{"report_id":"9d628207-c47a-4623-8a05-9d449d4cf71e","version":6,"status":"done","tags":[],"date":"2026-05-28T07:41:21Z","url":{"schema":"http","addr":"tw-zoom.com.cn","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":0,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"tw-zoom.com.cn/","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"title":"ZOOM云视频 - ZOOM Windows版下载 | 企业级网络会议稳定连接","dom":{"size":16179,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (842)","md5":"9f2ac55bf45734a781a25fb79b3ea0e6","sha1":"2a3beb525efa67f80265ede660df8055fb1020c0","sha256":"dffe7b6109f8ee18bd6306196c4b7c7db48905246d2da7068a333bb4f3ec16b6","sha512":"81917be96f79d43c9fb7b5e17ceedd9ba99b02b0c6d47f476d7cdce8db8d5e84dd960a18128c28953991c42692f012cd9387cf8e16337a69505fddb84dbe4d11","ssdeep":"192:v47YU7/7S8LZ0R0sYcnFtNox20B/GK95juQs1ZPQtDVcftSprOlujZeLZpCL:SVDSwZ0RYsc20B/HjssqtSprOlmZWoL","tlshash":"ba721b671100ad2e233395e7b9b9b3ce70119a33e17649b5a5d4722bdae02f60d7334e","dom_hash":"domhash14f8495e1d491dd8a79f04b0cf355ccb","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"tw-zoom.com.cn","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":0,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-02T07:41:21Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"tw-zoom.com.cn","ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"domain_registered":"2026-05-24","domain_rank":0,"first_seen":"2026-05-28T07:41:22.119284Z","last_seen":"2026-05-28T07:41:22.119284Z","alert_count":0,"request_count":8,"received_data":1206145,"sent_data":4680,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"tw-zoom.com.cn/","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9441f01516fdb48a0abb95f60495b8de","sha1":"f046929b3c04dbec880a07c53d93806a80ca300f","sha256":"052fd89ddc2d6b63782716f8e116946f6f62ff8dfc4c3ec61de8d20cdb9bff04","sha512":"ce75e5dc908fde4ae33e5b47768b13b16f81413c4db285589048b9ef052e2fe8b152be2a5efc251687f9d025d7dc872fe56ffd4f0e4a6fe53b9fe03ba82c66ff","ssdeep":"","tlshash":"f390028684e2040b4a14a9970bd081cb0653884014346004248d7a4018e2e2a693d331","size":54,"data":"","first_seen":"2026-05-28T07:41:26.933125Z","last_seen":"2026-05-28T07:42:41.438205Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sdk.51.la/js-sdk-pro.min.js","fqdn":"sdk.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8a41c9449b73e8ba0224c6be1f0b7e8","sha1":"33d79319d4110bcf5c44c36f7dd4a291972ac546","sha256":"52079c09a7355f4ce3af750602ebb9aebae8238583601f8a06268eecccf13565","sha512":"472d0395a65a3ade2d215559b196a88ffcdacde3ac0f573eb8663b524f201d72c9339bcacbc198d82452a0ac367c0efd407b12795943cdd2755d95a8cf71b977","ssdeep":"768:swetbD3SkE+a/l1jaKUiQU5eqEh9GMXBOXAA/EXBeJMlbJfuPT:BetbD3SVT/3+KUc5eqEh9GMXBYEXBeJ7","tlshash":"dbf23d9577c0317cc3c783ea362b501ae1a69e910059a8bcf345f6907d34e56a37fba8","size":36114,"data":"","first_seen":"2025-03-10T03:40:31.536734Z","last_seen":"2026-06-06T23:16:57.988363Z","times_seen":98187,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"tw-zoom.com.cn/logo.png","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tw-zoom.com.cn/","date":"2026-05-28T07:41:00.284Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.tw-zoom.com.cn","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:29:12 GMT","end":"Sat, 22 Aug 2026 10:29:11 GMT"},"fingerprint":{"sha1":"1F:81:ED:D3:FC:08:1D:B2:37:4C:33:EF:93:19:C1:92:48:E3:95:34","sha256":"FB:D6:85:FC:E5:D3:E9:53:93:08:52:2D:FC:EB:EC:32:38:95:E8:31:F7:1D:E8:81:D6:C0:27:51:8F:52:7A:3B"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: tw-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://tw-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=b25f8f6ce4e32a0a218567646a01a1f2; __vtins__3Q2GYoJ1hUyLRrBy=%7B%22sid%22%3A%20%22ddf6bb7c-9cb4-5a77-be36-d9264b7690a0%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201779955860046%2C%20%22ct%22%3A%201779954060046%7D; __51uvsct__3Q2GYoJ1hUyLRrBy=1; __51vcke__3Q2GYoJ1hUyLRrBy=9fb850b8-0c52-565f-ac37-979a8106af4b; __51vuft__3Q2GYoJ1hUyLRrBy=1779954060053\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:41:00 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 24 May 2026 11:07:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a12dbfa-24df\"\r\nexpires: Sat, 27 Jun 2026 07:41:00 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9439,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"fb3e9005e1b0acb0a4eac3c423447f6f","sha1":"7a80395f078ba6c806e7e1bcc8ecdab707691e03","sha256":"40a8a4df3859ee01f662437e3d9fd05a9d798826ac85c2af69e12e2f4a1c7261","sha512":"fdbc88b415462a6def02c2b71d892d2d391c67c9ae0591dd97b6a7ae94ea7c71b1ca88baeb83d49e7d32c481bb2af3e58cfd1b72a1f3ff5f6d509e72c835486b","ssdeep":"192:7hk88Lr3HEBCLNrtbtXpLEnGY9nTl81HRInGCRFBuRB7:StH3uobnLEH9Ty1HRIG2FBmB7","tlshash":"2f12b071b2825b15e56f10e76794b2a38a451c720c49d9c9d16e357507be02f8fa0c4b","first_seen":"2025-08-18T08:56:27.682172Z","last_seen":"2026-06-05T20:03:11.054432Z","times_seen":218,"resource_available":false,"data":null}},"time_used":152,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tw-zoom.com.cn/22.webp","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tw-zoom.com.cn/","date":"2026-05-28T07:40:59.329Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.tw-zoom.com.cn","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:29:12 GMT","end":"Sat, 22 Aug 2026 10:29:11 GMT"},"fingerprint":{"sha1":"1F:81:ED:D3:FC:08:1D:B2:37:4C:33:EF:93:19:C1:92:48:E3:95:34","sha256":"FB:D6:85:FC:E5:D3:E9:53:93:08:52:2D:FC:EB:EC:32:38:95:E8:31:F7:1D:E8:81:D6:C0:27:51:8F:52:7A:3B"}}},"request":{"raw":"GET /22.webp HTTP/1.1\r\nHost: tw-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://tw-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=b25f8f6ce4e32a0a218567646a01a1f2\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:40:59 GMT\r\ncontent-type: image/webp\r\ncontent-length: 587827\r\nlast-modified: Sun, 24 May 2026 11:12:16 GMT\r\netag: \"6a12dd10-8f833\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":587827,"size_decoded":0,"mime_type":"image/webp","magic":"PNG image data, 1891 x 793, 8-bit/color RGB, non-interlaced","md5":"5393337cfd345dd533914fa8f6650676","sha1":"24e7925fd58a80c92dbc9405b127d579bbe9df78","sha256":"f96656db509910ca760e4445cd4810703e2174684eb10a75c864a1c93cf9078f","sha512":"ef97dc802e65e458ae5dc3bbf9690a616d12151ef4d9723eb56dca97c252abe9298e3e82b7d8593393b50b0a656ca4b8ac7fc0af42b396468f29b44cdf8eac45","ssdeep":"12288:PmuYjlJgPTs/tGabl4jbqPi4CiCwXL1W+o1kVYIQmw/:PmuYjlJgbM5R4jb22471W+ooYILw/","tlshash":"d2c4234a8174e125c33aa418d24107d751b23dede87860d66dbcdbe1056bfcaf894bf2","first_seen":"2026-05-28T07:41:26.909895Z","last_seen":"2026-05-28T07:41:30.894582Z","times_seen":2,"resource_available":false,"data":null}},"time_used":956,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":305,"receive":651,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tw-zoom.com.cn/images/4.webp","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tw-zoom.com.cn/","date":"2026-05-28T07:40:59.334Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.tw-zoom.com.cn","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:29:12 GMT","end":"Sat, 22 Aug 2026 10:29:11 GMT"},"fingerprint":{"sha1":"1F:81:ED:D3:FC:08:1D:B2:37:4C:33:EF:93:19:C1:92:48:E3:95:34","sha256":"FB:D6:85:FC:E5:D3:E9:53:93:08:52:2D:FC:EB:EC:32:38:95:E8:31:F7:1D:E8:81:D6:C0:27:51:8F:52:7A:3B"}}},"request":{"raw":"GET /images/4.webp HTTP/1.1\r\nHost: tw-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://tw-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=b25f8f6ce4e32a0a218567646a01a1f2\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:40:59 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3192\r\nlast-modified: Sun, 24 May 2026 11:02:48 GMT\r\netag: \"6a12dad8-c78\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3192,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 474x355, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"38e8ed86afd7dd30fb779440dec37ee3","sha1":"3f2edc9518bc734951d445e70a39b1075d876121","sha256":"693e4105fed5776e5d5fccb5bdffb61e9ba86aaba82b7de4eaf2fff562d6c5d7","sha512":"bf9acecae7d8cee94fcd83b206778d7fc6e7274624e7c12e8cb68f1446c1308475abd4ddaa92712535b0eddeae0996474c807aa8fe20545a39c5c4444652de43","ssdeep":"","tlshash":"3e616d9e1a945347492137e4d68fb1e3416b2ba964f81dd91ecbe304530145bfff2907","first_seen":"2026-05-28T07:41:26.915086Z","last_seen":"2026-05-28T07:41:26.915086Z","times_seen":1,"resource_available":false,"data":null}},"time_used":611,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":455,"receive":156,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tw-zoom.com.cn/favicon.ico","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tw-zoom.com.cn/","date":"2026-05-28T07:41:00.287Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.tw-zoom.com.cn","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:29:12 GMT","end":"Sat, 22 Aug 2026 10:29:11 GMT"},"fingerprint":{"sha1":"1F:81:ED:D3:FC:08:1D:B2:37:4C:33:EF:93:19:C1:92:48:E3:95:34","sha256":"FB:D6:85:FC:E5:D3:E9:53:93:08:52:2D:FC:EB:EC:32:38:95:E8:31:F7:1D:E8:81:D6:C0:27:51:8F:52:7A:3B"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: tw-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://tw-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=b25f8f6ce4e32a0a218567646a01a1f2; __vtins__3Q2GYoJ1hUyLRrBy=%7B%22sid%22%3A%20%22ddf6bb7c-9cb4-5a77-be36-d9264b7690a0%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201779955860046%2C%20%22ct%22%3A%201779954060046%7D; __51uvsct__3Q2GYoJ1hUyLRrBy=1; __51vcke__3Q2GYoJ1hUyLRrBy=9fb850b8-0c52-565f-ac37-979a8106af4b; __51vuft__3Q2GYoJ1hUyLRrBy=1779954060053\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:41:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1102\r\nlast-modified: Sun, 24 May 2026 11:08:06 GMT\r\netag: \"6a12dc16-44e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1102,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 24x24 with PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced, 32 bits/pixel","md5":"6f036a374842114eb04e4d009d141ea4","sha1":"6028dd364841f3de5bbac55fe662d43875c6a89b","sha256":"33ed517a99e295f916e6ec426dcf7656f4de56be1bd30d02a35a3978265c2490","sha512":"f0d7f0f13472db660d117326b4c026f0369d1095ccf3a030d5957f1384e98588ccd2e0af08f9ec3502c0ec02677fcdec265d05058cee89a76cca996656dcb219","ssdeep":"","tlshash":"c411e992ae49bf8b8d4e214a8ec85d23f33b8238073e2018d002f16457c3f4e4dc560b","first_seen":"2026-05-28T07:41:26.918069Z","last_seen":"2026-05-28T07:42:41.42235Z","times_seen":4,"resource_available":false,"data":null}},"time_used":152,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tw-zoom.com.cn/","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-28T07:40:58.540Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.tw-zoom.com.cn","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:29:12 GMT","end":"Sat, 22 Aug 2026 10:29:11 GMT"},"fingerprint":{"sha1":"1F:81:ED:D3:FC:08:1D:B2:37:4C:33:EF:93:19:C1:92:48:E3:95:34","sha256":"FB:D6:85:FC:E5:D3:E9:53:93:08:52:2D:FC:EB:EC:32:38:95:E8:31:F7:1D:E8:81:D6:C0:27:51:8F:52:7A:3B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: tw-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:40:59 GMT\r\ncontent-type: text/html\r\nlast-modified: Sun, 24 May 2026 11:57:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a12e7a2-3f3d\"\r\nset-cookie: server_name_session=b25f8f6ce4e32a0a218567646a01a1f2; Max-Age=86400; httponly; path=/\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16189,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (842)","md5":"1b983fe92c6cf4d2c2ceb85052cf0e7c","sha1":"e25fff651ce7fcf8aaed3e6ea80bcd9efae27118","sha256":"d60dd541768d1a937651a6bbd966039da62e36ce001707d29a61ea3fd620c0f8","sha512":"89d94f545ac94a2135fa574709c90d24f3bcfd192a3b662b7731029d152f66cd067da16d59d65fad762d4ff097f60b937f825f477d876a3b878028f9429db287","ssdeep":"192:Dx7YU7/7S8LZ0R0sYcnFtNox20B/PzC5juQssjWvFPBntDVcftSprOlujZeLZpCP:lVDSwZ0RYsc20B/Yjs/qtSprOlmZWoP","tlshash":"46721b671100ad2e233395e7b9b9b3ce70119a33e17649b5a5d4721bdae02f60d7334e","first_seen":"2026-05-28T07:41:26.921096Z","last_seen":"2026-05-28T07:41:26.921096Z","times_seen":1,"resource_available":true,"data":null}},"time_used":996,"timings":{"blocked":422,"dns":108,"connect":151,"send":0,"wait":152,"receive":0,"ssl":158},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tw-zoom.com.cn/logo.png","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tw-zoom.com.cn/","date":"2026-05-28T07:40:59.298Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.tw-zoom.com.cn","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:29:12 GMT","end":"Sat, 22 Aug 2026 10:29:11 GMT"},"fingerprint":{"sha1":"1F:81:ED:D3:FC:08:1D:B2:37:4C:33:EF:93:19:C1:92:48:E3:95:34","sha256":"FB:D6:85:FC:E5:D3:E9:53:93:08:52:2D:FC:EB:EC:32:38:95:E8:31:F7:1D:E8:81:D6:C0:27:51:8F:52:7A:3B"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: tw-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://tw-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=b25f8f6ce4e32a0a218567646a01a1f2\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:40:59 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 24 May 2026 11:07:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a12dbfa-24df\"\r\nexpires: Sat, 27 Jun 2026 07:40:59 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9439,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"fb3e9005e1b0acb0a4eac3c423447f6f","sha1":"7a80395f078ba6c806e7e1bcc8ecdab707691e03","sha256":"40a8a4df3859ee01f662437e3d9fd05a9d798826ac85c2af69e12e2f4a1c7261","sha512":"fdbc88b415462a6def02c2b71d892d2d391c67c9ae0591dd97b6a7ae94ea7c71b1ca88baeb83d49e7d32c481bb2af3e58cfd1b72a1f3ff5f6d509e72c835486b","ssdeep":"192:7hk88Lr3HEBCLNrtbtXpLEnGY9nTl81HRInGCRFBuRB7:StH3uobnLEH9Ty1HRIG2FBmB7","tlshash":"2f12b071b2825b15e56f10e76794b2a38a451c720c49d9c9d16e357507be02f8fa0c4b","first_seen":"2025-08-18T08:56:27.682172Z","last_seen":"2026-06-05T20:03:11.054432Z","times_seen":218,"resource_available":false,"data":null}},"time_used":152,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tw-zoom.com.cn/33.webp","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tw-zoom.com.cn/","date":"2026-05-28T07:40:59.330Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.tw-zoom.com.cn","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:29:12 GMT","end":"Sat, 22 Aug 2026 10:29:11 GMT"},"fingerprint":{"sha1":"1F:81:ED:D3:FC:08:1D:B2:37:4C:33:EF:93:19:C1:92:48:E3:95:34","sha256":"FB:D6:85:FC:E5:D3:E9:53:93:08:52:2D:FC:EB:EC:32:38:95:E8:31:F7:1D:E8:81:D6:C0:27:51:8F:52:7A:3B"}}},"request":{"raw":"GET /33.webp HTTP/1.1\r\nHost: tw-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://tw-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=b25f8f6ce4e32a0a218567646a01a1f2\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:40:59 GMT\r\ncontent-type: image/webp\r\ncontent-length: 568236\r\nlast-modified: Sun, 24 May 2026 11:12:20 GMT\r\netag: \"6a12dd14-8abac\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":568236,"size_decoded":0,"mime_type":"image/webp","magic":"PNG image data, 1885 x 502, 8-bit/color RGB, non-interlaced","md5":"fe4c2631f2620a7ebecbc51df60a1eee","sha1":"19d067b760abc3cb709b8535efd3583aeb7ffe74","sha256":"d125b4b1c147092e5a8b57718b278d5fde4852cab5853462eaaedaf7f32ef8e3","sha512":"725de4a15b9e42c08c3a3610a5a28de3a79f1a7b7553636c958231c0feea4d26d35d99e78a6017801655c1574992ad67d4022d6c342ea1493d94b5015bedf156","ssdeep":"12288:qiotux1Gl47Hhcr3EZDdGoShesmvg/9zD7RXhw2icNA:qP0T7ghbH9VXPi5","tlshash":"85c423a6e0404557ffa810b8729d6f0be44195f1858ec4de6237c3e879ee3510eeabc2","first_seen":"2026-05-28T07:41:26.924668Z","last_seen":"2026-05-28T07:42:41.431272Z","times_seen":4,"resource_available":false,"data":null}},"time_used":939,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":456,"receive":483,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tw-zoom.com.cn/images/3.webp","fqdn":"tw-zoom.com.cn","domain":"tw-zoom.com.cn","tld":"com.cn"},"ip":{"addr":"154.26.224.195","port":443,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tw-zoom.com.cn/","date":"2026-05-28T07:40:59.332Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.tw-zoom.com.cn","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 10:29:12 GMT","end":"Sat, 22 Aug 2026 10:29:11 GMT"},"fingerprint":{"sha1":"1F:81:ED:D3:FC:08:1D:B2:37:4C:33:EF:93:19:C1:92:48:E3:95:34","sha256":"FB:D6:85:FC:E5:D3:E9:53:93:08:52:2D:FC:EB:EC:32:38:95:E8:31:F7:1D:E8:81:D6:C0:27:51:8F:52:7A:3B"}}},"request":{"raw":"GET /images/3.webp HTTP/1.1\r\nHost: tw-zoom.com.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://tw-zoom.com.cn/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: server_name_session=b25f8f6ce4e32a0a218567646a01a1f2\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 28 May 2026 07:40:59 GMT\r\ncontent-type: image/webp\r\ncontent-length: 6932\r\nlast-modified: Sun, 24 May 2026 11:02:22 GMT\r\netag: \"6a12dabe-1b14\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6932,"size_decoded":0,"mime_type":"image/webp","magic":"PNG image data, 496 x 424, 8-bit/color RGBA, non-interlaced","md5":"3b7956f95dea429f1729c30f8d41dc5e","sha1":"c8a0db8cef11e20a2157a679e21062ed87023be0","sha256":"96be267856dd72c71690d649e238dcd0aa2baead1b18ad9b2f419cc268ef2fdf","sha512":"6c26d09c84362c1d3c2250746b417c08fe3c786a3d53b159434382e02deebbc70fa48c64635c2e023ac279f07d4d4252fc0d0245894384fc9df4d6a660064521","ssdeep":"96:dv01SiBu3HJMp/TgoRI1aLsWerBpc4N62fFNgegtIrN8CQ/:Fy/yH+bL6+sWerBpZQMNgegIr9M","tlshash":"d7e143a3a52276d9ac7d9cd1280a232efcffcd5b5f1e23065194a54123f0d2974f9a0b","first_seen":"2026-05-28T07:41:26.928198Z","last_seen":"2026-05-28T07:41:26.928198Z","times_seen":1,"resource_available":false,"data":null}},"time_used":612,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":456,"receive":156,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}