Overview

URL www.szjrgas.com/newsshow_14.html
IP61.155.209.107
ASNCHINATELECOM Jiangsu province Suzhou 5G network
Location China
Report completed2022-09-07 22:49:13 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-07 2 www.szjrgas.com/newsshow_14.html Phishing
2022-09-07 2 www.szjrgas.com/Images/Sdcms.Css Phishing
2022-09-07 2 www.szjrgas.com/js/magnifier.js Phishing
2022-09-07 2 www.szjrgas.com/Js/jquery-migrate-1.1.0.min.js Phishing
2022-09-07 2 js.users.51.la/21327943.js Malware
2022-09-07 2 www.szjrgas.com/Images/Sdcms.js Phishing
2022-09-07 2 www.szjrgas.com/Js/Validform_v5.3.2.js Phishing
2022-09-07 2 www.szjrgas.com/lib/js/jquery.SuperSlide.2.1.1.js Phishing
2022-09-07 2 www.szjrgas.com/lib/js/bootstrap.min.js Phishing
2022-09-07 2 www.szjrgas.com/js/script.js Phishing
2022-09-07 2 www.szjrgas.com/js/my.js Phishing
2022-09-07 2 www.szjrgas.com/js/wow.js Phishing
2022-09-07 2 www.szjrgas.com/Js/Jquery.js Phishing
2022-09-07 2 www.szjrgas.com/js/swiper.js Phishing
2022-09-07 2 www.szjrgas.com/lib/fonts/glyphicons-halflings-regular.woff2 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (20)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS v1.cnzz.com (1) 41694 2012-07-12 08:48:35 UTC 2022-09-07 20:20:08 UTC 220.185.164.250
mnemonic passive DNS api.share.baidu.com (1) 44629 2013-04-25 14:45:11 UTC 2022-09-07 04:35:28 UTC 182.61.201.94
mnemonic passive DNS accwww14.53kf.com (1) 0 2021-08-16 10:56:34 UTC 2022-09-06 23:39:36 UTC 101.66.249.199 Domain (53kf.com) ranked at: 104943
mnemonic passive DNS www14.53kf.com (7) 0 2013-01-01 18:36:17 UTC 2022-09-06 23:39:36 UTC 101.66.249.199 Domain (53kf.com) ranked at: 104943
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-07 12:55:42 UTC 143.204.55.36
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-07 04:50:01 UTC 23.36.76.226
mnemonic passive DNS js.users.51.la (1) 53024 2012-05-30 15:10:11 UTC 2022-09-07 07:39:49 UTC 103.143.19.103
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-07 12:21:16 UTC 34.120.237.76
mnemonic passive DNS goutong.baidu.com (1) 261591 2015-01-05 10:13:56 UTC 2022-09-07 20:19:43 UTC 14.215.177.164
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-07 05:03:48 UTC 143.204.55.25
mnemonic passive DNS www.szjrgas.com (37) 0 2017-02-11 05:11:02 UTC 2022-09-07 03:43:19 UTC 61.155.209.107 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-09-07 14:29:23 UTC 93.184.220.29
mnemonic passive DNS push.zhanzhang.baidu.com (1) 57139 2015-07-22 05:44:02 UTC 2022-09-07 08:32:17 UTC 39.156.68.163
mnemonic passive DNS tb.53kf.com (1) 306330 2013-04-26 03:20:49 UTC 2022-09-07 03:45:36 UTC 159.138.23.7
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-07 04:49:50 UTC 34.117.237.239
mnemonic passive DNS ocsp2.globalsign.com (1) 1544 2012-05-21 07:12:19 UTC 2022-09-07 04:51:26 UTC 104.18.21.226
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-07 04:56:27 UTC 104.18.21.226
mnemonic passive DNS hm.baidu.com (2) 8254 2012-05-26 08:38:45 UTC 2022-09-07 05:20:14 UTC 103.235.46.191
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-07 05:08:41 UTC 34.217.237.91
mnemonic passive DNS sgoutong.baidu.com (10) 216072 2017-02-01 14:08:53 UTC 2022-09-06 13:26:17 UTC 112.34.112.222


Recent reports on same IP/ASN/Domain/Screenshot

Last 2 reports on IP: 61.155.209.107

Date UQ / IDS / BL URL IP
2022-09-08 03:41:24 +0000
0 - 0 - 31 szjrgas.com/ 61.155.209.107
2022-09-07 22:49:13 +0000
0 - 0 - 15 www.szjrgas.com/newsshow_14.html 61.155.209.107

Last 5 reports on ASN: CHINATELECOM Jiangsu province Suzhou 5G network

Date UQ / IDS / BL URL IP
2022-11-28 16:33:18 +0000
0 - 0 - 2 soft1.bangtengxinxi.com/files/vscode/vscode.exe 180.97.64.41
2022-11-27 16:53:29 +0000
0 - 0 - 1 tg.img001.com/business/qixi.exe 61.155.140.250
2022-11-27 11:24:13 +0000
0 - 0 - 1 d.img005.com/guagua/guagua6.0.4setup08011608_ (...) 61.155.140.250
2022-11-26 16:50:55 +0000
0 - 0 - 1 d.img005.com/guagua/guagua6.0.4setup08011608_ (...) 61.155.140.250
2022-11-26 16:50:38 +0000
0 - 0 - 1 sqdownd.rbread05.cn/down/17674_20161202111609.rar 180.97.64.41

Last 2 reports on domain: szjrgas.com

Date UQ / IDS / BL URL IP
2022-09-08 03:41:24 +0000
0 - 0 - 31 szjrgas.com/ 61.155.209.107
2022-09-07 22:49:13 +0000
0 - 0 - 15 www.szjrgas.com/newsshow_14.html 61.155.209.107

No other reports with similar screenshot



JavaScript

Executed Scripts (49)


Executed Evals (2)

#1 JavaScript::Eval (size: 24, repeated: 1) - SHA256: 20e6a2f819c3baadf930e7726204a6178c259752ccb89483642b6014b27346e3

                                        kf_72634441_land_page_ok
                                    

#2 JavaScript::Eval (size: 71, repeated: 1) - SHA256: af26fc88caa48fb3f8802fe3214dbaf11eba19478bb39f5a488892574a4abf86

                                        var kf_72634441_land_page_ok = $53.getCookie('kf_72634441_land_page_ok');
                                    

Executed Writes (2)

#1 JavaScript::Write (size: 145, repeated: 1) - SHA256: e24af8b2e58ac94f0bb189d989795c01c503b72ccd6ada7d289b6d79af32daf2

                                        < span id = 'cnzz_stat_icon_1278730204' > < /span><script src='https:/ / v1.cnzz.com / z_stat.php ? id = 1278730204 & show = pic1 ' type='
text / javascript '></script>
                                    

#2 JavaScript::Write (size: 258, repeated: 1) - SHA256: 1ae6dced67ffa9caf5fd12a5f7cb43cac5c0eb170c156274c277dcf0a5818861

                                        < a href = "https://www.51.la/?comId=21327943"
title = "51.La Q�A�ߡ��"
target = "_blank" > < span style = "display:inline-block;background-color:#EF5350;color:#fff;padding:2px 5px;font-family:arial;font-size:12px;font-weight:bold;line-height:1;" > 51 La < /span></a >
                                    


HTTP Transactions (83)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 22:04:59 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qC5JnEZVGuRAivyZxaoCn0pB-auCToGQSxtX4x8LsYOmBboY4gOp-g==
Age: 2642


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12889
Expires: Thu, 08 Sep 2022 02:23:50 GMT
Date: Wed, 07 Sep 2022 22:49:01 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AA1oNx7C3UOtN50ITfgPOL9_ydF4oZ4NcfSfHA4xG98IuU8buVYv-w==
age: 68547
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 07 Sep 2022 22:49:01 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /newsshow_14.html HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: text/html; Charset=utf-8
                                        
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Yxlink
Set-Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; path=/; HttpOnly _d_id=262e0dc2dbabbfcf6209908ee93628; Path=/; HttpOnly
Date: Wed, 07 Sep 2022 22:49:01 GMT
Content-Length: 8594


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1172), with CRLF line terminators
Size:   8594
Md5:    7c7ef99cef2e82c096a6d6ef865356fd
Sha1:   591898e1359e30503598f13a59e5b77d847230e0
Sha256: 398af55fe8c409c83ca4b402fa63d57da18aeef159526f5c0cb87a05d86c3b33

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /Images/Sdcms.Css HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Thu, 11 Oct 2018 01:41:42 GMT
Accept-Ranges: bytes
ETag: "0f728f361d41:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:01 GMT
Content-Length: 1694


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   1694
Md5:    9f587b96a33cb1f6571c71b2ab9d0e41
Sha1:   2f9e4d1b687c5a0c379ca51f52a6fce171cb4667
Sha256: 648f1f2d5ee8a315a6dca8f9c16a9ae78bd7a99bcee97f0d23b28341d7d9ebdf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 07 Sep 2022 22:38:18 GMT
Expires: Wed, 07 Sep 2022 22:59:24 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tgjBEaRhRoOwTV7RA3OZ-JYbpX1lCURp1xDTidjePP2Cgg1Qh2fJSA==
Age: 644


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /js/magnifier.js HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Mon, 17 Apr 2017 09:16:22 GMT
Accept-Ranges: bytes
ETag: "037b3475bb7d21:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:01 GMT
Content-Length: 2539


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   2539
Md5:    3deecaa050034146acf0f0a399831a37
Sha1:   489a543b9ee29cb865365c5ad18f6d2d83ce9819
Sha256: eb988c95f310dada357106353b26cf100f7a1d2066ad88d3a790bb3c9a5b26be

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css/swiper.css HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Sat, 24 Nov 2018 06:23:20 GMT
Accept-Ranges: bytes
ETag: "03c9d31be83d41:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:01 GMT
Content-Length: 4494


--- Additional Info ---
Magic:  ASCII text, with very long lines (1468)
Size:   4494
Md5:    0f819016177cf0204adefd4046662400
Sha1:   81613be77dc269684c810a2ee3002fba2acc43cf
Sha256: bc97a19fad651dc1251c1bf9a30c724e775dedd67be9b21a80dfac34e8306fd6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4798
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 22:49:02 GMT
Last-Modified: Wed, 07 Sep 2022 21:29:04 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /Js/jquery-migrate-1.1.0.min.js HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Thu, 11 Oct 2018 01:41:44 GMT
Accept-Ranges: bytes
ETag: "03ca390361d41:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:01 GMT
Content-Length: 3530


--- Additional Info ---
Magic:  ASCII text, with very long lines (6805), with CRLF, LF line terminators
Size:   3530
Md5:    e435ae06a207a672c92bf33b4ccff494
Sha1:   9ede73643dc173bba047b80fb48c334b69984c98
Sha256: 900f119fa0e486eaea432bf71957f65d7e32c5f6e5f4ab323c97d6fef1079ed7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /21327943.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/

                                         
                                         103.143.19.103
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: CloudWAF
Date: Wed, 07 Sep 2022 22:49:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=94c752778ebcea76d93; path=/ HWWAFSESTIME=1662590938948; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (5207)
Size:   2511
Md5:    ff8912f3217f3988e5206978e73450b5
Sha1:   9689667f5ef0c9fea6e878190003dc9f7aac6fae
Sha256: d201d1e5702a82abcd76aea2cbe7bd1581e4be91d8aa5698d285a342f5afd7b3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css/index.css HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Wed, 13 May 2020 01:38:05 GMT
Accept-Ranges: bytes
ETag: "807cb125c728d61:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:01 GMT
Content-Length: 8181


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   8181
Md5:    fb966923cc7a51b4de7e8a9bda9e8e6f
Sha1:   e9e5efab20fe6ec72eed09ef21c426463bab5b2e
Sha256: 0600f59c1437e6a8fba61e065268ffe883373bd8efe226a8d6308fae54e9ed07
                                        
                                            GET /Images/Sdcms.js HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Thu, 11 Oct 2018 01:41:42 GMT
Accept-Ranges: bytes
ETag: "0f728f361d41:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:01 GMT
Content-Length: 2741


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   2741
Md5:    2d496cb8fa6633bd032af09a846f6213
Sha1:   768693f3451d5a84be5252da15bfaebfd717cf46
Sha256: 98308d59e5e9b8dfe43899e3b7c886ae1b3a9338cad571cfaa9f182372a007a9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /lib/css/font-awesome.min.css HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Thu, 03 Nov 2016 03:08:06 GMT
Accept-Ranges: bytes
ETag: "06f4c7f7f35d21:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:01 GMT
Content-Length: 8325


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   8325
Md5:    122408ebb5ce04f025c6eb03746809e4
Sha1:   f1be50449509d130f816096fa89f4ae6acf5bf3a
Sha256: 71419fbd8caa026b000ad2efd64f2e2038263d93e8cf1f038ad5cfb1ee9400d3
                                        
                                            GET /Js/Validform_v5.3.2.js HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Thu, 11 Oct 2018 01:41:46 GMT
Accept-Ranges: bytes
ETag: "069d491361d41:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:01 GMT
Content-Length: 16909


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (317), with CRLF line terminators
Size:   16909
Md5:    75ee088a4d7e149ff86d85f463b798d6
Sha1:   dfd6718f65e2fb1edd8e85f5b4dd41bb07b08055
Sha256: 0d28d5049a77a064a256be67f629b551804404eb108b51c3cf94093c8205bef7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VHmpqt6W+sNn2eGkE0llHQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.217.237.91
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XISKZg2lg5ZSGmn/jVKBALIeizs=

                                        
                                            GET /lib/css/bootstrap.min.css HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Mon, 25 Jul 2016 07:53:28 GMT
Accept-Ranges: bytes
ETag: "08c15a149e6d11:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:01 GMT
Content-Length: 27676


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   27676
Md5:    138518634e038b26320dc8380a716168
Sha1:   d7a57926f2f2beb9fd307f9c71dd8d4fb019feea
Sha256: f612e751b82e3ed8f57a1e9f2f44227752a98dceab22573b14fab2806078bce4
                                        
                                            GET /lib/js/jquery.SuperSlide.2.1.1.js HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Mon, 23 Apr 2018 08:43:24 GMT
Accept-Ranges: bytes
ETag: "09ef923dfdad31:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 5253


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   5253
Md5:    0643b546ab828d4f422bf1f16cb3725e
Sha1:   22a04f762a58ba8474b4540ffd26478b85a82160
Sha256: bef2253b66391db4fade28370f82a916feed37f99d2969884656d79729837fec

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /lib/css/animate.css HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Fri, 22 Jun 2018 10:01:00 GMT
Accept-Ranges: bytes
ETag: "0d6f3ebfad41:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 7516


--- Additional Info ---
Magic:  ASCII text
Size:   7516
Md5:    5c3c9f82cb96a66d4a9f94723fbfcc84
Sha1:   13955f1e42f79cd840d5330f644f53b5a3325462
Sha256: dcf6f72fb7c99cebb1b188168ae01bc17bcad6eacfd8bed1d569bb330b3c0500
                                        
                                            GET /lib/js/bootstrap.min.js HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Mon, 25 Jul 2016 07:53:30 GMT
Accept-Ranges: bytes
ETag: "0b946a249e6d11:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 13045


--- Additional Info ---
Magic:  ASCII text, with very long lines (32033)
Size:   13045
Md5:    3f9ec5c445cf8f77a6390449a7541505
Sha1:   669418484f3303459663923b63a579a879727b05
Sha256: d93d22df61a1ecf911a54330835bb468fb26e5f10e0555cb48a464dfe69d7648

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/script.js HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Mon, 23 Mar 2020 09:59:54 GMT
Accept-Ranges: bytes
ETag: "09fdccf90d61:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 768


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (460), with CRLF line terminators
Size:   768
Md5:    4833ff1f8372b36e2e8dfe6fa091c56e
Sha1:   cd5480ff15870f5b2df12844398c9432499f761c
Sha256: 3177fcc5daebc16aeae1262e7e942616870d6011f75e4ad4b5893748d7ec4b9e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/my.js HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Tue, 05 Jun 2018 08:41:00 GMT
Accept-Ranges: bytes
ETag: "036e8eda8fcd31:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 1812


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   1812
Md5:    3db8b50248fb3b44f3dc90d8cb20c70a
Sha1:   def2d535eb15bf83b37950d51fe0276d41e275d7
Sha256: 6425d800e0f641aa48cc5e362feee6250dcb3e83f1196e8af955ec76dbc69d54

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/wow.js HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Wed, 03 Sep 2014 08:11:50 GMT
Accept-Ranges: bytes
ETag: "0277cb64ec7cf1:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 4015


--- Additional Info ---
Magic:  ASCII text
Size:   4015
Md5:    9752aea91552a7ad649bbdd6a5c95944
Sha1:   a1c7ff78a3b86abc0c97385d2456fa2346ab8143
Sha256: 7a37f8393d49e34d09877c3d445e38d1aeac359a45451f53a8efe88eb22fdc6f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /Js/Jquery.js HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=604800
Content-Encoding: gzip
Last-Modified: Thu, 11 Oct 2018 01:41:44 GMT
Accept-Ranges: bytes
ETag: "03ca390361d41:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:01 GMT
Content-Length: 41458


--- Additional Info ---
Magic:  ASCII text, with very long lines (32089), with CRLF line terminators
Size:   41458
Md5:    66954c2d83c691ffe9dbf6931179479f
Sha1:   846a382dbcc17399d4430882194391d88eb0b0dc
Sha256: e86ff42e16bc54eea35904d9b6cee4c7cedca98c9b5211dc41414ef9e4d09122

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /image/20.png HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=604800
Last-Modified: Wed, 04 Dec 2019 00:59:10 GMT
Accept-Ranges: bytes
ETag: "036b93eaad51:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 886


--- Additional Info ---
Magic:  PNG image data, 25 x 20, 8-bit colormap, non-interlaced\012- data
Size:   886
Md5:    e979530e6598ae7d406e410ff46589c0
Sha1:   d860c876fb244428dc78ae92f54787003114e03c
Sha256: 320df6629f360fd9ea3bf6e27249dd25d5e4450f3cb64867a16aa15ead1218c6
                                        
                                            GET /js/swiper.js HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=604800
Transfer-Encoding: chunked
Content-Encoding: gzip
Last-Modified: Thu, 01 Nov 2018 10:58:10 GMT
Accept-Ranges: bytes
ETag: "04debc6d171d41:0"
Vary: Accept-Encoding
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT


--- Additional Info ---
Magic:  ASCII text
Size:   70084
Md5:    930b81200a823a2c2621a7a21aef5d83
Sha1:   fb97a9f7d27bd41b74a7066561a3313587e2ce4e
Sha256: 2ae0f152fc2895b855753bae71d2f90d9a25e2941e6b869fe97ccd1dc3552b9c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /lib/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.szjrgas.com/lib/css/bootstrap.min.css
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: application/font-woff2
                                        
Cache-Control: max-age=604800
Last-Modified: Mon, 14 May 2018 10:31:28 GMT
Accept-Ranges: bytes
ETag: "0406ab76eebd31:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 18028


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Size:   18028
Md5:    448c34a56d699c29117adc64c43affeb
Sha1:   ca35b697d99cae4d1b60f2d60fcd37771987eb07
Sha256: fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /image/p14-icon5.png HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/css/index.css
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=604800
Last-Modified: Tue, 23 Oct 2018 01:05:08 GMT
Accept-Ranges: bytes
ETag: "03aad706c6ad41:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:03 GMT
Content-Length: 1012


--- Additional Info ---
Magic:  PNG image data, 38 x 11, 8-bit/color RGBA, non-interlaced\012- data
Size:   1012
Md5:    8dad2fa982bb4c6cb70b42c9a1ac7df4
Sha1:   d979f7e0a0fb3ded5670c8bf5bcbe7fc63cf3fc2
Sha256: 786890b37646642e6e175c27abcef40b843e0acfd85344eb83ef3f4e77a6ebf8
                                        
                                            GET /image/top_01.jpg HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/css/index.css
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=604800
Last-Modified: Tue, 28 Sep 2021 00:05:47 GMT
Accept-Ranges: bytes
ETag: "80ff9196fcb3d71:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:03 GMT
Content-Length: 53918


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=112, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1920x112, components 3\012- data
Size:   53918
Md5:    d0b944c9e8ef6b0f899eb43748ee766a
Sha1:   8f48d0ac7c40250bb7360a5de64700a61f5c2490
Sha256: 9b285c82081e8a78cc17a658909968d8c554803d9e5279b828cc06bc0f2b104a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7721
Expires: Thu, 08 Sep 2022 00:57:44 GMT
Date: Wed, 07 Sep 2022 22:49:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7721
Expires: Thu, 08 Sep 2022 00:57:44 GMT
Date: Wed, 07 Sep 2022 22:49:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7721
Expires: Thu, 08 Sep 2022 00:57:44 GMT
Date: Wed, 07 Sep 2022 22:49:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7721
Expires: Thu, 08 Sep 2022 00:57:44 GMT
Date: Wed, 07 Sep 2022 22:49:03 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F703333f6-0141-4f21-97c4-c72f35090252.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4570
x-amzn-requestid: c8acc548-6455-4951-9ca0-245a1c3bdf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9VYGwEoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f55-58f59c61714ed9761d39c8b4;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UiG7UKRQy_MGckOpAsfoV4PUZZ2o8ko7Q6hqeYlzo5XS0874Cf2gxQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:02:08 GMT
age: 2815
etag: "b469f24dbfe01ee68650ef1b0abd6badb83e3325"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4570
Md5:    c870cb13eb9cbc6e3cb66814dc06a157
Sha1:   b469f24dbfe01ee68650ef1b0abd6badb83e3325
Sha256: d4dc98f6d2d86a94c85056797a4efd9ab938651fb06bf421c661b78a5c9d9319
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 05:10:03 GMT
age: 63540
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6214
Md5:    f922505178de0cea92eedcfda85a9f67
Sha1:   50f1459de01174e594e03e7df4dfaa8eb1798672
Sha256: 981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b1ceaeb-6cf1-42e7-b7e3-28eb631f4b98.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12131
x-amzn-requestid: c190466e-eab9-4705-be7e-9724d240a1a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9VNF8BoAMFYBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f54-0f718d821b0107bb1b1474a9;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:28 GMT
x-amz-cf-pop: SFO20-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f88GXTqODlTXl1sX4BakGIcPj0sGV6IUQ3R8zpBQwg-QEGe3YstK0Q==
via: 1.1 36cc13280ef76bb2fee6ae5eed6fec2e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:47:44 GMT
age: 3679
etag: "339fc154a29a7459101dd6125bebf38219bfd11a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12131
Md5:    77aa1349e0d44b4756bbede0cbd05413
Sha1:   339fc154a29a7459101dd6125bebf38219bfd11a
Sha256: 74e6439067201bba5e0edc7fd477c62c0566c5fac30b035150d06fea2d30cce0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lbCmv9fV9iBGOQvxRzleYwC5dBYeu1kRgSSkC2hycDmavyXj-KlFSw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:24:59 GMT
age: 1444
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7492
Md5:    a07d553b6441514870ed7e9e989a29a7
Sha1:   98c145b9326d1e6036fa9089d87a25232dd45b0b
Sha256: 373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0564fe6-5557-4644-ba02-30e6de571e27.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7923
x-amzn-requestid: 657663ba-b3e9-4a84-9186-3f13ad230765
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9VsGsQoAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f57-6fc934984bba83fe1b91056f;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: LJHVcK1c7pNCYdAONIQDous9DHHeTn7W2Ker2Jl699G9mNn07U7qUw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:02:24 GMT
etag: "63e6e7d760e736c45ca4778111ea8e61eb13edd6"
age: 2799
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7923
Md5:    786824349d0ac6933b5beb4a10ce9cc7
Sha1:   63e6e7d760e736c45ca4778111ea8e61eb13edd6
Sha256: 4aea707f67116f423b68bd19e946b167b48c920693663f2b7b270c86947bffdb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14aa345c-bb84-4f98-baec-fbf23ee3d778.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5755
x-amzn-requestid: 897520a8-3b51-4e6e-843b-2698aada72fa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9bqH7PIAMF0bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f7d-1310b45e2af9cde575c8b71d;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: bIdDIzR0_WkQR_Eq1kPO9i3ZbADpOB_mVcdTp80nLRqNQHp6r2BSAA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:25:15 GMT
etag: "95b9ececb227d1976c99db67695c057aebea990d"
age: 1428
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5755
Md5:    1b0c375abb664a29d73855e858a708b3
Sha1:   95b9ececb227d1976c99db67695c057aebea990d
Sha256: 242318dcfb94f2e3e497801491fed84b42fe94396e6feb2476b2257c964ca989
                                        
                                            GET /image/21.png HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=604800
Last-Modified: Wed, 04 Dec 2019 00:59:22 GMT
Accept-Ranges: bytes
ETag: "01192103eaad51:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:03 GMT
Content-Length: 921


--- Additional Info ---
Magic:  PNG image data, 23 x 23, 8-bit colormap, non-interlaced\012- data
Size:   921
Md5:    ea6b0ead647a7f19fc537f61d373d36c
Sha1:   53842d86564424d1b426daa6746c5d90d0bda54f
Sha256: cc243380719f750a1de3c32d265c5b4eda8d8fa141527dc63aeee566ae748b51
                                        
                                            GET /image/1.png HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=604800
Last-Modified: Sat, 14 Dec 2019 06:31:38 GMT
Accept-Ranges: bytes
ETag: "0c17b2348b2d51:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:03 GMT
Content-Length: 939


--- Additional Info ---
Magic:  PNG image data, 27 x 27, 8-bit colormap, non-interlaced\012- data
Size:   939
Md5:    66a0d21ea908e32b87d1bb828d372596
Sha1:   429d604d4ea60948dfdf3d4fb047284e041050bb
Sha256: 8cd8a37ec31532596c27be5852a93366d39f73fbc39f119c75cb2be281bd5081
                                        
                                            GET /image/22.png HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=604800
Last-Modified: Wed, 04 Dec 2019 00:59:44 GMT
Accept-Ranges: bytes
ETag: "00af1d3eaad51:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:03 GMT
Content-Length: 1312


--- Additional Info ---
Magic:  PNG image data, 19 x 29, 8-bit colormap, non-interlaced\012- data
Size:   1312
Md5:    9fd22bdf512c0937a753d5a28ea6b89d
Sha1:   b2df611ab72fdccde39d07b1ba5905ca8790cbfc
Sha256: b455e915b5760cd9a26f96016b9b027d889edbd35b89a2c5023397329bfcdfcf
                                        
                                            GET /image/23.png HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=604800
Last-Modified: Mon, 23 Dec 2019 01:37:50 GMT
Accept-Ranges: bytes
ETag: "02b189631b9d51:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:03 GMT
Content-Length: 23924


--- Additional Info ---
Magic:  PNG image data, 294 x 156, 8-bit/color RGBA, non-interlaced\012- data
Size:   23924
Md5:    87d6500368f91a8316ff1682bb2d9d1a
Sha1:   424af7ebc434686fe74a43835aa751d72d6fee1d
Sha256: 1ed3faa901542a184717fbab8aa461fc8ed912dbd98a2d37a4a37172bd292b42
                                        
                                            GET /UpLoad/201912/2019122040817393.jpg HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=604800
Last-Modified: Fri, 20 Dec 2019 03:20:16 GMT
Accept-Ranges: bytes
ETag: "0182866e4b6d51:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 890036


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x750, components 3\012- data
Size:   890036
Md5:    044e7262b0f1832b8a6ef16bd159fda0
Sha1:   ea6fa8c0b86266a082f8e4fc2dada10ba8a62f4c
Sha256: 70865342eb24fba981faa0a328d81d6323dee7b80aa3d8a0eb5c92fdd3cf2f6a
                                        
                                            GET /UpLoad/201912/2019122040852629.jpg HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=604800
Last-Modified: Fri, 20 Dec 2019 03:20:52 GMT
Accept-Ranges: bytes
ETag: "0429d7be4b6d51:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 938405


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x750, components 3\012- data
Size:   938405
Md5:    05aaae32a599d6fa8d944043973ddef3
Sha1:   11f25b6e102282a71a3453b3e4c812f77a9abb43
Sha256: 02c3f396a927fb1016026d7c00c44fff6a1a6be0462da74962b847b8cc75354d
                                        
                                            GET /UpLoad/201912/2019122040843469.jpg HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=604800
Last-Modified: Fri, 20 Dec 2019 03:20:42 GMT
Accept-Ranges: bytes
ETag: "061a775e4b6d51:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 1084687


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x750, components 3\012- data
Size:   1084687
Md5:    b6bf2ce7a26ee525ba145d5f766218d2
Sha1:   cad10fac71dc725e1b4ce9a5d137391ec01eda73
Sha256: 152088fe27fde157d540537dd397c81833693dc89ef81a64e5982eb811aed524
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Sep 2022 22:49:05 GMT
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 11 Sep 2022 20:47:05 GMT
ETag: "1ece570864d32522e804340b3c69425d54c6b6f4"
Last-Modified: Wed, 07 Sep 2022 20:47:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 598
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7472fedffe17b4f3-OSL


--- Additional Info ---
Magic:  data
Size:   1459
Md5:    81926c4c11b6f6d0b06f23559b8f54cf
Sha1:   1ece570864d32522e804340b3c69425d54c6b6f4
Sha256: e6b3d9a18724f92038007217a15ab0ca0ba4e1833971d22e8ffe2228720ab516
                                        
                                            GET /image/images/2_02.jpg HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=604800
Last-Modified: Sat, 14 Dec 2019 06:32:00 GMT
Accept-Ranges: bytes
ETag: "0b0983048b2d51:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:03 GMT
Content-Length: 832254


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x750, components 3\012- data
Size:   832254
Md5:    aa5366caf0e9528d3bcd5825de1bbda8
Sha1:   02d0187be51bc3c331970fe6e20239d1c2d28d27
Sha256: 108a53f78ad39a7dc09a0cab1460076a3c4999c417ec17022ea2a6ed9b98bbe1
                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Sep 2022 22:49:05 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 11 Sep 2022 20:39:45 GMT
ETag: "d2cb1fede5e0f6a103f9e3cd3b216fb8a1dca7b1"
Last-Modified: Wed, 07 Sep 2022 20:39:46 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1082
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7472fee10dddb52d-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    874535cb0731688980ae208d181d2822
Sha1:   d2cb1fede5e0f6a103f9e3cd3b216fb8a1dca7b1
Sha256: 3ba2cbc777fa62e944068f6354ccd33c30d0af9ed72ec1ec15d1d27893affb6b
                                        
                                            GET /push.js HTTP/1.1 
Host: push.zhanzhang.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/

                                         
                                         39.156.68.163
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Date: Wed, 07 Sep 2022 22:49:05 GMT
Etag: "4078521116"
Expires: Thu, 07 Sep 2023 22:49:05 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=EBE8B5D316880654B79E56A8C9EA1A71:FG=1; max-age=31536000; expires=Thu, 07-Sep-23 22:49:05 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   227
Md5:    e548b6ce15bb616c2bfba36e9cfbf307
Sha1:   a348285d9928a6548a57569f1fb9d62bdd747f33
Sha256: 7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
                                        
                                            GET /image/r_qq.png HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/css/index.css
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628; __tins__21327943=%7B%22sid%22%3A%201662590938795%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662592738795%7D; __51cke__=; __51laig__=1

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=604800
Last-Modified: Tue, 13 Dec 2016 01:00:54 GMT
Accept-Ranges: bytes
ETag: "0a7cb5adc54d21:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:05 GMT
Content-Length: 1975


--- Additional Info ---
Magic:  PNG image data, 72 x 73, 8-bit/color RGBA, non-interlaced\012- data
Size:   1975
Md5:    91ca0758a05ea93f9f220c1b109c31fe
Sha1:   657107565e731fa0ccfbee00190156f2779249e3
Sha256: 723b5bab071fc20b49826f2c70a86777eac456f0c16acdcedbc986bb9185a212
                                        
                                            GET /image/weixin.jpg HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628; __tins__21327943=%7B%22sid%22%3A%201662590938795%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662592738795%7D; __51cke__=; __51laig__=1

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=604800
Last-Modified: Tue, 13 Dec 2016 01:00:54 GMT
Accept-Ranges: bytes
ETag: "0a7cb5adc54d21:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:05 GMT
Content-Length: 61468


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2014:07:28 10:19:21], progressive, precision 8, 430x430, components 3\012- data
Size:   61468
Md5:    2bdb3fb330c0f10df6a1a9ad4b9220f5
Sha1:   181755c83d80537786b71721d72d07453b3933b9
Sha256: d9a3ed7447672c380973dde28cffee37be413ee3edb0e2816839d51ebbdb98e2
                                        
                                            GET /image/r_b.png HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/css/index.css
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628; __tins__21327943=%7B%22sid%22%3A%201662590938795%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662592738795%7D; __51cke__=; __51laig__=1

                                         
                                         61.155.209.107
HTTP/1.1 404 Not Found
                                        
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:05 GMT
Content-Length: 816


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   816
Md5:    4d07f05b6514decb559af16ea9fe93a8
Sha1:   172a223742fcf64348ec5fb0fc129e98518715eb
Sha256: ff90e00695698e1d4e29434314f7e7f6cabeb5ae6ae8aae95441e1841a87cf4a
                                        
                                            GET /image/r_phone.png HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/css/index.css
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628; __tins__21327943=%7B%22sid%22%3A%201662590938795%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662592738795%7D; __51cke__=; __51laig__=1

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=604800
Last-Modified: Tue, 13 Dec 2016 01:00:54 GMT
Accept-Ranges: bytes
ETag: "0a7cb5adc54d21:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:05 GMT
Content-Length: 2053


--- Additional Info ---
Magic:  PNG image data, 72 x 73, 8-bit/color RGBA, non-interlaced\012- data
Size:   2053
Md5:    1a076570671c4c2e105cacf6468d4e0f
Sha1:   5d8731052a85d050e57467941068f01e37d4f001
Sha256: 03ca0240f74cbd86c00dfdca8c39cc0dcb2a0d200c314abfcc048ae1a6940ab4
                                        
                                            GET /z_stat.php?id=1278730204&show=pic1 HTTP/1.1 
Host: v1.cnzz.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         220.185.164.250
HTTP/2 200 OK
content-type: application/javascript
                                        
server: Tengine
date: Wed, 07 Sep 2022 22:49:05 GMT
vary: Accept-Encoding
x-powered-by: PHP/5.5.25
last-modified: Wed, 07 Sep 2022 22:49:05 GMT
cache-control: max-age=1800,s-maxage=3600
content-encoding: gzip
ali-swift-global-savetime: 1662590945
via: cache71.l2cn1836[37,37,200-0,M], cache43.l2cn1836[39,0], cache19.cn4100[56,56,200-0,M], cache8.cn4100[58,0]
x-cache: MISS TCP_REFRESH_MISS dirn:1:261267385
x-swift-savetime: Wed, 07 Sep 2022 22:49:05 GMT
x-swift-cachetime: 3600
timing-allow-origin: *
eagleid: dcb9a49c16625909456281358e
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 770
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 22:49:06 GMT
Last-Modified: Wed, 07 Sep 2022 22:36:16 GMT
Server: ECS (amb/6BBE)
X-Cache: HIT
Content-Length: 727

                                        
                                            GET /hm.js?d331465e5802ab18143dd7776cff8683 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11348
Date: Wed, 07 Sep 2022 22:49:05 GMT
Etag: 3a9e1f3b20374bb4a0e56ed61857f8b3
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=7629D238E4B253BD; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (635)
Size:   11348
Md5:    aa0c41c6766bf2fc09a7a9638792aa02
Sha1:   93c960088a77b7479d90ac9574a6caed762372cc
Sha256: 5768a3568ad64f6da95a1b03a9168700bc33ca5b3395c9db7aee68509273c728
                                        
                                            GET /s.gif?l=http://www.szjrgas.com/newsshow_14.html HTTP/1.1 
Host: api.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/

                                         
                                         182.61.201.94
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
                                        
Content-Length: 0
Date: Wed, 07 Sep 2022 22:49:06 GMT

                                        
                                            GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1912653427&si=d331465e5802ab18143dd7776cff8683&v=1.2.97&lv=1&sn=33525&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.szjrgas.com%2Fnewsshow_14.html&tt=%E7%94%B2%E9%86%87%E8%A3%82%E8%A7%A3%E5%88%B6%E6%B0%A2%E5%82%AC%E5%8C%96%E5%89%82%E7%9A%84%E6%93%8D%E4%BD%9C%E5%B7%A5%E8%89%BA%E5%8E%9F%E7%90%86_%E8%A1%8C%E4%B8%9A%E6%96%B0%E9%97%BB_%E8%8B%8F%E5%B7%9E%E4%BD%B3%E7%91%9E%E6%B0%94%E4%BD%93%E7%B3%BB%E7%BB%9F%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Wed, 07 Sep 2022 22:49:07 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=430616D8375A5368; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /UpLoad/201912/2019122454679253.jpg HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=604800
Last-Modified: Tue, 24 Dec 2019 07:11:18 GMT
Accept-Ranges: bytes
ETag: "06f345629bad51:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:02 GMT
Content-Length: 1102125


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x750, components 3\012- data
Size:   1102125
Md5:    a4875721808d37afc2a314ebaac6bc8a
Sha1:   62a18acb28e95f8efee67ec10da978a575de7d15
Sha256: 60464b370e94ec5801e4f2259b38136aca8f4b24b9e7fdd94d8873a08981551d
                                        
                                            GET /code/code/0ea78cf357986a99a03ccb9c950675187/3 HTTP/1.1 
Host: tb.53kf.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         159.138.23.7
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Server: openresty
Date: Wed, 07 Sep 2022 22:49:06 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Content-Encoding: gzip
Set-Cookie: guest_id=11581292866000; Expires=Tue, 1 Jan 2030 00:00:00 GMT; Domain=.53kf.com; Path=/ SESSION_COOKIE=mastertb2_1; path=/
Cache-control: private


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (656), with CRLF, LF line terminators
Size:   37899
Md5:    2a964eee89f4728a8a2871c34121e217
Sha1:   ac7ba081862cfdc93d55fdd170eec668146a9cd7
Sha256: f25e9bf84d3804f6ab8aff5d7df7f4da2b9bfa25dee30fa95d82c83ee71cd7b3
                                        
                                            GET /sendacc.jsp?cmd=ACC&did=0&sid=12&company_id=72634441&guest_id=11581292866000&status=0&guest_name=&guest_ip=91.90.42.154&guest_ip_info=%E6%8C%AA%E5%A8%81&area=Oslo%2D&from_page=&talk_page=http%3A%2F%2Fwww.szjrgas.com%2Fnewsshow_14.html&kf_time=1662590946&bto_id6d=-99&time=1662590940593&ucust_id=&style=3&is_mobile=n&visitor_type=new&is_uv=1&browser=firefox&os=linux&is_revisit=0&page_title=%E7%94%B2%E9%86%87%E8%A3%82%E8%A7%A3%E5%88%B6%E6%B0%A2%E5%82%AC%E5%8C%96%E5%89%82%E7%9A%84%E6%93%8D%E4%BD%9C%E5%B7%A5%E8%89%BA%E5%8E%9F%E7%90%86_%E8%A1%8C%E4%B8%9A%E6%96%B0%E9%97%BB_%E8%8B%8F%E5%B7%9E%E4%BD%B3%E7%91%9E%E6%B0%94%E4%BD%93%E7%B3%BB%E7%BB%9F%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1 
Host: accwww14.53kf.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/

                                         
                                         101.66.249.199
HTTP/1.1 200 OK
Content-Type: text/html;Charset=utf-8
                                        
Server: openresty
Date: Wed, 07 Sep 2022 22:49:07 GMT
Content-Length: 20
Connection: close
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   20
Md5:    872994930e3a7ae30adb199f515ffdff
Sha1:   6d8ed0c5a077c66e1407b22341ad72f5309c616c
Sha256: 70c7cda673633bdfe6dc8c288d7bfa3152b2bb05b030bd2d13661b5ab8dedd15
                                        
                                            GET /js/default/assign_worker_default.js?v=2017080212 HTTP/1.1 
Host: www14.53kf.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         101.66.249.199
HTTP/2 200 OK
content-type: application/x-javascript
                                        
server: openresty
date: Wed, 07 Sep 2022 22:49:08 GMT
content-length: 182
last-modified: Fri, 24 Feb 2017 07:03:56 GMT
etag: "58afdadc-b6"
expires: Sat, 10 Sep 2022 22:49:08 GMT
cache-control: max-age=259200
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   182
Md5:    978b8d8fc7a22cb8fe6db8cece56167f
Sha1:   d4c9e043abadc273f3e7684b8dfe702516f21a46
Sha256: 5276d8ba19248e15b73a6dadd18c7d44c2774a06ef9bf8d9c1d5b0d35d6e202b
                                        
                                            GET /site/666/d331465e5802ab18143dd7776cff8683/b.js?siteId=7329805 HTTP/1.1 
Host: goutong.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         14.215.177.164
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: no-cache
date: Wed, 07 Sep 2022 22:49:08 GMT
pragma: no-cache
server: Apache
x-envoy-decorator-operation: im-icon.meg-crm-prod.svc.cluster.local:2333/*
x-envoy-upstream-service-time: 305
x-protected-by: OpenRASP
x-request-id: fc2f4a25fcb34ec7ae88354ddca5992b
content-length: 5282
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5152), with no line terminators
Size:   5282
Md5:    5ab09aed7340181e2f61c1993419b533
Sha1:   ed99a65f873dd48612d67ae2cda60d95204966b2
Sha256: b35fb88e4dda886307c02bd28c26f30c38870f33738efd53f6c1a93f4f524bce
                                        
                                            GET /kf_ivt_new.php?kf_sign=jU5MDMTY2Mk0NjExNTgxMjkyODY2MDAwNzI2MzQ0NDE=&arg=10634441&style=3&isonline=0&kfonline=0&lang=cn&resize=yes&charset=GBK&kflist=off&kf=&zdkf_type=1&lnk_overflow=0&callback_id6ds=&guest_id=11581292866000&referer=http%3A%2F%2Fwww.szjrgas.com%2Fnewsshow_14.html&keyword=&tpl_name=crystal_blue&tpl_width=800&tpl_height=600&uid=3a2c8e30b811aed404087d63d0e54923&is_group=&0.08138105171071053&talktitle=%E7%94%B2%E9%86%87%E8%A3%82%E8%A7%A3%E5%88%B6%E6%B0%A2%E5%82%AC%E5%8C%96%E5%89%82%E7%9A%84%E6%93%8D%E4%BD%9C%E5%B7%A5%E8%89%BA%E5%8E%9F%E7%90%86_%E8%A1%8C%E4%B8%9A%E6%96%B0%E9%97%BB_%E8%8B%8F%E5%B7%9E%E4%BD%B3%E7%91%9E%E6%B0%94%E4%BD%93%E7%B3%BB%E7%BB%9F%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8&uuid_53kf=57b9e93820de6ddaca83e6f940c471b7 HTTP/1.1 
Host: www14.53kf.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         101.66.249.199
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
server: openresty
date: Wed, 07 Sep 2022 22:49:08 GMT
vary: Accept-Encoding, Accept-Encoding
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
set-cookie: uuid_53kf_72634441=57b9e93820de6ddaca83e6f940c471b7; path=/; domain=.53kf.com 091090042154=%E5%A5%A5%E6%96%AF%E9%99%86%E5%A5%A5%E6%96%AF%E9%99%86%2CBlix%20Solutions%20AS; expires=Thu, 08-Sep-2022 22:49:08 GMT; Max-Age=86400; path=/
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   17537
Md5:    c674c8db699d1a6ec654676fdef2d62d
Sha1:   c45c1700428aa7b208689fe11c2be9db0e122d4d
Sha256: 7e63a0a1fc3a91ef4746f0561f0b53281c8e5c63a218abd5b1a9dc3217037395
                                        
                                            GET /custom/72634441/mobile_chat_72634441_3.js?v=1654128837 HTTP/1.1 
Host: www14.53kf.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         101.66.249.199
HTTP/2 200 OK
content-type: application/x-javascript
                                        
server: openresty
date: Wed, 07 Sep 2022 22:49:08 GMT
last-modified: Thu, 02 Jun 2022 00:13:57 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"629800c5-5ec"
expires: Sat, 10 Sep 2022 22:49:08 GMT
cache-control: max-age=259200
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   4784
Md5:    d5c0048ddb7b7232696cc13ad6efac6c
Sha1:   8b90559d670d5e3745929396035efafefeafa56b
Sha256: 5c67a7bcfc60153ba6fce5348d59eb476b2d728059c51592aea471b42aeddeaa
                                        
                                            GET /UpLoad/201912/2019122454501193.jpg HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628

                                         
                                         61.155.209.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=604800
Last-Modified: Tue, 24 Dec 2019 07:08:20 GMT
Accept-Ranges: bytes
ETag: "0ca1bec28bad51:0"
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:03 GMT
Content-Length: 1073667


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x750, components 3\012- data
Size:   1073667
Md5:    11b25871d5c8a7acb5356e04ec56145f
Sha1:   7137b0a065eb2dd5399b61bb9ef9800c0817dfc1
Sha256: a4d1bcfc76c114c10c246b029976aab8045e1337353a3de0496e0c97f3052523
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.szjrgas.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/newsshow_14.html
Cookie: ASPSESSIONIDCQRBDAQQ=FALLLHAAKDFMLOPLOPKDDONC; _d_id=262e0dc2dbabbfcf6209908ee93628; __tins__21327943=%7B%22sid%22%3A%201662590938795%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662592738795%7D; __51cke__=; __51laig__=1; Hm_lvt_d331465e5802ab18143dd7776cff8683=1662590940; Hm_lpvt_d331465e5802ab18143dd7776cff8683=1662590940; 53gid2=11581292866000; visitor_type=new; 53gid0=11581292866000; 53gid1=11581292866000; 53revisit=1662590940591; 53kf_72634441_from_host=www.szjrgas.com; 53kf_72634441_keyword=; uuid_53kf_72634441=57b9e93820de6ddaca83e6f940c471b7; 53kf_72634441_land_page=http%253A%252F%252Fwww.szjrgas.com%252Fnewsshow_14.html; kf_72634441_land_page_ok=1; 53uvid=1; onliner_zdfq72634441=0

                                         
                                         61.155.209.107
HTTP/1.1 404 Not Found
                                        
Server: Yxlink
Date: Wed, 07 Sep 2022 22:49:08 GMT
Content-Length: 816


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   816
Md5:    4d07f05b6514decb559af16ea9fe93a8
Sha1:   172a223742fcf64348ec5fb0fc129e98518715eb
Sha256: ff90e00695698e1d4e29434314f7e7f6cabeb5ae6ae8aae95441e1841a87cf4a
                                        
                                            GET /custom/72634441/mobile_icon_72634441_3.js?v=1654128837 HTTP/1.1 
Host: www14.53kf.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         101.66.249.199
HTTP/2 200 OK
content-type: application/x-javascript
                                        
server: openresty
date: Wed, 07 Sep 2022 22:49:08 GMT
last-modified: Thu, 02 Jun 2022 00:13:57 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"629800c5-e41"
expires: Sat, 10 Sep 2022 22:49:08 GMT
cache-control: max-age=259200
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (61887)
Size:   75611
Md5:    5ebfa16bca803b62ea0657497385fa3e
Sha1:   466dc50a092d6615eda21c8ee85c0898a0d2404c
Sha256: 6456f41b2a0a395d946982399ec40c25e7bd92205ab1cb41a46cb7fdc8ded35d
                                        
                                            GET /embed/1662523498/asset/embed/css/pc/main.css HTTP/1.1 
Host: sgoutong.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/

                                         
                                         112.34.112.222
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000
Connection: keep-alive
Content-Encoding: gzip
Date: Wed, 07 Sep 2022 22:49:10 GMT
Last-Modified: Wed, 07 Sep 2022 04:05:59 GMT
Server: nginx/1.6.2
Vary: Accept-Encoding
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   10678
Md5:    ade42278d407772416378c820d335a01
Sha1:   31f2abc77737014d92e87c84395169691f513b9e
Sha256: 18e285f87ef12c470196557345fde68a0d0e8b285f9362f0ec8725c6168d1719
                                        
                                            GET /eye/log/js/stat.gif?uuid=uuid_f8be0866-eafd-444d-9b9c-518ccc2ee066&brgeyemid=m2008&t=1662590943184&ip=&dtype=1&ucid=6253110&uid=-1&siteid=7329805&tabid=tabid_1662590943184&bid=166259094318380108&sessionid=-100&originType=0&likeCrm=0&ideaType=-1&query=-1 HTTP/1.1 
Host: sgoutong.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/

                                         
                                         112.34.112.222
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000
Connection: keep-alive
Content-Length: 0
Date: Wed, 07 Sep 2022 22:49:10 GMT
Etag: "55b1e560-0"
Last-Modified: Fri, 24 Jul 2015 07:12:32 GMT
Server: nginx/1.6.2

                                        
                                            GET /embed/1662523498/asset/embed/css/pc/message/img/nodeMin.png HTTP/1.1 
Host: sgoutong.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgoutong.baidu.com/embed/1662523498/asset/embed/css/pc/main.css

                                         
                                         112.34.112.222
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000
Connection: keep-alive
Content-Length: 191
Date: Wed, 07 Sep 2022 22:49:10 GMT
Etag: "63181894-bf"
Last-Modified: Wed, 07 Sep 2022 04:05:40 GMT
Server: nginx/1.6.2


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   191
Md5:    091df0a839bc3c5b5e5981e67299e806
Sha1:   dd5521ae83bcddfd7045430dbb09f295d2051d75
Sha256: 82c7ec53a91ea661211c5ff7a1d5341afba6cfb5c608f1adf5b3e49d75492cd6
                                        
                                            GET /embed/1662523498/asset/embed/css/pc/message/img/user.png HTTP/1.1 
Host: sgoutong.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgoutong.baidu.com/embed/1662523498/asset/embed/css/pc/main.css

                                         
                                         112.34.112.222
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000
Connection: keep-alive
Content-Length: 394
Date: Wed, 07 Sep 2022 22:49:10 GMT
Etag: "63181894-18a"
Last-Modified: Wed, 07 Sep 2022 04:05:40 GMT
Server: nginx/1.6.2


--- Additional Info ---
Magic:  PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size:   394
Md5:    c9af92d4076b8a8c5282dcd7d58e6738
Sha1:   e96c6996707131a377c9d223aa3ecdd65a44e976
Sha256: 3ed8fe9e90164335921f684e50af4ec7702b69cc98f60c4d8c4a7807a8a304e0
                                        
                                            GET /embed/1662523498/asset/embed/css/pc/message/img/nodephone.png HTTP/1.1 
Host: sgoutong.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgoutong.baidu.com/embed/1662523498/asset/embed/css/pc/main.css

                                         
                                         112.34.112.222
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000
Connection: keep-alive
Content-Length: 485
Date: Wed, 07 Sep 2022 22:49:10 GMT
Etag: "63181894-1e5"
Last-Modified: Wed, 07 Sep 2022 04:05:40 GMT
Server: nginx/1.6.2


--- Additional Info ---
Magic:  PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size:   485
Md5:    aea9c44c7d13ac4da21c0cab8ea723d8
Sha1:   238d0f326a1afad794cf5f96027ea97c3ac2ad1c
Sha256: c2ae83a25dce0d4a1ca4030dff25bcb314f6a3f64a512c7ab2e641ae97a665fa
                                        
                                            GET /eye/log/js/stat.gif?uuid=uuid_d29a09b7-aa58-488e-8e34-31e1cb500de8&brgeyemid=m2001&t=1662590943198&ip=&dtype=1&ucid=6253110&uid=-1&siteid=7329805&tabid=tabid_1662590943184&bid=166259094318380108&sessionid=-100&originType=0&likeCrm=0&ideaType=-1&query=-1 HTTP/1.1 
Host: sgoutong.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/

                                         
                                         112.34.112.222
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000
Connection: keep-alive
Content-Length: 0
Date: Wed, 07 Sep 2022 22:49:10 GMT
Etag: "55b1e560-0"
Last-Modified: Fri, 24 Jul 2015 07:12:32 GMT
Server: nginx/1.6.2

                                        
                                            GET /eye/log/js/stat.gif?uuid=uuid_d29a09b7-aa58-488e-8e34-31e1cb500de8&brgeyemid=m2002&t=1662590943199&ip=&dtype=1&ucid=6253110&uid=-1&siteid=7329805&tabid=tabid_1662590943184&bid=166259094318380108&sessionid=-100&originType=0&likeCrm=0&ideaType=-1&query=-1 HTTP/1.1 
Host: sgoutong.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szjrgas.com/

                                         
                                         112.34.112.222
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000
Connection: keep-alive
Content-Length: 0
Date: Wed, 07 Sep 2022 22:49:10 GMT
Etag: "55b1e560-0"
Last-Modified: Fri, 24 Jul 2015 07:12:32 GMT
Server: nginx/1.6.2

                                        
                                            GET /embed/1662523498/asset/embed/css/pc/message/img/nodemail.png HTTP/1.1 
Host: sgoutong.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgoutong.baidu.com/embed/1662523498/asset/embed/css/pc/main.css

                                         
                                         112.34.112.222
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000
Connection: keep-alive
Content-Length: 450
Date: Wed, 07 Sep 2022 22:49:10 GMT
Etag: "63181894-1c2"
Last-Modified: Wed, 07 Sep 2022 04:05:40 GMT
Server: nginx/1.6.2


--- Additional Info ---
Magic:  PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size:   450
Md5:    6680131ec68d90d5e9e79afb783c2e15
Sha1:   19d8d99745c54e81c3ebbe312a4b60723515b1b3
Sha256: c0fb5cc957171fb3232c96769f8642d9cd1d8b458116d77dc3a4b0ebca9daf77
                                        
                                            GET /embed/1662523498/asset/embed/css/pc/message/img/nodelocation.png HTTP/1.1 
Host: sgoutong.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgoutong.baidu.com/embed/1662523498/asset/embed/css/pc/main.css

                                         
                                         112.34.112.222
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000
Connection: keep-alive
Content-Length: 511
Date: Wed, 07 Sep 2022 22:49:10 GMT
Etag: "63181894-1ff"
Last-Modified: Wed, 07 Sep 2022 04:05:40 GMT
Server: nginx/1.6.2


--- Additional Info ---
Magic:  PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size:   511
Md5:    fd0bcb617548b70cb75628fcda472ab5
Sha1:   7495e82234af9240860345aabcfb8832bfc2c193
Sha256: 4c7b22394eb179eacab3a17b9f167c889ede833b4c0e54ea5331b13a307cd611
                                        
                                            GET /embed/1662523498/asset/embed/css/pc/icon/img/iconWord0.png HTTP/1.1 
Host: sgoutong.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgoutong.baidu.com/embed/1662523498/asset/embed/css/pc/main.css

                                         
                                         112.34.112.222
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000
Connection: keep-alive
Content-Encoding: gzip
Date: Wed, 07 Sep 2022 22:49:10 GMT
Last-Modified: Wed, 07 Sep 2022 04:05:40 GMT
Server: nginx/1.6.2
Vary: Accept-Encoding
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  PNG image data, 131 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size:   6210
Md5:    7f1659a4e90a023b2fd5493924c90dc2
Sha1:   46b8fab0f61da8eff82cdd274358013090a41bf9
Sha256: 43287ea182b9288ae9f896143e45098b80cb86355fc32833771919c0a9812fd1
                                        
                                            GET /minkh/js/jquery-1.4.2.flp.js?20121127002 HTTP/1.1 
Host: www14.53kf.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         101.66.249.199
HTTP/2 200 OK
content-type: application/x-javascript
                                        
server: openresty
date: Wed, 07 Sep 2022 22:49:09 GMT
last-modified: Fri, 22 Feb 2013 09:00:17 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"512733a1-11875"
expires: Sat, 10 Sep 2022 22:49:09 GMT
cache-control: max-age=259200
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   24359
Md5:    e6452c22018f9c58c26537c5f2cda5bc
Sha1:   329e98acad18bb21618d972c50fde72fb349f737
Sha256: 6efbe0b6e67409818d55611ddce3e45ae0050d7de19f70eb8167d4bfc76f3fda
                                        
                                            GET /kf_new.php?style=3&arg=10634441&land_page=http%3A%2F%2Fwww.szjrgas.com%2Fnewsshow_14.html&from_page=&guest_id=11581292866000&kf_sign=jU5MDMTY2Mk0NjExNTgxMjkyODY2MDAwNzI2MzQ0NDE%3D&api_uuid=3a2c8e30b811aed404087d63d0e54923&uuid_53kf=57b9e93820de6ddaca83e6f940c471b7&ip_long=1532635802&time=1662590940595 HTTP/1.1 
Host: www14.53kf.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         101.66.249.199
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
server: openresty
date: Wed, 07 Sep 2022 22:49:08 GMT
vary: Accept-Encoding, Accept-Encoding
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
set-cookie: is_group_72634441=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.53kf.com uuid_53kf_72634441=57b9e93820de6ddaca83e6f940c471b7; path=/; domain=.53kf.com 091090042154=%E5%A5%A5%E6%96%AF%E9%99%86%E5%A5%A5%E6%96%AF%E9%99%86%2CBlix%20Solutions%20AS%2C%E5%A5%A5%E6%96%AF%E9%99%86%2C%E6%AC%A7%E6%B4%B2; expires=Thu, 08-Sep-2022 22:49:08 GMT; Max-Age=86400; path=/ 53ct_11581292866000=1662590948_1; expires=Mon, 31-Dec-2029 16:00:00 GMT; Max-Age=230836252; path=/; domain=.53kf.com
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/default/mobile_invite_default.js?v=2017080212 HTTP/1.1 
Host: www14.53kf.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szjrgas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         101.66.249.199
HTTP/2 200 OK
content-type: application/x-javascript
                                        
server: openresty
date: Wed, 07 Sep 2022 22:49:08 GMT
last-modified: Wed, 02 Aug 2017 01:47:40 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"59812f3c-68c"
expires: Sat, 10 Sep 2022 22:49:08 GMT
cache-control: max-age=259200
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---