r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9961
Expires: Thu, 01 Dec 2022 23:39:00 GMT
Date: Thu, 01 Dec 2022 20:52:59 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 658
Cache-Control: max-age=136151
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:52:59 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 10:42:10 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 20:19:49 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1990
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8046
Expires: Thu, 01 Dec 2022 23:07:05 GMT
Date: Thu, 01 Dec 2022 20:52:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: i3k/+PyRM+dRLmXB2ZVP0AlfVaTRJnXcZW9teSl720J1s6bEyuTIbRoxROksSUDHx1nr0UWcftc=
x-amz-request-id: WAMKSH64CD5F49NM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 20:45:48 GMT
age: 431
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 20:52:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 20:11:15 GMT
cache-control: public,max-age=3600
age: 2505
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
bjmailqq.com/
203.107.45.167301 Moved Permanently 0 B IP 203.107.45.167:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Thu, 01 Dec 2022 20:52:59 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=15
BackendServer: Aliyun URL Forwarding Server
Location: https://www.bjmailqq.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 661
Cache-Control: max-age=131090
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:53:00 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:17:50 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.37.79.227101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.37.79.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3OqnLQilDuWAFn4Cc7vtfg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +KP7EIVrMjizmRpmSxktB+RFhF8=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ce1e2f209064c6ff30389a338eba756
632e7adb30eb76022e83f5bdffac53876761e9af
39dea962724d3833334ef7a6aa3f1e040b32e49e01c5d33b7dbaf45231eccdd8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=100546
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:53:01 GMT
Etag: "6387f9ef-1d7"
Expires: Sat, 03 Dec 2022 00:48:47 GMT
Last-Modified: Thu, 01 Dec 2022 00:48:47 GMT
Server: nginx
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9903
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 20:53:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9903
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 20:53:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9903
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 20:53:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9903
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 20:53:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9903
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 20:53:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kZfRQsF_Fo2UtTqK0ByOPeQK-IzTQO9JtTmxIMlapmsd93SJk_4VYw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:47:30 GMT
age: 83131
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 17:08:13 GMT
age: 13488
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 328ce221bcf3442f88d09373193ff594
63bfa2ea925aa2c188c664a7bf7af7b0e5417e60
21d5b5ec267430dba91b17f89a557aca5cd2a21535da18eb02ec69ed0e1b7371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13411
x-amzn-requestid: 71f8798f-93e9-4649-8822-7ad3fadeec34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz6vH05oAMF_qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd11-1849aa08463e5c1f3d9b15b9;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QVGFEOePBybOeNxG6eWBffm8Ha_fmBnT8vMIGcI8zv9C7yiBeSncDw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
etag: "63bfa2ea925aa2c188c664a7bf7af7b0e5417e60"
content-type: image/jpeg
age: 82861
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 82861
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 05:45:16 GMT
age: 54465
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 18:58:06 GMT
age: 6895
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/log.png
58.216.118.223200 OK 28 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/log.png
IP 58.216.118.223:0
File type PNG image data, 312 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 3600cd9f0994c7df205d0f5da64ee11c
be38cbdcee0eea39f89fe7625086c7aae0cea710
e19c1cfe0d57b35399f7657fb2cd5b36129a78402cd40ce4446fd12f65940279
GET /statics/yx/picture/log.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 28206
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Fri, 22 Mar 2019 11:57:10 GMT
etag: "5c94cd96-6e2e"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache8.l2cn3037[29,29,304-0,M], cache20.l2cn3037[30,0], kunlun4.cn1310[114,146,200-0,H], kunlun1.cn1310[153,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:7:199260242
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279820064623e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/dh.png
58.216.118.223200 OK 2.9 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/dh.png
IP 58.216.118.223:0
File type PNG image data, 163 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash e08f1968fb537432213447880e06b320
013f34ccc0faea9aacf99039d51b972198433b13
00eb22b6748c572e4f14af58dc37085abf6ddda93554c1bd5252ee7f8e748879
GET /statics/yx/picture/dh.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2867
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Fri, 22 Mar 2019 12:19:58 GMT
etag: "5c94d2ee-b33"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache63.l2cn3037[107,107,304-0,M], cache60.l2cn3037[108,0], kunlun7.cn1310[137,160,200-0,H], kunlun1.cn1310[166,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:275530229
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279820064629e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/ban1.png
58.216.118.223200 OK 2.5 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/ban1.png
IP 58.216.118.223:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 0054a4eaf3e2c3bdcd83c2872cce50ad
084493a2a222f8e2c395d12f04be8bdec5a7fa6a
786e994a43f2e2d9454fbc326a6e5b7c2f913998fcd70d5df82a8d995c26fa25
GET /statics/yx/images/ban1.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2536
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:54:36 GMT
etag: "5bff46dc-9e8"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache73.l2cn3037[127,128,304-0,M], cache39.l2cn3037[130,0], kunlun9.cn1310[143,150,200-0,H], kunlun1.cn1310[172,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:660272575
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279820064634e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/ban5.png
58.216.118.223200 OK 2.7 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/ban5.png
IP 58.216.118.223:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 51c666e91e830a4d66731578d37e8cd0
b8428b72a9cbacdc2057b2d8a3f42ad06b4a606a
38b9a0829d7369fca24c2ed211f71a121127fb785a5b672bf52d447a39b716e4
GET /statics/yx/images/ban5.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2668
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:55:02 GMT
etag: "5bff46f6-a6c"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache71.l2cn3037[107,107,304-0,M], cache5.l2cn3037[108,0], kunlun7.cn1310[112,112,200-0,H], kunlun1.cn1310[115,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:588976798
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085063e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/ban2.png
58.216.118.223200 OK 2.8 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/ban2.png
IP 58.216.118.223:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash cf9df48f97d3de34c8c517732dc57f5b
743899ab0bc78b02d9745005020a1aea5b90a4a2
f95f857e38d0fec2503ca5b0d5b21aace7224927fb25f52fb46d4819ccf21809
GET /statics/yx/images/ban2.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2782
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:54:42 GMT
etag: "5bff46e2-ade"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache60.l2cn3037[119,119,304-0,M], cache39.l2cn3037[121,0], kunlun9.cn1310[122,123,200-0,H], kunlun1.cn1310[130,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:480723364
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085058e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/ban6.png
58.216.118.223200 OK 2.5 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/ban6.png
IP 58.216.118.223:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 71f84a7b86a7e738bbcdfc509e83ae37
6ab983a8df6675348e8484fef53a657fda614251
ed54cf25650d24645efdf7ce2ec052e2ec38d9c6ab2dd4f22cd8590ba7feb2a7
GET /statics/yx/images/ban6.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2470
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:55:12 GMT
etag: "5bff4700-9a6"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache17.l2cn3037[115,116,304-0,M], cache34.l2cn3037[116,0], kunlun9.cn1310[122,122,200-0,H], kunlun1.cn1310[130,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:475408444
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085066e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/ban3.png
58.216.118.223200 OK 2.6 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/ban3.png
IP 58.216.118.223:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 57ebe6df8bf86a2d100077b4ce2b1b96
9a5d895675404145da68831a3a93e2e39b25d7a6
b502c8a949407623d70e37f2e1501694b61a029783969c1e22a5cdbdb7f71e5d
GET /statics/yx/images/ban3.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2557
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:54:48 GMT
etag: "5bff46e8-9fd"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache57.l2cn3037[124,124,304-0,M], cache72.l2cn3037[126,0], kunlun8.cn1310[129,129,200-0,H], kunlun1.cn1310[132,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:39731548
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085059e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/tsgn07.png
58.216.118.223200 OK 1.9 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/tsgn07.png
IP 58.216.118.223:0
File type PNG image data, 65 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ec9fa3686acf63ef7e706647bb89dc8
4df6d6173236e1b99004b26d31894d25280e05d2
df979665599ca17faf546ff0cc8843008062898f70dda8263f723068e7aa0e30
GET /statics/yx/picture/tsgn07.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 1925
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:16 GMT
etag: "5bfe6dc0-785"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache66.l2cn3037[119,118,304-0,M], cache60.l2cn3037[120,0], kunlun7.cn1310[126,126,200-0,H], kunlun1.cn1310[133,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:275284065
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085079e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/change_0114e1cd.png
58.216.118.223200 OK 7.2 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/change_0114e1cd.png
IP 58.216.118.223:0
File type PNG image data, 230 x 130, 8-bit colormap, non-interlaced\012- data
Hash 2785924177105f856a332b29caef3086
e040a0555dcf1eabfc0c33ba67e0a113cc2f879e
147cee7512a0139c05782f27b9904e7b0e5879b6b31a0f4c19fca9185e1ecae7
GET /statics/yx/picture/change_0114e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 7151
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-1bef"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache20.l2cn3037[125,125,304-0,M], cache61.l2cn3037[126,0], kunlun7.cn1310[130,129,200-0,H], kunlun1.cn1310[143,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:277562488
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085099e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/ban8.png
58.216.118.223200 OK 3.7 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/ban8.png
IP 58.216.118.223:0
File type PNG image data, 67 x 67, 8-bit/color RGBA, non-interlaced\012- data
Hash 34acd72881f1dc2a2f911cf6da636a49
fbb2d4ad80674d75cb0295db999cc1c3b7ccc8f3
2fc18394088030e700ab70d9d8e1e2ceb3be043789c7104d3d4fe7b8e86541d5
GET /statics/yx/images/ban8.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3667
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 07:22:32 GMT
etag: "5bff93b8-e53"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache52.l2cn3037[126,126,304-0,M], cache40.l2cn3037[127,0], kunlun9.cn1310[131,132,200-0,H], kunlun1.cn1310[144,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:295122918
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085094e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/tsgn02.png
58.216.118.223200 OK 3.2 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/tsgn02.png
IP 58.216.118.223:0
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash a2c165c20275191d4c3c95059fb728c3
4b9f18e38905afe8ddec653a9254a4f91a1ae5b2
a119254819bc8cfce88ea94bc97de45551e81a73187bdda053784333e4ec5c74
GET /statics/yx/picture/tsgn02.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3169
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:10 GMT
etag: "5bfe6dba-c61"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache32.l2cn3037[137,138,304-0,M], cache20.l2cn3037[139,0], kunlun4.cn1310[144,144,200-0,H], kunlun1.cn1310[148,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:0:419709164
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085069e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/tsgn03.png
58.216.118.223200 OK 2.8 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/tsgn03.png
IP 58.216.118.223:0
File type PNG image data, 72 x 59, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c3cd64ddabec7724ddd0f54e316ef65
e2316cac380e1ddbe651047edef56859102c0ad8
ca3f453273e2a06a5d6aa6a19c06c16f44bb9fffedbd425daa3bff764e2ee61c
GET /statics/yx/picture/tsgn03.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2793
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:22 GMT
etag: "5bfe6dc6-ae9"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache7.l2cn3037[120,119,304-0,M], cache70.l2cn3037[122,0], kunlun2.cn1310[147,148,200-0,H], kunlun1.cn1310[155,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:523433943
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085071e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/QQ2.png
58.216.118.223200 OK 368 B URL HTTP/2 www.bjmailqq.com/statics/yx/images/QQ2.png
IP 58.216.118.223:0
File type PNG image data, 13 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 8b6765e27783ff5c27038c00895229e7
25dc42f63294f811c836855a620cc5b1292ad31f
0d94ad2b8e03a2c6a727864ecbb5d4b6f261ddc48d5072f9156579d36c053d53
GET /statics/yx/images/QQ2.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 368
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 07:08:12 GMT
etag: "5bff905c-170"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache49.l2cn3037[122,122,304-0,M], cache18.l2cn3037[123,0], kunlun9.cn1310[142,142,200-0,H], kunlun1.cn1310[155,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:105071155
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085090e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/com_0114e1cd.png
58.216.118.223200 OK 14 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/com_0114e1cd.png
IP 58.216.118.223:0
File type PNG image data, 225 x 105, 8-bit/color RGB, non-interlaced\012- data
Hash 961822a83c060bca59896d52fe455a34
6d224220fa0e17d8de3d9847dfcebbff7ea04f31
0a62d3c7b9969324eec49f8eadeb51d3e20bb5f64da86598da50343ae142ddce
GET /statics/yx/picture/com_0114e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 13658
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-355a"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache51.l2cn3037[127,127,304-0,M], cache45.l2cn3037[128,0], kunlun1.cn1310[147,147,200-0,H], kunlun1.cn1310[162,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:549013229
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085103e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/change_0314e1cd.png
58.216.118.223200 OK 5.1 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/change_0314e1cd.png
IP 58.216.118.223:0
File type PNG image data, 230 x 130, 8-bit colormap, non-interlaced\012- data
Hash 59b112a784b7d9042741ba55620e230b
4bb40d339f6a1ac2390e28773bba8ed07b73c7cf
26c839388ef3e95c3b19e53f34704446b47b9310e705f7b62c1f3ab0b78e030e
GET /statics/yx/picture/change_0314e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 5147
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:22 GMT
etag: "5bfe6dc6-141b"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache29.l2cn3037[128,127,304-0,M], cache54.l2cn3037[129,0], kunlun6.cn1310[135,135,200-0,H], kunlun1.cn1310[163,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:705708977
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085102e
X-Firefox-Spdy: h2
www.bjmailqq.com/
58.216.118.223200 OK 14 kB IP 58.216.118.223:0
Hash b166e9da81f346f707cac1c2d905df62
98a3581ac0adda859a3263794a2fb20e044c92f6
48f49efa20def359e0ea646f608f2ed5492e7ad0c0c1f4869581977114910e4f
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: Tengine
content-type: text/html; charset=utf-8
date: Thu, 01 Dec 2022 20:53:01 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
via: cache1.l2nm125-4[54,0], kunlun1.cn1310[79,0]
timing-allow-origin: *
eagleid: 3ad8769516699279814503969e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/tsgn06.png
58.216.118.223200 OK 3.0 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/tsgn06.png
IP 58.216.118.223:0
File type PNG image data, 62 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f111d0ff9116ce7c6c7878a1411c147
dec98b04f4d89a5cfeb9a77dc4352e9ead018a4e
1c17f1330be9abfd5e063ee58cc5b2771ab18138dbea98f92aef99d5650ce101
GET /statics/yx/picture/tsgn06.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3023
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:24 GMT
etag: "5bfe6dc8-bcf"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache52.l2cn3037[130,130,304-0,M], cache35.l2cn3037[132,0], kunlun2.cn1310[159,159,200-0,H], kunlun1.cn1310[165,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:524894731
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085076e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/left.png
58.216.118.223200 OK 327 B URL HTTP/2 www.bjmailqq.com/statics/yx/picture/left.png
IP 58.216.118.223:0
File type PNG image data, 12 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash ee0c9aded73fa2164a5ab2d6bd23a5e1
a844e7e7e7345e15ff97b716d421b0960214834c
285a0a47f3d243cafd7a37113a990bce6f54362bcda56ca75794f0255099f2ed
GET /statics/yx/picture/left.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 327
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:20 GMT
etag: "5bfe6dc4-147"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache30.l2cn3037[151,151,304-0,M], cache36.l2cn3037[153,0], kunlun9.cn1310[158,158,200-0,H], kunlun1.cn1310[166,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:293399550
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085083e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/tsgn01.png
58.216.118.223200 OK 2.3 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/tsgn01.png
IP 58.216.118.223:0
File type PNG image data, 62 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 6b0292bbd50f2573255f10ed0c705e33
1ef14e2fcaf39832e0d888b315a557baf3215b5b
5e050dde57d7a68881a6ef6224e5bd9a5c2463628b623d71484cc92b3d018d99
GET /statics/yx/picture/tsgn01.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2339
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 04:04:16 GMT
etag: "5bff6540-923"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache79.l2cn3037[123,123,304-0,M], cache58.l2cn3037[126,0], kunlun5.cn1310[150,164,200-0,H], kunlun1.cn1310[168,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:920189462
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085067e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/com_1014e1cd.png
58.216.118.223200 OK 3.8 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/com_1014e1cd.png
IP 58.216.118.223:0
File type PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Hash 0156ddd482dd1eb2582674b3f44764dd
d9a7afaf4bb52a0c2fe76caf73264a7b7fe96222
5faf3d5dace682d4ae4c1fe83edc2ebd243e23cad1a53afd6da6c4e26d8aa781
GET /statics/yx/picture/com_1014e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3808
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-ee0"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache51.l2cn3037[121,121,304-0,M], cache56.l2cn3037[123,0], kunlun6.cn1310[139,142,200-0,H], kunlun1.cn1310[170,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:9:142932972
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085111e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/com_0614e1cd.png
58.216.118.223200 OK 3.7 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/com_0614e1cd.png
IP 58.216.118.223:0
File type PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Hash 91a95c6eaf36ac41f50a2913abf4fa8d
5977dd914149139d9f535e602193e466e1eb5e1b
918d79217984311a823c13d69c4b921c6cc4137d3f141fd967ef61dfa058f983
GET /statics/yx/picture/com_0614e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3707
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-e7b"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache56.l2cn3037[124,124,304-0,M], cache9.l2cn3037[125,0], kunlun4.cn1310[144,144,200-0,H], kunlun1.cn1310[172,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:193712848
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085112e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/com_1414e1cd.png
58.216.118.223200 OK 2.2 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/com_1414e1cd.png
IP 58.216.118.223:0
File type PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Hash 83ce2973499620af30413b9e98e0357e
2c224b33d9f359fc5b606b1b2db2422a5a954972
de5898bb97b8a5ab6c93c9e01496d4d991e7485387392769a92e03fe0f6e3625
GET /statics/yx/picture/com_1414e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2159
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:20 GMT
etag: "5bfe6dc4-86f"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache78.l2cn3037[123,123,304-0,M], cache44.l2cn3037[124,0], kunlun1.cn1310[147,147,200-0,H], kunlun1.cn1310[175,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:0:36318725
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085108e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/com_0514e1cd.png
58.216.118.223200 OK 4.8 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/com_0514e1cd.png
IP 58.216.118.223:0
File type PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Hash 4e90a1c4a6f5f2ec5f6784333b2b3659
9d865ce80d4056c1153732bcab41deb9e2d6eb5f
d75e3cbccd8b99254235a840c05894820aa24888e90a13628232bb8c607b9a9e
GET /statics/yx/picture/com_0514e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 4764
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-129c"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache24.l2cn3037[124,124,304-0,M], cache47.l2cn3037[126,0], kunlun6.cn1310[147,147,200-0,H], kunlun1.cn1310[175,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:703381734
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085104e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/prices.js
58.216.118.223200 OK 1 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/prices.js
IP 58.216.118.223:0
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/prices.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 1
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Fri, 03 Jan 2020 08:03:00 GMT
etag: "5e0ef534-1"
expires: Fri, 02 Dec 2022 08:53:02 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache18.l2cn3037[133,133,304-0,M], cache54.l2cn3037[135,0], kunlun5.cn1310[148,148,200-0,H], kunlun1.cn1310[177,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:919322707
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085119e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/tsgn04.png
58.216.118.223200 OK 3.0 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/tsgn04.png
IP 58.216.118.223:0
File type PNG image data, 72 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash db9e19820236235ead1fc62e79d18730
8008d01fc9328201b294b14c8b4da847f6b6936d
725069bff06420bb8d1eb56aa698d1ffd1db3426db65eccdc5255eb7b1fdeecd
GET /statics/yx/picture/tsgn04.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2957
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 04:04:16 GMT
etag: "5bff6540-b8d"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache45.l2cn3037[149,148,304-0,M], cache57.l2cn3037[150,0], kunlun8.cn1310[172,172,200-0,H], kunlun1.cn1310[177,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:49546648
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085072e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/com_0914e1cd.png
58.216.118.223200 OK 4.0 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/com_0914e1cd.png
IP 58.216.118.223:0
File type PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Hash 984617ad6c54271f2f2c3d12382ca042
6678503bd0d5e8d8256834e001197882a32be519
00ab1787475d04401a14791400399db372ac69ddb85300e33d56946e0927a05e
GET /statics/yx/picture/com_0914e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3973
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:22 GMT
etag: "5bfe6dc6-f85"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache28.l2cn3037[133,133,304-0,M], cache79.l2cn3037[134,0], kunlun7.cn1310[163,163,200-0,H], kunlun1.cn1310[179,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:276395789
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085106e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/tsgn05.png
58.216.118.223200 OK 2.3 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/tsgn05.png
IP 58.216.118.223:0
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 98842d5c691a5bd1531a58dd7ee74aa3
f2d2520759c74d253c2518f7cdee9bc4729feec7
7b7ee67e1b397b59b0f73a7d52e6e19ce7c0b9dd8712e4f0e03b9fd19c57deda
GET /statics/yx/picture/tsgn05.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2336
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:12 GMT
etag: "5bfe6dbc-920"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache31.l2cn3037[128,128,304-0,M], cache57.l2cn3037[130,0], kunlun5.cn1310[158,175,200-0,H], kunlun1.cn1310[181,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:295743613
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085074e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/ban4.png
58.216.118.223200 OK 2.7 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/ban4.png
IP 58.216.118.223:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash f63edc7314c0031428217d7666e404d8
f13d6e96d839a28f4f0afd8e453b253fac76d516
bcf52e4f327c78aec19e3c28a77fed2f440b4624c3191be717e0c29e86e62ee4
GET /statics/yx/images/ban4.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2682
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 01:54:54 GMT
etag: "5bff46ee-a7a"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache11.l2cn3037[152,151,304-0,M], cache59.l2cn3037[154,0], kunlun5.cn1310[179,180,200-0,H], kunlun1.cn1310[183,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:295480540
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085061e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/com_1314e1cd.png
58.216.118.223200 OK 4.0 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/com_1314e1cd.png
IP 58.216.118.223:0
File type PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Hash b0cb45dd3c4bd85d0406c62bf52f09de
6f8c7fae6167c6ef50c03e0e5e044f4d2f68d517
df2ac8fd2cef1b2c5b21b06be5e847d96a8c10f26a6265cd5e6869c76e514d83
GET /statics/yx/picture/com_1314e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 4027
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:20 GMT
etag: "5bfe6dc4-fbb"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache24.l2cn3037[125,125,304-0,M], cache31.l2cn3037[127,0], kunlun8.cn1310[158,158,200-0,H], kunlun1.cn1310[185,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:41196294
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085107e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/dui1.png
58.216.118.223200 OK 381 B URL HTTP/2 www.bjmailqq.com/statics/yx/images/dui1.png
IP 58.216.118.223:0
File type PNG image data, 14 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash f3c10b2a5023d591800d3df7a4d72e65
344cc91f40e1ca8220a2794d569dbf402578f766
6709caafbb01334e73ff4061ec61c8fdab576f9d57f824ab19755dd40903ce06
GET /statics/yx/images/dui1.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 381
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 06:58:28 GMT
etag: "5bff8e14-17d"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache75.l2cn3037[144,144,304-0,M], cache80.l2cn3037[146,0], kunlun7.cn1310[175,174,200-0,H], kunlun1.cn1310[186,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:277836595
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085088e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/ban9.png
58.216.118.223200 OK 3.8 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/ban9.png
IP 58.216.118.223:0
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 857f1469a57bde53df45248f656b31ed
08de084b5044246881c22fefaa9c980807121430
73b5b14e07848124e2106e6d21b9a72bdd2b5a2de4528622a6bb5092b817cfab
GET /statics/yx/images/ban9.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3776
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 07:22:32 GMT
etag: "5bff93b8-ec0"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache71.l2cn3037[143,143,304-0,M], cache16.l2cn3037[145,0], kunlun9.cn1310[161,161,200-0,H], kunlun1.cn1310[188,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:294584652
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085096e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/ban7.png
58.216.118.223200 OK 3.0 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/ban7.png
IP 58.216.118.223:0
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash e0653419f9fc4057a620b72bdde512d1
ee3ee4a20c642073f29f00a5834b043553a9e0c3
e9f36817a1ef19c8add1c11ebc25234780d62f1e61d9c0f8f5389128851c1b39
GET /statics/yx/images/ban7.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2991
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 07:22:32 GMT
etag: "5bff93b8-baf"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache11.l2cn3037[142,142,304-0,M], cache1.l2cn3037[143,0], kunlun4.cn1310[165,164,200-0,H], kunlun1.cn1310[192,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:0:408976190
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085092e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/righ.png
58.216.118.223200 OK 276 B URL HTTP/2 www.bjmailqq.com/statics/yx/images/righ.png
IP 58.216.118.223:0
File type PNG image data, 6 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash 015ee5b3578f678ddf5f7a7bcf916ad7
99ef90cdf7d043c56594d541033ce3b0f0d99f0c
7ef68dc26462b35ad4ee70f35e17941819ecca5e6bc3ef9b85fd3266361c875e
GET /statics/yx/images/righ.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 276
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Thu, 29 Nov 2018 07:44:32 GMT
etag: "5bff98e0-114"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache21.l2cn3037[152,151,200-0,H], cache54.l2cn3037[153,0], kunlun8.cn1310[168,168,200-0,M], kunlun1.cn1310[195,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085097e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/right.png
58.216.118.223200 OK 339 B URL HTTP/2 www.bjmailqq.com/statics/yx/picture/right.png
IP 58.216.118.223:0
File type PNG image data, 12 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 179fe26cfe2bd198032ffce03a895d52
4b971746216e6a6dfd558211af57ee7c3d811acd
c3de6f108968035e7713349a2f5f50e073319bc7ad3280c1ee8af5132bc317ed
GET /statics/yx/picture/right.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 339
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-153"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache7.l2cn3037[142,141,304-0,M], cache10.l2cn3037[143,0], kunlun4.cn1310[171,171,200-0,H], kunlun1.cn1310[198,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:427229549
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085084e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/change_1214e1cd.png
58.216.118.223200 OK 3.1 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/change_1214e1cd.png
IP 58.216.118.223:0
File type PNG image data, 230 x 130, 8-bit colormap, non-interlaced\012- data
Hash e100e4285f956de824adbdc2e8a8c325
03aef2b0387f102407bcb2601ba5e7f20708935e
472c3afb76b3dc63cb9c9e9bee3dbb0f21c4df76bd67839a986562efa4ba9a7a
GET /statics/yx/picture/change_1214e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3092
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:30 GMT
etag: "5bfe6dce-c14"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache10.l2cn3037[152,152,304-0,M], cache5.l2cn3037[153,0], kunlun5.cn1310[178,177,200-0,H], kunlun1.cn1310[205,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:295480550
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085098e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/change_0214e1cd.png
58.216.118.223200 OK 5.8 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/change_0214e1cd.png
IP 58.216.118.223:0
File type PNG image data, 230 x 130, 8-bit colormap, non-interlaced\012- data
Hash 33d8371c3a1c1e8a783e4201739a6fb5
260ebc26cbf62b9ae0f7c5318a01b9923420c613
515b75a89485ce49a04349776d42efb8d538356467946544e7c124c2c3ac2488
GET /statics/yx/picture/change_0214e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 5755
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:20 GMT
etag: "5bfe6dc4-167b"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache28.l2cn3037[157,157,304-0,M], cache33.l2cn3037[158,0], kunlun2.cn1310[178,178,200-0,H], kunlun1.cn1310[206,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:10:26477024
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085101e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/tsgn08.png
58.216.118.223200 OK 2.0 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/tsgn08.png
IP 58.216.118.223:0
File type PNG image data, 86 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ecfa95169e69e434855fc4109d90441
4d630fe1bf05c6c30e0d237be1ec941469ec5f10
463312f8603c52e8e48f2de4ff6a3725dda3ff06cd0c7e82f7e2e79e85ad42e3
GET /statics/yx/picture/tsgn08.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 2006
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-7d6"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache39.l2cn3037[152,152,304-0,M], cache56.l2cn3037[153,0], kunlun5.cn1310[187,202,200-0,H], kunlun1.cn1310[210,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:296435715
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085081e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/counseling_style_52.png
58.216.118.223200 OK 4.3 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/counseling_style_52.png
IP 58.216.118.223:0
File type PNG image data, 77 x 22, 8-bit/color RGB, non-interlaced\012- data
Hash 9030ceca1670a7dcb0ea72eec8417ab7
ce7740ef58bf926bd756e53edc1522272ef9b8fd
d3b8e3ea7f02425160fb6a277287d56e456fa4455faadd2989c75ec3b66d32ae
GET /statics/yx/images/counseling_style_52.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 4295
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Mon, 03 Dec 2018 09:54:28 GMT
etag: "5c04fd54-10c7"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache45.l2cn3037[153,153,304-0,M], cache50.l2cn3037[154,0], kunlun7.cn1310[183,183,200-0,H], kunlun1.cn1310[211,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:590493815
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085115e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/picture/com_0414e1cd.png
58.216.118.223200 OK 3.8 kB URL HTTP/2 www.bjmailqq.com/statics/yx/picture/com_0414e1cd.png
IP 58.216.118.223:0
File type PNG image data, 160 x 75, 8-bit colormap, non-interlaced\012- data
Hash f0d0ffe0fa845ae0f15091b61acc0357
355e1d8ff3352486b850c21ec6879611acf22d59
0fa1eed6e6f446a3755e687acc7a0cb67d35a7f925864062a03272627e07e96b
GET /statics/yx/picture/com_0414e1cd.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 3840
date: Thu, 01 Dec 2022 20:53:02 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: "5bfe6dc2-f00"
expires: Sat, 31 Dec 2022 20:53:02 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669927982
via: cache20.l2cn3037[166,165,304-0,M], cache51.l2cn3037[167,0], kunlun7.cn1310[187,187,200-0,H], kunlun1.cn1310[216,0]
age: 0
x-cache: HIT TCP_REFRESH_HIT dirn:11:589135925
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279822085114e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/css/wx.css
58.216.118.223200 OK 7.9 kB URL HTTP/2 www.bjmailqq.com/statics/yx/css/wx.css
IP 58.216.118.223:0
Hash b5a3b23f2896f5dbf7dc1852a66754f8
46ae9aa696f46d4e85d4700e30c38f09369c6db7
928b4958f7aaf0e3c8233ef14bb023c3ad5e3f8771a334d720910d97cf8b459b
GET /statics/yx/css/wx.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Thu, 29 Nov 2018 10:29:52 GMT
etag: W/"5bffbfa0-fbfc"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache42.l2cn3037[0,0,200-0,H], cache72.l2cn3037[1,0], kunlun8.cn1310[23,23,200-0,M], kunlun1.cn1310[26,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064604e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/large_left.png
58.216.118.223200 OK 1.5 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/large_left.png
IP 58.216.118.223:0
File type PNG image data, 40 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash c7d7eee3ae27c6eea078e5b6c30c8763
a4a4243c5c653a7024d7626911f849a954e8aba8
1e93f3215066083474d73115bbef66b052e2add1e20a5670fbbe509e3679b27a
GET /statics/yx/images/large_left.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 1517
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Mon, 03 Dec 2018 07:25:08 GMT
etag: "5c04da54-5ed"
expires: Sat, 31 Dec 2022 15:54:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910090
via: cache79.l2cn3037[0,0,200-0,H], cache80.l2cn3037[1,0], kunlun7.cn1310[7,6,200-0,M], kunlun1.cn1310[10,0]
age: 17893
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:03 GMT
x-swift-cachetime: 25307
timing-allow-origin: *
eagleid: 3ad8769516699279830936501e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/jiao.png
58.216.118.223200 OK 273 B URL HTTP/2 www.bjmailqq.com/statics/yx/images/jiao.png
IP 58.216.118.223:0
File type PNG image data, 19 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash 40f91012c74f6b0fcff7cc77bc885f8a
0a335cb0aa953c231c3ed3d9a88de4541849008d
e99f5e4b30ad8584cd5dd516b6309e4aa0284c1bdb93c20d208f7014ac4499d4
GET /statics/yx/images/jiao.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/statics/yx/css/style.css
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 273
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Thu, 29 Nov 2018 03:46:50 GMT
etag: "5bff612a-111"
expires: Sat, 31 Dec 2022 15:54:51 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910091
via: cache50.l2cn3037[0,0,200-0,H], cache54.l2cn3037[0,0], kunlun5.cn1310[3,4,200-0,M], kunlun1.cn1310[7,0]
age: 17892
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:03 GMT
x-swift-cachetime: 25308
timing-allow-origin: *
eagleid: 3ad8769516699279831006515e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/dui.png
58.216.118.223200 OK 633 B URL HTTP/2 www.bjmailqq.com/statics/yx/images/dui.png
IP 58.216.118.223:0
File type PNG image data, 16 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash a1dff7f86bfb8e6e45a6316f6f7bd05f
a675d1093954dbbb8a89a9df865fcc2d3125825b
446051ca1a44587b443043a944d07e52896a69e2f9b29a4e49ef9fbdda169610
GET /statics/yx/images/dui.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/statics/yx/css/style.css
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 633
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Thu, 29 Nov 2018 03:54:34 GMT
etag: "5bff62fa-279"
expires: Sat, 31 Dec 2022 15:54:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910090
via: cache19.l2cn3037[0,0,200-0,H], cache5.l2cn3037[1,0], kunlun5.cn1310[6,6,200-0,M], kunlun1.cn1310[9,0]
age: 17893
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:03 GMT
x-swift-cachetime: 25307
timing-allow-origin: *
eagleid: 3ad8769516699279831006516e
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 61aaa9c113389727a15c3d4b9832c993
b8327e4bfdf09cd0679599af397c6f6ddd24b3cd
c485c7350b2ac4544c1c6f5497c5d49acd43b987c1475f370ad5a8f4e2b2e530
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:53:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 05 Dec 2022 18:48:02 GMT
ETag: "b8327e4bfdf09cd0679599af397c6f6ddd24b3cd"
Last-Modified: Thu, 01 Dec 2022 18:48:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2906
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772eb5c9d9221bfe-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 61aaa9c113389727a15c3d4b9832c993
b8327e4bfdf09cd0679599af397c6f6ddd24b3cd
c485c7350b2ac4544c1c6f5497c5d49acd43b987c1475f370ad5a8f4e2b2e530
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 20:53:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 05 Dec 2022 18:48:02 GMT
ETag: "b8327e4bfdf09cd0679599af397c6f6ddd24b3cd"
Last-Modified: Thu, 01 Dec 2022 18:48:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2906
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772eb5c9d9fe0b61-OSL
www.bjmailqq.com/uploadfile/201903/3d46eb4b55.png
58.216.118.223200 OK 571 kB URL HTTP/2 www.bjmailqq.com/uploadfile/201903/3d46eb4b55.png
IP 58.216.118.223:0
File type PNG image data, 1600 x 571, 8-bit/color RGBA, non-interlaced\012- data
Size 571 kB (571384 bytes)
Hash e29a94bc938270b98a8e3a66c50bc94e
5f16e4686263c924b34f47e021306513e7e3af72
240e2f5b7bde2e6b3d3d762f5f4c397d5399413772da18483469b6671d6c6b59
GET /uploadfile/201903/3d46eb4b55.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 571384
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 22 Mar 2019 12:01:04 GMT
etag: "5c94ce80-8b7f8"
expires: Sat, 31 Dec 2022 15:54:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910090
via: cache3.l2cn3037[113,114,200-0,H], cache30.l2cn3037[116,0], kunlun6.cn1310[0,1,200-0,H], kunlun1.cn1310[6,0]
age: 17893
x-cache: HIT TCP_HIT dirn:10:327009658
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279830926500e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/images/index_logo-s2e8fb998eb.png
58.216.118.223200 OK 158 kB URL HTTP/2 www.bjmailqq.com/statics/yx/images/index_logo-s2e8fb998eb.png
IP 58.216.118.223:0
File type PNG image data, 146 x 2011, 8-bit/color RGBA, non-interlaced\012- data
Size 158 kB (158016 bytes)
Hash 7ad87d496bd101371e114b868c337848
02037ec4eb9a80096c3a2d70b55b839d2da4ddc3
6128b203d502e834c25bf6a3d9656b0e3d01e8f81f30dd01f546dfeb318ee4e9
GET /statics/yx/images/index_logo-s2e8fb998eb.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/statics/yx/css/new_index.css
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 158016
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Thu, 29 Nov 2018 05:53:58 GMT
etag: "5bff7ef6-26940"
expires: Sat, 31 Dec 2022 15:54:51 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910091
via: cache41.l2cn3037[134,133,200-0,H], cache62.l2cn3037[136,0], kunlun4.cn1310[0,11,200-0,H], kunlun1.cn1310[15,0]
age: 17892
x-cache: HIT TCP_HIT dirn:7:198904294
x-swift-savetime: Thu, 01 Dec 2022 15:54:51 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279831006517e
X-Firefox-Spdy: h2
www.bjmailqq.com/uploadfile/202011/dea4b45308.jpg
58.216.118.223200 OK 429 kB URL HTTP/2 www.bjmailqq.com/uploadfile/202011/dea4b45308.jpg
IP 58.216.118.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x570, components 3\012- data
Size 429 kB (429064 bytes)
Hash b858efcf7389c05e54e6fb98283a127d
45d1026ecc2281cb6b4a21a746958b7e5e4f4d5b
c943000d5b39e15dfb34c62c3432dbbee25ba78a7fd60503567d5ee5fd5a59da
GET /uploadfile/202011/dea4b45308.jpg HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpeg
content-length: 429064
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Mon, 23 Nov 2020 09:25:56 GMT
etag: "5fbb8024-68c08"
expires: Sat, 31 Dec 2022 15:54:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910090
via: cache73.l2cn3037[112,112,200-0,H], cache54.l2cn3037[113,0], kunlun6.cn1310[0,10,200-0,H], kunlun1.cn1310[14,0]
age: 17893
x-cache: HIT TCP_HIT dirn:5:249101985
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279830896491e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/css/layer.css
58.216.118.223200 OK 273 kB URL HTTP/2 www.bjmailqq.com/statics/yx/css/layer.css
IP 58.216.118.223:0
Size 273 kB (272949 bytes)
Hash 4bb94d3d0ffb2797232e931437897fd3
7a3206600399722f9ac185bb95716095c54ace5b
cc460096f91174a34554c1b87dd8b0d787293f877cad9526e6b5bfd258ec48b8
GET /statics/yx/css/layer.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Thu, 29 Nov 2018 09:29:26 GMT
etag: W/"5bffb176-385e"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache1.l2cn3037[0,0,200-0,H], cache40.l2cn3037[1,0], kunlun9.cn1310[27,51,200-0,M], kunlun1.cn1310[55,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064609e
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.crlocsp.cn/
101.198.193.5200 OK 472 B IP 101.198.193.5:0
ASN #55992 Beijing Qihu Technology Company Limited
Hash d2262abb2e1531c0bdafd4faf4c643a7
2f88cc695e795f6027f1c6f00a6f8db9cf1bfc3f
c11edec8add0a07b0f04d8b5507ac9ee8884d7798d9fa1bb6ac64dcd3bfd6eea
POST / HTTP/1.1
Host: ocsp.crlocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.9.14
Date: Thu, 01 Dec 2022 20:52:22 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Content-Transfer-Encoding: Binary
Last-modified: Mon, 28 Nov 2022 11:59:50 GMT
Expires: Mon, 05 Dec 2022 11:59:49 GMT
ETag: "2F88CC695E795F6027F1C6F00A6F8DB9CF1BFC3F"
cache-control: max-age=172800,public,no-transform,must-revalidate
www.bjmailqq.com/uploadfile/201903/ecf7656421.png
58.216.118.223200 OK 523 kB URL HTTP/2 www.bjmailqq.com/uploadfile/201903/ecf7656421.png
IP 58.216.118.223:0
File type PNG image data, 1600 x 571, 8-bit/color RGBA, non-interlaced\012- data
Size 523 kB (522691 bytes)
Hash d07af28c0c3dddd1a5a04ff86cbe3fc4
d74ca0138dfa5a832bf04f56ee5eb0bf833fb20e
85157ed906e6d58055985f2e68db7cb9e070874be4023c4f24f760b32d140b74
GET /uploadfile/201903/ecf7656421.png HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 522691
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 22 Mar 2019 12:01:22 GMT
etag: "5c94ce92-7f9c3"
expires: Sat, 31 Dec 2022 15:54:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
ali-swift-global-savetime: 1669910090
via: cache37.l2cn3037[112,123,200-0,H], cache71.l2cn3037[124,0], kunlun7.cn1310[0,19,200-0,H], kunlun1.cn1310[24,0]
age: 17893
x-cache: HIT TCP_HIT dirn:5:22555871
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 43200
timing-allow-origin: *
eagleid: 3ad8769516699279830906495e
X-Firefox-Spdy: h2
s.union.360.cn/286242.js
180.163.251.76200 OK 11 kB IP 180.163.251.76:0
ASN #4812 China Telecom Group
File type Unicode text, UTF-8 text, with very long lines (25491)
Hash ac1a8935552fe205f278a7c7ae606384
9f50531c561fdc57fc934a24d1e940d7567e6a7e
51d0c573f9691399b7ce24b04e7e17d9ace1581fb82c5ffcbcb5817b668bc5f0
GET /286242.js HTTP/1.1
Host: s.union.360.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty/1.9.15.1
Date: Thu, 01 Dec 2022 20:53:04 GMT
Content-Type: text/plain
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding
Set-Cookie: __huid=11Hc1Y1nzkGP9+wfEpZc3HOD0SxJ/FJYB25mhWzQ7h62Y=; Expires=Sun, 28-Nov-32 20:53:04 GMT; Domain=.360.cn; Path=/
__guid=267808983.4449290760273099776.1669927984001.4036; Expires=Fri, 01-Dec-23 20:53:04 GMT; Domain=.360.cn; Path=/
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Etag: W/"035b9ddb6c43d9d24198b6fddd72f6f2"
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c
103.235.46.191200 OK 12 kB URL HTTP/1.1 hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (1242)
Hash 8c666210e12fc9b9de3b1876487479c4
3fc8364a8c6a8e41edd82b947e5cb6749ec533a1
47186cf1fbd39d498db08021f556f85dec68600d2e0c6ef440457fe64d608004
GET /hm.js?865f4f7235ef1496f8b78f35848a0b7c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11880
Content-Type: application/javascript
Date: Thu, 01 Dec 2022 20:53:04 GMT
Etag: 532f0465070d3bdae1abe7f4abfc0674
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=674CCAFAB204D071; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=177527082&si=865f4f7235ef1496f8b78f35848a0b7c&v=1.3.0&lv=1&sn=30648&r=0&ww=1280&u=https%3A%2F%2Fwww.bjmailqq.com%2F&tt=%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7CQQ%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%B3%A8%E5%86%8C%E7%94%B3%E8%AF%B7-%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%9C%8D%E5%8A%A1%E4%B8%AD%E5%BF%83
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=177527082&si=865f4f7235ef1496f8b78f35848a0b7c&v=1.3.0&lv=1&sn=30648&r=0&ww=1280&u=https%3A%2F%2Fwww.bjmailqq.com%2F&tt=%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7CQQ%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%B3%A8%E5%86%8C%E7%94%B3%E8%AF%B7-%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%9C%8D%E5%8A%A1%E4%B8%AD%E5%BF%83
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=177527082&si=865f4f7235ef1496f8b78f35848a0b7c&v=1.3.0&lv=1&sn=30648&r=0&ww=1280&u=https%3A%2F%2Fwww.bjmailqq.com%2F&tt=%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7CQQ%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%7C%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%B3%A8%E5%86%8C%E7%94%B3%E8%AF%B7-%E8%85%BE%E8%AE%AF%E4%BC%81%E4%B8%9A%E9%82%AE%E7%AE%B1%E6%9C%8D%E5%8A%A1%E4%B8%AD%E5%BF%83 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 01 Dec 2022 20:53:04 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E1BA06D21A25C36F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
s.union.360.cn/s.gif?lts=1&et=100&si=286242&ldt=1&vis=visible&prv=0&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&t=1669927982984&v=3.2.0&_mtd=im
180.163.251.76200 OK 43 B URL HTTP/1.1 s.union.360.cn/s.gif?lts=1&et=100&si=286242&ldt=1&vis=visible&prv=0&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&t=1669927982984&v=3.2.0&_mtd=im
IP 180.163.251.76:0
ASN #4812 China Telecom Group
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /s.gif?lts=1&et=100&si=286242&ldt=1&vis=visible&prv=0&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&t=1669927982984&v=3.2.0&_mtd=im HTTP/1.1
Host: s.union.360.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty/1.9.15.1
Date: Thu, 01 Dec 2022 20:53:05 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Fri, 01 Jan 1980 00:00:00 GMT
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
s.union.360.cn/proxy.html
180.163.251.76200 OK 434 B URL HTTP/1.1 s.union.360.cn/proxy.html
IP 180.163.251.76:0
ASN #4812 China Telecom Group
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (707), with no line terminators
Hash d713c4be4307c2ba08c151d879b32522
ee36cc8098954691e78c377f29ec8b55b8f36570
881c2afefaf064920d4b302d86aa2a097042146a5e9d232a8265642a1f6e97b0
GET /proxy.html HTTP/1.1
Host: s.union.360.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty/1.9.15.1
Date: Thu, 01 Dec 2022 20:53:05 GMT
Content-Type: text/html
Last-Modified: Thu, 03 Mar 2022 02:05:24 GMT
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding
ETag: W/"62202264-2c3"
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Encoding: gzip
hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c
103.235.46.191200 OK 12 kB URL HTTP/1.1 hm.baidu.com/hm.js?865f4f7235ef1496f8b78f35848a0b7c
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (1242)
Hash 1223d6e4cb982ecb3da5325950ca31c8
fab59b2e42669a522821458399a30c245b0be57b
fc14d0a3ce277f4dc891312273ec63b0792f1888b15a726b9aa2416f47f6fa22
GET /hm.js?865f4f7235ef1496f8b78f35848a0b7c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 532f0465070d3bdae1abe7f4abfc0674
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11880
Content-Type: application/javascript
Date: Thu, 01 Dec 2022 20:53:04 GMT
Etag: 8e1599c4a709ddbc1422c3aaadcbc982
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=25B6972797BC8F59; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
s.union.360.cn/s.gif?lts=1&et=0&ck=0&adb=0&cl=24&ds=1280x1024&ln=en-US&url=https%3A%2F%2Fwww.bjmailqq.com%2F&si=286242&su=&flt=1669927982<=1669927982&pt=2571557112607931400&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&v=3.2.0&t=1669927983496&qhclickid=&_mtd=im
180.163.251.76200 OK 43 B URL HTTP/1.1 s.union.360.cn/s.gif?lts=1&et=0&ck=0&adb=0&cl=24&ds=1280x1024&ln=en-US&url=https%3A%2F%2Fwww.bjmailqq.com%2F&si=286242&su=&flt=1669927982<=1669927982&pt=2571557112607931400&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&v=3.2.0&t=1669927983496&qhclickid=&_mtd=im
IP 180.163.251.76:0
ASN #4812 China Telecom Group
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /s.gif?lts=1&et=0&ck=0&adb=0&cl=24&ds=1280x1024&ln=en-US&url=https%3A%2F%2Fwww.bjmailqq.com%2F&si=286242&su=&flt=1669927982<=1669927982&pt=2571557112607931400&guid=267808983.4449290760273099776.1669927984001.4036&huid=11Hc1Y1nzkGP9%252BwfEpZc3HOD0SxJ%252FFJYB25mhWzQ7h62Y%253D&v=3.2.0&t=1669927983496&qhclickid=&_mtd=im HTTP/1.1
Host: s.union.360.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty/1.9.15.1
Date: Thu, 01 Dec 2022 20:53:05 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Fri, 01 Jan 1980 00:00:00 GMT
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
ocsp.crlocsp.cn/
101.198.193.5200 OK 472 B IP 101.198.193.5:0
ASN #55992 Beijing Qihu Technology Company Limited
Hash e2230c4256aab179f3612a8120163cc7
6061d8a502b885eac40c9de9cc83cbeefcfa05ae
d05473bd12b1254ff09cbc7e3367ad77b0609220d693e279df27b41a9fdb581a
POST / HTTP/1.1
Host: ocsp.crlocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.9.14
Date: Thu, 01 Dec 2022 20:52:24 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Content-Transfer-Encoding: Binary
Last-modified: Tue, 29 Nov 2022 21:56:23 GMT
Expires: Tue, 06 Dec 2022 21:56:22 GMT
ETag: "6061D8A502B885EAC40C9DE9CC83CBEEFCFA05AE"
cache-control: max-age=172800,public,no-transform,must-revalidate
ocsp.crlocsp.cn/
101.198.193.5200 OK 472 B IP 101.198.193.5:0
ASN #55992 Beijing Qihu Technology Company Limited
Hash e1f1e8f7af78d07cc80dd097e8c2e901
4d2cd549e9b56307270028459305ee28de66c46d
f89e2390c43c1015ff6f6be4add0634bfd44d52d6ee041ae03a97be119b8ae48
POST / HTTP/1.1
Host: ocsp.crlocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.9.14
Date: Thu, 01 Dec 2022 20:52:24 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Content-Transfer-Encoding: Binary
Last-modified: Tue, 29 Nov 2022 15:19:51 GMT
Expires: Tue, 06 Dec 2022 15:19:50 GMT
ETag: "4D2CD549E9B56307270028459305EE28DE66C46D"
cache-control: max-age=172800,public,no-transform,must-revalidate
360fenxi.mediav.com/mediav1130.html
123.125.81.172200 OK 988 B URL HTTP/1.1 360fenxi.mediav.com/mediav1130.html
IP 123.125.81.172:0
ASN #4808 China Unicom Beijing Province Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1579)
Hash 43d72715f35d2d71fe537bad71a28264
3f4d44e10339d042a48ca1687b00cd9ef3c64fdb
75ac43a7524fcf4b8766dd59e415ee3ba1a3e8438f1833bb62d6217a9c056ee8
GET /mediav1130.html HTTP/1.1
Host: 360fenxi.mediav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty/1.9.15.1
Date: Thu, 01 Dec 2022 20:53:06 GMT
Content-Type: text/html
Last-Modified: Thu, 03 Mar 2022 02:05:23 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"62202263-6d1"
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Encoding: gzip
www.bjmailqq.com/favicon.ico
58.216.118.223404 Not Found 162 B URL HTTP/2 www.bjmailqq.com/favicon.ico
IP 58.216.118.223:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 70461da8b94c6ca5d2fda3260c5a8c3b
994bc667720c21257500e29038c1a5f61e25da1e
f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
GET /favicon.ico HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n; cron=1; Qs_lvt_286242=1669927982; Qs_pv_286242=2571557112607931400; Hm_lvt_865f4f7235ef1496f8b78f35848a0b7c=1669927983; Hm_lpvt_865f4f7235ef1496f8b78f35848a0b7c=1669927983
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: Tengine
content-type: text/html
content-length: 162
date: Thu, 01 Dec 2022 20:53:06 GMT
ali-swift-global-savetime: 1669927986
via: cache53.l2cn3037[108,108,404-1280,M], cache80.l2cn3037[109,0], kunlun7.cn1310[115,115,404-1280,M], kunlun1.cn1310[117,0]
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:06 GMT
x-swift-cachetime: 1
x-swift-error: orig response 4XX error
timing-allow-origin: *
eagleid: 3ad8769516699279861803105e
X-Firefox-Spdy: h2
e.so.com/search/c.js?u=3091324131&_=1669927982994
36.99.171.172200 OK 0 B URL HTTP/1.1 e.so.com/search/c.js?u=3091324131&_=1669927982994
IP 36.99.171.172:0
ASN #137687 Luoyang, Henan Province, P.R.China.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /search/c.js?u=3091324131&_=1669927982994 HTTP/1.1
Host: e.so.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 20:53:06 GMT
Content-Type: text/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: private
X-Trace: "rt":0
X-Cache: MISS
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:53:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
goutong.baidu.com/site/238/865f4f7235ef1496f8b78f35848a0b7c/b.js?siteId=8230894
14.215.177.164200 OK 38 kB URL HTTP/2 goutong.baidu.com/site/238/865f4f7235ef1496f8b78f35848a0b7c/b.js?siteId=8230894
IP 14.215.177.164:0
File type Unicode text, UTF-8 text, with very long lines (35732), with CRLF, LF line terminators
Hash f7f6c6636ab3b8debf6c3ea4f9546ef7
f38d65fd18c00a570644991fde4f2a2d3f8a1d43
5571d44eb10bfea6d4f34bae646f8400d1af0d5367cc34f4f363255506e775b0
GET /site/238/865f4f7235ef1496f8b78f35848a0b7c/b.js?siteId=8230894 HTTP/1.1
Host: goutong.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache
content-type: text/javascript; charset=utf-8
date: Thu, 01 Dec 2022 20:53:06 GMT
pragma: no-cache
server: Apache
x-envoy-decorator-operation: im-icon.meg-crm-prod.svc.cluster.local:2333/*
x-envoy-upstream-service-time: 592
x-protected-by: OpenRASP
x-request-id: 227afd13d1fc4ab48825fb0bdf9b64ab
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=MEV&google_sc=&google_cm=&tid=3&from_mv=1&google_ula=2121606&google_tc=
142.250.74.162302 Found 262 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=MEV&google_sc=&google_cm=&tid=3&from_mv=1&google_ula=2121606&google_tc=
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4573855ebe66784b49f30dcbbb2fbac7
dac1a2236befa5c4e382cf481278e7556df66ba5
f3b8acb0021530d438bea209bb784bdfb6ab1c0c4fc9ad0bc618bdc5f969d39a
GET /pixel?google_nid=MEV&google_sc=&google_cm=&tid=3&from_mv=1&google_ula=2121606&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ckmap.mediav.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://ckmap.mediav.com/m?tid=3&from_mv=1&google_error=3
date: Thu, 01 Dec 2022 20:53:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 262
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 20:53:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acffcb88ce68b2d70c9c046a7b5a4aa8
cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12035
x-amzn-requestid: 2711a135-b390-43ef-9e95-92438058bc27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz81FIpIAMFs9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-742f7f293df074340ab6a217;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ygs-Qd7UU_k4t4_breZTyqkHqGjJzlH1UMa9ncww5_IGpJ1n781jfg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:51:55 GMT
age: 82873
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ckmap.mediav.com/m?tid=3&from_mv=1&google_error=3
180.163.247.134200 OK 43 B URL HTTP/2 ckmap.mediav.com/m?tid=3&from_mv=1&google_error=3
IP 180.163.247.134:0
ASN #4812 China Telecom Group
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /m?tid=3&from_mv=1&google_error=3 HTTP/1.1
Host: ckmap.mediav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ckmap.mediav.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.15.8.2
date: Thu, 01 Dec 2022 20:53:08 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
expires: -1
set-cookie: v=!Ty7>1R(0n9Yg!X:EeH-; expires=Monday, 02-Nov-2099 00:00:00 GMT; path=/; domain=.mediav.com
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/css/style.css
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/css/style.css
IP 58.216.118.223:0
GET /statics/yx/css/style.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Wed, 25 Dec 2019 02:16:26 GMT
etag: W/"5e02c67a-53fa"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache12.l2cn3037[0,0,200-0,H], cache34.l2cn3037[2,0], kunlun9.cn1310[67,93,200-0,M], kunlun1.cn1310[97,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064590e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/indexExmail.js
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/indexExmail.js
IP 58.216.118.223:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/indexExmail.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Mon, 06 Jan 2020 14:56:18 GMT
etag: W/"5e134a92-1cc90"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache70.l2cn3037[0,0,200-0,H], cache45.l2cn3037[1,0], kunlun7.cn1310[20,20,200-0,M], kunlun1.cn1310[55,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279822085128e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/css/advantage_path.css
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/css/advantage_path.css
IP 58.216.118.223:0
GET /statics/yx/css/advantage_path.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Thu, 29 Nov 2018 08:46:26 GMT
etag: W/"5bffa762-1a6ad"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache33.l2cn3037[149,183,200-0,H], cache46.l2cn3037[185,0], kunlun1.cn1310[0,42,200-0,H], kunlun1.cn1310[44,0]
age: 17892
x-cache: HIT TCP_HIT dirn:2:309829017
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279820064593e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/index.php?c=api&m=captcha&width=98&height=40
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/index.php?c=api&m=captcha&width=98&height=40
IP 58.216.118.223:0
GET /index.php?c=api&m=captcha&width=98&height=40 HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
date: Thu, 01 Dec 2022 20:53:02 GMT
set-cookie: captcha=db4n; expires=Thu, 01-Dec-2022 22:53:02 GMT; Max-Age=7200
strict-transport-security: max-age=31536000
via: cache55.l2nm125-4[90,0], kunlun1.cn1310[175,0]
timing-allow-origin: *
eagleid: 3ad8769516699279822085116e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/jquery.min.js
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/jquery.min.js
IP 58.216.118.223:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/jquery.min.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: W/"5bfe6dc2-176bb"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache19.l2cn3037[137,138,200-0,H], cache45.l2cn3037[140,0], kunlun1.cn1310[0,10,200-0,H], kunlun1.cn1310[27,0]
age: 17892
x-cache: HIT TCP_HIT dirn:2:309828557
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085085e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/jquery.terseBanner.min.js
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/jquery.terseBanner.min.js
IP 58.216.118.223:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/jquery.terseBanner.min.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Thu, 29 Nov 2018 08:50:20 GMT
etag: W/"5bffa84c-861d"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache34.l2cn3037[0,0,200-0,H], cache25.l2cn3037[55,0], kunlun9.cn1310[74,74,200-0,M], kunlun1.cn1310[109,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279822085122e
content-encoding: gzip
X-Firefox-Spdy: h2
ckmap.mediav.com/b?type=10
180.163.247.134200 OK 0 B URL HTTP/2 ckmap.mediav.com/b?type=10
IP 180.163.247.134:0
ASN #4812 China Telecom Group
GET /b?type=10 HTTP/1.1
Host: ckmap.mediav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://360fenxi.mediav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: openresty/1.15.8.2
date: Thu, 01 Dec 2022 20:53:07 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
expires: -1
set-cookie: ckmts=PUUmR4sB,P6UmR4sB,U6UmR4sB,JGUmR4sB,L64mR4sB,J6UmR4sB; expires=Sunday, 01-Jan-2023 04:53:07 GMT; path=/; domain=.mediav.com;
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/css/swiper.min.css
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/css/swiper.min.css
IP 58.216.118.223:0
GET /statics/yx/css/swiper.min.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 30 Nov 2018 09:22:24 GMT
etag: W/"5c010150-3e84"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache45.l2cn3037[0,0,200-0,H], cache61.l2cn3037[1,0], kunlun7.cn1310[21,46,200-0,M], kunlun1.cn1310[53,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064613e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/css/new_index.css
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/css/new_index.css
IP 58.216.118.223:0
GET /statics/yx/css/new_index.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Mon, 03 Dec 2018 09:34:50 GMT
etag: W/"5c04f8ba-1c1b3"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache22.l2cn3037[0,0,200-0,H], cache5.l2cn3037[2,0], kunlun7.cn1310[24,50,200-0,M], kunlun1.cn1310[54,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064598e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/css/animate.min.css
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/css/animate.min.css
IP 58.216.118.223:0
GET /statics/yx/css/animate.min.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 30 Nov 2018 08:48:48 GMT
etag: W/"5c00f970-109d6"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache63.l2cn3037[0,0,200-0,H], cache36.l2cn3037[2,0], kunlun9.cn1310[31,54,200-0,M], kunlun1.cn1310[65,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279820064618e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/new_buy.js
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/new_buy.js
IP 58.216.118.223:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/new_buy.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Wed, 08 Jan 2020 05:53:52 GMT
etag: W/"5e156e70-8ea"
expires: Fri, 02 Dec 2022 03:54:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910091
via: cache59.l2cn3037[0,0,200-0,H], cache52.l2cn3037[1,0], kunlun8.cn1310[27,27,200-0,M], kunlun1.cn1310[62,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68509
timing-allow-origin: *
eagleid: 3ad8769516699279822085125e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/css/base.css
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/css/base.css
IP 58.216.118.223:0
GET /statics/yx/css/base.css HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/statics/yx/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: text/css
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Wed, 28 Nov 2018 10:28:10 GMT
etag: W/"5bfe6dba-1302"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache10.l2cn3037[0,0,200-0,H], cache47.l2cn3037[0,0], kunlun6.cn1310[5,5,200-0,M], kunlun1.cn1310[7,0]
age: 17892
x-cache: MISS TCP_MISS dirn:9:832115839
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279825405611e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/jquery.superslide.2.1.1.js
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/jquery.superslide.2.1.1.js
IP 58.216.118.223:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/jquery.superslide.2.1.1.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Thu, 29 Nov 2018 10:41:04 GMT
etag: W/"5bffc240-2c9e"
expires: Fri, 02 Dec 2022 03:54:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910091
via: cache78.l2cn3037[108,108,200-0,H], cache66.l2cn3037[110,0], kunlun2.cn1310[0,0,200-0,H], kunlun1.cn1310[40,0]
age: 17891
x-cache: HIT TCP_HIT dirn:11:403311876
x-swift-savetime: Thu, 01 Dec 2022 15:54:51 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085124e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/index.min.js
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/index.min.js
IP 58.216.118.223:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/index.min.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 03 Jan 2020 03:27:26 GMT
etag: W/"5e0eb49e-acd"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache39.l2cn3037[0,0,200-0,H], cache76.l2cn3037[1,0], kunlun7.cn1310[26,25,200-0,M], kunlun1.cn1310[54,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279822085118e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/jquery.excoloslider.js
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/jquery.excoloslider.js
IP 58.216.118.223:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/jquery.excoloslider.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Wed, 28 Nov 2018 10:28:18 GMT
etag: W/"5bfe6dc2-866e"
expires: Fri, 02 Dec 2022 03:54:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910091
via: cache51.l2cn3037[112,112,200-0,H], cache67.l2cn3037[115,0], kunlun4.cn1310[0,0,200-0,H], kunlun1.cn1310[38,0]
age: 17891
x-cache: HIT TCP_HIT dirn:10:797250863
x-swift-savetime: Thu, 01 Dec 2022 15:54:51 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085121e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/pack.min.js
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/pack.min.js
IP 58.216.118.223:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/pack.min.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Mon, 03 Dec 2018 11:09:18 GMT
etag: W/"5c050ede-11152"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache46.l2cn3037[26,26,200-0,H], cache68.l2cn3037[28,0], kunlun4.cn1310[0,9,200-0,H], kunlun1.cn1310[46,0]
age: 17892
x-cache: HIT TCP_HIT dirn:1:203520400
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085123e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/jquery.validate-1.11.1.min1cc4f5.js
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/jquery.validate-1.11.1.min1cc4f5.js
IP 58.216.118.223:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/jquery.validate-1.11.1.min1cc4f5.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 30 Nov 2018 06:10:16 GMT
etag: W/"5c00d448-524c"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache34.l2cn3037[0,0,200-0,H], cache75.l2cn3037[1,0], kunlun7.cn1310[13,13,200-0,M], kunlun1.cn1310[51,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 01 Dec 2022 20:53:02 GMT
x-swift-cachetime: 68508
timing-allow-origin: *
eagleid: 3ad8769516699279822085127e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/index.php?c=cron&callback=jQuery11120646576545444517_1669927981539&_=1669927981540
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/index.php?c=cron&callback=jQuery11120646576545444517_1669927981539&_=1669927981540
IP 58.216.118.223:0
GET /index.php?c=cron&callback=jQuery11120646576545444517_1669927981539&_=1669927981540 HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Cookie: captcha=db4n
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: text/html; charset=utf-8
date: Thu, 01 Dec 2022 20:53:03 GMT
vary: Accept-Encoding
set-cookie: cron=1; expires=Thu, 01-Dec-2022 20:58:03 GMT; Max-Age=300; path=/
strict-transport-security: max-age=31536000
content-encoding: gzip
via: cache1.l2nm125-4[76,0], kunlun1.cn1310[101,0]
timing-allow-origin: *
eagleid: 3ad8769516699279832216706e
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/responsiveslides2993bf.js
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/responsiveslides2993bf.js
IP 58.216.118.223:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/responsiveslides2993bf.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:51 GMT
last-modified: Fri, 30 Nov 2018 06:10:16 GMT
etag: W/"5c00d448-1049"
expires: Fri, 02 Dec 2022 03:54:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910091
via: cache11.l2cn3037[131,132,304-0,M], cache59.l2cn3037[134,0], kunlun4.cn1310[0,0,200-0,H], kunlun1.cn1310[39,0]
age: 17891
x-cache: HIT TCP_HIT dirn:10:804297047
x-swift-savetime: Thu, 01 Dec 2022 15:54:51 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085126e
content-encoding: gzip
X-Firefox-Spdy: h2
www.bjmailqq.com/statics/yx/js/swiper.min.js
58.216.118.223200 OK 0 B URL HTTP/2 www.bjmailqq.com/statics/yx/js/swiper.min.js
IP 58.216.118.223:0
Analyzer Verdict Alert fortinet Phishing
GET /statics/yx/js/swiper.min.js HTTP/1.1
Host: www.bjmailqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bjmailqq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Thu, 01 Dec 2022 15:54:50 GMT
last-modified: Fri, 30 Nov 2018 09:02:02 GMT
etag: W/"5c00fc8a-178a3"
expires: Fri, 02 Dec 2022 03:54:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Accept-Encoding
ali-swift-global-savetime: 1669910090
via: cache58.l2cn3037[116,116,200-0,H], cache45.l2cn3037[117,0], kunlun1.cn1310[0,6,200-0,H], kunlun1.cn1310[40,0]
age: 17892
x-cache: HIT TCP_HIT dirn:5:308121738
x-swift-savetime: Thu, 01 Dec 2022 15:54:50 GMT
x-swift-cachetime: 86400
timing-allow-origin: *
eagleid: 3ad8769516699279822085117e
content-encoding: gzip
X-Firefox-Spdy: h2