Report - 878fa.com/

Report Overview

Submitted URL
878fa.com/
IP
13.75.95.168
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2023-06-04 11:02:14
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
vue.livehelp100service.com	unknown	2021-12-08	2022-07-27	2023-06-03	1.4 kB	222 kB	54.230.111.98
ocsp.r2m02.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-06-03	340 B	941 B	54.230.80.227
34gw3.wasfeds.com	unknown	2022-02-21	2022-04-19	2023-06-03	1.6 kB	10 kB	13.248.168.108
878fa.com	unknown	unknown	2015-07-16	2023-05-02	466 B	397 B	13.75.95.168
878fa.com:8989	unknown	unknown	No data	No data	32 kB	2.4 MB	13.75.95.168
ocsp.sectigo.com	487	2018-08-16	2019-11-29	2023-06-03	1.7 kB	4.8 kB	104.18.15.101
3dsa62.shanzhi.me	unknown	2021-07-23	2023-04-01	2023-05-21	24 kB	2.8 MB	104.250.44.1
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-06-03	340 B	941 B	54.230.80.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-06-03	medium	878fa.com/

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (47)

	URL	Size	First Seen	Last Seen
	878fa.com:8989/	48 B	2023-03-07	2024-04-16
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-16 06:48:55 Times Seen6251 Hash 37f0336a6fe3f56c661b149ecf659efe 9aff4163d5da3b8d760f0593c583dd8d1f6dfc14 f33f7afadc5c318efdd57d35da2dc2aebe39fd166a61905ce37b9f7363f51c2f Loading...

	878fa.com:8989/	505 B	2023-05-31	2023-06-10
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-31 13:31:19 Last Seen2023-06-10 09:24:02 Times Seen256 Hash 633a11639d47389449f6e5762e40d35a a02159a12a3322f697d3e62cdb34802db2defe74 6a00e9f7e7d72a8e1b87d5f462e1cdd74cdc34ec6f72bef4aad89d4b3131bda4 Loading...

	878fa.com:8989/	707 B	2023-06-04	2023-07-10
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-04 13:02:22 Last Seen2023-07-10 04:23:15 Times Seen183 Hash e1023620a753fcd40c8650f5bca2a485 034b1c4b305a7a8a45f6932c7e9bddd00c8c623d 18ba3ba6be8b6a6816edec99d6e03cd815a7b30514094037491c5b7c27fac528 Loading...

	878fa.com:8989/	34 kB	2023-06-04	2023-06-04
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-04 13:02:22 Last Seen2023-06-04 13:02:22 Times Seen1 Hash 6170e26c21d7c663adef0fc17c84bb80 3e889fdea2723fcae3046953fdb3e771dcfbec94 74dd8d08464cede6f5985fad856b6815e2830a8b2e9c987570f78eb92a58e363 Loading...

	vue.livehelp100service.com/visitorside/js/Button.8e7eec9c.js	9.5 kB	2023-05-10	2023-06-13
Pretty URL vue.livehelp100service.com/visitorside/js/Button.8e7eec9c.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-10 17:29:30 Last Seen2023-06-13 01:31:58 Times Seen679 Hash 270bb19aad1f9d42484ce92bd6edca01 c175b6bf310656d9a74c3ab491ad44c85b3dafa0 4be2f2f0f6ea6cf24f62547f06c2c8def635ece0315dd8ad5aae675f02dd3dd8 Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/websocket/CometMarathon.js	12 kB	2023-04-05	2024-04-16
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/websocket/CometMarathon.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-16 06:48:55 Times Seen6255 Hash 466a7ed7d00986d45375c0cbffb5233c 68845ead668e9abd29c24b491dbf97b219226c08 7ddafae5a0a552d2d56101cdc8306403e8fb9570759d66c48b25893b409f0123 Loading...

	878fa.com:8989/	13 kB	2023-04-05	2024-04-16
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-16 06:48:56 Times Seen6256 Hash 109d40ff6f9b3510b169fac4b8e845ce 4ce0fc768718f555487159ddd745e728a0c74c64 7b782f2e9589aa72ddadf4546c0f09709c73bea1339cd0ce893dfc40f6252949 Loading...

	878fa.com:8989/	11 kB	2023-04-05	2024-04-16
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-16 06:48:56 Times Seen6233 Hash 6681856885ee92601b7711c11d19553f 95ab4437869df8c790cad28e0753a4c9ea362e73 ce52fd46b2a5cfd741a2f0c39bc2d5218271b5690bdf8ec33af94f1062e98d23 Loading...

	vue.livehelp100service.com/visitorside/js/bundle.71856ffb.js	527 kB	2023-05-10	2023-06-13
Pretty URL vue.livehelp100service.com/visitorside/js/bundle.71856ffb.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-10 17:29:30 Last Seen2023-06-13 01:31:58 Times Seen1024 Hash 7dd3e386b0cd8e8e061c5ccd55f57312 99829047a3d6dd8636a99cb7d40b2ff2253eee09 944dda37179d5929ff731e111c822c37f610f701b9625ff85aa1d9fcc55fdc57 Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/idangerous.swiper.min.js	45 kB	2023-03-07	2024-02-25
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/idangerous.swiper.min.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-02-25 19:55:56 Times Seen5271 Hash 6ddb20c89aad63f86c5862b2f5c48a56 45da7bc94c509993ad003b3963c6e802b5ec248a 1fbcf8666e954fac26076fac509f215be910952ab0e2a667d184ef877c836b2f Loading...

	878fa.com:8989/	3.6 kB	2023-04-05	2024-04-16
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-16 06:48:56 Times Seen6231 Hash d15a9b513acdcf3e9b08901384511565 f1fe72392137895e4952f835c0330f76aacfecdf 9fa644edfd9af9be6b244016e8f4f0eaee414732edc6ba3641e8647253359995 Loading...

	878fa.com:8989/message_zh_CN.js?v=1685395744961	32 kB	2023-04-28	2023-07-10
Pretty URL 878fa.com:8989/message_zh_CN.js?v=1685395744961 IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-28 10:49:37 Last Seen2023-07-10 14:41:19 Times Seen1449 Hash abdcbf67b546f2665360012a6af3bbdb a876710b72498972a0ef587c388a514f7b60ee81 606608cb052a53144304576bda119fe134133ec34ae8e985520dfe57563e856c Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/layer.js	22 kB	2023-04-05	2024-04-16
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/layer.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-16 06:48:55 Times Seen6245 Hash cb96339625e9d456e32f86cdb3c7a7a1 1301165c58bbb13c542cba493b7ab5774e87e31f 17fb047ba6828fcbdf2ca226fa4594cfded2b2fdfeaff89a5bd81c7cf0359919 Loading...

	878fa.com:8989/	38 kB	2023-06-04	2023-06-04
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-04 13:02:22 Last Seen2023-06-04 13:02:22 Times Seen1 Hash 831ff3b5843b7536f99d00217e8fbce6 5e61ea529abff3d264b6767b400b9aed124aec9b 9f07c600692bd8e2c8e1fde210f3f4e5d86c2d70207afdc8280d5c780ec543d7 Loading...

	3dsa62.shanzhi.me/150810/rcenter/common/static/js/gb.validation.min.js?v=1685395744961	33 kB	2023-04-05	2024-04-16
Pretty URL 3dsa62.shanzhi.me/150810/rcenter/common/static/js/gb.validation.min.js?v=1685395744961 IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-16 06:48:55 Times Seen6352 Hash a55780dc13cbf1a8d375f14ebb659cf2 9548cc269bcde0dc48e166fa6bab37af8a649e57 35d147a863ab8828e073ca1ae89d476a9cede797c410ac555597c1f442452cc8 Loading...

	3dsa62.shanzhi.me/ftl/bet365-141-2/plugin/js/swiper-4.3.3.min.js	123 kB	2023-03-07	2024-04-15
Pretty URL 3dsa62.shanzhi.me/ftl/bet365-141-2/plugin/js/swiper-4.3.3.min.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-04-15 18:48:07 Times Seen9746 Hash 317fd00903b68a157500b40495e8d74e 29ba73703d5c1d5390551e9fb230a3f1ace1437e efac6fec2ba437b6a906e249fad9de3c7d3c105a48136b0155376b5989c4d76a Loading...

	878fa.com:8989/	20 kB	2023-04-05	2024-04-16
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-16 06:48:56 Times Seen6227 Hash 9f5bce1aa50f72fd0834901c70db4f43 41771079bee5eb45539e694a5eff580732ab26b0 a50724b65a2657f6e67adbf98a3dd135de52b4786350f0b1bd142adff38c7ffd Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery.super-marquee.js	4.4 kB	2023-03-07	2024-04-16
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery.super-marquee.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-16 06:48:56 Times Seen12536 Hash f77d83590bc0a69298f2fbcc5d9911cd 1d6aa25d7052f53ad0181385e5efe72f224bbdb9 1d042b9441e860ddcc01b9e9e5e8d354121ee0e31b47f6e18a321e2e633d22e7 Loading...

	3dsa62.shanzhi.me/150810/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js	28 kB	2023-04-05	2024-04-16
Pretty URL 3dsa62.shanzhi.me/150810/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-16 06:48:56 Times Seen6246 Hash 9c41709c2b64126b909c101a27f39153 4ab666b36c092577acb41390ad90e96d5fea7711 c1963697eeafb63b6c29e95da2d38d91dd907ab656e130e6e1c34d1dcd149f60 Loading...

	3dsa62.shanzhi.me/150810/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js	15 kB	2023-03-07	2024-04-16
Pretty URL 3dsa62.shanzhi.me/150810/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-16 06:48:56 Times Seen12536 Hash 4fe7dadf050dad2dcfd386d21b880281 07e7feb8dc9309fe66d86d7a9e27f8efd32ab0bd aa891aafe8e98e1e15d81b2b116e6c3808d0bbbec56cd24818e2e7ac911877c9 Loading...

	vue.livehelp100service.com/livechat.ashx?siteId=65000584	1.8 kB	2023-05-15	2023-06-13
Pretty URL vue.livehelp100service.com/livechat.ashx?siteId=65000584 IP 54.230.111.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-15 13:16:13 Last Seen2023-06-13 01:31:58 Times Seen565 Hash 1a1d0701b17e86e7da24f39d1fd62348 c83d0483e5b76145223c93ff81e2c4fb7a4fa08f 2a94e1b60786c1ba92a80f7fd9a77869f08b405abd63790963f395731919612c Loading...

	vue.livehelp100service.com/visitorside/js/common.dce7d2db.js	61 kB	2023-05-10	2023-06-13
Pretty URL vue.livehelp100service.com/visitorside/js/common.dce7d2db.js IP 54.230.111.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-10 17:29:30 Last Seen2023-06-13 01:31:58 Times Seen892 Hash a97c5b0f2a1783a30ddf13de86d049bf 4c40fb76a09c6a6d07c3ec3b7665f1a8eae587b6 1d34d3038a74c748da83226c713a8813601a9589d12d10e178d6d6584ceb3d9b Loading...

	878fa.com:8989/commonPage/lan/i18n.js?t=1685876515.008	1.3 kB	2023-06-04	2023-06-04
Pretty URL 878fa.com:8989/commonPage/lan/i18n.js?t=1685876515.008 IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-04 13:02:22 Last Seen2023-06-04 13:02:22 Times Seen2 Hash 5f522b18835a237e8fec67818c49162d 43a58229cc33f640fa24636a41ed5499ebdad1ae bd1b21a785644d461eccd57a63b3104679c78bbbc59784ab797a455e7ec2ff94 Loading...

	unknown	278 B	2023-04-14	2024-04-15
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 20:29:13 Last Seen2024-04-15 18:48:06 Times Seen5530 Hash cf0aad09d2e7287c48d72501c4ed8cbd 7950b8c00d5a278b662dbccd11af31398a408e51 72512199b29d971b5fe854b1f610604dcbdec2c38666c106f1d15863e0df32db Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/websocket/PopUp.js	2.1 kB	2023-03-07	2024-04-16
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/websocket/PopUp.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-16 06:48:56 Times Seen12538 Hash 07864ad2e2759d53f8f2f14dd4295bd9 95144219e2eb702c4c4a707c3622b086876cf41c 871bf30791bb89605b61cea815c3786246274b65ede3b8a8b8c2dd9244cfa89d Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/gui-base.js	61 kB	2023-04-05	2023-09-12
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/gui-base.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2023-09-12 13:51:41 Times Seen3042 Hash b575e784995b44bfb0e8124cfcca1680 eb382fae3719c0f731383a17bbf59e4630795d13 196ee421870c9e54c6bf9b13e97c73dea3955632d9eca37ee87cdcdd1a8b7df3 Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/bootstrap-dialog.min.js	20 kB	2023-03-07	2024-04-16
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/bootstrap-dialog.min.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-16 06:48:56 Times Seen12563 Hash 5ce8851dc823429a42ab6147554403cc 28f381f0e0aa4f5d56690e65723bd97fb59a38e6 dd1edf5e54071903c4c1e81e33636444899d645df6b18bad22249da07f91c811 Loading...

	878fa.com:8989/	6 B	2023-03-07	2024-04-16
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-16 06:48:56 Times Seen7088 Hash edaddb8132e9e0880252c5b6c47bf1c1 dc08b5b6ca432b46cca94f1f297491e1b08736ea b98809417c0240085bf70f2a1127f0b622c1514651737e7e4ffac4b39e4da17e Loading...

	878fa.com:8989/	1.8 kB	2023-04-05	2024-04-16
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-16 06:48:56 Times Seen6223 Hash 9f1681b5a72417b33c2869aab85af152 b40a6d9c6d058c2bd6e126a1b0191182926b9d04 eabdfd0c5237f406e0acbef879968e72e5e3d62dd8e8b6bcee48e5ab7f4d0154 Loading...

	878fa.com:8989/	2.4 kB	2023-05-18	2023-11-28
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-18 01:25:27 Last Seen2023-11-28 09:25:01 Times Seen4082 Hash 91354abf0f62578b55d4dc04437f8866 22eb91f9ead6e7634670722da74d4a61b3c08150 035fec121949808f22f48133184d8fd307c2535912d140df791987de106c44d9 Loading...

	878fa.com:8989/	117 kB	2023-06-04	2023-06-04
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-04 13:02:22 Last Seen2023-06-04 13:02:22 Times Seen1 Hash 08e128fae5f7822c04e4cb1fbfb10361 17272696fdec81dbac23daf9317bb621b5c96050 943c5d29105d0304dc28cc0a8cde8af90bf153762e61eafa751ca4a5de4711b4 Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery-1.11.3.min.js	96 kB	2023-03-07	2024-04-16
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery-1.11.3.min.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:10 Last Seen2024-04-16 06:48:57 Times Seen13149 Hash b091a47f6b91e26c93a848092c6f3788 52918af2d431e73464060b35d364640c8db75606 329ab92b9276ef4e3148f69be6b208969bebdf2db3121a589caa172453fd9f10 Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/float.js	7.0 kB	2023-03-07	2024-04-16
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/float.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-16 06:48:56 Times Seen12539 Hash 829af863b0cdc4a603919824ae046299 1d417b1553e4ecb7125ebf2005b74255291fbf73 1dbe4afbc9ed220c08b9e95577b56f83e2e8e0f7620c5dc18266bb325e5bb271 Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/lazyload.js	11 kB	2023-04-05	2023-08-31
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/lazyload.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2023-08-31 08:58:03 Times Seen2511 Hash 95bb24446bd217df4f93461f70c7678c 2140c5afa733bf625108c85556736bdc70319ca9 dd6779210bf5c2670d3a2fea9cd108bc1471b25e074a9ea86017d46827e32d2f Loading...

	878fa.com:8989/	670 B	2023-03-13	2024-04-14
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 22:03:15 Last Seen2024-04-14 19:37:17 Times Seen1054 Hash 7efee0000e2aff5b32e62b7db0849a40 26cb4ec84240ffeb29d0786d2c6846b35e64f129 f342e58445840e28eac2b59151d0f86726e46e91b770b1b0f20e647e52493e23 Loading...

	878fa.com:8989/	5.9 kB	2023-04-05	2023-08-03
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2023-08-03 06:50:56 Times Seen2123 Hash 21d16b4bf9ca9dee56b6bd4c6fbc07fc a470fb54fc85c0f66587c8b18cf3720d81c5089f 949b743a6ee9cfc4a7f10b05969df89c626007d65b2f27f2aa8d501c30c8f2a9 Loading...

	878fa.com:8989/	390 B	2023-04-05	2024-04-16
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-16 06:48:56 Times Seen6185 Hash 4e6bbb84979a27014e74be230fe8440f aafe0c1dba07e91354abfb25d154c0acbed24d61 03e9af072f4db23c6c6cd74a89c796a3c764731da4734682f3ccfc07e0e54e74 Loading...

	vue.livehelp100service.com/visitorside/js/vendor.3f781933.js	74 kB	2023-05-10	2023-06-13
Pretty URL vue.livehelp100service.com/visitorside/js/vendor.3f781933.js IP 54.230.111.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-10 17:29:30 Last Seen2023-06-13 01:31:58 Times Seen982 Hash a835f52554aadc654111d559a421a1d6 c804b433151b32bf2a1cd5d9f447914c42a49346 ff6165fa761e7550a6d458ecff1ce641fb84a0a70a1f4f72bfc4c5b704c574ea Loading...

	878fa.com:8989/	3.1 kB	2023-04-14	2023-09-22
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-14 20:29:14 Last Seen2023-09-22 07:21:18 Times Seen642 Hash 051184490ed1f61ed23fcaa9f0eff69b 6a35c4e32ccdd572f21b66452b55dbb68c560ed6 b98ccc676b225f199546224feb9b31fc4e29fd9fd3704098c4ef925b4a051ed8 Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/websocket/Comet.js	17 kB	2023-04-05	2024-04-16
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/websocket/Comet.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-16 06:48:55 Times Seen6260 Hash 1008fe6a5e1a182d7775963b85405bb2 e174a7b08cc3cb5545af1cd33d2814e604119392 7479f6f22194ac37dd6d3f5a579b4682ac8dcb6389fb961cf4140f3fcc707a20 Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery.nicescroll.min.js	65 kB	2023-03-07	2024-04-16
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery.nicescroll.min.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-16 06:48:56 Times Seen12774 Hash b5bc8cd626b389bde727a91e6ce79436 3df6c39300ac286cf596b3bda273cb39ff825429 a1eb48eeb3b3f2ba41940d3041464f0b386b7a7c4a8acb42f3017e691f4b116e Loading...

	3dsa62.shanzhi.me/ftl/commonPage/js/moment.js	114 kB	2023-03-07	2023-06-13
Pretty URL 3dsa62.shanzhi.me/ftl/commonPage/js/moment.js IP 104.250.44.1 ASN #137280 Kingsoft cloud corporation limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2023-06-13 01:31:58 Times Seen1639 Hash 9bcf737d07f6f089ac8c8e11a1758fad fb186e78925c05500b7855bf7f4f9d00a5517acc cc0e4aae90d57f055ec9b006b0c82dc2571630c00d9fa6bb49c5edb52948c688 Loading...

	878fa.com:8989/	3.1 kB	2023-04-14	2024-04-14
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-14 20:29:14 Last Seen2024-04-14 19:37:17 Times Seen1052 Hash f700df2334d8195b4584feded7648cdf 18a3fea50c79783ab326011e6f1ad66492e48e09 be1f7d35fed5603c06720e019aec71584c1ca16caa2591641f8c515f7b141a4d Loading...

	878fa.com:8989/	120 kB	2023-04-14	2023-09-22
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-14 20:29:14 Last Seen2023-09-22 07:21:18 Times Seen642 Hash 6dd2a20ee22ff0e4ae8faaba31757274 e149040675a4f22293763f0c29887a4d3f787d30 39d4e72f3ae9ca2e5f8d1fdd4c1187f2ea23dac1bbeb55f56f7a1b68c3986ff6 Loading...

	878fa.com:8989/	0 B	2023-03-07	2024-04-16
Pretty URL 878fa.com:8989/ IP 13.75.95.168 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-16 09:08:14 Times Seen36894164 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

		Size	First Seen	Last Seen
	#1 Write - 29d342e14ea765f23122dd7ec5f4fcea	377 B	2023-05-10	2023-06-13
Pretty Observations First Seen2023-05-10 18:45:38 Last Seen2023-06-13 01:31:58 Times Seen525 Hash 29d342e14ea765f23122dd7ec5f4fcea ebd5aef9864259302e9267922ee1e251755be315 6c809710c711003f46d92e38eef03d81f0352eb501448dbe357929c53ca7428e Loading...

	#2 Write - 3366f26eb9fff4645b32b2f19aa6ce99	176 B	2023-03-07	2024-02-29
Pretty Observations First Seen2023-03-07 01:27:25 Last Seen2024-02-29 05:13:29 Times Seen962 Hash 3366f26eb9fff4645b32b2f19aa6ce99 acf8a839cade3210ebb03c64ec03bb1e5f207ef6 8d8e8a0fdf09457e906ba9b8c595213995be248cb8ed614f369f7ef538867fad Loading...

HTTP Transactions (130)

URL IP Response Size

878fa.com/

13.75.95.168

96 B

URL
878fa.com/
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document, ASCII text
Size
96 B (96 bytes)
Hash
03db2408c1cf5278f0dc60d5a9e4c8a4
28ec20913eeb7d3aa10d4a2502f194e803df0b49
36428dd25f948ad943848ed4b902ecc7b5ec7ff4c730ee0a82c178db03265ee1

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET / HTTP/1.1
Host: 878fa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:53 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Cache-Control: private, no-store, no-cache, must-revalidate, proxy-revalidate
Content-Encoding: gzip

878fa.com:8989/

13.75.95.168

200 OK

111 kB

URL User Request GET HTTP/1.1
878fa.com:8989/
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
111 kB (110770 bytes)
Hash
8d661b3b0402575f65fb764e4ba69aaa
1c6d8fbb940e6498fb0e9c85c85fb271e07f034c
3dd799f465def968db98756b9aa17af66ffb1365a965e7c9295e86caff263c79

HTTP Headers

GET / HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:55 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-html-cache: HIT-3600
X-Frame-Options: SAMEORIGIN
uuid: -
out-line: gb-site-054
Content-Encoding: gzip

878fa.com:8989/message_zh_CN.js?v=1685395744961

13.75.95.168

9.8 kB

URL
878fa.com:8989/message_zh_CN.js?v=1685395744961
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
Unicode text, UTF-8 text, with very long lines (17953)
Size
9.8 kB (9826 bytes)
Hash
2f6bbee802e13ba5b996854899146388
1740f10b199aabd29342db59f3bc368e7a115007
a133f55920bc6dce0b09e2b0e107fccf6f89a5f1744f2535e4702c08b38e198a

HTTP Headers

GET /message_zh_CN.js?v=1685395744961 HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Sun, 04 Jun 2023 11:01:55 GMT
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:55 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: 00141-02-00000000-1685876515c71e
out-line: gb-site-054

878fa.com:8989/commonPage/lan/i18n.js?t=1685876515.008

13.75.95.168

814 B

URL
878fa.com:8989/commonPage/lan/i18n.js?t=1685876515.008
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
ASCII text, with very long lines (1217)
Size
814 B (814 bytes)
Hash
5f522b18835a237e8fec67818c49162d
43a58229cc33f640fa24636a41ed5499ebdad1ae
bd1b21a785644d461eccd57a63b3104679c78bbbc59784ab797a455e7ec2ff94

HTTP Headers

GET /commonPage/lan/i18n.js?t=1685876515.008 HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:56 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
uuid: 00141-02-00000000-1685876516f368
out-line: gb-site-054
Content-Encoding: gzip

ocsp.sectigo.com/

104.18.15.101

471 B

URL
ocsp.sectigo.com/
IP
104.18.15.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
2bd530065f5629edcd10fdecf734913a
01c614c4cd4d71e15f35bdda4e08e9e56831a527
cfb9005ac010d195a18f48bcdbbb01047769dcbffcac900de7d1a8a34108781c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Jun 2023 00:25:51 GMT
Expires: Sat, 10 Jun 2023 00:25:50 GMT
Etag: "01c614c4cd4d71e15f35bdda4e08e9e56831a527"
Cache-Control: max-age=479820,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d1fae48fba70afa-OSL

ocsp.sectigo.com/

104.18.15.101

471 B

URL
ocsp.sectigo.com/
IP
104.18.15.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
2bd530065f5629edcd10fdecf734913a
01c614c4cd4d71e15f35bdda4e08e9e56831a527
cfb9005ac010d195a18f48bcdbbb01047769dcbffcac900de7d1a8a34108781c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Jun 2023 00:25:51 GMT
Expires: Sat, 10 Jun 2023 00:25:50 GMT
Etag: "01c614c4cd4d71e15f35bdda4e08e9e56831a527"
Cache-Control: max-age=479819,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d1fae48f911b4f3-OSL

ocsp.sectigo.com/

104.18.15.101

471 B

URL
ocsp.sectigo.com/
IP
104.18.15.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
2bd530065f5629edcd10fdecf734913a
01c614c4cd4d71e15f35bdda4e08e9e56831a527
cfb9005ac010d195a18f48bcdbbb01047769dcbffcac900de7d1a8a34108781c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Jun 2023 00:25:51 GMT
Expires: Sat, 10 Jun 2023 00:25:50 GMT
Etag: "01c614c4cd4d71e15f35bdda4e08e9e56831a527"
Cache-Control: max-age=479819,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d1fae48ff24b521-OSL

ocsp.sectigo.com/

104.18.15.101

471 B

URL
ocsp.sectigo.com/
IP
104.18.15.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
2bd530065f5629edcd10fdecf734913a
01c614c4cd4d71e15f35bdda4e08e9e56831a527
cfb9005ac010d195a18f48bcdbbb01047769dcbffcac900de7d1a8a34108781c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Jun 2023 00:25:51 GMT
Expires: Sat, 10 Jun 2023 00:25:50 GMT
Etag: "01c614c4cd4d71e15f35bdda4e08e9e56831a527"
Cache-Control: max-age=479819,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d1fae48ff1fb50f-OSL

ocsp.sectigo.com/

104.18.15.101

471 B

URL
ocsp.sectigo.com/
IP
104.18.15.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
2bd530065f5629edcd10fdecf734913a
01c614c4cd4d71e15f35bdda4e08e9e56831a527
cfb9005ac010d195a18f48bcdbbb01047769dcbffcac900de7d1a8a34108781c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Jun 2023 00:25:51 GMT
Expires: Sat, 10 Jun 2023 00:25:50 GMT
Etag: "01c614c4cd4d71e15f35bdda4e08e9e56831a527"
Cache-Control: max-age=479820,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d1fae48f9fc1c0e-OSL

3dsa62.shanzhi.me/ftl/bet365-141-2/themes/style/bootstrap-dialog.min.css

104.250.44.1

200 OK

630 B

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/bet365-141-2/themes/style/bootstrap-dialog.min.css
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
ASCII text
Size
630 B (630 bytes)
Hash
304eb84809c6637b7cdd0dc6225c5761
e724aff10b16dc82bf1086cd3b70d8396f630d64
cb1d0b332c0218bbb360fd25d693f88293b54389caf88c36ffcfd8adc948d0e4

HTTP Headers

GET /ftl/bet365-141-2/themes/style/bootstrap-dialog.min.css HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 630
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"6153e3b6-adc"
Date: Sun, 14 May 2023 12:25:50 GMT
Last-Modified: Wed, 29 Sep 2021 03:55:34 GMT
Expires: Tue, 13 Jun 2023 12:25:50 GMT
Age: 1809366
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: e0c5d3a4af1379b608e10a768596fbeb

3dsa62.shanzhi.me/ftl/commonPage/themes/gui-base.css

104.250.44.1

200 OK

17 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/themes/gui-base.css
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (12023)
Size
17 kB (16723 bytes)
Hash
fcf7fcda4cfb8589d0e35dcad1b6a70a
607ec7cfde0e21e5ca7323aabd340ea82eddbd0c
58005581427a61dee5af1386995b38d90e995f4bcb75b85f8bb84d84ab5ac0fd

HTTP Headers

GET /ftl/commonPage/themes/gui-base.css HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 16723
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"64702b4d-13d22"
Date: Fri, 26 May 2023 07:15:05 GMT
Last-Modified: Fri, 26 May 2023 03:45:17 GMT
Expires: Sun, 25 Jun 2023 07:15:05 GMT
Age: 791211
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 75559e036885d6db311ecdab296fd466

3dsa62.shanzhi.me/ftl/bet365-141-2/themes/style/common.css

104.250.44.1

200 OK

13 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/bet365-141-2/themes/style/common.css
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
assembler source, Unicode text, UTF-8 (with BOM) text, with very long lines (532)
Size
13 kB (12555 bytes)
Hash
04757ccd661adac14634b7e8a5433fac
7bf0357e270bed99f9552c2b0a20c54ba5c82847
c1aae50fbd930459dbe6d2d8a309e99cb0570a6b054bcb99c96d4dcfc5e34e57

HTTP Headers

GET /ftl/bet365-141-2/themes/style/common.css HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 12555
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: W/"615ba89c-cf92"
Date: Sun, 14 May 2023 12:25:50 GMT
Last-Modified: Tue, 05 Oct 2021 01:21:32 GMT
Expires: Tue, 13 Jun 2023 12:25:50 GMT
Age: 1809367
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
Content-Encoding: gzip
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 61d5174e1d4482b6692854d49c88b97a

3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery-1.11.3.min.js

104.250.44.1

200 OK

34 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery-1.11.3.min.js
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
ASCII text, with very long lines (32038)
Size
34 kB (33545 bytes)
Hash
b091a47f6b91e26c93a848092c6f3788
52918af2d431e73464060b35d364640c8db75606
329ab92b9276ef4e3148f69be6b208969bebdf2db3121a589caa172453fd9f10

HTTP Headers

GET /ftl/commonPage/js/jquery/jquery-1.11.3.min.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 33545
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"5d848f4f-176d4"
Date: Sun, 14 May 2023 12:21:06 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 13 Jun 2023 12:21:06 GMT
Age: 1809651
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 46f265f79dbee9b6d7a577827af595c7

3dsa62.shanzhi.me/ftl/commonPage/themes/gui-skin-default.css

104.250.44.1

6.2 kB

URL
3dsa62.shanzhi.me/ftl/commonPage/themes/gui-skin-default.css
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (7014)
Size
6.2 kB (6239 bytes)
Hash
d72bc8116ebcfa2aa1853b83f607f2f9
669f0eddfe55d617d5dd0264ebef6ee483ca8319
9dcd6715090f9f85e0010db1dfecf43a05ba4e28df4884264a65356f3bc9e917

HTTP Headers

GET /ftl/commonPage/themes/gui-skin-default.css HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 6239
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: W/"5fced4cc-7b2e"
Date: Sun, 14 May 2023 12:25:50 GMT
Last-Modified: Tue, 08 Dec 2020 01:20:12 GMT
Expires: Tue, 13 Jun 2023 12:25:50 GMT
Age: 1809367
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: d26e174ea646cc88a295c1829bed4cf2

3dsa62.shanzhi.me/ftl/commonPage/js/float.js

104.250.44.1

1.9 kB

URL
3dsa62.shanzhi.me/ftl/commonPage/js/float.js
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
1.9 kB (1929 bytes)
Hash
829af863b0cdc4a603919824ae046299
1d417b1553e4ecb7125ebf2005b74255291fbf73
1dbe4afbc9ed220c08b9e95577b56f83e2e8e0f7620c5dc18266bb325e5bb271

HTTP Headers

GET /ftl/commonPage/js/float.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 1929
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: W/"612747ba-1b2f"
Date: Sun, 14 May 2023 12:21:06 GMT
Last-Modified: Thu, 26 Aug 2021 07:50:18 GMT
Expires: Tue, 13 Jun 2023 12:21:06 GMT
Age: 1809651
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: a2793dbb1efce00bff2b38c5c800325e

3dsa62.shanzhi.me/ftl/commonPage/js/idangerous.swiper.min.js

104.250.44.1

200 OK

12 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/js/idangerous.swiper.min.js
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
ASCII text, with very long lines (32030)
Size
12 kB (11951 bytes)
Hash
6ddb20c89aad63f86c5862b2f5c48a56
45da7bc94c509993ad003b3963c6e802b5ec248a
1fbcf8666e954fac26076fac509f215be910952ab0e2a667d184ef877c836b2f

HTTP Headers

GET /ftl/commonPage/js/idangerous.swiper.min.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 11951
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"5d848f4f-b07e"
Date: Sun, 14 May 2023 12:21:06 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 13 Jun 2023 12:21:06 GMT
Age: 1809651
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 3cbc88a09d59748f37271cf353b4b8c4

3dsa62.shanzhi.me/ftl/commonPage/js/websocket/Comet.js

104.250.44.1

4.0 kB

URL
3dsa62.shanzhi.me/ftl/commonPage/js/websocket/Comet.js
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
4.0 kB (4031 bytes)
Hash
4de3e8bcf2f02d60519ca0d3584d3b8e
6323c2bf18b1bbf968e164bdf2e58d7677f67f8a
6cf6e96f51f13834e233bee9a9040f6eff70601dc0b755e60885b20550b35a9f

HTTP Headers

GET /ftl/commonPage/js/websocket/Comet.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 4031
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"60f60fb5-43bc"
Date: Sun, 14 May 2023 12:21:07 GMT
Last-Modified: Mon, 19 Jul 2021 23:50:13 GMT
Expires: Tue, 13 Jun 2023 12:21:07 GMT
Age: 1809650
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: f90ca3f1f08e37e5b7aa210a4b4a3a57

3dsa62.shanzhi.me/ftl/bet365-141-2/themes/style/swiper-4.3.3.min.css

104.250.44.1

3.1 kB

URL
3dsa62.shanzhi.me/ftl/bet365-141-2/themes/style/swiper-4.3.3.min.css
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
ASCII text, with very long lines (19512)
Size
3.1 kB (3094 bytes)
Hash
f29b1aec530d4ecb1255894948203345
ec15a3a265c1556fae8f9553d371423df9653c50
f476606c821fd23ba0fcae1845e3e45ae39f6040921de2d96698ad7d1e922f3e

HTTP Headers

GET /ftl/bet365-141-2/themes/style/swiper-4.3.3.min.css HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 3094
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: W/"6153e3b6-4d3d"
Date: Sun, 14 May 2023 12:25:50 GMT
Last-Modified: Wed, 29 Sep 2021 03:55:34 GMT
Expires: Tue, 13 Jun 2023 12:25:50 GMT
Age: 1809366
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 2b8321f147f7da309fe93ead2def0921

3dsa62.shanzhi.me/ftl/commonPage/js/websocket/CometMarathon.js

104.250.44.1

3.3 kB

URL
3dsa62.shanzhi.me/ftl/commonPage/js/websocket/CometMarathon.js
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
3.3 kB (3316 bytes)
Hash
3b4680db1e065116488f065419ca9f58
6c646601c5656ff6cb1fdf9d5b95823f41e9bcfa
e2bfb9fc21f2a1a6e33c7c5ed20de13ef2ef4bcf266aa4b2e6f2fee06f8f4eaf

HTTP Headers

GET /ftl/commonPage/js/websocket/CometMarathon.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 3316
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: W/"6260ddd4-2f13"
Date: Sun, 14 May 2023 12:21:06 GMT
Last-Modified: Thu, 21 Apr 2022 04:30:12 GMT
Expires: Tue, 13 Jun 2023 12:21:06 GMT
Age: 1809651
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 3e57f8c0879bf7763ea59f1993e04d4d

3dsa62.shanzhi.me/ftl/commonPage/js/websocket/PopUp.js

104.250.44.1

200 OK

797 B

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/js/websocket/PopUp.js
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
797 B (797 bytes)
Hash
07864ad2e2759d53f8f2f14dd4295bd9
95144219e2eb702c4c4a707c3622b086876cf41c
871bf30791bb89605b61cea815c3786246274b65ede3b8a8b8c2dd9244cfa89d

HTTP Headers

GET /ftl/commonPage/js/websocket/PopUp.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 797
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"6260ddd4-828"
Date: Sun, 14 May 2023 12:21:06 GMT
Last-Modified: Thu, 21 Apr 2022 04:30:12 GMT
Expires: Tue, 13 Jun 2023 12:21:06 GMT
Age: 1809651
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 437441e8df21d2f7eea49b34ce099785

3dsa62.shanzhi.me/ftl/commonPage/js/lazyload.js

104.250.44.1

200 OK

2.7 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/js/lazyload.js
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
2.7 kB (2688 bytes)
Hash
c400884eb33705c441487b8beed81be0
6e040e41aad03c4554aa90141fd872433185082a
df904653b6c930ec406670bed1f674269b2797843081a9b526545b970544606c

HTTP Headers

GET /ftl/commonPage/js/lazyload.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 2688
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"63a93f79-2ce5"
Date: Sun, 14 May 2023 12:21:06 GMT
Last-Modified: Mon, 26 Dec 2022 06:30:17 GMT
Expires: Tue, 13 Jun 2023 12:21:06 GMT
Age: 1809651
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: c3b74c8029e84185858cd731781ccb2a

3dsa62.shanzhi.me/ftl/commonPage/js/gui-base.js

104.250.44.1

16 kB

URL
3dsa62.shanzhi.me/ftl/commonPage/js/gui-base.js
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (11041)
Size
16 kB (15770 bytes)
Hash
4f958aa7157a3b48caa17e42505396b6
67a2625ceeb29fd2d235c9c395c53ff505029b46
bc19a91cd57e7ce343a16a261bfb71fd89b03e033710e12c41ed9e9c3746b708

HTTP Headers

GET /ftl/commonPage/js/gui-base.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 15770
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: W/"5d848f4f-ee4d"
Date: Sun, 14 May 2023 12:21:08 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 13 Jun 2023 12:21:08 GMT
Age: 1809649
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: acdec8bae5df3637fffb47dffa63cc46

3dsa62.shanzhi.me/ftl/commonPage/js/bootstrap-dialog.min.js

104.250.44.1

200 OK

5.0 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/js/bootstrap-dialog.min.js
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
ASCII text, with very long lines (20132), with no line terminators
Size
5.0 kB (5007 bytes)
Hash
5ce8851dc823429a42ab6147554403cc
28f381f0e0aa4f5d56690e65723bd97fb59a38e6
dd1edf5e54071903c4c1e81e33636444899d645df6b18bad22249da07f91c811

HTTP Headers

GET /ftl/commonPage/js/bootstrap-dialog.min.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 5007
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: W/"5d848f4f-4ea4"
Date: Sun, 14 May 2023 12:21:06 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 13 Jun 2023 12:21:06 GMT
Age: 1809651
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 3bce1678ac59f5f86dfdbe42c6e034de

3dsa62.shanzhi.me/ftl/commonPage/js/layer.js

104.250.44.1

200 OK

7.6 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/js/layer.js
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (21922)
Size
7.6 kB (7599 bytes)
Hash
c42797aecccd5494e2b747cedf1a890b
b9e06a6d245b6a3c87f2753db0c9c9aa020640b2
56feab66e10b4718de666fc63941b4f36a5e553e8887d663e137e635add8beb3

HTTP Headers

GET /ftl/commonPage/js/layer.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 7599
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"5d848f4f-55f6"
Date: Sun, 14 May 2023 12:21:06 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 13 Jun 2023 12:21:06 GMT
Age: 1809651
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 2389fbd332e6c5ebab9ce8859e80be42

3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery.super-marquee.js

104.250.44.1

1.4 kB

URL
3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery.super-marquee.js
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
ASCII text, with very long lines (4433), with no line terminators
Size
1.4 kB (1421 bytes)
Hash
f77d83590bc0a69298f2fbcc5d9911cd
1d6aa25d7052f53ad0181385e5efe72f224bbdb9
1d042b9441e860ddcc01b9e9e5e8d354121ee0e31b47f6e18a321e2e633d22e7

HTTP Headers

GET /ftl/commonPage/js/jquery/jquery.super-marquee.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 1421
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"5d848f4f-1151"
Date: Sun, 14 May 2023 12:24:19 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 13 Jun 2023 12:24:19 GMT
Age: 1809458
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 29e04c1b39229cf93c1fbdb88a5e011a

3dsa62.shanzhi.me/150810/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js

104.250.44.1

200 OK

7.7 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/150810/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (27669)
Size
7.7 kB (7746 bytes)
Hash
f8c2b37c1dc626eede6a2e3e37aa4504
d4e8419497caa64c8a850ac4808dddb89b5eeb3f
728d63b799ab3d9bee5e987ad13f71aeb9d30ff78ed552c7edc425531c9c0f2a

HTTP Headers

GET /150810/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 7746
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-FOREIGN-12-02
ETag: W/"64748e92-6caf"
Date: Tue, 30 May 2023 00:05:18 GMT
Last-Modified: Mon, 29 May 2023 11:37:54 GMT
Expires: Thu, 29 Jun 2023 00:05:18 GMT
Age: 471399
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-FOREIGN-12-02, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: fb9ca594f562dd9806270d6c5fc1feda

3dsa62.shanzhi.me/150810/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js

104.250.44.1

4.1 kB

URL
3dsa62.shanzhi.me/150810/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (14855), with no line terminators
Size
4.1 kB (4126 bytes)
Hash
4fe7dadf050dad2dcfd386d21b880281
07e7feb8dc9309fe66d86d7a9e27f8efd32ab0bd
aa891aafe8e98e1e15d81b2b116e6c3808d0bbbec56cd24818e2e7ac911877c9

HTTP Headers

GET /150810/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 4126
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-FOREIGN-12-02
ETag: W/"64748e92-3a09"
Date: Tue, 30 May 2023 00:05:19 GMT
Last-Modified: Mon, 29 May 2023 11:37:54 GMT
Expires: Thu, 29 Jun 2023 00:05:19 GMT
Age: 471398
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-FOREIGN-12-02, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: c51b8259491e56940bba0ff5165456e7

3dsa62.shanzhi.me/ftl/commonPage/js/moment.js

104.250.44.1

200 OK

27 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/js/moment.js
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Algol 68 source text\012- Pascal source, Unicode text, UTF-8 text
Size
27 kB (26878 bytes)
Hash
9bcf737d07f6f089ac8c8e11a1758fad
fb186e78925c05500b7855bf7f4f9d00a5517acc
cc0e4aae90d57f055ec9b006b0c82dc2571630c00d9fa6bb49c5edb52948c688

HTTP Headers

GET /ftl/commonPage/js/moment.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 26878
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"62a1b56b-1bf5b"
Date: Sun, 14 May 2023 12:24:19 GMT
Last-Modified: Thu, 09 Jun 2022 08:55:07 GMT
Expires: Tue, 13 Jun 2023 12:24:19 GMT
Age: 1809458
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: e092e1528d739fedab7b232461ad5148

3dsa62.shanzhi.me/150810/rcenter/common/static/js/gb.validation.min.js?v=1685395744961

104.250.44.1

5.2 kB

URL
3dsa62.shanzhi.me/150810/rcenter/common/static/js/gb.validation.min.js?v=1685395744961
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (801)
Size
5.2 kB (5207 bytes)
Hash
30be40425b37bee4158676082cef1f4d
b41ed46721936872d5d7eadf303ce22938240d2a
f5ca5f543161a6b37ca2bf26c4f3c630fe08323108c77dac1fba6ce755ce6f47

HTTP Headers

GET /150810/rcenter/common/static/js/gb.validation.min.js?v=1685395744961 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 5207
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-FOREIGN-12-02
ETag: W/"633d510e-7fd7"
Date: Tue, 30 May 2023 00:05:18 GMT
Last-Modified: Wed, 05 Oct 2022 09:40:30 GMT
Expires: Thu, 29 Jun 2023 00:05:18 GMT
Age: 471399
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-FOREIGN-12-02, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: a261bea8694c944c40210e893d9f0b2c

3dsa62.shanzhi.me/ftl/commonPage/themes/hb/css/pc.css

104.250.44.1

200 OK

911 B

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/themes/hb/css/pc.css
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
ASCII text
Size
911 B (911 bytes)
Hash
1da71520b7a0a61526a8fa8d0feb40d1
ba1bf69dad8783563328054cae58ccabf1b00829
5eb4d895bcb33061cda238c8ff4985ede69a866819b980c732cf3802ec101e8d

HTTP Headers

GET /ftl/commonPage/themes/hb/css/pc.css HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 911
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"5d848f4f-b5d"
Date: Sun, 14 May 2023 12:53:38 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 13 Jun 2023 12:53:38 GMT
Age: 1807699
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 94afcc4bb9c9d5e8ce82dd0fe9eb3fc4

3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery.nicescroll.min.js

104.250.44.1

200 OK

17 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/js/jquery/jquery.nicescroll.min.js
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
ASCII text, with very long lines (64577)
Size
17 kB (17446 bytes)
Hash
b5bc8cd626b389bde727a91e6ce79436
3df6c39300ac286cf596b3bda273cb39ff825429
a1eb48eeb3b3f2ba41940d3041464f0b386b7a7c4a8acb42f3017e691f4b116e

HTTP Headers

GET /ftl/commonPage/js/jquery/jquery.nicescroll.min.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 17446
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"5d848f4f-fc8b"
Date: Wed, 24 May 2023 06:17:16 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Fri, 23 Jun 2023 06:17:16 GMT
Age: 967481
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 9c39a9e17e7fd618fb1f72734e0f4578

3dsa62.shanzhi.me/150810/rcenter/common/static/css/gb.validation.min.css

104.250.44.1

3.8 kB

URL
3dsa62.shanzhi.me/150810/rcenter/common/static/css/gb.validation.min.css
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (2295)
Size
3.8 kB (3788 bytes)
Hash
f00ce0554efc5adea6a8e02d5e501cad
388840e376568b37ac0103aa5c87a268778db67a
3043f42fdd97ec607648da79c3abfa6f364404c7594143227c2541d1f0ac6069

HTTP Headers

GET /150810/rcenter/common/static/css/gb.validation.min.css HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 3788
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-FOREIGN-12-02
ETag: W/"633d510e-2d52"
Date: Tue, 30 May 2023 00:05:18 GMT
Last-Modified: Wed, 05 Oct 2022 09:40:30 GMT
Expires: Thu, 29 Jun 2023 00:05:18 GMT
Age: 471399
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-FOREIGN-12-02, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: e9c434c51eb1f2e0c3b3c09c1dacaa3d

3dsa62.shanzhi.me/ftl/bet365-141-2/plugin/js/swiper-4.3.3.min.js

104.250.44.1

200 OK

32 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/bet365-141-2/plugin/js/swiper-4.3.3.min.js
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65275)
Size
32 kB (31739 bytes)
Hash
317fd00903b68a157500b40495e8d74e
29ba73703d5c1d5390551e9fb230a3f1ace1437e
efac6fec2ba437b6a906e249fad9de3c7d3c105a48136b0155376b5989c4d76a

HTTP Headers

GET /ftl/bet365-141-2/plugin/js/swiper-4.3.3.min.js HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 31739
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"614d2b23-1df6f"
Date: Sun, 14 May 2023 12:25:26 GMT
Last-Modified: Fri, 24 Sep 2021 01:34:27 GMT
Expires: Tue, 13 Jun 2023 12:25:26 GMT
Age: 1809391
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 41317eb67f9be864323d5d77e57ce8e8

3dsa62.shanzhi.me/ftl/commonPage/themes/gui-layer.css

104.250.44.1

200 OK

6.8 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/themes/gui-layer.css
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (489)
Size
6.8 kB (6776 bytes)
Hash
1c23442d5fb40416df9363799e8d0cb9
d70dd2824c27574bd5a2df64eec410e5fcb6dea9
5589ea967b68e4f6fffae1fb8c1cd899740a39c6c6018ae68677b7ad4fc2a42c

HTTP Headers

GET /ftl/commonPage/themes/gui-layer.css HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3dsa62.shanzhi.me/ftl/commonPage/themes/gui-base.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 6776
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"64252e4f-c3fe"
Date: Sun, 14 May 2023 12:25:50 GMT
Last-Modified: Thu, 30 Mar 2023 06:38:07 GMT
Expires: Tue, 13 Jun 2023 12:25:50 GMT
Age: 1809367
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 2161910f26e1f105db30f6d9fad33bcc

3dsa62.shanzhi.me/ftl/commonPage/themes/hongbao.css

104.250.44.1

200 OK

5.7 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/themes/hongbao.css
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (336)
Size
5.7 kB (5666 bytes)
Hash
499a3a64bcf22609681f5337a6360c80
fc05a8a391c8375ea4e47183eca56a18bed8fca7
5339bf22971b6400e64154decc06b84fd4be337c2758cc7ca565756c92c97894

HTTP Headers

GET /ftl/commonPage/themes/hongbao.css HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3dsa62.shanzhi.me/ftl/commonPage/themes/gui-base.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 5666
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: W/"64252e4f-d530"
Date: Sun, 14 May 2023 12:25:50 GMT
Last-Modified: Thu, 30 Mar 2023 06:38:07 GMT
Expires: Tue, 13 Jun 2023 12:25:50 GMT
Age: 1809367
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 4a152fa8893f4364149ca89aa786f918

3dsa62.shanzhi.me/ftl/commonPage/zh_CN/mobileTopic/images/special_3.jpg

104.250.44.1

200 OK

6.9 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/zh_CN/mobileTopic/images/special_3.jpg
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 168x168, components 3\012- data
Size
6.9 kB (6871 bytes)
Hash
99be4bfe275809d4e436b77c991b1381
54eadee77394eb62ccf377ae68d9f49acb5b6785
4ca35131972acdf420b94f0d64a5a0f504eb5a7b0e6fb7b8b467916a12aae37d

HTTP Headers

GET /ftl/commonPage/zh_CN/mobileTopic/images/special_3.jpg HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 6871
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "5d848f4f-1ad7"
Date: Sun, 14 May 2023 13:06:52 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 13 Jun 2023 13:06:52 GMT
Age: 1806905
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 533da5053a510b64582ef47a371cff90

3dsa62.shanzhi.me/ftl/commonPage/js/theme/default/layer.css?v=3.1.0

104.250.44.1

200 OK

3.1 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/js/theme/default/layer.css?v=3.1.0
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
ASCII text
Size
3.1 kB (3111 bytes)
Hash
5cf9259b7dd27aacd46161ec23d261cf
ba0c399616a5ae9cdd8aec5b76ba4aae4822367c
7f73a66b3a9a38576d124b6243a8984d795028e3493b8fa3f688d8dbe10cbccc

HTTP Headers

GET /ftl/commonPage/js/theme/default/layer.css?v=3.1.0 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 3111
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: W/"6131d862-48e4"
Date: Sun, 14 May 2023 13:04:03 GMT
Last-Modified: Fri, 03 Sep 2021 08:10:10 GMT
Expires: Tue, 13 Jun 2023 13:04:03 GMT
Age: 1807075
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 30107ab86efd8105c2d7fe0b8d05c100

ocsp.r2m01.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
b9ccebe47998b1c81540fa4238c8369a
e14d265867536475f3a2bb5b82fd622f8c7b39b1
f26032472a873d4f25cce3b5561856223490fab67e35769f839976c8e5d8e995

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 04 Jun 2023 11:01:58 GMT
Last-Modified: Sun, 04 Jun 2023 10:45:33 GMT
Server: ECAcc (dcb/7FD4)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Vfz7Ccy1u6ehlXQXqT150mPL1159cUrE81hoj1puc0yZhAiPAkNldg==
Age: 985

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7695.png

13.75.95.168

23 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7695.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
23 kB (22623 bytes)
Hash
3c3c588128385827b532946ac86d0a6d
7d84bebb554df6b3c699352d83d640368903ceff
206c91c826cef5d9db409283a0c439a4322211588ecc14b6abb0af9d4573b328

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7695.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:58 GMT
Content-Type: image/png
Content-Length: 22623
Connection: keep-alive
Last-Modified: Tue, 29 Mar 2022 10:22:55 GMT
ETag: "6242ddff-585f"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:58 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7583.png

13.75.95.168

200 OK

20 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7583.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
20 kB (20322 bytes)
Hash
a33f52ea5bd6275e21267f80791ef78a
8c628b103599834a360c53bbb3fbc9e01c5878c6
bb5a4afcdc59886a05b426337bdc6480c07742c0d06ca7bb3a03f66d904731e7

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7583.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:58 GMT
Content-Type: image/png
Content-Length: 20322
Connection: keep-alive
Last-Modified: Tue, 29 Mar 2022 10:22:55 GMT
ETag: "6242ddff-4f62"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:58 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7696.png

13.75.95.168

200 OK

23 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7696.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
23 kB (22876 bytes)
Hash
8443275571f203acae6b53207ed73b9f
c3d112abe5edbacb300b321b54cdc9c7d4666bbf
c54b7cdaf70e87778fc4d9c645d5c0296184f7f67793a2b777c194599700882c

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7696.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:58 GMT
Content-Type: image/png
Content-Length: 22876
Connection: keep-alive
Last-Modified: Tue, 29 Mar 2022 10:22:55 GMT
ETag: "6242ddff-595c"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:58 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/bet365-141-2/themes/images/hot.gif

13.75.95.168

200 OK

1.3 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/bet365-141-2/themes/images/hot.gif
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
GIF image data, version 89a, 16 x 21\012- data
Size
1.3 kB (1265 bytes)
Hash
98b6e28b9ec42fb2cfeeb767adf534b0
ec30e424f3b775ad1d9b80e8947a4646ee8c5af9
06011ce85e775ecfeda87eaca9ee6ac75cb9522cefe71448d8b04adc81bd9f67

HTTP Headers

GET /ftl/bet365-141-2/themes/images/hot.gif HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:58 GMT
Content-Type: image/gif
Content-Length: 1265
Connection: keep-alive
Last-Modified: Mon, 15 Jul 2019 12:48:03 GMT
ETag: "5d2c7603-4f1"
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:58 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/index/getAppsUrl.html?device=android

13.75.95.168

200

905 B

URL GET HTTP/1.1
878fa.com:8989/index/getAppsUrl.html?device=android
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
JSON data\012- , ASCII text, with very long lines (1136), with no line terminators
Size
905 B (905 bytes)
Hash
5b522d226f8e04fc035f63b1a4faaab7
036ea8a51dc847e12830757d78be42d2b0e699c6
b685578a1eef5452225d45867558d286d95a05f61dae459766c24ff5e088bebd

HTTP Headers

GET /index/getAppsUrl.html?device=android HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Sun, 04 Jun 2023 11:01:58 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: route=4dc7dfeabaa1977335671c9d813ff1f9; Path=/
Content-Disposition: inline;filename=f.txt
sub-sys: msite
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
uuid: 00141-02-00000000-1685876518aa34
out-line: gb-site-054

878fa.com:8989/mobile-api/v5/origin/getFloat.html

13.75.95.168

874 B

URL
878fa.com:8989/mobile-api/v5/origin/getFloat.html
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (866), with no line terminators
Size
874 B (874 bytes)
Hash
dac5280b26e17bc85a48cbb7514a826b
0f815bc884e5c5f79d23e66971e586f84c2eb082
77df170e41684ffebacffe66af832158c08a700fafba8620c94721732ad412a8

HTTP Headers

POST /mobile-api/v5/origin/getFloat.html HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 68
Origin: https://878fa.com:8989
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Sun, 04 Jun 2023 11:01:58 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 874
Connection: keep-alive
Set-Cookie: route=21c20bedba26b78ebec8dc5df8d96c86; Path=/
Access-Control-Allow-Origin: https://878fa.com:8989
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: Content-Type,Access-Token,X-Requested-With
Content-Disposition: inline;filename=f.txt
sub-sys: mobile
X-Frame-Options: SAMEORIGIN
uuid: 00141-02-00000000-1685876518b8b3
out-line: gb-site-054

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_9_6.png

13.75.95.168

200 OK

22 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_9_6.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
22 kB (21622 bytes)
Hash
18fc529cc0b071eee9ab764c7b3cebf2
e79958322824752ee3be995515d242f3a65dbd15
7dc7c033a2391b021f70e5576b15806c1e3e73b2bf5a0beda751bbdff7513b7b

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_9_6.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:58 GMT
Content-Type: image/png
Content-Length: 21622
Connection: keep-alive
Last-Modified: Mon, 15 Jul 2019 12:48:11 GMT
ETag: "5d2c760b-5476"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:58 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30588.png

13.75.95.168

150 B

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30588.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
150 B (150 bytes)
Hash
597ba0d4396e9c906225140ce907092c
28ae2ba65ccdb583d79f85b8cc9509fae697493b
ee1a27178227546d3dcc49e611a6d72e4f1c30080ee4493ae4085b58a49e28e6

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30588.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Sun, 04 Jun 2023 11:01:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 150
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7923.png

13.75.95.168

25 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7923.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
25 kB (24902 bytes)
Hash
ed5a34b19f60b3ab3d7d47586d934ec1
eb769ea1a1b28f662aba9c3d853c42f86de3d0e2
83ac881a379b7e15a0d133a01b6f14cd413c4a1b619b0ddc61d7dca02e20db35

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7923.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 24902
Connection: keep-alive
Last-Modified: Tue, 29 Mar 2022 10:22:55 GMT
ETag: "6242ddff-6146"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_8673.png

13.75.95.168

25 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_8673.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
25 kB (25030 bytes)
Hash
230a3ba266ae64dee8f70d0ff2f3b0e0
e5bd5defc0486a69adf7d8b187c2100e015260a2
c38424550af0abe01c532bcfdb9d3985a006a2f50ebe65da95b5a4afd2495449

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_8673.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:58 GMT
Content-Type: image/png
Content-Length: 25030
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 03:01:08 GMT
ETag: "639fd3f4-61c6"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:58 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

vue.livehelp100service.com/visitorside/js/common.dce7d2db.js

54.230.111.98

21 kB

URL
vue.livehelp100service.com/visitorside/js/common.dce7d2db.js
IP
54.230.111.98:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (57848)
Size
21 kB (20951 bytes)
Hash
a97c5b0f2a1783a30ddf13de86d049bf
4c40fb76a09c6a6d07c3ec3b7665f1a8eae587b6
1d34d3038a74c748da83226c713a8813601a9589d12d10e178d6d6584ceb3d9b

HTTP Headers

GET /visitorside/js/common.dce7d2db.js HTTP/1.1
Host: vue.livehelp100service.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://878fa.com:8989
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Sun, 04 Jun 2023 05:59:34 GMT
server: nginx/1.22.1
last-modified: Mon, 08 May 2023 07:00:15 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: br
etag: W/"64589dff-ee9c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lREoEvF-6fNCZKMq_KV5Ex2_qcTkhGd2QClPnUJ2Fqll3qhTUksAvA==
age: 18144
X-Firefox-Spdy: h2

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30594.png

13.75.95.168

25 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30594.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
25 kB (24721 bytes)
Hash
7b497cfccdf85cf3a934c4d61e80d55a
2ed0898ac3b002f53b99dd5b059509098078295e
210370587be2eff0fbd4e3f29dd8114da568e50ef60f94912bd6b37eb657be72

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30594.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 24721
Connection: keep-alive
Last-Modified: Mon, 04 Jul 2022 02:26:45 GMT
ETag: "62c24fe5-6091"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_8339.png

13.75.95.168

200 OK

96 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_8339.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
96 kB (95973 bytes)
Hash
852c361c9460f489e179f3d34edab1dd
c981b28bbab1500869ff9aa937c3f17e67262ad8
97538b6351173a03757ff751ee08d62cf615b8e01725bc60ec299a2b54a6859b

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_8339.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 95973
Connection: keep-alive
Last-Modified: Mon, 20 Jun 2022 03:50:04 GMT
ETag: "62afee6c-176e5"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10315/1659084673947.png?wsSecret=924975ef9e799276c5299bb5f0ee74a2&wsTime=1685876517

104.250.44.1

200 OK

107 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10315/1659084673947.png?wsSecret=924975ef9e799276c5299bb5f0ee74a2&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 850 x 214, 8-bit colormap, non-interlaced\012- data
Size
107 kB (106746 bytes)
Hash
e575f7f68ace5718a733ce9a735dba27
2a2aff13696be1b051eb7c78e7153db8c1ecaea4
144dfdb1a20d96a0eeef856bcacb63396dce907b5291196a2ea89f3b96543544

HTTP Headers

GET /fserver/files/gb/141/carousel/10315/1659084673947.png?wsSecret=924975ef9e799276c5299bb5f0ee74a2&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 106746
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "6379d708-1a0fa"
Date: Sun, 14 May 2023 13:09:29 GMT
Last-Modified: Sun, 20 Nov 2022 07:28:08 GMT
Expires: Tue, 13 Jun 2023 13:09:29 GMT
Age: 1806749
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 2eadd7fae956e28ce3a6d5c61cbe8cbb

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7697.png

13.75.95.168

200 OK

27 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7697.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
27 kB (26952 bytes)
Hash
6806dc9c36ddfc927f9814ab1f8a021c
fee37bf769af8a26bf58ed70405100bfee39e867
1455e15577781e784863594804797d19c9edb69c6aaa32fe86f9268b9847d6c0

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_3_7697.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 26952
Connection: keep-alive
Last-Modified: Tue, 29 Mar 2022 10:22:55 GMT
ETag: "6242ddff-6948"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_38001.png

13.75.95.168

200 OK

23 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_38001.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
23 kB (23355 bytes)
Hash
14f7dbafc1472fa05db8eb17ae826f30
991915b5ae07c7a47e93dce0c6c82d0d0b690993
7287fcb933e5bf3eba0d13e7312cf5ba90f94c0593310090fdc521f866b0b134

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_38001.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 23355
Connection: keep-alive
Last-Modified: Mon, 15 Jul 2019 12:48:11 GMT
ETag: "5d2c760b-5b3b"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30599.png

13.75.95.168

22 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30599.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
22 kB (22499 bytes)
Hash
a83dc10b4e607a2685552e62c61e28ba
0f879b68bd5690faa0577ec9335ad219468e2670
3983d86b32d2cba092eea2e69dbdd3e6739824505d27c3ed04c892b28861a6e7

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30599.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 22499
Connection: keep-alive
Last-Modified: Mon, 15 Jul 2019 12:48:11 GMT
ETag: "5d2c760b-57e3"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30598.png

13.75.95.168

200 OK

20 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30598.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
20 kB (20250 bytes)
Hash
06b42bc87015b1f21a614c47bd914859
533e764dcc3ae171ac0c8f51a7fbcca10f26072f
dbcc205b41e6eec3484c66381d57bd921175da6e5936ade916c42e8bd1110eb3

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30598.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 20250
Connection: keep-alive
Last-Modified: Mon, 15 Jul 2019 12:48:11 GMT
ETag: "5d2c760b-4f1a"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/headerInfo.html?t=lihbcn9e

13.75.95.168

200

118 B

URL GET HTTP/1.1
878fa.com:8989/headerInfo.html?t=lihbcn9e
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
118 B (118 bytes)
Hash
ddbaf22371b113914ef48227050f2929
c4303667bbbf04145b28b8b47dbbdcd22643e11d
89401ea902e49ba9138e3e5c50e9219686921adfc8211dba967681f69ead2cf4

HTTP Headers

GET /headerInfo.html?t=lihbcn9e HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM; route=4dc7dfeabaa1977335671c9d813ff1f9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Disposition: inline;filename=f.txt
sub-sys: msite
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
uuid: 00141-02-00000000-1685876519ed73
out-line: gb-site-054

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1003.png

13.75.95.168

200 OK

127 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1003.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
127 kB (126630 bytes)
Hash
b5927edf22b7afcaa8623bb2bf7a023c
27991e900ef52dc1848a4d010abaee15b9764ad7
9bd02bff9e834cfb9d1e51a452cffa22aeecb4564729009c4e76d9d92ff6a73b

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1003.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:58 GMT
Content-Type: image/png
Content-Length: 126630
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 03:42:41 GMT
ETag: "61513db1-1eea6"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:58 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_9_HMSH.png

13.75.95.168

200 OK

20 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_9_HMSH.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
20 kB (19597 bytes)
Hash
82c905f14c36be0d2fa670516edded31
437546d720284de3982ff79df6a946b81e923371
f3cdfd33e75d6f3877e1e0da0491c2b2a65c66f95d434c6b08950b0b5d5b9cc6

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_9_HMSH.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 19597
Connection: keep-alive
Last-Modified: Sat, 11 Sep 2021 09:11:26 GMT
ETag: "613c72be-4c8d"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_35_1050.png

13.75.95.168

22 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_35_1050.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
22 kB (21792 bytes)
Hash
0445397f922bcef3252bedd6877d8668
f4d265e0774ed0dbda4d4548863cd852c48c570f
3069757649a24fe38937eebf84c12b959ec4e58edf10cf2c661cc2ae433a40c0

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_35_1050.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 21792
Connection: keep-alive
Last-Modified: Sat, 11 Sep 2021 09:11:25 GMT
ETag: "613c72bd-5520"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30595.png

13.75.95.168

28 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30595.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
28 kB (27580 bytes)
Hash
b2c524e4d0297da3203c6d45d2f07115
e91bac7336aabae38e8038d2fd931a2f42fe3c84
91c4128aa7b5fa411efae3f85e25b618c0e83958b984a0460dc5e51cb83ccdd1

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30595.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 27580
Connection: keep-alive
Last-Modified: Tue, 21 Dec 2021 09:55:47 GMT
ETag: "61c1a4a3-6bbc"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30597.png

13.75.95.168

22 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30597.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
22 kB (21952 bytes)
Hash
fecffc36a0b3d2f507b4c5a91676252e
4dd8922d66cf95f656a06fe2f84617b3b9ce88fb
653c31b5b2bb6c82f28cc8541586ee97072cb8a5a1ac38a8ba8fb2dfe4f6cc8d

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30597.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 21952
Connection: keep-alive
Last-Modified: Mon, 30 May 2022 07:41:16 GMT
ETag: "6294751c-55c0"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30592.png

13.75.95.168

18 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30592.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
18 kB (17796 bytes)
Hash
2a8b9275fdec775b8d1ec6e4b0c5df8f
d1d297beee93861fd031fa9e66ddfbe8f7822e28
d2e8ae7ed84c4081f1aa6e15229af593354b571a2097b506a489a0bc1eeea8ec

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30592.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 17796
Connection: keep-alive
Last-Modified: Fri, 10 Mar 2023 09:30:12 GMT
ETag: "640af8a4-4584"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_10.png

13.75.95.168

22 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_10.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
22 kB (21502 bytes)
Hash
548f74b6fbacfdafac2d13982ea01f5b
62056e33bd99fdb7a26ed1eb6e0d34baae75ab4b
8d23af5f64406af80c5f00bbe2806c0a696eee1b9fa144135a679cf7d15c27a9

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_10.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 21502
Connection: keep-alive
Last-Modified: Sat, 11 Sep 2021 09:11:25 GMT
ETag: "613c72bd-53fe"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_35_1051.png

13.75.95.168

200 OK

23 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_35_1051.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
23 kB (23172 bytes)
Hash
c2bad36f7d90b3d9d5077df183c0a80b
7890000fd16f911c2aa5223af3cddf3ed6c5f702
90b7d091ece32c042a2866eb7d6943d7e88148d3bb474eaff988a78942d6d3aa

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_35_1051.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 23172
Connection: keep-alive
Last-Modified: Mon, 15 Jul 2019 12:48:11 GMT
ETag: "5d2c760b-5a84"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/mobile-api/v5/chess/getActivityMsg.html?function=sign

13.75.95.168

200

140 B

URL GET HTTP/1.1
878fa.com:8989/mobile-api/v5/chess/getActivityMsg.html?function=sign
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Size
140 B (140 bytes)
Hash
5d062bc93ef9d75b27e852ed745d170f
1ecf82a0589608b26ee6a29b2cc3229916596626
26e77aa8c61c230db13c8fd74d4ab3adf8be54c3192c4e16f94e633a71efc2e1

HTTP Headers

GET /mobile-api/v5/chess/getActivityMsg.html?function=sign HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM; route=4dc7dfeabaa1977335671c9d813ff1f9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 140
Connection: keep-alive
Set-Cookie: route=21c20bedba26b78ebec8dc5df8d96c86; Path=/
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: Content-Type,Access-Token,X-Requested-With
Content-Disposition: inline;filename=f.txt
sub-sys: mobile
X-Frame-Options: SAMEORIGIN
uuid: 00141-02-00000000-16858765192cbd
out-line: gb-site-054

878fa.com:8989/mobile-api/v5/origin/loginSwitchCheck.html

13.75.95.168

200

174 B

URL GET HTTP/1.1
878fa.com:8989/mobile-api/v5/origin/loginSwitchCheck.html
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Size
174 B (174 bytes)
Hash
1452cebf3e2bb129b06762f43f09e5c8
0ec65f1e79233e8c59f76c55fb89ac8637cfb070
99a31cd18b8ce37d3725d0a77d5e314452d2906ed2b54b8b19d4de849d1bf13d

HTTP Headers

GET /mobile-api/v5/origin/loginSwitchCheck.html HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM; route=4dc7dfeabaa1977335671c9d813ff1f9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 174
Connection: keep-alive
Set-Cookie: route=e4e732c52e31521cf093adea5bf44bc6; Path=/
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: Content-Type,Access-Token,X-Requested-With
Content-Disposition: inline;filename=f.txt
sub-sys: mobile
X-Frame-Options: SAMEORIGIN
uuid: 00141-02-00000000-16858765198fd9
out-line: gb-site-054

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30593.png

13.75.95.168

200 OK

87 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30593.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
87 kB (86675 bytes)
Hash
c851a15f25d8a0c556c7a56b75aebf6f
90dd4c3169383ee12aea9e93ce8fdfb6f3146f51
655efce4a9020abae7117b5e296b181b1ffbd3f9b9dece49f1e547cf6b9396b3

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_10_30593.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: image/png
Content-Length: 86675
Connection: keep-alive
Last-Modified: Wed, 06 Oct 2021 05:11:57 GMT
ETag: "615d301d-15293"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:01:59 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_48_AB3.png

13.75.95.168

200 OK

24 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_48_AB3.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
24 kB (24212 bytes)
Hash
0cd4e5a17dbd24149a4b1bf517cf20bc
eee22edc97e16e1913aa91e3663f24bc1c41961c
8a24c2bf5ed424c1a1305f4cfc60f1da0b6aeb7dfa5cff3193f2dfed040b1c5a

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_48_AB3.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 24212
Connection: keep-alive
Last-Modified: Mon, 15 Jul 2019 12:48:11 GMT
ETag: "5d2c760b-5e94"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_48_CC1001.png

13.75.95.168

21 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_48_CC1001.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
21 kB (20993 bytes)
Hash
07db342d71e455736e0e8b5656ed7174
2d9bb7427a73a28f4bfec2a70dc227af4555968c
c1a35508763b061947ad0ea9eb9972b92b079c9510a2a746979dbffd84efde0f

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_48_CC1001.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 20993
Connection: keep-alive
Last-Modified: Wed, 30 Mar 2022 02:50:04 GMT
ETag: "6243c55c-5201"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_25_F-SF01.png

13.75.95.168

23 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_25_F-SF01.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
23 kB (22679 bytes)
Hash
2fbcb4a692fc6b41699f7e60ecf26a63
da35d134b38413040316f5cf1e5f76d75fd941c7
ccdecdf7de01b3b3513596f7c4555266473805551702685e14299770ae8bed26

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_25_F-SF01.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 22679
Connection: keep-alive
Last-Modified: Mon, 15 Jul 2019 12:48:11 GMT
ETag: "5d2c760b-5897"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/index/getUserTimeZoneDate.html?t=lihbcnll

13.75.95.168

200

119 B

URL GET HTTP/1.1
878fa.com:8989/index/getUserTimeZoneDate.html?t=lihbcnll
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
119 B (119 bytes)
Hash
ce67ed9f4c3ea50b8706bbb4bbd1b3a0
c97688c132d59f19f57ffa3c956ca22828188011
98c11fd8e65d43396251bdb08e95e65720b19bca08a14542ebd79420f1b3afb7

HTTP Headers

GET /index/getUserTimeZoneDate.html?t=lihbcnll HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM; route=4dc7dfeabaa1977335671c9d813ff1f9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 119
Connection: keep-alive
Content-Disposition: inline;filename=f.txt
sub-sys: msite
cachettl: 3
X-Frame-Options: SAMEORIGIN
uuid: 00141-02-00000000-16858765205a81
out-line: gb-site-054

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_13.png

13.75.95.168

26 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_13.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
26 kB (26179 bytes)
Hash
1ac91d4dfd52f26f9c5682cf67ac3f49
6ca58050b81ce1be80d3b0c749b60a79d8413b98
021c28d7d369afa39f3aeac128f91dd3f377fc910a35d76a2e9d2463093e3b44

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_13.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 26179
Connection: keep-alive
Last-Modified: Mon, 25 Apr 2022 07:55:46 GMT
ETag: "62665402-6643"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_31006.png

13.75.95.168

200 OK

20 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_31006.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
20 kB (19766 bytes)
Hash
a678f783e25a467193ee4fa0252d5bf4
ffadbf4388ce2dc312c720e75f9b9d73c05e93cd
1421dad09cedb4c186e8b4ac1cc027955d52a9d268b29144d3d8f0d60d5ed075

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_31006.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 19766
Connection: keep-alive
Last-Modified: Wed, 10 May 2023 06:20:23 GMT
ETag: "645b37a7-4d36"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_31008.png

13.75.95.168

200 OK

20 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_31008.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
20 kB (20172 bytes)
Hash
37070ea9397e4c9bfa4c6fa5e499de59
fd2237d48600d3a6acba5c8982c1d594962418d4
f3d50d3f597d6a23e42d069971e80a14851d7c996bbce674ed591c6e87b64bda

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_31008.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 20172
Connection: keep-alive
Last-Modified: Wed, 10 May 2023 06:20:23 GMT
ETag: "645b37a7-4ecc"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/mobile-api/v5/origin/getThirdParam.html

13.75.95.168

103 B

URL
878fa.com:8989/mobile-api/v5/origin/getThirdParam.html
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Size
103 B (103 bytes)
Hash
9ac55fe189e4f53f37156e563e0f542e
18b13b1360ce9fbd973e046d2652be38d58a15e0
d7e02321006e1520d4c3e8d26428462419388e022cc89f3c974d0b87ad83af7b

HTTP Headers

GET /mobile-api/v5/origin/getThirdParam.html HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM; route=e4e732c52e31521cf093adea5bf44bc6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 103
Connection: keep-alive
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: Content-Type,Access-Token,X-Requested-With
Content-Disposition: inline;filename=f.txt
sub-sys: mobile
X-Frame-Options: SAMEORIGIN
uuid: 00141-02-00000000-16858765203dfd
out-line: gb-site-054

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_14.png

13.75.95.168

20 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_14.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
20 kB (20462 bytes)
Hash
86f136869bc81df2a646e873bd23b46d
c40c25bbe820c39731d1c679653b28e119cbbadc
bfebb7307f1858837e6b61be64e46352b1ccd29bf982e9975886c9feda9f637f

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_14.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 20462
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 02:46:55 GMT
ETag: "63dc759f-4fee"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_12.png

13.75.95.168

26 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_12.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
26 kB (26500 bytes)
Hash
dc21406f53974241a6ea9d1ba342a0a3
d98181158619aa5993f35dc4821c26ea657c9c35
656f550c68b469776ebe40713d8556d43af391da6cc881918da5f6c983ba823f

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_12.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 26500
Connection: keep-alive
Last-Modified: Tue, 30 Nov 2021 08:28:44 GMT
ETag: "61a5e0bc-6784"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5002.png

13.75.95.168

21 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5002.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
21 kB (21363 bytes)
Hash
d73cf218f18362d0a89cb36a4a3303ff
57bf03bb562ca33343b19db1fe5e872335cc1cb2
691d5caeb173c0c0817111fea711d2685d1e0e4e7e19f6aa7282fc525193f40c

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5002.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 21363
Connection: keep-alive
Last-Modified: Fri, 11 Feb 2022 05:28:08 GMT
ETag: "6205f3e8-5373"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/game-api/v5/content/sportRecommended.html?t=lihbco0i

13.75.95.168

200

683 B

URL GET HTTP/1.1
878fa.com:8989/game-api/v5/content/sportRecommended.html?t=lihbco0i
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (633), with no line terminators
Size
683 B (683 bytes)
Hash
a5471df3f2539b99aea5be620ab4e6a1
657945be2b420793605698910919567bad0fa238
644b631ee64ebee305c0aa89c48d9adc9aec272737c660fd3cc0742cefc141c4

HTTP Headers

GET /game-api/v5/content/sportRecommended.html?t=lihbco0i HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM; route=e4e732c52e31521cf093adea5bf44bc6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 683
Connection: keep-alive
Set-Cookie: route=6fc16a063046d21fc2e5f5c026f90787; Path=/
Content-Disposition: inline;filename=f.txt
sub-sys: mobile
X-Frame-Options: SAMEORIGIN
uuid: 00141-02-00000000-16858765208ab3
out-line: gb-site-054

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_7006.png

13.75.95.168

20 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_7006.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
20 kB (20484 bytes)
Hash
7facd57d474585a0c9e3b2b6d4762969
814362f72beba19c7dfb93b8d2bc760f87a2a00e
3bf01b8e569dbd7060d7dcb2222e7e3ebc9e42f715535df2315c877fed9046bd

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_7006.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 20484
Connection: keep-alive
Last-Modified: Sat, 11 Sep 2021 09:11:25 GMT
ETag: "613c72bd-5004"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5011.png

13.75.95.168

23 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5011.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
23 kB (23076 bytes)
Hash
2ae6a25328f92bbd4f06bf83f0d64a34
a182c94addc49f545829566f4f87e7cdf5a2b16a
92d81aa551c89d28170300c1d6ae6e5795e33ac101988de54570fae720fa15c9

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5011.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 23076
Connection: keep-alive
Last-Modified: Mon, 15 May 2023 01:55:35 GMT
ETag: "64619117-5a24"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_11.png

13.75.95.168

20 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_11.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
20 kB (19964 bytes)
Hash
d495fdd61d29ff61ff34fdccc5597d0f
95a2b5b377a239ccf2d5e5cc81534f79dbbbe033
08097b5ebe2de4f6d295aeb64fc72170c766ea81851e9baf96ff4de926fc678b

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_49_11.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 19964
Connection: keep-alive
Last-Modified: Sat, 11 Sep 2021 09:11:25 GMT
ETag: "613c72bd-4dfc"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_7003.png

13.75.95.168

105 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_7003.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
105 kB (105068 bytes)
Hash
c421c976cf701cd806a7ebeb8575e0a3
cb84123cde62bcad60f34b5a5703f7bfafca1906
e797e57325c453e7ca7e56e634ada214b51ab9298ba5aea4d183fea859857d60

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_7003.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 105068
Connection: keep-alive
Last-Modified: Mon, 15 Jul 2019 12:48:11 GMT
ETag: "5d2c760b-19a6c"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10322/1663577476020.png?wsSecret=c0b6318ea7b5b50edecfbe8b53a419b8&wsTime=1685876517

104.250.44.1

200 OK

122 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10322/1663577476020.png?wsSecret=c0b6318ea7b5b50edecfbe8b53a419b8&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 694 x 500, 8-bit colormap, non-interlaced\012- data
Size
122 kB (121611 bytes)
Hash
9b4d417046a78dcf8e12a51376905624
162c19341237baf7d2107461a954e4451321b55f
0bd1ed2e44971103548fd5ba76ecd6a8b8903b011e5715e869989be81e613341

HTTP Headers

GET /fserver/files/gb/141/carousel/10322/1663577476020.png?wsSecret=c0b6318ea7b5b50edecfbe8b53a419b8&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 121611
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "6379d70d-1db0b"
Date: Sun, 14 May 2023 13:09:30 GMT
Last-Modified: Sun, 20 Nov 2022 07:28:13 GMT
Expires: Tue, 13 Jun 2023 13:09:30 GMT
Age: 1806750
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 08254267b123f3eacdc70b2cf3991317

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5001.png

13.75.95.168

20 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5001.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
20 kB (20254 bytes)
Hash
45d0f5934f7f664e4fb397fbe69c0bec
72a5c4e823954ec0111709b6aec71c1f0b08fe43
3e9fedb5bbb6caac2dfc16278ba5d0c26483aa3efb5508374eeec9de7b9f9cd4

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5001.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 20254
Connection: keep-alive
Last-Modified: Fri, 09 Aug 2019 09:47:47 GMT
ETag: "5d4d4143-4f1e"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/fserver/files/gb/1537/sportTeam/19/1654276026392.png

13.75.95.168

7.3 kB

URL
878fa.com:8989/fserver/files/gb/1537/sportTeam/19/1654276026392.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
GIF image data, version 89a, 150 x 150\012- data
Size
7.3 kB (7303 bytes)
Hash
4f6339f498331487431200b3473d31bd
7961121eb65dd14b4648cddc2a4d8d68e905fbd6
58d932260a9c26abf25ad00d54838f06f638b6eebf5061e57c7e8e64faa144f9

HTTP Headers

GET /fserver/files/gb/1537/sportTeam/19/1654276026392.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM; route=6fc16a063046d21fc2e5f5c026f90787
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 7303
Connection: keep-alive
Last-Modified: Fri, 03 Jun 2022 17:07:06 GMT
Vary: Accept-Encoding
ETag: "629a3fba-1c87"
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

ocsp.r2m02.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
bf37d417dcf11af46ec948f454db4ed0
61baffadbc80ee0b798ef8e947c86c1cf9e4edf3
cf57e80fba39462e5d10f2f4479817d4691a4b6300e0fd706472792f70cf4438

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 04 Jun 2023 11:02:00 GMT
Last-Modified: Sun, 04 Jun 2023 10:59:00 GMT
Server: ECAcc (dcb/7EDB)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GU60SCb4fxEEmatOCWQV5zNnHRqhblWzX_zxPmp1QssXST-WbahJRA==
Age: 180

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_7004.png

13.75.95.168

102 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_7004.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
102 kB (102160 bytes)
Hash
18b9c1ca12b579e3be9de7f0b3d765b7
cabb9ddce1222608668401769754241d2667ac59
81b7527eda1e9db86dc9704173b4e9aa50932eb8c80ea08b23d969899bca9656

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_60_7004.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 102160
Connection: keep-alive
Last-Modified: Mon, 15 Jul 2019 12:48:11 GMT
ETag: "5d2c760b-18f10"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

3dsa62.shanzhi.me/ftl/commonPage/themes/images/layer-dialog/gui-layer-close-bg.png

104.250.44.1

200 OK

1.3 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/themes/images/layer-dialog/gui-layer-close-bg.png
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1321 bytes)
Hash
a2e938202c0287b9c82461a6fd94dee9
b5e2adc7cb07c18a70a88af314e56b946ec1a1b6
df9ce20db277ad8302c704a73aff5024683a0d38aff0d3e7e884a67a24439936

HTTP Headers

GET /ftl/commonPage/themes/images/layer-dialog/gui-layer-close-bg.png HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3dsa62.shanzhi.me/ftl/commonPage/themes/gui-layer.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1321
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "5d848f4f-529"
Date: Sun, 14 May 2023 13:09:30 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 13 Jun 2023 13:09:30 GMT
Age: 1806750
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 1070c5d283d131e64a1027f2bb45e08e

3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10376/1685269822259.jpg?wsSecret=75ef9a901935cc45d7d106b20f44f079&wsTime=1685876517

104.250.44.1

318 kB

URL
3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10376/1685269822259.jpg?wsSecret=75ef9a901935cc45d7d106b20f44f079&wsTime=1685876517
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 694x520, components 3\012- data
Size
318 kB (317659 bytes)
Hash
e1f37e9cc99f97d5425672f5dc1a21cc
aee7ea65e1271b221485c6cd256a66bf8f91eb35
cd4568b7d36dc538928b73a38d6aa7943b80e87777433ee39ff9f7c36d3e0e4e

HTTP Headers

GET /fserver/files/gb/141/carousel/10376/1685269822259.jpg?wsSecret=75ef9a901935cc45d7d106b20f44f079&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 317659
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "64732d3e-4d8db"
Date: Sun, 28 May 2023 10:45:38 GMT
Last-Modified: Sun, 28 May 2023 10:30:22 GMT
Expires: Tue, 27 Jun 2023 10:45:38 GMT
Age: 605782
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 44c35a9c5b9e9706824a9beb00d3739b

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5006.png

13.75.95.168

20 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5006.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
20 kB (20434 bytes)
Hash
7769f6a35df5811fbe7fa97b2aea9a1c
2875a7cfef0a8a296374aba27f95a8a8d79b8acf
855a9b3bb8c24ca1ed6cbf42331ff6a243e03b1452d8c2d371df11d861f8712b

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5006.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 20434
Connection: keep-alive
Last-Modified: Fri, 09 Aug 2019 09:47:47 GMT
ETag: "5d4d4143-4fd2"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5007.png

13.75.95.168

200 OK

22 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5007.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
22 kB (21877 bytes)
Hash
feaff8384a2780bf50a660b657928245
eb492cee9a7d13b8114aa1c75c6db75742d7ef4a
ec33d957ba07daa21a098bc096b1c643ae64420e1924f0691b6b75fd4e8707f2

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_65_5007.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 21877
Connection: keep-alive
Last-Modified: Fri, 09 Aug 2019 09:47:47 GMT
ETag: "5d4d4143-5575"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

vue.livehelp100service.com/livechat.ashx?siteId=65000584

54.230.111.98

126 kB

URL
vue.livehelp100service.com/livechat.ashx?siteId=65000584
IP
54.230.111.98:0
ASN
#16509 AMAZON-02

File type
gzip compressed data, from Unix\012- data
Size
126 kB (125808 bytes)
Hash
6760dd327ccd40f8d73c292ce455d677
670398030510acb152fa7817ae3fc1e0717b8a28
58598e217b29b0d61b3d39d88f287044c4472e0f519302b629b15f8d3919510c

HTTP Headers

GET /livechat.ashx?siteId=65000584 HTTP/1.1
Host: vue.livehelp100service.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
date: Sun, 04 Jun 2023 10:31:58 GMT
server: Kestrel
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: neNf5CKxMmkF6xavNw928c6yGhZRFZgLhqIEl2i31fqymS-5feWt7Q==
age: 1800
X-Firefox-Spdy: h2

3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/body-bg.gif?wsSecret=87b9d1764a8db092e31daa5379b19afa&wsTime=1685876517

104.250.44.1

758 B

URL
3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/body-bg.gif?wsSecret=87b9d1764a8db092e31daa5379b19afa&wsTime=1685876517
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 500\012- data
Size
758 B (758 bytes)
Hash
41a9eebb99ba7c3b2a905aaa45726923
abf17115c33bdea05313ce6bcebe3fe4d7da935a
f9b50670a93fcef81c4f838f7da60d397994bea07f83af0f51ae89d670f1189c

HTTP Headers

GET /ftl/bet365-141-2/themes/images/body-bg.gif?wsSecret=87b9d1764a8db092e31daa5379b19afa&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 758
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "5d2c7603-2f6"
Date: Sun, 14 May 2023 13:09:30 GMT
Last-Modified: Mon, 15 Jul 2019 12:48:03 GMT
Expires: Tue, 13 Jun 2023 13:09:30 GMT
Age: 1806750
Cache-Control: max-age=86400
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: a165350d13199f04d86f2335c7ae6789

3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10314/1672115579616.png?wsSecret=b5d5935764dc6605bce892a3eb189fa7&wsTime=1685876517

104.250.44.1

556 kB

URL
3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10314/1672115579616.png?wsSecret=b5d5935764dc6605bce892a3eb189fa7&wsTime=1685876517
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 694 x 520, 8-bit/color RGBA, non-interlaced\012- data
Size
556 kB (555926 bytes)
Hash
eea66c5a21808f9ac18ad6e56f79c6d4
dc5be54b878218ce65e53ac036e33a276d218e9f
af5c2902ab6d6eba1b18ca4114c136526a428dc8f87ea2bd591e585e4ee9f19b

HTTP Headers

GET /fserver/files/gb/141/carousel/10314/1672115579616.png?wsSecret=b5d5935764dc6605bce892a3eb189fa7&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 555926
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "63aa757b-87b96"
Date: Sun, 14 May 2023 13:09:31 GMT
Last-Modified: Tue, 27 Dec 2022 04:32:59 GMT
Expires: Tue, 13 Jun 2023 13:09:31 GMT
Age: 1806748
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 12e18154528bef14f2f397a86ce3ce17

3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/head1.jpg?wsSecret=42b9c2f8056438d31d25f510f52ee775&wsTime=1685876517

104.250.44.1

7.7 kB

URL
3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/head1.jpg?wsSecret=42b9c2f8056438d31d25f510f52ee775&wsTime=1685876517
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 960x72, components 3\012- data
Size
7.7 kB (7727 bytes)
Hash
4e7da730a5cbfe4a7ce573ddcea0e60a
ac31a27a6d71a7a297905c195a6434f043f7f0a7
fe5506589506db3c8dad8b544636c2794a764f28a9ab79215714d5cfe2d866c0

HTTP Headers

GET /ftl/bet365-141-2/themes/images/head1.jpg?wsSecret=42b9c2f8056438d31d25f510f52ee775&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 7727
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "613c72a8-1e2f"
Date: Sun, 14 May 2023 13:10:08 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:04 GMT
Expires: Tue, 13 Jun 2023 13:10:08 GMT
Age: 1806712
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: e1160cff8621cfb487175d4cb537b818

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_88_1jeqx59c7ztqg.png

13.75.95.168

200 OK

24 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_88_1jeqx59c7ztqg.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
24 kB (23771 bytes)
Hash
19e16d0cf5c005f3fd798e8f0131db7d
ebb9c520f4047172662991c689a2e07015680dcd
57c3d3bf827de223898f46813f9bd0fd2296cc21a61f3f77d03ba6cee265c78d

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_88_1jeqx59c7ztqg.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:01 GMT
Content-Type: image/png
Content-Length: 23771
Connection: keep-alive
Last-Modified: Sat, 11 Sep 2021 09:11:25 GMT
ETag: "613c72bd-5cdb"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:01 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_88_b8rzo7uzqt4sw.png

13.75.95.168

200 OK

24 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_88_b8rzo7uzqt4sw.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
24 kB (23806 bytes)
Hash
d7c26fb9503ab2caf040730495a59f32
06f8414b2709fac132dd2b3071843a86ab745b51
8d437af3cea1d4efc2bf19c763c17c3487f9a76db3a287a975a18f90dffea630

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_88_b8rzo7uzqt4sw.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:01 GMT
Content-Type: image/png
Content-Length: 23806
Connection: keep-alive
Last-Modified: Sat, 11 Sep 2021 09:11:25 GMT
ETag: "613c72bd-5cfe"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:01 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_060.png

13.75.95.168

200 OK

26 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_060.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit colormap, non-interlaced\012- data
Size
26 kB (25785 bytes)
Hash
51de7c3b3b21d10f38a0c30ac5e4fd24
106f9a993385ff522dad2b37dbdb3c58f035ac20
9240329d37bd41d53a4f2864a255b9f9aef025474f2965130ed5668f10ee311e

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_060.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:01 GMT
Content-Type: image/png
Content-Length: 25785
Connection: keep-alive
Last-Modified: Fri, 07 Apr 2023 02:35:05 GMT
ETag: "642f8159-64b9"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:01 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

34gw3.wasfeds.com/visitor.ashx?siteId=65000584

13.248.168.108

200 OK

732 B

URL POST HTTP/2
34gw3.wasfeds.com/visitor.ashx?siteId=65000584
IP
13.248.168.108:443
ASN
#16509 AMAZON-02

Requested by
https://878fa.com:8989/
Certificate
IssuerAmazon
Subject*.livehelp100service.com
FingerprintF3:5A:B2:DE:B7:9D:AE:33:BB:77:79:A5:01:7D:6D:ED:EE:1F:F5:4B
ValidityTue, 13 Dec 2022 00:00:00 GMT - Thu, 11 Jan 2024 23:59:59 GMT

File type
JSON data\012- HTML document, ASCII text, with very long lines (1297), with no line terminators
Size
732 B (732 bytes)
Hash
baa4d76fb37ef065218ee0dba4133cd8
241c258fdea8cb7e942f46d29139bd7761c38480
da687802d90b071fafc827ca68a5e5e887b631abdc75e2291b83d6661efb174d

HTTP Headers

POST /visitor.ashx?siteId=65000584 HTTP/1.1
Host: 34gw3.wasfeds.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 69
Origin: https://878fa.com:8989
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 04 Jun 2023 11:02:01 GMT
content-type: text/json; charset=utf-8
content-length: 732
server: nginx
cache-control: private
content-encoding: gzip
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
x-aspnet-version: 4.0.30319
access-control-allow-origin: https://878fa.com:8989
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
access-control-allow-headers: Content-type,api-key,Authorization,X-Requested-With
arrserver: node5chatserver
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
referrer-policy: no-referrer
X-Firefox-Spdy: h2

3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images//sec-nav-bg-grad.gif?wsSecret=1ccfa1da7f7547838464a3213901ad16&wsTime=1685876517

104.250.44.1

200 OK

376 B

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images//sec-nav-bg-grad.gif?wsSecret=1ccfa1da7f7547838464a3213901ad16&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 594\012- data
Size
376 B (376 bytes)
Hash
355b2cb853d78ae262c093065eaa6e70
3e8d2a456204e635cfe5bd959cff47faf63023fc
cd58d657e3d79583a5722257d8770e3b5f620f1d58e392f1d9460cc89ac485fa

HTTP Headers

GET /ftl/bet365-141-2/themes/images//sec-nav-bg-grad.gif?wsSecret=1ccfa1da7f7547838464a3213901ad16&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 376
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "5d2c7603-178"
Date: Sun, 14 May 2023 13:10:08 GMT
Last-Modified: Mon, 15 Jul 2019 12:48:03 GMT
Expires: Tue, 13 Jun 2023 13:10:08 GMT
Age: 1806712
Cache-Control: max-age=86400
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 935c9dfe2c0ae7a164564baa8013c9d5

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_73_105.png

13.75.95.168

102 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_73_105.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
102 kB (102258 bytes)
Hash
8d9aba5a434311f951ac04421c7dc771
9e269ef70b1c650a4177aa6ca8f9b5c8d400be42
282aee25e5c5e665f12f0593297c59ef00dfcbb88b210b4bc9466ab4d0e14bea

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_73_105.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 102258
Connection: keep-alive
Last-Modified: Sat, 11 Sep 2021 09:11:25 GMT
ETag: "613c72bd-18f72"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/btn.png?wsSecret=1826999143447dfc9033befbbeda05c5&wsTime=1685876517

104.250.44.1

484 B

URL
3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/btn.png?wsSecret=1826999143447dfc9033befbbeda05c5&wsTime=1685876517
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 170 x 28, 8-bit colormap, non-interlaced\012- data
Size
484 B (484 bytes)
Hash
b1ab87f2aa1045cf56bd192752fb20ba
e8b07455934b82eb6c9d1a5d657c582822eb32cc
527228714a2a640b71788550f8dcd2c0964ee13fdfddc1c57ff377134f8fcecb

HTTP Headers

GET /ftl/bet365-141-2/themes/images/btn.png?wsSecret=1826999143447dfc9033befbbeda05c5&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 484
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "613c72a8-1e4"
Date: Sun, 14 May 2023 13:10:09 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:04 GMT
Expires: Tue, 13 Jun 2023 13:10:09 GMT
Age: 1806711
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 16f9c6eddf2309003428c468cb726879

3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/sports-infos-bg.png?wsSecret=c42d50b186b54f35b1c6584f9c3e7df0&wsTime=1685876517

104.250.44.1

200 OK

4.3 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/sports-infos-bg.png?wsSecret=c42d50b186b54f35b1c6584f9c3e7df0&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 414 x 204, 8-bit/color RGB, non-interlaced\012- data
Size
4.3 kB (4311 bytes)
Hash
69957649d4c70d7b7cc0c1aa434c462f
9070128b8ee6a699818e5deb33c926581d5b0b6f
6cff75537c35a2a855cafaf1d2d45767867dbc28774da40ed8c4fd4f4f74a813

HTTP Headers

GET /ftl/bet365-141-2/themes/images/sports-infos-bg.png?wsSecret=c42d50b186b54f35b1c6584f9c3e7df0&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 4311
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "5d2c7603-10d7"
Date: Sun, 14 May 2023 13:10:08 GMT
Last-Modified: Mon, 15 Jul 2019 12:48:03 GMT
Expires: Tue, 13 Jun 2023 13:10:08 GMT
Age: 1806712
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 21886d3c111829102bb637c5a2550183

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_73_411.png

13.75.95.168

200 OK

107 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_73_411.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
107 kB (107367 bytes)
Hash
f391a00c7ca4a801c7c46431f6949f3e
392e698fcd6b15c2397eb576de33134e7abae702
1ffd1f9416cc641e5c5659de5a2f1530bbe7ddeeb71c91af2db8129c6624f64f

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_73_411.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:01 GMT
Content-Type: image/png
Content-Length: 107367
Connection: keep-alive
Last-Modified: Sat, 11 Sep 2021 09:11:25 GMT
ETag: "613c72bd-1a367"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:01 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/bg-products.gif?wsSecret=968aa019441e6322a28ea8b65516e3e4&wsTime=1685876517

104.250.44.1

200 OK

21 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/bg-products.gif?wsSecret=968aa019441e6322a28ea8b65516e3e4&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
GIF image data, version 89a, 271 x 302\012- data
Size
21 kB (21028 bytes)
Hash
e6c33fd46eacf329da3565adb295287a
79b107df875842fd4e22809f21b60c322d128cce
1694db51d04b5d207f7bc4ca11a7fcd2ca171b2f4c2c2b12d1c75e5cb3dbe20f

HTTP Headers

GET /ftl/bet365-141-2/themes/images/bg-products.gif?wsSecret=968aa019441e6322a28ea8b65516e3e4&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 21028
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "5d2c7603-5224"
Date: Sun, 14 May 2023 13:10:08 GMT
Last-Modified: Mon, 15 Jul 2019 12:48:03 GMT
Expires: Tue, 13 Jun 2023 13:10:08 GMT
Age: 1806712
Cache-Control: max-age=86400
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 67aa84fc237c9ed9fd28186c60068989

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_030.png

13.75.95.168

200 OK

92 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_030.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
92 kB (91545 bytes)
Hash
9f3fb2c25fe5ed8707017bd1c48b7dad
0431fc4b55351854aa7a1b519549df5d71f18ace
d86817d248b0c22c26c6c3a95c307094345fb2b3e51245164599a7c3969d4e6c

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_030.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:01 GMT
Content-Type: image/png
Content-Length: 91545
Connection: keep-alive
Last-Modified: Mon, 25 Oct 2021 06:59:30 GMT
ETag: "617655d2-16599"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:01 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/arrow.png?wsSecret=4d2b59a2b826fbe62425442f83e90660&wsTime=1685876517

104.250.44.1

200 OK

260 B

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/bet365-141-2/themes/images/arrow.png?wsSecret=4d2b59a2b826fbe62425442f83e90660&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 10 x 14, 8-bit colormap, non-interlaced\012- data
Size
260 B (260 bytes)
Hash
e602938a99acc154421381f39d5652d8
e12cb203b3e61b0cae31ad5cb3241555caba6c10
73500ead881aa273814d982b0a0e78dc29ebf04f37b5932667785f6f7c45a664

HTTP Headers

GET /ftl/bet365-141-2/themes/images/arrow.png?wsSecret=4d2b59a2b826fbe62425442f83e90660&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 260
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "614d2b23-104"
Date: Sun, 14 May 2023 13:10:09 GMT
Last-Modified: Fri, 24 Sep 2021 01:34:27 GMT
Expires: Tue, 13 Jun 2023 13:10:09 GMT
Age: 1806711
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 6ef1234c2eb537935bc33ab1aa072e1d

34gw3.wasfeds.com/visitor.ashx?siteId=65000584

13.248.168.108

200 OK

755 B

URL POST HTTP/2
34gw3.wasfeds.com/visitor.ashx?siteId=65000584
IP
13.248.168.108:443
ASN
#16509 AMAZON-02

Requested by
https://878fa.com:8989/
Certificate
IssuerAmazon
Subject*.livehelp100service.com
FingerprintF3:5A:B2:DE:B7:9D:AE:33:BB:77:79:A5:01:7D:6D:ED:EE:1F:F5:4B
ValidityTue, 13 Dec 2022 00:00:00 GMT - Thu, 11 Jan 2024 23:59:59 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (1323), with no line terminators
Size
755 B (755 bytes)
Hash
9df03619b75c73ad314c25bbff7b5987
c06db2d65fac61a6b9b9174d48d8fc600489b2b6
4f6160b8eb7b27ed8479a506e33de2dd5fc922e7bf81ba6595933f0fe7ed7195

HTTP Headers

POST /visitor.ashx?siteId=65000584 HTTP/1.1
Host: 34gw3.wasfeds.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1333
Origin: https://878fa.com:8989
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 04 Jun 2023 11:02:01 GMT
content-type: text/json; charset=utf-8
content-length: 755
server: nginx
cache-control: private
content-encoding: gzip
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
x-aspnet-version: 4.0.30319
access-control-allow-origin: https://878fa.com:8989
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
access-control-allow-headers: Content-type,api-key,Authorization,X-Requested-With
arrserver: node5chatserver
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
referrer-policy: no-referrer
X-Firefox-Spdy: h2

3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10289/1639550762197.png?wsSecret=119c188aa7b4d85a03f6936bb6d1d852&wsTime=1685876517

104.250.44.1

200 OK

218 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10289/1639550762197.png?wsSecret=119c188aa7b4d85a03f6936bb6d1d852&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 1400 x 1047, 8-bit colormap, non-interlaced\012- data
Size
218 kB (217791 bytes)
Hash
749eb8a1547b3e80185b25a86f3f8dac
bd345cbbb9f96c74a8165ccb31db3e4c1fb88ca9
9ebf68db59bfe23f21efe6711f3cfdba4859e5a874a9587928d20a288daf13a0

HTTP Headers

GET /fserver/files/gb/141/carousel/10289/1639550762197.png?wsSecret=119c188aa7b4d85a03f6936bb6d1d852&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 217791
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "6379d6a0-352bf"
Date: Sun, 14 May 2023 13:10:10 GMT
Last-Modified: Sun, 20 Nov 2022 07:26:24 GMT
Expires: Tue, 13 Jun 2023 13:10:10 GMT
Age: 1806710
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 294f9a64b44cc9f494fc7cff50994e93

3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10311/1658375599529.png?wsSecret=4461bf74f16db1c360a49fbfd97f4c7d&wsTime=1685876517

104.250.44.1

200 OK

279 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10311/1658375599529.png?wsSecret=4461bf74f16db1c360a49fbfd97f4c7d&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 1384 x 961, 8-bit colormap, non-interlaced\012- data
Size
279 kB (278659 bytes)
Hash
a494db53e3ad3d19a85e330e33b6a182
315a19514103494c6cf60a8d91545e1944206047
1c32a585655c4d7d56b66a7e578c240d7a0d3808b16bc15a2f30b97ce02aa275

HTTP Headers

GET /fserver/files/gb/141/carousel/10311/1658375599529.png?wsSecret=4461bf74f16db1c360a49fbfd97f4c7d&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 278659
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "6379d6df-44083"
Date: Sun, 14 May 2023 13:09:31 GMT
Last-Modified: Sun, 20 Nov 2022 07:27:27 GMT
Expires: Tue, 13 Jun 2023 13:09:31 GMT
Age: 1806749
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: ab2b4666f7106d771f7097df6ced201a

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1010.png

13.75.95.168

104 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1010.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
104 kB (103628 bytes)
Hash
8d666e925b25cb11e51e73f93c070f4d
c6ff29c0819e955832f80eb564569cadd6a2b6e9
58377e7130027c1bc0b0d1640be5c18574464c78253ee14a8957586e32f55e0a

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1010.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:01 GMT
Content-Type: image/png
Content-Length: 103628
Connection: keep-alive
Last-Modified: Tue, 10 May 2022 03:35:17 GMT
ETag: "6279dd75-194cc"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:01 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

3dsa62.shanzhi.me/ftl/bet365-141-2/images/index-casino.jpg?wsSecret=dd7d31a57015cb5ad66daa1c1961f300&wsTime=1685876517

104.250.44.1

12 kB

URL
3dsa62.shanzhi.me/ftl/bet365-141-2/images/index-casino.jpg?wsSecret=dd7d31a57015cb5ad66daa1c1961f300&wsTime=1685876517
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 271x81, components 3\012- data
Size
12 kB (11660 bytes)
Hash
62f912bb32aecad4ab710243a04a4ba9
f8a22eaaf6dc17329932db9c19484907332ea800
ecc11913678af89246c957fae2eaf6cbb07316f7ad24bdcc3e2b115293e46f60

HTTP Headers

GET /ftl/bet365-141-2/images/index-casino.jpg?wsSecret=dd7d31a57015cb5ad66daa1c1961f300&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 11660
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "5d2c7603-2d8c"
Date: Sun, 14 May 2023 13:10:09 GMT
Last-Modified: Mon, 15 Jul 2019 12:48:03 GMT
Expires: Tue, 13 Jun 2023 13:10:09 GMT
Age: 1806712
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 4cfdb01a8ca0ffbb48fb2d2382b6414c

3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10316/1659084716430.png?wsSecret=00c0503f81ca0f933e6bc68f8170701a&wsTime=1685876517

104.250.44.1

200 OK

70 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10316/1659084716430.png?wsSecret=00c0503f81ca0f933e6bc68f8170701a&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 750 x 190, 8-bit colormap, non-interlaced\012- data
Size
70 kB (70362 bytes)
Hash
3cec45bced128357804406f23fdb94d1
2e300c18f2c721f4d8580098b46829ef2be4ce1e
36d46701f11f890e85341c03a1381dd46dce7c1be4c2582ebfa67b0e39101d15

HTTP Headers

GET /fserver/files/gb/141/carousel/10316/1659084716430.png?wsSecret=00c0503f81ca0f933e6bc68f8170701a&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 70362
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "62e39fac-112da"
Date: Sun, 14 May 2023 13:10:10 GMT
Last-Modified: Fri, 29 Jul 2022 08:51:56 GMT
Expires: Tue, 13 Jun 2023 13:10:10 GMT
Age: 1806711
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: c6eaec2edeb263cd0940f4d2cd6f9871

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1009.png

13.75.95.168

123 kB

URL
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1009.png
IP
13.75.95.168:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
123 kB (122960 bytes)
Hash
b69175dfa95eb604296c5851d0c3e475
4261111823816abc196390d2e8d44b4fbb4131ab
2bde2c2b2e0d167704830962300fd6528f914b1688a08b9cacc344af415fa1a3

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1009.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:01 GMT
Content-Type: image/png
Content-Length: 122960
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 03:42:41 GMT
ETag: "61513db1-1e050"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:01 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

3dsa62.shanzhi.me/ftl/bet365-141-2/images/index-lottery.jpg?wsSecret=3ca701ef6c6af2c97217bedc9f364a31&wsTime=1685876517

104.250.44.1

200 OK

7.9 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/bet365-141-2/images/index-lottery.jpg?wsSecret=3ca701ef6c6af2c97217bedc9f364a31&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 270x81, components 3\012- data
Size
7.9 kB (7926 bytes)
Hash
90dfcd159d726929aa2e8140ac0a43cd
dae58fb59b64ca2922198f64c87762d10dbd161a
cd548d38e7e22e8597da17809e9dd1ee020cfe72288ac55fdb14c9b4130d9e92

HTTP Headers

GET /ftl/bet365-141-2/images/index-lottery.jpg?wsSecret=3ca701ef6c6af2c97217bedc9f364a31&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 7926
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "5d2c7603-1ef6"
Date: Sun, 14 May 2023 13:10:09 GMT
Last-Modified: Mon, 15 Jul 2019 12:48:03 GMT
Expires: Tue, 13 Jun 2023 13:10:09 GMT
Age: 1806712
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: c62c5b7f563dfad0f2830906c2d4321c

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_020.png

13.75.95.168

200 OK

106 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_020.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
106 kB (105577 bytes)
Hash
88a047662775c71a5483b0643e4cc75d
1403cc8add3e60970a95f9dd1b23084b850266be
ba2434bbbac29b41f9fc1f429f7311ca994e3888dbbd5b115a9829438ab130f7

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_020.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:01 GMT
Content-Type: image/png
Content-Length: 105577
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 03:42:41 GMT
ETag: "61513db1-19c69"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:01 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_018.png

13.75.95.168

200 OK

104 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_018.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
104 kB (103789 bytes)
Hash
47f5aa60abc34c45a6676edb8fdf0479
26c8e877af1411d84fa894f304795cc48e7ccb3e
35097b6af20809e9e749d5744ba558e6abb5d8f1cc0a48d351d7b6266eb1353b

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_at2_018.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:01 GMT
Content-Type: image/png
Content-Length: 103789
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 03:42:41 GMT
ETag: "61513db1-1956d"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:01 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

3dsa62.shanzhi.me/ftl/bet365-141-2/images/index-game.jpg?wsSecret=c07ec7ad17e3f8e6f628aa7873b95051&wsTime=1685876517

104.250.44.1

12 kB

URL
3dsa62.shanzhi.me/ftl/bet365-141-2/images/index-game.jpg?wsSecret=c07ec7ad17e3f8e6f628aa7873b95051&wsTime=1685876517
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 271x81, components 3\012- data
Size
12 kB (11478 bytes)
Hash
6274335f5e37fb7e3aa19dba05a07ef3
d54c0b0cccf2158aee56d7f1f465d5bb907edf06
39d9bd9e19956bb52c4c880dc6987383c34dc0873aadaa6b3763e3421e06def7

HTTP Headers

GET /ftl/bet365-141-2/images/index-game.jpg?wsSecret=c07ec7ad17e3f8e6f628aa7873b95051&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 11478
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "5d2c7603-2cd6"
Date: Sun, 14 May 2023 13:10:09 GMT
Last-Modified: Mon, 15 Jul 2019 12:48:03 GMT
Expires: Tue, 13 Jun 2023 13:10:09 GMT
Age: 1806712
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 4ce557efd3384f1e67749ef7518a8bf2

34gw3.wasfeds.com/campaign.ashx?siteId=65000584&campaignId=10b42444-f030-4724-9472-c5b49997c716&lastUpdateTime=00000000086CE4A9

13.248.168.108

200 OK

6.6 kB

URL GET HTTP/2
34gw3.wasfeds.com/campaign.ashx?siteId=65000584&campaignId=10b42444-f030-4724-9472-c5b49997c716&lastUpdateTime=00000000086CE4A9
IP
13.248.168.108:443
ASN
#16509 AMAZON-02

Requested by
https://878fa.com:8989/
Certificate
IssuerAmazon
Subject*.livehelp100service.com
FingerprintF3:5A:B2:DE:B7:9D:AE:33:BB:77:79:A5:01:7D:6D:ED:EE:1F:F5:4B
ValidityTue, 13 Dec 2022 00:00:00 GMT - Thu, 11 Jan 2024 23:59:59 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (11517), with no line terminators
Size
6.6 kB (6620 bytes)
Hash
4c0e6a5f10fba4230b50f70aa9fee018
4b9dade750667ad8a5f2e8dd85c3a78c299f3fcb
6b118ababf9f2e385a01cc6e9e8677cd49ebdf96c7b02cbd3d40330dfed41259

HTTP Headers

GET /campaign.ashx?siteId=65000584&campaignId=10b42444-f030-4724-9472-c5b49997c716&lastUpdateTime=00000000086CE4A9 HTTP/1.1
Host: 34gw3.wasfeds.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://878fa.com:8989
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 04 Jun 2023 11:02:01 GMT
content-type: text/json; charset=utf-8
content-length: 6620
server: nginx
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
access-control-allow-headers: Content-type,api-key,Authorization,X-Requested-With
arrserver: node5chatserver
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
referrer-policy: no-referrer
X-Firefox-Spdy: h2

3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10366/1678507559237.jpg?wsSecret=497143f860d89e46ff0a584c7199deaf&wsTime=1685876517

104.250.44.1

386 kB

URL
3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10366/1678507559237.jpg?wsSecret=497143f860d89e46ff0a584c7199deaf&wsTime=1685876517
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 694x520, components 3\012- data
Size
386 kB (386527 bytes)
Hash
81a5f65507df89f605fbf600872099fe
791d238960719ed5e3dd17b592c868d029dbc7a4
656130b23da3fb9ce75eee3708b6f22f7c160f1640f7e858ffa64bc054856519

HTTP Headers

GET /fserver/files/gb/141/carousel/10366/1678507559237.jpg?wsSecret=497143f860d89e46ff0a584c7199deaf&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 386527
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "640bfe27-5e5df"
Date: Sun, 14 May 2023 13:09:31 GMT
Last-Modified: Sat, 11 Mar 2023 04:05:59 GMT
Expires: Tue, 13 Jun 2023 13:09:31 GMT
Age: 1806748
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-FOREIGN-11-01
X-Cdn-Request-ID: 69250121164a6ad0dbc9373113016a99

3dsa62.shanzhi.me/fserver/files/gb/141/floatImage/273/1666693826407.png?wsSecret=b2017fe0d934ddb71b70f2a32f79ccdc&wsTime=1685876517

104.250.44.1

200 OK

59 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/fserver/files/gb/141/floatImage/273/1666693826407.png?wsSecret=b2017fe0d934ddb71b70f2a32f79ccdc&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 140 x 476, 8-bit/color RGBA, non-interlaced\012- data
Size
59 kB (59186 bytes)
Hash
49563d45b49a4be9ca3e47e47abe4922
d3fa0c017818ad83aea64f5aa6665ffde15e69df
f30de132f8c9fea735cb30ab39ace43814273b611b804edbbf8ccd742d3ef531

HTTP Headers

GET /fserver/files/gb/141/floatImage/273/1666693826407.png?wsSecret=b2017fe0d934ddb71b70f2a32f79ccdc&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 59186
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "6357bac2-e732"
Date: Sun, 14 May 2023 13:10:09 GMT
Last-Modified: Tue, 25 Oct 2022 10:30:26 GMT
Expires: Tue, 13 Jun 2023 13:10:09 GMT
Age: 1806712
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: d6351ce2ec8aab4fd68810f68f436c52

878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1004.png

13.75.95.168

200 OK

107 kB

URL GET HTTP/1.1
878fa.com:8989/ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1004.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 250 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size
107 kB (107087 bytes)
Hash
97e7e1d62e6ab7d3fb963eeaa7eaf82c
0b8b4dfbecc67f6c2108f1518363b04df485c23c
ba14d4ca242898af3cc3283eae416223f025413067480df7b0dd1ec6904d1b38

HTTP Headers

GET /ftl/resource/chess/public/game/game01/2x/zh_CN/game_fish_90_ds_1004.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:01 GMT
Content-Type: image/png
Content-Length: 107087
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 03:42:41 GMT
ETag: "61513db1-1a24f"
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Expires: Mon, 05 Jun 2023 11:02:01 GMT
Cache-Control: max-age=86400
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

3dsa62.shanzhi.me/fserver/files/gb/141/floatImage/273/1666693826530.png?wsSecret=713e81836fcfd4035bed6b04729b00be&wsTime=1685876517

104.250.44.1

8.6 kB

URL
3dsa62.shanzhi.me/fserver/files/gb/141/floatImage/273/1666693826530.png?wsSecret=713e81836fcfd4035bed6b04729b00be&wsTime=1685876517
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 140 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
8.6 kB (8612 bytes)
Hash
e9b65c8ad826f51a6e0d8b30801ebe97
a6b5f8cf0772e12117fe5db956482ed8f15140d5
2a2c01d75b9b60e977fb5a8e535fc8ea4e9146bb499e2af25ccf1bd5ebaaf840

HTTP Headers

GET /fserver/files/gb/141/floatImage/273/1666693826530.png?wsSecret=713e81836fcfd4035bed6b04729b00be&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 8612
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "6357bac2-21a4"
Date: Sun, 14 May 2023 13:10:09 GMT
Last-Modified: Tue, 25 Oct 2022 10:30:26 GMT
Expires: Tue, 13 Jun 2023 13:10:09 GMT
Age: 1806712
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: a0246513baa54fd680b8e83187c803cd

3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10307/1658300326348.png?wsSecret=2d082af1808d96c768ee3643d406145d&wsTime=1685876517

104.250.44.1

328 kB

URL
3dsa62.shanzhi.me/fserver/files/gb/141/carousel/10307/1658300326348.png?wsSecret=2d082af1808d96c768ee3643d406145d&wsTime=1685876517
IP
104.250.44.1:0
ASN
#137280 Kingsoft cloud corporation limited

Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 1400 x 1047, 8-bit colormap, non-interlaced\012- data
Size
328 kB (328303 bytes)
Hash
535172ad3a435afe80c33ed17cc592f9
7d8bc3efa5a46e12b54ee07d0428c5e3d0662fc4
f7b20469f299a0722ccc52bbecdba656f73435b4c827add798de38797a2c266e

HTTP Headers

GET /fserver/files/gb/141/carousel/10307/1658300326348.png?wsSecret=2d082af1808d96c768ee3643d406145d&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 328303
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-01
ETag: "6379d6d4-5026f"
Date: Sun, 14 May 2023 13:10:10 GMT
Last-Modified: Sun, 20 Nov 2022 07:27:16 GMT
Expires: Tue, 13 Jun 2023 13:10:10 GMT
Age: 1806710
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-01, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 4e5c469a1cb371d8e322d032ff2fc0e6

3dsa62.shanzhi.me/ftl/commonPage/images/favicon/favicon_141.png?wsSecret=42ae2587bc17f11c87abe9bceca04b6e&wsTime=1685876517

104.250.44.1

200 OK

4.7 kB

URL GET HTTP/1.1
3dsa62.shanzhi.me/ftl/commonPage/images/favicon/favicon_141.png?wsSecret=42ae2587bc17f11c87abe9bceca04b6e&wsTime=1685876517
IP
104.250.44.1:443
ASN
#137280 Kingsoft cloud corporation limited

Requested by
https://878fa.com:8989/
Certificate
IssuerSectigo Limited
Subject*.shanzhi.me
Fingerprint43:3B:47:53:8C:70:57:4E:CD:B5:34:F2:E3:A5:B9:C0:BD:D2:29:53
ValidityMon, 17 Oct 2022 00:00:00 GMT - Tue, 17 Oct 2023 23:59:59 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGB, non-interlaced\012- data
Size
4.7 kB (4704 bytes)
Hash
834417d344a1bd995c78df66fe45edbd
79a5cd12dc1bf06043f38349e6dd492e58144a01
736b8041b08f7ec7a5f5a8e8d4d857dc58f1f03d4e2b6f738a2f1c9ae3892bbb

HTTP Headers

GET /ftl/commonPage/images/favicon/favicon_141.png?wsSecret=42ae2587bc17f11c87abe9bceca04b6e&wsTime=1685876517 HTTP/1.1
Host: 3dsa62.shanzhi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 4704
Connection: keep-alive
Server: Default-server-KS-CLOUD-LSJ-12-03
ETag: "6311d300-1260"
Date: Sun, 14 May 2023 14:44:07 GMT
Last-Modified: Fri, 02 Sep 2022 09:55:12 GMT
Expires: Tue, 13 Jun 2023 14:44:07 GMT
Age: 1801074
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: lsj11:443;lsj12:80;
X-Cache-Status: HIT from KS-CLOUD-LSJ-12-03, HIT from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: e1a2aabed6398e34ecfaea1493d18614

878fa.com:8989/index/getUserTimeZoneDate.html?t=lihbcn0x

13.75.95.168

200

119 B

URL GET HTTP/1.1
878fa.com:8989/index/getUserTimeZoneDate.html?t=lihbcn0x
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
119 B (119 bytes)
Hash
854a8a623fd36543a6f77332a29fb3c0
16dc5c7c6c0ba91b146d0cd89976bdad288f98d6
17dc5dcc3496189d633fa07188dcb7dc784065b9dc8ca593b28ef224b84691dd

HTTP Headers

GET /index/getUserTimeZoneDate.html?t=lihbcn0x HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM; route=21c20bedba26b78ebec8dc5df8d96c86
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Date: Sun, 04 Jun 2023 11:01:59 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 119
Connection: keep-alive
Set-Cookie: route=4dc7dfeabaa1977335671c9d813ff1f9; Path=/
Content-Disposition: inline;filename=f.txt
sub-sys: msite
cachettl: 3
X-Frame-Options: SAMEORIGIN
uuid: 00141-02-00000000-1685876519717a
out-line: gb-site-054

878fa.com:8989/fserver/files/gb/141/sportTeam/19/1619667321319.png

13.75.95.168

200 OK

100 kB

URL GET HTTP/1.1
878fa.com:8989/fserver/files/gb/141/sportTeam/19/1619667321319.png
IP
13.75.95.168:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://878fa.com:8989/
Certificate
IssuerLet's Encrypt
Subject878fa.com
FingerprintDC:01:6D:40:D1:5D:D7:C8:72:CE:50:B4:AC:0F:06:0C:04:CF:86:1E
ValidityFri, 31 Mar 2023 15:16:36 GMT - Thu, 29 Jun 2023 15:16:35 GMT

File type
PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Size
100 kB (100447 bytes)
Hash
fe67ace9dcc5e55c2ecf90848dfb9ce3
0751bfae04da5c9e5769f7b1fcbbdcb0c140b109
2347a977819218f9900136ca44b97b0d578d6c5621123db22504efe8bd7bf090

HTTP Headers

GET /fserver/files/gb/141/sportTeam/19/1619667321319.png HTTP/1.1
Host: 878fa.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Cookie: sticket=UTVNV1F0TkRjd09DM; route=6fc16a063046d21fc2e5f5c026f90787
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 11:02:00 GMT
Content-Type: image/png
Content-Length: 100447
Connection: keep-alive
Last-Modified: Thu, 29 Apr 2021 03:35:21 GMT
Vary: Accept-Encoding
ETag: "608a2979-1885f"
Expires: Mon, 05 Jun 2023 11:02:00 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-site-054
Accept-Ranges: bytes

vue.livehelp100service.com/visitorside/js/vendor.3f781933.js

54.230.111.98

200 OK

74 kB

URL GET HTTP/2
vue.livehelp100service.com/visitorside/js/vendor.3f781933.js
IP
54.230.111.98:443
ASN
#16509 AMAZON-02

Requested by
https://878fa.com:8989/
Certificate
IssuerAmazon
Subject*.livehelp100service.com
Fingerprint6F:E7:59:6C:BC:A5:EE:3B:9E:32:71:6E:15:60:9F:A9:36:BC:D0:F3
ValidityFri, 26 May 2023 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT

File type

Size
74 kB (73465 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /visitorside/js/vendor.3f781933.js HTTP/1.1
Host: vue.livehelp100service.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://878fa.com:8989
DNT: 1
Connection: keep-alive
Referer: https://878fa.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Sun, 04 Jun 2023 03:21:05 GMT
server: nginx/1.22.1
last-modified: Mon, 08 May 2023 07:00:15 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: br
etag: W/"64589dff-11ef9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _x3vNYg4rqqXncOBIOW-4OEDHUucUTNjhhxJ4P9hwFVglQJMUuYJ-g==
age: 27654
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (47)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML