/javascript; charset=utf-8
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
content-encoding: br
age: 1236
cf-cache-status: HIT
cache-control: max-age=14400
last-modified: Thu, 10 Oct 2024 01:36:04 GMT
vary: Accept-Encoding
req-arrive-time: 1748540669825
req-cost-time: 1
resp-start-time: 1748540669826
x-envoy-upstream-service-time: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mclsG6xrgCr1ofOBXAih20qGl49NQ6R4wu4cNDAIPW0ctLi0NCxaY1J6kCxAbDNzx6k%2FICjdlyCJn4JSc0pr%2F6QUtgKbZXIBOlCMz%2BTv2KAor2Q977gLt1VITgdwFW0%3D"}],"group":"cf-nel","max_age":604800}
cf-ray: 953f04689876568a-OSL
X-Firefox-Spdy: h2
GET bvcxb6787.xm85197630.com/ipacdn.txt
200 OK 2 B URL GET bvcxb6787.xm85197630.com/ipacdn.txt
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectbvcxb6787.xm85197630.com
Fingerprint5B:78:4F:5B:21:B5:94:26:56:25:DD:58:46:D6:7B:42:CE:1A:E5:84
ValiditySun, 08 Jun 2025 05:59:46 GMT - Sat, 06 Sep 2025 05:59:45 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: bvcxb6787.xm85197630.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-max-age: 3600
cache-control: s-maxage=315360000,max-age=0,public
content-type: text/plain
date: Sun, 22 Jun 2025 22:00:15 GMT
set-cookie: acw_tc=0a0f6b7517506296151264797e5d31d768fb93d69d31d386b34dceed77f8ad;path=/;HttpOnly;Max-Age=1800
strict-transport-security: max-age=31536000
x-cache: BYPASS
content-length: 2
X-Firefox-Spdy: h2
GET a.kimiao.xyz/caddy/v2/knowledge/faqs?id=984&id=983&id=981&id=982&id=979&id=980&id=987&id=988&id=989&id=990&id=991&id=992&ent_id=1223
200 OK 31 kB URL GET a.kimiao.xyz/caddy/v2/knowledge/faqs?id=984&id=983&id=981&id=982&id=979&id=980&id=987&id=988&id=989&id=990&id=991&id=992&ent_id=1223
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGoogle Trust Services
Subjecta.kimiao.xyz
FingerprintD4:B6:7B:9C:EA:A0:69:3D:38:79:07:08:92:0A:EE:53:B2:D5:1C:7D
ValidityMon, 12 May 2025 03:37:39 GMT - Sun, 10 Aug 2025 04:37:35 GMT
Hash 96bdc1c3ea08dd9deca9115af3b6b977
54b0a39d17eb2733d20c944742f11c176428f078
41f7875b8e0855a17a48885952ec537303e7b10b7dd4ebfadaf6362343e3e3c3
GET /caddy/v2/knowledge/faqs?id=984&id=983&id=981&id=982&id=979&id=980&id=987&id=988&id=989&id=990&id=991&id=992&ent_id=1223 HTTP/1.1
Host: a.kimiao.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:16 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BRx0Sc8RBwjkTMHu7838o7bqHppus2LrtW6VDdNJpKwTWUNZTQ9XnV7cRbchStJlwC79K%2B1s%2BV3RT1cuZ%2Bw9hOWdMvc4gU%2Bjd6xCpTRWb%2B94dJR8fqw01dKXsnVcxts%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: br
server: cloudflare
cf-cache-status: DYNAMIC
access-control-allow-origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-expose-headers: *
access-control-max-age: 300
req-arrive-time: 1750629616781
req-cost-time: 4
resp-start-time: 1750629616786
x-envoy-upstream-service-time: 4
cf-ray: 953f047dfc64568a-OSL
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/commonChunk.2evMLTmP.js
200 OK 1.7 MB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/commonChunk.2evMLTmP.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (60064)
Size 1.7 MB (1665546 bytes)
Hash 7d109363bd9ba14a35c1e03bad9749fc
1ab64e27c0efd31bde8630abe43e5c2d73d6b785
7efe28273fb611ac4acf781c33ac06ca7373baed0b63d815f76a460edc9c2eaa
GET /assets/theme-2/commonChunk.2evMLTmP.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/index.BbXr8-Y3.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:09 GMT
Content-Type: text/javascript
Content-Length: 1665546
Connection: keep-alive
x-oss-request-id: 68587CE91F85633235C75A40
Vary: Origin
Accept-Ranges: bytes
ETag: "C72961E2F4781E702F638F977B467701"
Last-Modified: Sat, 21 Jun 2025 07:01:53 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7809370982572751670
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
Cache-Control: max-age=31622400
Content-MD5: xylh4vR4HnAvY4+Xe0Z3AQ==
x-oss-server-time: 1
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET kh7521.xm17208549.com/siteadmin/upload/img/1917142060680507393.avif
200 OK 13 kB URL GET kh7521.xm17208549.com/siteadmin/upload/img/1917142060680507393.avif
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
Hash 74d5ede85fcb6069dc4cfe355aab074f
1b02ec18fff1b61f63386848c5a5ff20e5115ab9
fbf547b266d15c9340f8cc15edebaefdc2216ec038c49a25ead6172e7fe54bba
GET /siteadmin/upload/img/1917142060680507393.avif HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=86400
content-disposition: attachment
content-md5: dNXt6F/LYGncTP41WqsHTw==
content-type: image/avif
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "74D5EDE85FCB6069DC4CFE355AAB074F"
last-modified: Tue, 29 Apr 2025 09:01:02 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 12386652261759193142
x-oss-object-type: Normal
x-oss-request-id: 68587CECB7D61A6A6EEE1627
x-oss-server-time: 2
x-oss-storage-class: Standard
content-length: 13035
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/2-0-78/assets.hash.json?timestamp=1750629614186
200 OK 120 kB URL GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/2-0-78/assets.hash.json?timestamp=1750629614186
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
Size 120 kB (120088 bytes)
Hash 93735e18423c5cb4b53a0511d105f7ef
bc1d83b353b8245bd7acc9a8e73ae8f9edf1166a
931aaa706fcc2133af4834a51ba0c71361c7684c511bd51f993af7d2136e0e13
GET /siteadmin/skin/lobby_asset/2-0-78/assets.hash.json?timestamp=1750629614186 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=604800,public
content-disposition: attachment
content-encoding: gzip
content-md5: k3NeGEI8XLS1OgUR0QX37w==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:14 GMT
last-modified: Wed, 18 Jun 2025 07:00:56 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 2434673114267899310
x-oss-object-type: Normal
x-oss-request-id: 68587CEEB7D61A6A6EEE1C5F
x-oss-server-time: 2
x-oss-storage-class: Standard
X-Firefox-Spdy: h2
GET kle68.xm98502376.com/ipacdn.txt
200 OK 2 B URL GET kle68.xm98502376.com/ipacdn.txt
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkle68.xm98502376.com
Fingerprint79:91:4A:13:02:FF:D8:78:D4:F5:1C:E0:CF:92:1C:B6:28:AA:46:68
ValiditySun, 08 Jun 2025 05:50:00 GMT - Sat, 06 Sep 2025 05:49:59 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: kle68.xm98502376.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-max-age: 3600
cache-control: s-maxage=315360000,max-age=0,public
content-type: text/plain
date: Sun, 22 Jun 2025 22:00:15 GMT
set-cookie: acw_tc=0a0f6b7317506296151285823e52055275236112d88a759ab87ba65af0fe53;path=/;HttpOnly;Max-Age=1800
strict-transport-security: max-age=31536000
x-cache: BYPASS
content-length: 2
X-Firefox-Spdy: h2
GET nvcn4536.xm48396175.com/siteadmin/ssocdn.txt
200 OK 2 B URL GET nvcn4536.xm48396175.com/siteadmin/ssocdn.txt
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectnvcn4536.xm48396175.com
FingerprintF0:4C:3F:AD:00:1E:9B:0E:85:B1:11:35:2B:8E:3B:7F:34:76:16:C0
ValidityFri, 25 Apr 2025 14:40:47 GMT - Thu, 24 Jul 2025 14:40:46 GMT
File type ASCII text, with no line terminators
Hash a60852f204ed8028c1c58808b746d115
b0a98216a32426b9e66a4ac1eb6df2e96e1b495c
843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: nvcn4536.xm48396175.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:14 GMT
content-type: text/plain
content-length: 2
server: AliyunOSS
x-oss-request-id: 6853A188B7D61A1B7ACC0FD2
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
accept-ranges: bytes
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Wed, 23 Apr 2025 12:36:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000111
content-disposition: attachment
x-oss-force-download: true
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
x-oss-server-time: 2
age: 65930
via: 1.1 PSfgblPAR2cx197:2 (W), 1.1 PS-CDG-04A5e173:12 (W)
x-px: ht PS-CDG-04A5e173CDG
x-ws-request-id: 68587cee_PS-CDG-04koU196_4871-24696
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
200 OK 79 kB URL User Request GET upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (63013), with no line terminators
Hash e06780daf950cfe90b23ee8eda5fc873
afda52e8b6ac7ab7383eefcd24276dbbeb21e90e
4121432420010e5e1edaab5526355db5d57efb2f8236350dd46962c4544ea275
GET /?id=353100632¤cy=CNY&type=2 HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
x-oss-request-id: 68587CE705693736314EB3F5
Vary: Accept-Encoding, Origin
Last-Modified: Sun, 22 Jun 2025 20:59:02 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17347189704056396982
x-oss-storage-class: Standard
Cache-Control: s-maxage=600,public,max-age=0
Content-MD5: 4GeA2vlQz+kLI+6O2l/Icw==
x-oss-server-time: 2
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET riskct.geetest.com/g2/api/v1/pre_load?client_type=web&appid=9ia4hndgblg9xihxcwgdjt9ztg8sjwaf&callback=geetest_1750629616511
200 OK 304 B URL GET riskct.geetest.com/g2/api/v1/pre_load?client_type=web&appid=9ia4hndgblg9xihxcwgdjt9ztg8sjwaf&callback=geetest_1750629616511
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerDigiCert Inc
Subject*.geetest.com
Fingerprint0F:57:1F:06:90:26:7E:20:91:D8:77:96:A1:67:16:E7:C9:E8:E4:96
ValidityFri, 17 Jan 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT
File type ASCII text, with very long lines (304), with no line terminators
Hash b6886786967782eb70faf8c19b249392
10aaa28514b753d0581bc6351f80c3f1567dc26d
c82a866b455a5eec32d1361fce08054897eabc1e46f91f96c4e0228217e8b254
GET /g2/api/v1/pre_load?client_type=web&appid=9ia4hndgblg9xihxcwgdjt9ztg8sjwaf&callback=geetest_1750629616511 HTTP/1.1
Host: riskct.geetest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
server: TornadoServer/6.1
access-control-allow-origin:
access-control-allow-headers: Appid, Client-Type, Api-Version, GeeID, Content-Type
access-control-allow-methods: GET, POST, PUT, DELETE, PATCH, OPTIONS
expires: 0
pragma: no-cache
etag: "10aaa28514b753d0581bc6351f80c3f1567dc26d"
cache-control: must-revalidate, no-cache, no-store
content-length: 304
date: Sun, 22 Jun 2025 22:00:12 GMT
eo-log-uuid: 16567276584799353905
eo-cache-status: MISS
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-swiper.CGEhtrpu.js
200 OK 104 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-swiper.CGEhtrpu.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 104 kB (103909 bytes)
Hash 47179fb1458e350f8edb3f7fc561dfa6
b846c5726fc6d41f98233e05a48c1a6b9dffdef0
ef5efcddf800b478772dd288141f539d43ed261546c54a78ad5eca1a524586ba
GET /assets/vendors/vendor-swiper.CGEhtrpu.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/index.BbXr8-Y3.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:09 GMT
Content-Type: text/javascript
Content-Length: 103909
Connection: keep-alive
x-oss-request-id: 68587CE934318D3731B5487D
Vary: Origin
Accept-Ranges: bytes
ETag: "47179FB1458E350F8EDB3F7FC561DFA6"
Last-Modified: Tue, 17 Jun 2025 07:16:25 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11890246563348260368
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
Cache-Control: max-age=31622400
Content-MD5: RxefsUWONQ+O2z9/xWHfpg==
x-oss-server-time: 1
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET kh7521.xm17208549.com/hall/api/message/smsCountry/currency/CNY/language/zh.json
200 OK 812 B URL GET kh7521.xm17208549.com/hall/api/message/smsCountry/currency/CNY/language/zh.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (812), with no line terminators
Hash d2c582b54b844d7d84616b0ee11d3ead
4448d8111982e9358b6cb1b44f8ad50415d8ef55
e616484ad13e851e49e950016c1d44c575128ad47c31e87d29013d69614ece1b
GET /hall/api/message/smsCountry/currency/CNY/language/zh.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-md5: 0sWCtUuETX2EYWsO4R0+rQ==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:11 GMT
etag: "D2C582B54B844D7D84616B0EE11D3EAD"
last-modified: Sun, 22 Jun 2025 21:10:34 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 15784499755839063030
x-oss-object-type: Normal
x-oss-request-id: 68587CEBCB85505BE2F02036
x-oss-server-time: 2
x-oss-storage-class: Standard
content-length: 812
X-Firefox-Spdy: h2
GET mu1l01-1798-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1917503833254068225.png
200 OK 26 kB URL GET mu1l01-1798-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1917503833254068225.png
IP
ASN #45102 Alibaba US Technology Co., Ltd.
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGlobalSign nv-sa
Subject*.oss-eu-central-1.aliyuncs.com
Fingerprint82:9E:ED:B3:E5:61:6D:0D:52:77:3B:4A:1E:DF:68:54:AE:39:DA:01
ValidityTue, 06 May 2025 02:12:11 GMT - Tue, 03 Feb 2026 06:31:07 GMT
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced
Hash 75573c6d6b2095b7024d558b73532139
b3ac30a96889ce0ec0d0a517b295889482cfe37c
b4091d621e35ab254f657d205ef6cc2c15c0c099e0aafe707fa212337fb92300
GET /siteadmin/upload/img/1917503833254068225.png HTTP/1.1
Host: mu1l01-1798-ppp.oss-accelerate.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 22 Jun 2025 22:00:13 GMT
Content-Type: image/png
Content-Length: 25638
Connection: keep-alive
x-oss-request-id: 68587CEC81C2E1445DCCAF8F
Vary: Origin
Accept-Ranges: bytes
ETag: "75573C6D6B2095B7024D558B73532139"
Last-Modified: Wed, 30 Apr 2025 08:58:34 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14408503770963039036
x-oss-storage-class: Standard
Cache-Control: max-age=86400
x-oss-ec: 0048-00000111
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: dVc8bWsglbcCTVWLc1MhOQ==
x-oss-server-time: 1
GET affg84.xm29407136.com/siteadmin/ssocdn.txt
200 OK 2 B URL GET affg84.xm29407136.com/siteadmin/ssocdn.txt
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerSectigo Limited
Subjectaffg84.xm29407136.com
Fingerprint2D:34:98:2D:F8:85:A5:B9:BB:6C:82:0E:BC:D9:56:FD:BD:02:4A:5E
ValiditySun, 18 May 2025 00:00:00 GMT - Mon, 18 May 2026 23:59:59 GMT
File type ASCII text, with no line terminators
Hash a60852f204ed8028c1c58808b746d115
b0a98216a32426b9e66a4ac1eb6df2e96e1b495c
843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: affg84.xm29407136.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:15 GMT
content-type: text/plain
content-length: 2
x-oss-request-id: 685876C3CB85505BE2E18FEA
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Wed, 23 Apr 2025 12:36:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000111
content-disposition: attachment
x-oss-force-download: true
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
x-oss-server-time: 2
server: gocache
c-type: pf
rid: 3fc143a8a9f1124cd3b6a1a06c0570d4
x-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
X-Firefox-Spdy: h2
GET 146.103.80.132/ipacdn.txt
200 OK 2 B URL GET 146.103.80.132/ipacdn.txt
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGlobalSign nv-sa
Subject146.103.80.132
Fingerprint6E:D5:40:06:E1:28:E8:3E:37:B6:1C:77:DC:C6:4D:B0:7C:28:8E:A0
ValidityTue, 22 Apr 2025 08:25:24 GMT - Sun, 24 May 2026 08:25:23 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ipacdn.txt HTTP/1.1
Host: 146.103.80.132
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:14 GMT
content-type: text/plain
content-length: 2
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
x-upper-cache-status: hit
age: 2929050
via: 1.1 PS-SIN-01RKJ185:9 (W), 1.1 PS-HND-041co26:10 (W)
x-px: ht PS-HND-041co26HND
x-ws-request-id: 68587cee_PS-HND-01MdG15_23751-31212
X-Firefox-Spdy: h2
GET dfsfg543654.xm26574890.com/siteadmin/ssocdn.txt
200 OK 2 B URL GET dfsfg543654.xm26574890.com/siteadmin/ssocdn.txt
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectdfsfg543654.xm26574890.com
FingerprintC7:5C:D5:DA:25:E7:2F:E6:0D:8E:3E:53:46:BE:F3:9D:F5:80:32:AA
ValiditySun, 08 Jun 2025 05:46:40 GMT - Sat, 06 Sep 2025 05:46:39 GMT
File type ASCII text, with no line terminators
Hash a60852f204ed8028c1c58808b746d115
b0a98216a32426b9e66a4ac1eb6df2e96e1b495c
843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: dfsfg543654.xm26574890.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=86400
content-disposition: attachment
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
content-type: text/plain
date: Sun, 22 Jun 2025 22:00:15 GMT
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Wed, 23 Apr 2025 12:36:16 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-object-type: Normal
x-oss-request-id: 68587CEFCB85505BE2F02A4E
x-oss-server-time: 2
x-oss-storage-class: Standard
content-length: 2
X-Firefox-Spdy: h2
GET a.kimiao.xyz/caddy/visit/get_base_config?ent_id=7b40686c68f3d9f265b3885557578e2b
200 OK 34 kB URL GET a.kimiao.xyz/caddy/visit/get_base_config?ent_id=7b40686c68f3d9f265b3885557578e2b
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGoogle Trust Services
Subjecta.kimiao.xyz
FingerprintD4:B6:7B:9C:EA:A0:69:3D:38:79:07:08:92:0A:EE:53:B2:D5:1C:7D
ValidityMon, 12 May 2025 03:37:39 GMT - Sun, 10 Aug 2025 04:37:35 GMT
Hash 29b3b2e813d675891042f2f3663481a2
a1085ab0cc0b60441710e9efd68e428e6a79cbc2
aa9aa09c3a5e8852c08b151d8c8bc8fbe926466a1c3be6260598aa348351024a
GET /caddy/visit/get_base_config?ent_id=7b40686c68f3d9f265b3885557578e2b HTTP/1.1
Host: a.kimiao.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:14 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ovVGerPNNzN1ZlRkhkVQ8md2SKkPwpoNxtzvVkh0w%2BxPU%2FtNm8xRnscYY3Zqxt9aiSldVUxbvrL13FAabPdmKhfgscgTlUiqXIRfznw7E%2B6ttT0lv6Zls8JWuqDZH%2Fg%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: br
server: cloudflare
cf-cache-status: DYNAMIC
access-control-allow-origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-expose-headers: *
access-control-max-age: 300
req-arrive-time: 1750629613910
req-cost-time: 9
resp-start-time: 1750629613920
x-envoy-upstream-service-time: 9
cf-ray: 953f046d7f3d568a-OSL
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/active/tasks/pop_taskWeek/currency/CNY/language/zh.json
200 OK 4.6 kB URL GET kh7521.xm17208549.com/hall/api/active/tasks/pop_taskWeek/currency/CNY/language/zh.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (4632), with no line terminators
Hash aefb53663e033a7d833ac659db3f502f
fedd4039f0e1e125c0e0e55b3a4344ed5a7c99c9
500c961d6f29a22cd00794e15bd189007006426c8ee5c2610677c879ad3e7e1d
GET /hall/api/active/tasks/pop_taskWeek/currency/CNY/language/zh.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-encoding: gzip
content-md5: rvtTZj4DOn2DOsZZ2z9QLw==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:16 GMT
last-modified: Sun, 22 Jun 2025 21:53:11 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 3411047679464887835
x-oss-object-type: Normal
x-oss-request-id: 68587CF0CB85505BE2F02DDA
x-oss-server-time: 2
x-oss-storage-class: Standard
content-length: 2801
X-Firefox-Spdy: h2
OPTIONS rwqr43424.xm36791052.com/hall/home/heartbeat
200 OK 0 B URL OPTIONS rwqr43424.xm36791052.com/hall/home/heartbeat
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectrwqr43424.xm36791052.com
Fingerprint6C:3A:50:7D:9A:BC:6B:6D:05:08:37:B5:80:18:DA:62:C3:FF:4A:FD
ValidityFri, 25 Apr 2025 14:30:01 GMT - Thu, 24 Jul 2025 14:30:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/home/heartbeat HTTP/1.1
Host: rwqr43424.xm36791052.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:21 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: acw_tc=0a0ccab017506296210918476e59646085083be7b2127797efb5f8ca03383a;path=/;HttpOnly;Max-Age=1800
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
via: 1.1 PSfgblPAR2kx196:7 (W), 1.1 PS-CDG-04A5e173:12 (W)
x-px: ms PS-CDG-04A5e173CDG,ms PSfgblPAR2kx196CDG(origin)
x-ws-request-id: 68587cf4_PS-CDG-04koU196_4993-33629
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-.2vkXrysA.js
200 OK 304 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-.2vkXrysA.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (60089)
Size 304 kB (303881 bytes)
Hash 276a4f663818fb77c627f4c63e55d793
ebdf3503dc0ff2a17368b063404181633844611c
243db03183988efbdb2963bf600745059e2c24aa5e1d21f22adba92bfcf2ad5d
GET /assets/vendors/vendor-.2vkXrysA.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/index.BbXr8-Y3.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:09 GMT
Content-Type: text/javascript
Content-Length: 303881
Connection: keep-alive
x-oss-request-id: 68587CE9829A183838A15E5C
Vary: Origin
Accept-Ranges: bytes
ETag: "276A4F663818FB77C627F4C63E55D793"
Last-Modified: Thu, 19 Jun 2025 02:20:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8529130598035148955
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
Cache-Control: max-age=31622400
Content-MD5: J2pPZjgY+3fGJ/TGPlXXkw==
x-oss-server-time: 2
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
OPTIONS rwqr43424.xm36791052.com/hall/api/statistics/domain/pointer
200 OK 0 B URL OPTIONS rwqr43424.xm36791052.com/hall/api/statistics/domain/pointer
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectrwqr43424.xm36791052.com
Fingerprint6C:3A:50:7D:9A:BC:6B:6D:05:08:37:B5:80:18:DA:62:C3:FF:4A:FD
ValidityFri, 25 Apr 2025 14:30:01 GMT - Thu, 24 Jul 2025 14:30:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/api/statistics/domain/pointer HTTP/1.1
Host: rwqr43424.xm36791052.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:16 GMT
content-type: application/octet-stream
content-length: 0
set-cookie: acw_tc=0a094e3917506296167171768e5194692a245d3e29c70f5fdd64ed3496efcb;path=/;HttpOnly;Max-Age=1800
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
via: 1.1 PS-SIN-01RKJ185:6 (W), 1.1 PS-CDG-04A5e173:12 (W)
x-px: ms PS-CDG-04A5e173CDG,ms PS-SIN-01RKJ185SIN(origin)
x-ws-request-id: 68587cf0_PS-CDG-04koU196_4993-33582
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/active/tasks/pop_taskThreeDay/currency/CNY/language/zh.json
200 OK 192 B URL GET kh7521.xm17208549.com/hall/api/active/tasks/pop_taskThreeDay/currency/CNY/language/zh.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with no line terminators
Hash 66c0c7b4996619d43ed2e87644ad2ead
dd7f77e186c4b9c5a35669a4f475b280f5a0e77b
b84e556aa3b2963af10e11c279e44dd672052a66e21105dd9353ddac1cfff92a
GET /hall/api/active/tasks/pop_taskThreeDay/currency/CNY/language/zh.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-md5: ZsDHtJlmGdQ+0uh2RK0urQ==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:16 GMT
etag: "66C0C7B4996619D43ED2E87644AD2EAD"
last-modified: Sun, 22 Jun 2025 21:53:11 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 585686729273838351
x-oss-object-type: Normal
x-oss-request-id: 68587CF02F5D69813CD24256
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 192
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/commonChunk.D0eEd_nX.css
200 OK 329 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/commonChunk.D0eEd_nX.css
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 329 kB (328617 bytes)
Hash 80362406d319f8ea60644899d7a550e7
7b76de3bd2e9862c6294be78a8a7899e1fe60b8c
75ed1b8eb4f875b2153eb21a4f79624b220dcd69ae2df64d17baeba88b3d0358
GET /assets/theme-2/commonChunk.D0eEd_nX.css HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
x-oss-request-id: 68587CE860F7333538DFEA51
Vary: Accept-Encoding, Origin
Last-Modified: Sat, 21 Jun 2025 07:01:53 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1882789052760539061
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
Cache-Control: max-age=31622400
Content-MD5: gDYkBtMZ+OpgZEiZ16VQ5w==
x-oss-server-time: 2
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/locales/zh.BZb-gdJr.js
200 OK 290 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/locales/zh.BZb-gdJr.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type Unicode text, UTF-8 text, with very long lines (41567), with no line terminators
Size 290 kB (289496 bytes)
Hash f4413d15016b4223f5106bfa6416a6c1
39e07faad53744ae95137f624b2f0aeb8388d5bd
4983267723a9d4ac2d7398f6571ee7270e08108e49a28d327cd127f18c6efcaf
GET /assets/locales/zh.BZb-gdJr.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/commonChunk.2evMLTmP.js
Cookie: web__lobby__persisted__device=%7B%22uuid%22%3A%222a8d7a53-5e28-49c4-b147-9c169a02061e%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:11 GMT
Content-Type: text/javascript
Content-Length: 289496
Connection: keep-alive
x-oss-request-id: 68587CEB22AAFC3732BF969A
Vary: Origin
Accept-Ranges: bytes
ETag: "B263752E5B475624CE4BF5390CFD1128"
Last-Modified: Fri, 20 Jun 2025 06:51:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 111891397836985178
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.95-v6.1.96
Cache-Control: max-age=31622400
Content-MD5: smN1LltHViTOS/U5DP0RKA==
x-oss-server-time: 1
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
POST msf4.xm51482936.com/hall/api/agent/promote/getIpBindInfo
200 OK 104 B URL POST msf4.xm51482936.com/hall/api/agent/promote/getIpBindInfo
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectmsf4.xm51482936.com
FingerprintED:AC:0D:70:15:5A:B9:78:90:80:3D:CA:FF:06:13:E5:E6:FB:85:D8
ValiditySun, 08 Jun 2025 05:50:15 GMT - Sat, 06 Sep 2025 05:50:14 GMT
Hash 87af8b7b87928ef01b4f47ac1193d2a1
a07d0b85432ee0cf1d8d3658e3000a4bf7a85fd2
cf80dc6db167f6f25e9fc8ada06f141c14308022b8cea8f94ffd5a7b66947c41
POST /hall/api/agent/promote/getIpBindInfo HTTP/1.1
Host: msf4.xm51482936.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: zh
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-object-id: {"uid":"","browserLanguage":"en-US","init":{"device":"","created":1750629610558,"version":1750472258000}}
platformType: 5
devicetype: 3
x-device: 1-5
x-data-mode: plain
x-request-id: e34c45de-74d5-4ab9-957c-5c243a95b449
device: 2a8d7a53-5e28-49c4-b147-9c169a02061e
currency: CNY
timestamp: 1750629611
nonce: e34c45de-74d5-4ab9-957c-5c243a95b449
sign: dLMGLe1oKbmnpSZTGjn9GW94UF1g4tf1yZ58R5nAU5lxNDxS4L1CIbbxl2RQquyU
siteCode: 1798
language: zh
token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f
auth: undefined
deviceModel: Firefox v134.0
physicalDeviceModel: unknown
operatingSystem: Windows
deviceBrand: unknown
browserType: Firefox v134.0
appSystem: Windows 10
domain: upa9328f.japaneast.cloudapp.azure.com:20003
webauthnDomain: upa9328f.japaneast.cloudapp.azure.com:20003
clienttimezone: 0
x-custom-referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/home/register?id=353100632¤cy=CNY
x-version: 6.1.102
browserfingerid:
appVersion: v6.1.102
Content-Length: 74
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 3600
api-cache: false
cache-control: no-cache
content-type: application/json; charset=utf-8
date: Sun, 22 Jun 2025 22:00:12 GMT
set-cookie: acw_tc=0a094e3917506296122948951e5194abc28a636f2803e0b386c6acaec45ed4;path=/;HttpOnly;Max-Age=1800
strict-transport-security: max-age=31536000
x-cache: BYPASS
x-env-go-biz-agent-server: 0
x-env-go-biz-gateway: 0
x-server-version: 4.0.0
x-trace-id: 447a9245a0295248
content-length: 104
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/message/popupcfg/currency/CNY.json
200 OK 88 B URL GET kh7521.xm17208549.com/hall/api/message/popupcfg/currency/CNY.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with no line terminators
Hash da4905e32458d1d00cf4fc3db0a05ba5
3adb261996e719361f4f161715d980da9b0671be
bc3439665b6c7592e217c7d09a062d9c7f0b1bd47d6f941f9dc7c37d322666d6
GET /hall/api/message/popupcfg/currency/CNY.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-md5: 2kkF4yRY0dAM9Pw9sKBbpQ==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:16 GMT
etag: "DA4905E32458D1D00CF4FC3DB0A05BA5"
last-modified: Sun, 22 Jun 2025 21:50:23 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 16339689052324445195
x-oss-object-type: Normal
x-oss-request-id: 68587CF02599E09E82F460D5
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 88
X-Firefox-Spdy: h2
GET jhjg65.xm10938462.com/ipacdn.txt
200 OK 2 B URL GET jhjg65.xm10938462.com/ipacdn.txt
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerSectigo Limited
Subjectjhjg65.xm10938462.com
Fingerprint92:53:E3:E4:EE:8E:5B:6B:40:ED:3E:DF:3E:AA:CB:E9:4D:9C:57:9D
ValiditySun, 18 May 2025 00:00:00 GMT - Mon, 18 May 2026 23:59:59 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: jhjg65.xm10938462.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:15 GMT
content-type: text/plain
content-length: 2
set-cookie: acw_tc=0a0ccaa517506296150263847e43d2cb2ba136caeef86ac66f9672b958903c;path=/;HttpOnly;Max-Age=1800
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
server: gocache
c-type: pf
rid: a5d6505c641fe4afdcdd5b452515b11c
x-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
GET cvft53.xm40173825.com/siteadmin/ssocdn.txt
200 OK 2 B URL GET cvft53.xm40173825.com/siteadmin/ssocdn.txt
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectcvft53.xm40173825.com
FingerprintB6:1B:00:7D:4C:5E:7B:7E:9F:65:D5:0A:86:28:82:96:2A:91:4E:ED
ValiditySun, 08 Jun 2025 05:47:07 GMT - Sat, 06 Sep 2025 05:47:06 GMT
File type ASCII text, with no line terminators
Hash a60852f204ed8028c1c58808b746d115
b0a98216a32426b9e66a4ac1eb6df2e96e1b495c
843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: cvft53.xm40173825.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=86400
content-disposition: attachment
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
content-type: text/plain
date: Sun, 22 Jun 2025 22:00:15 GMT
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Wed, 23 Apr 2025 12:36:16 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-object-type: Normal
x-oss-request-id: 68587CEF2F5D69813CD23DF6
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 2
X-Firefox-Spdy: h2
OPTIONS msf4.xm51482936.com/hall/ipCheck?siteCode=1798&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f¤cy=CNY&language=zh&platformType=5
200 OK 0 B URL OPTIONS msf4.xm51482936.com/hall/ipCheck?siteCode=1798&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f¤cy=CNY&language=zh&platformType=5
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectmsf4.xm51482936.com
FingerprintED:AC:0D:70:15:5A:B9:78:90:80:3D:CA:FF:06:13:E5:E6:FB:85:D8
ValiditySun, 08 Jun 2025 05:50:15 GMT - Sat, 06 Sep 2025 05:50:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/ipCheck?siteCode=1798&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f¤cy=CNY&language=zh&platformType=5 HTTP/1.1
Host: msf4.xm51482936.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 3600
content-type: application/octet-stream
date: Sun, 22 Jun 2025 22:00:12 GMT
set-cookie: acw_tc=0a0f6b7817506296121232405e6fe0532149bc482d069d7f980b90874e2f94;path=/;HttpOnly;Max-Age=1800
strict-transport-security: max-age=31536000
x-cache: BYPASS
content-length: 0
X-Firefox-Spdy: h2
OPTIONS riskct.geetest.com/g2/api/v1/client_report
200 OK 0 B URL OPTIONS riskct.geetest.com/g2/api/v1/client_report
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerDigiCert Inc
Subject*.geetest.com
Fingerprint0F:57:1F:06:90:26:7E:20:91:D8:77:96:A1:67:16:E7:C9:E8:E4:96
ValidityFri, 17 Jan 2025 00:00:00 GMT - Sat, 17 Jan 2026 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /g2/api/v1/client_report HTTP/1.1
Host: riskct.geetest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: api-version,appid,client-type
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
server: TornadoServer/6.1
access-control-allow-origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
access-control-allow-headers: Appid, Client-Type, Api-Version, GeeID, Content-Type
access-control-allow-methods: GET, POST, PUT, DELETE, PATCH, OPTIONS
expires: 0
pragma: no-cache
cache-control: must-revalidate, no-cache, no-store
content-length: 0
date: Sun, 22 Jun 2025 22:00:13 GMT
eo-log-uuid: 7335464051812966024
eo-cache-status: MISS
X-Firefox-Spdy: h2
GET jmxrbzbd85.xm05428971.com/ipacdn.txt
200 OK 2 B URL GET jmxrbzbd85.xm05428971.com/ipacdn.txt
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerSectigo Limited
Subjectjmxrbzbd85.xm05428971.com
Fingerprint22:75:92:0A:1C:49:C7:A7:4E:83:1D:A8:05:20:59:F3:94:D7:4C:E9
ValidityFri, 25 Apr 2025 00:00:00 GMT - Sat, 25 Apr 2026 23:59:59 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: jmxrbzbd85.xm05428971.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:15 GMT
content-type: text/plain
content-length: 2
set-cookie: acw_tc=0a0ccaac17506296150274328e4484d1b45a9ae907d3b59c96ec976fbe79d9;path=/;HttpOnly;Max-Age=1800
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
server: gocache
c-type: pf
rid: 80b9c81c9643ede86e4431d9918ec848
x-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/hall/api/gohal/staffAllV3/currency/CNY/language/zh.json
200 OK 9.8 kB URL GET kh7521.xm17208549.com/hall/api/gohal/staffAllV3/currency/CNY/language/zh.json
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type ASCII text, with very long lines (9772), with no line terminators
Hash a070bde217cf45420f62212373114574
6bf785ecf01d12cd5f42d1635e2580de08043bf1
675d72c0cf28d92cf6e3ae25c8c514431a7535f16916c2f1457c724795e860ba
GET /hall/api/gohal/staffAllV3/currency/CNY/language/zh.json HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: s-maxage=600,max-age=0,public
content-disposition: attachment
content-encoding: gzip
content-md5: oHC94hfPRUIPYiEjcxFFdA==
content-type: application/json
date: Sun, 22 Jun 2025 22:00:12 GMT
last-modified: Sun, 22 Jun 2025 20:59:50 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 111024136837485341
x-oss-object-type: Normal
x-oss-request-id: 68587CEC6971B071CAC3C916
x-oss-server-time: 0
x-oss-storage-class: Standard
X-Firefox-Spdy: h2
GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/common/input_icon_mm.svg?manualVersion=1&version=v6.1.102
200 OK 1.7 kB URL GET kh7521.xm17208549.com/siteadmin/skin/lobby_asset/common/web/common/input_icon_mm.svg?manualVersion=1&version=v6.1.102
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectkh7521.xm17208549.com
Fingerprint30:A7:61:6E:B1:C0:92:3A:65:E7:5F:BD:42:C9:46:DF:02:49:70:D3
ValiditySun, 08 Jun 2025 05:42:30 GMT - Sat, 06 Sep 2025 05:42:29 GMT
File type SVG Scalable Vector Graphics image
Hash 85d0d0be71d95c657b2a4abd510eb074
91febe4ca32da28f5c832501814e98aa5d992fd1
e68897d1b41f233bed3f779f7b3b939bf67c9ca818fadb935b70775ae54eb5ce
GET /siteadmin/skin/lobby_asset/common/web/common/input_icon_mm.svg?manualVersion=1&version=v6.1.102 HTTP/1.1
Host: kh7521.xm17208549.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-allow-origin: *
access-control-expose-headers: Etag
access-control-max-age: 200
cache-control: max-age=604800,public
content-disposition: attachment
content-encoding: br
content-md5: hdDQvnHZXGV7Kkq9UQ6wdA==
content-type: image/svg+xml
date: Sun, 22 Jun 2025 22:00:12 GMT
etag: "85D0D0BE71D95C657B2A4ABD510EB074"
last-modified: Wed, 18 Jun 2025 07:01:55 GMT
server: AliyunOSS
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-cache: BYPASS
x-oss-ec: 0048-00000111
x-oss-force-download: true
x-oss-hash-crc64ecma: 16158492568346811360
x-oss-object-type: Normal
x-oss-request-id: 68587CEC34FAB6C338CF0BFA
x-oss-server-time: 1
x-oss-storage-class: Standard
content-length: 653
X-Firefox-Spdy: h2
GET a.kimiao.xyz/static/static/icon-mq-round@2x.png
200 OK 11 kB URL GET a.kimiao.xyz/static/static/icon-mq-round@2x.png
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGoogle Trust Services
Subjecta.kimiao.xyz
FingerprintD4:B6:7B:9C:EA:A0:69:3D:38:79:07:08:92:0A:EE:53:B2:D5:1C:7D
ValidityMon, 12 May 2025 03:37:39 GMT - Sun, 10 Aug 2025 04:37:35 GMT
File type PNG image data, 128 x 1216, 8-bit colormap, non-interlaced
Hash 7852530b8ccd6c254e2c727b286bd370
ae3cd963a27096af016b06697e4e7c08caca6cda
df6e80ba7392005025919531597d0f64f8046eec8ee14bcdf3e05760264fe874
GET /static/static/icon-mq-round@2x.png HTTP/1.1
Host: a.kimiao.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:16 GMT
content-type: image/png
content-length: 10613
age: 1235
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DAcgZEIZDdqUYZF6xDQ4WdD6%2BwZQzda6LDjHHvEluFURrUYhajdDYPU3BMRy35zvAy1EBnBwiIFIhzxd%2FSU13YfqBcg8C3GqxDKDtpYHaky8awOagKKWp2%2FYKRaQaQg%3D"}],"group":"cf-nel","max_age":604800}
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=14400
last-modified: Thu, 10 Oct 2024 01:36:04 GMT
vary: Accept-Encoding
req-arrive-time: 1750628381133
req-cost-time: 1
resp-start-time: 1750628381135
x-envoy-upstream-service-time: 1
cf-ray: 953f04805ff1568a-OSL
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/workers-qy9Jwbtu.js
200 OK 4.4 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/workers-qy9Jwbtu.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, ASCII text
Hash d6e1cc2d959d07155b487d4911b6087e
6334fce87963b6c07edbcc4277bf01565b9d0798
b5b10a66bb72a298d200bc6c64734fc38faf8770a3e0f2a8ed5de79a0e07ef7a
GET /assets/workers-qy9Jwbtu.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:10 GMT
Content-Type: text/javascript
Content-Length: 4420
Connection: keep-alive
x-oss-request-id: 68587CEAFC567C33374803FB
Vary: Origin
Accept-Ranges: bytes
ETag: "D6E1CC2D959D07155B487D4911B6087E"
Last-Modified: Sat, 21 Jun 2025 07:01:53 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10918190586927633353
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.100-v6.1.102
Cache-Control: max-age=31622400
Content-MD5: 1uHMLZWdBxVbSH1JEbYIfg==
x-oss-server-time: 1
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET xbmb23.xm84617925.com/siteadmin/ssocdn.txt
200 OK 2 B URL GET xbmb23.xm84617925.com/siteadmin/ssocdn.txt
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectxbmb23.xm84617925.com
FingerprintF0:2E:37:16:7E:FC:11:EB:00:B8:D4:82:B9:27:46:F6:6A:DB:89:DD
ValidityFri, 25 Apr 2025 14:40:40 GMT - Thu, 24 Jul 2025 14:40:39 GMT
File type ASCII text, with no line terminators
Hash a60852f204ed8028c1c58808b746d115
b0a98216a32426b9e66a4ac1eb6df2e96e1b495c
843ac01149cced785dfebd0028d3b03ba78e286e1c6f9517ebfcdb609d97af4c
GET /siteadmin/ssocdn.txt HTTP/1.1
Host: xbmb23.xm84617925.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:14 GMT
content-type: text/plain
content-length: 2
server: AliyunOSS
x-oss-request-id: 68587CBD2F5D69813CD1C6AE
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD, PUT
access-control-expose-headers: Etag
access-control-max-age: 200
accept-ranges: bytes
etag: "A60852F204ED8028C1C58808B746D115"
last-modified: Wed, 23 Apr 2025 12:36:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13902551060587900831
x-oss-storage-class: Standard
cache-control: max-age=86400
x-oss-ec: 0048-00000111
content-disposition: attachment
x-oss-force-download: true
content-md5: pghS8gTtgCjBxYgIt0bRFQ==
x-oss-server-time: 1
age: 49
via: 1.1 PSfgblPAR2kx196:7 (W), 1.1 PS-CDG-04A5e173:12 (W)
x-px: ht PS-CDG-04A5e173CDG
x-ws-request-id: 68587cee_PS-CDG-04koU196_2331-23
X-Firefox-Spdy: h2
GET upa9328f.japaneast.cloudapp.azure.com:20003/libs/frame-storage-proxy@0.0.11/index.min.js
200 OK 6.8 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/libs/frame-storage-proxy@0.0.11/index.min.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, ASCII text, with very long lines (6761), with no line terminators
Hash 52acfde7053c1350377a911076e57ab2
f048e0ec17aa14d4d07e7f6861faa2429eae990e
f3b498bc85cc8e2bf3d1fa081c4ef2097e973a8fd7f53bbce46072b20917a35f
GET /libs/frame-storage-proxy@0.0.11/index.min.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:08 GMT
Content-Type: text/javascript
Content-Length: 6761
Connection: keep-alive
x-oss-request-id: 68587CE836F3BB333950F989
Vary: Origin
Accept-Ranges: bytes
ETag: "52ACFDE7053C1350377A911076E57AB2"
Last-Modified: Thu, 19 Jun 2025 02:20:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17032485662168923056
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
Cache-Control: max-age=31622400
Content-MD5: Uqz95wU8E1A3epEQduV6sg==
x-oss-server-time: 1
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET upa9328f.japaneast.cloudapp.azure.com:20003/bewcdn.txt?1750629616347
200 OK 2 B URL GET upa9328f.japaneast.cloudapp.azure.com:20003/bewcdn.txt?1750629616347
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /bewcdn.txt?1750629616347 HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/home/register?id=353100632¤cy=CNY
DNT: 1
Connection: keep-alive
Cookie: web__lobby__persisted__device=%7B%22uuid%22%3A%222a8d7a53-5e28-49c4-b147-9c169a02061e%22%7D; web__lobby__persisted__user=%7B%22userInfos%22%3A%7B%22game_gold%22%3A2000%2C%22account_type%22%3A1%2C%22platfromid%22%3A%22web_lobby_guest_account%22%2C%22mode%22%3A0%2C%22currency%22%3A%22CNY%22%7D%7D; gt_local_id=Hn8rZPXUWvT6sr8eMXO6UHQDfLlda0hqhXBRA/XV6Wjd2a1UuNMIwA==; WIDGET_TRACK_ID=2ysiK8ux6zSjYrXuI0Lk37TxHlx; WIDGET_VISIT_ID=2ysiK7PQ9FzNvznc5W96Qh9vUGJ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:16 GMT
Content-Type: text/plain
Content-Length: 2
Connection: keep-alive
x-oss-request-id: 68587CF068A3743836356FD1
Vary: Origin
Accept-Ranges: bytes
ETag: "E0AA021E21DDDBD6D8CECEC71E9CF564"
Last-Modified: Tue, 17 Jun 2025 07:16:25 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4312349438756823821
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.62
Cache-Control: s-maxage=31622400,max-age=0,public
Content-MD5: 4KoCHiHd29bYzs7HHpz1ZA==
x-oss-server-time: 1
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-stable.n07-Ij0p.js
200 OK 413 kB URL GET upa9328f.japaneast.cloudapp.azure.com:20003/assets/vendors/vendor-stable.n07-Ij0p.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectupa9328f.japaneast.cloudapp.azure.com
FingerprintC6:89:F3:36:C1:52:9C:1A:5D:56:77:F6:27:71:46:94:6C:26:A9:E1
ValidityMon, 28 Apr 2025 11:31:21 GMT - Sun, 27 Jul 2025 11:31:20 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 413 kB (412836 bytes)
Hash 03fcf36acad5ab6e6ca05b4224fde1b2
6494d535b1a71fe4d16aaa82703dbb49ec5cbe50
4eec8b1b40d2756ecc59416a5d839b9d7a4f42f11975bb4765892d6b201a4d0a
GET /assets/vendors/vendor-stable.n07-Ij0p.js HTTP/1.1
Host: upa9328f.japaneast.cloudapp.azure.com:20003
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/assets/theme-2/index.BbXr8-Y3.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 22 Jun 2025 22:00:09 GMT
Content-Type: text/javascript
Content-Length: 412836
Connection: keep-alive
x-oss-request-id: 68587CE9337D793039E72FA6
Vary: Origin
Accept-Ranges: bytes
ETag: "03FCF36ACAD5AB6E6CA05B4224FDE1B2"
Last-Modified: Thu, 19 Jun 2025 02:20:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17087035871385880996
x-oss-storage-class: Standard
x-oss-meta-version: v6.1.79-v6.1.88
Cache-Control: max-age=31622400
Content-MD5: A/zzasrVq25soFtCJP3hsg==
x-oss-server-time: 2
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT
Access-Control-Allow-Headers: *
OPTIONS msf4.xm51482936.com/hall/api/agent/promote/getIpBindInfo
200 OK 0 B URL OPTIONS msf4.xm51482936.com/hall/api/agent/promote/getIpBindInfo
IP
ASN #152194 CTG Server Limited
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerLet's Encrypt
Subjectmsf4.xm51482936.com
FingerprintED:AC:0D:70:15:5A:B9:78:90:80:3D:CA:FF:06:13:E5:E6:FB:85:D8
ValiditySun, 08 Jun 2025 05:50:15 GMT - Sat, 06 Sep 2025 05:50:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /hall/api/agent/promote/getIpBindInfo HTTP/1.1
Host: msf4.xm51482936.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: appsystem,appversion,auth,browserfingerid,browsertype,clienttimezone,content-type,currency,device,devicebrand,devicemodel,devicetype,domain,language,nonce,operatingsystem,physicaldevicemodel,platformtype,sign,sitecode,timestamp,token,webauthndomain,x-custom-referer,x-data-mode,x-device,x-object-id,x-request-id,x-version
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 3600
content-type: application/octet-stream
date: Sun, 22 Jun 2025 22:00:11 GMT
set-cookie: acw_tc=0a094e3417506296118854602e40b981e9bb35e14a33a8dc127875e7f5a136;path=/;HttpOnly;Max-Age=1800
strict-transport-security: max-age=31536000
x-cache: BYPASS
content-length: 0
X-Firefox-Spdy: h2
GET fdg543.xm40263781.com/ipacdn.txt
200 OK 2 B URL GET fdg543.xm40263781.com/ipacdn.txt
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerSectigo Limited
Subjectfdg543.xm40263781.com
Fingerprint06:15:32:C4:15:B4:69:8E:C9:E8:2A:6F:96:F1:5F:0D:0E:1F:75:A1
ValiditySun, 18 May 2025 00:00:00 GMT - Mon, 18 May 2026 23:59:59 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /ipacdn.txt HTTP/1.1
Host: fdg543.xm40263781.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:15 GMT
content-type: text/plain
content-length: 2
set-cookie: acw_tc=0a0ccaa617506296150094731e43b91ffcba348091e390bbac11fd09f401a6;path=/;HttpOnly;Max-Age=1800
cache-control: s-maxage=315360000,max-age=0,public
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-credentials: true
server: gocache
c-type: pf
rid: b156f7a1d08f74fe5366b70a8c3e11cc
x-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
OPTIONS a.kimiao.xyz/caddy/visit/start?ent_id=7b40686c68f3d9f265b3885557578e2b&track_id=&title=Welcome+to+%E6%98%9F%E6%A2%A6%E5%A8%B1%E4%B9%90-%E5%AE%98%E6%96%B9%E7%9B%B4%E8%90%A5-651.Vip&referrer_url=&url=https:%2F%2Fupa9328f.japaneast.cloudapp.azure.com:20003%2Fhome%2Fregister%3Fid%3D353100632%26currency%3DCNY&is_standalone=false
200 OK 0 B URL OPTIONS a.kimiao.xyz/caddy/visit/start?ent_id=7b40686c68f3d9f265b3885557578e2b&track_id=&title=Welcome+to+%E6%98%9F%E6%A2%A6%E5%A8%B1%E4%B9%90-%E5%AE%98%E6%96%B9%E7%9B%B4%E8%90%A5-651.Vip&referrer_url=&url=https:%2F%2Fupa9328f.japaneast.cloudapp.azure.com:20003%2Fhome%2Fregister%3Fid%3D353100632%26currency%3DCNY&is_standalone=false
IP
Requested by https://upa9328f.japaneast.cloudapp.azure.com:20003/?id=353100632¤cy=CNY&type=2
Certificate IssuerGoogle Trust Services
Subjecta.kimiao.xyz
FingerprintD4:B6:7B:9C:EA:A0:69:3D:38:79:07:08:92:0A:EE:53:B2:D5:1C:7D
ValidityMon, 12 May 2025 03:37:39 GMT - Sun, 10 Aug 2025 04:37:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /caddy/visit/start?ent_id=7b40686c68f3d9f265b3885557578e2b&track_id=&title=Welcome+to+%E6%98%9F%E6%A2%A6%E5%A8%B1%E4%B9%90-%E5%AE%98%E6%96%B9%E7%9B%B4%E8%90%A5-651.Vip&referrer_url=&url=https:%2F%2Fupa9328f.japaneast.cloudapp.azure.com:20003%2Fhome%2Fregister%3Fid%3D353100632%26currency%3DCNY&is_standalone=false HTTP/1.1
Host: a.kimiao.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-is-qiabot-domain,x-is-standalone
Referer: https://upa9328f.japaneast.cloudapp.azure.com:20003/
Origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 22:00:14 GMT
content-length: 0
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-origin: https://upa9328f.japaneast.cloudapp.azure.com:20003
access-control-allow-credentials: true
access-control-allow-headers: x-is-qiabot-domain,x-is-standalone
access-control-allow-methods: GET,PUT,POST,HEAD,DELETE,PATCH,OPTIONS
access-control-expose-headers: *
access-control-max-age: 86400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ejFc2HqK6%2BiVUHp2uffMXaKcPEWR4zgNwLIeWUl5SPH4shTiO0nsRitPQkVSPYTARIwlJU0Z%2BkN6dHBdkk%2BU6O0XbtdjK0CzXLURR0UEwRQHnBN%2BprY%2BN%2Bxjbf8z7yo%3D"}],"group":"cf-nel","max_age":604800}
cf-ray: 953f0471ece4568a-OSL
X-Firefox-Spdy: h2
20.205.137.34
40.115.216.33
172.65.218.121
134.122.133.68
27.124.32.4
138.113.100.55
47.254.187.90
130.33.112.8
146.103.80.132
0.0.0.0