{"report_id":"5f9b96a4-b8b3-42ce-82e1-9b9ff10887fd","version":6,"status":"done","tags":[],"date":"2026-05-28T07:42:37Z","url":{"schema":"http","addr":"jp-zoom.com.cn","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":0,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"jp-zoom.com.cn/","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"title":"ZOOM移动协作 - ZOOM桌面版下载 | 跨平台群组视频通话","dom":{"size":15926,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (807)","md5":"08fddf0d06968cb6a371d7720e567320","sha1":"d5b3a3b2d06cc33ddee04e00122b701f5add93e3","sha256":"bdb15c6840017adcd3b4dbebeb6b6f979713516ad35802d020b4f412b34aca12","sha512":"b7ea8e0d8c6eda73726d52c02300b54328415bad14b52f69d4d8bc4d975f6e79e05136374cfc13cc9346df4ad6f7b722ad481eb6421882556aac4ba6f0015256","ssdeep":"192:vTRS7bzZ6MquouAFx20JtGKUSjc98WqCSHM8+ys1ve+Z6G:IXZ6Mc20Jtc98WdSHM8+LNvZv","tlshash":"ac62096311089c3f1327d1ebe5a5b68d70358637e2768af4a9e0702f96e06f81d6331e","dom_hash":"domhash14f8495e1d491dd8a79f04b0cf355ccb","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"jp-zoom.com.cn","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":0,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-02T07:42:37Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"jp-zoom.com.cn","ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"domain_registered":"2026-05-24","domain_rank":0,"first_seen":"2026-05-28T07:42:37.710717Z","last_seen":"2026-05-28T07:42:37.710718Z","alert_count":0,"request_count":8,"received_data":1546758,"sent_data":4680,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"sdk.51.la/js-sdk-pro.min.js","fqdn":"sdk.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8a41c9449b73e8ba0224c6be1f0b7e8","sha1":"33d79319d4110bcf5c44c36f7dd4a291972ac546","sha256":"52079c09a7355f4ce3af750602ebb9aebae8238583601f8a06268eecccf13565","sha512":"472d0395a65a3ade2d215559b196a88ffcdacde3ac0f573eb8663b524f201d72c9339bcacbc198d82452a0ac367c0efd407b12795943cdd2755d95a8cf71b977","ssdeep":"768:swetbD3SkE+a/l1jaKUiQU5eqEh9GMXBOXAA/EXBeJMlbJfuPT:BetbD3SVT/3+KUc5eqEh9GMXBYEXBeJ7","tlshash":"dbf23d9577c0317cc3c783ea362b501ae1a69e910059a8bcf345f6907d34e56a37fba8","size":36114,"data":"","first_seen":"2025-03-10T03:40:31.536734Z","last_seen":"2026-06-08T23:30:22.609686Z","times_seen":98190,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-zoom.com.cn/","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9441f01516fdb48a0abb95f60495b8de","sha1":"f046929b3c04dbec880a07c53d93806a80ca300f","sha256":"052fd89ddc2d6b63782716f8e116946f6f62ff8dfc4c3ec61de8d20cdb9bff04","sha512":"ce75e5dc908fde4ae33e5b47768b13b16f81413c4db285589048b9ef052e2fe8b152be2a5efc251687f9d025d7dc872fe56ffd4f0e4a6fe53b9fe03ba82c66ff","ssdeep":"","tlshash":"f390028684e2040b4a14a9970bd081cb0653884014346004248d7a4018e2e2a693d331","size":54,"data":"","first_seen":"2026-05-28T07:41:26.933125Z","last_seen":"2026-05-28T07:42:41.438205Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"jp-zoom.com.cn/favicon.ico","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-zoom.com.cn/","date":"2026-05-28T07:42:16.428Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jp-zoom.com.cn","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:31:46 GMT","end":"Sat, 22 Aug 2026 10:31:45 GMT"},"fingerprint":{"sha1":"93:57:87:9E:5C:61:C1:76:86:4B:8F:4A:A4:CF:30:89:DB:1B:0F:E9","sha256":"5E:DF:FE:1B:03:8D:74:31:99:38:A3:19:3C:42:75:3A:3F:39:4D:A9:9F:B5:B8:FB:84:BB:21:6F:BD:3D:DA:2D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: jp-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://jp-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=0532caa3d9f35d50fc2c7ae179d097c0; __vtins__3Q2GYoJ1hUyLRrBy=%7B%22sid%22%3A%20%229a6312eb-6821-5562-8cbf-ffcd81f49755%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201779955936366%2C%20%22ct%22%3A%201779954136366%7D; __51uvsct__3Q2GYoJ1hUyLRrBy=1; __51vcke__3Q2GYoJ1hUyLRrBy=a8cd3db1-9928-5023-ac0d-bb8c41aa6ee4; __51vuft__3Q2GYoJ1hUyLRrBy=1779954136372\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:42:16 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1102\r\nlast-modified: Sun, 24 May 2026 11:08:06 GMT\r\netag: \"6a12dc16-44e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1102,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 24x24 with PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced, 32 bits/pixel","md5":"6f036a374842114eb04e4d009d141ea4","sha1":"6028dd364841f3de5bbac55fe662d43875c6a89b","sha256":"33ed517a99e295f916e6ec426dcf7656f4de56be1bd30d02a35a3978265c2490","sha512":"f0d7f0f13472db660d117326b4c026f0369d1095ccf3a030d5957f1384e98588ccd2e0af08f9ec3502c0ec02677fcdec265d05058cee89a76cca996656dcb219","ssdeep":"","tlshash":"c411e992ae49bf8b8d4e214a8ec85d23f33b8238073e2018d002f16457c3f4e4dc560b","first_seen":"2026-05-28T07:41:26.918069Z","last_seen":"2026-05-28T07:42:41.42235Z","times_seen":4,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-zoom.com.cn/logo.png","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-zoom.com.cn/","date":"2026-05-28T07:42:16.426Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jp-zoom.com.cn","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:31:46 GMT","end":"Sat, 22 Aug 2026 10:31:45 GMT"},"fingerprint":{"sha1":"93:57:87:9E:5C:61:C1:76:86:4B:8F:4A:A4:CF:30:89:DB:1B:0F:E9","sha256":"5E:DF:FE:1B:03:8D:74:31:99:38:A3:19:3C:42:75:3A:3F:39:4D:A9:9F:B5:B8:FB:84:BB:21:6F:BD:3D:DA:2D"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: jp-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://jp-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=0532caa3d9f35d50fc2c7ae179d097c0; __vtins__3Q2GYoJ1hUyLRrBy=%7B%22sid%22%3A%20%229a6312eb-6821-5562-8cbf-ffcd81f49755%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201779955936366%2C%20%22ct%22%3A%201779954136366%7D; __51uvsct__3Q2GYoJ1hUyLRrBy=1; __51vcke__3Q2GYoJ1hUyLRrBy=a8cd3db1-9928-5023-ac0d-bb8c41aa6ee4; __51vuft__3Q2GYoJ1hUyLRrBy=1779954136372\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:42:16 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 24 May 2026 11:07:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a12dbfa-24df\"\r\nexpires: Sat, 27 Jun 2026 07:42:16 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9439,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"fb3e9005e1b0acb0a4eac3c423447f6f","sha1":"7a80395f078ba6c806e7e1bcc8ecdab707691e03","sha256":"40a8a4df3859ee01f662437e3d9fd05a9d798826ac85c2af69e12e2f4a1c7261","sha512":"fdbc88b415462a6def02c2b71d892d2d391c67c9ae0591dd97b6a7ae94ea7c71b1ca88baeb83d49e7d32c481bb2af3e58cfd1b72a1f3ff5f6d509e72c835486b","ssdeep":"192:7hk88Lr3HEBCLNrtbtXpLEnGY9nTl81HRInGCRFBuRB7:StH3uobnLEH9Ty1HRIG2FBmB7","tlshash":"2f12b071b2825b15e56f10e76794b2a38a451c720c49d9c9d16e357507be02f8fa0c4b","first_seen":"2025-08-18T08:56:27.682172Z","last_seen":"2026-06-12T23:11:28.154348Z","times_seen":222,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-zoom.com.cn/","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-28T07:42:14.699Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jp-zoom.com.cn","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:31:46 GMT","end":"Sat, 22 Aug 2026 10:31:45 GMT"},"fingerprint":{"sha1":"93:57:87:9E:5C:61:C1:76:86:4B:8F:4A:A4:CF:30:89:DB:1B:0F:E9","sha256":"5E:DF:FE:1B:03:8D:74:31:99:38:A3:19:3C:42:75:3A:3F:39:4D:A9:9F:B5:B8:FB:84:BB:21:6F:BD:3D:DA:2D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: jp-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:42:15 GMT\r\ncontent-type: text/html\r\nlast-modified: Sun, 24 May 2026 11:57:47 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a12e7bb-3e3c\"\r\nset-cookie: server_name_session=0532caa3d9f35d50fc2c7ae179d097c0; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15932,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (807)","md5":"9be3ac62980ac312faa811dd5ca77d62","sha1":"e221bc37e67c682bb654cb37579525375b1ee7ee","sha256":"f9db58b951a88b119ba8b0b33c7c20b8fbec2ee5686c5f0d0fef95afb61154d4","sha512":"0d8a9020303e16869dd8be39fa657ca12c46d6f64aad793d02a0ffb9f92a8cd5a54fe03dc5c34146aba1abe749ec0d599121eb35eccc1befcba682a032cc52c2","ssdeep":"192:DvRS7bzZ6MquouAFx20JtPzZS0wheNEtmXWqCSHM8+ys1ve+Z6e:QXZ6Mc20JtCMXWdSHM8+LNvZT","tlshash":"2962f86311089c3f1327d1ebe5a5b68d70359637f2768ae4a9e0702f96e06f81d6331e","first_seen":"2026-05-28T07:42:41.425609Z","last_seen":"2026-05-28T07:42:41.425609Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1000,"timings":{"blocked":415,"dns":100,"connect":154,"send":0,"wait":170,"receive":0,"ssl":159},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-zoom.com.cn/11.webp","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-zoom.com.cn/","date":"2026-05-28T07:42:15.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jp-zoom.com.cn","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:31:46 GMT","end":"Sat, 22 Aug 2026 10:31:45 GMT"},"fingerprint":{"sha1":"93:57:87:9E:5C:61:C1:76:86:4B:8F:4A:A4:CF:30:89:DB:1B:0F:E9","sha256":"5E:DF:FE:1B:03:8D:74:31:99:38:A3:19:3C:42:75:3A:3F:39:4D:A9:9F:B5:B8:FB:84:BB:21:6F:BD:3D:DA:2D"}}},"request":{"raw":"GET /11.webp HTTP/1.1\r\nHost: jp-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://jp-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=0532caa3d9f35d50fc2c7ae179d097c0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:42:15 GMT\r\ncontent-type: image/webp\r\ncontent-length: 826397\r\nlast-modified: Sun, 24 May 2026 11:12:00 GMT\r\netag: \"6a12dd00-c9c1d\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":826397,"size_decoded":0,"mime_type":"image/webp","magic":"PNG image data, 1888 x 822, 8-bit/color RGB, non-interlaced","md5":"8ef5aa52ac1e8b0a9beaf3837098ad02","sha1":"d09dab5b4e4612feb410f5a30c53cc558c3f893d","sha256":"2001fd725a69576c9df97d0d080b821f57a5fb037f01e1c62525514107e36f7a","sha512":"e3461a016604a5be31be21c8c74570c5a678bd62f61e16fe4e93ecf545649bbb20ff7ae8ebe356e18f2bd19086a563fb15a4078564ad463b95798f304b5b17a9","ssdeep":"12288:IEj2Z0zB8KN2a86wmDK/QvegXersd91SZF9ykTCkhyispubNAQ9JjI/K+qw+VEP2:IEyZiY67DKUtXMG91S5Vvl5aKDVt","tlshash":"2c0533c3ab262b27fb4b4d67530b948c9ec1d9b3f2b41020c969d685672cd6cde41f26","first_seen":"2026-05-28T07:41:34.707456Z","last_seen":"2026-05-28T07:42:41.428963Z","times_seen":2,"resource_available":false,"data":null}},"time_used":950,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":308,"receive":642,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-zoom.com.cn/33.webp","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-zoom.com.cn/","date":"2026-05-28T07:42:15.477Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jp-zoom.com.cn","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:31:46 GMT","end":"Sat, 22 Aug 2026 10:31:45 GMT"},"fingerprint":{"sha1":"93:57:87:9E:5C:61:C1:76:86:4B:8F:4A:A4:CF:30:89:DB:1B:0F:E9","sha256":"5E:DF:FE:1B:03:8D:74:31:99:38:A3:19:3C:42:75:3A:3F:39:4D:A9:9F:B5:B8:FB:84:BB:21:6F:BD:3D:DA:2D"}}},"request":{"raw":"GET /33.webp HTTP/1.1\r\nHost: jp-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://jp-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=0532caa3d9f35d50fc2c7ae179d097c0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:42:15 GMT\r\ncontent-type: image/webp\r\ncontent-length: 568236\r\nlast-modified: Sun, 24 May 2026 11:12:20 GMT\r\netag: \"6a12dd14-8abac\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":568236,"size_decoded":0,"mime_type":"image/webp","magic":"PNG image data, 1885 x 502, 8-bit/color RGB, non-interlaced","md5":"fe4c2631f2620a7ebecbc51df60a1eee","sha1":"19d067b760abc3cb709b8535efd3583aeb7ffe74","sha256":"d125b4b1c147092e5a8b57718b278d5fde4852cab5853462eaaedaf7f32ef8e3","sha512":"725de4a15b9e42c08c3a3610a5a28de3a79f1a7b7553636c958231c0feea4d26d35d99e78a6017801655c1574992ad67d4022d6c342ea1493d94b5015bedf156","ssdeep":"12288:qiotux1Gl47Hhcr3EZDdGoShesmvg/9zD7RXhw2icNA:qP0T7ghbH9VXPi5","tlshash":"85c423a6e0404557ffa810b8729d6f0be44195f1858ec4de6237c3e879ee3510eeabc2","first_seen":"2026-05-28T07:41:26.924668Z","last_seen":"2026-05-28T07:42:41.431272Z","times_seen":4,"resource_available":false,"data":null}},"time_used":974,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":461,"receive":513,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-zoom.com.cn/images/5.webp","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-zoom.com.cn/","date":"2026-05-28T07:42:15.480Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jp-zoom.com.cn","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:31:46 GMT","end":"Sat, 22 Aug 2026 10:31:45 GMT"},"fingerprint":{"sha1":"93:57:87:9E:5C:61:C1:76:86:4B:8F:4A:A4:CF:30:89:DB:1B:0F:E9","sha256":"5E:DF:FE:1B:03:8D:74:31:99:38:A3:19:3C:42:75:3A:3F:39:4D:A9:9F:B5:B8:FB:84:BB:21:6F:BD:3D:DA:2D"}}},"request":{"raw":"GET /images/5.webp HTTP/1.1\r\nHost: jp-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://jp-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=0532caa3d9f35d50fc2c7ae179d097c0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:42:15 GMT\r\ncontent-type: image/webp\r\ncontent-length: 67537\r\nlast-modified: Sun, 24 May 2026 11:03:38 GMT\r\netag: \"6a12db0a-107d1\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":67537,"size_decoded":0,"mime_type":"image/webp","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1000x666, components 3","md5":"ad12ae99c0159be2f5ca1ffe0fbaf279","sha1":"7f1f17e50fe01f48a4ac16092225d22a9b3ef806","sha256":"d53c3521f853b36f3586eb0df4214571b0cc1633a0220eb8959fde30141fb127","sha512":"29ce2296b0a8859c3b9de46dbe046ed831f6cc99902a3821b4451247acb61847027f6dbe867534332853dbbfc3823049a04cf64e37661f5acf613ad34557f755","ssdeep":"1536:XVyKNdXuoZ74k6Mdx2IBjMEZTPOYSJ/g3bgnX4RL:XVzROkhdx5uozO9JI3bgnX4RL","tlshash":"dd63f1267755d605db613066f3ea20a2a76336ddf11011f584f8c8eef042a7fac1791e","first_seen":"2026-05-28T07:42:41.432582Z","last_seen":"2026-05-28T07:42:41.432582Z","times_seen":1,"resource_available":false,"data":null}},"time_used":770,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":460,"receive":310,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-zoom.com.cn/logo.png","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-zoom.com.cn/","date":"2026-05-28T07:42:15.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jp-zoom.com.cn","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:31:46 GMT","end":"Sat, 22 Aug 2026 10:31:45 GMT"},"fingerprint":{"sha1":"93:57:87:9E:5C:61:C1:76:86:4B:8F:4A:A4:CF:30:89:DB:1B:0F:E9","sha256":"5E:DF:FE:1B:03:8D:74:31:99:38:A3:19:3C:42:75:3A:3F:39:4D:A9:9F:B5:B8:FB:84:BB:21:6F:BD:3D:DA:2D"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: jp-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://jp-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=0532caa3d9f35d50fc2c7ae179d097c0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:42:15 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 24 May 2026 11:07:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a12dbfa-24df\"\r\nexpires: Sat, 27 Jun 2026 07:42:15 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9439,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"fb3e9005e1b0acb0a4eac3c423447f6f","sha1":"7a80395f078ba6c806e7e1bcc8ecdab707691e03","sha256":"40a8a4df3859ee01f662437e3d9fd05a9d798826ac85c2af69e12e2f4a1c7261","sha512":"fdbc88b415462a6def02c2b71d892d2d391c67c9ae0591dd97b6a7ae94ea7c71b1ca88baeb83d49e7d32c481bb2af3e58cfd1b72a1f3ff5f6d509e72c835486b","ssdeep":"192:7hk88Lr3HEBCLNrtbtXpLEnGY9nTl81HRInGCRFBuRB7:StH3uobnLEH9Ty1HRIG2FBmB7","tlshash":"2f12b071b2825b15e56f10e76794b2a38a451c720c49d9c9d16e357507be02f8fa0c4b","first_seen":"2025-08-18T08:56:27.682172Z","last_seen":"2026-06-12T23:11:28.154348Z","times_seen":222,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-zoom.com.cn/images/6.webp","fqdn":"jp-zoom.com.cn","domain":"jp-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-zoom.com.cn/","date":"2026-05-28T07:42:15.481Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jp-zoom.com.cn","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:31:46 GMT","end":"Sat, 22 Aug 2026 10:31:45 GMT"},"fingerprint":{"sha1":"93:57:87:9E:5C:61:C1:76:86:4B:8F:4A:A4:CF:30:89:DB:1B:0F:E9","sha256":"5E:DF:FE:1B:03:8D:74:31:99:38:A3:19:3C:42:75:3A:3F:39:4D:A9:9F:B5:B8:FB:84:BB:21:6F:BD:3D:DA:2D"}}},"request":{"raw":"GET /images/6.webp HTTP/1.1\r\nHost: jp-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://jp-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=0532caa3d9f35d50fc2c7ae179d097c0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:42:15 GMT\r\ncontent-type: image/webp\r\ncontent-length: 44883\r\nlast-modified: Sun, 24 May 2026 11:03:58 GMT\r\netag: \"6a12db1e-af53\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":44883,"size_decoded":0,"mime_type":"image/webp","magic":"PNG image data, 554 x 415, 8-bit/color RGB, non-interlaced","md5":"acd931cb4b67f12cb6fa6ca46cd73037","sha1":"900336e984a43c0af172a469195a152ee7e4c138","sha256":"19ef25ed7ee96459a789d5c892d3e575e796ec8308a5392efd858f0e7cce8dc7","sha512":"2a2a78903e6fa16ecc87d99114d8b6dca9368642968a1ad0caf6847f15415357aaf8aa222827f9a679437643412f86ea1b9192f544df9b91ee0b55f23a6833b2","ssdeep":"768:YkSZ/u1dl5P5wxoZwgNsww7WVp8RcznDNIMK6foat/l1bf3a/I32hsDgE+c:KZ89KxoZXNyiVgqDNKCDhgImhsDg5c","tlshash":"e313e183c6bc6cfe78c9001f59d0f30938fe9a36f65a5384e55d09909e74b4162aead8","first_seen":"2026-05-28T07:42:41.435212Z","last_seen":"2026-05-28T07:42:41.435212Z","times_seen":1,"resource_available":false,"data":null}},"time_used":614,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":459,"receive":155,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}