{"report_id":"b01e9529-c709-4360-be8c-a12765ccb864","version":6,"status":"done","tags":[],"date":"2026-04-07T12:17:46Z","url":{"schema":"http","addr":"m.51570099.com","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"103.233.11.160","port":0,"asn":133201,"as":"ABCDE GROUP","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"m.51570099.com/#/","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"title":"bet365","dom":{"size":431794,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (40634)","md5":"e375b57bca4c42ba2d5a9adff6464fb9","sha1":"a47141398fc2b73b4ea091fbe1c6bfc6de65091b","sha256":"d9ad191a545ceeddb4c3142de30145bdf8e29b75f12b41093afa500375a7a387","sha512":"eb8f369f8d5995524ba3aafcb32a293222957ee5426b2923d08c4afbaea75f6d3d73b2e3f6c4360eda7a924c1d3404337e17898287145945fef54f0bfa0fcb75","ssdeep":"12288:l+W+Z+/+Q+k+N+D+M+A+B+n+N+L+U+u+p+9+Y+y+F+C+H+t+2+H+7+R+y+t+f+lO:kf4mBl86dRw+8S1HoMZbELec/eigbcGo","tlshash":"8e947c37a4085ec3811387c8c6ad7e2a287caa0bb599054877a801753adfdfb35736dd","dom_hash":"domhash4953a14d483f04f94d6f3249a62a95bd","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"m.51570099.com","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"103.233.11.160","port":0,"asn":133201,"as":"ABCDE GROUP","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-12T12:17:46Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-04-07","alert":"Hunting_JS_WebAssembly","trigger":"sports.uogia.org/static/js/app.13904750aad8a7d51e50.1770972668924.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"img.uogia.org","ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"domain_registered":"2012-11-19","domain_rank":0,"first_seen":"2025-03-14T04:18:32.939457Z","last_seen":"2026-04-01T15:30:53.768851Z","alert_count":0,"request_count":108,"received_data":4707146,"sent_data":50806,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]},{"fqdn":"m.51570099.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":84,"request_count":42,"received_data":571830,"sent_data":21098,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"sports.uogia.org","ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"domain_registered":"2012-11-19","domain_rank":0,"first_seen":"2025-10-19T10:38:20.284539Z","last_seen":"2026-03-13T23:25:41.529212Z","alert_count":1,"request_count":8,"received_data":4239525,"sent_data":3751,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"m.51570099.com/","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"0be164ba798116debcab6bdf7bdad5c5","sha1":"1142aec2e4a6e772fd36bdef1c8752abedf03aaf","sha256":"05e3257d62efcf4f966c1e36e736ed4cd6d988e0dbe6258ee2f12d28437a5273","sha512":"3f7b1ee653bcb149a9b63107562a20e9f00b9f9789c225c8122d2b14ca113326b43695d804aa193d69f77d06d4d77e78f7a000b4575be5b0e66dc791cd7d75bb","ssdeep":"","tlshash":"bd01fe8e00f1c03b6cb720a84b4f7358356aa247d30edb10ba5f87042f34a2b93556d7","size":740,"data":"","first_seen":"2025-03-31T13:04:48.597973Z","last_seen":"2026-04-07T12:18:56.490963Z","times_seen":50,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sports.uogia.org/static/js/vendor.771c00b9be1f5b25e221.js","fqdn":"sports.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":false,"md5":"37a4ef7253f1c66d2ef7378f2f5deda4","sha1":"4b8e39795c2359478b49d69b66598f2df7923139","sha256":"7bfd3d144a563236a6d785619600b5ce06f289f8f128c46f5b19f122ddc4297b","sha512":"8dc025cdfb40ee3fe6cd3d84581e2d993a0c925c0dd410f2b07fe4bc069ae096375ec428382ac694ad1414bc8fb7463959c24be1e6b1a1f3e5e7c7d8013fc432","ssdeep":"12288:GQafXMdqfrZsvmYtUiI2HRfeFW0ChgVfAuGoZ:OflfrZsvmYtUiIURf4tChgVf3","tlshash":"b755298db295b0b503d760a5402f160bf237691d740a849cf665e8eaacbcd4e217bf7c","size":1339584,"data":"","first_seen":"2026-01-29T12:45:58.673498Z","last_seen":"2026-04-07T12:18:56.49252Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sports.uogia.org/static/js/app.13904750aad8a7d51e50.1770972668924.js","fqdn":"sports.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":false,"md5":"a462f156354f4760891c540eb05c68bc","sha1":"ca0bdf3416e14d2132b293ceddc8f4f776f19db6","sha256":"6f4c6864c4546b61a2096389a315295d01bd13b6fd14655e586a41d711f927b8","sha512":"5d5771ca7b6cb533205c3786bc97eaf258ee30df7fd351aff7946c342733a3b778559de51f88ee35fe04650bb2de0b42a15e7c95d57ab0794a93bce938ad9283","ssdeep":"24576:omPy8Kzg1oyY8UbsfMMf+IllA6GnBSNixWWJZYWYctIO5zi08:3y8Kzg1oyY8UbsfMMf+IlluxWWJZYWYn","tlshash":"ce55b7167043e6b94d9e9012652a1134e1751fd8a009d0aeb73ceee49be4d7a336fb3c","size":1359604,"data":"","first_seen":"2026-02-19T20:52:28.902908Z","last_seen":"2026-04-07T12:18:56.494931Z","times_seen":8,"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-04-07","alert":"Hunting_JS_WebAssembly","trigger":"sports.uogia.org/static/js/app.13904750aad8a7d51e50.1770972668924.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/js/5.b39188f36d2cd2fd285b.js","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"0620c5b29d0184ea48de2d71dc58a99e","sha1":"e4250b530a00bc10c0db6957efdc4838dbcaf54b","sha256":"0c2f780c59536d804c0058b04878ffff9f1caeb5629d097a022ee11458f72cf6","sha512":"913589a7c44200dbe7287903dade02beae00d474d13f1ef37dcbba8cd052f14d97be403df7a78e697fb37c2d694850990519d2439789c156b1294a26dadc504c","ssdeep":"384:GJaajWR9T1FUGzXM8k2P01P0n0TP0i9xVmiypKyyeCpDE:GJaaoUi88kDxV8t/CpDE","tlshash":"8cd2d70b6083a5794dada1d4902e1520e07a1e897006d45ebb3cdde9e6d4e7a333fb7c","size":28624,"data":"","first_seen":"2026-01-29T12:45:58.553355Z","last_seen":"2026-04-07T12:18:56.383884Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/js/183.c069e2307f420ea18c26.js","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"97604728798d7f21ef31caef48eac096","sha1":"1fa21e724d045c587ccb34386e1db2ad77a50a5a","sha256":"bbcbc5d701d4f91163baff5e606839f46570d385befd021e15b119dbf8424f7c","sha512":"5af6d10d378a09dea742c2ed432538595c3f04482760545e6091ee9c1d31155516434f530bf135ba6a251d31c9034fcb3f23dc126a147b06b69cf5581ce0ec5d","ssdeep":"","tlshash":"11513227e042f26fcd2a4253a51d043a91221fadd109d0eef77cd95642a6e78271ea3c","size":3159,"data":"","first_seen":"2026-01-29T12:45:58.612178Z","last_seen":"2026-04-07T12:18:56.389296Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/3f384711a265fa62.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.386Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/3f384711a265fa62.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/3f384711a265fa62.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56241\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":23058,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/17f21eacc70429ae.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.558Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/17f21eacc70429ae.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 19656\r\nlast-modified: Tue, 08 Nov 2022 02:39:02 GMT\r\netag: \"99c5b22a57dfaf884d5e00e681b1bb78\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 f3a1c499953e7518beb9f5ad10ffb224.cloudfront.net (CloudFront), 1.1 PS-000-01HMp114:19 (W), 1.1 PS-CZX-01bnS57:6 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: 6fI8vhbizowfNFx6AxXi-uZy7apdLTK6U-4K-jPgRU7CeDyh_QwvXA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56283\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":19656,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"99c5b22a57dfaf884d5e00e681b1bb78","sha1":"286147863fe9b8341038c9e2116952dba1da061e","sha256":"6d89521ce57d54c3879f7471290abffbfbfd0c4ff2f9ed4197db967568c1ee8c","sha512":"29600671d2eb4850b80ac2f26e70bb67c8fde9e8881bdee56870733646dd55d1930b0ff194974a9121762c1083dafd93acc55823d45eef760b4b68c99876157f","ssdeep":"384:GurX5nVIYicdG0Wi/+KyXu3T0f/p9HiN/sifAtwJ3Ma7vAVjNz//9g4eYMPUKy:lQ7yAq/16CMqvAL9YYoy","tlshash":"c992d0b71239550c423b07e76d8e1585a5ad5ebc12af3d019a2fc673890429fbc4da0f","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.467141Z","times_seen":122,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":56,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/18c61d356ab4c187.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.667Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/18c61d356ab4c187.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 22142\r\nlast-modified: Tue, 08 Nov 2022 02:38:44 GMT\r\netag: \"981bcd20f8312a6ed4c613f04ca635d3\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 3eb3661a656b87ae525ed798454aefe2.cloudfront.net (CloudFront), 1.1 PS-NTG-01FLw54:13 (W), 1.1 PS-NGB-01DVr174:6 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: TSNt8JNo6Qd2vD3n5Pdl1iVvKekdov_HGiNzqHeyEFg9krCO0Y0q9Q==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56318\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":22142,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"981bcd20f8312a6ed4c613f04ca635d3","sha1":"cca85f54bb6eec04f903866810e58195c2149077","sha256":"6e5dc43205d738898b8da02b6131d73899465bdb5cf56b36d4d882d013e76818","sha512":"a26fb30407521b6e35f17b07d58305199b6cfe1fdab43427620eac9042cd4dfdf655b65b0fb6da555b1e852d151fead42922cc62f53d5e2a8d08df5284425c92","ssdeep":"384:fzNwAwRod/yb2vrHa34qMwgVNDi2ygHbMC7WXndpOfi+Lkm:pZwR6WLIqY0EbMCy3SaUl","tlshash":"c6a2e0f2c07a3d0aed5ae595257d50a1610f6388e1f272323298c76fd6e02a4e1f6636","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.437303Z","times_seen":60,"resource_available":false,"data":null}},"time_used":134,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":104,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/favicon.ico","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.128Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221227/29eab6e1caddd7c3.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.763Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221227/29eab6e1caddd7c3.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 4700\r\nlast-modified: Tue, 27 Dec 2022 13:24:52 GMT\r\netag: \"b29f180b71df1fb43ecdb80aaf694f7b\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 3eb3661a656b87ae525ed798454aefe2.cloudfront.net (CloudFront), 1.1 PS-HIA-01rHo246:7 (W), 1.1 PS-000-01SFH54:18 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: saXuqfQWm1LvTTHZOjR-gy_tQ3n5K0tdf1Pl-_pT0-kdCMQ9gg_9aA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 18578\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56168\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4700,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b29f180b71df1fb43ecdb80aaf694f7b","sha1":"90e2d5de8dec8236b48f56e25008b219654a490a","sha256":"d305dea8d803db10ad46a1143c0f564273b39c7a171bb70f5b685c039281f7ce","sha512":"1c70e7b17f062566f671f7686488f60b2e6111af4b9d05fab0d791c1b5ba7dc433579c246072dfd17d70286672688a69f91570dbcf1e43c2e2dcaac9fdd06d30","ssdeep":"96:TQ5SmPs+p84MtsmEgdeEFgt6BZaHp2qBpu2uRAVBEF0X2CjAN0grTl:TcST+pByOgdeEFgqZMpQBRA3EFM2Cw00","tlshash":"43a17e8ac294ea60ef9a3e8f917ee8d29e46c67133ad3223958a81514e16da0433315c","first_seen":"2024-01-09T03:39:20Z","last_seen":"2026-04-07T12:18:56.466138Z","times_seen":48,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260310/9b7e62f29232cdc0--1490x570--.jpg","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260310/9b7e62f29232cdc0--1490x570--.jpg HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20260310/9b7e62f29232cdc0--1490x570--.jpg@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56205\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":62394,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220207/89929f9eafe66b44.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.382Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220207/89929f9eafe66b44.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220207/89929f9eafe66b44.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56240\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":21394,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/e5eb701adcc73bed.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/e5eb701adcc73bed.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/e5eb701adcc73bed.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56261\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":29652,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/close.5ff2823.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/close.5ff2823.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 9049\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"5ff2823abd27d0ffc99e71a136755b6f\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:33 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 7cca08baa146afbf2733cbc68a3e4c68.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 1627\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1627,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 46 x 62, 8-bit/color RGBA, non-interlaced","md5":"5ff2823abd27d0ffc99e71a136755b6f","sha1":"92349b2db9d84fde1aaff08b501ca53cd859e797","sha256":"c4e8a628ffff312821c6daf30ae10b9a1a4fdc94899f7387932c0289a263a9e8","sha512":"6cffe63de93a7a380393a192fc0ad74fb49f6b6290e0982e28cf563ba337a61547852da23c6f3d9c00ee1cff825a030e3498540ff9c1d37e73e2c584c0028a04","ssdeep":"","tlshash":"dc31eccf9eb27c679e19941d9208906f54b0b26524670e671607c68ee70e606177ce43","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.40801Z","times_seen":68,"resource_available":false,"data":null}},"time_used":372,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":371,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20250716/add56c4055172d04--1540x1064--.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.936Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20250716/add56c4055172d04--1540x1064--.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 162798\r\nlast-modified: Tue, 15 Jul 2025 16:09:09 GMT\r\netag: \"11ec5771ff5ae580a3a744253d313389\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 baadcac51191f912823df79ac222bafa.cloudfront.net (CloudFront), 1.1 PS-NTG-01e4a117:4 (W), 1.1 PS-NTG-01FLw54:11 (W), 1.1 PS-CZX-01viR121:7 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: FRA56-P14\r\nx-amz-cf-id: kfpLbzOsfNeGx81HGTrW1N0YeVa_L7VgWBNzM0uZQX23N5dthbNsYA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 75698\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56190\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":162798,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"11ec5771ff5ae580a3a744253d313389","sha1":"2fefc58c1b6a21d00c9e68e15a5b1f4973bff388","sha256":"916ff677915809efbc37a4a2971b62608bd9dea347c86bf260dbe26d753f92b3","sha512":"d16a4540bb51c18739057255931488271160f01a15117bdb30a2bb646491d1b3eca671e212250f032b034f77307e1468d3126fd0e007b754820805ba1b1cf6a2","ssdeep":"3072:ia+paiSQFaBtgUi8zWXawCUo38MFx+82Clat/+ZOYOAqF:irpnSQkvgUi86qpjFxl0t19","tlshash":"36f312e9efe266078fa408212f68603cb8342568b479fce455253aa73d7e327dd4cb05","first_seen":"2025-10-19T10:38:43.678465Z","last_seen":"2026-04-07T12:18:56.451416Z","times_seen":26,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":24,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/fa33304c29fcfe2c.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.442Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/fa33304c29fcfe2c.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/fa33304c29fcfe2c.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56253\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":20306,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/_data/activity/trending/list-v2","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.182Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /_data/activity/trending/list-v2 HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nrType: 1\r\ntpl: 5\r\nqnwebver: 3.12.0\r\nWebver: 4.9.3\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: no-store, no-cache, must-revalidate\r\ncontent-encoding: gzip\r\ncontent-type: application/json; charset=UTF-8\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nnel: {\"report_to\":\"default\",\"max_age\":31536000,\"response_headers\":[\"x-requestid\"],\"include_subdomains\":true}\r\npragma: no-cache\r\nreport-to: {\"group\":\"default\",\"max_age\":31536000,\"endpoints\":[{\"url\":\"https://g.report-url.cc/nel\"}],\"include_subdomains\":true}\r\nserver: openresty\r\nset-cookie: _U=9c2e01cd83bbca0a0fd7c4afd35c8f2ccda34e6639ac6816992e65b20516dc74a%3A2%3A%7Bi%3A0%3Bs%3A2%3A%22_U%22%3Bi%3A1%3Bs%3A51%3A%22%5B2884011%2C%2275ucjJAfb_MibBbdh-z4Jnumf4-wiWQF%22%2C604800%5D%22%3B%7D; expires=Tue, 14-Apr-2026 12:16:24 GMT; Max-Age=604800; path=/; samesite=Lax; domain=.3335157.com; HttpOnly\r\nstrict-transport-security: max-age=15768000\r\nvary: Accept-Encoding, Accept\r\nx-f: HIT\r\nx-requestid: 7a7732e9dcd839162078035ac1ab55c7\r\ncontent-length: 572\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1754,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"8b1bde67f533139730356218b63035a2","sha1":"e88d7a19a3074230b59419046ab7f35ecba54ac9","sha256":"2bb5b3b58f38c9eee1e3c7164bf11860c2a2a462e55c23c7a05d5a14bfd0a899","sha512":"a41b5320455f67de3c2864abfcca14f15e32dc733df4d694a40b6b14c6703c76cbfec835f49d4290fa83a09841482a94048d1ff1f0c7b245ea88f99990df6be5","ssdeep":"","tlshash":"a031609b39dc7db11328127008ea1c5ed1d6bddd48e1dfd8e868dc7782cf5d6010522a","first_seen":"2026-03-13T06:14:53.084711Z","last_seen":"2026-04-07T12:18:56.469743Z","times_seen":15,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/fa33304c29fcfe2c.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.675Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/fa33304c29fcfe2c.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 20306\r\nlast-modified: Tue, 08 Nov 2022 02:39:01 GMT\r\netag: \"c1714394816f4d5cc039dc85bd269b3f\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 4238a1ca2a6bcaa05844937f6a779ace.cloudfront.net (CloudFront), 1.1 PS-000-01cgl116:4 (W), 1.1 PS-000-01geo49:1 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: tpCxL4LBLL6rOCU_RRX5tmNe-bUG0xQYafuY5QdOHmOBGXVdvgCRpw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56320\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":20306,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"c1714394816f4d5cc039dc85bd269b3f","sha1":"89f0114d4eb0c5a11bbf3ca08cf71660836ba863","sha256":"a7325ced66e0ded94b1ef55c161914dc49878659e09ff10b89bfa61b81050440","sha512":"6cd6e4de8213e327759f03d64196f784ca134c3028ef20416e598019492aecfefc0ea380f2c8e6277800ffc672cb73b7f679b01d3d00c6e02bedb1816d36c0aa","ssdeep":"384:fuiqjE0mxHzcnDh4CQ9gOMHKKzfxa8klWrMMju+N7SiYwbIa:9mE0mxTGh4C/OOKKkDDmu+EDwP","tlshash":"d892d1ea923eb2c996501f21ab4b0ed79f367f2b7d8028e053298d97e1123205e5c5c9","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.391944Z","times_seen":60,"resource_available":false,"data":null}},"time_used":135,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":105,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/js/5.b39188f36d2cd2fd285b.js","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.178Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/js/5.b39188f36d2cd2fd285b.js HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 2968\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: W/\"0620c5b29d0184ea48de2d71dc58a99e\"\r\nlast-modified: Thu, 29 Jan 2026 06:28:01 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 ca87bf429f214c70d8beaa0c7de1e702.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":28624,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (28286), with no line terminators","md5":"0620c5b29d0184ea48de2d71dc58a99e","sha1":"e4250b530a00bc10c0db6957efdc4838dbcaf54b","sha256":"0c2f780c59536d804c0058b04878ffff9f1caeb5629d097a022ee11458f72cf6","sha512":"913589a7c44200dbe7287903dade02beae00d474d13f1ef37dcbba8cd052f14d97be403df7a78e697fb37c2d694850990519d2439789c156b1294a26dadc504c","ssdeep":"384:GJaajWR9T1FUGzXM8k2P01P0n0TP0i9xVmiypKyyeCpDE:GJaaoUi88kDxV8t/CpDE","tlshash":"8cd2d70b6083a5794dada1d4902e1520e07a1e897006d45ebb3cdde9e6d4e7a333fb7c","first_seen":"2026-01-29T12:45:58.553355Z","last_seen":"2026-04-07T12:18:56.383884Z","times_seen":13,"resource_available":true,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/sidebar/left-fish@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.751Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/sidebar/left-fish@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 73040\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"6239cd660603d544e2df6617fbffd587\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:42 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 9743bb391d556d154c1b65d94c3f82c0.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 10754\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":10754,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 121 x 103, 8-bit/color RGBA, non-interlaced","md5":"6239cd660603d544e2df6617fbffd587","sha1":"91d1e25c61a0f35c4f1e7d139dc6020e14ba4a8f","sha256":"04b23e11d98491d73a15856df6e7ec34735db402dc02c0d6f1c107199f5cdccb","sha512":"cc3c18594e23ff34bf0c18db43ed736cb617e18f51e3148b7e92f10a4866c4e0fc85a4b1b41ec8e3aaa2e71d8105e1dd824c26213ca9216206f7d153b497220d","ssdeep":"192:3zG56QpLK8vDw5hHW7O/Q18aJtcbKp8IpnPhe8ZUE3O6sF+eH0C4ZgToOq:jihjM/W7t1bJSKlpnk8/O1F+eUyM","tlshash":"2722b0dd610b813cad03afc95204ada654b30f2f725de68e784b9dd4ec01d9893b93b5","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.41167Z","times_seen":66,"resource_available":false,"data":null}},"time_used":503,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":487,"receive":16,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/a8650c8cc6f8a4a5.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.297Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/a8650c8cc6f8a4a5.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/a8650c8cc6f8a4a5.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56217\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":18284,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/18c3460f60fa650f.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.466Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/18c3460f60fa650f.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/18c3460f60fa650f.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56259\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":21252,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/eae81613487d57b5.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.660Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/eae81613487d57b5.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 21666\r\nlast-modified: Tue, 08 Nov 2022 02:39:00 GMT\r\netag: \"fac170988d5920a2a927505292d3e78a\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 0a93d569e179e335d0cc03a4b2f0dc0a.cloudfront.net (CloudFront), 1.1 PSjsczBGPhq161:2 (W), 1.1 PS-NTG-01wPO228:3 (W), 1.1 PS-CZX-01OFj122:11 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: BcjyATnCcOVICH-VXmrvtOYRMfQlPqpmubT4gTIo4X0YWBiOjz6o-A==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56311\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":21666,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"fac170988d5920a2a927505292d3e78a","sha1":"ab7766b9f4189dc4860c066586b7836eb0ce552e","sha256":"70e4eeb257f701e1a9cc2974626f8b7c0fd95a8c86e0cd3be952996c7ccbb2eb","sha512":"951d7afb0d6ad57a5a4c6f3e5760cbef68001f4eb04076a3ef69d5060b911df85b6a06ad6c994505cf4a1879724e7a4b62184091cc46ce57218ac87df2222d7d","ssdeep":"384:Qq4OfsMdRHTz/NA2ic4F2QEqUMhuEEf71Y0jxfpgAqcTiGMFUTldJbfO:QLosMdZz/NNidUMhZcVjppg78JzbO","tlshash":"b3a2d044885b0b4d6d38d97b0ff36117c0de62c829cdf5c22e6262cdfaaa98449b6179","first_seen":"2025-10-19T10:38:43.18021Z","last_seen":"2026-04-07T12:18:56.379915Z","times_seen":16,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":102,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/e5eb701adcc73bed.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.693Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/e5eb701adcc73bed.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 29652\r\nlast-modified: Tue, 08 Nov 2022 02:39:15 GMT\r\netag: \"2d7d01ba5fec7bcd57370e177fed6b21\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 3eb3661a656b87ae525ed798454aefe2.cloudfront.net (CloudFront), 1.1 PS-JJN-01m5h211:4 (W), 1.1 PS-CZX-01bnS57:17 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: qH1qPFD1Hgi2Kkp955StkRKIuYWTc4Db1ftkwZraRzUBvqKs7T5SCw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56327\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":29652,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2d7d01ba5fec7bcd57370e177fed6b21","sha1":"031971bacbc34b6137298324eed68bc3f884542a","sha256":"6ad019306d10cab85ddacc3408d5f413e4abeec006c3523c9ea3c61131343883","sha512":"2db35e8e0fd0943c3f8a2fd5e90346620a12a72c136f620212cd8442288123ff5949d14b242435fbab176b3ddb28d3afb74e14f7e39f55c4309aa23dd484c15d","ssdeep":"768:5gn9+pxZhUJf5f1773oAmQupPbprLjfT0:5sKZ+N7boAmZpP1Ljb0","tlshash":"bcd2e1e98ff10561eeba7246c9a9ce4dec1c850a13a85917a92d43d31afd0e1398da09","first_seen":"2024-04-29T06:18:26Z","last_seen":"2026-04-07T12:18:56.370489Z","times_seen":19,"resource_available":false,"data":null}},"time_used":166,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":137,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/game/mg/SMG_luckyTwinsPowerClusters.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.695Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/game/mg/SMG_luckyTwinsPowerClusters.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 43222\r\nlast-modified: Tue, 29 Oct 2024 05:28:58 GMT\r\netag: \"b5fe361064fb7acb78b9e3d1b30ee8af\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 6b620ac28d0f01cab470bfdb9a47f09c.cloudfront.net (CloudFront), 1.1 PS-000-01SuJ115:4 (W), 1.1 PS-000-01j6t47:7 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: HY6p5rEL0oFJ5Vdf1oxqTD8soT_E71axYg2a_EzksSfre2AY26jfZg==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56328\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":43222,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b5fe361064fb7acb78b9e3d1b30ee8af","sha1":"92a700f71a19fa258a329e27d6453f98e9278c79","sha256":"0eba793ded4aa544c015b575ec63ce93fa3e8fe40efc91e21c86f72d801cdbb8","sha512":"35592f865a62e7435dad08b539394f89fc8b17ddd8ee84dea2189199afbbcafc8e7901cc6878fc81469e9c8766fbb3e0d17963ac7d7b8fa21046f94bd510121c","ssdeep":"768:gZAW3WKEbPXyQupO0QdjHfrSgk/WWqvMlqb5Yf8fcdeh3LvQ2ziVVua3TW5Qqu1:u3WKEbPZuR0qhNlqbzEdIQ2ziVVu/Xu1","tlshash":"e31301b4ff7ac336760d271360c2b0ac493b37e95455aa3e460b808de8593f4acc5930","first_seen":"2025-10-19T10:38:46.208026Z","last_seen":"2026-04-07T12:18:56.380669Z","times_seen":16,"resource_available":false,"data":null}},"time_used":192,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":164,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/693c39e65dced6d3.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.303Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/693c39e65dced6d3.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/693c39e65dced6d3.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56220\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":22736,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220207/720c096626e7704f.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.366Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220207/720c096626e7704f.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220207/720c096626e7704f.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56237\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":24344,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/e97a9c690b1992ee.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.658Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/e97a9c690b1992ee.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 26898\r\nlast-modified: Tue, 08 Nov 2022 02:39:15 GMT\r\netag: \"090b059f330b839ba3b0b2267d6ce2b0\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 f04cbab66809a487aff95b34fbaaf460.cloudfront.net (CloudFront), 1.1 PS-000-01SuJ115:1 (W), 1.1 PS-XUZ-01tGB46:12 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: VwDbDq5k1GBWv0_mR5t28nMjdfFhKybHkh9LGINdvm1S72BwMNscyw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56310\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":26898,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"090b059f330b839ba3b0b2267d6ce2b0","sha1":"cbdbd44d7e764368db0eed50cef96f1f24091ec1","sha256":"28be09400b185b2f3485f2c1ce58fb5f3a5cbf493faed1387b8bf7843980492c","sha512":"483fa967a5127764255ac6c32bfc6c2007db1168032645de233dea2ad50444e15d39ff5d578d1bff76edca6cf6ca347b68e77450039a79fbbb5a611f60cb81d5","ssdeep":"384:isub3O0sTItGP5fRVelputiLtaf5P4YVtwHDmLSkCFaVgV1CA5v1fCh/o5EXzHQG:JuK0fC5fHKLsf5PbcH9roM1f7YQG","tlshash":"d1c2f14abf31308c437821b545ca89e105bcc681c28ed4ad854706cfa76ccca27ffa9b","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.400072Z","times_seen":61,"resource_available":false,"data":null}},"time_used":115,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":88,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-makemoney-icon@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.734Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-makemoney-icon@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 53435\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"85b1baeeeea779bfb3857af6c115884a\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 c8300eed0230a129b2b5696d1d6037f0.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 3731\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":3731,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"85b1baeeeea779bfb3857af6c115884a","sha1":"01952588a09356951e79a906ba4007556fe07f71","sha256":"02a5e3f51ba0258f3d4a110a88417bbe0385e3e1f8db50daacb565ec797fd50b","sha512":"dc796e8fc0f12a93ed7d0c1f337282f5a143bea828841e750e6a99c9a3c544f290efb6a341037a9bfa543218f875097509a765e984fec164a3024f9f4aaf6eaf","ssdeep":"","tlshash":"b2716d77aec59c4dc56342baa1f2f222f054d1212d5f50e7451ba18bef3a0a8cb49335","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.40148Z","times_seen":66,"resource_available":false,"data":null}},"time_used":479,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":479,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/game/mg/SMG_luckyTwinsPowerClusters.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/game/mg/SMG_luckyTwinsPowerClusters.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/game/mg/SMG_luckyTwinsPowerClusters.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56262\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":43222,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/sidebar/left-hot-hover@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.509Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/sidebar/left-hot-hover@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 32713\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"6f7b20e4f72128f961f789935c8a1732\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:42 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 b461bba4647da416f39ad099188ccad8.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 2714\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":2714,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 121 x 103, 8-bit gray+alpha, non-interlaced","md5":"6f7b20e4f72128f961f789935c8a1732","sha1":"f7726d4a8565639dc2d78de359839bf018012eec","sha256":"bdf70aac9119961c70a7ed3eafc6a8c40ffce8d8ebf377e5053448c9ccdd004a","sha512":"2049d81846665207585d834046877defa8e6d6eb7db2846ca7913229be88e9ae124a00a4e22baa54726933ecdc2826274ce6795576145ac1c887ff965a3c38b5","ssdeep":"","tlshash":"9f515be64ad9004cabe06cb712f482d0b2382fd951211d85162b7d35bc3060866fffe8","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.455301Z","times_seen":65,"resource_available":false,"data":null}},"time_used":268,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":268,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/6c7035418adcfaa9.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.560Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/6c7035418adcfaa9.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 24968\r\nlast-modified: Tue, 08 Nov 2022 02:38:50 GMT\r\netag: \"d78bb94a5af49c056156dc36cc7da7b0\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 2b514444ae34d4466cb0c033e672fac2.cloudfront.net (CloudFront), 1.1 PS-000-01SuJ115:16 (W), 1.1 PS-CZX-01viR121:17 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: JtuG9F6oYAW6wb7wMeIbbcWp2gqao97n-I_wcMqz602CX6hc1DRRNQ==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56285\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":24968,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d78bb94a5af49c056156dc36cc7da7b0","sha1":"0d15a3086bed6616140f47aef1a02cae98d848bf","sha256":"1b6d216c16f1cd8427ac432518e5bfc8ea5d0b9a37d934849d4984bb55967742","sha512":"7be3c553aff73c528c24f9059a677ac4393170621e4ca13e0ea0651ace97ac5d23774de46602ed3ccb6a89d8cbcc075de0298172b02100197dc8a2ddc9941e12","ssdeep":"768:cZQcrIpVsed07jZdh6+ZaAiR7OS2+4AAyv:cZQQGTd0XZdhZAAiRCStl","tlshash":"bcb2e1a92af3707cf1aa27d46d82445ee2675de5f3f4cdf90a8036360793c8816a8d64","first_seen":"2025-10-19T10:38:47.784208Z","last_seen":"2026-04-07T12:18:56.424654Z","times_seen":17,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":71,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/969a22cff1504a5a.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.680Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/969a22cff1504a5a.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 19938\r\nlast-modified: Tue, 08 Nov 2022 02:38:54 GMT\r\netag: \"fce47ad2a11f3ec8e7ec6020a322b26d\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 0086d0bdab52b2e9ccc4fc1306b50e16.cloudfront.net (CloudFront), 1.1 PS-JJN-01d6F200:17 (W), 1.1 PS-CZX-013g942:5 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: 2R4pu_PupUpHsCjG_lh6sQ4RWE8ugASybMCBnM-55wXklcSWpDiLeQ==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 63786\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56323\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":19938,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"fce47ad2a11f3ec8e7ec6020a322b26d","sha1":"44a5d85062a4057e34488bca37a0cb6310dce52a","sha256":"2ed158c8632bed6ac2725aeaeae9fefb3ad1048b4fff87bd076d3777312ab380","sha512":"38e008d88a7a95833107592faf667ffd7315fbe860d806c79f751a1f72293059ed7f4baac001c3715101a0cb9a364b4e0e7a4a04847565ef6a502a6413738ef2","ssdeep":"384:0lfEBbIgKXx3w+q9OkIDiHbYqF1FRhjlmUme2NHQjIlBINL/zNlPnUrH0qK:0E8NljEP8iHbNv1jswuBIR/zNlvWHvK","tlshash":"2992e134c1efe29c512c1cf680e6901650e3b7776a0e55a4b6297d203d2986ba777f07","first_seen":"2025-10-19T10:38:42.933753Z","last_seen":"2026-04-07T12:18:56.438201Z","times_seen":16,"resource_available":false,"data":null}},"time_used":141,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":121,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/_data/draw/number/prize-record","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:40.577Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /_data/draw/number/prize-record HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nrType: 1\r\ntpl: 5\r\nqnwebver: 3.12.0\r\nWebver: 4.9.3\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/json; charset=UTF-8\r\ndate: Tue, 07 Apr 2026 12:17:40 GMT\r\nnel: {\"report_to\":\"default\",\"max_age\":31536000,\"response_headers\":[\"x-requestid\"],\"include_subdomains\":true}\r\nreport-to: {\"group\":\"default\",\"max_age\":31536000,\"endpoints\":[{\"url\":\"https://g.report-url.cc/nel\"}],\"include_subdomains\":true}\r\nserver: openresty\r\nstrict-transport-security: max-age=15768000\r\nvary: Accept-Encoding, Accept\r\nx-requestid: 8bbfe1d7fed3e92f97d897205f5eda5f\r\ncontent-length: 107\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":102,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"aa7aacd3d88b271423061e3d9fbe5336","sha1":"1af968ff4805bb6e8f900b38e707277ece5a8232","sha256":"ecdb94deea3722a057ee1f6c8a57d58d2d84a92c181e69aa7afa8721504e1198","sha512":"149e10ef8638fec401cd5de5265b511a7b1a83234985408e718675132d83e64633b48e9883bfb04e33a9bb4a205ee39a42848f6b3247ba6b8370beeb6b878443","ssdeep":"","tlshash":"88b0120570fd00714f9143c588496953a6bdc0888c324b02d585cd2c4b4c3952251d5e","first_seen":"2026-04-07T12:17:57.925244Z","last_seen":"2026-04-07T12:17:57.925244Z","times_seen":1,"resource_available":false,"data":null}},"time_used":303,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":301,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sports.uogia.org/static/css/0.d848fa3a9d93c8d8b81a.css","fqdn":"sports.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:25.002Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /static/css/0.d848fa3a9d93c8d8b81a.css HTTP/1.1\r\nHost: sports.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:25 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 28 Aug 2025 05:53:26 GMT\r\netag: W/\"6cf7d380ca836ed01224d44abfbed710\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: owlVUJWealbvOzFDpbin55PO_ysbkQ5A\r\nserver: PWS/8.3.1.0.8\r\ncontent-encoding: gzip\r\nvia: 1.1 57441ee201b6bfb8ff8be48f8e002574.cloudfront.net (CloudFront), 1.1 PSjsczsx2us11:6 (W), 1.1 PS-HIA-01rHo246:13 (W), 1.1 PS-FOC-01imY117:19 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P2\r\nx-amz-cf-id: -LkR3cAg-etD0HQxH_8Vx3Ca6VVw7lp_1d7Q_KFeNma1_KmpIQC7Bw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 1646\r\nx-ws-request-id: 69d4f5d5_PShlamstdAMS1cc96_37668-56042\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":45682,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (45682), with no line terminators","md5":"6cf7d380ca836ed01224d44abfbed710","sha1":"0df19aaeba04da0412bda9f83c5ca636c6ba9dc0","sha256":"833d0f933df86d8152374a8d4266b1fa10ddb13e5b9f0ae9ce5420b267187f87","sha512":"27b208cfa986b10aaef2c05846876bf296c40fd087df2440dedbf2e1d5222384b4ed6d705f8938efcb65c291960c2fc2347df40803752ede989c2263809f0a19","ssdeep":"768:qayIg1rgA8Ye01bN4eJopdpdyxKLLh+Pppb67Obhrb63if65WJ1mXAA063:q/I+rgA8Ye01bN4eJidax4wpF6+ASf61","tlshash":"0d23a670cf00266ab2378b6745c0f7a56e34c4539ae30a9eb144ab55c2fdcbd126f789","first_seen":"2025-06-30T21:53:04.034282Z","last_seen":"2026-04-07T12:18:56.367343Z","times_seen":96,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":179,"dns":66,"connect":17,"send":0,"wait":20,"receive":0,"ssl":96},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sports.uogia.org/static/js/app.13904750aad8a7d51e50.1770972668924.js","fqdn":"sports.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:25.005Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /static/js/app.13904750aad8a7d51e50.1770972668924.js HTTP/1.1\r\nHost: sports.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:25 GMT\r\ncontent-type: text/javascript\r\nlast-modified: Fri, 13 Feb 2026 09:06:04 GMT\r\netag: W/\"a462f156354f4760891c540eb05c68bc\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: LlttS.QP00yhVTLIKSJtPEq7dOen4tpA\r\nserver: PWS/8.3.1.0.8\r\ncontent-encoding: gzip\r\nvia: 1.1 def78bd9f6b4ff6109111fdb39be66f6.cloudfront.net (CloudFront), 1.1 PS-NTG-01Hfz98:11 (W), 1.1 PS-HIA-01VH8172:19 (W), 1.1 PS-000-01oRY50:16 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: FRA60-P14\r\nx-amz-cf-id: OcTT-1YidfILTAPZVOddVk9XvTxjyoCNCYI-ArDRS9_4rVtUukbHDg==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 40670\r\nx-ws-request-id: 69d4f5d5_PShlamstdAMS1cc96_37668-56045\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1359604,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65508), with no line terminators","md5":"fff78260818852ea8af1f7f165d58515","sha1":"17edd351ed9d3cf974cabf0c4e90bac9307d3713","sha256":"414954f6520a203edb344021b76d7c2c057f07294c807cd64f9964aa67ac9fd4","sha512":"ca0640b6ca5d44d8aa4bc1b296491afa8c98e1da407599288eab6ead1a21904a5aabc2a529a88106b9b4a95baef8084d7a32bbdb6f23a821db5a21a8ee961f95","ssdeep":"24576:omPy8Kzg1oyY8UbsfMMf+IllA6GnBSNixWWJZYWYctq:3y8Kzg1oyY8UbsfMMf+IlluxWWJZYWY9","tlshash":"623585167043e6b94d9e9012612a1534e1751fd89019d0aebb3ceee49be4d7a332fb3c","first_seen":"2026-02-19T20:52:28.861259Z","last_seen":"2026-04-07T12:18:56.388725Z","times_seen":7,"resource_available":false,"data":null}},"time_used":411,"timings":{"blocked":177,"dns":62,"connect":23,"send":0,"wait":54,"receive":0,"ssl":87},"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-04-07","alert":"Hunting_JS_WebAssembly","trigger":"sports.uogia.org/static/js/app.13904750aad8a7d51e50.1770972668924.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-vipicon@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.739Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-vipicon@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 39331\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"09933111f1665e95842c0002b8140aea\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 f7466ec28218568d891ebf34f75ec8e6.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 4060\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":4060,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"09933111f1665e95842c0002b8140aea","sha1":"9b7577dee897a46eaa1f41df35018a6b17510b06","sha256":"b1f15058c8b8e1dd3343d58de1b87da66c77562499a8268d411d4c3c4becda42","sha512":"4f9604ae994f65c0c69e13d9d9302a66c3de03e0876cacab69ae0ad214886d4db9a79a7226af0ecd3da4a3dfac4682e0cd610bda579af35b2031dae29203c247","ssdeep":"","tlshash":"7c818c15a96d54c3daa3647d00271cfb705116c0257f48da7de060d50bdabfafa03648","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.382499Z","times_seen":66,"resource_available":false,"data":null}},"time_used":475,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":475,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/sidebar/left-lottery@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.750Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/sidebar/left-lottery@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 32712\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"4a1b55548f10e27ec3dadff9e20efc01\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:42 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 bcdf60906265f9ca9cfebfcbb40823ba.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 12359\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":12359,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 121 x 103, 8-bit/color RGBA, non-interlaced","md5":"4a1b55548f10e27ec3dadff9e20efc01","sha1":"c6ad95dadfd564fb8d8d35d0e74388234d2779b9","sha256":"c06b9877a94b3b8d2f703a091d7dacd6038421cd3fbdc43763fe50e0eb42fa7c","sha512":"51e318968b2795177da8a4981b8dd7ba48f33cb55195685e508d5c0fe9b9eae4aa867a1425504a14c55b07877f9bae9eb260461ab8288f0eab872b724fda1273","ssdeep":"192:38r+vzovuhKwsLUfvIqQ/onb8ydhirzHKBKb9u/EugIzGTXmvgqA+z7Ct2Yqi:jUu/sIIqQ/onb8ydhE19roSTX/Vqi","tlshash":"1742c09975a9146ff68564ae0e4452c7f7d3440b83698c0df2faf50872e2848f30b14f","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.391265Z","times_seen":66,"resource_available":false,"data":null}},"time_used":487,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":469,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/320b4301c745bdda.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.400Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/320b4301c745bdda.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/320b4301c745bdda.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56244\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":27074,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260106/983be6a0d44cdf83--1280x215--.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.907Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260106/983be6a0d44cdf83--1280x215--.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 60442\r\nlast-modified: Mon, 05 Jan 2026 16:45:58 GMT\r\netag: \"98c276f2e5d8346adc1436c16ecde5d5\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 e9e028640030d926b686e6a40a561de8.cloudfront.net (CloudFront), 1.1 PS-000-01SuJ115:8 (W), 1.1 PS-CZX-01Qxx41:19 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: FAbdbL_Jy6CqhYLir5vHqBrlCbXlQIV1IlEdRmjnX9e32UCJu2-4Dg==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56339\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":60442,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"98c276f2e5d8346adc1436c16ecde5d5","sha1":"77b905e50167d16885d841278eae06a58cb9ec14","sha256":"35c1eb188fcbd9bdf1f9008945164b9ddff4a24e8430c69222e0e9fa723ff11e","sha512":"d2a4dcd7efccf6c6daa25490035d405d8c197cd5bf3582ec94567bec9dfa606c3936c4c02857d1027fd88cdf4267d4d5646fbec5a8bd21c57664f948c6b32a92","ssdeep":"1536:Rki5O6oEJP6jAaoACqdXMacQg1AvaHQnxwzvXLOBVoaeZMk4ZrSi:Rki5OkZaiqdXI6aw+r7sVoFR4ZP","tlshash":"46430220687427d46c0f9a25e863fb4c53b19af610539aa78236d5fe5338cdab407cc8","first_seen":"2026-01-16T01:14:51.383783Z","last_seen":"2026-04-07T12:18:56.440678Z","times_seen":14,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/activity/homepage/prize_effect_big.json","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:33.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/activity/homepage/prize_effect_big.json HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://m.51570099.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:33 GMT\r\ncontent-type: application/json\r\nlast-modified: Tue, 01 Jul 2025 06:31:49 GMT\r\nx-amz-server-side-encryption: AES256\r\nserver: PWS/8.3.1.0.8\r\ncontent-encoding: gzip\r\netag: W/\"90d718d77ce2c9deec032d8df3ed7773\"\r\nvia: 1.1 391671221007e4a70643cc0de549779c.cloudfront.net (CloudFront), 1.1 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: AMS58-P4\r\nx-amz-cf-id: erh8B-oSdhoNHHAqVuiwtj0EQjyBko8TqUFybqO06zosQjlgAC5LjA==\r\nage: 42157\r\naccess-control-allow-origin: *\r\nx-px: ms PShlamstdAMS1cc96AMS(origin)\r\nx-ws-request-id: 69d4f5dd_PShlamstdAMS1cc96_37668-56609\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":113363,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"90d718d77ce2c9deec032d8df3ed7773","sha1":"5031fee06f7f207ab1ca047947f0539c2da8028b","sha256":"cad241bcce238f2e14e44cc1b74143f252eb8f5cb9c768eeab86047747073ab2","sha512":"200b8c3647dc32453534cddd46c21563890e650adb605251562fec14b09f7e1664d3c94518ac6071b3ad91445b84b63eeb7939d3fe96d59cba71515b6bca4f7c","ssdeep":"3072:iFNFyF3Fot+9URlycT+Wt+9URlyot+9URlyht+9URlymt+9URlyYt+9URlyzt+9B:Yt+9URlycT+Wt+9URlyot+9URlyht+9Y","tlshash":"e4b3061d897642aeaf2168c1cf473826ced7d6472fc689f989fa6c254b701cf5301ea1","first_seen":"2026-03-14T06:49:49.2789Z","last_seen":"2026-04-07T12:17:57.934802Z","times_seen":2,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":64,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221104/c2fd95e795ee612e.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.674Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221104/c2fd95e795ee612e.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20221104/c2fd95e795ee612e.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56161\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":722,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sports.uogia.org/static/img/notice-close-icon@2x.png","fqdn":"sports.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.873Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /static/img/notice-close-icon@2x.png HTTP/1.1\r\nHost: sports.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://sports.uogia.org/static/css/app.6ece2840048a23f848b6.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: image/png\r\ncontent-length: 763\r\nlast-modified: Thu, 05 Jun 2025 08:55:58 GMT\r\netag: \"0d86ab1de102407b80bbfd0db6ac9cc4\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: ktyhJ9trUnhUDtqtTse3s0sU9Ptrnkhe\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 93a74d45373d4f469dbc7c725e999e6e.cloudfront.net (CloudFront), 1.1 PS-000-01HMp114:17 (W), 1.1 PS-CZX-0165159:1 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P5\r\nx-amz-cf-id: _CfC_7Klzs5ohzva2lk46q7nm3QQXYi-RoA7XVcf8NqHdYksmYae4Q==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 1645\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56182\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":763,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit colormap, non-interlaced","md5":"0d86ab1de102407b80bbfd0db6ac9cc4","sha1":"880f2d1c93c0664061aa562a03cd85f2fbef239c","sha256":"406fc6b140ce896a44671845e945bbe7f8e09b58eb03424fc64737ef7c803ce9","sha512":"2e211a3b7324efd29fc6a55af90119533728dd87208a402ce4f4593a422427e8863ca46e67a5c12951122f3cdf056bef28ccddb573fea50161eefb353126a1bf","ssdeep":"","tlshash":"3c01418bc783a050ce54f76ed48332d8b90e2c511620d81ded1ab8661f3195c66d0476","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.445171Z","times_seen":62,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221104/c2fd95e795ee612e.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.934Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221104/c2fd95e795ee612e.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 722\r\nlast-modified: Fri, 04 Nov 2022 02:40:12 GMT\r\netag: \"20812cd106574b4a77b2004225afb518\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nx-amz-cf-pop: NRT12-C5\r\nx-amz-cf-id: pKn1-ZGQbEGgnKr3R6YEgNNjo4OtCEm3Fli8oOLabRpcF_B5kz4pzw==\r\nvia: 1.1 e6b8e88b8ad705f6b48fe421dbc555ee.cloudfront.net (CloudFront), 1.1 PS-JJN-01d6F200:13 (W), 1.1 PS-CZX-01bnS57:6 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-upper-cache-status: hit\r\nage: 75699\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56342\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":722,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"20812cd106574b4a77b2004225afb518","sha1":"7d5bce36320be0d18a372591c43847cadcee5bfa","sha256":"7253b2f7ba7608bf36f60993820f29622ab55ef594b422201a1dc9dcb9a311a0","sha512":"7d10e8a7e6a9d2611293b3bc9be6693836f00f55caac16305f86f29b072a2200fdce33775fa91e85c3cffca3a6a6fc1fdd2571b14cb3d35cfc4e3c0e21846795","ssdeep":"","tlshash":"13019422bce20abe66904554bf2393c4b669b0c9fd6bf51606fb140e90c74523a60ff7","first_seen":"2024-01-09T03:39:21Z","last_seen":"2026-04-07T12:18:56.376301Z","times_seen":48,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/sidebar/left-card@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.747Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/sidebar/left-card@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 75198\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"49cba0cfcbbea3e9665fc0871336459c\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:41 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 c8300eed0230a129b2b5696d1d6037f0.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 11183\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":11183,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 121 x 103, 8-bit/color RGBA, non-interlaced","md5":"49cba0cfcbbea3e9665fc0871336459c","sha1":"75167e1ea7116a750986a82dd11aeefaca690a78","sha256":"f4439aadcbebe76c85d37bf83b3e1515b27f99f711f375e38e48fa1f6a7918a0","sha512":"77b5e4f5446e1b598edf056d9fa71aeae17fc2284b1b124703648e472c410d2eb7bd4713f2eebb8c367401bfe5f4ecd7df13191f69732d2dc3eb5a6755a6ba1f","ssdeep":"192:3iY64QVxWG4Pd7d80RcJGgzwx94X7EQnAD1uzVtquSCurpNjqA8JSn9VyETVO6xT:SY6hWGwd80GixsNADUM1rpFDXZO6x+I","tlshash":"1b32cf679d22e5657e2b2f3cdb6b0093adea7448fdb2352cf204ac107f971846e6d600","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.407167Z","times_seen":66,"resource_available":false,"data":null}},"time_used":471,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":470,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-hall@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.041Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-hall@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/183.867bcad2b2be7c6640ae.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 63909\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"19702c2c8a645c57b631d7113d3cff2f\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 0fb47c775ee2a3663825bca9897ba11e.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 947\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":947,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit gray+alpha, non-interlaced","md5":"19702c2c8a645c57b631d7113d3cff2f","sha1":"fa9de32f6f51188e59195cb5d5526fe1ea53895f","sha256":"dc7b58242c7a2c365b95bef6083d9cd7443ba94fe98c77928a1d9e2d203ac6aa","sha512":"8180b848eed8ddb7a4de1dea9ee4ecd55c65b8d5ce3686042f8390bd7996c5571845315d04dbb0888148c8bb360e213ac55ba619609716d974582d1a0489b974","ssdeep":"","tlshash":"b811c8e63ba1b86c894742ea03830af1b87a7cf071331a72d1c985d8842514d1ae1658","first_seen":"2023-08-29T14:06:40Z","last_seen":"2026-04-07T12:18:56.393005Z","times_seen":61,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20240609/2dc6a04f91225c7d-2x614.jpg","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.239Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20240609/2dc6a04f91225c7d-2x614.jpg HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20240609/2dc6a04f91225c7d-2x614.jpg@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56204\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":67890,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/e97a9c690b1992ee.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.417Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/e97a9c690b1992ee.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/e97a9c690b1992ee.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56247\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":26898,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/00fd0e75e4cdb620.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.431Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/00fd0e75e4cdb620.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/00fd0e75e4cdb620.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56249\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":23494,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20231006/ddbb512ca3d64dcc-2x614.jpg@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.555Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20231006/ddbb512ca3d64dcc-2x614.jpg@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 72662\r\nlast-modified: Fri, 06 Oct 2023 06:40:45 GMT\r\netag: \"2565e4b0a08405f46011e40bc9f086ea\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 0977bc7110d2cb9bae1b93beda73da08.cloudfront.net (CloudFront), 1.1 PS-HIA-01oG8155:17 (W), 1.1 PS-XUZ-01yVV44:4 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: OOPVKj78Mb0HJPTtqUj2HhclW743fZz7TtQVFJCTI2byxOTNSuLhxQ==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 72547\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56279\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":72662,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1490x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"2565e4b0a08405f46011e40bc9f086ea","sha1":"43033bc658070fe3a09f5a1e11e91e4e9cc97b36","sha256":"a850310dc08b7b5472b4c14e2ad3c65ffa7dd590c0e648ef87222bd01ff2e0d4","sha512":"a0872796d8b61aa8aaba3d67ca7e6e7fac149ef443cd70034880dcc57bfce07e179568fac33eb6bc94d5027508838dc387ab02ce6524a702929a99bef4056876","ssdeep":"1536:gYBKgniyNpu4vQJlUdV+05Ut6/X95LlUiK9AhNRcOXUqQLQQosd0MMY:DK2iyNpaPU+Nt6/LL/K9GzDXkLBo2/","tlshash":"b36302c1fd7601d2fe28b23924a192566e62631842ec40cbcfc5837c58eddadb2566ed","first_seen":"2025-10-19T10:38:47.644094Z","last_seen":"2026-04-07T12:18:56.383135Z","times_seen":16,"resource_available":false,"data":null}},"time_used":312,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":280,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221105/9775bfd3a60986c8.jpg@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.556Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221105/9775bfd3a60986c8.jpg@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 92066\r\nlast-modified: Sat, 05 Nov 2022 14:40:44 GMT\r\netag: \"c593a92e4a268718db92a213d0c47074\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 4313fc64a6afe03d0bac7c0ec16021b8.cloudfront.net (CloudFront), 1.1 PS-HIA-01tWB184:14 (W), 1.1 PS-JJN-015mq212:1 (W), 1.1 PS-CZX-01ZgV58:3 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: NwTrMFJ1O28Bt8URG6Roim61cP5LCGKSAQ1USm_L3pFe_3nRF5YMDQ==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 72547\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56280\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":92066,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1490x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"c593a92e4a268718db92a213d0c47074","sha1":"f51f42cb562551684a454175651e616b2dd3780d","sha256":"4fc4045c81f3d44b6ed87d68a4ad741c827a1fa329b4c9d0d23e75a137066f6d","sha512":"3473267c8caabba9db46b194c935c53687965c7336f7ad5cb89a0b62ab6558d5c1652c5763b34c3c23d51015a4f345d8b4190e2461ef84b500982cc7ae3f210b","ssdeep":"1536:VHewnijMm+J1IG7O8Qt8VKXOTJTfDNymuP7xniZyFloG3eXcypO4FnbRWxf:VH+3+J1v5Qt8Y+TJTfDNyVP7xi4bfesb","tlshash":"d49302288fc4e74231792a6f9169d35438d8743459f74a7aec76b336898c270f43ad48","first_seen":"2025-10-19T10:38:45.87458Z","last_seen":"2026-04-07T12:18:56.453021Z","times_seen":16,"resource_available":false,"data":null}},"time_used":327,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":296,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/320b4301c745bdda.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.643Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/320b4301c745bdda.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 27074\r\nlast-modified: Tue, 08 Nov 2022 02:39:04 GMT\r\netag: \"ece4469cb2db23c83a4df54c08a8a60f\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nx-amz-cf-pop: NRT12-C5\r\nx-amz-cf-id: Phmz0OLbH5XWt3F7uikWdeTI88ICbL6bhrXDdn3-2To_QkXZ1wdX2w==\r\nvia: 1.1 afb297fdc21cc738a9f3330dec8548d4.cloudfront.net (CloudFront), 1.1 PS-JJN-01Xbi199:9 (W), 1.1 PS-FOC-01tmR97:8 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-upper-cache-status: hit\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56307\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":27074,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ece4469cb2db23c83a4df54c08a8a60f","sha1":"0845b40fb0409560abae87778f841af11f4d817d","sha256":"dd85b4b8eafcaa60acdea8bd0bf18bfabaab560b2e5ba81bcd14aa3c5b7a9ea1","sha512":"cffa2e5edeac80d0fcb43c10cbbc0ec2c2b673418e5440016286ece962b79ce55bd50a37f45f8b2370ad93b8fa8a372b6c70fb317a41edfa01881f3e73d96e4c","ssdeep":"768:P8DYLksM3CbYY1IJ4veZLiyW+3v8omDjv:0DYLksMw1IJ4K2yJ3v8H/v","tlshash":"88c2f148c81d96258ed3bd154cd57c952e7ff0db3c93d34a0f628fe26de2a462846e04","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.40899Z","times_seen":59,"resource_available":false,"data":null}},"time_used":133,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":102,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/7623f4cdc50e184e.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.299Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/7623f4cdc50e184e.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/7623f4cdc50e184e.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56218\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":28376,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20250105/bbba6bde66e0f4fe--200x200--.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.476Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20250105/bbba6bde66e0f4fe--200x200--.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20250105/bbba6bde66e0f4fe--200x200--.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56263\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":5420,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/19f8131adbdb6d23.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/19f8131adbdb6d23.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 17786\r\nlast-modified: Tue, 08 Nov 2022 02:39:03 GMT\r\netag: \"6ed128170049b963ab6d8beca079c497\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 89e2121ce1bfb4f8fdcd5075e7c32078.cloudfront.net (CloudFront), 1.1 PS-HIA-01rHo246:17 (W), 1.1 PS-CZX-01bnS57:17 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: 7BoaAJB7sENrk-utU0UpXVCFpuV81ek4OBnM3fCTBjqI6jrSTS46Sw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56319\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":17786,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"6ed128170049b963ab6d8beca079c497","sha1":"a4e67c3931eb21153d158a095f60799eb36c6f23","sha256":"1431d4a12893319a90a8a6518756ab1f4d4ce0a00cd83f5137693caba0f906a6","sha512":"0374f02ffab16ff2fb8556056174a02281dd8992900d8afe8383be602210ba2416757ffcc030cc4538fbbedb123bc6c391f8b8062efc06bb2c15e9b0eaaa02b7","ssdeep":"384:/wITAzQkEVfZAFDU5mZn7y94bT1qv7fJoioy9V/JLZGVbnZk:/w5zQyRJmqk76ioyXRZWm","tlshash":"b682d0387adafa5872c5a60db68404eacbcd0de3da374d797134ab24ec4755c01b09e3","first_seen":"2025-10-19T10:38:44.251962Z","last_seen":"2026-04-07T12:18:56.384493Z","times_seen":16,"resource_available":false,"data":null}},"time_used":135,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":105,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sports.uogia.org/static/css/reset.css","fqdn":"sports.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:25.000Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /static/css/reset.css HTTP/1.1\r\nHost: sports.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:25 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 28 Aug 2025 05:53:29 GMT\r\netag: W/\"693871a3aedbd0b8f3633ddf95f1b6be\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 7q4mn5P1r3WuAY_zU1_6VyMGXgVpIKiF\r\nserver: PWS/8.3.1.0.8\r\ncontent-encoding: gzip\r\nvia: 1.1 84116bff0a26d7866b2386043fce704c.cloudfront.net (CloudFront), 1.1 PS-NTG-01beM227:14 (W), 1.1 PS-FOC-01TKc95:7 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P3\r\nx-amz-cf-id: jAhts0CSivicRyogkHOiN_tzJFo1f02HVs3eyqZgbGQuK6RQhuyLIw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 1646\r\nx-ws-request-id: 69d4f5d5_PShlamstdAMS1cc96_37668-56041\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1747,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"693871a3aedbd0b8f3633ddf95f1b6be","sha1":"e7ddbd6492afca43a56626ecce8b9f627eaa28d1","sha256":"a81c23a5263285eaa516d9fa4b813839b776187ca98c54e5b02dbead3fc56d18","sha512":"53fc4d4ce500d1ec92f46c88c8c580674933b1b1e314ad9083f70308af7f0002b085b1f0e879b42b043e6b34229378af41a16db9d4e2fe6593155a8b2f7055a4","ssdeep":"","tlshash":"be31516bc17505a015abd8787255ce59b37e4113144c89f8f2eeaa68de05a3c90e238e","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.385604Z","times_seen":113,"resource_available":false,"data":null}},"time_used":384,"timings":{"blocked":181,"dns":69,"connect":23,"send":0,"wait":18,"receive":0,"ssl":83},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/sidebar/left-hot@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.744Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/sidebar/left-hot@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 20236\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"5ee066052287c4631813af056f0ce9c7\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:42 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 7cca08baa146afbf2733cbc68a3e4c68.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 10785\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":10785,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 121 x 103, 8-bit/color RGBA, non-interlaced","md5":"5ee066052287c4631813af056f0ce9c7","sha1":"d89997d82a86e903aeec53ab46dbb399420e99e7","sha256":"e5ed8d2fab210f40f002443ee9b386ff1394a6b056deb8a97c8be96be60fd265","sha512":"49c9600fc530ec75cd683dd6acc1941e31c7aba2f8d01f1bd9f9393122904ba3958e8391bdc9a47261eeac5c620a1605d37ac333cefde0530a57c6b597946dee","ssdeep":"192:3xjek0MYkyx5HJ4cN9hUtKJqiGKNzOpSG437SOzG+tNAH2w2Hqo40bNkhJpwzS7M:adfpxZQ2/RNoSrjtNAHLeI0KhJSS7TmJ","tlshash":"8e22c09ed59930792994c1c875bf3dc6b9d34ce045434419cbfea6ee20c05d939b8f89","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.387053Z","times_seen":65,"resource_available":false,"data":null}},"time_used":472,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":471,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/26ca8cb7438ee82d.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.331Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/26ca8cb7438ee82d.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/26ca8cb7438ee82d.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56230\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":16354,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/41342eff9ee004e6.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.404Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/41342eff9ee004e6.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/41342eff9ee004e6.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56245\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":25396,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/0e73e411ea49ff83.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.641Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/0e73e411ea49ff83.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 28172\r\nlast-modified: Tue, 08 Nov 2022 02:39:02 GMT\r\netag: \"9b10265080207008360b1fb66d09bfcc\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nx-amz-cf-pop: NRT12-C5\r\nx-amz-cf-id: 7IScObDrZkF6dCGY9XGqFhgxfkUTmyFbbrqg4WxPOhh3qlEcJEFq3Q==\r\nvia: 1.1 532c50c8dc03f4cf8bce6bbd88ba55e2.cloudfront.net (CloudFront), 1.1 PS-JJN-015mq212:5 (W), 1.1 PS-FOC-01kD0116:15 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-upper-cache-status: hit\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56306\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":28172,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"9b10265080207008360b1fb66d09bfcc","sha1":"ab30c3a9cbdb3290061e0d7b77f77e78f617aa01","sha256":"fb25a45a3a8c16735081a550473f1e615887bece61bd6728f7b15276a53b7275","sha512":"645721b317b7e10f7453bbfe6b4388896d0b6e3c32129ddeb889fd4391d374204f3d149cf403419b75cfc6932931280c1d3d55457a3e0239cb40cfc42c821ba1","ssdeep":"768:PJ8uIyZ7Y7XAk+5yUvisVawA5agWfPrkzNe+MeDDu:B+ytMAk+IUasQIgWfP0Ne+Mee","tlshash":"b5c2e1c5948a3bcf784016359edef22fbd88ae04eae5616ea0d0c7767568095383a1f4","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.416265Z","times_seen":60,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":88,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/18c3460f60fa650f.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.687Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/18c3460f60fa650f.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 21252\r\nlast-modified: Tue, 08 Nov 2022 02:39:03 GMT\r\netag: \"60b3c64846ceb7309aefc57b7ecf310d\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 35b50c893dd75471ad03decacab09632.cloudfront.net (CloudFront), 1.1 PS-000-01cgl116:1 (W), 1.1 PS-NGB-01Ahw173:11 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: rZ9rQFWToBrML3eC9iJbtj1NhYxW5rULlHa1Rhm4WwWAS1hgrwM9cw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56325\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":21252,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"60b3c64846ceb7309aefc57b7ecf310d","sha1":"ea0894fc89ec8d9226f6960b3adad6b540e4e6cf","sha256":"87a7927b0c7f1935beca314ad15e0fa8d9667a3d5ea54e462f0bcb5fa01f6d03","sha512":"3355e16c83ee7c290421634795320b230831a552c2942fa464d970061fa1a4d17459692a2d218ad8015cde6cd04bbb3684e1c43aed4557dd62fa1ef4adc102a6","ssdeep":"384:AehPYtpTrSU3bKEyxbeUQoN10CrUEoVuH+pGz20pz/BdiYUhfcEFd3ce9kkoHRKi:RPY7vFmECbem10CyVWfuYUhce9kkO","tlshash":"4b92d14453ca186fd3dc144e8112ad6c5be986e0fb338e58b9115f6cd6758090af3eb9","first_seen":"2024-04-29T06:18:26Z","last_seen":"2026-04-07T12:18:56.486437Z","times_seen":19,"resource_available":false,"data":null}},"time_used":145,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":122,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/css/5.30337a5b205844be5d17.css","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.173Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/css/5.30337a5b205844be5d17.css HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 14900\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-encoding: gzip\r\ncontent-type: text/css\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: W/\"f0e070b634cdeb2f93d781a407544d91\"\r\nlast-modified: Thu, 29 Jan 2026 06:27:58 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 27daea920e24a2549315d62ab29ee85a.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":37929,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (37929), with no line terminators","md5":"f0e070b634cdeb2f93d781a407544d91","sha1":"b6ef2c8a2c0e1035c4c6e0c3c26ebbe95bc85395","sha256":"2db57d73ddd4c0f3b219f77ee59b78dd4e39b0faeb1c8e61f6cd5323d8f0c0c5","sha512":"6baca6551e6c6ed2e815c2b5a872cc6d85e307ca013d3d92d9300ad321be4aacac072478dbfdf2669e7ab68c0b85c2c11251b06514629880391cd5765a504e4a","ssdeep":"768:fuNadup6nnf9f0Nxax1Km+b4OkNnGUgalnEfqYa1Wkwq4dfh4F1:fJvd1","tlshash":"58037480be4c202b6937c5237a70f018c817e6a3f365a1b25b3bb965dc4f946357bb49","first_seen":"2026-01-29T12:45:58.628304Z","last_seen":"2026-04-07T12:18:56.487948Z","times_seen":13,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/77a029b83626151d.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.568Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/77a029b83626151d.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 24688\r\nlast-modified: Tue, 08 Nov 2022 02:39:09 GMT\r\netag: \"4aca2a994bd079f38f49aa68eafc381e\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 07729fc4025c8825b20c4f345e32df36.cloudfront.net (CloudFront), 1.1 PS-JJN-01m5h211:14 (W), 1.1 PS-000-01TT241:2 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: CV1nzg_ALPBydqEKMx2q-skatenShEUgqZtAh4P8g8tmCzqfCRjkHA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56289\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":24688,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4aca2a994bd079f38f49aa68eafc381e","sha1":"7410895f736ff1095039249c319e641c5f278a18","sha256":"6d41084800d92e3e76df51559e952ba5f2ed97e9921d0f83a912f5e27fc0e0bb","sha512":"a350241c84f8d30f6760b948d31bb8d75f299d8d85a623fd5c108aa9534938ce66298c51e833e7f9836027846191f4863ed0ccc98f7f953bfa80f50f664089b8","ssdeep":"768:52ivgJ/0/05cdb+CcAwVyEGbFl1eDEYDThngS:YCgJ/jcdb+DAwVynqDdng","tlshash":"a9b2e1863bcf28cb299d49ae0dfef2f514e56d14d0bf7834285a2815f6d745ca21a424","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.404189Z","times_seen":78,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":87,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/_data/activity/popup/list","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /_data/activity/popup/list HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nrType: 1\r\ntpl: 5\r\nqnwebver: 3.12.0\r\nWebver: 4.9.3\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/json; charset=UTF-8\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\nnel: {\"report_to\":\"default\",\"max_age\":31536000,\"response_headers\":[\"x-requestid\"],\"include_subdomains\":true}\r\nreport-to: {\"group\":\"default\",\"max_age\":31536000,\"endpoints\":[{\"url\":\"https://g.report-url.cc/nel\"}],\"include_subdomains\":true}\r\nserver: openresty\r\nstrict-transport-security: max-age=15768000\r\nvary: Accept-Encoding, Accept\r\nx-requestid: 5acb4bc4b9b87e8d6b0791c63df8e36f\r\ncontent-length: 2177\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":4491,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"f456fa1ccb1e3acaf60b3642bc7d9c7c","sha1":"f0c94d486477502f3098f4005e6bcf2f26ed28e2","sha256":"38f3031c23b3816fbe1897fc9ff0b338ec2b176d7330f190c6d6f934b7da6300","sha512":"bd5cebbf45d098afad7767d353ed2230e5ad2e244e47ae43a3ffdc530787be0b2cc13dede6fc5141aa44768a99dcc363347111dc002c292137abaad33ab92949","ssdeep":"96:65Dqx1R2IDHB0CNq3PO3Po54FrYqYJYorukMpEeeye85yeqmRG5r8:gDqxWE/NqW3PeRYmDMpMye85yeqkGO","tlshash":"1d91b97734ff0fedcb623862144b514f950d838ec82d97ecb228c4a492c9b5131a792b","first_seen":"2026-04-07T12:17:57.961482Z","last_seen":"2026-04-07T12:18:56.489066Z","times_seen":2,"resource_available":false,"data":null}},"time_used":469,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":469,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-home-hover@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.039Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-home-hover@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/183.867bcad2b2be7c6640ae.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 63178\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"be0d485d4c51659cb469418f7aa8cff9\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 6119e41683ed07f8d52bf84a35de56f6.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 804\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":804,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit colormap, non-interlaced","md5":"be0d485d4c51659cb469418f7aa8cff9","sha1":"0e90be581174f052b2cbe9a7f217599cca8bd54d","sha256":"d04b9352476d0aa132e87853677b1193ef0783c2cd89a862f25cc2d72ecc4fa3","sha512":"c8e2cb1e8a7b6040beda6fba81d0b95ef8451811ed8e176da6e9dbe769f5b56d92b126c6cfe4e26c33a1f7c7570a727b4c14ef7a71d5f7283210dafe9b1be54e","ssdeep":"","tlshash":"6001c0b94a8038a0f0d6457a10ab40eaad3e4ef55136a494a85df01b0b73e4881c12cf","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.369289Z","times_seen":60,"resource_available":false,"data":null}},"time_used":308,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":308,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260104/a906ae407187d997--200x200--.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.306Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260104/a906ae407187d997--200x200--.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20260104/a906ae407187d997--200x200--.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56224\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":9998,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/19f8131adbdb6d23.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.439Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/19f8131adbdb6d23.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/19f8131adbdb6d23.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56252\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":17786,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/sidebar/left-sports@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.530Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/sidebar/left-sports@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 39003\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"23c1c7853596d87ddd85e2b5d9134c9f\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:42 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 3448fddde721c06696a591caf57a416c.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 11443\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":11443,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 121 x 103, 8-bit/color RGBA, non-interlaced","md5":"23c1c7853596d87ddd85e2b5d9134c9f","sha1":"6748eaf34c0dbfdd00559b6d59a85c627cf72054","sha256":"a8bacbb017f62347f4a35bfb330ed728fd87370f255964e7e80dbe826c264cd9","sha512":"acc78973181a5aad9d344e7ddbe11f77613131aa958e59859ba830911539a15df17ead7633374092c47ac24f98fba5da8389fc01f777a39608c3dbc563c088a7","ssdeep":"192:3I+80pdFsVDXRONJ2VNVOzt+nSCo3/wY6BHdw1/rywaQx46hxCyTjGgU7Ky3NArj:S0mRONJ2T0zt/X/WHdwJ+NWNigXyCrKe","tlshash":"f232b0704f546295c6a9e35f24a95e40fd0ce299a81f0ebbc6a3d1ef22066a02ced571","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.484541Z","times_seen":65,"resource_available":false,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":270,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/c484a62bad9c91bd.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.588Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/c484a62bad9c91bd.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 19718\r\nlast-modified: Tue, 08 Nov 2022 02:38:57 GMT\r\netag: \"56fd3d0f9cc7765508eda7bb38cde4e2\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 1657768e7619fc6ae9e72ea3e6a6f238.cloudfront.net (CloudFront), 1.1 PS-JJN-01XUm198:13 (W), 1.1 PS-CZX-01YLn73:7 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: JKx6EnNrJmAyP-Zi7Q3IWHZM4dGf7kM1LrGqa9SWtNXi8S-qjS6qog==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56297\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":19718,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"56fd3d0f9cc7765508eda7bb38cde4e2","sha1":"393fe1b2d5559466a156ac48c11f70cf8963817d","sha256":"04e35cf21cf8b4ce63e6e96bdeb5ef0935d0dff1cab46aa0ad988985d68a220a","sha512":"06964403effb8be200c2611e6bc9598380aa21393997cb833f523b0f41a8ee2af287fa6e7624610dcb59940627041d8d1b66ae06fc1e3ac8e66a157604394acb","ssdeep":"384:V2KL7kLgD/wlLXB7H42mghm4FrBeiTTsBGniZHQsXBzukmMj5:737DuDB7H4cF9P2JBzukr","tlshash":"be92d0c29023a084e7140b7c1d05ddb62458b3f2a3eb91917ea77e79ac5dca4b3b7b50","first_seen":"2025-10-19T10:38:45.507127Z","last_seen":"2026-04-07T12:18:56.368146Z","times_seen":16,"resource_available":false,"data":null}},"time_used":327,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":295,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20250105/bbba6bde66e0f4fe--200x200--.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.696Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20250105/bbba6bde66e0f4fe--200x200--.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5420\r\nlast-modified: Sun, 05 Jan 2025 10:15:13 GMT\r\netag: \"dba50813fd67edb214a556acb94033f4\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 1b64143ad8928c8f978ba9e138d9f266.cloudfront.net (CloudFront), 1.1 PS-NTG-01hLn226:13 (W), 1.1 PS-CZX-01OFj122:16 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: zqEomhwJqgaVCEs1fmxihLtaiQCpqf3gXErRXSxzGvvJ_fPuOA_4xQ==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56329\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5420,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"dba50813fd67edb214a556acb94033f4","sha1":"221ed523de0254fab2cb22764199b78579e96790","sha256":"89d42725adc5231e343c54dddc475669698ee3db456a359d982ef6c8f8af2e0e","sha512":"a4493ad5e07adbe7229190019c4535c716c9eaa217a339f325b466eaecd177f90c575cb4c49bca12d45518ec906f1245fa40866ed3396db8ff411f34732d7179","ssdeep":"96:K6hFs0m3/Zw25MO1+iSyalwDbKhLqbVeDLcYdgn/8fRU7kwRNT8PwxrTLPcXT81+:K6Ls0m32O1/ewDpbVeXcWg755nSI1T6","tlshash":"2ab18e77864bc76b7a0a9c9c3028cc11b7ecec3a581bfe44693d156e69036dda4450bb","first_seen":"2025-10-19T10:38:45.649297Z","last_seen":"2026-04-07T12:18:56.429046Z","times_seen":16,"resource_available":false,"data":null}},"time_used":161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":138,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/sidebar/left-sports-hover@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.742Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/sidebar/left-sports-hover@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 13630\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"4dc2a6f3bf89d55bdb1ca346bbc3e2e6\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:42 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 2b4afc9aa87e1c567d185069953d85bc.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 5210\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5210,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 121 x 103, 8-bit/color RGBA, non-interlaced","md5":"4dc2a6f3bf89d55bdb1ca346bbc3e2e6","sha1":"b7e3929358697a9fb66ffe2dfa68679abb483f34","sha256":"95ae8b8ef33be4e54f84270b4bdacd196eca704d0b85d7e54c8e86e186c3999f","sha512":"9d240e5f5758cace121a359cdea830a1f1fd83ed1da69bfbdfd65bc19b94b674b1df83b197baed23b8341b29c89b6d55134cd1a81025946a577c07066a20910f","ssdeep":"96:3IycUN1uOhcvJRETZGNYopBrzW1i4gMJajjso2Jlv1AwH:3eUN1hcjccNhFzW0Kago6jAwH","tlshash":"6cb19f11478d7bcf9dd95a41d8a3b511cdb1878ef2f58cbd87e3e45a170238a82a1403","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.476607Z","times_seen":65,"resource_available":false,"data":null}},"time_used":474,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":474,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260311/12758832591bed3c--1540x1064--.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.937Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260311/12758832591bed3c--1540x1064--.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 233770\r\nlast-modified: Wed, 11 Mar 2026 04:11:00 GMT\r\netag: \"d91bf164ce525a247d1d3db0ea9bac4b\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 746d8901877c0617ed42ec44d1dfc8b6.cloudfront.net (CloudFront), 1.1 PS-WUH-01fmD23:14 (W), 1.1 PS-HIA-01VH8172:10 (W), 1.1 PS-CZX-01YLn73:19 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: RxqQf6hhnc-F9lqnhfXu3fdrRrd01OawmpuQoahk7QYdesNWlMUrnQ==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 21397\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56191\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":233770,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d91bf164ce525a247d1d3db0ea9bac4b","sha1":"7e30ee7344a5e037b6120baf68ec532b8a858f51","sha256":"9502251d088164fa3c1114d65802648206b83547b953aaab4c22c4756afc9ee4","sha512":"621f3c94398d60888c84eb67c61a4510ef6076b56a3bca9b9b00c639f7b7cf587d7d32eb22f8cd61c8996d9af58ec770ba2866f2ef90f61687bbefe7bfc9f134","ssdeep":"6144:J+OEMBAFVH1nUsyEehZt66glqeALkBaTGhKu2wZEmPJ7ZIur4:HEMcVdZLehH69lqeHBIId2wZES4","tlshash":"74341384a3b72feedb20ac431da876f7691cebc35d2dd1391b5403ace51ad19d618c22","first_seen":"2026-03-13T23:25:48.807822Z","last_seen":"2026-04-07T12:18:56.412172Z","times_seen":7,"resource_available":false,"data":null}},"time_used":81,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/402e021c59662920.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.340Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/402e021c59662920.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/402e021c59662920.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56232\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":22118,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/3cf03d634cb2d259.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/3cf03d634cb2d259.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/3cf03d634cb2d259.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56255\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":16580,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/dcfc29a0f7b85c2e.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/dcfc29a0f7b85c2e.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/dcfc29a0f7b85c2e.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56260\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":19074,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221104/c2fd95e795ee612e.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.675Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221104/c2fd95e795ee612e.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20221104/c2fd95e795ee612e.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56162\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":722,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221219/40f8844164b22a34.jpg","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.272Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221219/40f8844164b22a34.jpg HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20221219/40f8844164b22a34.jpg@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56211\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":107018,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/eae81613487d57b5.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.423Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/eae81613487d57b5.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/eae81613487d57b5.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56248\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":21666,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/dcfc29a0f7b85c2e.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.692Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/dcfc29a0f7b85c2e.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 19074\r\nlast-modified: Tue, 08 Nov 2022 02:39:15 GMT\r\netag: \"a93c1a169c4f19016402f7e876f972ef\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nx-amz-cf-pop: NRT12-C5\r\nx-amz-cf-id: EDq_Iy0JmrDb-1Nd53hHBU3KdkiFNinyjlGIztkfq8VhLUdtr1L1hg==\r\nvia: 1.1 1f83e59f609910f3106a87395db1ee4a.cloudfront.net (CloudFront), 1.1 PS-JJN-01XUm198:8 (W), 1.1 PS-FOC-01rf4118:13 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-upper-cache-status: hit\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56326\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":19074,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a93c1a169c4f19016402f7e876f972ef","sha1":"340a1e2d337dc925f3b2bfa0d08fae6fc79be6ae","sha256":"8421cf575359d7955d19fb395b38c27dfaa4272477e1ceeadd150f3e09a20f13","sha512":"250ffe44d5139c3455048286cf3d965f5aad4ea24256458cb4d7bacf4a1cfbfdcecfd3dda9323d52d3d544757ca225a84a49ba8a1fa4402510890b70c8b42ca0","ssdeep":"384:lfvGI9Hj7w+Kbn3nD4VMWNDn0MSEqv0qXkQtUO72xyqH/n:lfvGQHj7JqMVMmnHSE87kQtUOSxfH/n","tlshash":"ec82e00289e39b2715a3143263c59a07b87abf1c3962bfb6b7cc1855e0c21d31af5a46","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.369873Z","times_seen":122,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":123,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sports.uogia.org/static/img/bar@2x.688db54.png","fqdn":"sports.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /static/img/bar@2x.688db54.png HTTP/1.1\r\nHost: sports.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://sports.uogia.org/static/css/app.6ece2840048a23f848b6.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: image/png\r\ncontent-length: 945\r\nlast-modified: Thu, 28 Aug 2025 05:53:30 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: Xm2uFkHRR88yF.lpS1g9LoajI44EGhdZ\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\netag: \"688db540d2b6c48ba9c3e2d0bd9add4b\"\r\nvia: 1.1 6f8f86ab1e5775f9edd4908164d531ae.cloudfront.net (CloudFront), 1.1 PS-NTG-01aB9225:12 (W), 1.1 PS-000-01OaW51:15 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P3\r\nx-amz-cf-id: AUW8h5uXl5WR-J9JvnBzYm3Z0r-tXLOVl3ffx-kVzt2O9phQtDghDg==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 1645\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56183\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":945,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 465 x 1, 8-bit/color RGBA, non-interlaced","md5":"688db540d2b6c48ba9c3e2d0bd9add4b","sha1":"3fa6644524954f951291c3c3b9c9df953b8ff343","sha256":"b0088e6523adfafd3f50b1a9cb13106810a50497358fea3ea51665667dbdf94d","sha512":"8109edb75138393a9da8b0195bf0afe7a4c01219e0d018b17220a66e27e36f092e6d8e25102488006d343c8eaedd455f497a6fe5db25b5e325838a6c399c95ce","ssdeep":"","tlshash":"7f11101aeb012d814089e78178f68137aa52c960ded0f1e2facec41659bd9f9061edcb","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.446838Z","times_seen":84,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221227/9ebb789e7a5da53d.jpg@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.550Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221227/9ebb789e7a5da53d.jpg@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 103598\r\nlast-modified: Tue, 27 Dec 2022 08:35:55 GMT\r\netag: \"26b08e8f65d162f82b8e8ece5897cf59\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 8804472d967b864ae7707a18883e65b2.cloudfront.net (CloudFront), 1.1 PS-NTG-01FLw54:3 (W), 1.1 PS-CZX-01ZgV58:3 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: oAYS4sVnmCE1cJput5Wvzws-GCJzgAZPE3tNCn5MfVPyQnEHTqsHAg==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 72547\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56275\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":103598,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1490x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"26b08e8f65d162f82b8e8ece5897cf59","sha1":"e5b1b966a48d0a9d566b112e2e11a853ded8c7c8","sha256":"69f95a482a9e8381be6261192a36d7925c45ddc343639554716b91d24c01d20b","sha512":"8699bf9663c9b623cfdc7a0b06398381fcdb43b7afb431acdfb32e48eb897941b70c4faebd6d971bda300a5f2ebef2e9458103b7a90ac70f134e8a30f3b95ea2","ssdeep":"3072:LuSw87x/J8Fp6no6OGhpo6sHATGiDR9flNU:C7QJk4o6OGd8JiDR9tu","tlshash":"1ba312ec0b1527e5abf4cb7f65bcc08d98c272098d1d89a50b6a447f4346fb1857abc8","first_seen":"2025-10-19T10:38:42.787687Z","last_seen":"2026-04-07T12:18:56.36484Z","times_seen":16,"resource_available":false,"data":null}},"time_used":337,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":300,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/a8650c8cc6f8a4a5.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.556Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/a8650c8cc6f8a4a5.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 18284\r\nlast-modified: Tue, 08 Nov 2022 02:39:12 GMT\r\netag: \"b330c981d50e42378d7346a8db06a874\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nx-amz-cf-pop: NRT12-C5\r\nx-amz-cf-id: viRscM8MeI2LIP3bgNmOtIGnSqsgyYjCUD0aWwhgseDANGQswz2Yjg==\r\nvia: 1.1 907f35c342230a570151549d009005d8.cloudfront.net (CloudFront), 1.1 PS-JJN-01d6F200:9 (W), 1.1 PS-FOC-01TKc95:7 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-upper-cache-status: hit\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56281\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":18284,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b330c981d50e42378d7346a8db06a874","sha1":"4c7243cc9beed53045b18997c62c6295398d9176","sha256":"6144bd46242c7f004cfd47dd4db9495e963bfc67f5d74d0b6f82b05ae46e8f90","sha512":"fe70b341cc6e967a4cfb9674d81250c5e3733fe147b21012377f8b134b5f4a95f3794d66bd9b9ecaf3799fcb96733bbff78cada58d94673d1781d21610f205cb","ssdeep":"384:mYBuWY22dyk2N2xpkTTDQFqhuLQ/5CdgM6+uo4xqk:ttkdyFk0T02uLQ/GAxqk","tlshash":"2c82e11d112984abd11e8c78c3d50214fe3f7c8195faa0b2e71b2e641fbfac78368482","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.398981Z","times_seen":94,"resource_available":false,"data":null}},"time_used":69,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":39,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/41342eff9ee004e6.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.656Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/41342eff9ee004e6.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 25396\r\nlast-modified: Tue, 08 Nov 2022 02:38:47 GMT\r\netag: \"9a0934c834cdfb4db728fc28662407eb\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 0977bc7110d2cb9bae1b93beda73da08.cloudfront.net (CloudFront), 1.1 PS-HIA-01oG8155:18 (W), 1.1 PS-CZX-01bnS57:10 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: 4-Lld1QDNhV20G3lbivU9r5ZW0hXqR1c2IaWx-Ed09vVZJoCT39CPw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56309\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":25396,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"9a0934c834cdfb4db728fc28662407eb","sha1":"2032155ae368be3ee78a0c632ce2bb5151a928e6","sha256":"09744cf063192a1ea962f62f829529eec5284e521d27c0f0800c75a8a1f92dea","sha512":"c643dbd3159b7fc9ae1bb04b917cfd7f88355d851122ab637db278b6a6c7e28ef4c4ddb1d2220d3685e2970388ea8302b9c4c8e62fcce69ec161b2159e45b1cf","ssdeep":"768:yH15353Td5iS+aYbrT2OHzrQX0oIV200tRSpH8ng:+PP+aYiOnQhIV2uHv","tlshash":"ddb2e155baa28d928629cd0392f706cf85d71400973d76a344b2bd7780e54f7c4724ea","first_seen":"2025-10-19T10:38:44.107083Z","last_seen":"2026-04-07T12:18:56.457038Z","times_seen":16,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":87,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260106/983be6a0d44cdf83--1280x215--.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260106/983be6a0d44cdf83--1280x215--.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20260106/983be6a0d44cdf83--1280x215--.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56332\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":60442,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":70,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":39,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sports.uogia.org/static/js/vendor.771c00b9be1f5b25e221.js","fqdn":"sports.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:25.004Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /static/js/vendor.771c00b9be1f5b25e221.js HTTP/1.1\r\nHost: sports.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:25 GMT\r\ncontent-type: text/javascript\r\nlast-modified: Thu, 29 Jan 2026 06:28:02 GMT\r\netag: W/\"37a4ef7253f1c66d2ef7378f2f5deda4\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: YRjcpE9s2KQ0jDCavt7SEPQolcK7wKBg\r\nserver: PWS/8.3.1.0.8\r\ncontent-encoding: gzip\r\nvia: 1.1 9b42888bacc8273877421321cf54240a.cloudfront.net (CloudFront), 1.1 PS-000-01zli23:12 (W), 1.1 PS-HIA-01rHo246:10 (W), 1.1 PS-CZX-01ZgV58:19 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P2\r\nx-amz-cf-id: b1eztHc8lmUDPmFqfRvWOIOWhTV3DFquoCvPaAKsUwc2rYXl5ku8yA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 16641\r\nx-ws-request-id: 69d4f5d5_PShlamstdAMS1cc96_37668-56046\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1339584,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65528), with no line terminators","md5":"c3cc4748e85d097c096f74f57a308e8f","sha1":"47932c55616dfac3d2a9a63bff2803a2bbc65206","sha256":"e17836db4754234c373edc7a5a810d89ca193a7097a00923e533c92bce5bde1b","sha512":"5189de216576193f39fb0cab6a0b30c51808149f8ec6dfc8d4543d0dfc10fa193b72a0e398af2c9e9f020c6230854ecc36ca1a2c19b9a4d9e78d58b2c16af397","ssdeep":"6144:nGZFBCafXnF5TkD9v1Cz3sKtfrZFVEb17FPYuX8LtYtx8CgxilyLqHa7f921NAz9:GQafXMdqfrZsvmYtUiI2HRfeFW0ChgB","tlshash":"0b2518cdf296b0a603e760f5402f160bf2376959740a84d8f2a5e8d6ac7894e513bf7c","first_seen":"2026-01-29T12:45:58.584711Z","last_seen":"2026-04-07T12:18:56.450471Z","times_seen":13,"resource_available":false,"data":null}},"time_used":414,"timings":{"blocked":179,"dns":63,"connect":20,"send":0,"wait":54,"receive":0,"ssl":91},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/_data/member/visit/count","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.204Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"POST /_data/member/visit/count HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nrType: 1\r\ntpl: 5\r\nqnwebver: 3.12.0\r\nWebver: 4.9.3\r\nContent-Type: application/json;charset=utf-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 316\r\nOrigin: https://m.51570099.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":316,"data":"{\"t\":1775564246191,\"s\":\"f5fad8b6ab8b0e92bde08f4fc25eb1799de74225\",\"d\":\"XJGRekCch33N1kE+dNLosdI7Izf76pzz5OXhQclYz/qFevbiFVX/Albsq4DIaa+D\",\"k\":\"EKr3sX4IYUPtTy0zHfIBuel+klELtcjQ7RilFxoE+/dvKUhjGwVUpi9MN8Kni5xxqLbj0B338VCp+9MMfeV1kpiI3Wrh12AwKQS5NSnXbn6rzhccpf0ADUl2lXXX9R2XhqW82hSp4PP1ulbfcUo309Z207erp4Gt+lCaC98/lYs=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/json; charset=UTF-8\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\nnel: {\"report_to\":\"default\",\"max_age\":31536000,\"response_headers\":[\"x-requestid\"],\"include_subdomains\":true}\r\nreport-to: {\"group\":\"default\",\"max_age\":31536000,\"endpoints\":[{\"url\":\"https://g.report-url.cc/nel\"}],\"include_subdomains\":true}\r\nserver: openresty\r\nstrict-transport-security: max-age=15768000\r\nvary: Accept-Encoding, Accept\r\nx-requestid: d6ba7396faca1195053b0b81c36e134e\r\ncontent-length: 132\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":117,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"6053bfefc76b3f3e6a3d7fd32ed8c082","sha1":"2df9486561f5e611c9af9614979135ea547caf84","sha256":"d4c9d092ea546e6a8cd7263c4ba3320562e3023fee094b676628b2f9333b38af","sha512":"a42d85c020e0258f36e82f3bb09e8fda03a646d3084ed461994c9687f5d5337dfd20905c13ed24ff47e24dd7a12778a9990da8de3ee73a482c1a6358a4ec4a71","ssdeep":"","tlshash":"2fb09200f808959591be1345e1c61b684aaeb0c9ece917f12ab82a140ad72867a01554","first_seen":"2026-04-07T12:17:57.99244Z","last_seen":"2026-04-07T12:17:57.99244Z","times_seen":1,"resource_available":false,"data":null}},"time_used":458,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":458,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/login/login-go-register@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.724Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/login/login-go-register@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 9006\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"4bdaf87092d1bf49112a8b0368814d01\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:38 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 a67ea7b8ef0119614f197be5f0fa8d3a.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 1582\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1582,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit colormap, non-interlaced","md5":"4bdaf87092d1bf49112a8b0368814d01","sha1":"a5252cc937c684b9762f1018bf32f26cc7813a30","sha256":"40ce24581341b28bb40d2ad4c971ebf2b156391178482d89746044d37b99bea2","sha512":"59066c474562a7bd224282fddf19dc8786116312a3278a30b0907b1f9c37259bb6da8de6859d218e2697198f7e34f370bae34287ebe0283b22e434252e89a03d","ssdeep":"","tlshash":"f53186c6535c6dbc591c1508152367917aa31a962952047ac3dbe77c2820450c7dfbf8","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.362798Z","times_seen":66,"resource_available":false,"data":null}},"time_used":277,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":277,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260311/70454fdfc2d62d6b--1490x570--.jpg","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.257Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260311/70454fdfc2d62d6b--1490x570--.jpg HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20260311/70454fdfc2d62d6b--1490x570--.jpg@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56207\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":121824,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/6c7035418adcfaa9.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.304Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/6c7035418adcfaa9.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/6c7035418adcfaa9.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56221\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":24968,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/00fd0e75e4cdb620.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.664Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/00fd0e75e4cdb620.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 23494\r\nlast-modified: Tue, 08 Nov 2022 02:38:42 GMT\r\netag: \"e3e541d86c0e7d36ee9c3e51acf1bad7\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 4204b1f92bbaa2fd0234da9745c6ea4a.cloudfront.net (CloudFront), 1.1 PS-JJN-01m5h211:1 (W), 1.1 PS-000-01Wk752:6 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: 4qr83ZaYEW_lV9ax3Nc7la62ZLlAJB-tkRGsA1t8Xv8qOqJykodDLA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56317\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":23494,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e3e541d86c0e7d36ee9c3e51acf1bad7","sha1":"438902b922abe4a2200ed3f9c876944418350719","sha256":"f4aa2e1971074503eb5b1a73f1439eb8313cde1338c68246ebf1d26d970abad1","sha512":"d7b90aaf3175aaf82effdd556311ba83916ff73b3d499902a37a7216ac3b22fa8627617a3e2bc3fd00524ec61ba5491c0c61a5997f19f898a21b7fb5c74897e4","ssdeep":"384:cLK8MCevqHAmBujISxhzNTl9epjvQUSCABnidq8xjViZXOX+sZdsId:cOLJCHAmBuJSQnCABnipdQZfsZOy","tlshash":"4db2d11bf248edf8364a7f7a4606a84386f4f3951810dd0aac3a7b2a54dd11dfd0887d","first_seen":"2023-08-29T14:06:40Z","last_seen":"2026-04-07T12:18:56.409901Z","times_seen":34,"resource_available":false,"data":null}},"time_used":134,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":104,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sports.uogia.org/static/css/app.6ece2840048a23f848b6.css","fqdn":"sports.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:25.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /static/css/app.6ece2840048a23f848b6.css HTTP/1.1\r\nHost: sports.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:25 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 13 Feb 2026 09:06:03 GMT\r\netag: W/\"fad7e9cc9aadd939996ab043d7a6ebc3\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: mO2N99Iun1OlJ9oaecvb.G_bmeZt4j0Q\r\nserver: PWS/8.3.1.0.8\r\ncontent-encoding: gzip\r\nvia: 1.1 a01aece95388e417e95ea415a7c4ffee.cloudfront.net (CloudFront), 1.1 PS-000-01SuJ115:18 (W), 1.1 PS-FOC-01TKc95:18 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P3\r\nx-amz-cf-id: vBgxq4FQZ3ClmBulv4uNIldzgfc3H3y51Lb6ejWesJNHt2oq2cI2aw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 5487\r\nx-ws-request-id: 69d4f5d5_PShlamstdAMS1cc96_37668-56043\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1484366,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"2c65b1efe3618fc47ff62d06a28408eb","sha1":"d0d1dd9fb7e75695eb205596c638d98e3a68cbcc","sha256":"6f6bfb033271efdaed09cf44ae3e0742359cdc52819da57d55ce6a80a2c64a89","sha512":"97ec8d532881bdb83e98aeef62520f1890aa48935820b7ac65559911fc85580c76e1c709118b2c3b467099b7100874188ea4b034fdb4789ee3e7e429a4c11cb0","ssdeep":"24576:lG3+pATKB4vmsknYnSPCXaPGH98/WNUji4Yb0b2D+DObibWSKwMgA/4+KJBornDx:lG3+khestwOYWIuCWqa","tlshash":"5f250b317d1d751b273bc4696488f6884c26b3a3c34521bd7247bd6e8fcb9823a7a349","first_seen":"2026-02-19T20:52:28.847437Z","last_seen":"2026-04-07T12:18:56.422888Z","times_seen":9,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":179,"dns":65,"connect":17,"send":0,"wait":20,"receive":0,"ssl":94},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-sport-bg@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.754Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-sport-bg@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 69669\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"d1f47484bc00c733d60bfd2ead8f611c\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 7f3ca3166f303ad5837916b99ebc5436.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 1650\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1650,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 558 x 56, 8-bit colormap, non-interlaced","md5":"d1f47484bc00c733d60bfd2ead8f611c","sha1":"e81ff59fe70e01463cee9ac4435b229db6a4d61e","sha256":"65418747a4f821ca69b4afc89ff1bf8d97d201612e34a0dde71de5ada6c9cf6a","sha512":"a08b52660969e77ec5a2cc411da20ed820e2515b809ab1ccc7bb82f47fb9520931005070e42a672a8fa1f09255670981d135a0a0a4b0a0c3a49ee1a208b33373","ssdeep":"","tlshash":"813176432743e5f2a08252f6c632dad76db9c1f73565263b8850746dd9317a342a310f","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.464552Z","times_seen":67,"resource_available":false,"data":null}},"time_used":501,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":500,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-cs@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.044Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-cs@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/183.867bcad2b2be7c6640ae.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 53436\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"2626d13d5bcecadb9aec37e0fd9fbeb9\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 9743bb391d556d154c1b65d94c3f82c0.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 1208\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1208,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit gray+alpha, non-interlaced","md5":"2626d13d5bcecadb9aec37e0fd9fbeb9","sha1":"515e17866a2a74142fc55bf7751f4d74d8039dc8","sha256":"436d9734b9a80ac798fb4e1467d7f8afd0b21b155136199ef927d9ed8403ff10","sha512":"5c8f9d6c077e4519169bfcd87a4a2c5760b460d6264ec63aadf60f1b52fe6a5e47c059aa9a1da440e338c3a38a1b784e6ed200d385829bc7d24ec8d5d17ea4c2","ssdeep":"","tlshash":"2321dac798bc5451c37ab75b6226d463eab5e8021b3a0601c417b5c9cf8e7b1c5e7402","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.363639Z","times_seen":61,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/969a22cff1504a5a.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/969a22cff1504a5a.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/969a22cff1504a5a.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56256\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":19938,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260310/9b7e62f29232cdc0--1490x570--.jpg@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.546Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260310/9b7e62f29232cdc0--1490x570--.jpg@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 62394\r\nlast-modified: Tue, 10 Mar 2026 10:03:56 GMT\r\netag: \"18125b0c97472bc72be2bddb824af1d1\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 72532e423c9fc71537badb2eb04cef64.cloudfront.net (CloudFront), 1.1 PS-JJN-01Xbi199:2 (W), 1.1 PS-CZX-01bnS57:1 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN3-P2\r\nx-amz-cf-id: 24Fkgu7T85OoI-RLnSB9os383mqoRDtQmRFd5MIWjuiFYf0hkzdH5w==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 1940\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56272\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":62394,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1490x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"18125b0c97472bc72be2bddb824af1d1","sha1":"79c1c182ed81a178ff7d41cdb3b6c3e84d62ac63","sha256":"b790cb5efe804099358c0e39d42cf459fad07a9a18c84ef6de93e4feda6aae47","sha512":"35f5d1660cd37e87f7cfa77dccbd3ba47832fd1b530188b76f28ef5d0e49f2ec4ac3fe6e826c3a3124d28b1054db6e61a147371565b4207ff4ae3e3d6427a4b4","ssdeep":"1536:uleayEV3ofPwJDHqkrbaFohOqDqlOjREaLRmDbJWmCv:9EVrzh/aFqFjR1lOlCv","tlshash":"995302f9b9579903dbecd7b499a7a7c34c32f31f38a583250229e06e65a811177e04ce","first_seen":"2026-03-13T23:25:48.642996Z","last_seen":"2026-04-07T12:18:56.418954Z","times_seen":7,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/ba87c181d36e6daa.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.595Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/ba87c181d36e6daa.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 25890\r\nlast-modified: Tue, 08 Nov 2022 02:38:56 GMT\r\netag: \"2fdce2cd12a628268f9cac88254a2563\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 8f92f905d54fc11828a8f52241ce4ff0.cloudfront.net (CloudFront), 1.1 PS-JJN-01XUm198:18 (W), 1.1 PS-XUZ-01UaE43:12 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: M1Ojpxrl8q__W-5FKA8k8z6qQLHwFa21FvP5B7jr1eokEmxSwJPGJw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56299\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":25890,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2fdce2cd12a628268f9cac88254a2563","sha1":"759df5b351b10d45c95ca3e64e707a340703f1d6","sha256":"fb4d27c26d01d56f5217d50927bc72ebaa02f3097436e108e93a89b595fc3c03","sha512":"628be99048d2e64e7a169bbd5395bf3b5c1b5746b57c086160a15964f1f54abcd6845674d6b9958fb732410fcf33e58d1245e1c116a1c1a1019c6506d932fa9a","ssdeep":"384:eaYr0Z2WFP5/NyOTgedCXyFMn+U6u2o0epoQOPl0gqhqlaE4tOO4nZ02:e0w8B/fT5ECFMtIepc3q4gXtQZv","tlshash":"8ec2e14e8cd3881fea3afc7ee5f9747e6ce6b555a70039fd2501927801106c299f3296","first_seen":"2024-05-05T01:46:03Z","last_seen":"2026-04-07T12:18:56.426167Z","times_seen":18,"resource_available":false,"data":null}},"time_used":325,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":296,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/_data/draw/number/prize-record","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:32.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /_data/draw/number/prize-record HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nrType: 1\r\ntpl: 5\r\nqnwebver: 3.12.0\r\nWebver: 4.9.3\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/json; charset=UTF-8\r\ndate: Tue, 07 Apr 2026 12:17:33 GMT\r\nnel: {\"report_to\":\"default\",\"max_age\":31536000,\"response_headers\":[\"x-requestid\"],\"include_subdomains\":true}\r\nreport-to: {\"group\":\"default\",\"max_age\":31536000,\"endpoints\":[{\"url\":\"https://g.report-url.cc/nel\"}],\"include_subdomains\":true}\r\nserver: openresty\r\nstrict-transport-security: max-age=15768000\r\nvary: Accept-Encoding, Accept\r\nx-requestid: 85c8a94fcd6cd434a2e150e6cbc139c0\r\ncontent-length: 153\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":171,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"264ee35a24959db310f0dd59a2bb9425","sha1":"e07cd75bf4a69919f626010bad95cfb8689680e5","sha256":"e963a07bd4e36cbe08327ab8fb7c70ba679f40393e948b3943bd500e17270794","sha512":"3f79e9a67558f1dfb0111edd5724f314a298775e5f3568b3ae44c057a0eec405368aa76c57e292b38013ff65769bbce5193886eaa337265af403bb9b2c75c8a4","ssdeep":"","tlshash":"07c0800336ed42718b5103c46cc83847fd35945d4d73cd125696542ac5dc2d510565ef","first_seen":"2026-04-07T12:17:58.004654Z","last_seen":"2026-04-07T12:17:58.004654Z","times_seen":1,"resource_available":false,"data":null}},"time_used":344,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":343,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sports.uogia.org/static/img/icon_cancel@2x.bcd1ae3.png","fqdn":"sports.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.470Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /static/img/icon_cancel@2x.bcd1ae3.png HTTP/1.1\r\nHost: sports.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://sports.uogia.org/static/css/app.6ece2840048a23f848b6.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: image/png\r\ncontent-length: 1005\r\nlast-modified: Thu, 28 Aug 2025 05:53:36 GMT\r\netag: \"bcd1ae38f04aa3ea08033be752a45e5e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: PzxwL6SeiNRBitUmQBvPnngMShWMkO1G\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 6ddee0f02ac4a9d2e7fb1ad6820af4d2.cloudfront.net (CloudFront), 1.1 PS-000-01Kix28:1 (W), 1.1 PS-HIA-01tWB184:0 (W), 1.1 PS-000-01j6t47:18 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: LAX53-P5\r\nx-amz-cf-id: B_GVFCdYLxahWwGzmnhoOxcTIF0yaguKFPAGuAkuJkqXExGWxguSig==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 23907\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56144\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1005,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced","md5":"bcd1ae38f04aa3ea08033be752a45e5e","sha1":"51cb685890ad4b2b223c87426248e582678d945b","sha256":"17914bf045e4d8644c4cd4bdb3c3e907555bd90128a237f7e798dbffc1e065a3","sha512":"f3f30908d97aaa78a548c383871586534cbfcfaf8d3bef0a28166a3ed7a5914a7270f1b5ed9d397257b2bc15ba83433b839863b8c64d883cc99d05598048c5ca","ssdeep":"","tlshash":"1311a5edd2294f7db6167e9e09e80e790ad7c48ba0f1d329d831132646048888ca9742","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.489937Z","times_seen":86,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/77a029b83626151d.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.336Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/77a029b83626151d.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/77a029b83626151d.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56231\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":24688,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/3f384711a265fa62.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.633Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/3f384711a265fa62.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 23058\r\nlast-modified: Tue, 08 Nov 2022 02:39:06 GMT\r\netag: \"f50bcc016ed2cf1b705c0be7934159da\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nx-amz-cf-pop: NRT12-C5\r\nx-amz-cf-id: 0yjhqxnhVqbPaju-83Y81r4l02Zd3cu9q3Vzwm9Y1IWwXLJDisjTpw==\r\nvia: 1.1 d59d7d2956e97f3172dac1922167d76a.cloudfront.net (CloudFront), 1.1 PS-JJN-01d6F200:10 (W), 1.1 PS-FOC-01KG494:0 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-upper-cache-status: hit\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56305\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":23058,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f50bcc016ed2cf1b705c0be7934159da","sha1":"386c29cebc13db213d3f5ba3e70c00a8d5fd380c","sha256":"bdf90e2b80ff77b67520b14a7f93f92c2329ca38eb7a3716e23eb7f6bd36b06a","sha512":"58f6013f90bd76511b481a3692eae715150a3087a05502aacbe6b654cbce70d604be77bdc5880ce5b75b5268086982e1be87e2dd10d387544c316554d17bb659","ssdeep":"384:3fwb7Ve70G27Lzu2Fzj/nPNV8RVVls68LdgH7jNccCItfYZJ+M4n2wG:ob7Ve7+7zzn78fp+gH1o+MC2wG","tlshash":"76a2e279391557116243d233a2f47481adf7a4f0638ae0ea76f02bdb65000fd58aed5f","first_seen":"2025-10-19T10:38:43.143139Z","last_seen":"2026-04-07T12:18:56.387631Z","times_seen":16,"resource_available":false,"data":null}},"time_used":122,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":87,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220207/1496554b02a24688.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.685Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220207/1496554b02a24688.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 21588\r\nlast-modified: Tue, 08 Nov 2022 02:39:17 GMT\r\netag: \"1a1ca8e123a3a3690eeee95473622f06\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 b31d3fc2fbf5c9a115bdf4daacd1f236.cloudfront.net (CloudFront), 1.1 PSjsczBGPhq161:1 (W), 1.1 PS-NTG-01FLw54:18 (W), 1.1 ianxin96:12 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: Kkte_GmPyDG3H7tfoKt1FliejqwZonO9XIUzTGztGoHG7EC8X7zeTg==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56324\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":21588,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"1a1ca8e123a3a3690eeee95473622f06","sha1":"a58ab4a3df8c7593519abdf2dc08ee655ad282dc","sha256":"89e8be6d9e8a1d30c24480d9475e6544d859b27453844fa155fd75f55fb54967","sha512":"5d14545c85949fba853741eb0eb438886399c61012a8a5b2f0183e2c5dc67e9de5d19ad1b3633a914c103e2554c820608ac02d9b17603864240bcbae3893da25","ssdeep":"384:rYsXVOnnwqKAaGMC6m6JDedcaUwxI/61mvrF+169P/eQd1aooyC0:rYsXew1Apb6JDeiCo61Sh+169eQd1aL0","tlshash":"ada2e0cff9b9e742176c506b1a5c4511b5280b73571f9ec381ce7b9987e86b3e0c910a","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.39782Z","times_seen":60,"resource_available":false,"data":null}},"time_used":151,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":121,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-onsale@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-onsale@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/183.867bcad2b2be7c6640ae.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 37568\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"366fec064bd612068171c44803ade21a\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 7f3ca3166f303ad5837916b99ebc5436.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 1302\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1302,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit gray+alpha, non-interlaced","md5":"366fec064bd612068171c44803ade21a","sha1":"9d566b85330bd5a9ae5755e66b6c769d3f6b9639","sha256":"67d189a14a5c22f7463722c4368009e991fe6f39812f7e4650401c22cced9d2e","sha512":"21e43f9630a6a80ee6ef58b5bc59c6f1bcc22f20bf401f8c7b6caed4f5732097702543f236cbe3a745babbe20333ff42783418ac100d6746809a99bf62477bc2","ssdeep":"","tlshash":"932117c740625915da082b2893875086fea2c40fd0b3b242f5f234b9adc34587288ee8","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.423879Z","times_seen":61,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/_data/sport/sportpage/get-home-list","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.691Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /_data/sport/sportpage/get-home-list HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nrType: 1\r\ntpl: 5\r\nqnwebver: 3.12.0\r\nWebver: 4.9.3\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/json; charset=UTF-8\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\nnel: {\"report_to\":\"default\",\"max_age\":31536000,\"response_headers\":[\"x-requestid\"],\"include_subdomains\":true}\r\nreport-to: {\"group\":\"default\",\"max_age\":31536000,\"endpoints\":[{\"url\":\"https://g.report-url.cc/nel\"}],\"include_subdomains\":true}\r\nserver: openresty\r\nstrict-transport-security: max-age=15768000\r\nvary: Accept-Encoding, Accept\r\nx-requestid: 62a0ca8c7d2a97bae93aee98b470d633\r\ncontent-length: 2770\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21798,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (21198), with no line terminators","md5":"783cc735c36b1b9be0bac73a24e0e0af","sha1":"e6c663b9dafa1bbc177854e7eec6b390a4150335","sha256":"e112220a75baa981f32ef704bb1f9f736cce9bfbf9b62cceb1588ff26bf580a3","sha512":"da232a3f43a03e9a3334aa47f1ba8d6ff9d40d5188aed3f3ee6d4328c72e127310f2c5abc050ed31bead3609d77bf6a5e27c64333b7aca63ff6fb01ba746b2b2","ssdeep":"384:B7xTzxT4xT/TMxT7xTBxTvxTbexTRxTrxTyxT4xT3xTHxT4xTUxT4xTxxTIxTIxL:BaFS1","tlshash":"94a2676b93a8d9ccd2f121f8149a33cdb16db417c9c1cf80aa5c5e7ac55c483e22fa65","first_seen":"2026-01-29T12:45:58.664463Z","last_seen":"2026-04-07T12:18:56.459853Z","times_seen":12,"resource_available":false,"data":null}},"time_used":535,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":535,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/close_btn@2x.39223fc.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.755Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/close_btn@2x.39223fc.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 73043\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"39223fc86e96f76189b06229aa11c2a3\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:33 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 b02f1da3681c9ab21069cabd3519feea.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 1729\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":1729,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced","md5":"39223fc86e96f76189b06229aa11c2a3","sha1":"7c16465310bf26bf886cbf2c3ff6348f5d68f4df","sha256":"3c91f646ce12d2ee750b0af1384d4fb3549316b8e0ac4ef4af80dca9078980cb","sha512":"c4cc4c31538bbd0909a8673aafdec8bdd17751919ad1ffeb7f0732e345340c7df1a6543b11f276894db06fbd131fc5efe44c666c709861bf31b22755656b5d8a","ssdeep":"","tlshash":"3031d889fe11ac80855597902ce0011759230ec08ed2d9b426efd5bd0eff2fd15692cf","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.442658Z","times_seen":88,"resource_available":false,"data":null}},"time_used":500,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":498,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260311/12758832591bed3c--1540x1064--.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260311/12758832591bed3c--1540x1064--.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20260311/12758832591bed3c--1540x1064--.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56186\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":233770,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/13839cc1ad546757.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.342Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/13839cc1ad546757.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/13839cc1ad546757.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56233\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":21800,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/04f6caa6abaf025e.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/04f6caa6abaf025e.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/04f6caa6abaf025e.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56235\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":25934,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-user@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.046Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-user@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/183.867bcad2b2be7c6640ae.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 63909\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"353a487d7fb8d8f2b710b7fda4211204\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 4020b6d7a4c5bb75df947be2b8b3c324.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 977\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":977,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit gray+alpha, non-interlaced","md5":"353a487d7fb8d8f2b710b7fda4211204","sha1":"52e2cb818e3688c792b8aa84cd7962eae63e09ca","sha256":"20a166b7dbd9a5acedcd10ef4281b11e1aee803620d09ede08c4766ecb14a1cf","sha512":"28a4b5cfd628657bd543c2024e86965d55cc24eb62dc23935978d070b98af0eb26e272536a494c62953c3f1de707efc5cdd53395dc6143556b1f37c8bb9b02cc","ssdeep":"","tlshash":"5e11c8f07a00f52ac507077f2cb100d49a3e6131b9481466e8864bacd800749455423b","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.429704Z","times_seen":61,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221220/fd9da8ba3e3246eb.jpg","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.273Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221220/fd9da8ba3e3246eb.jpg HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20221220/fd9da8ba3e3246eb.jpg@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56212\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":84412,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/ba87c181d36e6daa.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.371Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/ba87c181d36e6daa.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/ba87c181d36e6daa.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56238\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":25890,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/7623f4cdc50e184e.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.557Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/7623f4cdc50e184e.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 28376\r\nlast-modified: Tue, 09 Apr 2024 05:10:45 GMT\r\netag: \"d2078a2e01077a0d88268eadd1d5a83f\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 07729fc4025c8825b20c4f345e32df36.cloudfront.net (CloudFront), 1.1 PS-000-01dCl112:15 (W), 1.1 PS-000-01SFH54:19 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: ILGDHTpJCDccNc8fVYG89qC5E4ZmN25FK36OXOAgaiV7MRV0dR1Spg==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56282\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":28376,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d2078a2e01077a0d88268eadd1d5a83f","sha1":"f86f1c5f4fe911dc48f99ce46e71f18417d5eef2","sha256":"95e1066274123020fd491f3da4ac724c07d6cac6e887af7d20c8c38cdbba7aa8","sha512":"747976ee82caf1c5f3824f101b5b685e430534fa0a70fa3dd6571ad2eb6b6c914777cb3891bf799c7590f750fda61063e0d12ce247090891ed55b40b3362a157","ssdeep":"768:qPPqkh/bwDJ8aZUdfSmfq32LJf/xQUcWT5d5PJU:qXqkZWJ8VSmTLJfj11dfU","tlshash":"03d2e035994b06b8a45a323f27b2a3b505459cc2fe10fab961dded09b306c6d34db189","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.436766Z","times_seen":94,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":55,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/26ca8cb7438ee82d.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.563Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/26ca8cb7438ee82d.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 16354\r\nlast-modified: Tue, 08 Nov 2022 02:39:03 GMT\r\netag: \"d0cb24818ea5e3611d797aad44e5ae17\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 a8958edf48d0c7d050d49dd4234c0130.cloudfront.net (CloudFront), 1.1 PS-NTG-01aVu55:5 (W), 1.1 PS-NTG-01hLn226:6 (W), 1.1 PS-FOC-01kD0116:7 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: l4UOl8GiWv-pYkvorPHeLwBhs-6Jk3qXeGoeMgvMh6N2Mikiu48IlA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56288\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":16354,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d0cb24818ea5e3611d797aad44e5ae17","sha1":"c2f89cce74834bda8c9fb3d7f5bc5e3280836953","sha256":"f76118c2786193747f36ff91b0e7aaab5c93e6672f3e6ff622d3a4ce4b829517","sha512":"0f26372afbde88cb165219e99d017d02bff8c4c908ed5b94522b70b2c52316f8fd00f34c4f8b7c0d4c07c01e185338f594bdeb7a742d78250c28a768db1e1496","ssdeep":"384:ORINluZRjlVk4awg/lH9s0iDS7DvwySIR3A:oIejHO9ds5D0vEIm","tlshash":"e372d01b1f496f17e2fb375122d871ab4d3f9400247c29e016ff694542eb0ae849b978","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.408523Z","times_seen":122,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":74,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:25.929Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: audio\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\naccept-ranges: bytes\r\ncache-control: public, max-age=300\r\ncontent-range: bytes 0-3515/3516\r\ncontent-type: text/html; charset=utf-8\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"452de3f9878d983e102a2a6b9f70413e\"\r\nlast-modified: Fri, 13 Feb 2026 09:06:03 GMT\r\nserver: openresty\r\nvia: 1.1 a1cf3c2b2d707478d2d3cac57dfda43a.cloudfront.net (CloudFront)\r\nx-cache: RefreshHit from cloudfront\r\ncontent-length: 3516\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":3516,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (534)","md5":"452de3f9878d983e102a2a6b9f70413e","sha1":"6587d88c6e276a02fb1d54069bfea5429f26a36e","sha256":"76bd376c606f1a7ff008a2a8fa88e1fdd3d319cb35ba69a228615908d0b007a6","sha512":"2490317f70119d7a1d96eb58bdbbfa8db78efa1d93652f425a13d78b2510645ccc2267172d05503bb72c18fb8a5698657ad8ad372d30a222952cedea2485ef2e","ssdeep":"","tlshash":"1a7116af05d380833e27e5915bef272460b989178a4edd41f68e575ccf84f8e96853c2","first_seen":"2026-02-19T20:52:28.794232Z","last_seen":"2026-04-07T12:18:56.37258Z","times_seen":8,"resource_available":true,"data":null}},"time_used":475,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":416,"receive":59,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-deposit-icon@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.732Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-deposit-icon@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 4236\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"3360ae5eb70a2935ec7e3fbda65ef451\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 ca87bf429f214c70d8beaa0c7de1e702.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 2704\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2704,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"3360ae5eb70a2935ec7e3fbda65ef451","sha1":"658e755747d7ec3ab2e501c9128f08f4f7f2b57e","sha256":"59faa9f1e028076f28004f6bccd8f87fe2ae9d7e433cfa9cecf6344ba94aaea2","sha512":"ffe24c34484856db0ede6dc86a401947bc06bac75b87119588410fe6cc3c7540b2b3dcbc6947fb7f11b3e18f27d2d6ff786cb52044da51e3bfaabb4ab5ffa29e","ssdeep":"","tlshash":"905119868d3932c9e1910978ee5f41c844d5ac6354aa9360fa5a89f93f480e83eeb847","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.406573Z","times_seen":65,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":269,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/693c39e65dced6d3.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.559Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/693c39e65dced6d3.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 22736\r\nlast-modified: Tue, 08 Nov 2022 02:38:50 GMT\r\netag: \"c7c9dfd63d1d48da3e3d3d264c7082ad\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 c2696f175a251715d34dc3568de10da4.cloudfront.net (CloudFront), 1.1 PS-000-01MvV113:17 (W), 1.1 PS-NGB-01wHk176:14 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: BMyYN9jZ7Yekt2X3zb9zk0C_Pxx6Grooo51-S2SBqfRtsb5CkltS5w==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56284\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":22736,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"c7c9dfd63d1d48da3e3d3d264c7082ad","sha1":"1c54ff4bbb48e0ddb38e51d85a8963c66b648ff1","sha256":"43254638298a1ad175ff493b7fa51780bd78cefe2fbb26814902b5ca09df117b","sha512":"d62266e661c09b6d3c4f52750644c6097d2874db19f93a859e6fe108169aac891edee374df8dd2ac79083e26ef9e3854eca5aa9d7d2da62f6a05bcc5351b3e20","ssdeep":"384:YeLyMuD1SQDryhnLyG+k7HuWqUC8M3DJIsnudgQuaXz8AGogYKSrlqWnEWa:oSUrHsuWqUlMzKsudgQuaD8AwYLfnBa","tlshash":"0ea2d01d67058da3899766b39804af5c040db1bef1345c09f9ef212ef781a82aba198d","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.421072Z","times_seen":33,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":56,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/04f6caa6abaf025e.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.577Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/04f6caa6abaf025e.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 25934\r\nlast-modified: Tue, 08 Nov 2022 02:38:42 GMT\r\netag: \"95ae1fc2c322a7508b440fa84d795916\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 9afde6f64ba6d27a5e117218104f64fc.cloudfront.net (CloudFront), 1.1 PS-000-01dCl112:14 (W), 1.1 PS-NGB-01wHk176:18 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: WabjVz3Shatr6Go_snUX3OoC5qVKXfDRmFg0AviX5R0lporXENhmrw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 39431\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56296\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":25934,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"95ae1fc2c322a7508b440fa84d795916","sha1":"412df83a508ab6034fbe9ad23e0cc47411d6d904","sha256":"9d4b7c3191524cdeb3d63143f09021fcc410ffb05ddee285bdb0caf7f7822218","sha512":"453838989763d8932b1d285efbb2243c370ea722450f7666c29c2dd768625a7ba9f39bb999da3afc55b0315e561d47582d85791114c6dbd00424fe5d469976ca","ssdeep":"768:4qEggBoApt1LnNpSafLdUl+6fYnFaQ8Hif2q:4q5QoANNppfLql+6k7HT","tlshash":"84c2e182b1d9bde91e8b3e43afee843d28095db50049797bcf6842c4912eefe155d0a4","first_seen":"2025-10-19T10:38:45.462817Z","last_seen":"2026-04-07T12:18:56.425234Z","times_seen":17,"resource_available":false,"data":null}},"time_used":326,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":292,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260311/70454fdfc2d62d6b--1490x570--.jpg@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.547Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260311/70454fdfc2d62d6b--1490x570--.jpg@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 121824\r\nlast-modified: Wed, 11 Mar 2026 03:45:22 GMT\r\netag: \"81c1b7d20ff382110245e38f0d3b2e04\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 83eb610a71033a36cd1fe669419e4a18.cloudfront.net (CloudFront), 1.1 PS-WUH-01ypJ24:4 (W), 1.1 PS-HIA-01VH8172:11 (W), 1.1 PS-CZX-01YZs45:6 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: VCAwh6fJlC6DQ2rO44EVpmGcUnti1ANGMNOIf5Lsl6dvFtdla_HU9Q==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 25875\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56273\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":121824,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1490x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"81c1b7d20ff382110245e38f0d3b2e04","sha1":"3c0f9a0e26e04887efaa82159bbe12e4048bcbec","sha256":"9e0d67ab4475a871c231846dd3bb97c837463cc29b1c965479aaa9230cfc2ffb","sha512":"8b8af34bb0c06e8f0b609c4d13cad26d49a8254768ba955cbc7ade189e8559641bc8fa4f58785744bd091c9a3ff8bbf04582ccd1869a5e13ac003ed9e3297e92","ssdeep":"3072:WVORlp0Njm12RkP08WS9veuhuhqP3haus:2ORlpqNuWS3uhqpTs","tlshash":"cac31256ab4ca5486754c702facc0eb634857f50d32b4f1afbb575d4416fa0e163b093","first_seen":"2026-03-13T23:25:48.819884Z","last_seen":"2026-04-07T12:18:56.378192Z","times_seen":7,"resource_available":false,"data":null}},"time_used":234,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":209,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221228/93f673450f38db21.jpg@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.551Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221228/93f673450f38db21.jpg@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 102186\r\nlast-modified: Wed, 28 Dec 2022 11:39:49 GMT\r\netag: \"93fbbd70b23b89c310389083d3e1a118\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 19c73586f7d304b01095202d249be782.cloudfront.net (CloudFront), 1.1 PS-000-01MvV113:13 (W), 1.1 PS-CZX-0165159:8 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: GZriybTFZxdH6UZw8mUs5lFn2RB0_Fg9yUBci9LHCI8urRXCeBu-Tw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 15835\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56276\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":102186,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1490x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"93fbbd70b23b89c310389083d3e1a118","sha1":"7da92f841d743d170756ae3aff9163fab0db7006","sha256":"0f1ef29042be371c74360d75ca1e3634c6d5832b736bfc1c5eb1f0075a6ffa09","sha512":"62629110ec0d32411b405679e4723f21fa4de2526c0878db63d034e893fb983e596063ff2e57574b0f3b194ab4159976f68f0a9ed1bf944e961249625b1c5b7a","ssdeep":"3072:mNF6MToba4JDXEqv97NlUaoofP8y8O1q3iQ:46Mk+4JDXEqv97DLfP8","tlshash":"b3a31215c7922be2ee35731b57ca0da8e0213b171370f7bde9526969840bf83412af8d","first_seen":"2025-10-19T10:38:42.912583Z","last_seen":"2026-04-07T12:18:56.483845Z","times_seen":16,"resource_available":false,"data":null}},"time_used":338,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":301,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221219/40f8844164b22a34.jpg@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.553Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221219/40f8844164b22a34.jpg@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 107018\r\nlast-modified: Mon, 19 Dec 2022 08:33:31 GMT\r\netag: \"2277fd652757c0b68c53aa55842a34af\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 2dfc5086fa0cedb946988f6edb9face4.cloudfront.net (CloudFront), 1.1 PS-000-01MvV113:15 (W), 1.1 PS-000-01TT241:12 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: T5ItvZQDTRxLBG8y-wXTmHgetvoo-dh9-ZKGuX77It038CK7QSg97Q==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 72546\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56277\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":107018,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1490x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"2277fd652757c0b68c53aa55842a34af","sha1":"3e12805286ce69baf10d7052368f40647b31618e","sha256":"a1cde19598e5c94e446dd152a280e8e1696c7ad76a603d294d88bc00d454abdf","sha512":"dac863135014d3b52e446e72b258a7adfb59d71e7da1e8616d7bc4d0a392dba8287e2dba16ebf641410b055e553f6da53bc9ba2e160fbc719c0299ef6a02c1b6","ssdeep":"3072:H+T3lGNlfU863eaxOp7rlB3KdEU9A3d86Ix95C6x5jaCE4Y:eDIliY7r/3Ce3d86I1x5j1Y","tlshash":"10a312aec20d5a26e150b73fe23e73a209164ee01dacd5fc739b51451ac9341e6dbb90","first_seen":"2025-10-19T10:38:43.710203Z","last_seen":"2026-04-07T12:18:56.420319Z","times_seen":16,"resource_available":false,"data":null}},"time_used":338,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":304,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-saving-icon@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.730Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-saving-icon@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 82894\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"f7a1771d5bd136738fbf8b378d9764f0\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 7f3ca3166f303ad5837916b99ebc5436.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 3413\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":3413,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"f7a1771d5bd136738fbf8b378d9764f0","sha1":"8fc402ba095bae9a239a0213e931379faeac4185","sha256":"dfe7500411e511908b601b231f8cdf587d54f41bc2d4105c6fb6439cdb7e023e","sha512":"7cb98e00e072353238f4be55e93bc21a91ff72e3985ae2a811a14fe96771bf4369c0805191278cd2084cf2b2c17bc07481ac9def7a75d79c2c9eb90485b883cb","ssdeep":"","tlshash":"2f614da4cab13053d39b8035022945e0a67ed3031afc2e84bbffbb185518af19ee9354","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.366414Z","times_seen":66,"resource_available":false,"data":null}},"time_used":273,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":273,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221227/29eab6e1caddd7c3.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.696Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221227/29eab6e1caddd7c3.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20221227/29eab6e1caddd7c3.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56165\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":4700,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/js/183.c069e2307f420ea18c26.js","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.702Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/js/183.c069e2307f420ea18c26.js HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 60869\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: W/\"97604728798d7f21ef31caef48eac096\"\r\nlast-modified: Thu, 29 Jan 2026 06:28:00 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 0fb47c775ee2a3663825bca9897ba11e.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 1258\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":3159,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (3139), with no line terminators","md5":"97604728798d7f21ef31caef48eac096","sha1":"1fa21e724d045c587ccb34386e1db2ad77a50a5a","sha256":"bbcbc5d701d4f91163baff5e606839f46570d385befd021e15b119dbf8424f7c","sha512":"5af6d10d378a09dea742c2ed432538595c3f04482760545e6091ee9c1d31155516434f530bf135ba6a251d31c9034fcb3f23dc126a147b06b69cf5581ce0ec5d","ssdeep":"","tlshash":"11513227e042f26fcd2a4253a51d043a91221fadd109d0eef77cd95642a6e78271ea3c","first_seen":"2026-01-29T12:45:58.612178Z","last_seen":"2026-04-07T12:18:56.389296Z","times_seen":13,"resource_available":true,"data":null}},"time_used":268,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":268,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/sidebar/left-elec@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.745Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/sidebar/left-elec@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 30307\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"11b45ffbdebbd88d25dbf538ad78af5e\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:41 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 748acac5bfb97f7ea6f9980e3676d41e.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 10791\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10791,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 121 x 103, 8-bit/color RGBA, non-interlaced","md5":"11b45ffbdebbd88d25dbf538ad78af5e","sha1":"24855bb767a63252cb02985e0391b0f6ea2015c3","sha256":"93d9ad97fb2b7ba83a19d74ae4e14c645b38f6d75d38ab5a0cc58b37683ffaa5","sha512":"1f23eb6432c8e7b9dd5e19d6b286efed7aead67fda428a7352ed45bebb4bf549aa39cfa276bd902a4c7fc64c4de54368dfcbf776f79dabcea6607f53a5ba5b2e","ssdeep":"192:389SpQ4V5zKg/CvwUdA+0+P/zkN7yXlfRdn3pKpVU6z7ROl8GYGKoCXzGpqd:M9WQ46vfdA+0+P/zaYfRdn5KpVU63RO8","tlshash":"9e22bef38396cceec533d369466f32e278ab51610dca121600e75a214b6cbbe88f7575","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.417507Z","times_seen":66,"resource_available":false,"data":null}},"time_used":473,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":472,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/sidebar/left-person@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.748Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/sidebar/left-person@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 73039\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"2ea8b93ee3842cbb4e33c2f5535c2384\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:42 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 837e503aed9da880c3776b678e912f88.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 11739\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":11739,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 121 x 103, 8-bit/color RGBA, non-interlaced","md5":"2ea8b93ee3842cbb4e33c2f5535c2384","sha1":"da79e45092c096791c7e03ed2884d0e0f8fd2133","sha256":"0d328d9102f2e1075bfcc729ede39435c94254b243dbead448999ab8afbe9f67","sha512":"9af69f6ec2eb215d20b8acb75060642c8c5d0826f4fcc894f8487f42005f5446136ab55ae8b9a356720930e1ec2d3297487a8e9120331a34f4d0226b2c57ad95","ssdeep":"192:3UDvhctvgzs2gOzgovvnJeROJbQTVA2nKet0hrXYvrtbVyorI3PztDwcrT74KSJt:Ip0vgzsfOz1HnyTC2nZYEDyoqtl4KMTp","tlshash":"6432c0d13971557b8ae62ab5d81759b9295811ca2dfcd90f091f01f800e46e1ebfe08b","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.462765Z","times_seen":66,"resource_available":false,"data":null}},"time_used":469,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":468,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20250716/add56c4055172d04--1540x1064--.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.909Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20250716/add56c4055172d04--1540x1064--.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20250716/add56c4055172d04--1540x1064--.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56184\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":162798,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221227/9ebb789e7a5da53d.jpg","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.268Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221227/9ebb789e7a5da53d.jpg HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20221227/9ebb789e7a5da53d.jpg@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56209\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":103598,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260106/95211087abf4c4aa--1490x570--.jpg","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.266Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260106/95211087abf4c4aa--1490x570--.jpg HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20260106/95211087abf4c4aa--1490x570--.jpg@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56208\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":137102,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221228/93f673450f38db21.jpg","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.269Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221228/93f673450f38db21.jpg HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20221228/93f673450f38db21.jpg@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56210\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":102186,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/c484a62bad9c91bd.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.357Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/c484a62bad9c91bd.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/c484a62bad9c91bd.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56236\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":19718,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/18c61d356ab4c187.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.435Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/18c61d356ab4c187.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/18c61d356ab4c187.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56250\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":22142,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220207/1496554b02a24688.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.464Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220207/1496554b02a24688.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220207/1496554b02a24688.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56257\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":21588,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221220/fd9da8ba3e3246eb.jpg@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.554Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221220/fd9da8ba3e3246eb.jpg@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 84412\r\nlast-modified: Tue, 20 Dec 2022 06:12:08 GMT\r\netag: \"b027d5db181ac4fa6cc8cccfd9f131ef\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 1b64143ad8928c8f978ba9e138d9f266.cloudfront.net (CloudFront), 1.1 PS-HIA-01dVn197:13 (W), 1.1 PS-CZX-01viR121:7 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: gcVeLG25XbFzNmiq15gb-e8ZwVTFSYJ1V8f04WGG9CUxJ-zok7vlmA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 72545\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56278\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":84412,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1490x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b027d5db181ac4fa6cc8cccfd9f131ef","sha1":"2e6f4136e80fd3e617cb468aaa3fbf8dc555e651","sha256":"3fabc094ecad4b0d10e1c779ddb5cb4c4ce1d2505d6ca982d39f841a5b765c6a","sha512":"9dcc8ef7fab199e61ad64d44396fd93386c7e77cdadc6b895e454d0cc10f886e5a502966569a60e2413a338f8ab447e628c28ef2b3031b4a61103ee8a34433db","ssdeep":"1536:Qb7z3HKC/MhdDIzkp4nhFyPnpwkOpaea5YW/lE5rlbK4oRq3c1d1YUXQT:g7zXjM8zg4hkpwv5a5x/q5J+4oRq4dFC","tlshash":"8f831202f91a9ac7fac56913d00e7f815c3716d8357d61162b2bd2f8efb04c98a5079c","first_seen":"2025-10-19T10:38:46.282854Z","last_seen":"2026-04-07T12:18:56.448842Z","times_seen":16,"resource_available":false,"data":null}},"time_used":296,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":263,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/servers_head@2x.4f9471c.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/servers_head@2x.4f9471c.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 1750\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\netag: \"4f9471ce5515e08948e23bf79922bfc7\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:41 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 a67ea7b8ef0119614f197be5f0fa8d3a.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 2334\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2334,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 29 x 32, 8-bit/color RGBA, non-interlaced","md5":"4f9471ce5515e08948e23bf79922bfc7","sha1":"3b533ce927e111ec4c634fbf4c3ebc9862203dcc","sha256":"946767f8a6330dfe7bcca7d8d74791ae0ad7675a75d67a344962802313b5dbcd","sha512":"8c43532509982c1c8e35274ec732c887dae4f34644e41cefd84621efc34289a6af5c4d690488e1e9b5b476bcd8369366cd32f68ea8e501063ad2c59349bf522e","ssdeep":"","tlshash":"ae410b9fdb12148169ac645134bbf05eda1247c0c5d9f64ed8cbb8269cb13fe0415dd7","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.403253Z","times_seen":68,"resource_available":false,"data":null}},"time_used":417,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":415,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220207/fd126c1e2ed07544.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.305Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220207/fd126c1e2ed07544.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220207/fd126c1e2ed07544.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56223\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":25522,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260104/a906ae407187d997--200x200--.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.562Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260104/a906ae407187d997--200x200--.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 9998\r\nlast-modified: Sun, 04 Jan 2026 02:55:36 GMT\r\netag: \"fed0dfd855cbcef83a8b9a50b648938b\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 036b27082b60813bbd6552f7381ac2c0.cloudfront.net (CloudFront), 1.1 PS-NTG-01aB9225:8 (W), 1.1 PS-000-01j6t47:4 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: KvokWhw79xazrL7rlMKpennnOOXnKHs7GUcbJ6YgAA6niMQwxI8Kpg==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56287\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":9998,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"fed0dfd855cbcef83a8b9a50b648938b","sha1":"bfc26984a6a3e9e7bfedae255f7d15719c8b6105","sha256":"b74a1b77321f2da6f11c57b661fc094a6714168e8c957f3f689eb694284cfc3c","sha512":"a0930cc073bee600309d2b3f8fa3408a318f6669864510763fbdf4384d3a4a47d942f13b534a98c80eedf2c08b68f475623838134435fd834b8d9c0408be2e03","ssdeep":"192:e66ZP4FgmRJiENKvNwTRvU5hG4uav7V+WJrBwQhSBbZ08PU6BA2vjZqbWQQ7BQa7:ViwgCJ1K1wT9UHGs1wkSBb9q2vjUC7BV","tlshash":"3a22a08c09941ba9393618f2dc985d157e0ba58095e405cf07db41a79b1f7b1f4f0f57","first_seen":"2026-01-16T01:14:51.367985Z","last_seen":"2026-04-07T12:18:56.390245Z","times_seen":15,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":73,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-07T12:17:22.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 87\r\ncache-control: public, max-age=300\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Tue, 07 Apr 2026 12:17:24 GMT\r\netag: W/\"452de3f9878d983e102a2a6b9f70413e\"\r\nlast-modified: Fri, 13 Feb 2026 09:06:03 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 fa0228a928de22a353d181022f58eb78.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 994\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":3516,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (534)","md5":"452de3f9878d983e102a2a6b9f70413e","sha1":"6587d88c6e276a02fb1d54069bfea5429f26a36e","sha256":"76bd376c606f1a7ff008a2a8fa88e1fdd3d319cb35ba69a228615908d0b007a6","sha512":"2490317f70119d7a1d96eb58bdbbfa8db78efa1d93652f425a13d78b2510645ccc2267172d05503bb72c18fb8a5698657ad8ad372d30a222952cedea2485ef2e","ssdeep":"","tlshash":"1a7116af05d380833e27e5915bef272460b989178a4edd41f68e575ccf84f8e96853c2","first_seen":"2026-02-19T20:52:28.794232Z","last_seen":"2026-04-07T12:18:56.37258Z","times_seen":8,"resource_available":true,"data":null}},"time_used":4501,"timings":{"blocked":2117,"dns":561,"connect":1291,"send":0,"wait":267,"receive":0,"ssl":262},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20250528/bc906928dc87d136--300x300--.gif","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20250528/bc906928dc87d136--300x300--.gif HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: image/gif\r\ncontent-length: 58869\r\nlast-modified: Tue, 27 May 2025 16:04:15 GMT\r\netag: \"905b4e20d3ce3a5f9b158e5cdc2c36ec\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 7d0bf959914cc8b241a71b84b4356d4e.cloudfront.net (CloudFront), 1.1 PS-TAO-01fgu203:6 (W), 1.1 PS-HIA-01VH8172:11 (W), 1.1 PS-FOC-01kD0116:13 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: RHWDpQhhhp9eHZpsKr7v8V7C2WyZiGyRKd3ghKZOz16aF6iTAVTKlQ==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 20223\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56147\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":58869,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 300 x 300","md5":"905b4e20d3ce3a5f9b158e5cdc2c36ec","sha1":"fcad2e82fbe9b1805b5f06652ef80edd3c4b1648","sha256":"2cf1aa82f1c9ce501a7887890928305cef8320d39e8904cb062a5f2ec1206f73","sha512":"b6b00a78d296025218c8394c2b1f39c89e574f2c426c869746eaeb714bc8d4d9e80dd560286c0bd299bd1388048803d427cd2f3e853c9ec2051d3928313246e7","ssdeep":"768:rRXHqbSylroU1gySR70aJMMJT2eG7/O7JiCSrquOcZnI4T2qGPjzgbVuZgq6PSd5:5quylvMJMMbGr9rquOgGPjzgr5rW7b","tlshash":"8e43028bca18244d98cd4ec1ab0d7c5138bddc133ebade3a0c175cfa9458269d2a55df","first_seen":"2025-10-19T10:38:45.338268Z","last_seen":"2026-04-07T12:18:56.400765Z","times_seen":9,"resource_available":false,"data":null}},"time_used":83,"timings":{"blocked":60,"dns":0,"connect":0,"send":0,"wait":19,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/_data/draw/number/prize-record","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.505Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /_data/draw/number/prize-record HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nrType: 1\r\ntpl: 5\r\nqnwebver: 3.12.0\r\nWebver: 4.9.3\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/json; charset=UTF-8\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\nnel: {\"report_to\":\"default\",\"max_age\":31536000,\"response_headers\":[\"x-requestid\"],\"include_subdomains\":true}\r\nreport-to: {\"group\":\"default\",\"max_age\":31536000,\"endpoints\":[{\"url\":\"https://g.report-url.cc/nel\"}],\"include_subdomains\":true}\r\nserver: openresty\r\nstrict-transport-security: max-age=15768000\r\nvary: Accept-Encoding, Accept\r\nx-requestid: 0ab013ecf0d308574ae7107ead158ef2\r\ncontent-length: 108\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":102,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"ee6039903fef204f652771a95c0d24f4","sha1":"317d04c79aee1edcf66b358dfa2a4a78b8ab001a","sha256":"50b0e49b257bacedcfb4e13eac5f6ed0fc03361c640b74f2b28f54291d5513ce","sha512":"d6e65e6ca26f5e0a98b33849331bb9ad3205a5b8f3bb4c5867250aa840e77f673298990dbef9654ee4ecaf070c547f577c21a0800f2bccc056431f9bb80994f9","ssdeep":"","tlshash":"35b0120070fc00724f811385484a7953a66cc084cc338b11d69ade2c4b5d3652211d5f","first_seen":"2026-04-07T12:17:58.064237Z","last_seen":"2026-04-07T12:17:58.064237Z","times_seen":1,"resource_available":false,"data":null}},"time_used":295,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":295,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220207/fd126c1e2ed07544.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.561Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220207/fd126c1e2ed07544.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 25522\r\nlast-modified: Tue, 08 Nov 2022 02:39:20 GMT\r\netag: \"982008f4e2f352abe48624ac8759c560\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 0977bc7110d2cb9bae1b93beda73da08.cloudfront.net (CloudFront), 1.1 PS-HIA-01VH8172:4 (W), 1.1 PS-CZX-01YZs45:15 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: ohdMb4mKfYWiiIrD1l4aXgPz2-mWOugOaK_Dy0_Y6Z_knfRX_YdbYw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56286\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":25522,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"982008f4e2f352abe48624ac8759c560","sha1":"26679d8ca197a8834bb0b3968cb67b7d7004e796","sha256":"f0efffe23b8a1c2e43c3b113a1cc2a8342f436fa8693245eb9f28dfd8492a6fa","sha512":"1a65e466bfd7d183d3a2b9922c9f2b1c776fdb4f5afa3850cc6bfbd17b9d4b59f3f2f96f0093c980c4eede6dbb38ab00dd1a0c8f635a4ad3f34f70a72130a273","ssdeep":"768:u66lcQrnt5qxMPKNUZeRZahqqAJJ7QGO:wcQjthIUWZLH7QGO","tlshash":"20b2f18af5133118649c94b638344223a94cf8eec3fc8e6975b55d3b06bfbb1a57021d","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.419555Z","times_seen":122,"resource_available":false,"data":null}},"time_used":99,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":73,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/13839cc1ad546757.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.571Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/13839cc1ad546757.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 21800\r\nlast-modified: Tue, 08 Nov 2022 02:38:43 GMT\r\netag: \"b5717ed7f65503104a13d496def1bb0c\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 e9e028640030d926b686e6a40a561de8.cloudfront.net (CloudFront), 1.1 PS-000-01MvV113:1 (W), 1.1 PS-FOC-013M3119:4 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: 0B-ZFoyVfhCxvJWrYOMTLe7_RMEEewtw28EwBkLFCd0YZwasqpcgtA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56291\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":21800,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b5717ed7f65503104a13d496def1bb0c","sha1":"a0ffc5eceb629e9cb7369e008bd4fe4419ee3443","sha256":"13a26847c4350faaea8ac93179b9a9dad23cf1eba2fec638d0a6aa27936ac8b7","sha512":"45f04fbe78e980e51da076ec8fbce00ea44a55e4651758ed95c0f3048302d0d85541f36d96739a6e8bf8b3fbdfc7f98b9e9f967cc784cf0237adace567fd5984","ssdeep":"384:Vg5w0odXKx3jUM4fthdTtSJWJE8pRKXT3b+SG/ButurG2tBfjc9BzUXK:Vg5po8xz5CZtSbeKjr+T/BWurGAg9BoK","tlshash":"19a2e057bfa6be1274b489474b09c6e48ef8879c52762e20da3da37b34803521d5703f","first_seen":"2024-04-29T06:18:26Z","last_seen":"2026-04-07T12:18:56.421814Z","times_seen":19,"resource_available":false,"data":null}},"time_used":141,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":104,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220207/720c096626e7704f.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.591Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220207/720c096626e7704f.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 24344\r\nlast-modified: Tue, 08 Nov 2022 02:39:18 GMT\r\netag: \"e031c6a83c66e1192c7344fca74f8470\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 d63d8d406be99e2ae197739e9767d67e.cloudfront.net (CloudFront), 1.1 PSjsczBGPhq161:12 (W), 1.1 PS-NTG-01FLw54:2 (W), 1.1 PS-000-01oRY50:10 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: FRA56-P14\r\nx-amz-cf-id: Bchh41K-ZUi81GICGRZbGLNVUTn4ODVkZzffNAQgy5ujqpp4leuVvw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56298\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":24344,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e031c6a83c66e1192c7344fca74f8470","sha1":"0cd7e4cdfcc1135e6bf7108a1fc95122ae7ed69d","sha256":"931cad3cac0e75aa366b695f17da5cfdd996d14ee6f431fc99077a385aaa7751","sha512":"853709ba9339adfe1ef21c8a9f07116a6e7d5615cb6291163fa0953ce064168cdb1edd38b519df01c27aac6145e8bf870206a0de4d5a285ec2fe5e87cf5e697f","ssdeep":"384:4OOFErLQ56v8zdRv0wFQZcRCJXEwrf/bq4t0D77EVFOXihz7tNUiS/QLwli8Krd7:CGrLPv8JRv0wHCJX5u4t0D7YEXcz7AUP","tlshash":"acb2e10fc5c97f0771986adb212ec9aa10bb23ac2f665cd672c329cd91ac58d124f3d5","first_seen":"2024-04-29T06:18:26Z","last_seen":"2026-04-07T12:18:56.393923Z","times_seen":20,"resource_available":false,"data":null}},"time_used":326,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":296,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/1d673281c54f8b7b.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.619Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/1d673281c54f8b7b.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 21970\r\nlast-modified: Sun, 20 Oct 2024 09:17:19 GMT\r\netag: \"ff9c6e194d55ac3acc1097cc5d33d15c\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 2ced3c661c3e539594468b866f2f0a10.cloudfront.net (CloudFront), 1.1 PS-JJN-015mq212:6 (W), 1.1 PS-CZX-01vAA43:16 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: DfnQRHVuIavcyZmijiwngLvuLvGSYqrf2zEoU1Zzxlck4ak3AUSmoA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56303\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":21970,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ff9c6e194d55ac3acc1097cc5d33d15c","sha1":"73da51e73851ea8d00c0d0963895ec3d71c9c904","sha256":"e671bf1b1c66bc8f87828fc24d975a73071c06d86bc623824ca597cd16938384","sha512":"30bc57ab5e68083939ae15ece4159b5364607b87995d8acf5e9b1c387d18b380dae3f44702bd0b422eaa76bd1717e92d020b4564d81e199561d4ab4b4cc0b748","ssdeep":"384:GnMLss7ABlIPrBPeR+OSQLHIeOq2ss7vVUeO18GvqLnWkfvyzuRNhtDZlEp:essy2OPrBP8+ORLoeeZ7vqRSLWkfKz4P","tlshash":"54a2e010bbaeb1d76f9a6b3add2083081e9c33830037d2a756922449d86fb66d1041af","first_seen":"2023-08-25T08:49:54Z","last_seen":"2026-04-07T12:18:56.48541Z","times_seen":30,"resource_available":false,"data":null}},"time_used":132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":103,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-news-icon@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.727Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-news-icon@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 73042\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"a1b92cb714b7ea2db2c9364cb697e799\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 b461bba4647da416f39ad099188ccad8.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 1577\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1577,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit colormap, non-interlaced","md5":"a1b92cb714b7ea2db2c9364cb697e799","sha1":"3a8415228329cff5de58e45d34fbcbd4eb754941","sha256":"da01eae81d07fa0b63071e7d3b216ba7ffa9db07e811e4b9465250475d3dd0d6","sha512":"ff9b73cc610a7d426aeda0a54f36d00fbbf399cc7b414f263e55fc1027b8fb4a6de1b86e9123c4ec005fbe1d3b694753173a96e45ed2bc2ce74d0b05232a31e7","ssdeep":"","tlshash":"ab312aad0188450ac6cba9e49bb21160f1b71a169e340408f89c45af2d63fb49be6d88","first_seen":"2023-08-29T14:06:39Z","last_seen":"2026-04-07T12:18:56.471223Z","times_seen":66,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/0e73e411ea49ff83.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.396Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/0e73e411ea49ff83.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/0e73e411ea49ff83.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56243\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":28172,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/730d53ad57d4a589.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.676Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/730d53ad57d4a589.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 19552\r\nlast-modified: Tue, 08 Nov 2022 02:38:51 GMT\r\netag: \"8b6c21c84fd73cff38f3a614f07eb1da\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 8b6b929643b59ff8b06fc52791e4fabe.cloudfront.net (CloudFront), 1.1 PS-000-01cgl116:15 (W), 1.1 PS-JJN-01m5h211:4 (W), 1.1 PS-XUZ-01OGM45:15 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: RvdBsgDxSuN-lUElZKzBoXskbbFloCtbOCve5fDD7ESrP4jbNj10Ag==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56321\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":19552,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"8b6c21c84fd73cff38f3a614f07eb1da","sha1":"e5a298b4afb7dfafe904d06ad17ecde38b05f075","sha256":"b0145abe60c08faef9dcd18162b7caed59c7ca32c33e5871f840229c81d68cfb","sha512":"bd87269cb10dfc0e1394aa13e1b9f6ce5e1481b3c1ea033bdc4e9dee5dab0b531536a18663981afc5a08f8c9dd8bcf4dd426427238d666ef10e5993578a0a451","ssdeep":"384:Y7Jj44dzUHF8+X1VE9gQ4kexsxGm9Fh5J/bUrBBlSFyzEmCEfxv/7T/8rGADf2lQ:Y7JjNdzU+OvXQ4kMsxr9Fh5MBfGKE9ci","tlshash":"be92c02a98dfc153acfa40e85fe3955ba0f43143da21cfd1acb76a9fadf0185121b164","first_seen":"2023-08-25T08:49:54Z","last_seen":"2026-04-07T12:18:56.468339Z","times_seen":30,"resource_available":false,"data":null}},"time_used":149,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":120,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/_data/config/config/get","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:25.887Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /_data/config/config/get HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nrType: 1\r\ntpl: 5\r\nqnwebver: 3.12.0\r\nWebver: 4.9.3\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/json; charset=UTF-8\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\nnel: {\"report_to\":\"default\",\"max_age\":31536000,\"response_headers\":[\"x-requestid\"],\"include_subdomains\":true}\r\nreport-to: {\"group\":\"default\",\"max_age\":31536000,\"endpoints\":[{\"url\":\"https://g.report-url.cc/nel\"}],\"include_subdomains\":true}\r\nserver: openresty\r\nstrict-transport-security: max-age=15768000\r\nvary: Accept-Encoding, Accept\r\nx-f: HIT\r\nx-requestid: e7962e4d6642866efb1ba5a749d9403c\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":24389,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"82e681a7057a09f1ef39e63c679fbe1a","sha1":"486d6e3fbc9591eec938954395f63a0d1c3c6d8c","sha256":"66203c4f56635f22c954b952bb3d9101f6c46e80a75d11621a7bc10dae0c6e8c","sha512":"0121440b88e230e85ae579183f4e82dbb13ef92ebe64d0370214d29b905afa7f460073b97d3d8059b5869036544b1ec78e4bdc94e407e2ca516a9eda6fd54449","ssdeep":"384:vWCV5JfNpgPkbhK2a++BR1RSpHqDKVaKCxsjCZ5J0slgYwu0IWrE:DJf4DBnQpHqD9KMJ0q","tlshash":"54b24093a3d4dc8b476262d039cf648ae5dd125f45cbcf45fa98de7ac4c9be0522b028","first_seen":"2026-04-07T12:17:58.072263Z","last_seen":"2026-04-07T12:17:58.072263Z","times_seen":1,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/img/home-notice-icon@2x.png","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.729Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/img/home-notice-icon@2x.png HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/static/css/5.30337a5b205844be5d17.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 81822\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-type: image/png\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: \"961a05ea6a2acfc99943eb8032eb0bd1\"\r\nlast-modified: Thu, 28 Aug 2025 05:53:35 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 9e5d6a6abf602fcc12c6d04143bd708e.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 787\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":787,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit colormap, non-interlaced","md5":"961a05ea6a2acfc99943eb8032eb0bd1","sha1":"aef9b565a49a272eb11651d246894641b5a11c2c","sha256":"c5f0a9b34e3652e16778070c01f0db953b90e0a9ae2a69b3909ae29f2848823f","sha512":"adc4ce4d4b58af6fd37eb3f4da553af0b7ac4633c3a3b90306253f8d540f41a7560aa821c93472285057bf049bff02ce931f3f1681426c16d23c9a0bc2e981af","ssdeep":"","tlshash":"310120be07092069f4d225bf06b30cd13b3e2e212b764990a846f45d0bb8e4a04ca50c","first_seen":"2023-08-29T14:06:40Z","last_seen":"2026-04-07T12:18:56.410478Z","times_seen":67,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/1d673281c54f8b7b.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.377Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/1d673281c54f8b7b.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/1d673281c54f8b7b.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56239\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":21970,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20260106/95211087abf4c4aa--1490x570--.jpg@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.548Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20260106/95211087abf4c4aa--1490x570--.jpg@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 137102\r\nlast-modified: Mon, 05 Jan 2026 16:54:28 GMT\r\netag: \"b0429d39f1cc4b75bb0db91e4fb57891\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 4313fc64a6afe03d0bac7c0ec16021b8.cloudfront.net (CloudFront), 1.1 PS-HIA-01tWB184:18 (W), 1.1 PS-JJN-015mq212:8 (W), 1.1 PS-FOC-01rf4118:16 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: -tfGe30OElMH_VFve60HfCh98-pcH-whnGyMf-JCb0Mj6qfWh6ArsQ==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 72547\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56274\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":137102,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1490x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b0429d39f1cc4b75bb0db91e4fb57891","sha1":"bfc4dd9e2c7750b5a45841a85440a29928fb26ed","sha256":"ab5b1df6e5f6711ba693cd68e0bace0d321e065222ef05eeff48ffd0da5309b1","sha512":"4114481c7a30998d2cf5dedcf857292f4981a851d4472728c7633b52e25a33534a1cdfea6b625572f60768de1898a196b791d880e8db0482d1c4488ee98593bf","ssdeep":"3072:7TvkHTDWFbalNIJfI36SzaTm7lJhqGpWkhBqJbWe:/MvWpaDMfI365y7/hqGpWIAWe","tlshash":"fdd31243ae454b6ee30cc75d269afa48f00d524649b3af7cc942a933808d55c74a7bdf","first_seen":"2026-01-16T01:14:51.422085Z","last_seen":"2026-04-07T12:18:56.447431Z","times_seen":14,"resource_available":false,"data":null}},"time_used":353,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":315,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/_data/adv/index/list?adv_tag=xianjin_tiyu_mobile_index_piclink_centerloop","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /_data/adv/index/list?adv_tag=xianjin_tiyu_mobile_index_piclink_centerloop HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nrType: 1\r\ntpl: 5\r\nqnwebver: 3.12.0\r\nWebver: 4.9.3\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/json; charset=UTF-8\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\nnel: {\"report_to\":\"default\",\"max_age\":31536000,\"response_headers\":[\"x-requestid\"],\"include_subdomains\":true}\r\nreport-to: {\"group\":\"default\",\"max_age\":31536000,\"endpoints\":[{\"url\":\"https://g.report-url.cc/nel\"}],\"include_subdomains\":true}\r\nserver: openresty\r\nstrict-transport-security: max-age=15768000\r\nvary: Accept-Encoding, Accept\r\nx-f: STALE\r\nx-requestid: e9c8212c282da5e267de61ef246a2ea1\r\ncontent-length: 902\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2944,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"f059b6ee1d09c6c7a01cee67d11c21ec","sha1":"ad5641d70bcc216e8957f472c85b4b33e17165a5","sha256":"46d0d9822de671532caf44f2337d7762e7a2120c6869b1c7d9134083d1d15272","sha512":"48952806615dce71dc5fb608b2963bbc65a6122aaceb2967c3425b32bd25fdc8b6cc39d5d6c22cc0e90cecca9ba736ecb313e22d1f36b2562f68db42d9040f53","ssdeep":"","tlshash":"4151ef8b5bf8d4560fd0675b6cc3e3c5f7e5101a0c894b96888cde2ec29a599030f2ee","first_seen":"2026-03-13T23:25:48.644481Z","last_seen":"2026-04-07T12:18:56.398426Z","times_seen":7,"resource_available":false,"data":null}},"time_used":536,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":536,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220207/89929f9eafe66b44.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.631Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220207/89929f9eafe66b44.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 21394\r\nlast-modified: Tue, 08 Nov 2022 02:39:18 GMT\r\netag: \"bfb6c8073d0b42cdb5fbf203c86a4a93\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nx-amz-cf-pop: NRT12-C5\r\nx-amz-cf-id: -f8ndwk4RY_rpB37NImlik1wx6hmPgfHrgJNr-ArnOids8535e6KYg==\r\nvia: 1.1 6c85b0a3365166855989d4221fa857c2.cloudfront.net (CloudFront), 1.1 PS-CZX-0165159:9 (W), 1.1 PS-FOC-01t45115:14 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-upper-cache-status: hit\r\nage: 65947\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56304\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":21394,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"bfb6c8073d0b42cdb5fbf203c86a4a93","sha1":"1fb900b3f9ab51b18c181e3e2a91e0cb7a39997e","sha256":"6106fd61037a9cf3c941c28ff32914ff1d34126412568402fa45922cddfb7c4a","sha512":"6ce12e19afb6b39d95819824c14ab8abfe4a270c506bfb44b57b4b48372e3fd6ef52ec96e5c4173f9bea9823cd53544c568eefa6d464f95419a5504a999f94af","ssdeep":"384:9gBdhTTVmA3taz8MfylNE6/3Cv6JlaC5/idEdOpERXV+ku:9gbhTJJ9yoivmNgdEdfRXV+Z","tlshash":"6fa2c04b88c4874ffeb1f9f0a0781305ba3b9c46e63f965189498ce654b815c06f4fe2","first_seen":"2025-10-19T10:38:43.105404Z","last_seen":"2026-04-07T12:18:56.426778Z","times_seen":16,"resource_available":false,"data":null}},"time_used":124,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":87,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20240609/2dc6a04f91225c7d-2x614.jpg@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.545Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20240609/2dc6a04f91225c7d-2x614.jpg@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 67890\r\nlast-modified: Sun, 09 Jun 2024 05:44:58 GMT\r\netag: \"fc832316e86d204dd1eb2f5e4eb521ba\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 6b620ac28d0f01cab470bfdb9a47f09c.cloudfront.net (CloudFront), 1.1 PS-000-01SuJ115:7 (W), 1.1 PS-XUZ-01yVV44:4 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN2-P10\r\nx-amz-cf-id: xPHo6qcmBHWJXO5f6vj4qR2v61zQQIVRKNlUC8g29TJQaCrkco3epA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 72547\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56271\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":67890,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1490x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"fc832316e86d204dd1eb2f5e4eb521ba","sha1":"070facb94d4bc5a8f3aa34585f4f051415e2a5ea","sha256":"c701571ea6b86c851e418a1b23bed7ce920631fc5e232489ce1853f9579897b9","sha512":"882026e394f68ae7b2dd5cc3cb8c530b4d8dbc0f2e25f8001580388ec26501cc7667f00af5d267eeb7d37e73842b39dbb131e0c5e6baa40ad074bba9b9a82e9e","ssdeep":"1536:fGRXumakEzX2fr5WwOGwhG7OVDX/3MZPs8o+ZZ9Fd:f7maXzX2ftjwhTQsj+B","tlshash":"256302c934573090c555d22f0ded464fbae97a26d4d2a69ebd140853e4e5c032ff3a2b","first_seen":"2025-10-19T10:38:46.610969Z","last_seen":"2026-04-07T12:18:56.40197Z","times_seen":16,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/_data/game/newlist/all-list?type=home\u0026app=2","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.685Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /_data/game/newlist/all-list?type=home\u0026app=2 HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nrType: 1\r\ntpl: 5\r\nqnwebver: 3.12.0\r\nWebver: 4.9.3\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/json; charset=UTF-8\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\nnel: {\"report_to\":\"default\",\"max_age\":31536000,\"response_headers\":[\"x-requestid\"],\"include_subdomains\":true}\r\nreport-to: {\"group\":\"default\",\"max_age\":31536000,\"endpoints\":[{\"url\":\"https://g.report-url.cc/nel\"}],\"include_subdomains\":true}\r\nserver: openresty\r\nstrict-transport-security: max-age=15768000\r\nvary: Accept-Encoding, Accept\r\nx-f: HIT\r\nx-requestid: cc223ade8288b4bfb8deac1f9f01f8f8\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":230764,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (63295), with no line terminators","md5":"2c9e68496c8b2555cd3125c21c23734e","sha1":"9cfd4f568f762bea2761eb0e4f4a6eaa88ce6aaa","sha256":"d7d41256a86bd46d07640757802c4faa13a0a7c932d8967569b93195dfb97d2d","sha512":"9896c925f829205ec5e00579c7fda2c222128e98dab867e40f8fec0a8671cd1d96816761b1176e4f587942ce09597a2224ef805438d4e501123e470670ee3060","ssdeep":"1536:pFuxuElNcAquFz8JaVBHTuE3RC9mlYG537PLQdaFeTQ7nqoTP/hoiPrQD9vEc/Cu:GosYg/QEhlxwZPrVk1aKedv","tlshash":"ee34549311c295de97a118fa1dcf966ae1ee0717d1a2ce187205eef6cfcd691813b038","first_seen":"2026-04-07T12:17:58.078844Z","last_seen":"2026-04-07T12:18:56.48204Z","times_seen":2,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20250314/ba0db1c6eb385b3e--636x520--.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.870Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20250314/ba0db1c6eb385b3e--636x520--.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20250314/ba0db1c6eb385b3e--636x520--.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56181\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":18364,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20250314/ba0db1c6eb385b3e--636x520--.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.912Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20250314/ba0db1c6eb385b3e--636x520--.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 18364\r\nlast-modified: Fri, 14 Mar 2025 09:29:55 GMT\r\netag: \"e13df813bf16717f5bf048c060ab322d\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 72532e423c9fc71537badb2eb04cef64.cloudfront.net (CloudFront), 1.1 PS-JJN-015mq212:17 (W), 1.1 PS-CZX-0165159:18 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: SIN3-P2\r\nx-amz-cf-id: nUETAQReyWC3W3q574mSGS0nwNFZVURON0MdPceMs0PQZvzhhZb9VA==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 3329\r\nx-ws-request-id: 69d4f5d6_PShlamstdAMS1cc96_37668-56187\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":18364,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e13df813bf16717f5bf048c060ab322d","sha1":"9f29c2d2511133dfdeedef087a9fa7a9f86341e6","sha256":"e83ddfb82e4ecf245564b45cfdb4ad31af58fafa0dc0b4ccdd0371f9081bc0c0","sha512":"4faedc6091d02d4e7fa8588c70721a585d5a9eef1d213854ae7e55b216e7f595256b307528cc04c725614093395ebdb3f8c464537b6d4c93cb95ab629775329a","ssdeep":"384:i7Svib8che4VSCq6U+G+hOo/kj+jeCtFO4fa6VgaCZlPuykk0yZzhtxZq:i22LhlVhq9+Gksj3Ct44faWgrHuy5Zho","tlshash":"bb82c07a17018dcbb4e87e3b895a5368276bd430c475439ccaca16d273125d932bf787","first_seen":"2026-03-13T23:25:48.67106Z","last_seen":"2026-04-07T12:18:56.478244Z","times_seen":7,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20231006/ddbb512ca3d64dcc-2x614.jpg","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20231006/ddbb512ca3d64dcc-2x614.jpg HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20231006/ddbb512ca3d64dcc-2x614.jpg@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56213\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":72662,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221105/9775bfd3a60986c8.jpg","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221105/9775bfd3a60986c8.jpg HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20221105/9775bfd3a60986c8.jpg@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56214\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":92066,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/730d53ad57d4a589.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/730d53ad57d4a589.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220205/730d53ad57d4a589.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56254\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":19552,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/3cf03d634cb2d259.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.677Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/3cf03d634cb2d259.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 16580\r\nlast-modified: Tue, 08 Nov 2022 02:38:46 GMT\r\netag: \"f74a1ed3d4192688a4ec16565d458746\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nvia: 1.1 b31d3fc2fbf5c9a115bdf4daacd1f236.cloudfront.net (CloudFront), 1.1 PS-NTG-01wPO228:13 (W), 1.1 PS-000-01SFH54:9 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-amz-cf-pop: NRT20-P9\r\nx-amz-cf-id: vyLo_dxvN9kp8ecdf0Oy_Df5mE6GyyTtpVUhPtKf5orUf2IKfSJoPw==\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56322\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":16580,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f74a1ed3d4192688a4ec16565d458746","sha1":"5017b30d8d43c224bcedbdfcb4576bc1d2d5104d","sha256":"63c01c6003c7b8a493537561bdd6e3c8dad821c8c8aa5a41832759ddf7dbb786","sha512":"1d08c8a6dd72cbab9d16d034d9fb1cb2e0a04d9969c738bb62cb695f3c6ed3cac4cfc85ad2f83166e59482316e98402b22fd64c1ab2303fbb9b83f83ebd15b7c","ssdeep":"384:yXMnwRmKGHS8sGAlcMMyKmUAdL+6YihxM5NJM1WOZKsAK:yMnImK4bdy9UUL+5AYTuWS3AK","tlshash":"1872e03201f4b08ce85556b6c91a3bb17cdd89a47ce47ba1e93c68674e2c8419cf47e4","first_seen":"2023-08-25T08:49:54Z","last_seen":"2026-04-07T12:18:56.458161Z","times_seen":27,"resource_available":false,"data":null}},"time_used":148,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":120,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.51570099.com/static/css/183.867bcad2b2be7c6640ae.css","fqdn":"m.51570099.com","domain":"51570099.com","tld":"com"},"ip":{"addr":"118.107.248.44","port":443,"asn":132825,"as":"MYTEK TRADING PTY LTD","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:26.700Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"51570099.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Mar 2026 18:38:11 GMT","end":"Thu, 04 Jun 2026 18:38:10 GMT"},"fingerprint":{"sha1":"E9:D7:63:B1:F2:E2:42:10:E6:28:0C:66:0F:A5:BF:D0:F5:38:36:C7","sha256":"03:CF:6D:48:B5:9D:87:B2:A9:66:2A:F7:6C:7A:A4:23:39:58:0D:02:C1:15:33:DF:39:4D:8B:03:AE:C9:A8:1F"}}},"request":{"raw":"GET /static/css/183.867bcad2b2be7c6640ae.css HTTP/1.1\r\nHost: m.51570099.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nage: 81163\r\ncache-control: public, max-age=2592000, immutable\r\ncontent-encoding: gzip\r\ncontent-type: text/css\r\ndate: Tue, 07 Apr 2026 12:17:26 GMT\r\netag: W/\"00b464f8523518a6b0db2dad9f430467\"\r\nlast-modified: Mon, 17 Nov 2025 06:27:15 GMT\r\nserver: openresty\r\nvary: Accept-Encoding\r\nvia: 1.1 7cca08baa146afbf2733cbc68a3e4c68.cloudfront.net (CloudFront)\r\nx-cache: Hit from cloudfront\r\ncontent-length: 3290\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":71599,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"00b464f8523518a6b0db2dad9f430467","sha1":"a5468a9d0263357e018b7b8809b497066a7de045","sha256":"be9584ea92a43be3d243e7dec525220e8cb3888465adcb85392babbf32a1878c","sha512":"93aa9d0d81b7b657b10cb93fbdedcc5c52e7827a804d3a29c35545df2b00aff7b3f3bec2685d9c60436764a74281e8dd4c081b7043eae3fd72bb2687d135ef2f","ssdeep":"1536:x5kfkJZYxuGVf62E0//OdMZyQfrEDr88jaX+1DSEjty:x5kfkJZYxuGVf62E0//OdMZyQfrEDr87","tlshash":"c96391367c79134f427f6906fedef15343a1ebd3e894a852b22e8b100a175d439722b9","first_seen":"2025-08-13T04:09:03.543861Z","last_seen":"2026-04-07T12:18:56.427655Z","times_seen":47,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"m.51570099.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"m.51570099.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220206/17f21eacc70429ae.png","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.301Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220206/17f21eacc70429ae.png HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.51570099.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: text/html\r\ncontent-length: 162\r\nlocation: https://img.uogia.org/uploads/image/20220206/17f21eacc70429ae.png@.webp\r\nvia: 0.0 PShlamstdAMS1cc96:19 (W)\r\naccess-control-allow-origin: *\r\nserver: PWS/8.3.1.0.8\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56219\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":19656,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T17:38:17.018196Z","times_seen":13469491,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20220205/402e021c59662920.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.569Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20220205/402e021c59662920.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 22118\r\nlast-modified: Tue, 08 Nov 2022 02:38:47 GMT\r\netag: \"b7d3b6142f39e2e3c2f347f05e49e819\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nx-amz-cf-pop: NRT12-C5\r\nx-amz-cf-id: MoGFka5ge4as-bEczhRmxPts_mbFFTafDXc_c7Y24PmP2TjBBdGGMg==\r\nx-upper-cache-status: hit\r\nvia: 1.1 0105a4369151fac4adac04600c77e566.cloudfront.net (CloudFront), 1.1 PS-JJN-01m5h211:8 (W), 1.1 PS-CZX-01bnS57:0 (W), 1.1 PS-JJN-01m5h211:8 (W), 1.1 PS-FOC-01tmR97:14 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nage: 65946\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56290\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":22118,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b7d3b6142f39e2e3c2f347f05e49e819","sha1":"a732ff9b1db4623618a653888e8f1975ab757cdf","sha256":"8998648258209e54faeb531fe501cc2e950ce490726b6c2bc817cf22ae404979","sha512":"b7d48e7157ef372633fb6b9768214b98a56806f2a6423c00ab24a7133c096b349d9ff12cecd62b9a888a9192fbd0983072822b3ec7ffeafebae08df3af67e6c7","ssdeep":"384:Dx0Bn4/fQlOJz4LUcGAfM4wi/yTuaT8dpbgNWndp5v71dWW0C1ultQEEEf3JNWh:DxAIIpUcGAUNiKT31WZv71wW6qBEPGh","tlshash":"62a2e199c4ddafe61acc20b150421f10b67dd98a7cca0fb515a7c34a482bed5a378a46","first_seen":"2025-10-19T10:38:46.91915Z","last_seen":"2026-04-07T12:18:56.455888Z","times_seen":17,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":88,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.uogia.org/uploads/image/20221104/c2fd95e795ee612e.png@.webp","fqdn":"img.uogia.org","domain":"uogia.org","tld":"org"},"ip":{"addr":"138.113.133.18","port":443,"asn":54994,"as":"ML-1432-54994","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.51570099.com/","date":"2026-04-07T12:17:27.933Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.uogia.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 06 Mar 2026 00:00:00 GMT","end":"Sat, 13 Mar 2027 23:59:59 GMT"},"fingerprint":{"sha1":"C4:3E:9D:64:32:96:8A:33:52:D8:E3:25:51:0D:98:56:9E:11:4D:48","sha256":"68:CF:36:6E:FF:22:EE:7D:FB:F5:85:A9:43:30:9E:39:DE:E2:D1:BC:D2:2E:44:6E:42:87:2F:A5:75:AC:1C:54"}}},"request":{"raw":"GET /uploads/image/20221104/c2fd95e795ee612e.png@.webp HTTP/1.1\r\nHost: img.uogia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://m.51570099.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 12:17:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 722\r\nlast-modified: Fri, 04 Nov 2022 02:40:12 GMT\r\netag: \"20812cd106574b4a77b2004225afb518\"\r\naccept-ranges: bytes\r\nserver: PWS/8.3.1.0.8\r\nx-amz-cf-pop: NRT12-C5\r\nx-amz-cf-id: pKn1-ZGQbEGgnKr3R6YEgNNjo4OtCEm3Fli8oOLabRpcF_B5kz4pzw==\r\nvia: 1.1 e6b8e88b8ad705f6b48fe421dbc555ee.cloudfront.net (CloudFront), 1.1 PS-JJN-01d6F200:13 (W), 1.1 PS-CZX-01bnS57:6 (W), 0.0 PShlamstdAMS1cc96:19 (W)\r\nx-px: ht PShlamstdAMS1cc96AMS\r\nx-upper-cache-status: hit\r\nage: 75699\r\nx-ws-request-id: 69d4f5d7_PShlamstdAMS1cc96_37668-56341\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":722,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"20812cd106574b4a77b2004225afb518","sha1":"7d5bce36320be0d18a372591c43847cadcee5bfa","sha256":"7253b2f7ba7608bf36f60993820f29622ab55ef594b422201a1dc9dcb9a311a0","sha512":"7d10e8a7e6a9d2611293b3bc9be6693836f00f55caac16305f86f29b072a2200fdce33775fa91e85c3cffca3a6a6fc1fdd2571b14cb3d35cfc4e3c0e21846795","ssdeep":"","tlshash":"13019422bce20abe66904554bf2393c4b669b0c9fd6bf51606fb140e90c74523a60ff7","first_seen":"2024-01-09T03:39:21Z","last_seen":"2026-04-07T12:18:56.376301Z","times_seen":48,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}