Report - bjmailqq.com/

Report Overview

Submitted URL
bjmailqq.com/
IP
203.107.45.167
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.
Submitted
2022-12-01 20:53:11
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
28

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
hm.baidu.com	8254	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	25 kB	103.235.46.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.131
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.33.119.27
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
bjmailqq.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	344 B	273 B	203.107.45.167
s.union.360.cn	153874	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	13 kB	180.163.251.76
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.4 kB	93.184.220.29
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	718 B	3.8 kB	104.18.21.226
goutong.baidu.com	261591	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	415 B	38 kB	14.215.177.164
ckmap.mediav.com	336843	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	897 B	975 B	180.163.247.134
cm.g.doubleclick.net	202	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	480 B	836 B	142.250.74.162
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
www.bjmailqq.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	29 kB	2.2 MB	58.216.118.223
ocsp.crlocsp.cn	175388	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.6 kB	101.198.193.5
360fenxi.mediav.com	267328	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	484 B	1.3 kB	123.125.81.172
e.so.com	101388	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	385 B	217 B	36.99.171.172
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.37.79.227
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	85 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-01	medium	bjmailqq.com/	Phishing
2022-12-01	medium	www.bjmailqq.com/	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/prices.js	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/indexExmail.js	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/jquery.min.js	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/jquery.terseBanner.min.js	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/new_buy.js	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/jquery.superslide.2.1.1.js	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/index.min.js	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/jquery.excoloslider.js	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/pack.min.js	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/jquery.validate-1.11.1.min1cc4f5.js	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/responsiveslides2993bf.js	Phishing
2022-12-01	medium	www.bjmailqq.com/statics/yx/js/swiper.min.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (36)

	URL	Size	First Seen	Last Seen
	www.bjmailqq.com/statics/yx/js/jquery.excoloslider.js	34 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/statics/yx/js/jquery.excoloslider.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 8d03db4244c65d5dae14e457e4c3160b 2313f703a2e3daa9415ca310f9565bc298216c6f 03147e12e71fea770230b3a92856804e74d89f12284cb56a83e1fc3268da3e44 Loading...

	www.bjmailqq.com/	556 B	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash aea0e4c01a3010cd91933ba03c7288d2 9d77ecd940955dc4bb93cf9d19fe206033815a68 f9359e9fb0bbcf3cd892142e61d31a331bf1c18b80ef758a531c4fd447c88f2a Loading...

	www.bjmailqq.com/	194 B	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 2d2c3424b7cd1a62fbd58841768b1b38 855230967593d9e3b150c61b45ed471f071af410 79a0feb98ba86a5e70d289229146a634125e7d091162761a8edbca3ff2e8b802 Loading...

	www.bjmailqq.com/	1.1 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 72458c01c03f957dd16d1723169c0e87 b4f39eb180e6b5323739ddd0eae07a80c12efbcb 0253622bb529239d3180e6fc1a70ba7ada79bb72a9817dbf7501123a3610cde7 Loading...

	hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 40e04f20dedc5704d9ca704fe7415ecc 453b06aeb9f05cf21d31bab741eb30b5dc242438 837a238895bf1f298064efa17d5e93a9b43e279978c194eb22f1af6acf2c88ac Loading...

	www.bjmailqq.com/statics/yx/js/jquery.min.js	96 kB	2023-03-07	2024-04-24
Pretty URL www.bjmailqq.com/statics/yx/js/jquery.min.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-04-24 13:23:27 Times Seen10032 Hash 5790ead7ad3ba27397aedfa3d263b867 8130544c215fe5d1ec081d83461bf4a711e74882 2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0 Loading...

	www.bjmailqq.com/statics/yx/js/jquery.superslide.2.1.1.js	11 kB	2023-03-07	2024-04-24
Pretty URL www.bjmailqq.com/statics/yx/js/jquery.superslide.2.1.1.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:46 Last Seen2024-04-24 11:37:24 Times Seen595 Hash cd674d9e02f20426d9acf1d11c85539b 74ab51a432e33698a7a627f05baf749472b72cc3 496bdf2635c9f9494f51d0ba63c8a43e5b6dfb7c88b4426e6a56f577d945e3e9 Loading...

	www.bjmailqq.com/statics/yx/js/swiper.min.js	96 kB	2023-03-07	2024-04-24
Pretty URL www.bjmailqq.com/statics/yx/js/swiper.min.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:19 Last Seen2024-04-24 00:06:57 Times Seen1569 Hash fb13ef3e875ca3497ede35d3774be9d3 ab0743a89d522438c17ae7eaf5943fd4590ee3d0 4a10219bee747aadeeda78f166d787adf32583f361f88d44b472f6f3da798083 Loading...

	www.bjmailqq.com/statics/yx/js/prices.js	1 B	2023-03-07	2024-04-24
Pretty URL www.bjmailqq.com/statics/yx/js/prices.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:53 Last Seen2024-04-24 13:56:05 Times Seen21453 Hash 7215ee9c7d9dc229d2921a40e899ec5f b858cb282617fb0956d960215c8e84d1ccf909c6 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068 Loading...

	www.bjmailqq.com/	305 B	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 5527095b1824fcce71a8a88b1f7ef02f 56954b7409cf18ba33b56952f7cf14c940a64fa0 e9b2b734e53032383df69d7bf040fe9a9b1d35d80a151a40b237750029c7de3f Loading...

	www.bjmailqq.com/	289 B	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 05295a44c4f6895cf49bff67ce30ffc9 72a0f899df9d76ae065256caac71773407182c9b 8344821483236f2784cb8562382bb0341baf33ccad5607b6c1f9307632778ca6 Loading...

	www.bjmailqq.com/statics/yx/js/pack.min.js	70 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/statics/yx/js/pack.min.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 7ef42fec5760de3b979237961232d4e7 620669a70c8d381d3fd7e35c490559f0219245e5 cc90efae8a8f7400c31449ae44911e8559d45f0c7cfd970e2156a4df827ec7d8 Loading...

	www.bjmailqq.com/statics/yx/js/jquery.validate-1.11.1.min1cc4f5.js	21 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/statics/yx/js/jquery.validate-1.11.1.min1cc4f5.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 7593ead6dec918a927e0e804b5b6b6d7 d099977f2076cc5e7c4a9cf6b7083e68beab0168 12281e939ffb947d4d3c393eee0f788b7742b559180fcde8c990b8cccab83cb8 Loading...

	www.bjmailqq.com/statics/yx/js/indexExmail.js	118 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/statics/yx/js/indexExmail.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 5318284b3efa4264c4a442f9734486a2 ce93f3efbf6ccbd96a5ecebf98cde46ce8692fe2 596d111dd3a4c855fefedcfb4366a1296166bf936576f8fa9df74c1602ac11d9 Loading...

	www.bjmailqq.com/statics/yx/js/jquery.terseBanner.min.js	34 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/statics/yx/js/jquery.terseBanner.min.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash e04736554ccc9fdf37400bf262e6f0f6 f9dc1d753358a80fef8efa15d8487e24d0ba01f2 fd21b69ebf55793e1caa55ab9047feefdfb0f4d4610a447533e6a2d124059bf2 Loading...

	www.bjmailqq.com/	811 B	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash d691792a1c80684856f380f252be85a3 a855396d70220e1c7975d85e448940fed0fcdd88 34c5b20568ca50b8bd3188e86386bfb731c9cb6e747b67a175ac783d0fd1cf47 Loading...

	www.bjmailqq.com/	698 B	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 58f3d32fbea4a5d182e491ff44ff0a2f 00c7d71dcefb0a1012fdae7f1ef732b3ecbb2d5e b7f737e40c5a93459c0793822729df56d63f8c3c5c1f886986e48bc3f9f472ca Loading...

	hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 24d8f091ea6b2840e6eceae0582d76b7 ecdd2668bac50fd8b678165d25b5fb4ae6a7173e cd210f7e430fe3f17eb8cf00e8c4a72838bd67c55e8d390bef60b8b7cc595172 Loading...

	www.bjmailqq.com/statics/yx/js/new_buy.js	2.3 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/statics/yx/js/new_buy.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 87af5dd142bfe7466455743a587b7ee0 637010b7ca1123d5ba29cd0b6107fc6962cacfa1 73f82ee3f58f90784be8a61b19161a2338e2bd7ac35d0bb381eec40eb05374fb Loading...

	www.bjmailqq.com/	174 B	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 8abc88ea27c573ce08fdb00d1c3c612b 4d284e213c8f198f4b9e835c7e3a8e34129472af 5a0eae9fbb06da158079848dc881dfbfc59d6da21c05eed8be6f88d4b1082196 Loading...

	s.union.360.cn/286242.js	26 kB	2023-03-11	2023-03-11
Pretty URL s.union.360.cn/286242.js IP 180.163.251.76 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:19 Last Seen2023-03-11 23:48:19 Times Seen1 Hash 76ddc09c6fd5cf099e77f34e801c7121 972eb49d6a02336530beee9d2a18f1c64afbe7e6 31841f735f1a67f130d54c7d30d0d9356d10f77245a7d768f9cd856a06396c70 Loading...

	s.union.360.cn/proxy.html	597 B	2023-03-07	2023-04-05
Pretty URL s.union.360.cn/proxy.html IP 180.163.251.76 ASN #4812 China Telecom Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:21 Last Seen2023-04-05 01:56:39 Times Seen27 Hash 3231d02f3717305105fd8513b7903044 93af79651a095d83659fc21a3dac7abd07c2724b b361a9b27e128328f61a0b3d414f63fea75a9c65211755db86726eecdd9539a9 Loading...

	360fenxi.mediav.com/mediav1130.html	1.5 kB	2023-03-07	2023-04-05
Pretty URL 360fenxi.mediav.com/mediav1130.html IP 123.125.81.172 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:21 Last Seen2023-04-05 01:56:39 Times Seen26 Hash 8b2a0f98ad150eb07ade4521e4f45d8f 80482ff1ec88cd1a00430b6f22fd819d34bec075 5f51a8922ad788b2695fd22f3616d6a2a632c1bfd8913ea0dc1590530237df4a Loading...

	www.bjmailqq.com/	570 B	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash 6d5296adfd489ea9aae3f2d01446309c 07b8fb285efe6dee628ebcb560e49787d75b551f f838a913eeb797700d554a686b7d01aee21e9533d088903789a15feaa069fdf0 Loading...

	www.bjmailqq.com/statics/yx/js/index.min.js	2.8 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/statics/yx/js/index.min.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash d7aca39fb90fa3f9008326404a165c16 69c94e8db622ca9c128c42eb3d88d99fff942152 d8d6620bf43fb590ceaf6e95bfe4052f487bc6eaf52f26993fcbdba7be630f65 Loading...

	www.bjmailqq.com/statics/yx/js/responsiveslides2993bf.js	4.2 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/statics/yx/js/responsiveslides2993bf.js IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash 9de30669eb69de532096a5b4994616ab c99242e41cd75bcbba088ebb5061d808971cde95 333159ac3fbac93498f081b9a5b00e61d05e5e2a5bb1d5f43fdbfc0d42e8bde3 Loading...

	www.bjmailqq.com/	254 B	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash 4c32a4727501a1df3206d9017f95aafc 93bdb58a0c52ebd4ac645e52c626b1d3dfc19676 3a2456face438de49da61818c4bef67a0be41acb54c71e2063e0332fac2755a9 Loading...

	www.bjmailqq.com/	575 B	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash 871c6010c630fc225b960e00b7530591 03944a959c895d058ef8098fa953284a9a55f68c a9ad97059d1d6b0dac217a39728458d7dcecc61f0b5cc2c66a33a51e25cbaaca Loading...

	goutong.baidu.com/site/238/865f4f7235ef1496f8b78f35848a0b7c/b.js?siteId=8230894	19 kB	2023-03-11	2023-03-11
Pretty URL goutong.baidu.com/site/238/865f4f7235ef1496f8b78f35848a0b7c/b.js?siteId=8230894 IP 14.215.177.164 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash 99ae0bf492d6996c8f36045d4699da65 2cafd0b921c054efaecd32828b949e4dd3c75cc5 567f4346531a44cb0921035c42a649dc271aed269c598509729b57a80acfdc9d Loading...

	www.bjmailqq.com/	1.0 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash df09624ffdd9e0bce79b32781079ce19 b58380c8dbf843a8f8013495f5f903cc235d08e3 180f84c46bf9079214a35cbae52c3ea02957891aea2ef139dd2021376454572a Loading...

	e.so.com/search/c.js?u=3091324131&_=1669927982994	0 B	2023-03-07	2024-04-24
Pretty URL e.so.com/search/c.js?u=3091324131&_=1669927982994 IP 36.99.171.172 ASN #137687 Luoyang, Henan Province, P.R.China. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 14:51:44 Times Seen37039871 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.bjmailqq.com/	310 B	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash 9af5093c6c35ae7c3929f0d55bc8d5c6 2c4bcaa8a5b559aa8bda76cff601d0673d03051f f19200650079b00d5da013a88a7c933a7438edb80fbbe807b2361c7e80be55d0 Loading...

	www.bjmailqq.com/	1.5 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash 26468c890b1ca074c9e6b6ca39250960 c432b518725fb6e460630cc22e755969899e39a4 d724d349d39de0d182371662012bd367c79f6a61e30eb0d2d7ab348adbdaf804 Loading...

	www.bjmailqq.com/	2.4 kB	2023-03-11	2023-03-11
Pretty URL www.bjmailqq.com/ IP 58.216.118.223 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash b4c789f412846dafb946d7e47fe7d729 10a984b493d15064949046aa28e2eebcc1d5a876 e14ba450db772f59f9d62da12f0807377bf8fcf9cfc193bbc8ef384c0007ca35 Loading...

	goutong.baidu.com/site/238/865f4f7235ef1496f8b78f35848a0b7c/b.js?siteId=8230894	19 kB	2023-03-11	2023-03-11
Pretty URL goutong.baidu.com/site/238/865f4f7235ef1496f8b78f35848a0b7c/b.js?siteId=8230894 IP 14.215.177.164 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash 2145c14aebd3f7a6129447cc580cfa5a 9b4c3d448bfab52a004674d1c7f60cfdf1cc66ae 37695af7e0255aeb3d114314af9a06a9b5f328906cfa86ca44c6c132bdd32acb Loading...

		Size	First Seen	Last Seen
	#1 Eval - cd219dd432fa496bfa71f94698a61272	16 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 23:48:20 Last Seen2023-03-11 23:48:20 Times Seen1 Hash cd219dd432fa496bfa71f94698a61272 bb15bb1b0dcfc4ad8826c8d20c7fa52d5105103d db7581996de13d9c9b69da99bf37686646ed8e70cdd64309e6695d561d190f6f Loading...

HTTP Transactions (111)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9961
Expires: Thu, 01 Dec 2022 23:39:00 GMT
Date: Thu, 01 Dec 2022 20:52:59 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 658
Cache-Control: max-age=136151
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:52:59 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 10:42:10 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 20:19:49 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1990
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8046
Expires: Thu, 01 Dec 2022 23:07:05 GMT
Date: Thu, 01 Dec 2022 20:52:59 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: i3k/+PyRM+dRLmXB2ZVP0AlfVaTRJnXcZW9teSl720J1s6bEyuTIbRoxROksSUDHx1nr0UWcftc=
x-amz-request-id: WAMKSH64CD5F49NM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 20:45:48 GMT
age: 431
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 20:52:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 20:11:15 GMT
cache-control: public,max-age=3600
age: 2505
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

bjmailqq.com/

203.107.45.167

301 Moved Permanently

0 B

URL HTTP/1.1
bjmailqq.com/
IP
203.107.45.167:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Thu, 01 Dec 2022 20:52:59 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=15
BackendServer: Aliyun URL Forwarding Server
Location: https://www.bjmailqq.com

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 661
Cache-Control: max-age=131090
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:53:00 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:17:50 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.37.79.227

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.37.79.227:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3OqnLQilDuWAFn4Cc7vtfg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +KP7EIVrMjizmRpmSxktB+RFhF8=

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4ce1e2f209064c6ff30389a338eba756
632e7adb30eb76022e83f5bdffac53876761e9af
39dea962724d3833334ef7a6aa3f1e040b32e49e01c5d33b7dbaf45231eccdd8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=100546
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:53:01 GMT
Etag: "6387f9ef-1d7"
Expires: Sat, 03 Dec 2022 00:48:47 GMT
Last-Modified: Thu, 01 Dec 2022 00:48:47 GMT
Server: nginx
Content-Length: 471

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9903
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 20:53:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9903
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 20:53:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9903
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 20:53:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9903
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 20:53:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9903
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 20:53:01 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12898 bytes)
Hash
820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kZfRQsF_Fo2UtTqK0ByOPeQK-IzTQO9JtTmxIMlapmsd93SJk_4VYw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:47:30 GMT
age: 83131
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9459 bytes)
Hash
e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 17:08:13 GMT
age: 13488
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13411 bytes)
Hash
328ce221bcf3442f88d09373193ff594
63bfa2ea925aa2c188c664a7bf7af7b0e5417e60
21d5b5ec267430dba91b17f89a557aca5cd2a21535da18eb02ec69ed0e1b7371

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13411
x-amzn-requestid: 71f8798f-93e9-4649-8822-7ad3fadeec34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz6vH05oAMF_qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd11-1849aa08463e5c1f3d9b15b9;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QVGFEOePBybOeNxG6eWBffm8Ha_fmBnT8vMIGcI8zv9C7yiBeSncDw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
etag: "63bfa2ea925aa2c188c664a7bf7af7b0e5417e60"
content-type: image/jpeg
age: 82861
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (16038 bytes)
Hash
ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 82861
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4762 bytes)
Hash
d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 05:45:16 GMT
age: 54465
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8740 bytes)
Hash
26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 18:58:06 GMT
age: 6895
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/log.png

58.216.118.223

200 OK

28 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/log.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 312 x 31, 8-bit/color RGBA, non-interlaced\012- data
Size
28 kB (28206 bytes)
Hash
3600cd9f0994c7df205d0f5da64ee11c
be38cbdcee0eea39f89fe7625086c7aae0cea710
e19c1cfe0d57b35399f7657fb2cd5b36129a78402cd40ce4446fd12f65940279

HTTP Headers

GET /statics/yx/picture/log.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 28206
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Fri, 22 Mar 2019 11:57:10 GMT
etag: "5c94cd96-6e2e"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache8.l2cn3037[29,29,304-0,M], cache20.l2cn3037[30,0], kunlun4.cn1310[114,146,200-0,H], kunlun1.cn1310[153,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:7:199260242
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279820064623e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/dh.png

58.216.118.223

200 OK

2.9 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/dh.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 163 x 26, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2867 bytes)
Hash
e08f1968fb537432213447880e06b320
013f34ccc0faea9aacf99039d51b972198433b13
00eb22b6748c572e4f14af58dc37085abf6ddda93554c1bd5252ee7f8e748879

HTTP Headers

GET /statics/yx/picture/dh.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2867
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Fri, 22 Mar 2019 12:19:58 GMT
etag: "5c94d2ee-b33"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache63.l2cn3037[107,107,304-0,M], cache60.l2cn3037[108,0], kunlun7.cn1310[137,160,200-0,H], kunlun1.cn1310[166,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:275530229
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279820064629e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/ban1.png

58.216.118.223

200 OK

2.5 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/ban1.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2536 bytes)
Hash
0054a4eaf3e2c3bdcd83c2872cce50ad
084493a2a222f8e2c395d12f04be8bdec5a7fa6a
786e994a43f2e2d9454fbc326a6e5b7c2f913998fcd70d5df82a8d995c26fa25

HTTP Headers

GET /statics/yx/images/ban1.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2536
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:54:36 GMT
etag: "5bff46dc-9e8"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache73.l2cn3037[127,128,304-0,M], cache39.l2cn3037[130,0], kunlun9.cn1310[143,150,200-0,H], kunlun1.cn1310[172,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:660272575
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279820064634e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/ban5.png

58.216.118.223

200 OK

2.7 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/ban5.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.7 kB (2668 bytes)
Hash
51c666e91e830a4d66731578d37e8cd0
b8428b72a9cbacdc2057b2d8a3f42ad06b4a606a
38b9a0829d7369fca24c2ed211f71a121127fb785a5b672bf52d447a39b716e4

HTTP Headers

GET /statics/yx/images/ban5.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2668
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:55:02 GMT
etag: "5bff46f6-a6c"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache71.l2cn3037[107,107,304-0,M], cache5.l2cn3037[108,0], kunlun7.cn1310[112,112,200-0,H], kunlun1.cn1310[115,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:588976798
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085063e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/ban2.png

58.216.118.223

200 OK

2.8 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/ban2.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2782 bytes)
Hash
cf9df48f97d3de34c8c517732dc57f5b
743899ab0bc78b02d9745005020a1aea5b90a4a2
f95f857e38d0fec2503ca5b0d5b21aace7224927fb25f52fb46d4819ccf21809

HTTP Headers

GET /statics/yx/images/ban2.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2782
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:54:42 GMT
etag: "5bff46e2-ade"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache60.l2cn3037[119,119,304-0,M], cache39.l2cn3037[121,0], kunlun9.cn1310[122,123,200-0,H], kunlun1.cn1310[130,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:480723364
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085058e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/ban6.png

58.216.118.223

200 OK

2.5 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/ban6.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2470 bytes)
Hash
71f84a7b86a7e738bbcdfc509e83ae37
6ab983a8df6675348e8484fef53a657fda614251
ed54cf25650d24645efdf7ce2ec052e2ec38d9c6ab2dd4f22cd8590ba7feb2a7

HTTP Headers

GET /statics/yx/images/ban6.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2470
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:55:12 GMT
etag: "5bff4700-9a6"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache17.l2cn3037[115,116,304-0,M], cache34.l2cn3037[116,0], kunlun9.cn1310[122,122,200-0,H], kunlun1.cn1310[130,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:475408444
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085066e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/ban3.png

58.216.118.223

200 OK

2.6 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/ban3.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2557 bytes)
Hash
57ebe6df8bf86a2d100077b4ce2b1b96
9a5d895675404145da68831a3a93e2e39b25d7a6
b502c8a949407623d70e37f2e1501694b61a029783969c1e22a5cdbdb7f71e5d

HTTP Headers

GET /statics/yx/images/ban3.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2557
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:54:48 GMT
etag: "5bff46e8-9fd"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache57.l2cn3037[124,124,304-0,M], cache72.l2cn3037[126,0], kunlun8.cn1310[129,129,200-0,H], kunlun1.cn1310[132,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:39731548
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085059e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/tsgn07.png

58.216.118.223

200 OK

1.9 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/tsgn07.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 65 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1925 bytes)
Hash
0ec9fa3686acf63ef7e706647bb89dc8
4df6d6173236e1b99004b26d31894d25280e05d2
df979665599ca17faf546ff0cc8843008062898f70dda8263f723068e7aa0e30

HTTP Headers

GET /statics/yx/picture/tsgn07.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 1925
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:16 GMT
etag: "5bfe6dc0-785"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache66.l2cn3037[119,118,304-0,M], cache60.l2cn3037[120,0], kunlun7.cn1310[126,126,200-0,H], kunlun1.cn1310[133,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:275284065
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085079e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/change_0114e1cd.png

58.216.118.223

200 OK

7.2 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/change_0114e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 230 x 130, 8-bit colormap, non-interlaced\012- data
Size
7.2 kB (7151 bytes)
Hash
2785924177105f856a332b29caef3086
e040a0555dcf1eabfc0c33ba67e0a113cc2f879e
147cee7512a0139c05782f27b9904e7b0e5879b6b31a0f4c19fca9185e1ecae7

HTTP Headers

GET /statics/yx/picture/change_0114e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 7151
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-1bef"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache20.l2cn3037[125,125,304-0,M], cache61.l2cn3037[126,0], kunlun7.cn1310[130,129,200-0,H], kunlun1.cn1310[143,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:277562488
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085099e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/ban8.png

58.216.118.223

200 OK

3.7 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/ban8.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 67 x 67, 8-bit/color RGBA, non-interlaced\012- data
Size
3.7 kB (3667 bytes)
Hash
34acd72881f1dc2a2f911cf6da636a49
fbb2d4ad80674d75cb0295db999cc1c3b7ccc8f3
2fc18394088030e700ab70d9d8e1e2ceb3be043789c7104d3d4fe7b8e86541d5

HTTP Headers

GET /statics/yx/images/ban8.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3667
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 07:22:32 GMT
etag: "5bff93b8-e53"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache52.l2cn3037[126,126,304-0,M], cache40.l2cn3037[127,0], kunlun9.cn1310[131,132,200-0,H], kunlun1.cn1310[144,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:295122918
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085094e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/tsgn02.png

58.216.118.223

200 OK

3.2 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/tsgn02.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
3.2 kB (3169 bytes)
Hash
a2c165c20275191d4c3c95059fb728c3
4b9f18e38905afe8ddec653a9254a4f91a1ae5b2
a119254819bc8cfce88ea94bc97de45551e81a73187bdda053784333e4ec5c74

HTTP Headers

GET /statics/yx/picture/tsgn02.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3169
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:10 GMT
etag: "5bfe6dba-c61"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache32.l2cn3037[137,138,304-0,M], cache20.l2cn3037[139,0], kunlun4.cn1310[144,144,200-0,H], kunlun1.cn1310[148,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:0:419709164
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085069e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/tsgn03.png

58.216.118.223

200 OK

2.8 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/tsgn03.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 72 x 59, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2793 bytes)
Hash
5c3cd64ddabec7724ddd0f54e316ef65
e2316cac380e1ddbe651047edef56859102c0ad8
ca3f453273e2a06a5d6aa6a19c06c16f44bb9fffedbd425daa3bff764e2ee61c

HTTP Headers

GET /statics/yx/picture/tsgn03.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2793
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:22 GMT
etag: "5bfe6dc6-ae9"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache7.l2cn3037[120,119,304-0,M], cache70.l2cn3037[122,0], kunlun2.cn1310[147,148,200-0,H], kunlun1.cn1310[155,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:523433943
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085071e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/QQ2.png

58.216.118.223

200 OK

368 B

URL HTTP/2
www.bjmailqq.com/statics/yx/images/QQ2.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 13 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size
368 B (368 bytes)
Hash
8b6765e27783ff5c27038c00895229e7
25dc42f63294f811c836855a620cc5b1292ad31f
0d94ad2b8e03a2c6a727864ecbb5d4b6f261ddc48d5072f9156579d36c053d53

HTTP Headers

GET /statics/yx/images/QQ2.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 368
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 07:08:12 GMT
etag: "5bff905c-170"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache49.l2cn3037[122,122,304-0,M], cache18.l2cn3037[123,0], kunlun9.cn1310[142,142,200-0,H], kunlun1.cn1310[155,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:105071155
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085090e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/com_0114e1cd.png

58.216.118.223

200 OK

14 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/com_0114e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 225 x 105, 8-bit/color RGB, non-interlaced\012- data
Size
14 kB (13658 bytes)
Hash
961822a83c060bca59896d52fe455a34
6d224220fa0e17d8de3d9847dfcebbff7ea04f31
0a62d3c7b9969324eec49f8eadeb51d3e20bb5f64da86598da50343ae142ddce

HTTP Headers

GET /statics/yx/picture/com_0114e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 13658
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-355a"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache51.l2cn3037[127,127,304-0,M], cache45.l2cn3037[128,0], kunlun1.cn1310[147,147,200-0,H], kunlun1.cn1310[162,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:549013229
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085103e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/change_0314e1cd.png

58.216.118.223

200 OK

5.1 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/change_0314e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 230 x 130, 8-bit colormap, non-interlaced\012- data
Size
5.1 kB (5147 bytes)
Hash
59b112a784b7d9042741ba55620e230b
4bb40d339f6a1ac2390e28773bba8ed07b73c7cf
26c839388ef3e95c3b19e53f34704446b47b9310e705f7b62c1f3ab0b78e030e

HTTP Headers

GET /statics/yx/picture/change_0314e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 5147
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:22 GMT
etag: "5bfe6dc6-141b"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache29.l2cn3037[128,127,304-0,M], cache54.l2cn3037[129,0], kunlun6.cn1310[135,135,200-0,H], kunlun1.cn1310[163,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:705708977
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085102e
X-Firefox-Spdy: h2

www.bjmailqq.com/

58.216.118.223

200 OK

14 kB

URL HTTP/2
www.bjmailqq.com/
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
data
Size
14 kB (14227 bytes)
Hash
b166e9da81f346f707cac1c2d905df62
98a3581ac0adda859a3263794a2fb20e044c92f6
48f49efa20def359e0ea646f608f2ed5492e7ad0c0c1f4869581977114910e4f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: Tengine
content-type: text/html; charset=utf-8
date: Thu, 01 Dec 2022 20:53:01 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
via: cache1.l2nm125-4[54,0], kunlun1.cn1310[79,0]
timing-allow-origin: *
eagleid: 3ad8769516699279814503969e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/tsgn06.png

58.216.118.223

200 OK

3.0 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/tsgn06.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 62 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (3023 bytes)
Hash
5f111d0ff9116ce7c6c7878a1411c147
dec98b04f4d89a5cfeb9a77dc4352e9ead018a4e
1c17f1330be9abfd5e063ee58cc5b2771ab18138dbea98f92aef99d5650ce101

HTTP Headers

GET /statics/yx/picture/tsgn06.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3023
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:24 GMT
etag: "5bfe6dc8-bcf"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache52.l2cn3037[130,130,304-0,M], cache35.l2cn3037[132,0], kunlun2.cn1310[159,159,200-0,H], kunlun1.cn1310[165,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:524894731
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085076e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/left.png

58.216.118.223

200 OK

327 B

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/left.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 12 x 21, 8-bit/color RGBA, non-interlaced\012- data
Size
327 B (327 bytes)
Hash
ee0c9aded73fa2164a5ab2d6bd23a5e1
a844e7e7e7345e15ff97b716d421b0960214834c
285a0a47f3d243cafd7a37113a990bce6f54362bcda56ca75794f0255099f2ed

HTTP Headers

GET /statics/yx/picture/left.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 327
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:20 GMT
etag: "5bfe6dc4-147"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache30.l2cn3037[151,151,304-0,M], cache36.l2cn3037[153,0], kunlun9.cn1310[158,158,200-0,H], kunlun1.cn1310[166,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:293399550
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085083e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/tsgn01.png

58.216.118.223

200 OK

2.3 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/tsgn01.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 62 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2339 bytes)
Hash
6b0292bbd50f2573255f10ed0c705e33
1ef14e2fcaf39832e0d888b315a557baf3215b5b
5e050dde57d7a68881a6ef6224e5bd9a5c2463628b623d71484cc92b3d018d99

HTTP Headers

GET /statics/yx/picture/tsgn01.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2339
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 04:04:16 GMT
etag: "5bff6540-923"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache79.l2cn3037[123,123,304-0,M], cache58.l2cn3037[126,0], kunlun5.cn1310[150,164,200-0,H], kunlun1.cn1310[168,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:920189462
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085067e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/com_1014e1cd.png

58.216.118.223

200 OK

3.8 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/com_1014e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Size
3.8 kB (3808 bytes)
Hash
0156ddd482dd1eb2582674b3f44764dd
d9a7afaf4bb52a0c2fe76caf73264a7b7fe96222
5faf3d5dace682d4ae4c1fe83edc2ebd243e23cad1a53afd6da6c4e26d8aa781

HTTP Headers

GET /statics/yx/picture/com_1014e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3808
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-ee0"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache51.l2cn3037[121,121,304-0,M], cache56.l2cn3037[123,0], kunlun6.cn1310[139,142,200-0,H], kunlun1.cn1310[170,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:9:142932972
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085111e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/com_0614e1cd.png

58.216.118.223

200 OK

3.7 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/com_0614e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Size
3.7 kB (3707 bytes)
Hash
91a95c6eaf36ac41f50a2913abf4fa8d
5977dd914149139d9f535e602193e466e1eb5e1b
918d79217984311a823c13d69c4b921c6cc4137d3f141fd967ef61dfa058f983

HTTP Headers

GET /statics/yx/picture/com_0614e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3707
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-e7b"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache56.l2cn3037[124,124,304-0,M], cache9.l2cn3037[125,0], kunlun4.cn1310[144,144,200-0,H], kunlun1.cn1310[172,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:193712848
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085112e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/com_1414e1cd.png

58.216.118.223

200 OK

2.2 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/com_1414e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Size
2.2 kB (2159 bytes)
Hash
83ce2973499620af30413b9e98e0357e
2c224b33d9f359fc5b606b1b2db2422a5a954972
de5898bb97b8a5ab6c93c9e01496d4d991e7485387392769a92e03fe0f6e3625

HTTP Headers

GET /statics/yx/picture/com_1414e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2159
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:20 GMT
etag: "5bfe6dc4-86f"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache78.l2cn3037[123,123,304-0,M], cache44.l2cn3037[124,0], kunlun1.cn1310[147,147,200-0,H], kunlun1.cn1310[175,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:0:36318725
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085108e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/com_0514e1cd.png

58.216.118.223

200 OK

4.8 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/com_0514e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Size
4.8 kB (4764 bytes)
Hash
4e90a1c4a6f5f2ec5f6784333b2b3659
9d865ce80d4056c1153732bcab41deb9e2d6eb5f
d75e3cbccd8b99254235a840c05894820aa24888e90a13628232bb8c607b9a9e

HTTP Headers

GET /statics/yx/picture/com_0514e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 4764
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-129c"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache24.l2cn3037[124,124,304-0,M], cache47.l2cn3037[126,0], kunlun6.cn1310[147,147,200-0,H], kunlun1.cn1310[175,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:703381734
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085104e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/prices.js

58.216.118.223

200 OK

1 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/prices.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/prices.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 1
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Fri, 03 Jan 2020 08:03:00 GMT
etag: "5e0ef534-1"
expires: Fri, 02 Dec 2022 08:53:02 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache18.l2cn3037[133,133,304-0,M], cache54.l2cn3037[135,0], kunlun5.cn1310[148,148,200-0,H], kunlun1.cn1310[177,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:919322707
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085119e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/tsgn04.png

58.216.118.223

200 OK

3.0 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/tsgn04.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 72 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (2957 bytes)
Hash
db9e19820236235ead1fc62e79d18730
8008d01fc9328201b294b14c8b4da847f6b6936d
725069bff06420bb8d1eb56aa698d1ffd1db3426db65eccdc5255eb7b1fdeecd

HTTP Headers

GET /statics/yx/picture/tsgn04.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2957
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 04:04:16 GMT
etag: "5bff6540-b8d"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache45.l2cn3037[149,148,304-0,M], cache57.l2cn3037[150,0], kunlun8.cn1310[172,172,200-0,H], kunlun1.cn1310[177,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:49546648
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085072e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/com_0914e1cd.png

58.216.118.223

200 OK

4.0 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/com_0914e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Size
4.0 kB (3973 bytes)
Hash
984617ad6c54271f2f2c3d12382ca042
6678503bd0d5e8d8256834e001197882a32be519
00ab1787475d04401a14791400399db372ac69ddb85300e33d56946e0927a05e

HTTP Headers

GET /statics/yx/picture/com_0914e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3973
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:22 GMT
etag: "5bfe6dc6-f85"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache28.l2cn3037[133,133,304-0,M], cache79.l2cn3037[134,0], kunlun7.cn1310[163,163,200-0,H], kunlun1.cn1310[179,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:276395789
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085106e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/tsgn05.png

58.216.118.223

200 OK

2.3 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/tsgn05.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2336 bytes)
Hash
98842d5c691a5bd1531a58dd7ee74aa3
f2d2520759c74d253c2518f7cdee9bc4729feec7
7b7ee67e1b397b59b0f73a7d52e6e19ce7c0b9dd8712e4f0e03b9fd19c57deda

HTTP Headers

GET /statics/yx/picture/tsgn05.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2336
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:12 GMT
etag: "5bfe6dbc-920"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache31.l2cn3037[128,128,304-0,M], cache57.l2cn3037[130,0], kunlun5.cn1310[158,175,200-0,H], kunlun1.cn1310[181,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:295743613
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085074e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/ban4.png

58.216.118.223

200 OK

2.7 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/ban4.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.7 kB (2682 bytes)
Hash
f63edc7314c0031428217d7666e404d8
f13d6e96d839a28f4f0afd8e453b253fac76d516
bcf52e4f327c78aec19e3c28a77fed2f440b4624c3191be717e0c29e86e62ee4

HTTP Headers

GET /statics/yx/images/ban4.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2682
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:54:54 GMT
etag: "5bff46ee-a7a"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache11.l2cn3037[152,151,304-0,M], cache59.l2cn3037[154,0], kunlun5.cn1310[179,180,200-0,H], kunlun1.cn1310[183,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:295480540
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085061e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/com_1314e1cd.png

58.216.118.223

200 OK

4.0 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/com_1314e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Size
4.0 kB (4027 bytes)
Hash
b0cb45dd3c4bd85d0406c62bf52f09de
6f8c7fae6167c6ef50c03e0e5e044f4d2f68d517
df2ac8fd2cef1b2c5b21b06be5e847d96a8c10f26a6265cd5e6869c76e514d83

HTTP Headers

GET /statics/yx/picture/com_1314e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 4027
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:20 GMT
etag: "5bfe6dc4-fbb"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache24.l2cn3037[125,125,304-0,M], cache31.l2cn3037[127,0], kunlun8.cn1310[158,158,200-0,H], kunlun1.cn1310[185,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:41196294
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085107e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/dui1.png

58.216.118.223

200 OK

381 B

URL HTTP/2
www.bjmailqq.com/statics/yx/images/dui1.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 14 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
381 B (381 bytes)
Hash
f3c10b2a5023d591800d3df7a4d72e65
344cc91f40e1ca8220a2794d569dbf402578f766
6709caafbb01334e73ff4061ec61c8fdab576f9d57f824ab19755dd40903ce06

HTTP Headers

GET /statics/yx/images/dui1.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 381
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 06:58:28 GMT
etag: "5bff8e14-17d"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache75.l2cn3037[144,144,304-0,M], cache80.l2cn3037[146,0], kunlun7.cn1310[175,174,200-0,H], kunlun1.cn1310[186,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:277836595
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085088e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/ban9.png

58.216.118.223

200 OK

3.8 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/ban9.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3776 bytes)
Hash
857f1469a57bde53df45248f656b31ed
08de084b5044246881c22fefaa9c980807121430
73b5b14e07848124e2106e6d21b9a72bdd2b5a2de4528622a6bb5092b817cfab

HTTP Headers

GET /statics/yx/images/ban9.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3776
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 07:22:32 GMT
etag: "5bff93b8-ec0"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache71.l2cn3037[143,143,304-0,M], cache16.l2cn3037[145,0], kunlun9.cn1310[161,161,200-0,H], kunlun1.cn1310[188,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:294584652
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085096e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/ban7.png

58.216.118.223

200 OK

3.0 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/ban7.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (2991 bytes)
Hash
e0653419f9fc4057a620b72bdde512d1
ee3ee4a20c642073f29f00a5834b043553a9e0c3
e9f36817a1ef19c8add1c11ebc25234780d62f1e61d9c0f8f5389128851c1b39

HTTP Headers

GET /statics/yx/images/ban7.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2991
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 07:22:32 GMT
etag: "5bff93b8-baf"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache11.l2cn3037[142,142,304-0,M], cache1.l2cn3037[143,0], kunlun4.cn1310[165,164,200-0,H], kunlun1.cn1310[192,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:0:408976190
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085092e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/righ.png

58.216.118.223

200 OK

276 B

URL HTTP/2
www.bjmailqq.com/statics/yx/images/righ.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 6 x 10, 8-bit/color RGBA, non-interlaced\012- data
Size
276 B (276 bytes)
Hash
015ee5b3578f678ddf5f7a7bcf916ad7
99ef90cdf7d043c56594d541033ce3b0f0d99f0c
7ef68dc26462b35ad4ee70f35e17941819ecca5e6bc3ef9b85fd3266361c875e

HTTP Headers

GET /statics/yx/images/righ.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 276
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 07:44:32 GMT
etag: "5bff98e0-114"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache21.l2cn3037[152,151,200-0,H], cache54.l2cn3037[153,0], kunlun8.cn1310[168,168,200-0,M], kunlun1.cn1310[195,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085097e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/right.png

58.216.118.223

200 OK

339 B

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/right.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 12 x 22, 8-bit/color RGBA, non-interlaced\012- data
Size
339 B (339 bytes)
Hash
179fe26cfe2bd198032ffce03a895d52
4b971746216e6a6dfd558211af57ee7c3d811acd
c3de6f108968035e7713349a2f5f50e073319bc7ad3280c1ee8af5132bc317ed

HTTP Headers

GET /statics/yx/picture/right.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 339
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-153"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache7.l2cn3037[142,141,304-0,M], cache10.l2cn3037[143,0], kunlun4.cn1310[171,171,200-0,H], kunlun1.cn1310[198,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:427229549
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085084e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/change_1214e1cd.png

58.216.118.223

200 OK

3.1 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/change_1214e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 230 x 130, 8-bit colormap, non-interlaced\012- data
Size
3.1 kB (3092 bytes)
Hash
e100e4285f956de824adbdc2e8a8c325
03aef2b0387f102407bcb2601ba5e7f20708935e
472c3afb76b3dc63cb9c9e9bee3dbb0f21c4df76bd67839a986562efa4ba9a7a

HTTP Headers

GET /statics/yx/picture/change_1214e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3092
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:30 GMT
etag: "5bfe6dce-c14"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache10.l2cn3037[152,152,304-0,M], cache5.l2cn3037[153,0], kunlun5.cn1310[178,177,200-0,H], kunlun1.cn1310[205,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:295480550
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085098e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/change_0214e1cd.png

58.216.118.223

200 OK

5.8 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/change_0214e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 230 x 130, 8-bit colormap, non-interlaced\012- data
Size
5.8 kB (5755 bytes)
Hash
33d8371c3a1c1e8a783e4201739a6fb5
260ebc26cbf62b9ae0f7c5318a01b9923420c613
515b75a89485ce49a04349776d42efb8d538356467946544e7c124c2c3ac2488

HTTP Headers

GET /statics/yx/picture/change_0214e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 5755
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:20 GMT
etag: "5bfe6dc4-167b"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache28.l2cn3037[157,157,304-0,M], cache33.l2cn3037[158,0], kunlun2.cn1310[178,178,200-0,H], kunlun1.cn1310[206,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:26477024
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085101e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/tsgn08.png

58.216.118.223

200 OK

2.0 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/tsgn08.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 86 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
2.0 kB (2006 bytes)
Hash
5ecfa95169e69e434855fc4109d90441
4d630fe1bf05c6c30e0d237be1ec941469ec5f10
463312f8603c52e8e48f2de4ff6a3725dda3ff06cd0c7e82f7e2e79e85ad42e3

HTTP Headers

GET /statics/yx/picture/tsgn08.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2006
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-7d6"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache39.l2cn3037[152,152,304-0,M], cache56.l2cn3037[153,0], kunlun5.cn1310[187,202,200-0,H], kunlun1.cn1310[210,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:296435715
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085081e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/counseling_style_52.png

58.216.118.223

200 OK

4.3 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/counseling_style_52.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 77 x 22, 8-bit/color RGB, non-interlaced\012- data
Size
4.3 kB (4295 bytes)
Hash
9030ceca1670a7dcb0ea72eec8417ab7
ce7740ef58bf926bd756e53edc1522272ef9b8fd
d3b8e3ea7f02425160fb6a277287d56e456fa4455faadd2989c75ec3b66d32ae

HTTP Headers

GET /statics/yx/images/counseling_style_52.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 4295
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Mon, 03 Dec 2018 09:54:28 GMT
etag: "5c04fd54-10c7"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache45.l2cn3037[153,153,304-0,M], cache50.l2cn3037[154,0], kunlun7.cn1310[183,183,200-0,H], kunlun1.cn1310[211,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:590493815
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085115e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/picture/com_0414e1cd.png

58.216.118.223

200 OK

3.8 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/picture/com_0414e1cd.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Size
3.8 kB (3840 bytes)
Hash
f0d0ffe0fa845ae0f15091b61acc0357
355e1d8ff3352486b850c21ec6879611acf22d59
0fa1eed6e6f446a3755e687acc7a0cb67d35a7f925864062a03272627e07e96b

HTTP Headers

GET /statics/yx/picture/com_0414e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3840
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-f00"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache20.l2cn3037[166,165,304-0,M], cache51.l2cn3037[167,0], kunlun7.cn1310[187,187,200-0,H], kunlun1.cn1310[216,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:589135925
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085114e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/css/wx.css

58.216.118.223

200 OK

7.9 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/css/wx.css
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
data
Size
7.9 kB (7922 bytes)
Hash
b5a3b23f2896f5dbf7dc1852a66754f8
46ae9aa696f46d4e85d4700e30c38f09369c6db7
928b4958f7aaf0e3c8233ef14bb023c3ad5e3f8771a334d720910d97cf8b459b

HTTP Headers

GET /statics/yx/css/wx.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Thu, 29 Nov 2018 10:29:52 GMT
etag: W/"5bffbfa0-fbfc"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache42.l2cn3037[0,0,200-0,H], cache72.l2cn3037[1,0], kunlun8.cn1310[23,23,200-0,M], kunlun1.cn1310[26,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064604e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/large_left.png

58.216.118.223

200 OK

1.5 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/large_left.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 40 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1517 bytes)
Hash
c7d7eee3ae27c6eea078e5b6c30c8763
a4a4243c5c653a7024d7626911f849a954e8aba8
1e93f3215066083474d73115bbef66b052e2add1e20a5670fbbe509e3679b27a

HTTP Headers

GET /statics/yx/images/large_left.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 1517
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Mon, 03 Dec 2018 07:25:08 GMT
etag: "5c04da54-5ed"
expires: Sat, 31 Dec 2022 15:54:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910090
via: cache79.l2cn3037[0,0,200-0,H], cache80.l2cn3037[1,0], kunlun7.cn1310[7,6,200-0,M], kunlun1.cn1310[10,0]
age: 17893
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:03 GMT
x-swift-cachetime: 25307
timing-allow-origin: *
eagleid: 3ad8769516699279830936501e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/jiao.png

58.216.118.223

200 OK

273 B

URL HTTP/2
www.bjmailqq.com/statics/yx/images/jiao.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 19 x 10, 8-bit/color RGBA, non-interlaced\012- data
Size
273 B (273 bytes)
Hash
40f91012c74f6b0fcff7cc77bc885f8a
0a335cb0aa953c231c3ed3d9a88de4541849008d
e99f5e4b30ad8584cd5dd516b6309e4aa0284c1bdb93c20d208f7014ac4499d4

HTTP Headers

GET /statics/yx/images/jiao.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/statics/yx/css/style.css
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 273
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Thu, 29 Nov 2018 03:46:50 GMT
etag: "5bff612a-111"
expires: Sat, 31 Dec 2022 15:54:51 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910091
via: cache50.l2cn3037[0,0,200-0,H], cache54.l2cn3037[0,0], kunlun5.cn1310[3,4,200-0,M], kunlun1.cn1310[7,0]
age: 17892
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:03 GMT
x-swift-cachetime: 25308
timing-allow-origin: *
eagleid: 3ad8769516699279831006515e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/dui.png

58.216.118.223

200 OK

633 B

URL HTTP/2
www.bjmailqq.com/statics/yx/images/dui.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 16 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
633 B (633 bytes)
Hash
a1dff7f86bfb8e6e45a6316f6f7bd05f
a675d1093954dbbb8a89a9df865fcc2d3125825b
446051ca1a44587b443043a944d07e52896a69e2f9b29a4e49ef9fbdda169610

HTTP Headers

GET /statics/yx/images/dui.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/statics/yx/css/style.css
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 633
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Thu, 29 Nov 2018 03:54:34 GMT
etag: "5bff62fa-279"
expires: Sat, 31 Dec 2022 15:54:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910090
via: cache19.l2cn3037[0,0,200-0,H], cache5.l2cn3037[1,0], kunlun5.cn1310[6,6,200-0,M], kunlun1.cn1310[9,0]
age: 17893
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:03 GMT
x-swift-cachetime: 25307
timing-allow-origin: *
eagleid: 3ad8769516699279831006516e
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
61aaa9c113389727a15c3d4b9832c993
b8327e4bfdf09cd0679599af397c6f6ddd24b3cd
c485c7350b2ac4544c1c6f5497c5d49acd43b987c1475f370ad5a8f4e2b2e530

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:53:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 05 Dec 2022 18:48:02 GMT
ETag: "b8327e4bfdf09cd0679599af397c6f6ddd24b3cd"
Last-Modified: Thu, 01 Dec 2022 18:48:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2906
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772eb5c9d9221bfe-OSL

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
61aaa9c113389727a15c3d4b9832c993
b8327e4bfdf09cd0679599af397c6f6ddd24b3cd
c485c7350b2ac4544c1c6f5497c5d49acd43b987c1475f370ad5a8f4e2b2e530

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:53:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 05 Dec 2022 18:48:02 GMT
ETag: "b8327e4bfdf09cd0679599af397c6f6ddd24b3cd"
Last-Modified: Thu, 01 Dec 2022 18:48:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2906
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772eb5c9d9fe0b61-OSL

www.bjmailqq.com/uploadfile/201903/3d46eb4b55.png

58.216.118.223

200 OK

571 kB

URL HTTP/2
www.bjmailqq.com/uploadfile/201903/3d46eb4b55.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 1600 x 571, 8-bit/color RGBA, non-interlaced\012- data
Size
571 kB (571384 bytes)
Hash
e29a94bc938270b98a8e3a66c50bc94e
5f16e4686263c924b34f47e021306513e7e3af72
240e2f5b7bde2e6b3d3d762f5f4c397d5399413772da18483469b6671d6c6b59

HTTP Headers

GET /uploadfile/201903/3d46eb4b55.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 571384
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 22 Mar 2019 12:01:04 GMT
etag: "5c94ce80-8b7f8"
expires: Sat, 31 Dec 2022 15:54:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910090
via: cache3.l2cn3037[113,114,200-0,H], cache30.l2cn3037[116,0], kunlun6.cn1310[0,1,200-0,H], kunlun1.cn1310[6,0]
age: 17893
x-cache: HIT TCP_HIT dirn:10:327009658
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279830926500e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/images/index_logo-s2e8fb998eb.png

58.216.118.223

200 OK

158 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/images/index_logo-s2e8fb998eb.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 146 x 2011, 8-bit/color RGBA, non-interlaced\012- data
Size
158 kB (158016 bytes)
Hash
7ad87d496bd101371e114b868c337848
02037ec4eb9a80096c3a2d70b55b839d2da4ddc3
6128b203d502e834c25bf6a3d9656b0e3d01e8f81f30dd01f546dfeb318ee4e9

HTTP Headers

GET /statics/yx/images/index_logo-s2e8fb998eb.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/statics/yx/css/new_index.css
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 158016
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Thu, 29 Nov 2018 05:53:58 GMT
etag: "5bff7ef6-26940"
expires: Sat, 31 Dec 2022 15:54:51 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910091
via: cache41.l2cn3037[134,133,200-0,H], cache62.l2cn3037[136,0], kunlun4.cn1310[0,11,200-0,H], kunlun1.cn1310[15,0]
age: 17892
x-cache: HIT TCP_HIT dirn:7:198904294
x-swift-savetime: Thu, 01 Dec 2022 15:54:51 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279831006517e
X-Firefox-Spdy: h2

www.bjmailqq.com/uploadfile/202011/dea4b45308.jpg

58.216.118.223

200 OK

429 kB

URL HTTP/2
www.bjmailqq.com/uploadfile/202011/dea4b45308.jpg
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x570, components 3\012- data
Size
429 kB (429064 bytes)
Hash
b858efcf7389c05e54e6fb98283a127d
45d1026ecc2281cb6b4a21a746958b7e5e4f4d5b
c943000d5b39e15dfb34c62c3432dbbee25ba78a7fd60503567d5ee5fd5a59da

HTTP Headers

GET /uploadfile/202011/dea4b45308.jpg HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/jpeg
content-length: 429064
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Mon, 23 Nov 2020 09:25:56 GMT
etag: "5fbb8024-68c08"
expires: Sat, 31 Dec 2022 15:54:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910090
via: cache73.l2cn3037[112,112,200-0,H], cache54.l2cn3037[113,0], kunlun6.cn1310[0,10,200-0,H], kunlun1.cn1310[14,0]
age: 17893
x-cache: HIT TCP_HIT dirn:5:249101985
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279830896491e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/css/layer.css

58.216.118.223

200 OK

273 kB

URL HTTP/2
www.bjmailqq.com/statics/yx/css/layer.css
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
data
Size
273 kB (272949 bytes)
Hash
4bb94d3d0ffb2797232e931437897fd3
7a3206600399722f9ac185bb95716095c54ace5b
cc460096f91174a34554c1b87dd8b0d787293f877cad9526e6b5bfd258ec48b8

HTTP Headers

GET /statics/yx/css/layer.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Thu, 29 Nov 2018 09:29:26 GMT
etag: W/"5bffb176-385e"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache1.l2cn3037[0,0,200-0,H], cache40.l2cn3037[1,0], kunlun9.cn1310[27,51,200-0,M], kunlun1.cn1310[55,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064609e
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.crlocsp.cn/

101.198.193.5

200 OK

472 B

URL HTTP/1.1
ocsp.crlocsp.cn/
IP
101.198.193.5:0
ASN
#55992 Beijing Qihu Technology Company Limited

File type
data
Size
472 B (472 bytes)
Hash
d2262abb2e1531c0bdafd4faf4c643a7
2f88cc695e795f6027f1c6f00a6f8db9cf1bfc3f
c11edec8add0a07b0f04d8b5507ac9ee8884d7798d9fa1bb6ac64dcd3bfd6eea

HTTP Headers

POST / HTTP/1.1
Host: ocsp.crlocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.9.14
Date: Thu, 01 Dec 2022 20:52:22 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Content-Transfer-Encoding: Binary
Last-modified: Mon, 28 Nov 2022 11:59:50 GMT
Expires: Mon, 05 Dec 2022 11:59:49 GMT
ETag: "2F88CC695E795F6027F1C6F00A6F8DB9CF1BFC3F"
cache-control: max-age=172800,public,no-transform,must-revalidate

www.bjmailqq.com/uploadfile/201903/ecf7656421.png

58.216.118.223

200 OK

523 kB

URL HTTP/2
www.bjmailqq.com/uploadfile/201903/ecf7656421.png
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
PNG image data, 1600 x 571, 8-bit/color RGBA, non-interlaced\012- data
Size
523 kB (522691 bytes)
Hash
d07af28c0c3dddd1a5a04ff86cbe3fc4
d74ca0138dfa5a832bf04f56ee5eb0bf833fb20e
85157ed906e6d58055985f2e68db7cb9e070874be4023c4f24f760b32d140b74

HTTP Headers

GET /uploadfile/201903/ecf7656421.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 522691
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 22 Mar 2019 12:01:22 GMT
etag: "5c94ce92-7f9c3"
expires: Sat, 31 Dec 2022 15:54:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910090
via: cache37.l2cn3037[112,123,200-0,H], cache71.l2cn3037[124,0], kunlun7.cn1310[0,19,200-0,H], kunlun1.cn1310[24,0]
age: 17893
x-cache: HIT TCP_HIT dirn:5:22555871
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279830906495e
X-Firefox-Spdy: h2

s.union.360.cn/286242.js

180.163.251.76

200 OK

11 kB

URL HTTP/1.1
s.union.360.cn/286242.js
IP
180.163.251.76:0
ASN
#4812 China Telecom Group

File type
Unicode text, UTF-8 text, with very long lines (25491)
Size
11 kB (10655 bytes)
Hash
ac1a8935552fe205f278a7c7ae606384
9f50531c561fdc57fc934a24d1e940d7567e6a7e
51d0c573f9691399b7ce24b04e7e17d9ace1581fb82c5ffcbcb5817b668bc5f0

HTTP Headers

GET /286242.js HTTP/1.1
Host: s.union.360.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: openresty/1.9.15.1
Date: Thu, 01 Dec 2022 20:53:04 GMT
Content-Type: text/plain
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding
Set-Cookie: __huid=11Hc1Y1nzkGP9+wfEpZc3HOD0SxJ/FJYB25mhWzQ7h62Y=; Expires=Sun, 28-Nov-32 20:53:04 GMT; Domain=.360.cn; Path=/
__guid=267808983.4449290760273099776.1669927984001.4036; Expires=Fri, 01-Dec-23 20:53:04 GMT; Domain=.360.cn; Path=/
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Etag: W/"035b9ddb6c43d9d24198b6fddd72f6f2"
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip

hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c

103.235.46.191

200 OK

12 kB

URL HTTP/1.1
hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (1242)
Size
12 kB (11880 bytes)
Hash
8c666210e12fc9b9de3b1876487479c4
3fc8364a8c6a8e41edd82b947e5cb6749ec533a1
47186cf1fbd39d498db08021f556f85dec68600d2e0c6ef440457fe64d608004

HTTP Headers

GET /hm.js?865f4f7235ef1496f8b78f35848a0b7c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11880
Content-Type: application/javascript
Date: Thu, 01 Dec 2022 20:53:04 GMT
Etag: 532f0465070d3bdae1abe7f4abfc0674
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=674CCAFAB204D071; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=177527082&si=865f4f7235ef1496f8b78f35848a0b7c&v=1.3.0&lv=1&sn=30648&r=0&ww=1280&u=https%3A%2F%2Fwww.bjmailqq.com%2F&tt=%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7CQQ%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%B3%A8%E5%86%8C%E7%94%B3%E8%AF%B7-%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%9C%8D%E5%8A%A1%E4%B8%AD%E5%BF%83

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=177527082&si=865f4f7235ef1496f8b78f35848a0b7c&v=1.3.0&lv=1&sn=30648&r=0&ww=1280&u=https%3A%2F%2Fwww.bjmailqq.com%2F&tt=%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7CQQ%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%B3%A8%E5%86%8C%E7%94%B3%E8%AF%B7-%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%9C%8D%E5%8A%A1%E4%B8%AD%E5%BF%83
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=177527082&si=865f4f7235ef1496f8b78f35848a0b7c&v=1.3.0&lv=1&sn=30648&r=0&ww=1280&u=https%3A%2F%2Fwww.bjmailqq.com%2F&tt=%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7CQQ%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%B3%A8%E5%86%8C%E7%94%B3%E8%AF%B7-%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%9C%8D%E5%8A%A1%E4%B8%AD%E5%BF%83 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 01 Dec 2022 20:53:04 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E1BA06D21A25C36F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

s.union.360.cn/s.gif?lts=1&et=100&si=286242&ldt=1&vis=visible&prv=0&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&t=1669927982984&v=3.2.0&_mtd=im

180.163.251.76

200 OK

43 B

URL HTTP/1.1
s.union.360.cn/s.gif?lts=1&et=100&si=286242&ldt=1&vis=visible&prv=0&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&t=1669927982984&v=3.2.0&_mtd=im
IP
180.163.251.76:0
ASN
#4812 China Telecom Group

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /s.gif?lts=1&et=100&si=286242&ldt=1&vis=visible&prv=0&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&t=1669927982984&v=3.2.0&_mtd=im HTTP/1.1
Host: s.union.360.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: openresty/1.9.15.1
Date: Thu, 01 Dec 2022 20:53:05 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Fri, 01 Jan 1980 00:00:00 GMT
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache

s.union.360.cn/proxy.html

180.163.251.76

200 OK

434 B

URL HTTP/1.1
s.union.360.cn/proxy.html
IP
180.163.251.76:0
ASN
#4812 China Telecom Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (707), with no line terminators
Size
434 B (434 bytes)
Hash
d713c4be4307c2ba08c151d879b32522
ee36cc8098954691e78c377f29ec8b55b8f36570
881c2afefaf064920d4b302d86aa2a097042146a5e9d232a8265642a1f6e97b0

HTTP Headers

GET /proxy.html HTTP/1.1
Host: s.union.360.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: openresty/1.9.15.1
Date: Thu, 01 Dec 2022 20:53:05 GMT
Content-Type: text/html
Last-Modified: Thu, 03 Mar 2022 02:05:24 GMT
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding
ETag: W/"62202264-2c3"
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Encoding: gzip

hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c

103.235.46.191

200 OK

12 kB

URL HTTP/1.1
hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (1242)
Size
12 kB (11880 bytes)
Hash
1223d6e4cb982ecb3da5325950ca31c8
fab59b2e42669a522821458399a30c245b0be57b
fc14d0a3ce277f4dc891312273ec63b0792f1888b15a726b9aa2416f47f6fa22

HTTP Headers

GET /hm.js?865f4f7235ef1496f8b78f35848a0b7c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 532f0465070d3bdae1abe7f4abfc0674

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11880
Content-Type: application/javascript
Date: Thu, 01 Dec 2022 20:53:04 GMT
Etag: 8e1599c4a709ddbc1422c3aaadcbc982
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=25B6972797BC8F59; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

s.union.360.cn/s.gif?lts=1&et=0&ck=0&adb=0&cl=24&ds=1280x1024&ln=en-US&url=https%3A%2F%2Fwww.bjmailqq.com%2F&si=286242&su=&flt=1669927982&lt=1669927982&pt=2571557112607931400&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&v=3.2.0&t=1669927983496&qhclickid=&_mtd=im

180.163.251.76

200 OK

43 B

URL HTTP/1.1
s.union.360.cn/s.gif?lts=1&et=0&ck=0&adb=0&cl=24&ds=1280x1024&ln=en-US&url=https%3A%2F%2Fwww.bjmailqq.com%2F&si=286242&su=&flt=1669927982&lt=1669927982&pt=2571557112607931400&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&v=3.2.0&t=1669927983496&qhclickid=&_mtd=im
IP
180.163.251.76:0
ASN
#4812 China Telecom Group

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /s.gif?lts=1&et=0&ck=0&adb=0&cl=24&ds=1280x1024&ln=en-US&url=https%3A%2F%2Fwww.bjmailqq.com%2F&si=286242&su=&flt=1669927982&lt=1669927982&pt=2571557112607931400&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&v=3.2.0&t=1669927983496&qhclickid=&_mtd=im HTTP/1.1
Host: s.union.360.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: openresty/1.9.15.1
Date: Thu, 01 Dec 2022 20:53:05 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Fri, 01 Jan 1980 00:00:00 GMT
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache

ocsp.crlocsp.cn/

101.198.193.5

200 OK

472 B

URL HTTP/1.1
ocsp.crlocsp.cn/
IP
101.198.193.5:0
ASN
#55992 Beijing Qihu Technology Company Limited

File type
data
Size
472 B (472 bytes)
Hash
e2230c4256aab179f3612a8120163cc7
6061d8a502b885eac40c9de9cc83cbeefcfa05ae
d05473bd12b1254ff09cbc7e3367ad77b0609220d693e279df27b41a9fdb581a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.crlocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.9.14
Date: Thu, 01 Dec 2022 20:52:24 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Content-Transfer-Encoding: Binary
Last-modified: Tue, 29 Nov 2022 21:56:23 GMT
Expires: Tue, 06 Dec 2022 21:56:22 GMT
ETag: "6061D8A502B885EAC40C9DE9CC83CBEEFCFA05AE"
cache-control: max-age=172800,public,no-transform,must-revalidate

ocsp.crlocsp.cn/

101.198.193.5

200 OK

472 B

URL HTTP/1.1
ocsp.crlocsp.cn/
IP
101.198.193.5:0
ASN
#55992 Beijing Qihu Technology Company Limited

File type
data
Size
472 B (472 bytes)
Hash
e1f1e8f7af78d07cc80dd097e8c2e901
4d2cd549e9b56307270028459305ee28de66c46d
f89e2390c43c1015ff6f6be4add0634bfd44d52d6ee041ae03a97be119b8ae48

HTTP Headers

POST / HTTP/1.1
Host: ocsp.crlocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.9.14
Date: Thu, 01 Dec 2022 20:52:24 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Content-Transfer-Encoding: Binary
Last-modified: Tue, 29 Nov 2022 15:19:51 GMT
Expires: Tue, 06 Dec 2022 15:19:50 GMT
ETag: "4D2CD549E9B56307270028459305EE28DE66C46D"
cache-control: max-age=172800,public,no-transform,must-revalidate

360fenxi.mediav.com/mediav1130.html

123.125.81.172

200 OK

988 B

URL HTTP/1.1
360fenxi.mediav.com/mediav1130.html
IP
123.125.81.172:0
ASN
#4808 China Unicom Beijing Province Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1579)
Size
988 B (988 bytes)
Hash
43d72715f35d2d71fe537bad71a28264
3f4d44e10339d042a48ca1687b00cd9ef3c64fdb
75ac43a7524fcf4b8766dd59e415ee3ba1a3e8438f1833bb62d6217a9c056ee8

HTTP Headers

GET /mediav1130.html HTTP/1.1
Host: 360fenxi.mediav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: openresty/1.9.15.1
Date: Thu, 01 Dec 2022 20:53:06 GMT
Content-Type: text/html
Last-Modified: Thu, 03 Mar 2022 02:05:23 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"62202263-6d1"
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Encoding: gzip

www.bjmailqq.com/favicon.ico

58.216.118.223

404 Not Found

162 B

URL HTTP/2
www.bjmailqq.com/favicon.ico
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
70461da8b94c6ca5d2fda3260c5a8c3b
994bc667720c21257500e29038c1a5f61e25da1e
f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n; cron=1; Qs_lvt_286242=1669927982; Qs_pv_286242=2571557112607931400; Hm_lvt_865f4f7235ef1496f8b78f35848a0b7c=1669927983; Hm_lpvt_865f4f7235ef1496f8b78f35848a0b7c=1669927983
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: Tengine
content-type: text/html
content-length: 162
date: Thu, 01 Dec 2022 20:53:06 GMT
ali-swift-global-savetime: 1669927986
via: cache53.l2cn3037[108,108,404-1280,M], cache80.l2cn3037[109,0], kunlun7.cn1310[115,115,404-1280,M], kunlun1.cn1310[117,0]
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:06 GMT
x-swift-cachetime: 1
x-swift-error: orig response 4XX error
timing-allow-origin: *
eagleid: 3ad8769516699279861803105e
X-Firefox-Spdy: h2

e.so.com/search/c.js?u=3091324131&_=1669927982994

36.99.171.172

200 OK

0 B

URL HTTP/1.1
e.so.com/search/c.js?u=3091324131&_=1669927982994
IP
36.99.171.172:0
ASN
#137687 Luoyang, Henan Province, P.R.China.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /search/c.js?u=3091324131&_=1669927982994 HTTP/1.1
Host: e.so.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 20:53:06 GMT
Content-Type: text/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: private
X-Trace: "rt":0
X-Cache: MISS

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:53:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

goutong.baidu.com/site/238/865f4f7235ef1496f8b78f35848a0b7c/b.js?siteId=8230894

14.215.177.164

200 OK

38 kB

URL HTTP/2
goutong.baidu.com/site/238/865f4f7235ef1496f8b78f35848a0b7c/b.js?siteId=8230894
IP
14.215.177.164:0
ASN
#4134 Chinanet

File type
Unicode text, UTF-8 text, with very long lines (35732), with CRLF, LF line terminators
Size
38 kB (37988 bytes)
Hash
f7f6c6636ab3b8debf6c3ea4f9546ef7
f38d65fd18c00a570644991fde4f2a2d3f8a1d43
5571d44eb10bfea6d4f34bae646f8400d1af0d5367cc34f4f363255506e775b0

HTTP Headers

GET /site/238/865f4f7235ef1496f8b78f35848a0b7c/b.js?siteId=8230894 HTTP/1.1
Host: goutong.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache
content-type: text/javascript; charset=utf-8
date: Thu, 01 Dec 2022 20:53:06 GMT
pragma: no-cache
server: Apache
x-envoy-decorator-operation: im-icon.meg-crm-prod.svc.cluster.local:2333/*
x-envoy-upstream-service-time: 592
x-protected-by: OpenRASP
x-request-id: 227afd13d1fc4ab48825fb0bdf9b64ab
X-Firefox-Spdy: h2

cm.g.doubleclick.net/pixel?google_nid=MEV&google_sc=&google_cm=&tid=3&from_mv=1&google_ula=2121606&google_tc=

142.250.74.162

302 Found

262 B

URL HTTP/2
cm.g.doubleclick.net/pixel?google_nid=MEV&google_sc=&google_cm=&tid=3&from_mv=1&google_ula=2121606&google_tc=
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
262 B (262 bytes)
Hash
4573855ebe66784b49f30dcbbb2fbac7
dac1a2236befa5c4e382cf481278e7556df66ba5
f3b8acb0021530d438bea209bb784bdfb6ab1c0c4fc9ad0bc618bdc5f969d39a

HTTP Headers

GET /pixel?google_nid=MEV&google_sc=&google_cm=&tid=3&from_mv=1&google_ula=2121606&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ckmap.mediav.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: https://ckmap.mediav.com/m?tid=3&from_mv=1&google_error=3
date: Thu, 01 Dec 2022 20:53:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 262
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:53:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12035 bytes)
Hash
acffcb88ce68b2d70c9c046a7b5a4aa8
cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 12035
x-amzn-requestid: 2711a135-b390-43ef-9e95-92438058bc27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz81FIpIAMFs9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-742f7f293df074340ab6a217;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ygs-Qd7UU_k4t4_breZTyqkHqGjJzlH1UMa9ncww5_IGpJ1n781jfg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:51:55 GMT
age: 82873
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ckmap.mediav.com/m?tid=3&from_mv=1&google_error=3

180.163.247.134

200 OK

43 B

URL HTTP/2
ckmap.mediav.com/m?tid=3&from_mv=1&google_error=3
IP
180.163.247.134:0
ASN
#4812 China Telecom Group

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /m?tid=3&from_mv=1&google_error=3 HTTP/1.1
Host: ckmap.mediav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ckmap.mediav.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty/1.15.8.2
date: Thu, 01 Dec 2022 20:53:08 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
expires: -1
set-cookie: v=!Ty7>1R(0n9Yg!X:EeH-; expires=Monday, 02-Nov-2099 00:00:00 GMT; path=/; domain=.mediav.com
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/css/style.css

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/css/style.css
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /statics/yx/css/style.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Wed, 25 Dec 2019 02:16:26 GMT
etag: W/"5e02c67a-53fa"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache12.l2cn3037[0,0,200-0,H], cache34.l2cn3037[2,0], kunlun9.cn1310[67,93,200-0,M], kunlun1.cn1310[97,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064590e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/indexExmail.js

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/indexExmail.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/indexExmail.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Mon, 06 Jan 2020 14:56:18 GMT
etag: W/"5e134a92-1cc90"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache70.l2cn3037[0,0,200-0,H], cache45.l2cn3037[1,0], kunlun7.cn1310[20,20,200-0,M], kunlun1.cn1310[55,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279822085128e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/css/advantage_path.css

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/css/advantage_path.css
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /statics/yx/css/advantage_path.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Thu, 29 Nov 2018 08:46:26 GMT
etag: W/"5bffa762-1a6ad"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache33.l2cn3037[149,183,200-0,H], cache46.l2cn3037[185,0], kunlun1.cn1310[0,42,200-0,H], kunlun1.cn1310[44,0]
age: 17892
x-cache: HIT TCP_HIT dirn:2:309829017
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279820064593e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/index.php?c=api&m=captcha&width=98&height=40

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/index.php?c=api&m=captcha&width=98&height=40
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /index.php?c=api&m=captcha&width=98&height=40 HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/png
date: Thu, 01 Dec 2022 20:53:02 GMT
set-cookie: captcha=db4n; expires=Thu, 01-Dec-2022 22:53:02 GMT; Max-Age=7200
strict-transport-security: max-age=31536000
via: cache55.l2nm125-4[90,0], kunlun1.cn1310[175,0]
timing-allow-origin: *
eagleid: 3ad8769516699279822085116e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/jquery.min.js

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/jquery.min.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/jquery.min.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: W/"5bfe6dc2-176bb"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache19.l2cn3037[137,138,200-0,H], cache45.l2cn3037[140,0], kunlun1.cn1310[0,10,200-0,H], kunlun1.cn1310[27,0]
age: 17892
x-cache: HIT TCP_HIT dirn:2:309828557
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085085e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/jquery.terseBanner.min.js

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/jquery.terseBanner.min.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/jquery.terseBanner.min.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Thu, 29 Nov 2018 08:50:20 GMT
etag: W/"5bffa84c-861d"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache34.l2cn3037[0,0,200-0,H], cache25.l2cn3037[55,0], kunlun9.cn1310[74,74,200-0,M], kunlun1.cn1310[109,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279822085122e
content-encoding: gzip
X-Firefox-Spdy: h2

ckmap.mediav.com/b?type=10

180.163.247.134

200 OK

0 B

URL HTTP/2
ckmap.mediav.com/b?type=10
IP
180.163.247.134:0
ASN
#4812 China Telecom Group

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /b?type=10 HTTP/1.1
Host: ckmap.mediav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://360fenxi.mediav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: openresty/1.15.8.2
date: Thu, 01 Dec 2022 20:53:07 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
expires: -1
set-cookie: ckmts=PUUmR4sB,P6UmR4sB,U6UmR4sB,JGUmR4sB,L64mR4sB,J6UmR4sB; expires=Sunday, 01-Jan-2023 04:53:07 GMT; path=/; domain=.mediav.com;
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/css/swiper.min.css

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/css/swiper.min.css
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /statics/yx/css/swiper.min.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 30 Nov 2018 09:22:24 GMT
etag: W/"5c010150-3e84"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache45.l2cn3037[0,0,200-0,H], cache61.l2cn3037[1,0], kunlun7.cn1310[21,46,200-0,M], kunlun1.cn1310[53,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064613e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/css/new_index.css

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/css/new_index.css
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /statics/yx/css/new_index.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Mon, 03 Dec 2018 09:34:50 GMT
etag: W/"5c04f8ba-1c1b3"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache22.l2cn3037[0,0,200-0,H], cache5.l2cn3037[2,0], kunlun7.cn1310[24,50,200-0,M], kunlun1.cn1310[54,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064598e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/css/animate.min.css

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/css/animate.min.css
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /statics/yx/css/animate.min.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 30 Nov 2018 08:48:48 GMT
etag: W/"5c00f970-109d6"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache63.l2cn3037[0,0,200-0,H], cache36.l2cn3037[2,0], kunlun9.cn1310[31,54,200-0,M], kunlun1.cn1310[65,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064618e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/new_buy.js

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/new_buy.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/new_buy.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Wed, 08 Jan 2020 05:53:52 GMT
etag: W/"5e156e70-8ea"
expires: Fri, 02 Dec 2022 03:54:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910091
via: cache59.l2cn3037[0,0,200-0,H], cache52.l2cn3037[1,0], kunlun8.cn1310[27,27,200-0,M], kunlun1.cn1310[62,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68509
timing-allow-origin: *
eagleid: 3ad8769516699279822085125e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/css/base.css

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/css/base.css
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /statics/yx/css/base.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/statics/yx/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Wed, 28 Nov 2018 10:28:10 GMT
etag: W/"5bfe6dba-1302"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache10.l2cn3037[0,0,200-0,H], cache47.l2cn3037[0,0], kunlun6.cn1310[5,5,200-0,M], kunlun1.cn1310[7,0]
age: 17892
x-cache: MISS TCP_MISS dirn:9:832115839
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279825405611e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/jquery.superslide.2.1.1.js

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/jquery.superslide.2.1.1.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/jquery.superslide.2.1.1.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Thu, 29 Nov 2018 10:41:04 GMT
etag: W/"5bffc240-2c9e"
expires: Fri, 02 Dec 2022 03:54:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910091
via: cache78.l2cn3037[108,108,200-0,H], cache66.l2cn3037[110,0], kunlun2.cn1310[0,0,200-0,H], kunlun1.cn1310[40,0]
age: 17891
x-cache: HIT TCP_HIT dirn:11:403311876
x-swift-savetime: Thu, 01 Dec 2022 15:54:51 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085124e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/index.min.js

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/index.min.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/index.min.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 03 Jan 2020 03:27:26 GMT
etag: W/"5e0eb49e-acd"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache39.l2cn3037[0,0,200-0,H], cache76.l2cn3037[1,0], kunlun7.cn1310[26,25,200-0,M], kunlun1.cn1310[54,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279822085118e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/jquery.excoloslider.js

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/jquery.excoloslider.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/jquery.excoloslider.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: W/"5bfe6dc2-866e"
expires: Fri, 02 Dec 2022 03:54:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910091
via: cache51.l2cn3037[112,112,200-0,H], cache67.l2cn3037[115,0], kunlun4.cn1310[0,0,200-0,H], kunlun1.cn1310[38,0]
age: 17891
x-cache: HIT TCP_HIT dirn:10:797250863
x-swift-savetime: Thu, 01 Dec 2022 15:54:51 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085121e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/pack.min.js

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/pack.min.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/pack.min.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Mon, 03 Dec 2018 11:09:18 GMT
etag: W/"5c050ede-11152"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache46.l2cn3037[26,26,200-0,H], cache68.l2cn3037[28,0], kunlun4.cn1310[0,9,200-0,H], kunlun1.cn1310[46,0]
age: 17892
x-cache: HIT TCP_HIT dirn:1:203520400
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085123e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/jquery.validate-1.11.1.min1cc4f5.js

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/jquery.validate-1.11.1.min1cc4f5.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/jquery.validate-1.11.1.min1cc4f5.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 30 Nov 2018 06:10:16 GMT
etag: W/"5c00d448-524c"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache34.l2cn3037[0,0,200-0,H], cache75.l2cn3037[1,0], kunlun7.cn1310[13,13,200-0,M], kunlun1.cn1310[51,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279822085127e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/index.php?c=cron&callback=jQuery11120646576545444517_1669927981539&_=1669927981540

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/index.php?c=cron&callback=jQuery11120646576545444517_1669927981539&_=1669927981540
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /index.php?c=cron&callback=jQuery11120646576545444517_1669927981539&_=1669927981540 HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: text/html; charset=utf-8
date: Thu, 01 Dec 2022 20:53:03 GMT
vary: Accept-Encoding
set-cookie: cron=1; expires=Thu, 01-Dec-2022 20:58:03 GMT; Max-Age=300; path=/
strict-transport-security: max-age=31536000
content-encoding: gzip
via: cache1.l2nm125-4[76,0], kunlun1.cn1310[101,0]
timing-allow-origin: *
eagleid: 3ad8769516699279832216706e
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/responsiveslides2993bf.js

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/responsiveslides2993bf.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/responsiveslides2993bf.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Fri, 30 Nov 2018 06:10:16 GMT
etag: W/"5c00d448-1049"
expires: Fri, 02 Dec 2022 03:54:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910091
via: cache11.l2cn3037[131,132,304-0,M], cache59.l2cn3037[134,0], kunlun4.cn1310[0,0,200-0,H], kunlun1.cn1310[39,0]
age: 17891
x-cache: HIT TCP_HIT dirn:10:804297047
x-swift-savetime: Thu, 01 Dec 2022 15:54:51 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085126e
content-encoding: gzip
X-Firefox-Spdy: h2

www.bjmailqq.com/statics/yx/js/swiper.min.js

58.216.118.223

200 OK

0 B

URL HTTP/2
www.bjmailqq.com/statics/yx/js/swiper.min.js
IP
58.216.118.223:0
ASN
#4134 Chinanet

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /statics/yx/js/swiper.min.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 30 Nov 2018 09:02:02 GMT
etag: W/"5c00fc8a-178a3"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache58.l2cn3037[116,116,200-0,H], cache45.l2cn3037[117,0], kunlun1.cn1310[0,6,200-0,H], kunlun1.cn1310[40,0]
age: 17892
x-cache: HIT TCP_HIT dirn:5:308121738
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085117e
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (36)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations