Report - infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php

Report Overview

Submitted URL
infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php
IP
104.164.135.211
ASN
#18779 EGIHOSTING
Submitted
2023-03-21 07:16:18
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-26T05:10:29Z	606 B	127 B	54.186.60.227
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-26T05:09:08Z	3.2 kB	54 kB	34.120.237.76
api.share.baidu.com	44629	2013-04-25T16:45:11Z	2023-03-26T05:11:21Z	366 B	114 B	182.61.240.101
www.infosocial.net	unknown	2019-08-19T10:46:38Z	2023-03-21T08:16:06Z	1.4 kB	3.5 kB	104.164.135.211
jx.tongdoumaoyi.com	unknown	2022-12-16T08:41:15Z	2023-03-24T07:07:07Z	998 B	230 kB	20.205.2.230
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-26T05:11:59Z	333 B	391 B	34.117.237.239
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-25T18:14:26Z	782 B	2.4 kB	35.241.9.150
push.zhanzhang.baidu.com	57139	2015-07-22T07:44:02Z	2023-03-26T05:11:21Z	288 B	750 B	180.101.212.103
www.jxxiu.xyz	unknown	2023-02-07T08:38:32Z	2023-03-21T08:16:10Z	3.8 kB	17 kB	27.124.33.150
z4a.net	575468	2016-04-02T12:21:55Z	2023-03-26T05:43:14Z	1.6 kB	998 kB	104.21.234.234
infosocial.net	unknown	2019-08-19T10:46:38Z	2023-03-21T08:16:00Z	380 B	224 B	104.164.135.211
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-26T05:11:12Z	413 B	5.9 kB	34.160.144.191
n33133.com	unknown	2023-03-01T10:35:11Z	2023-03-26T05:50:45Z	1.2 kB	819 kB	172.83.155.45
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T18:12:03Z	3.7 kB	9.8 kB	23.36.77.32

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-21 07:16:15	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	www.infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php	404 B	2023-03-07	2024-04-18
Pretty URL www.infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php IP 104.164.135.211 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-18 08:01:19 Times Seen2975 Hash 91862680df880ab56f799547b01a5900 bd184fe6e0e046873c1a606c89ce2d3eed4b689f 6520359b93c2e43efd5a58f422af308b43c718769a0989344a10f00b345ca0b2 Loading...

	www.infosocial.net/tj.js	0 B	2023-03-07	2024-04-19
Pretty URL www.infosocial.net/tj.js IP 104.164.135.211 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 23:06:13 Times Seen36968095 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.infosocial.net/common.js	1.5 kB	2023-03-09	2023-10-19
Pretty URL www.infosocial.net/common.js IP 104.164.135.211 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 12:31:50 Last Seen2023-10-19 01:51:07 Times Seen446 Hash 46b458a7218859f9e104d60dfaf1be1e b294e53b5af044e5b0b992c9baf639009d4b2ee7 52b19e0231b1983206d08645bc875476a80cfb274da47cfcd97fd082f8e51531 Loading...

	push.zhanzhang.baidu.com/push.js	281 B	2023-03-07	2024-04-19
Pretty URL push.zhanzhang.baidu.com/push.js IP 180.101.212.103 ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-19 20:46:59 Times Seen18960 Hash 1bb5a3267c9865ad4abe8d937734b62b b5478dd2edb3e64242eced1db2dbd945ef81f592 674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2 Loading...

	jx.tongdoumaoyi.com/news/index.php	166 B	2023-03-07	2023-04-05
Pretty URL jx.tongdoumaoyi.com/news/index.php IP 20.205.2.230 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:15 Last Seen2023-04-05 02:05:15 Times Seen271 Hash 148c395b30fc62c19c4e96a387ce5080 aaad892b0553b427438079c39c45c04a4bd26683 3abae3dd940fa31948ccf4348d0b3dd0528808c33a99915e9ea06c6c9faf097c Loading...

	jx.tongdoumaoyi.com/news/data.php	291 B	2023-03-25	2023-04-05
Pretty URL jx.tongdoumaoyi.com/news/data.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-25 23:54:38 Last Seen2023-04-05 01:56:37 Times Seen35 Hash d8b6f65adfa32e554e6fb279f446cd56 e855ce40c2a8ec4512269a9fc2a868e9c8b090df 1d3025c1846dbbac55ef9d907e093de064eb7f5f58552cfaca6c95beb63d9b16 Loading...

	www.jxxiu.xyz/template/m1938pc/html9/ads/zxf.js	2.7 kB	2023-03-26	2023-04-05
Pretty URL www.jxxiu.xyz/template/m1938pc/html9/ads/zxf.js IP 27.124.33.150 ASN #64050 BGPNET Global ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:24:21 Last Seen2023-04-05 01:56:37 Times Seen16 Hash ea3afecf262481e8313edd7319b05e84 6857ada0f562ed4489cab90d39573402e13f0015 9d57fdc0602d68789fe89d5e21c1f3e09437026076a4d4d19ddd25c762acb58d Loading...

	www.jxxiu.xyz/	254 B	2023-03-07	2023-07-10
Pretty URL www.jxxiu.xyz/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:15 Last Seen2023-07-10 02:29:30 Times Seen148 Hash 2b060c01c124335c89db809e88d801f5 4226dea14013c0d2b6a391cebcfafc02e00d9305 46b48e8582d3035db685d90fd6ef29a676ae4f59721521c4025568c81fc43621 Loading...

		Size	First Seen	Last Seen
	#1 Eval - c2d14fb0a12a5588f4e5967ea578179b	474 B	2023-03-13	2023-03-26
Pretty Observations First Seen2023-03-13 23:50:43 Last Seen2023-03-26 12:47:19 Times Seen2 Hash c2d14fb0a12a5588f4e5967ea578179b aac55c8fd1e6fae9dffe1b6403d5e843de861e1c dbabb134f55efc5dd8ecc98364328d5afbcf032b1068acacddfe85de917ea8bb Loading...

		Size	First Seen	Last Seen
	#1 Write - 437627fc088fe0011cc8905f535eb34a	593 B	2023-03-26	2023-04-17
Pretty Observations First Seen2023-03-26 04:01:22 Last Seen2023-04-17 09:28:29 Times Seen29 Hash 437627fc088fe0011cc8905f535eb34a bb63b4dbb3de4007c1444c51e5e3104ac5aa4a69 a12454ea04231117386c4b7714745f02dffa5ce180e94ffb3464ee9536abc450 Loading...

	#2 Write - 7b004224358f918650f963c9e2029c78	579 B	2023-03-26	2023-04-07
Pretty Observations First Seen2023-03-26 06:39:45 Last Seen2023-04-07 05:51:30 Times Seen25 Hash 7b004224358f918650f963c9e2029c78 a55855bbfef6048cd246a1b4dbf346a95406aa55 d7d4da31e8776af1026414d9d4e5fca2aeaaffdfc70e07cc5e3ad14a7b7eb15b Loading...

	#3 Write - 6564eb59e2d942d75ea202a0e859efcb	594 B	2023-03-26	2023-04-05
Pretty Observations First Seen2023-03-26 11:24:21 Last Seen2023-04-05 01:56:37 Times Seen16 Hash 6564eb59e2d942d75ea202a0e859efcb 3a417fcf465d82af1a8ccf77ca2da9267798a502 1d9aaa394c61ba3fa8b4411ada3ebdb87b850dc6ec2810c2d67ec0b0c0b5189a Loading...

	#4 Write - 17d69ea164203d2bdbb63b48445885da	455 B	2023-03-13	2023-03-26
Pretty Observations First Seen2023-03-13 23:50:43 Last Seen2023-03-26 12:47:19 Times Seen2 Hash 17d69ea164203d2bdbb63b48445885da cfb83cd7d1a5250dde90050b8aeed75987752b3d 800e3b70e760cccfe9f213c3e0b05d1461ff401f01a962bd93cff6ece4f18ca5 Loading...

	#5 Write - b41c326655a1e61ea6f6dcc70f797eb7	201 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:06:53 Last Seen2024-04-19 06:49:25 Times Seen3761 Hash b41c326655a1e61ea6f6dcc70f797eb7 a416e2affbcd88fe88775b1dd7256dbb7b0e2b87 2d7d346bf62ff160f8d7d20318bedeb9dc7c79d0e2845f6061de5beabda471ca Loading...

HTTP Transactions (47)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ec332b81a27117ce9c16b67a5a8e4fac b6d2afa2c859d000ad830d3d8d73f57bac6ffce2 1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F" Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8668 Expires: Tue, 21 Mar 2023 09:40:33 GMT Date: Tue, 21 Mar 2023 07:16:05 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 00e304a3fc0c2f01af0e94fcefe0ca40 833969e75e5e13e823c8d97ee59a9821eb157ee3 c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7" Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15189 Expires: Tue, 21 Mar 2023 11:29:14 GMT Date: Tue, 21 Mar 2023 07:16:05 GMT Connection: keep-alive`

	infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php	104.164.135.211	301 Moved Permanently	0 B
URL HTTP/1.1 infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php IP 104.164.135.211:0 ASN #18779 EGIHOSTING File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /is/sg/sg/7d1bd7ea65b3258/login.php HTTP/1.1 Host: infosocial.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Server: nginx Date: Tue, 21 Mar 2023 07:16:05 GMT Content-Type: text/html Content-Length: 0 Connection: keep-alive Location: http://www.infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bc86ef2a0cee04915bc360f5821adc8f 3658f9028cce204d38f7f48fcfaa2a8e4f54383a aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 21 Mar 2023 06:27:23 GMT content-type: application/json age: 2922 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 4e6141892ec4705c6a0134f3157b969d 4169fdea42b0fa9cb565e14b8e8fdb293575c78e 905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163" Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9976 Expires: Tue, 21 Mar 2023 10:02:21 GMT Date: Tue, 21 Mar 2023 07:16:05 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: RZTyStxHg4NH4BKQkCe6gRmb5O5219WIsQGmZhUiySG1Bck3ZQSie6LeeXzBoyKyyr+t9twAZVg= x-amz-request-id: 8QG2JTXM4DC8YE55 x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 21 Mar 2023 06:53:05 GMT age: 1380 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:05 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 21 Mar 2023 07:14:33 GMT age: 93 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	www.infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php	104.164.135.211	200 OK	775 B
URL HTTP/1.1 www.infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php IP 104.164.135.211:0 ASN #18779 EGIHOSTING File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators Size 775 B (775 bytes) Hash 487c6bffabd9fdf38300aa8eda4bf7c0 2cc917134eceab59176633ad22fb81424307c63f dc5065ce361f4bd0371588a5258c7990f323268566401624a366492b81b7740b HTTP Headers `GET /is/sg/sg/7d1bd7ea65b3258/login.php HTTP/1.1 Host: www.infosocial.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 200 OK Server: nginx Date: Tue, 21 Mar 2023 07:16:06 GMT Content-Type: text/html Content-Length: 775 Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 4c195a3fc0c2abb831630cef1dcfa770 eda338de3063640556177b9db364c33193d7f6dc c22eb0537cd79666b82fe61dd77fe9b0b3c059a4c65d405412acfc2c6800b444 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C22EB0537CD79666B82FE61DD77FE9B0B3C059A4C65D405412ACFC2C6800B444" Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8657 Expires: Tue, 21 Mar 2023 09:40:23 GMT Date: Tue, 21 Mar 2023 07:16:06 GMT Connection: keep-alive`

	www.infosocial.net/tj.js	104.164.135.211	200 OK	0 B
URL HTTP/1.1 www.infosocial.net/tj.js IP 104.164.135.211:0 ASN #18779 EGIHOSTING File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /tj.js HTTP/1.1 Host: www.infosocial.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php` `HTTP/1.1 200 OK Server: nginx Date: Tue, 21 Mar 2023 07:16:06 GMT Content-Type: application/x-javascript Content-Length: 0 Connection: keep-alive`

	push.services.mozilla.com/	54.186.60.227	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.186.60.227:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: fLqf6SHTX2b72AY02XGIzQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: llRgLJxmLDXqYq09T8j8m6jEunU=`

	www.infosocial.net/common.js	104.164.135.211	200 OK	753 B
URL HTTP/1.1 www.infosocial.net/common.js IP 104.164.135.211:0 ASN #18779 EGIHOSTING File type HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators Size 753 B (753 bytes) Hash 422fd880589a7fc1a2f9b43c88c64fbe cd02b22cba108051097edd967d9b4e937386a05f 51ceb85b881f6f3a9a9deea0265b4960a9fd3d7fe698b72c0329332dc91585b9 HTTP Headers `GET /common.js HTTP/1.1 Host: www.infosocial.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php` `HTTP/1.1 200 OK Server: nginx Date: Tue, 21 Mar 2023 07:16:06 GMT Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Content-Encoding: gzip`

	www.infosocial.net/favicon.ico	104.164.135.211	200 OK	1.2 kB
URL HTTP/1.1 www.infosocial.net/favicon.ico IP 104.164.135.211:0 ASN #18779 EGIHOSTING File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Size 1.2 kB (1150 bytes) Hash 7ef1f0a0093460fe46bb691578c07c95 2da3ffbbf4737ce4dae9488359de34034d1ebfbd 4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c HTTP Headers `GET /favicon.ico HTTP/1.1 Host: www.infosocial.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php` `HTTP/1.1 200 OK Server: nginx Date: Tue, 21 Mar 2023 07:16:07 GMT Content-Type: image/x-icon Content-Length: 1150 Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT Connection: keep-alive ETag: "4e0d81df-47e" Expires: Sun, 26 Mar 2023 07:16:07 GMT Cache-Control: max-age=432000 Accept-Ranges: bytes`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash de95776582936b8e129e876cf6d80fa8 0233251e1cf0123f1260d980d7c8ef92718723f9 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8792 Expires: Tue, 21 Mar 2023 09:42:39 GMT Date: Tue, 21 Mar 2023 07:16:07 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash de95776582936b8e129e876cf6d80fa8 0233251e1cf0123f1260d980d7c8ef92718723f9 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8792 Expires: Tue, 21 Mar 2023 09:42:39 GMT Date: Tue, 21 Mar 2023 07:16:07 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash de95776582936b8e129e876cf6d80fa8 0233251e1cf0123f1260d980d7c8ef92718723f9 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8792 Expires: Tue, 21 Mar 2023 09:42:39 GMT Date: Tue, 21 Mar 2023 07:16:07 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash de95776582936b8e129e876cf6d80fa8 0233251e1cf0123f1260d980d7c8ef92718723f9 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8792 Expires: Tue, 21 Mar 2023 09:42:39 GMT Date: Tue, 21 Mar 2023 07:16:07 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0a9c92d-c90f-4b6f-9e1b-2627c3abfa38.jpeg	34.120.237.76	200 OK	8.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0a9c92d-c90f-4b6f-9e1b-2627c3abfa38.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.6 kB (8599 bytes) Hash 0e2bcb0494bb5b0434a6b8c5276de8ff 33642ec68ca683dae156e15ee7449f8fecbfcd80 6921a091b2b19492a76cf3723b72c6966cb85751cabebbe2056a167994425414 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0a9c92d-c90f-4b6f-9e1b-2627c3abfa38.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8599 x-amzn-requestid: f213c7c9-3dd9-4d20-8c46-742c3650dcfe x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CGXKZFD6oAMFdBA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6418d242-592c030e6760816b2d4f01f9;Sampled=0 x-amzn-remapped-date: Mon, 20 Mar 2023 21:38:10 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: Ny4CqRzNVdxjmFQCGaiGS8QzYENhsLMUaOjm-GcmQk-mdUJirBCi8g== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google date: Mon, 20 Mar 2023 22:02:12 GMT age: 33235 etag: "33642ec68ca683dae156e15ee7449f8fecbfcd80" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10855 bytes) Hash f73dbc0fc3d196647ddc1e30450989d4 75d0a1414a5d350ba426dc37333a6ea131f66753 2a6954b3ccf01567c0c0c2911dd8b02c1cd264fc78178cef2eef6a6796c16c3f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10855 x-amzn-requestid: bb845712-834d-49b1-97f0-f3750f132741 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CEZD0GCHIAMFq6A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6418087e-4361bbd40ec5f0d10dabdf85;Sampled=0 x-amzn-remapped-date: Mon, 20 Mar 2023 07:17:18 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: gnFLBOJmRcgsHzy_KXjzE6LwwN4CSqz99pIhYMBx8xrHa8UO6O0kJA== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google date: Mon, 20 Mar 2023 07:30:20 GMT age: 85547 etag: "75d0a1414a5d350ba426dc37333a6ea131f66753" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8c30d472-b18d-4143-87bb-ee8773cd5f78.jpeg	34.120.237.76	200 OK	9.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8c30d472-b18d-4143-87bb-ee8773cd5f78.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.2 kB (9160 bytes) Hash 83b411d866428669d03b1976161389e7 7ea69307d21876d48217e4845204c7cc84db101e 461a26b9fcda639f3935a9355cbe12f49a17e4eb754281fa9468317ec40eccce HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8c30d472-b18d-4143-87bb-ee8773cd5f78.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9160 x-amzn-requestid: 8f8a7d81-ac5e-4992-a0cf-95b3c9791bc6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CEW3qFRnIAMFZBg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641804fd-64acec7844b88457144b35ce;Sampled=0 x-amzn-remapped-date: Mon, 20 Mar 2023 07:02:21 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: nXc8T4YB4Rfq6CIt6rCUV94uQ61TMPabrrHpBOX74N0wFhlk0BNRjA== via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 3f3347264bcaae7af741e2a2f692c6a0.cloudfront.net (CloudFront), 1.1 google date: Mon, 20 Mar 2023 07:44:58 GMT etag: "7ea69307d21876d48217e4845204c7cc84db101e" content-type: image/jpeg age: 84669 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faacc3f97-56a5-4bb4-802f-dc4b529c41d3.jpeg	34.120.237.76	200 OK	6.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faacc3f97-56a5-4bb4-802f-dc4b529c41d3.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.6 kB (6632 bytes) Hash 59df3b8c484422b14b057fddfd99beb3 d7347bcac5fc585b802d9be262c9536d0f72a498 c05014345e897447f7bdcc3b7d267137bbf76758e8fecfbabcb20d09889769f6 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faacc3f97-56a5-4bb4-802f-dc4b529c41d3.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6632 x-amzn-requestid: e51ff988-1417-4d22-8540-82914428fdcd x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CBFaIHZ8IAMF3lQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6416b5da-744c064c55ad8d3401855d0f;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 07:12:26 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: FsFKERMeCkoD4DFnD-sjKYiRB8izHSQszlkxg7L7jaBgGy4ASvpkkQ== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 618052a0d9c86c1a3bf663f82d041d1c.cloudfront.net (CloudFront), 1.1 google date: Mon, 20 Mar 2023 22:27:59 GMT age: 31689 etag: "d7347bcac5fc585b802d9be262c9536d0f72a498" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg	34.120.237.76	200 OK	8.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.2 kB (8195 bytes) Hash 2a940b362660fdee25faaa51e08c439b 85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c 18b99e3e890fdc959421c895ce343b8b3ed88819c83fa0009823e8ded23458f1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8195 x-amzn-requestid: c6844a50-a6b2-4ef4-ad28-f1a0fbcec14f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDFESEDGoAMFQ8A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6417821b-22fa560d4b7811c233fe07fa;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:43:55 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: WZ5MqPZ-MEjDt3N53EIx1XrerDmUkyvK-5FUXAmI29GXlGe6AaPqEg== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google date: Mon, 20 Mar 2023 22:23:21 GMT age: 31967 etag: "85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e5e49ed-9ec4-4b75-b7ba-3c4c213d5d27.jpeg	34.120.237.76	200 OK	4.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e5e49ed-9ec4-4b75-b7ba-3c4c213d5d27.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.7 kB (4712 bytes) Hash d0e5cb0b321323913460ba1efd6b7b63 701eb0eb86c6673bbb6e85cf933bea53187b6048 150d0e93b808b222fcb4b58f0f4a78a403517b84461cb3029fc71c30930bb11b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e5e49ed-9ec4-4b75-b7ba-3c4c213d5d27.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4712 x-amzn-requestid: 3c0b3a28-a1a9-4ba0-94ad-29156c2d83c4 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: B9yGEE8SIAMF-LQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641563c0-1937b8bc1e42142720eddd7b;Sampled=0 x-amzn-remapped-date: Sat, 18 Mar 2023 07:09:52 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: a-jsgTjZQKzBK_IFEYlrxbjpk6zou_7vbQe4ptwA1IOtUdlqDG2uWA== via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 5c35539543902c678280929df206948c.cloudfront.net (CloudFront), 1.1 google date: Mon, 20 Mar 2023 22:24:07 GMT age: 31921 etag: "701eb0eb86c6673bbb6e85cf933bea53187b6048" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	push.zhanzhang.baidu.com/push.js	180.101.212.103	200 OK	227 B
URL HTTP/1.1 push.zhanzhang.baidu.com/push.js IP 180.101.212.103:0 ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network File type ASCII text, with no line terminators Size 227 B (227 bytes) Hash e548b6ce15bb616c2bfba36e9cfbf307 a348285d9928a6548a57569f1fb9d62bdd747f33 7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5 HTTP Headers `GET /push.js HTTP/1.1 Host: push.zhanzhang.baidu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.infosocial.net/` HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=31536000 Content-Encoding: gzip Content-Length: 227 Content-Type: text/javascript Date: Tue, 21 Mar 2023 07:16:08 GMT Etag: "4078521116" Expires: Wed, 20 Mar 2024 07:16:08 GMT Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT P3p: CP=" OTI DSP COR IVA OUR IND COM " Server: apache Set-Cookie: BAIDUID=0FE8BE144139678BD721B094E449BC32:FG=1; max-age=31536000; expires=Wed, 20-Mar-24 07:16:08 GMT; domain=.baidu.com; path=/; version=1 Vary: Accept-Encoding

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9b7e1079d2e0fedf6cd498e02ddb9a5d 70ba334f5b3477a8e330576f23c01719ead13e7d aba0b9e6c7d1c07146097feb0fd4c94d2d2e294b94f8e3a5c032bee2d51e11ce HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "ABA0B9E6C7D1C07146097FEB0FD4C94D2D2E294B94F8E3A5C032BEE2D51E11CE" Last-Modified: Mon, 20 Mar 2023 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21586 Expires: Tue, 21 Mar 2023 13:15:54 GMT Date: Tue, 21 Mar 2023 07:16:08 GMT Connection: keep-alive`

	api.share.baidu.com/s.gif?l=http://www.infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php	182.61.240.101	200 OK	0 B
URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php IP 182.61.240.101:0 ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /s.gif?l=http://www.infosocial.net/is/sg/sg/7d1bd7ea65b3258/login.php HTTP/1.1 Host: api.share.baidu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.infosocial.net/` `HTTP/1.1 200 OK Content-Length: 0 Content-Type: text/plain; charset=utf-8 Date: Tue, 21 Mar 2023 07:16:09 GMT`

	jx.tongdoumaoyi.com/news/index.php	20.205.2.230	200 OK	1.1 kB
URL HTTP/2 jx.tongdoumaoyi.com/news/index.php IP 20.205.2.230:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type data Size 1.1 kB (1090 bytes) Hash 71a98dff5a4f40c1f3092e75a167d95d f60bed6605268427354c704ee3f372fc550ba879 e068ca32815867ab3ef349238c337a3cc3466954b5ea8d22b0d4c1c608a613e2 HTTP Headers `GET /news/index.php HTTP/1.1 Host: jx.tongdoumaoyi.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www.infosocial.net/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx/1.22.1 date: Tue, 21 Mar 2023 07:16:08 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding content-encoding: gzip x-country: NO x-cache: HIT@whalem3g7000001 X-Firefox-Spdy: h2`

	www.jxxiu.xyz/template/m1938pc/html9/ads/1.gif	27.124.33.150	200 OK	254 B
URL HTTP/2 www.jxxiu.xyz/template/m1938pc/html9/ads/1.gif IP 27.124.33.150:0 ASN #64050 BGPNET Global ASN File type GIF image data, version 89a, 16 x 17\012- data Size 254 B (254 bytes) Hash b013f8fa3ec997fe20dc80b82af0ad0a e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9 119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef HTTP Headers `GET /template/m1938pc/html9/ads/1.gif HTTP/1.1 Host: www.jxxiu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:11 GMT content-type: image/gif content-length: 254 last-modified: Sat, 02 Apr 2022 12:20:12 GMT etag: "62483f7c-fe" expires: Thu, 20 Apr 2023 07:16:11 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	www.jxxiu.xyz/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff	27.124.33.150	200 OK	13 kB
URL HTTP/2 www.jxxiu.xyz/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff IP 27.124.33.150:0 ASN #64050 BGPNET Global ASN File type Web Open Font Format, TrueType, length 13408, version 1.0\012- data Size 13 kB (13408 bytes) Hash 99af6debcdaba3e7ffe01b4c3cbccacb 4efda64b06cd7c294f6214623bcb634f3def3bd1 1106aebd6819da7203324abc443186658c8f54180a460ccc5b83553c5ce34f72 HTTP Headers `GET /template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff HTTP/1.1 Host: www.jxxiu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://www.jxxiu.xyz/template/m1938pc/static/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:12 GMT content-type: font/woff content-length: 13408 last-modified: Fri, 14 Jan 2022 04:47:30 GMT etag: "61e10062-3460" strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2cf575c152455e620216f9b77282a04c 571f8a887a5611de07374c230d1cc08e50cb6c54 ed79186b1c2fd3d5291037eaf14a53825d2a6cd635a0efc9d69c594ab57a28cd HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "ED79186B1C2FD3D5291037EAF14A53825D2A6CD635A0EFC9D69C594AB57A28CD" Last-Modified: Sat, 18 Mar 2023 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11409 Expires: Tue, 21 Mar 2023 10:26:22 GMT Date: Tue, 21 Mar 2023 07:16:13 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2cf575c152455e620216f9b77282a04c 571f8a887a5611de07374c230d1cc08e50cb6c54 ed79186b1c2fd3d5291037eaf14a53825d2a6cd635a0efc9d69c594ab57a28cd HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "ED79186B1C2FD3D5291037EAF14A53825D2A6CD635A0EFC9D69C594AB57A28CD" Last-Modified: Sat, 18 Mar 2023 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11409 Expires: Tue, 21 Mar 2023 10:26:22 GMT Date: Tue, 21 Mar 2023 07:16:13 GMT Connection: keep-alive`

	z4a.net/images/2023/03/16/225x135.gif	104.21.234.234	200 OK	54 kB
URL HTTP/2 z4a.net/images/2023/03/16/225x135.gif IP 104.21.234.234:0 ASN #13335 CLOUDFLARENET File type GIF image data, version 89a, 225 x 135\012- data Size 54 kB (53816 bytes) Hash f03de272943d0efe3059d8c637206b8c 4b15fff5bb6ecdd861c2151129a441b1963fd328 1fd1c0d0cd995c4ed687002750983ed7742ce04affe1d38c5c924c24ddfc5fb7 HTTP Headers `GET /images/2023/03/16/225x135.gif HTTP/1.1 Host: z4a.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 21 Mar 2023 07:16:13 GMT content-type: image/gif content-length: 53816 expires: Fri, 15 Mar 2024 14:27:12 GMT cache-control: public, max-age=31536000 pragma: public cf-cache-status: HIT age: 406141 last-modified: Thu, 16 Mar 2023 14:27:12 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hm8EMIuw8Aoga3ChldFx5HKYacAKuAabss5hm0JeBK4llA77brFhIi74Tgkz7ZUyeonLMXGo8DWpVhkxbsA%2FChEmopDxIzzvtIuC6lRWgkiIcLmOytDDxYed"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=2592000; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 7ab468828a917302-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	z4a.net/images/2023/01/14/960x609bf3ba8d7c4c2fc7.gif	104.21.234.234	200 OK	169 kB
URL HTTP/2 z4a.net/images/2023/01/14/960x609bf3ba8d7c4c2fc7.gif IP 104.21.234.234:0 ASN #13335 CLOUDFLARENET File type GIF image data, version 89a, 960 x 60\012- data Size 169 kB (168777 bytes) Hash 729a348b918f6435c5a38c8938a81587 f82b088813167cd5396bf74feedb4d8e35612dcf cd580979947876de1d553e460e57bd4d7b432c682097f67c6249b667eb3c6726 HTTP Headers `GET /images/2023/01/14/960x609bf3ba8d7c4c2fc7.gif HTTP/1.1 Host: z4a.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 21 Mar 2023 07:16:13 GMT content-type: image/gif content-length: 168777 expires: Fri, 16 Feb 2024 03:09:52 GMT cache-control: public, max-age=31536000 pragma: public cf-cache-status: HIT age: 2865980 last-modified: Thu, 16 Feb 2023 03:09:53 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xHzVGy%2FtB%2FlfhXJ1%2FqNGKPZlM8BQxQd3JIe%2FvFNXKlNCqviQCkhkz85XmzqmFjRyFXwyEJ8EvB6dGO4jU2h2Kpx4rA9f83ct7Ub1djdinGzhANaR9OsTf4BP"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=2592000; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 7ab468828a907302-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	jx.tongdoumaoyi.com/news/list.php	20.205.2.230	200 OK	229 kB
URL HTTP/2 jx.tongdoumaoyi.com/news/list.php IP 20.205.2.230:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type data Size 229 kB (229000 bytes) Hash e6f92170947b364145607f55f4cd8f5c ada5ef803db23a84dacaa26075f99a11fcfce83c 00fbad0a50257f465c7f66e354ed051ddb0f0c770c9e4991eb3e15ed6023deb5 HTTP Headers `GET /news/list.php HTTP/1.1 Host: jx.tongdoumaoyi.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jx.tongdoumaoyi.com/news/index.php Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx/1.22.1 date: Tue, 21 Mar 2023 07:16:09 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding content-encoding: gzip x-country: NO x-cache: HIT@whalem3g7000001 X-Firefox-Spdy: h2`

	z4a.net/images/2023/02/16/250x140.gif	104.21.234.234	200 OK	281 kB
URL HTTP/2 z4a.net/images/2023/02/16/250x140.gif IP 104.21.234.234:0 ASN #13335 CLOUDFLARENET File type GIF image data, version 89a, 250 x 140\012- data Size 281 kB (280917 bytes) Hash 560179b6585b54e0ffa88373a008fdad 9a029f152aa790ce9dcd6a62fea48d41f4489acf 7cd2a881fd0590530757dae406bb2b388903a8e2cdc3311786858863b637c66e HTTP Headers `GET /images/2023/02/16/250x140.gif HTTP/1.1 Host: z4a.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 21 Mar 2023 07:16:13 GMT content-type: image/gif content-length: 280917 expires: Thu, 22 Feb 2024 20:55:16 GMT cache-control: public, max-age=31536000 pragma: public cf-cache-status: HIT age: 2283657 last-modified: Wed, 22 Feb 2023 20:55:16 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RFowRZXVyVbeLJD9eotuDtAOocqI0rItNnY7orOXpjf%2FZLq%2FpB%2FKMi4tbmHCZg05Kj8OLu9lBhwVPS7M4VfVP0Z4qkaVnTndqc0%2FbMh4%2BSt2ua9Pkf7SGu77"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=2592000; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 7ab468829a977302-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	z4a.net/images/2023/02/16/960-60.gif	104.21.234.234	200 OK	491 kB
URL HTTP/2 z4a.net/images/2023/02/16/960-60.gif IP 104.21.234.234:0 ASN #13335 CLOUDFLARENET File type GIF image data, version 89a, 960 x 60\012- data Size 491 kB (491072 bytes) Hash bd01a4be20eb5bdfdaedaae4a4411828 1098f402a465f5bc5ddcc534a25ff676ae21b10e a90b24c4d94518bda6f24b7ff8851167c36c37b5fcd02adf51c5fa2e4501214f HTTP Headers `GET /images/2023/02/16/960-60.gif HTTP/1.1 Host: z4a.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 21 Mar 2023 07:16:13 GMT content-type: image/gif content-length: 491072 expires: Thu, 22 Feb 2024 13:44:09 GMT cache-control: public, max-age=31536000 pragma: public cf-cache-status: HIT age: 2309523 last-modified: Wed, 22 Feb 2023 13:44:10 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yINcdDgBbhhxDEUPTrqV%2FUn1w6%2BEqnLKOZWtW2xmuR5mPuxH4h9XeEeB%2BlRCrz6RwLhi9xcbskiT3Ha0v3GjOWUnXQsiY7hElXA4FGAb7pkqZnclPzCoAdoY"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=2592000; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 7ab468827a807302-LHR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	n33133.com/3eceef096c490428a4fbb856427f3ef8.gif	172.83.155.45	200 OK	268 kB
URL HTTP/2 n33133.com/3eceef096c490428a4fbb856427f3ef8.gif IP 172.83.155.45:0 ASN #201106 Spartan Host Ltd File type GIF image data, version 89a, 960 x 120\012- data Size 268 kB (268002 bytes) Hash 8aa4805e5d7ef9835bcda52cb2fdf160 84f216fd826d94a308631c3d98b3dd57d60187e8 7992c264273cc5ebf5d0022f536169dc5d4fb899249497c8f80e3c736644f933 HTTP Headers `GET /3eceef096c490428a4fbb856427f3ef8.gif HTTP/1.1 Host: n33133.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:13 GMT content-type: image/gif content-length: 268002 last-modified: Sun, 05 Feb 2023 04:53:45 GMT etag: "63df3659-416e2" expires: Tue, 21 Mar 2023 19:16:13 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 60020 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tPo2XAMTYxhpHaSBCNxK0ziDu5wAvWAXoACfh%2FYPW45qHqVDdE3fDJyOACgvBZVd6CIpvg6UViVpQTLIm5YLqio%2BuYjSP%2FZcy2jgXgfo1caplXWWrjips88nu%2Fwe"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 7a71a279fe9661ee-YVR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	n33133.com/0fdc5a2b31475f00416849307f8b0133.gif	172.83.155.45	200 OK	287 kB
URL HTTP/2 n33133.com/0fdc5a2b31475f00416849307f8b0133.gif IP 172.83.155.45:0 ASN #201106 Spartan Host Ltd File type GIF image data, version 89a, 374 x 126\012- data Size 287 kB (287185 bytes) Hash c4e2b0354461769374d81a3d480a8acb e12c29b146d6e5b566b9ac850e85c7e68f932ac9 fada1dfd0f6c9930f15f297a3687a58d34271f26eb5203e20acf97ccf17be256 HTTP Headers `GET /0fdc5a2b31475f00416849307f8b0133.gif HTTP/1.1 Host: n33133.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:13 GMT content-type: image/gif content-length: 287185 last-modified: Sat, 18 Feb 2023 03:31:35 GMT etag: "63f04697-461d1" expires: Tue, 21 Mar 2023 19:16:13 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 3 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=li2aAYMSEXoi1DIsHT5FY27s15vBgetASz7ANn8rMTEX41EkZ2TW8qcXdUzFAe30J9SFHO9KDxri7b1FM90%2FeJUpDwXbpn0m1A2RXxBsPXMG8pmqedJZSBsfP5Vb"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-ray: 7aad416aed32eb83-SEA alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	n33133.com/a47af9be0ec690ef8a756f5ff9cb1fbf.gif	172.83.155.45	200 OK	261 kB
URL HTTP/2 n33133.com/a47af9be0ec690ef8a756f5ff9cb1fbf.gif IP 172.83.155.45:0 ASN #201106 Spartan Host Ltd File type GIF image data, version 89a, 1000 x 120\012- data Size 261 kB (261306 bytes) Hash 712dbc60bf51645be79b7c8dc21c2abb 9ed1ca0b59d1ee22dcec5d883d6a91952dab970e 1a8d1a16a0a513662d644f07062b0a2f18cf7f6d1669c0d5e77a294102128a07 HTTP Headers `GET /a47af9be0ec690ef8a756f5ff9cb1fbf.gif HTTP/1.1 Host: n33133.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:13 GMT content-type: image/gif content-length: 261306 last-modified: Sat, 18 Feb 2023 03:32:37 GMT etag: "63f046d5-3fcba" expires: Tue, 21 Mar 2023 19:16:13 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 24345 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5V7bkeSacAN7X3z6Zj%2B%2BuAG0yWGPA2Bm0d1i%2FVmz8RJpPnCpx8TDJB1GiBb7U%2BOH9bPrURn6%2BQpozY1dKYM8QWk3cZShZSal6AE%2BSd53nlmCtGTwkUspka7KIMGF"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 7a6e3bd95b208453-YVR alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 x-cache: HIT accept-ranges: bytes X-Firefox-Spdy: h2

	www.jxxiu.xyz/template/m1938pc/static/css/swiper.min.css	27.124.33.150	200 OK	0 B
URL HTTP/2 www.jxxiu.xyz/template/m1938pc/static/css/swiper.min.css IP 27.124.33.150:0 ASN #64050 BGPNET Global ASN File type Size 0 B (0 bytes) Hash HTTP Headers `GET /template/m1938pc/static/css/swiper.min.css HTTP/1.1 Host: www.jxxiu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:11 GMT content-type: text/css last-modified: Fri, 14 Jan 2022 04:46:06 GMT vary: Accept-Encoding etag: W/"61e1000e-456d" expires: Tue, 21 Mar 2023 19:16:11 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	www.jxxiu.xyz/template/m1938pc/static/css/style.css	27.124.33.150	200 OK	0 B
URL HTTP/2 www.jxxiu.xyz/template/m1938pc/static/css/style.css IP 27.124.33.150:0 ASN #64050 BGPNET Global ASN File type Size 0 B (0 bytes) Hash HTTP Headers `GET /template/m1938pc/static/css/style.css HTTP/1.1 Host: www.jxxiu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:11 GMT content-type: text/css last-modified: Fri, 14 Jan 2022 04:46:10 GMT vary: Accept-Encoding etag: W/"61e10012-10aff" expires: Tue, 21 Mar 2023 19:16:11 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	www.jxxiu.xyz/template/m1938pc/static/css/1.css	27.124.33.150	200 OK	0 B
URL HTTP/2 www.jxxiu.xyz/template/m1938pc/static/css/1.css IP 27.124.33.150:0 ASN #64050 BGPNET Global ASN File type Size 0 B (0 bytes) Hash HTTP Headers `GET /template/m1938pc/static/css/1.css HTTP/1.1 Host: www.jxxiu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:11 GMT content-type: text/css last-modified: Sun, 16 Jan 2022 07:31:51 GMT vary: Accept-Encoding etag: W/"61e3c9e7-50e" expires: Tue, 21 Mar 2023 19:16:11 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	www.jxxiu.xyz/template/m1938pc/static/css/mm-content.css	27.124.33.150	200 OK	0 B
URL HTTP/2 www.jxxiu.xyz/template/m1938pc/static/css/mm-content.css IP 27.124.33.150:0 ASN #64050 BGPNET Global ASN File type Size 0 B (0 bytes) Hash HTTP Headers `GET /template/m1938pc/static/css/mm-content.css HTTP/1.1 Host: www.jxxiu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:11 GMT content-type: text/css last-modified: Fri, 14 Jan 2022 04:46:10 GMT vary: Accept-Encoding etag: W/"61e10012-1ccb" expires: Tue, 21 Mar 2023 19:16:11 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	www.jxxiu.xyz/template/m1938pc/html9/ads/zxf.js	27.124.33.150	200 OK	0 B
URL HTTP/2 www.jxxiu.xyz/template/m1938pc/html9/ads/zxf.js IP 27.124.33.150:0 ASN #64050 BGPNET Global ASN File type Size 0 B (0 bytes) Hash HTTP Headers `GET /template/m1938pc/html9/ads/zxf.js HTTP/1.1 Host: www.jxxiu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:11 GMT content-type: application/javascript last-modified: Sun, 19 Mar 2023 16:05:55 GMT vary: Accept-Encoding etag: W/"641732e3-a65" expires: Tue, 21 Mar 2023 19:16:11 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	www.jxxiu.xyz/template/m1938pc/static/css/bootstrap.min.css	27.124.33.150	200 OK	0 B
URL HTTP/2 www.jxxiu.xyz/template/m1938pc/static/css/bootstrap.min.css IP 27.124.33.150:0 ASN #64050 BGPNET Global ASN File type Size 0 B (0 bytes) Hash HTTP Headers `GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1 Host: www.jxxiu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:11 GMT content-type: text/css last-modified: Fri, 14 Jan 2022 04:46:04 GMT vary: Accept-Encoding etag: W/"61e1000c-23816" expires: Tue, 21 Mar 2023 19:16:11 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	www.jxxiu.xyz/template/m1938pc/static/css/white.css	27.124.33.150	200 OK	0 B
URL HTTP/2 www.jxxiu.xyz/template/m1938pc/static/css/white.css IP 27.124.33.150:0 ASN #64050 BGPNET Global ASN File type Size 0 B (0 bytes) Hash HTTP Headers `GET /template/m1938pc/static/css/white.css HTTP/1.1 Host: www.jxxiu.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.jxxiu.xyz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 07:16:11 GMT content-type: text/css last-modified: Fri, 14 Jan 2022 04:46:10 GMT vary: Accept-Encoding etag: W/"61e10012-29d9" expires: Tue, 21 Mar 2023 19:16:11 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML