Report - www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/

Report Overview

Submitted URL
www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/
IP
173.232.105.148
ASN
#62904 AS62904
Submitted
2023-06-09 01:57:38
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.rafaellora.com	unknown	2021-06-16	2015-11-01	2023-06-09	18 kB	56 kB	173.232.105.148
	unknown				22 kB	756 kB	85.208.116.179
www.zibokehai.cn	unknown	2017-04-25	2017-08-19	2022-11-27	1.4 kB	46 kB	122.114.176.11
api.share.baidu.com	44629	1999-10-11	2013-04-25	2023-06-08	2.2 kB	456 B	39.156.68.163
ocsp.globalsign.com	2075	1999-04-19	2012-07-20	2023-06-08	349 B	2.0 kB	151.101.194.133
collect-v6.51.la	91421	2005-01-17	2021-03-08	2023-06-08	1.5 kB	1.1 kB	47.106.172.21
hm.baidu.com	8254	1999-10-11	2012-05-26	2023-06-08	2.6 kB	17 kB	103.235.46.191
ocsp.trust-provider.cn	unknown	2015-04-09	2022-02-10	2023-06-08	1.3 kB	6.0 kB	47.246.44.205
push.zhanzhang.baidu.com	57139	1999-10-11	2015-07-22	2023-06-08	987 B	2.3 kB	182.61.201.94
sdk.51.la	88367	2005-01-17	2021-03-08	2023-06-08	1.9 kB	82 kB	47.246.44.137

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-09 01:57:22	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/	347 B	2023-04-09	2024-04-14
Pretty URL www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ IP 173.232.105.148 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-09 01:34:22 Last Seen2024-04-14 20:15:22 Times Seen294 Hash cd5568a4d577e5ce7624ce2986c8434b b3c2a8921caefc43bbb72fe29fa5b6cc251b773a e4bf86e980e412d4df757ac3ff224cb2059ce65fefc64b8550c794432ad06e7e Loading...

	www.3692022.com:8259/fff6666/huzi/sj.js	6.6 kB	2023-05-18	2023-09-18
Pretty URL www.3692022.com:8259/fff6666/huzi/sj.js IP 85.208.116.179 ASN #18978 ENZUINC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 05:17:57 Last Seen2023-09-18 20:37:49 Times Seen40 Hash 64c3b4aaf6f5395b2c97ba71a0523437 96dfdaac43105d772af9bf9d994e42cf1dc7f566 fc539818b4fff1b5cc9d15e665c4b55a156d4e8b4f861043fa95919e0738738b Loading...

	www.rafaellora.com/jquery.min.js	714 B	2023-03-13	2023-09-07
Pretty URL www.rafaellora.com/jquery.min.js IP 173.232.105.148 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 04:54:16 Last Seen2023-09-07 22:02:51 Times Seen28 Hash 13ba88726aed9e79bac6329bfdff3603 cbd2df775c1935b119897c637ed335f6df6f9fd7 09ede765ac297f3d651419f479046a5e7dc4a656732adb8e54d279a198f7285e Loading...

	www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/	0 B	2023-03-07	2024-04-26
Pretty URL www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ IP 173.232.105.148 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 10:43:45 Times Seen37090001 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

		Size	First Seen	Last Seen
	#1 Write - badddc0852f7bae7425210630c8617d8	132 B	2023-03-13	2023-09-07
Pretty Observations First Seen2023-03-13 04:54:16 Last Seen2023-09-07 22:02:51 Times Seen10 Hash badddc0852f7bae7425210630c8617d8 ccb8101378bdf422d92a75f0ff30dfb1f5b9df2d 15b6a7135b00fdf162bbb1a4082dac966bb657f1a31f2c3ac246238d659e510f Loading...

	#2 Write - 2cff9d53b71871e553ade95ab6ea6885	597 B	2023-05-18	2023-07-14
Pretty Observations First Seen2023-05-18 05:17:57 Last Seen2023-07-14 07:09:49 Times Seen12 Hash 2cff9d53b71871e553ade95ab6ea6885 6c622b85d6eaeeab4b96064cde73a71ac45a22ae bbf25e32a8d0c51eaf00b5b4c587c65a592d30552ac79d568a868dd285b86aa2 Loading...

	#3 Write - 5f1ceb87114200cd89a7466e44195ce9	508 B	2023-05-29	2023-09-07
Pretty Observations First Seen2023-05-29 05:06:43 Last Seen2023-09-07 22:02:51 Times Seen8 Hash 5f1ceb87114200cd89a7466e44195ce9 2edea3aef4e343be24b3f0ec47da6b4e7e582036 3898b27fef850d4d5b2721fb4db538fe5909acd101dacc5668ffef0fc2a5e044 Loading...

	#4 Write - 451768e88b720e7dcb0938111039b74c	508 B	2023-06-09	2023-07-05
Pretty Observations First Seen2023-06-09 03:06:58 Last Seen2023-07-05 09:34:17 Times Seen4 Hash 451768e88b720e7dcb0938111039b74c 7188dd693a43e5eae941713402e731a9cb3d3619 bed1590d45d26e772cbc14a80f9eee3cf4a1e5237700b2bd2080052eab225507 Loading...

HTTP Transactions (94)

	URL	IP	Response	Size
	www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/	173.232.105.148		4.5 kB
URL User Request GET www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ IP 173.232.105.148:0 ASN #62904 AS62904 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7879) Size 4.5 kB (4515 bytes) Hash 8d88dbc3b9a718cc7ea3437addd2bad5 0f1607daee83cf3c6e42c2b59b09b26c6926b283 22dbdb806a40de994749184889c2002185aa633f47fa658bd576585dc59f3605 HTTP Headers `GET /~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:41 GMT Content-Type: text/html;charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/5.4.41 Content-Encoding: gzip`

	www.rafaellora.com/jquery.min.js	173.232.105.148	200 OK	714 B
URL GET HTTP/1.1 www.rafaellora.com/jquery.min.js IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type ASCII text, with very long lines (713) Size 714 B (714 bytes) Hash 13ba88726aed9e79bac6329bfdff3603 cbd2df775c1935b119897c637ed335f6df6f9fd7 09ede765ac297f3d651419f479046a5e7dc4a656732adb8e54d279a198f7285e HTTP Headers `GET /jquery.min.js HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:41 GMT Content-Type: application/javascript Content-Length: 714 Last-Modified: Wed, 20 Jul 2022 04:27:54 GMT Connection: keep-alive ETag: "62d7844a-2ca" Expires: Fri, 09 Jun 2023 02:57:41 GMT Cache-Control: max-age=3600 Accept-Ranges: bytes`

	www.rafaellora.com/Public/images/error.jpg	173.232.105.148	302 Moved Temporarily	0 B
URL GET HTTP/1.1 www.rafaellora.com/Public/images/error.jpg IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /Public/images/error.jpg HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 302 Moved Temporarily Server: nginx Date: Fri, 09 Jun 2023 01:57:41 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive X-Powered-By: PHP/5.4.41 Location: http://www.zibokehai.cn/Public/images/error.jpg`

	ocsp.trust-provider.cn/	47.246.44.205		599 B
URL ocsp.trust-provider.cn/ IP 47.246.44.205:0 ASN #24429 Zhejiang Taobao Network Co.,Ltd File type data Size 599 B (599 bytes) Hash dbd88b8777809a7dbcc3fb6303fa6965 e9b6918510b517b4c1b1ae847e035b82a3c0e539 ba0cced1d4930ad76eb33f2432dbc0132ecc87800d32aee0bb9c90df31364631 HTTP Headers `POST / HTTP/1.1 Host: ocsp.trust-provider.cn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/ocsp-response Transfer-Encoding: chunked Connection: keep-alive date: Fri, 09 Jun 2023 01:57:23 GMT last-modified: Thu, 08 Jun 2023 13:56:59 GMT expires: Thu, 15 Jun 2023 13:56:58 GMT etag: "e9b6918510b517b4c1b1ae847e035b82a3c0e539" cache-control: max-age=587629,s-maxage=1800,public,no-transform,must-revalidate x-ccacdn-proxy-id: mcdpinlb4 x-frame-options: SAMEORIGIN cf-cache-status: REVALIDATED cf-ray: 7d45c3743f0fbb5b-FRA accept-ranges: bytes ali-swift-global-savetime: 1686275843 via: cache7.l2de2[25,25,304-0,M], cache2.l2de2[26,0], cache3.se1[46,46,200-0,H], cache5.se1[48,0], cache1.se1[51,0] age: 0 x-cache: HIT TCP_REFRESH_HIT dirn:1:348300723 x-swift-savetime: Fri, 09 Jun 2023 01:57:23 GMT x-swift-cachetime: 1800 timing-allow-origin: , eagleid: 2ff62c9516862758431935255e, 2ff62c9516862758431935255e

	www.3692022.com:8259/fff6666/huzi/sj.js	85.208.116.179	200 OK	2.2 kB
URL GET HTTP/1.1 www.3692022.com:8259/fff6666/huzi/sj.js IP 85.208.116.179:8259 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subject3692022.com Fingerprint21:78:BC:6B:A2:96:F4:D0:9A:F1:24:44:9C:60:72:4C:0B:E1:56:5A ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type ASCII text, with very long lines (6614) Size 2.2 kB (2165 bytes) Hash 64c3b4aaf6f5395b2c97ba71a0523437 96dfdaac43105d772af9bf9d994e42cf1dc7f566 fc539818b4fff1b5cc9d15e665c4b55a156d4e8b4f861043fa95919e0738738b HTTP Headers `GET /fff6666/huzi/sj.js HTTP/1.1 Host: www.3692022.com:8259 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:23 GMT Content-Type: application/javascript Last-Modified: Tue, 22 Nov 2022 12:46:39 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"637cc4af-19d7" Expires: Fri, 09 Jun 2023 02:57:23 GMT Cache-Control: max-age=3600 Content-Encoding: gzip`

	www.zibokehai.cn/Public/images/error.jpg	122.114.176.11	200 OK	11 kB
URL GET HTTP/1.1 www.zibokehai.cn/Public/images/error.jpg IP 122.114.176.11:80 ASN #4837 CHINA UNICOM China169 Backbone Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2015:05:16 13:53:49], baseline, precision 8, 112x110, components 3\012- data Size 11 kB (11064 bytes) Hash 92beab8ee0d8425509037e9a0b1cfb2e 801048d254094f1924fd5dedfba649e7fbf813a4 bc1ad75324db2048d124525a0201f6ccb98266d2e7ba549f69c693c644f6a710 HTTP Headers `GET /Public/images/error.jpg HTTP/1.1 Host: www.zibokehai.cn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://www.rafaellora.com/ DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 09 Jun 2023 01:57:23 GMT Server: Apache Strict-Transport-Security: max-age=63072000; includeSubdomains; preload Last-Modified: Mon, 12 Jun 2017 10:08:42 GMT ETag: "36176e-2b38-551c080eade80" Accept-Ranges: bytes Content-Length: 11064 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/jpeg`

	www.rafaellora.com/favicon.ico	173.232.105.148	200 OK	9.7 kB
URL GET HTTP/1.1 www.rafaellora.com/favicon.ico IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data Size 9.7 kB (9662 bytes) Hash 1af6c08eb07f675c862fa3cd50640511 bfc9fbddea831a3cae067a570bcb4450280c7f45 7fc7fdb7ea134949cefdbd00ac02724e091e0201c1cee06795f84db28a1586d4 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:43 GMT Content-Type: image/x-icon Content-Length: 9662 Last-Modified: Wed, 20 Jul 2022 04:27:54 GMT Connection: keep-alive ETag: "62d7844a-25be" Accept-Ranges: bytes`

	ocsp.trust-provider.cn/	47.246.44.205		600 B
URL ocsp.trust-provider.cn/ IP 47.246.44.205:0 ASN #24429 Zhejiang Taobao Network Co.,Ltd File type data Size 600 B (600 bytes) Hash 827b585ef2b65a5b7337f62b359df41a ca306d6b0bfc60a21bad9de73943b48a056e58bb dcea5ebc92002084cc77047d2b337a1c536345655703af746afa538ad45c6083 HTTP Headers `POST / HTTP/1.1 Host: ocsp.trust-provider.cn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/ocsp-response Transfer-Encoding: chunked Connection: keep-alive date: Fri, 09 Jun 2023 01:57:24 GMT last-modified: Wed, 07 Jun 2023 21:11:58 GMT expires: Wed, 14 Jun 2023 21:11:57 GMT etag: "ca306d6b0bfc60a21bad9de73943b48a056e58bb" cache-control: max-age=547976,s-maxage=1800,public,no-transform,must-revalidate x-ccacdn-proxy-id: mcdpinlb5 x-frame-options: SAMEORIGIN cf-cache-status: REVALIDATED cf-ray: 7d45c378fa259b64-FRA accept-ranges: bytes ali-swift-global-savetime: 1686275844 via: cache9.l2de2[181,181,200-0,H], cache20.l2de2[183,0], cache7.se1[202,202,200-0,M], cache5.se1[204,0], cache1.se1[206,0] age: 0 x-cache: MISS TCP_MISS dirn:-2:-2 x-swift-savetime: Fri, 09 Jun 2023 01:57:24 GMT x-swift-cachetime: 1800 timing-allow-origin: , eagleid: 2ff62c9516862758439605721e, 2ff62c9516862758439605721e

	push.zhanzhang.baidu.com/push.js	182.61.201.94	200 OK	227 B
URL GET HTTP/1.1 push.zhanzhang.baidu.com/push.js IP 182.61.201.94:80 ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type ASCII text, with no line terminators Size 227 B (227 bytes) Hash 1bb5a3267c9865ad4abe8d937734b62b b5478dd2edb3e64242eced1db2dbd945ef81f592 674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2 HTTP Headers `GET /push.js HTTP/1.1 Host: push.zhanzhang.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=31536000 Content-Encoding: gzip Content-Length: 227 Content-Type: text/javascript Date: Fri, 09 Jun 2023 01:57:24 GMT Etag: "4078521116" Expires: Sat, 08 Jun 2024 01:57:24 GMT Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT P3p: CP=" OTI DSP COR IVA OUR IND COM " Server: apache Set-Cookie: BAIDUID=53635F7C11311942C78324FE828E2680:FG=1; max-age=31536000; expires=Sat, 08-Jun-24 01:57:24 GMT; domain=.baidu.com; path=/; version=1 Vary: Accept-Encoding

	api.share.baidu.com/s.gif?l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/	39.156.68.163		0 B
URL api.share.baidu.com/s.gif?l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ IP 39.156.68.163:0 ASN #9808 China Mobile Communications Group Co., Ltd. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /s.gif?l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ HTTP/1.1 Host: api.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Length: 0 Content-Type: text/plain; charset=utf-8 Date: Fri, 09 Jun 2023 01:57:25 GMT`

	pinganqiucai.com:37512/fcl.php?keyword=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA&from=pc&originUrl=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&referer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=7277	202.95.15.156		1.1 kB
URL pinganqiucai.com:37512/fcl.php?keyword=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA&from=pc&originUrl=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&referer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=7277 IP 202.95.15.156:0 ASN #64050 BGPNET Global ASN Certificate IssuerTrustAsia Technologies, Inc. Subject3692022.com Fingerprint21:78:BC:6B:A2:96:F4:D0:9A:F1:24:44:9C:60:72:4C:0B:E1:56:5A ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text Size 1.1 kB (1109 bytes) Hash e12cebdbf382407e418db73062366dd3 5b6a43738a37086c206ba5f675bb04d01222e720 8523da2ec89a64e3f3b929eef359018ecfaa5555eaa0cb822ead77acaa2980b0 HTTP Headers GET /fcl.php?keyword=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA&from=pc&originUrl=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&referer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=7277 HTTP/1.1 Host: pinganqiucai.com:37512 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://www.rafaellora.com DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:25 GMT Content-Type: text/html;charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/5.4.41 Access-Control-Allow-Origin: * Content-Encoding: gzip`

	www.rafaellora.com/jquery.la.min.js	173.232.105.148	200 OK	548 B
URL GET HTTP/1.1 www.rafaellora.com/jquery.la.min.js IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type HTML document, ASCII text, with very long lines (554), with CRLF line terminators Size 548 B (548 bytes) Hash 9819a6481accf994bd0bd30960602e30 2e71da8cd00848561ad17cb3b5be900d12de7f8f 0d53857a9269c32e2f51e0804b578506ad5d53104c1be94210ff415a1dfb3317 HTTP Headers `GET /jquery.la.min.js HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:44 GMT Content-Type: application/javascript Last-Modified: Wed, 20 Jul 2022 04:27:54 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"62d7844a-55a" Expires: Fri, 09 Jun 2023 02:57:44 GMT Cache-Control: max-age=3600 Content-Encoding: gzip`

	ocsp.trust-provider.cn/	47.246.44.205		600 B
URL ocsp.trust-provider.cn/ IP 47.246.44.205:0 ASN #24429 Zhejiang Taobao Network Co.,Ltd File type data Size 600 B (600 bytes) Hash ce283c0a74a7b4d3d69246f682b76610 99b85451e62e67d3eace8455057dc0a80fc1dc4d af3e871c1a19f4bf24baf7b81b2b35cb28583d646f3749d65d68030e668d32ad HTTP Headers `POST / HTTP/1.1 Host: ocsp.trust-provider.cn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/ocsp-response Transfer-Encoding: chunked Connection: keep-alive date: Fri, 09 Jun 2023 01:57:25 GMT last-modified: Tue, 06 Jun 2023 03:04:15 GMT expires: Tue, 13 Jun 2023 03:04:14 GMT etag: "99b85451e62e67d3eace8455057dc0a80fc1dc4d" cache-control: max-age=587928,s-maxage=1800,public,no-transform,must-revalidate x-ccacdn-proxy-id: mcdpinlb2 x-frame-options: SAMEORIGIN cf-cache-status: REVALIDATED cf-ray: 7d45c3842fee3a4a-FRA accept-ranges: bytes ali-swift-global-savetime: 1686275845 via: cache15.l2de2[74,74,304-0,M], cache21.l2de2[76,0], cache8.se1[95,95,200-0,H], cache5.se1[96,0], cache1.se1[99,0] age: 0 x-cache: HIT TCP_REFRESH_HIT dirn:1:21570106 x-swift-savetime: Fri, 09 Jun 2023 01:57:25 GMT x-swift-cachetime: 1800 timing-allow-origin: , eagleid: 2ff62c9516862758457516873e, 2ff62c9516862758457516873e

	ocsp.trust-provider.cn/	47.246.44.205		600 B
URL ocsp.trust-provider.cn/ IP 47.246.44.205:0 ASN #24429 Zhejiang Taobao Network Co.,Ltd File type data Size 600 B (600 bytes) Hash ce283c0a74a7b4d3d69246f682b76610 99b85451e62e67d3eace8455057dc0a80fc1dc4d af3e871c1a19f4bf24baf7b81b2b35cb28583d646f3749d65d68030e668d32ad HTTP Headers `POST / HTTP/1.1 Host: ocsp.trust-provider.cn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/ocsp-response Transfer-Encoding: chunked Connection: keep-alive date: Fri, 09 Jun 2023 01:57:25 GMT last-modified: Tue, 06 Jun 2023 03:04:15 GMT expires: Tue, 13 Jun 2023 03:04:14 GMT etag: "99b85451e62e67d3eace8455057dc0a80fc1dc4d" cache-control: max-age=587928,s-maxage=1800,public,no-transform,must-revalidate x-ccacdn-proxy-id: mcdpinlb2 x-frame-options: SAMEORIGIN cf-cache-status: REVALIDATED cf-ray: 7d45c3842fee3a4a-FRA accept-ranges: bytes ali-swift-global-savetime: 1686275845 via: cache15.l2de2[74,65,200-0,C], cache8.l2de2[66,0], cache5.se1[87,88,200-0,M], cache5.se1[90,0], cache3.se1[92,0] age: 0 x-cache: MISS TCP_REFRESH_MISS dirn:1:126503231 x-swift-savetime: Fri, 09 Jun 2023 01:57:25 GMT x-swift-cachetime: 1800 timing-allow-origin: , eagleid: 2ff62c9716862758457577303e, 2ff62c9716862758457577303e

	test.xinxiyidiantong.com:2096/images/style1.css	85.208.116.177	200 OK	2.0 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/style1.css IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type assembler source, ASCII text, with very long lines (465), with CRLF line terminators Size 2.0 kB (1984 bytes) Hash 9dcee9f3e3a9adc3a8fd044d18aff03a 222a22156013ec694b2088c0a92e22e95cadfeb0 53143bf9cab52824338170fc6c349fddcec4f52dd1cb999c83f7865365445d8a HTTP Headers `GET /images/style1.css HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: text/css Last-Modified: Mon, 24 Apr 2023 11:24:01 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"644666d1-2acf" Expires: Fri, 09 Jun 2023 02:57:26 GMT Cache-Control: max-age=3600 Content-Encoding: gzip`

	test.xinxiyidiantong.com:2096/images/favicon.ico	85.208.116.177	200 OK	3.1 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/favicon.ico IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data Size 3.1 kB (3066 bytes) Hash 00b726752e8713453d31b694d4f74b89 122742a4ce71b668801ddcc8db72f07730db290c 45d8a46c7758c43f32db8794520cbf03604db83734c969ca80d3b356f8360b37 HTTP Headers `GET /images/favicon.ico HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/x-icon Content-Length: 3066 Last-Modified: Fri, 22 Oct 2021 08:11:14 GMT Connection: keep-alive ETag: "61727222-bfa" Accept-Ranges: bytes`

	sdk.51.la/js-sdk-pro.min.js	47.246.44.137	200 OK	13 kB
URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js IP 47.246.44.137:80 ASN #24429 Zhejiang Taobao Network Co.,Ltd Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Unicode text, UTF-8 text, with very long lines (34110) Size 13 kB (12846 bytes) Hash 24bb520e9517f2ed3ed987b46aeaf723 846723563d7dd2bff3954f93633b11af0103adc8 d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27 HTTP Headers `GET /js-sdk-pro.min.js HTTP/1.1 Host: sdk.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/javascript Content-Length: 12846 Connection: keep-alive Date: Thu, 08 Jun 2023 16:07:25 GMT Vary: Accept-Encoding x-oss-request-id: 6481FCBDC1979830345C4C15 x-oss-cdn-auth: success Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 5143829838470429443 x-oss-storage-class: Standard Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw== x-oss-server-time: 3 Content-Encoding: gzip Ali-Swift-Global-Savetime: 1686240445 Via: cache15.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache3.se1[0,0,200-0,H], cache8.se1[1,0] Age: 35401 X-Cache: HIT TCP_MEM_HIT dirn:1:151224761 X-Swift-SaveTime: Thu, 08 Jun 2023 16:07:31 GMT X-Swift-CacheTime: 1295994 Access-Control-Allow-Origin: * Timing-Allow-Origin: * EagleId: 2ff62c9c16862758463955354e

	sdk.51.la/js-sdk-pro.min.js	47.246.44.137	200 OK	13 kB
URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js IP 47.246.44.137:80 ASN #24429 Zhejiang Taobao Network Co.,Ltd Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Unicode text, UTF-8 text, with very long lines (34110) Size 13 kB (12846 bytes) Hash 24bb520e9517f2ed3ed987b46aeaf723 846723563d7dd2bff3954f93633b11af0103adc8 d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27 HTTP Headers `GET /js-sdk-pro.min.js HTTP/1.1 Host: sdk.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/javascript Content-Length: 12846 Connection: keep-alive Date: Thu, 08 Jun 2023 16:07:25 GMT Vary: Accept-Encoding x-oss-request-id: 6481FCBDC1979830345C4C15 x-oss-cdn-auth: success Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 5143829838470429443 x-oss-storage-class: Standard Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw== x-oss-server-time: 3 Content-Encoding: gzip Ali-Swift-Global-Savetime: 1686240445 Via: cache15.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache3.se1[0,0,200-0,H], cache2.se1[1,0] Age: 35401 X-Cache: HIT TCP_MEM_HIT dirn:1:151224761 X-Swift-SaveTime: Thu, 08 Jun 2023 16:07:31 GMT X-Swift-CacheTime: 1295994 Access-Control-Allow-Origin: * Timing-Allow-Origin: * EagleId: 2ff62c9616862758463971121e

	test.xinxiyidiantong.com:2096/images/logo.png	85.208.116.177	200 OK	28 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/logo.png IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type PNG image data, 255 x 85, 8-bit/color RGBA, non-interlaced\012- data Size 28 kB (27927 bytes) Hash 1555066b01ba12346071989c467ccf25 50c92c270ddc54e309f1499dde7e04fddcdee8c4 a8102cc2e6a32d0e128a3757c711489f1d7426123617283cf8d3cb1fd838f101 HTTP Headers `GET /images/logo.png HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/png Content-Length: 27927 Last-Modified: Fri, 22 Oct 2021 07:29:32 GMT Connection: keep-alive ETag: "6172685c-6d17" Expires: Sun, 09 Jul 2023 01:57:26 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/4_1.jpg	85.208.116.177	200 OK	9.0 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/4_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 9.0 kB (9010 bytes) Hash fda80dce60b7652bc25d8050e874fc5e af999552eb2effe20b9bb6548bd3b40bf6b82fce 86872602a83d5e41e9bf331e3f16f87d4631bd2a5f9f141c665eb00d6c20db92 HTTP Headers `GET /images/4_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/jpeg Content-Length: 9010 Last-Modified: Fri, 22 Oct 2021 07:29:27 GMT Connection: keep-alive ETag: "61726857-2332" Expires: Sun, 09 Jul 2023 01:57:26 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/2.jpg	85.208.116.177	200 OK	86 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/2.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data Size 86 kB (85884 bytes) Hash 6613a23f1fecfc5aad23df7cce06f1b0 3a3bcb377568add492170212e90d7a1f633f5e27 657c5a2c773ed927afc61fbce4bc522bd8190ed82cb2c15ff0e9baac320749ca HTTP Headers `GET /images/2.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/jpeg Content-Length: 85884 Last-Modified: Fri, 22 Oct 2021 07:29:23 GMT Connection: keep-alive ETag: "61726853-14f7c" Expires: Sun, 09 Jul 2023 01:57:26 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/27_1.jpg	85.208.116.177	200 OK	21 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/27_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 21 kB (21382 bytes) Hash c864a19ee8b086dee66ed97b0b2e103c 384e46a4f39ea1e968bc13f702efd0ee786975f4 5676a0186f2a4361c08f8cc9813bced043b0a4ac5d9813ff635d3312680af585 HTTP Headers `GET /images/27_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/jpeg Content-Length: 21382 Last-Modified: Tue, 11 Apr 2023 13:33:51 GMT Connection: keep-alive ETag: "643561bf-5386" Expires: Sun, 09 Jul 2023 01:57:26 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/1_1.jpg	85.208.116.177	200 OK	10 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/1_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 10 kB (9995 bytes) Hash b28d56b08ae1c39178b7ed387cfd1297 e1eede6d5d7351d6e98b7afb188c6e1615233027 ef09e72ae4d2d62570afb35c6b39a540b3f52db05b3e5e8e8c4cf81c5ff15810 HTTP Headers `GET /images/1_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/jpeg Content-Length: 9995 Last-Modified: Fri, 22 Oct 2021 07:29:22 GMT Connection: keep-alive ETag: "61726852-270b" Expires: Sun, 09 Jul 2023 01:57:26 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/3_1.jpg	85.208.116.177	200 OK	8.7 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/3_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 8.7 kB (8660 bytes) Hash bd5b31f1e7d18e29d6c10312eb6661da 73d597ea109cd53140943270b6629ab8ebd3e69c 62f4ab1a75135e43fb19419972b6ec12b8ba3ac8337feae4023bd7b9b0e9d59a HTTP Headers `GET /images/3_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/jpeg Content-Length: 8660 Last-Modified: Fri, 22 Oct 2021 07:29:26 GMT Connection: keep-alive ETag: "61726856-21d4" Expires: Sun, 09 Jul 2023 01:57:26 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/2_1.jpg	85.208.116.177	200 OK	11 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/2_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 11 kB (11115 bytes) Hash 088afa1a19d8f98fe3808e2471d9666e c5580afe6796b562e0cb6ca80516f4fb57504a39 e311225d391d6c060f288026fcaf5f70c87230a6a86b16f7acf36e33c29ae14c HTTP Headers `GET /images/2_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/jpeg Content-Length: 11115 Last-Modified: Fri, 22 Oct 2021 07:29:25 GMT Connection: keep-alive ETag: "61726855-2b6b" Expires: Sun, 09 Jul 2023 01:57:26 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/5_1.jpg	85.208.116.177	200 OK	9.1 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/5_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 9.1 kB (9132 bytes) Hash a0175d738a1002bc3533d496bfd4cc8d 82a4b1d855e51c2f3be325f5f3368cc254934479 908a0f4cf34ca2dd0e638ef1bf08f637a29757610ae1b65628ab8cbb22345a5e HTTP Headers `GET /images/5_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/jpeg Content-Length: 9132 Last-Modified: Fri, 22 Oct 2021 07:29:28 GMT Connection: keep-alive ETag: "61726858-23ac" Expires: Sun, 09 Jul 2023 01:57:26 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/28_1.jpg	85.208.116.177		28 kB
URL test.xinxiyidiantong.com:2096/images/28_1.jpg IP 85.208.116.177:0 ASN #18978 ENZUINC Certificate IssuerTrustAsia Technologies, Inc. Subject3692022.com Fingerprint21:78:BC:6B:A2:96:F4:D0:9A:F1:24:44:9C:60:72:4C:0B:E1:56:5A ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 28 kB (28119 bytes) Hash dcfe279790ac32e46151462b70bb06dc 452850c4fae14c13205055486b25dd7d32039c2b edc44fa934ecbd8178edbde63f66697f5359c24d3a964ff458750e4899e244ea HTTP Headers `GET /images/28_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/jpeg Content-Length: 28119 Last-Modified: Mon, 24 Apr 2023 11:25:45 GMT Connection: keep-alive ETag: "64466739-6dd7" Expires: Sun, 09 Jul 2023 01:57:26 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/26_1.jpg	85.208.116.177	200 OK	23 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/26_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 350x80, components 3\012- data Size 23 kB (22936 bytes) Hash ce42bf92c86c558c9b16045328f51abe 8775d77ae4bfcb40285876e6e99c9fd238df4976 627bdc513407920656341f0c334ef6eda80604e98f0f1b706960b76e25946095 HTTP Headers `GET /images/26_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/jpeg Content-Length: 22936 Last-Modified: Thu, 29 Sep 2022 10:16:32 GMT Connection: keep-alive ETag: "63357080-5998" Expires: Sun, 09 Jul 2023 01:57:26 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/9_1.jpg	85.208.116.177	200 OK	4.1 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/9_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 350x80, components 3\012- data Size 4.1 kB (4122 bytes) Hash 0dc95e4c2df0ca737d64edb469b67cef 155bec7ab478e7fdc17d1bfc9bf494e0890a834a 606fed6485d60069dbc7f3e01ff75084534e97dc3d12e0b07bb873d527754486 HTTP Headers `GET /images/9_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:26 GMT Content-Type: image/jpeg Content-Length: 4122 Last-Modified: Fri, 22 Oct 2021 07:29:31 GMT Connection: keep-alive ETag: "6172685b-101a" Expires: Sun, 09 Jul 2023 01:57:26 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/	173.232.105.148		4.5 kB
URL User Request GET www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ IP 173.232.105.148:0 ASN #62904 AS62904 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7879) Size 4.5 kB (4515 bytes) Hash 8d88dbc3b9a718cc7ea3437addd2bad5 0f1607daee83cf3c6e42c2b59b09b26c6926b283 22dbdb806a40de994749184889c2002185aa633f47fa658bd576585dc59f3605 HTTP Headers GET /~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ DNT: 1 Connection: keep-alive Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201686277645884%2C%20%22ct%22%3A%201686275845884%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201686277645913%2C%20%22ct%22%3A%201686275845913%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916 Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:46 GMT Content-Type: text/html;charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/5.4.41 Content-Encoding: gzip`

	www.rafaellora.com/jquery.min.js	173.232.105.148	200 OK	714 B
URL GET HTTP/1.1 www.rafaellora.com/jquery.min.js IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type ASCII text, with very long lines (713) Size 714 B (714 bytes) Hash 13ba88726aed9e79bac6329bfdff3603 cbd2df775c1935b119897c637ed335f6df6f9fd7 09ede765ac297f3d651419f479046a5e7dc4a656732adb8e54d279a198f7285e HTTP Headers GET /jquery.min.js HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201686277645884%2C%20%22ct%22%3A%201686275845884%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201686277645913%2C%20%22ct%22%3A%201686275845913%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:46 GMT Content-Type: application/javascript Content-Length: 714 Last-Modified: Wed, 20 Jul 2022 04:27:54 GMT Connection: keep-alive ETag: "62d7844a-2ca" Expires: Fri, 09 Jun 2023 02:57:46 GMT Cache-Control: max-age=3600 Accept-Ranges: bytes`

	www.3692022.com:8259/fff6666/huzi/sj.js	85.208.116.179	200 OK	2.2 kB
URL GET HTTP/1.1 www.3692022.com:8259/fff6666/huzi/sj.js IP 85.208.116.179:8259 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subject3692022.com Fingerprint21:78:BC:6B:A2:96:F4:D0:9A:F1:24:44:9C:60:72:4C:0B:E1:56:5A ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type ASCII text, with very long lines (6614) Size 2.2 kB (2165 bytes) Hash 64c3b4aaf6f5395b2c97ba71a0523437 96dfdaac43105d772af9bf9d994e42cf1dc7f566 fc539818b4fff1b5cc9d15e665c4b55a156d4e8b4f861043fa95919e0738738b HTTP Headers `GET /fff6666/huzi/sj.js HTTP/1.1 Host: www.3692022.com:8259 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:27 GMT Content-Type: application/javascript Last-Modified: Tue, 22 Nov 2022 12:46:39 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"637cc4af-19d7" Expires: Fri, 09 Jun 2023 02:57:27 GMT Cache-Control: max-age=3600 Content-Encoding: gzip`

	www.rafaellora.com/Public/images/error.jpg	173.232.105.148	302 Moved Temporarily	0 B
URL GET HTTP/1.1 www.rafaellora.com/Public/images/error.jpg IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /Public/images/error.jpg HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201686277645884%2C%20%22ct%22%3A%201686275845884%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201686277645913%2C%20%22ct%22%3A%201686275845913%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 302 Moved Temporarily Server: nginx Date: Fri, 09 Jun 2023 01:57:47 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive X-Powered-By: PHP/5.4.41 Location: http://www.zibokehai.cn/Public/images/error.jpg`

	push.zhanzhang.baidu.com/push.js	182.61.201.94	200 OK	227 B
URL GET HTTP/1.1 push.zhanzhang.baidu.com/push.js IP 182.61.201.94:80 ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type ASCII text, with no line terminators Size 227 B (227 bytes) Hash 1bb5a3267c9865ad4abe8d937734b62b b5478dd2edb3e64242eced1db2dbd945ef81f592 674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2 HTTP Headers `GET /push.js HTTP/1.1 Host: push.zhanzhang.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=31536000 Content-Encoding: gzip Content-Length: 227 Content-Type: text/javascript Date: Fri, 09 Jun 2023 01:57:27 GMT Etag: "4078521116" Expires: Sat, 08 Jun 2024 01:57:27 GMT Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT P3p: CP=" OTI DSP COR IVA OUR IND COM " Server: apache Set-Cookie: BAIDUID=46840F0A86B2629A4AFE0ACDB50E3240:FG=1; max-age=31536000; expires=Sat, 08-Jun-24 01:57:27 GMT; domain=.baidu.com; path=/; version=1 Vary: Accept-Encoding

	api.share.baidu.com/s.gif?r=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/	112.34.113.148	200 OK	0 B
URL GET HTTP/1.1 api.share.baidu.com/s.gif?r=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ IP 112.34.113.148:80 ASN #9808 China Mobile Communications Group Co., Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /s.gif?r=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ HTTP/1.1 Host: api.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Content-Length: 0 Content-Type: text/plain; charset=utf-8 Date: Fri, 09 Jun 2023 01:57:28 GMT`

	www.zibokehai.cn/Public/images/error.jpg	122.114.176.11	200 OK	11 kB
URL GET HTTP/1.1 www.zibokehai.cn/Public/images/error.jpg IP 122.114.176.11:80 ASN #4837 CHINA UNICOM China169 Backbone Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2015:05:16 13:53:49], baseline, precision 8, 112x110, components 3\012- data Size 11 kB (11064 bytes) Hash 92beab8ee0d8425509037e9a0b1cfb2e 801048d254094f1924fd5dedfba649e7fbf813a4 bc1ad75324db2048d124525a0201f6ccb98266d2e7ba549f69c693c644f6a710 HTTP Headers `GET /Public/images/error.jpg HTTP/1.1 Host: www.zibokehai.cn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://www.rafaellora.com/ DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 09 Jun 2023 01:57:28 GMT Server: Apache Strict-Transport-Security: max-age=63072000; includeSubdomains; preload Last-Modified: Mon, 12 Jun 2017 10:08:42 GMT ETag: "36176e-2b38-551c080eade80" Accept-Ranges: bytes Content-Length: 11064 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: image/jpeg`

	www.rafaellora.com/favicon.ico	173.232.105.148	200 OK	9.7 kB
URL GET HTTP/1.1 www.rafaellora.com/favicon.ico IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data Size 9.7 kB (9662 bytes) Hash 1af6c08eb07f675c862fa3cd50640511 bfc9fbddea831a3cae067a570bcb4450280c7f45 7fc7fdb7ea134949cefdbd00ac02724e091e0201c1cee06795f84db28a1586d4 HTTP Headers GET /favicon.ico HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201686277645884%2C%20%22ct%22%3A%201686275845884%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201686277645913%2C%20%22ct%22%3A%201686275845913%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:47 GMT Content-Type: image/x-icon Content-Length: 9662 Last-Modified: Wed, 20 Jul 2022 04:27:54 GMT Connection: keep-alive ETag: "62d7844a-25be" Accept-Ranges: bytes`

	pinganqiucai.com:37512/fcl.php?keyword=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA&from=pc&originUrl=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&referer=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=5186	202.95.15.156		1.1 kB
URL pinganqiucai.com:37512/fcl.php?keyword=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA&from=pc&originUrl=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&referer=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=5186 IP 202.95.15.156:0 ASN #64050 BGPNET Global ASN Certificate IssuerTrustAsia Technologies, Inc. Subject3692022.com Fingerprint21:78:BC:6B:A2:96:F4:D0:9A:F1:24:44:9C:60:72:4C:0B:E1:56:5A ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text Size 1.1 kB (1109 bytes) Hash e12cebdbf382407e418db73062366dd3 5b6a43738a37086c206ba5f675bb04d01222e720 8523da2ec89a64e3f3b929eef359018ecfaa5555eaa0cb822ead77acaa2980b0 HTTP Headers GET /fcl.php?keyword=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA&from=pc&originUrl=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&referer=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=5186 HTTP/1.1 Host: pinganqiucai.com:37512 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://www.rafaellora.com DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:28 GMT Content-Type: text/html;charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/5.4.41 Access-Control-Allow-Origin: * Content-Encoding: gzip`

	www.rafaellora.com/jquery.la.min.js	173.232.105.148	200 OK	548 B
URL GET HTTP/1.1 www.rafaellora.com/jquery.la.min.js IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type HTML document, ASCII text, with very long lines (554), with CRLF line terminators Size 548 B (548 bytes) Hash 9819a6481accf994bd0bd30960602e30 2e71da8cd00848561ad17cb3b5be900d12de7f8f 0d53857a9269c32e2f51e0804b578506ad5d53104c1be94210ff415a1dfb3317 HTTP Headers GET /jquery.la.min.js HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201686277645884%2C%20%22ct%22%3A%201686275845884%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201686277645913%2C%20%22ct%22%3A%201686275845913%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:48 GMT Content-Type: application/javascript Last-Modified: Wed, 20 Jul 2022 04:27:54 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"62d7844a-55a" Expires: Fri, 09 Jun 2023 02:57:48 GMT Cache-Control: max-age=3600 Content-Encoding: gzip`

	test.xinxiyidiantong.com:2096/images/style1.css	85.208.116.177	200 OK	2.0 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/style1.css IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type assembler source, ASCII text, with very long lines (465), with CRLF line terminators Size 2.0 kB (1984 bytes) Hash 9dcee9f3e3a9adc3a8fd044d18aff03a 222a22156013ec694b2088c0a92e22e95cadfeb0 53143bf9cab52824338170fc6c349fddcec4f52dd1cb999c83f7865365445d8a HTTP Headers `GET /images/style1.css HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: text/css Last-Modified: Mon, 24 Apr 2023 11:24:01 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"644666d1-2acf" Expires: Fri, 09 Jun 2023 02:57:29 GMT Cache-Control: max-age=3600 Content-Encoding: gzip`

	sdk.51.la/js-sdk-pro.min.js	47.246.44.137	200 OK	13 kB
URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js IP 47.246.44.137:80 ASN #24429 Zhejiang Taobao Network Co.,Ltd Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Unicode text, UTF-8 text, with very long lines (34110) Size 13 kB (12846 bytes) Hash 24bb520e9517f2ed3ed987b46aeaf723 846723563d7dd2bff3954f93633b11af0103adc8 d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27 HTTP Headers `GET /js-sdk-pro.min.js HTTP/1.1 Host: sdk.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/javascript Content-Length: 12846 Connection: keep-alive Date: Thu, 08 Jun 2023 16:07:25 GMT Vary: Accept-Encoding x-oss-request-id: 6481FCBDC1979830345C4C15 x-oss-cdn-auth: success Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 5143829838470429443 x-oss-storage-class: Standard Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw== x-oss-server-time: 3 Content-Encoding: gzip Ali-Swift-Global-Savetime: 1686240445 Via: cache15.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache3.se1[0,0,200-0,H], cache8.se1[1,0] Age: 35404 X-Cache: HIT TCP_MEM_HIT dirn:1:151224761 X-Swift-SaveTime: Thu, 08 Jun 2023 16:07:31 GMT X-Swift-CacheTime: 1295994 Access-Control-Allow-Origin: * Timing-Allow-Origin: * EagleId: 2ff62c9c16862758491187364e

	sdk.51.la/js-sdk-pro.min.js	47.246.44.137	200 OK	13 kB
URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js IP 47.246.44.137:80 ASN #24429 Zhejiang Taobao Network Co.,Ltd Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Unicode text, UTF-8 text, with very long lines (34110) Size 13 kB (12846 bytes) Hash 24bb520e9517f2ed3ed987b46aeaf723 846723563d7dd2bff3954f93633b11af0103adc8 d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27 HTTP Headers `GET /js-sdk-pro.min.js HTTP/1.1 Host: sdk.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/javascript Content-Length: 12846 Connection: keep-alive Date: Thu, 08 Jun 2023 16:07:25 GMT Vary: Accept-Encoding x-oss-request-id: 6481FCBDC1979830345C4C15 x-oss-cdn-auth: success Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 5143829838470429443 x-oss-storage-class: Standard Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw== x-oss-server-time: 3 Content-Encoding: gzip Ali-Swift-Global-Savetime: 1686240445 Via: cache15.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache3.se1[0,0,200-0,H], cache2.se1[1,0] Age: 35404 X-Cache: HIT TCP_MEM_HIT dirn:1:151224761 X-Swift-SaveTime: Thu, 08 Jun 2023 16:07:31 GMT X-Swift-CacheTime: 1295994 Access-Control-Allow-Origin: * Timing-Allow-Origin: * EagleId: 2ff62c9616862758491222860e

	test.xinxiyidiantong.com:2096/images/favicon.ico	85.208.116.177	200 OK	3.1 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/favicon.ico IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data Size 3.1 kB (3066 bytes) Hash 00b726752e8713453d31b694d4f74b89 122742a4ce71b668801ddcc8db72f07730db290c 45d8a46c7758c43f32db8794520cbf03604db83734c969ca80d3b356f8360b37 HTTP Headers `GET /images/favicon.ico HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/x-icon Content-Length: 3066 Last-Modified: Fri, 22 Oct 2021 08:11:14 GMT Connection: keep-alive ETag: "61727222-bfa" Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/3_1.jpg	85.208.116.177	200 OK	8.7 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/3_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 8.7 kB (8660 bytes) Hash bd5b31f1e7d18e29d6c10312eb6661da 73d597ea109cd53140943270b6629ab8ebd3e69c 62f4ab1a75135e43fb19419972b6ec12b8ba3ac8337feae4023bd7b9b0e9d59a HTTP Headers `GET /images/3_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/jpeg Content-Length: 8660 Last-Modified: Fri, 22 Oct 2021 07:29:26 GMT Connection: keep-alive ETag: "61726856-21d4" Expires: Sun, 09 Jul 2023 01:57:29 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/1_1.jpg	85.208.116.177	200 OK	10 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/1_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 10 kB (9995 bytes) Hash b28d56b08ae1c39178b7ed387cfd1297 e1eede6d5d7351d6e98b7afb188c6e1615233027 ef09e72ae4d2d62570afb35c6b39a540b3f52db05b3e5e8e8c4cf81c5ff15810 HTTP Headers `GET /images/1_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/jpeg Content-Length: 9995 Last-Modified: Fri, 22 Oct 2021 07:29:22 GMT Connection: keep-alive ETag: "61726852-270b" Expires: Sun, 09 Jul 2023 01:57:29 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/2_1.jpg	85.208.116.177	200 OK	11 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/2_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 11 kB (11115 bytes) Hash 088afa1a19d8f98fe3808e2471d9666e c5580afe6796b562e0cb6ca80516f4fb57504a39 e311225d391d6c060f288026fcaf5f70c87230a6a86b16f7acf36e33c29ae14c HTTP Headers `GET /images/2_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/jpeg Content-Length: 11115 Last-Modified: Fri, 22 Oct 2021 07:29:25 GMT Connection: keep-alive ETag: "61726855-2b6b" Expires: Sun, 09 Jul 2023 01:57:29 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/logo.png	85.208.116.177	200 OK	28 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/logo.png IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type PNG image data, 255 x 85, 8-bit/color RGBA, non-interlaced\012- data Size 28 kB (27927 bytes) Hash 1555066b01ba12346071989c467ccf25 50c92c270ddc54e309f1499dde7e04fddcdee8c4 a8102cc2e6a32d0e128a3757c711489f1d7426123617283cf8d3cb1fd838f101 HTTP Headers `GET /images/logo.png HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/png Content-Length: 27927 Last-Modified: Fri, 22 Oct 2021 07:29:32 GMT Connection: keep-alive ETag: "6172685c-6d17" Expires: Sun, 09 Jul 2023 01:57:29 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/4_1.jpg	85.208.116.177	200 OK	9.0 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/4_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 9.0 kB (9010 bytes) Hash fda80dce60b7652bc25d8050e874fc5e af999552eb2effe20b9bb6548bd3b40bf6b82fce 86872602a83d5e41e9bf331e3f16f87d4631bd2a5f9f141c665eb00d6c20db92 HTTP Headers `GET /images/4_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/jpeg Content-Length: 9010 Last-Modified: Fri, 22 Oct 2021 07:29:27 GMT Connection: keep-alive ETag: "61726857-2332" Expires: Sun, 09 Jul 2023 01:57:29 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/26_1.jpg	85.208.116.177	200 OK	23 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/26_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 350x80, components 3\012- data Size 23 kB (22936 bytes) Hash ce42bf92c86c558c9b16045328f51abe 8775d77ae4bfcb40285876e6e99c9fd238df4976 627bdc513407920656341f0c334ef6eda80604e98f0f1b706960b76e25946095 HTTP Headers `GET /images/26_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/jpeg Content-Length: 22936 Last-Modified: Thu, 29 Sep 2022 10:16:32 GMT Connection: keep-alive ETag: "63357080-5998" Expires: Sun, 09 Jul 2023 01:57:29 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/27_1.jpg	85.208.116.177	200 OK	21 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/27_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 21 kB (21382 bytes) Hash c864a19ee8b086dee66ed97b0b2e103c 384e46a4f39ea1e968bc13f702efd0ee786975f4 5676a0186f2a4361c08f8cc9813bced043b0a4ac5d9813ff635d3312680af585 HTTP Headers `GET /images/27_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/jpeg Content-Length: 21382 Last-Modified: Tue, 11 Apr 2023 13:33:51 GMT Connection: keep-alive ETag: "643561bf-5386" Expires: Sun, 09 Jul 2023 01:57:29 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/5_1.jpg	85.208.116.177	200 OK	9.1 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/5_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 9.1 kB (9132 bytes) Hash a0175d738a1002bc3533d496bfd4cc8d 82a4b1d855e51c2f3be325f5f3368cc254934479 908a0f4cf34ca2dd0e638ef1bf08f637a29757610ae1b65628ab8cbb22345a5e HTTP Headers `GET /images/5_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/jpeg Content-Length: 9132 Last-Modified: Fri, 22 Oct 2021 07:29:28 GMT Connection: keep-alive ETag: "61726858-23ac" Expires: Sun, 09 Jul 2023 01:57:29 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/28_1.jpg	85.208.116.177		28 kB
URL test.xinxiyidiantong.com:2096/images/28_1.jpg IP 85.208.116.177:0 ASN #18978 ENZUINC Certificate IssuerTrustAsia Technologies, Inc. Subject3692022.com Fingerprint21:78:BC:6B:A2:96:F4:D0:9A:F1:24:44:9C:60:72:4C:0B:E1:56:5A ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 28 kB (28119 bytes) Hash dcfe279790ac32e46151462b70bb06dc 452850c4fae14c13205055486b25dd7d32039c2b edc44fa934ecbd8178edbde63f66697f5359c24d3a964ff458750e4899e244ea HTTP Headers `GET /images/28_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/jpeg Content-Length: 28119 Last-Modified: Mon, 24 Apr 2023 11:25:45 GMT Connection: keep-alive ETag: "64466739-6dd7" Expires: Sun, 09 Jul 2023 01:57:29 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/9_1.jpg	85.208.116.177	200 OK	4.1 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/9_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 350x80, components 3\012- data Size 4.1 kB (4122 bytes) Hash 0dc95e4c2df0ca737d64edb469b67cef 155bec7ab478e7fdc17d1bfc9bf494e0890a834a 606fed6485d60069dbc7f3e01ff75084534e97dc3d12e0b07bb873d527754486 HTTP Headers `GET /images/9_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/jpeg Content-Length: 4122 Last-Modified: Fri, 22 Oct 2021 07:29:31 GMT Connection: keep-alive ETag: "6172685b-101a" Expires: Sun, 09 Jul 2023 01:57:29 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/2.jpg	85.208.116.177	200 OK	86 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/2.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data Size 86 kB (85884 bytes) Hash 6613a23f1fecfc5aad23df7cce06f1b0 3a3bcb377568add492170212e90d7a1f633f5e27 657c5a2c773ed927afc61fbce4bc522bd8190ed82cb2c15ff0e9baac320749ca HTTP Headers `GET /images/2.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Type: image/jpeg Content-Length: 85884 Last-Modified: Fri, 22 Oct 2021 07:29:23 GMT Connection: keep-alive ETag: "61726853-14f7c" Expires: Sun, 09 Jul 2023 01:57:29 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	ocsp.globalsign.com/gsrsaovsslca2018	151.101.194.133		1.4 kB
URL ocsp.globalsign.com/gsrsaovsslca2018 IP 151.101.194.133:0 ASN #54113 FASTLY File type data Size 1.4 kB (1432 bytes) Hash e038206ef506034676356ef613948602 a94db23168be3ca5c0accb79ea30bbdb26adfdcb 710a945589bad1aac7c1804406a5aef0d1b0d30423d0e405a422581fe9bf4725 HTTP Headers `POST /gsrsaovsslca2018 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Connection: keep-alive Content-Length: 1432 Server: nginx Content-Type: application/ocsp-response Expires: Tue, 13 Jun 2023 00:29:20 GMT ETag: "a94db23168be3ca5c0accb79ea30bbdb26adfdcb" Last-Modified: Fri, 09 Jun 2023 00:29:21 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 Via: 1.1 varnish, 1.1 varnish Accept-Ranges: bytes Date: Fri, 09 Jun 2023 01:57:29 GMT Age: 872 X-Served-By: cache-qpg1274-QPG, cache-bma1671-BMA X-Cache: HIT, HIT X-Cache-Hits: 18, 1 X-Timer: S1686275850.705157,VS0,VE1

	collect-v6.51.la/v6/collect?dt=4	47.106.172.21	200	0 B
URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4 IP 47.106.172.21:80 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /v6/collect?dt=4 HTTP/1.1 Host: collect-v6.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Length: 384 Origin: http://www.rafaellora.com DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Length: 0 Connection: keep-alive Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers Access-Control-Allow-Origin: http://www.rafaellora.com Access-Control-Allow-Credentials: true`

	collect-v6.51.la/v6/collect?dt=4	47.106.172.21	200	0 B
URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4 IP 47.106.172.21:80 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /v6/collect?dt=4 HTTP/1.1 Host: collect-v6.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Length: 387 Origin: http://www.rafaellora.com DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 Server: nginx Date: Fri, 09 Jun 2023 01:57:29 GMT Content-Length: 0 Connection: keep-alive Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers Access-Control-Allow-Origin: http://www.rafaellora.com Access-Control-Allow-Credentials: true`

	www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/	173.232.105.148		4.5 kB
URL User Request GET www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ IP 173.232.105.148:0 ASN #62904 AS62904 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7879) Size 4.5 kB (4515 bytes) Hash 8d88dbc3b9a718cc7ea3437addd2bad5 0f1607daee83cf3c6e42c2b59b09b26c6926b283 22dbdb806a40de994749184889c2002185aa633f47fa658bd576585dc59f3605 HTTP Headers GET /~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ DNT: 1 Connection: keep-alive Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%202%2C%20%22stt%22%3A%202727%2C%20%22dr%22%3A%202727%2C%20%22expires%22%3A%201686277648611%2C%20%22ct%22%3A%201686275848611%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%202%2C%20%22stt%22%3A%202714%2C%20%22dr%22%3A%202714%2C%20%22expires%22%3A%201686277648627%2C%20%22ct%22%3A%201686275848627%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916 Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:50 GMT Content-Type: text/html;charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/5.4.41 Content-Encoding: gzip`

	www.rafaellora.com/jquery.min.js	173.232.105.148	200 OK	714 B
URL GET HTTP/1.1 www.rafaellora.com/jquery.min.js IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type ASCII text, with very long lines (713) Size 714 B (714 bytes) Hash 13ba88726aed9e79bac6329bfdff3603 cbd2df775c1935b119897c637ed335f6df6f9fd7 09ede765ac297f3d651419f479046a5e7dc4a656732adb8e54d279a198f7285e HTTP Headers GET /jquery.min.js HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%202%2C%20%22stt%22%3A%202727%2C%20%22dr%22%3A%202727%2C%20%22expires%22%3A%201686277648611%2C%20%22ct%22%3A%201686275848611%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%202%2C%20%22stt%22%3A%202714%2C%20%22dr%22%3A%202714%2C%20%22expires%22%3A%201686277648627%2C%20%22ct%22%3A%201686275848627%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:50 GMT Content-Type: application/javascript Content-Length: 714 Last-Modified: Wed, 20 Jul 2022 04:27:54 GMT Connection: keep-alive ETag: "62d7844a-2ca" Expires: Fri, 09 Jun 2023 02:57:50 GMT Cache-Control: max-age=3600 Accept-Ranges: bytes`

	www.3692022.com:8259/fff6666/huzi/sj.js	85.208.116.179	200 OK	2.2 kB
URL GET HTTP/1.1 www.3692022.com:8259/fff6666/huzi/sj.js IP 85.208.116.179:8259 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subject3692022.com Fingerprint21:78:BC:6B:A2:96:F4:D0:9A:F1:24:44:9C:60:72:4C:0B:E1:56:5A ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type ASCII text, with very long lines (6614) Size 2.2 kB (2165 bytes) Hash 64c3b4aaf6f5395b2c97ba71a0523437 96dfdaac43105d772af9bf9d994e42cf1dc7f566 fc539818b4fff1b5cc9d15e665c4b55a156d4e8b4f861043fa95919e0738738b HTTP Headers `GET /fff6666/huzi/sj.js HTTP/1.1 Host: www.3692022.com:8259 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:31 GMT Content-Type: application/javascript Last-Modified: Tue, 22 Nov 2022 12:46:39 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"637cc4af-19d7" Expires: Fri, 09 Jun 2023 02:57:31 GMT Cache-Control: max-age=3600 Content-Encoding: gzip`

	www.rafaellora.com/Public/images/error.jpg	173.232.105.148	302 Moved Temporarily	0 B
URL GET HTTP/1.1 www.rafaellora.com/Public/images/error.jpg IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /Public/images/error.jpg HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%202%2C%20%22stt%22%3A%202727%2C%20%22dr%22%3A%202727%2C%20%22expires%22%3A%201686277648611%2C%20%22ct%22%3A%201686275848611%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%202%2C%20%22stt%22%3A%202714%2C%20%22dr%22%3A%202714%2C%20%22expires%22%3A%201686277648627%2C%20%22ct%22%3A%201686275848627%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 302 Moved Temporarily Server: nginx Date: Fri, 09 Jun 2023 01:57:50 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive X-Powered-By: PHP/5.4.41 Location: http://www.zibokehai.cn/Public/images/error.jpg`

	hm.baidu.com/hm.js?7ea585fbe87f5f3e8c0f96ac3bcee7a9	103.235.46.191	200 OK	3.9 kB
URL GET HTTP/1.1 hm.baidu.com/hm.js?7ea585fbe87f5f3e8c0f96ac3bcee7a9 IP 103.235.46.191:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5 ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT File type gzip compressed data, max speed, from Unix\012- data Size 3.9 kB (3864 bytes) Hash 32d72fd2e544f2939155b6c28fb338d8 3c5476b6265a27f368b19e19b3eb85751067fb0d 09d02d7894a6b3d863ce97492306c37dcb8c6d0385c5ffbfa9ba292cede3b77d HTTP Headers `GET /hm.js?7ea585fbe87f5f3e8c0f96ac3bcee7a9 HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Cache-Control: max-age=0, must-revalidate Content-Encoding: gzip Content-Length: 11270 Content-Type: application/javascript Date: Fri, 09 Jun 2023 01:57:30 GMT Etag: 234749f94a84ef346e55c349df9f26b1 P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Server: apache Set-Cookie: HMACCOUNT=3DDBF208417CC4B8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT HMTK=1; path=/; Max-Age=31536000; SameSite=None; Secure Strict-Transport-Security: max-age=172800

	www.zibokehai.cn/Public/images/error.jpg	122.114.176.11	200 OK	11 kB
URL GET HTTP/1.1 www.zibokehai.cn/Public/images/error.jpg IP 122.114.176.11:80 ASN #4837 CHINA UNICOM China169 Backbone Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2015:05:16 13:53:49], baseline, precision 8, 112x110, components 3\012- data Size 11 kB (11064 bytes) Hash 92beab8ee0d8425509037e9a0b1cfb2e 801048d254094f1924fd5dedfba649e7fbf813a4 bc1ad75324db2048d124525a0201f6ccb98266d2e7ba549f69c693c644f6a710 HTTP Headers `GET /Public/images/error.jpg HTTP/1.1 Host: www.zibokehai.cn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://www.rafaellora.com/ DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 09 Jun 2023 01:57:32 GMT Server: Apache Strict-Transport-Security: max-age=63072000; includeSubdomains; preload Last-Modified: Mon, 12 Jun 2017 10:08:42 GMT ETag: "36176e-2b38-551c080eade80" Accept-Ranges: bytes Content-Length: 11064 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: image/jpeg`

	api.share.baidu.com/s.gif?r=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/	39.156.68.163	200 OK	0 B
URL GET HTTP/1.1 api.share.baidu.com/s.gif?r=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ IP 39.156.68.163:80 ASN #9808 China Mobile Communications Group Co., Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /s.gif?r=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ HTTP/1.1 Host: api.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Content-Length: 0 Content-Type: text/plain; charset=utf-8 Date: Fri, 09 Jun 2023 01:57:32 GMT`

	www.rafaellora.com/favicon.ico	173.232.105.148	200 OK	9.7 kB
URL GET HTTP/1.1 www.rafaellora.com/favicon.ico IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data Size 9.7 kB (9662 bytes) Hash 1af6c08eb07f675c862fa3cd50640511 bfc9fbddea831a3cae067a570bcb4450280c7f45 7fc7fdb7ea134949cefdbd00ac02724e091e0201c1cee06795f84db28a1586d4 HTTP Headers GET /favicon.ico HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%202%2C%20%22stt%22%3A%202727%2C%20%22dr%22%3A%202727%2C%20%22expires%22%3A%201686277648611%2C%20%22ct%22%3A%201686275848611%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%202%2C%20%22stt%22%3A%202714%2C%20%22dr%22%3A%202714%2C%20%22expires%22%3A%201686277648627%2C%20%22ct%22%3A%201686275848627%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:51 GMT Content-Type: image/x-icon Content-Length: 9662 Last-Modified: Wed, 20 Jul 2022 04:27:54 GMT Connection: keep-alive ETag: "62d7844a-25be" Accept-Ranges: bytes`

	pinganqiucai.com:37512/fcl.php?keyword=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA&from=pc&originUrl=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&referer=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=6366	202.95.15.156	200 OK	1.1 kB
URL GET HTTP/1.1 pinganqiucai.com:37512/fcl.php?keyword=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA&from=pc&originUrl=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&referer=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=6366 IP 202.95.15.156:37512 ASN #64050 BGPNET Global ASN Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjectpinganqiucai.com Fingerprint77:9B:1F:F4:F2:38:5E:7B:BE:AC:77:63:48:CE:90:7F:08:03:A7:B5 ValidityTue, 22 Nov 2022 00:00:00 GMT - Wed, 22 Nov 2023 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text Size 1.1 kB (1109 bytes) Hash e12cebdbf382407e418db73062366dd3 5b6a43738a37086c206ba5f675bb04d01222e720 8523da2ec89a64e3f3b929eef359018ecfaa5555eaa0cb822ead77acaa2980b0 HTTP Headers GET /fcl.php?keyword=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA&from=pc&originUrl=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&referer=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=6366 HTTP/1.1 Host: pinganqiucai.com:37512 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://www.rafaellora.com DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:32 GMT Content-Type: text/html;charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/5.4.41 Access-Control-Allow-Origin: * Content-Encoding: gzip`

	www.rafaellora.com/jquery.la.min.js	173.232.105.148	200 OK	548 B
URL GET HTTP/1.1 www.rafaellora.com/jquery.la.min.js IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type HTML document, ASCII text, with very long lines (554), with CRLF line terminators Size 548 B (548 bytes) Hash 9819a6481accf994bd0bd30960602e30 2e71da8cd00848561ad17cb3b5be900d12de7f8f 0d53857a9269c32e2f51e0804b578506ad5d53104c1be94210ff415a1dfb3317 HTTP Headers GET /jquery.la.min.js HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%202%2C%20%22stt%22%3A%202727%2C%20%22dr%22%3A%202727%2C%20%22expires%22%3A%201686277648611%2C%20%22ct%22%3A%201686275848611%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%202%2C%20%22stt%22%3A%202714%2C%20%22dr%22%3A%202714%2C%20%22expires%22%3A%201686277648627%2C%20%22ct%22%3A%201686275848627%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:52 GMT Content-Type: application/javascript Last-Modified: Wed, 20 Jul 2022 04:27:54 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"62d7844a-55a" Expires: Fri, 09 Jun 2023 02:57:52 GMT Cache-Control: max-age=3600 Content-Encoding: gzip`

	test.xinxiyidiantong.com:2096/images/style1.css	85.208.116.177	200 OK	2.0 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/style1.css IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type assembler source, ASCII text, with very long lines (465), with CRLF line terminators Size 2.0 kB (1984 bytes) Hash 9dcee9f3e3a9adc3a8fd044d18aff03a 222a22156013ec694b2088c0a92e22e95cadfeb0 53143bf9cab52824338170fc6c349fddcec4f52dd1cb999c83f7865365445d8a HTTP Headers `GET /images/style1.css HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: text/css Last-Modified: Mon, 24 Apr 2023 11:24:01 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"644666d1-2acf" Expires: Fri, 09 Jun 2023 02:57:33 GMT Cache-Control: max-age=3600 Content-Encoding: gzip`

	sdk.51.la/js-sdk-pro.min.js	47.246.44.137	200 OK	13 kB
URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js IP 47.246.44.137:80 ASN #24429 Zhejiang Taobao Network Co.,Ltd Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Unicode text, UTF-8 text, with very long lines (34110) Size 13 kB (12846 bytes) Hash 24bb520e9517f2ed3ed987b46aeaf723 846723563d7dd2bff3954f93633b11af0103adc8 d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27 HTTP Headers `GET /js-sdk-pro.min.js HTTP/1.1 Host: sdk.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/javascript Content-Length: 12846 Connection: keep-alive Date: Thu, 08 Jun 2023 16:07:25 GMT Vary: Accept-Encoding x-oss-request-id: 6481FCBDC1979830345C4C15 x-oss-cdn-auth: success Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 5143829838470429443 x-oss-storage-class: Standard Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw== x-oss-server-time: 3 Content-Encoding: gzip Ali-Swift-Global-Savetime: 1686240445 Via: cache15.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache3.se1[0,0,200-0,H], cache8.se1[1,0] Age: 35408 X-Cache: HIT TCP_MEM_HIT dirn:1:151224761 X-Swift-SaveTime: Thu, 08 Jun 2023 16:07:31 GMT X-Swift-CacheTime: 1295994 Access-Control-Allow-Origin: * Timing-Allow-Origin: * EagleId: 2ff62c9c16862758530722601e

	sdk.51.la/js-sdk-pro.min.js	47.246.44.137	200 OK	13 kB
URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js IP 47.246.44.137:80 ASN #24429 Zhejiang Taobao Network Co.,Ltd Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Unicode text, UTF-8 text, with very long lines (34110) Size 13 kB (12846 bytes) Hash 24bb520e9517f2ed3ed987b46aeaf723 846723563d7dd2bff3954f93633b11af0103adc8 d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27 HTTP Headers `GET /js-sdk-pro.min.js HTTP/1.1 Host: sdk.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/javascript Content-Length: 12846 Connection: keep-alive Date: Thu, 08 Jun 2023 16:07:25 GMT Vary: Accept-Encoding x-oss-request-id: 6481FCBDC1979830345C4C15 x-oss-cdn-auth: success Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 5143829838470429443 x-oss-storage-class: Standard Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw== x-oss-server-time: 3 Content-Encoding: gzip Ali-Swift-Global-Savetime: 1686240445 Via: cache15.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache3.se1[0,0,200-0,H], cache2.se1[1,0] Age: 35408 X-Cache: HIT TCP_MEM_HIT dirn:1:151224761 X-Swift-SaveTime: Thu, 08 Jun 2023 16:07:31 GMT X-Swift-CacheTime: 1295994 Access-Control-Allow-Origin: * Timing-Allow-Origin: * EagleId: 2ff62c9616862758530786111e

	test.xinxiyidiantong.com:2096/images/favicon.ico	85.208.116.177	200 OK	3.1 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/favicon.ico IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data Size 3.1 kB (3066 bytes) Hash 00b726752e8713453d31b694d4f74b89 122742a4ce71b668801ddcc8db72f07730db290c 45d8a46c7758c43f32db8794520cbf03604db83734c969ca80d3b356f8360b37 HTTP Headers `GET /images/favicon.ico HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/x-icon Content-Length: 3066 Last-Modified: Fri, 22 Oct 2021 08:11:14 GMT Connection: keep-alive ETag: "61727222-bfa" Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/1_1.jpg	85.208.116.177	200 OK	10 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/1_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 10 kB (9995 bytes) Hash b28d56b08ae1c39178b7ed387cfd1297 e1eede6d5d7351d6e98b7afb188c6e1615233027 ef09e72ae4d2d62570afb35c6b39a540b3f52db05b3e5e8e8c4cf81c5ff15810 HTTP Headers `GET /images/1_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/jpeg Content-Length: 9995 Last-Modified: Fri, 22 Oct 2021 07:29:22 GMT Connection: keep-alive ETag: "61726852-270b" Expires: Sun, 09 Jul 2023 01:57:33 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/3_1.jpg	85.208.116.177	200 OK	8.7 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/3_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 8.7 kB (8660 bytes) Hash bd5b31f1e7d18e29d6c10312eb6661da 73d597ea109cd53140943270b6629ab8ebd3e69c 62f4ab1a75135e43fb19419972b6ec12b8ba3ac8337feae4023bd7b9b0e9d59a HTTP Headers `GET /images/3_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/jpeg Content-Length: 8660 Last-Modified: Fri, 22 Oct 2021 07:29:26 GMT Connection: keep-alive ETag: "61726856-21d4" Expires: Sun, 09 Jul 2023 01:57:33 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	collect-v6.51.la/v6/collect?dt=4	47.106.122.241	200	0 B
URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4 IP 47.106.122.241:80 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /v6/collect?dt=4 HTTP/1.1 Host: collect-v6.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Length: 389 Origin: http://www.rafaellora.com DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Length: 0 Connection: keep-alive Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers Access-Control-Allow-Origin: http://www.rafaellora.com Access-Control-Allow-Credentials: true`

	test.xinxiyidiantong.com:2096/images/2_1.jpg	85.208.116.177	200 OK	11 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/2_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 11 kB (11115 bytes) Hash 088afa1a19d8f98fe3808e2471d9666e c5580afe6796b562e0cb6ca80516f4fb57504a39 e311225d391d6c060f288026fcaf5f70c87230a6a86b16f7acf36e33c29ae14c HTTP Headers `GET /images/2_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/jpeg Content-Length: 11115 Last-Modified: Fri, 22 Oct 2021 07:29:25 GMT Connection: keep-alive ETag: "61726855-2b6b" Expires: Sun, 09 Jul 2023 01:57:33 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	collect-v6.51.la/v6/collect?dt=4	47.106.122.241	200	0 B
URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4 IP 47.106.122.241:80 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /v6/collect?dt=4 HTTP/1.1 Host: collect-v6.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Length: 392 Origin: http://www.rafaellora.com DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Length: 0 Connection: keep-alive Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers Access-Control-Allow-Origin: http://www.rafaellora.com Access-Control-Allow-Credentials: true`

	test.xinxiyidiantong.com:2096/images/logo.png	85.208.116.177	200 OK	28 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/logo.png IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type PNG image data, 255 x 85, 8-bit/color RGBA, non-interlaced\012- data Size 28 kB (27927 bytes) Hash 1555066b01ba12346071989c467ccf25 50c92c270ddc54e309f1499dde7e04fddcdee8c4 a8102cc2e6a32d0e128a3757c711489f1d7426123617283cf8d3cb1fd838f101 HTTP Headers `GET /images/logo.png HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/png Content-Length: 27927 Last-Modified: Fri, 22 Oct 2021 07:29:32 GMT Connection: keep-alive ETag: "6172685c-6d17" Expires: Sun, 09 Jul 2023 01:57:33 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/4_1.jpg	85.208.116.177	200 OK	9.0 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/4_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 9.0 kB (9010 bytes) Hash fda80dce60b7652bc25d8050e874fc5e af999552eb2effe20b9bb6548bd3b40bf6b82fce 86872602a83d5e41e9bf331e3f16f87d4631bd2a5f9f141c665eb00d6c20db92 HTTP Headers `GET /images/4_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/jpeg Content-Length: 9010 Last-Modified: Fri, 22 Oct 2021 07:29:27 GMT Connection: keep-alive ETag: "61726857-2332" Expires: Sun, 09 Jul 2023 01:57:33 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/27_1.jpg	85.208.116.177	200 OK	21 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/27_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 21 kB (21382 bytes) Hash c864a19ee8b086dee66ed97b0b2e103c 384e46a4f39ea1e968bc13f702efd0ee786975f4 5676a0186f2a4361c08f8cc9813bced043b0a4ac5d9813ff635d3312680af585 HTTP Headers `GET /images/27_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/jpeg Content-Length: 21382 Last-Modified: Tue, 11 Apr 2023 13:33:51 GMT Connection: keep-alive ETag: "643561bf-5386" Expires: Sun, 09 Jul 2023 01:57:33 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/26_1.jpg	85.208.116.177	200 OK	23 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/26_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 350x80, components 3\012- data Size 23 kB (22936 bytes) Hash ce42bf92c86c558c9b16045328f51abe 8775d77ae4bfcb40285876e6e99c9fd238df4976 627bdc513407920656341f0c334ef6eda80604e98f0f1b706960b76e25946095 HTTP Headers `GET /images/26_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/jpeg Content-Length: 22936 Last-Modified: Thu, 29 Sep 2022 10:16:32 GMT Connection: keep-alive ETag: "63357080-5998" Expires: Sun, 09 Jul 2023 01:57:33 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/5_1.jpg	85.208.116.177	200 OK	9.1 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/5_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 9.1 kB (9132 bytes) Hash a0175d738a1002bc3533d496bfd4cc8d 82a4b1d855e51c2f3be325f5f3368cc254934479 908a0f4cf34ca2dd0e638ef1bf08f637a29757610ae1b65628ab8cbb22345a5e HTTP Headers `GET /images/5_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/jpeg Content-Length: 9132 Last-Modified: Fri, 22 Oct 2021 07:29:28 GMT Connection: keep-alive ETag: "61726858-23ac" Expires: Sun, 09 Jul 2023 01:57:33 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/28_1.jpg	85.208.116.177		28 kB
URL test.xinxiyidiantong.com:2096/images/28_1.jpg IP 85.208.116.177:0 ASN #18978 ENZUINC Certificate IssuerTrustAsia Technologies, Inc. Subject3692022.com Fingerprint21:78:BC:6B:A2:96:F4:D0:9A:F1:24:44:9C:60:72:4C:0B:E1:56:5A ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x80, components 3\012- data Size 28 kB (28119 bytes) Hash dcfe279790ac32e46151462b70bb06dc 452850c4fae14c13205055486b25dd7d32039c2b edc44fa934ecbd8178edbde63f66697f5359c24d3a964ff458750e4899e244ea HTTP Headers `GET /images/28_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/jpeg Content-Length: 28119 Last-Modified: Mon, 24 Apr 2023 11:25:45 GMT Connection: keep-alive ETag: "64466739-6dd7" Expires: Sun, 09 Jul 2023 01:57:33 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/2.jpg	85.208.116.177	200 OK	86 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/2.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data Size 86 kB (85884 bytes) Hash 6613a23f1fecfc5aad23df7cce06f1b0 3a3bcb377568add492170212e90d7a1f633f5e27 657c5a2c773ed927afc61fbce4bc522bd8190ed82cb2c15ff0e9baac320749ca HTTP Headers `GET /images/2.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/jpeg Content-Length: 85884 Last-Modified: Fri, 22 Oct 2021 07:29:23 GMT Connection: keep-alive ETag: "61726853-14f7c" Expires: Sun, 09 Jul 2023 01:57:33 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	test.xinxiyidiantong.com:2096/images/9_1.jpg	85.208.116.177	200 OK	4.1 kB
URL GET HTTP/1.1 test.xinxiyidiantong.com:2096/images/9_1.jpg IP 85.208.116.177:2096 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subjecttest.xinxiyidiantong.com Fingerprint2E:EB:58:89:02:26:61:6B:44:6E:86:C6:CE:61:F5:2A:4E:E4:A0:D0 ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 350x80, components 3\012- data Size 4.1 kB (4122 bytes) Hash 0dc95e4c2df0ca737d64edb469b67cef 155bec7ab478e7fdc17d1bfc9bf494e0890a834a 606fed6485d60069dbc7f3e01ff75084534e97dc3d12e0b07bb873d527754486 HTTP Headers `GET /images/9_1.jpg HTTP/1.1 Host: test.xinxiyidiantong.com:2096 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://test.xinxiyidiantong.com:2096/images/style1.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:33 GMT Content-Type: image/jpeg Content-Length: 4122 Last-Modified: Fri, 22 Oct 2021 07:29:31 GMT Connection: keep-alive ETag: "6172685b-101a" Expires: Sun, 09 Jul 2023 01:57:33 GMT Cache-Control: max-age=2592000 Accept-Ranges: bytes`

	hm.baidu.com/hm.js?7ea585fbe87f5f3e8c0f96ac3bcee7a9	103.235.46.191	200 OK	11 kB
URL GET HTTP/1.1 hm.baidu.com/hm.js?7ea585fbe87f5f3e8c0f96ac3bcee7a9 IP 103.235.46.191:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5 ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT File type ASCII text, with very long lines (632) Size 11 kB (11270 bytes) Hash ce3ad9aa89ec7743a5576c9e4e3fddb7 c5f7a2395ca24856ef3f933154c634820b7c71da ceda003166f7a52575d92aac87a4c55a9bded88563e08c74106a8eb8a1691589 HTTP Headers `GET /hm.js?7ea585fbe87f5f3e8c0f96ac3bcee7a9 HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Cookie: HMTK=1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Cache-Control: max-age=0, must-revalidate Content-Encoding: gzip Content-Length: 11270 Content-Type: application/javascript Date: Fri, 09 Jun 2023 01:57:33 GMT Etag: 11b32e1485a1712f4e1611f3696d0143 P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Server: apache Set-Cookie: HMACCOUNT=3347A91574D5B05A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800`

	hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1916570539&si=7ea585fbe87f5f3e8c0f96ac3bcee7a9&su=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&v=1.3.0&lv=1&sn=60303&r=0&ww=1280&u=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&tt=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA	103.235.46.191	200 OK	43 B
URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1916570539&si=7ea585fbe87f5f3e8c0f96ac3bcee7a9&su=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&v=1.3.0&lv=1&sn=60303&r=0&ww=1280&u=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&tt=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA IP 103.235.46.191:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5 ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash ad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda HTTP Headers GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1916570539&si=7ea585fbe87f5f3e8c0f96ac3bcee7a9&su=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&v=1.3.0&lv=1&sn=60303&r=0&ww=1280&u=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&tt=%E8%B7%B3%E8%BD%AC%E6%8F%90%E7%A4%BA HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Cookie: HMTK=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Cache-Control: private, max-age=0, no-cache Content-Length: 43 Content-Type: image/gif Date: Fri, 09 Jun 2023 01:57:33 GMT P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Pragma: no-cache Server: apache Set-Cookie: HMACCOUNT=65B0BE863F797604; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800 X-Content-Type-Options: nosniff`

	www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/	173.232.105.148		4.5 kB
URL User Request GET www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ IP 173.232.105.148:0 ASN #62904 AS62904 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7879) Size 4.5 kB (4515 bytes) Hash 8d88dbc3b9a718cc7ea3437addd2bad5 0f1607daee83cf3c6e42c2b59b09b26c6926b283 22dbdb806a40de994749184889c2002185aa633f47fa658bd576585dc59f3605 HTTP Headers GET /~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ DNT: 1 Connection: keep-alive Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%203%2C%20%22stt%22%3A%206685%2C%20%22dr%22%3A%203958%2C%20%22expires%22%3A%201686277652569%2C%20%22ct%22%3A%201686275852569%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%203%2C%20%22stt%22%3A%206681%2C%20%22dr%22%3A%203967%2C%20%22expires%22%3A%201686277652594%2C%20%22ct%22%3A%201686275852594%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916; Hm_lvt_7ea585fbe87f5f3e8c0f96ac3bcee7a9=1686275853; Hm_lpvt_7ea585fbe87f5f3e8c0f96ac3bcee7a9=1686275853 Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:54 GMT Content-Type: text/html;charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/5.4.41 Content-Encoding: gzip`

	www.rafaellora.com/jquery.min.js	173.232.105.148	200 OK	714 B
URL GET HTTP/1.1 www.rafaellora.com/jquery.min.js IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type ASCII text, with very long lines (713) Size 714 B (714 bytes) Hash 13ba88726aed9e79bac6329bfdff3603 cbd2df775c1935b119897c637ed335f6df6f9fd7 09ede765ac297f3d651419f479046a5e7dc4a656732adb8e54d279a198f7285e HTTP Headers GET /jquery.min.js HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%203%2C%20%22stt%22%3A%206685%2C%20%22dr%22%3A%203958%2C%20%22expires%22%3A%201686277652569%2C%20%22ct%22%3A%201686275852569%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%203%2C%20%22stt%22%3A%206681%2C%20%22dr%22%3A%203967%2C%20%22expires%22%3A%201686277652594%2C%20%22ct%22%3A%201686275852594%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916; Hm_lvt_7ea585fbe87f5f3e8c0f96ac3bcee7a9=1686275853; Hm_lpvt_7ea585fbe87f5f3e8c0f96ac3bcee7a9=1686275853 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:54 GMT Content-Type: application/javascript Content-Length: 714 Last-Modified: Wed, 20 Jul 2022 04:27:54 GMT Connection: keep-alive ETag: "62d7844a-2ca" Expires: Fri, 09 Jun 2023 02:57:54 GMT Cache-Control: max-age=3600 Accept-Ranges: bytes`

	hm.baidu.com/hm.gif?hca=3347A91574D5B05A&cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&ep=1585%2C1585&et=3&ja=0&ln=en-us&lo=0&rnd=424403216&si=7ea585fbe87f5f3e8c0f96ac3bcee7a9&su=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&v=1.3.0&lv=1&sn=60303&r=0&ww=1280&u=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F	103.235.46.191		43 B
URL hm.baidu.com/hm.gif?hca=3347A91574D5B05A&cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&ep=1585%2C1585&et=3&ja=0&ln=en-us&lo=0&rnd=424403216&si=7ea585fbe87f5f3e8c0f96ac3bcee7a9&su=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&v=1.3.0&lv=1&sn=60303&r=0&ww=1280&u=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F IP 103.235.46.191:0 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5 ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash ad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda HTTP Headers GET /hm.gif?hca=3347A91574D5B05A&cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&ep=1585%2C1585&et=3&ja=0&ln=en-us&lo=0&rnd=424403216&si=7ea585fbe87f5f3e8c0f96ac3bcee7a9&su=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&v=1.3.0&lv=1&sn=60303&r=0&ww=1280&u=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Cookie: HMTK=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Cache-Control: private, max-age=0, no-cache Content-Length: 43 Content-Type: image/gif Date: Fri, 09 Jun 2023 01:57:35 GMT P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Pragma: no-cache Server: apache Set-Cookie: HMACCOUNT=7588C31B91E352FF; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800 X-Content-Type-Options: nosniff`

	www.3692022.com:8259/fff6666/huzi/sj.js	85.208.116.179	200 OK	2.2 kB
URL GET HTTP/1.1 www.3692022.com:8259/fff6666/huzi/sj.js IP 85.208.116.179:8259 ASN #18978 ENZUINC Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Certificate IssuerTrustAsia Technologies, Inc. Subject3692022.com Fingerprint21:78:BC:6B:A2:96:F4:D0:9A:F1:24:44:9C:60:72:4C:0B:E1:56:5A ValidityFri, 22 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT File type ASCII text, with very long lines (6614) Size 2.2 kB (2165 bytes) Hash 64c3b4aaf6f5395b2c97ba71a0523437 96dfdaac43105d772af9bf9d994e42cf1dc7f566 fc539818b4fff1b5cc9d15e665c4b55a156d4e8b4f861043fa95919e0738738b HTTP Headers `GET /fff6666/huzi/sj.js HTTP/1.1 Host: www.3692022.com:8259 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 09 Jun 2023 01:57:35 GMT Content-Type: application/javascript Last-Modified: Tue, 22 Nov 2022 12:46:39 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"637cc4af-19d7" Expires: Fri, 09 Jun 2023 02:57:35 GMT Cache-Control: max-age=3600 Content-Encoding: gzip`

	www.rafaellora.com/Public/images/error.jpg	173.232.105.148	302 Moved Temporarily	0 B
URL GET HTTP/1.1 www.rafaellora.com/Public/images/error.jpg IP 173.232.105.148:80 ASN #62904 AS62904 Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /Public/images/error.jpg HTTP/1.1 Host: www.rafaellora.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ Cookie: __vtins__JajdZhk1tBVhbLl4=%7B%22sid%22%3A%20%22789ae615-7bbd-5b2d-abc4-ddb8ad280813%22%2C%20%22vd%22%3A%203%2C%20%22stt%22%3A%206685%2C%20%22dr%22%3A%203958%2C%20%22expires%22%3A%201686277652569%2C%20%22ct%22%3A%201686275852569%7D; __51uvsct__JajdZhk1tBVhbLl4=1; __51vcke__JajdZhk1tBVhbLl4=cb7cfa84-dc25-5e91-91d1-22c392395947; __51vuft__JajdZhk1tBVhbLl4=1686275845890; __vtins__JkAVWbgSIhBJPaFG=%7B%22sid%22%3A%20%22b4077d1f-d506-5da3-b6c1-86653c313f6f%22%2C%20%22vd%22%3A%203%2C%20%22stt%22%3A%206681%2C%20%22dr%22%3A%203967%2C%20%22expires%22%3A%201686277652594%2C%20%22ct%22%3A%201686275852594%7D; __51uvsct__JkAVWbgSIhBJPaFG=1; __51vcke__JkAVWbgSIhBJPaFG=771a4b03-3e79-5a63-be7e-e6c5275831e4; __51vuft__JkAVWbgSIhBJPaFG=1686275845916; Hm_lvt_7ea585fbe87f5f3e8c0f96ac3bcee7a9=1686275853; Hm_lpvt_7ea585fbe87f5f3e8c0f96ac3bcee7a9=1686275853 Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 302 Moved Temporarily Server: nginx Date: Fri, 09 Jun 2023 01:57:54 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive X-Powered-By: PHP/5.4.41 Location: http://www.zibokehai.cn/Public/images/error.jpg`

	push.zhanzhang.baidu.com/push.js	182.61.201.94	200 OK	227 B
URL GET HTTP/1.1 push.zhanzhang.baidu.com/push.js IP 182.61.201.94:80 ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type ASCII text, with no line terminators Size 227 B (227 bytes) Hash 1bb5a3267c9865ad4abe8d937734b62b b5478dd2edb3e64242eced1db2dbd945ef81f592 674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2 HTTP Headers `GET /push.js HTTP/1.1 Host: push.zhanzhang.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=31536000 Content-Encoding: gzip Content-Length: 227 Content-Type: text/javascript Date: Fri, 09 Jun 2023 01:57:35 GMT Etag: "4078521116" Expires: Sat, 08 Jun 2024 01:57:35 GMT Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT P3p: CP=" OTI DSP COR IVA OUR IND COM " Server: apache Set-Cookie: BAIDUID=96A509CEBA7C223287873C7116E786CA:FG=1; max-age=31536000; expires=Sat, 08-Jun-24 01:57:35 GMT; domain=.baidu.com; path=/; version=1 Vary: Accept-Encoding

	api.share.baidu.com/s.gif?r=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/	112.34.113.148	200 OK	0 B
URL GET HTTP/1.1 api.share.baidu.com/s.gif?r=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ IP 112.34.113.148:80 ASN #9808 China Mobile Communications Group Co., Ltd. Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /s.gif?r=http%3A%2F%2Fwww.rafaellora.com%2F~bozoon%2Fetaverifdpfis%2Ffile%2Fc2ec58378d4a10e72786a1bef762d009%2Fredirection.php%2F&l=http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ HTTP/1.1 Host: api.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.rafaellora.com/ Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Content-Length: 0 Content-Type: text/plain; charset=utf-8 Date: Fri, 09 Jun 2023 01:57:36 GMT`

	www.zibokehai.cn/Public/images/error.jpg	122.114.176.11	200 OK	11 kB
URL GET HTTP/1.1 www.zibokehai.cn/Public/images/error.jpg IP 122.114.176.11:80 ASN #4837 CHINA UNICOM China169 Backbone Requested by http://www.rafaellora.com/~bozoon/etaverifdpfis/file/c2ec58378d4a10e72786a1bef762d009/redirection.php/ File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2015:05:16 13:53:49], baseline, precision 8, 112x110, components 3\012- data Size 11 kB (11064 bytes) Hash 92beab8ee0d8425509037e9a0b1cfb2e 801048d254094f1924fd5dedfba649e7fbf813a4 bc1ad75324db2048d124525a0201f6ccb98266d2e7ba549f69c693c644f6a710 HTTP Headers `GET /Public/images/error.jpg HTTP/1.1 Host: www.zibokehai.cn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://www.rafaellora.com/ DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 09 Jun 2023 01:57:35 GMT Server: Apache Strict-Transport-Security: max-age=63072000; includeSubdomains; preload Last-Modified: Mon, 12 Jun 2017 10:08:42 GMT ETag: "36176e-2b38-551c080eade80" Accept-Ranges: bytes Content-Length: 11064 Keep-Alive: timeout=5, max=97 Connection: Keep-Alive Content-Type: image/jpeg`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (94)

URL User Request GET

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP