velotextiles.com/
107.178.189.102301 Moved Permanently 162 B IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 29 Nov 2022 06:25:43 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: http://www.velotextiles.com/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5866
Expires: Tue, 29 Nov 2022 08:03:29 GMT
Date: Tue, 29 Nov 2022 06:25:43 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3859
Cache-Control: max-age=104997
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:25:43 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:35:40 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 06:19:36 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 367
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18574
Expires: Tue, 29 Nov 2022 11:35:17 GMT
Date: Tue, 29 Nov 2022 06:25:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kWZcihsuw9t8ZHf6d/hEFfsvaUTge1VU8V6HOnOtneHn238xf6DumvZNdqnYD+4gB03m1DMmqUw=
x-amz-request-id: XVK7ZA7G2EPE6DFZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 05:42:23 GMT
age: 2600
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 06:11:13 GMT
cache-control: public,max-age=3600
age: 870
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.velotextiles.com/
107.178.189.102200 OK 13 kB IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (823), with CRLF, LF line terminators
Hash c92ba0950b2ae2c7b70cae8dde99585b
d38d2d92b2efdb8e9590a28d5057547a543232ad
879e5f2ff54eec0a46a4765a6558aa509b2aef065bf9428626fe218d53ea6b49
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:43 GMT
Content-Type: text/html; charset=utf-8
Last-Modified: Sun, 13 Nov 2022 06:50:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63709399-100ca"
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 729
Cache-Control: max-age=96800
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:25:44 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 09:19:04 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
www.velotextiles.com/dfiles/7152/wxy/css.css
107.178.189.102200 OK 958 B URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/css.css
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type troff or preprocessor input, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 837eb112f966b11919f9c3de8b22c857
466c076bd63db405f2cc60792e7adb74378e9a1d
7c9e2d9db364c822292e1390a762402f674a8fb192c6ee7165c05a8e68325393
GET /dfiles/7152/wxy/css.css HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Nov 2022 05:18:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb4-bed"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/dfiles/7152/wxy/js/lanrenzhijia.css
107.178.189.102200 OK 591 B URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/js/lanrenzhijia.css
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash bfe2c50ba51d1c7a2b3071661f04e8df
69453744154e9e37f5b7032e98a1d2cb836babf2
73eaa077f3b4558e603e6ebfebe10f425d8bbfcb665a9723f143da9709659c70
GET /dfiles/7152/wxy/js/lanrenzhijia.css HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Nov 2022 05:18:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb4-4de"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/index.vsb.css
107.178.189.102200 OK 368 B URL HTTP/1.1 www.velotextiles.com/index.vsb.css
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with CRLF line terminators
Hash b5a9955bdcda69470f4f50e20d4394af
1e3e292ce0da0988ee6b00bf5ffc05a063604c23
61ed34e737712fb881d099548429e082c4585031368f09887e4662c3982f4f05
GET /index.vsb.css HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: text/css
Content-Length: 368
Last-Modified: Wed, 02 Nov 2022 05:18:45 GMT
Connection: keep-alive
ETag: "6361fdb5-170"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/system/resource/js/counter.js
107.178.189.102200 OK 1.4 kB URL HTTP/1.1 www.velotextiles.com/system/resource/js/counter.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type Unicode text, UTF-8 (with BOM) text, with very long lines (831)
Hash b62b5671649ea0dc48eeaae2decae2e0
91f97648887081e75b72c1d89fe2cea69b3f38d3
ae5944bdd36afcdacf6c75cfbc130b6448598537b5bb72dcd389b8c1d7318367
Analyzer Verdict Alert fortinet Malware
GET /system/resource/js/counter.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb5-9c0"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/@public/base.js
107.178.189.102200 OK 774 B URL HTTP/1.1 www.velotextiles.com/@public/base.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with very long lines (772)
Hash df1a6aa5ff6ecc74d776307b300d15d6
d7c76f3a5bd907aa7f8db5b0db52c965e09ba898
8b83fae75f67248d88f92bdad14be2bbdbf0c8a69ce3a76b109735dc95573343
Analyzer Verdict Alert fortinet Malware
GET /@public/base.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 774
Last-Modified: Sun, 13 Nov 2022 06:49:38 GMT
Connection: keep-alive
ETag: "63709382-306"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/system/resource/js/base64.js
107.178.189.102200 OK 1.5 kB URL HTTP/1.1 www.velotextiles.com/system/resource/js/base64.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 1ae83db2111dc836ee68b9a759baea1d
70743576ba2f8e64163078a5a558927647dbf037
5b7130226e070df4f04ee390df8bc2183c3aacf47fdadd24556fa7de29af76df
Analyzer Verdict Alert fortinet Malware
GET /system/resource/js/base64.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb5-128d"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
push.services.mozilla.com/
54.148.53.106101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.53.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PAvz8k8OEgK56xxEPEK9IA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: o//xna00cEQ6qbEiWcUa5N/eCHM=
www.velotextiles.com/system/resource/js/jquery/jquery-latest.min.js
107.178.189.102200 OK 35 kB URL HTTP/1.1 www.velotextiles.com/system/resource/js/jquery/jquery-latest.min.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash a86e9c89d9ead2517da3068edf666936
06bfa402769787da9766898382c313ea04ca69e3
34e8b6baaa3581ff99d52bc6edd451cc20fbf141a7beaae4fcae0b2e7f87635c
Analyzer Verdict Alert fortinet Malware
GET /system/resource/js/jquery/jquery-latest.min.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb6-15d45"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/system/resource/vue/axios.js
107.178.189.102200 OK 5.0 kB URL HTTP/1.1 www.velotextiles.com/system/resource/vue/axios.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with very long lines (10378), with CRLF line terminators
Hash 62282b20c142e071b6fdf9301dff8a9e
39746d82af95c1b52be16113f0a90b008394de19
73d3c9d37dd2ac34932a9d7bbf02f26f6f86a2b5fdf015ff1e6b931c5d462476
Analyzer Verdict Alert fortinet Malware
GET /system/resource/vue/axios.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb6-34d5"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/system/resource/vue/token.js
107.178.189.102200 OK 421 B URL HTTP/1.1 www.velotextiles.com/system/resource/vue/token.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with CRLF line terminators
Hash d3f9f18b63527ca53f0c51c045d35b77
657c5c13a6da063666d5f61ca2a9f70884ac23f6
fcc55f7c963f06e18e6b1159127b11e9aa0a6963362e863b90792885f535f7f8
Analyzer Verdict Alert fortinet Malware
GET /system/resource/vue/token.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb6-48b"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/system/resource/vue/static/element/index.css
107.178.189.102200 OK 43 kB URL HTTP/1.1 www.velotextiles.com/system/resource/vue/static/element/index.css
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9f628069e06bcb895d65e99565e60dbc
4386e1ddcb2c33ff7e1c150f379831245eb473f2
7484b81ea7a37dcf6d97bc2a90b97726d995b868a3376db09bff21ac09a61618
GET /system/resource/vue/static/element/index.css HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Nov 2022 05:18:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb4-36cd2"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/system/resource/vue/bluebird.min.js
107.178.189.102200 OK 26 kB URL HTTP/1.1 www.velotextiles.com/system/resource/vue/bluebird.min.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with very long lines (32040), with CRLF line terminators, with escape sequences
Hash fd1d95b5560836138ccf4cc4c8254092
21feb35c86a049c150b507ec9209675604191b04
37864baadd4c2403523a21252898f48a3d9f38ce4773d995cb768574b6c59865
Analyzer Verdict Alert fortinet Malware
GET /system/resource/vue/bluebird.min.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb6-13025"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/system/resource/vue/polyfill.js
107.178.189.102200 OK 39 kB URL HTTP/1.1 www.velotextiles.com/system/resource/vue/polyfill.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type Unicode text, UTF-8 text, with very long lines (31999), with CRLF, NEL line terminators
Hash 6e3c2476e0dae2c27d51fc0acbc39994
3dc88132fa37b7373690d74224d2885933dd399b
2adb145ee24aa5b0def8fa28e070b479575307526b5ac6dd9118be566e4db24d
Analyzer Verdict Alert fortinet Malware
GET /system/resource/vue/polyfill.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb7-19877"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/system/resource/vue/static/public.js
107.178.189.102200 OK 2.8 kB URL HTTP/1.1 www.velotextiles.com/system/resource/vue/static/public.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash a10c89e5d2e5a70e321579ed2b62b902
ac0462d0ae37f73a1e31bc2f775ac383c28f1735
e78ccb4673e67b1153569190d94797cbf5ae07ac836e956bcbfa1044fd8c7cd3
Analyzer Verdict Alert fortinet Malware
GET /system/resource/vue/static/public.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb7-1aba"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/dfiles/7152/wxy/js/jquery.min.js
107.178.189.102200 OK 37 kB URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/js/jquery.min.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with very long lines (32072), with CRLF line terminators
Hash 37a3c41d9f8f46ee3472209a81be3fa7
695922aa8fa5a5bd40eccec30cd2d69741653e0a
82f862b343026886845001bc236e8829e828c21e76b597fa2dae54508c876540
Analyzer Verdict Alert fortinet Malware
GET /dfiles/7152/wxy/js/jquery.min.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb8-16b37"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/dfiles/7152/wxy/js/jquery.flexslider-min.js
107.178.189.102200 OK 6.9 kB URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/js/jquery.flexslider-min.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with very long lines (21312), with no line terminators
Hash 761a1924036a5e9ec7efcdfaec6fbecd
bd39371e00627eeb2106d909b6f9606405f252f2
812afb39e0f2c8d95cdaaa4639332f178844897256db7511f08321a51b9bb8ba
Analyzer Verdict Alert fortinet Malware
GET /dfiles/7152/wxy/js/jquery.flexslider-min.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb8-5340"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/system/resource/style/component/news/list/imagechangenews.css
107.178.189.102200 OK 323 B URL HTTP/1.1 www.velotextiles.com/system/resource/style/component/news/list/imagechangenews.css
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ISO-8859 text, with CRLF line terminators
Hash 24135f87691421299d5cc5067e9b34fd
38dcd4df9bdb628b42e78501dcdcfc3e87c1caac
ff7f2a9885e3e3eb3c2ce9922d8bd22c27d1bbac5970d4eff1825639b1103940
GET /system/resource/style/component/news/list/imagechangenews.css HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Nov 2022 05:18:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb7-6d9"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/system/resource/js/news/imagechangenews.js
107.178.189.102200 OK 2.3 kB URL HTTP/1.1 www.velotextiles.com/system/resource/js/news/imagechangenews.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 1cc2d10ca55aab8bedaf4dfa6df73368
1b5308325c3dd3a0a04c6aa6ad125f25724531f7
6f21b65f52882f86874a790c773f63e9032be641b15686b3a71237055e852c44
Analyzer Verdict Alert fortinet Malware
GET /system/resource/js/news/imagechangenews.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb8-1ed1"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/system/resource/vue/vue.js
107.178.189.102200 OK 106 kB URL HTTP/1.1 www.velotextiles.com/system/resource/vue/vue.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with CRLF line terminators
Size 106 kB (106310 bytes)
Hash 26e5ecd7c858c73af7ee334a23b1918b
8eb419651d2cba62e14d601123816abf636a8f17
f153ec850fb844ef4c159accc106b1f7fd6942f628f78c7cef3c49b0c6c97cff
Analyzer Verdict Alert fortinet Malware
GET /system/resource/vue/vue.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb9-55ea5"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/system/resource/js/centerCutImg.js
107.178.189.102200 OK 1.6 kB URL HTTP/1.1 www.velotextiles.com/system/resource/js/centerCutImg.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 69cc43f47314149ab343ff18fec504d2
1d2c40daee479f3af75b1b785d5329a966ecfd62
fcfe440118e27368eb0aacb1c7a4252b707afb9f9c58f4fa40158842e8140e51
Analyzer Verdict Alert fortinet Malware
GET /system/resource/js/centerCutImg.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb9-1bd1"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/system/resource/js/ajax.js
107.178.189.102200 OK 2.3 kB URL HTTP/1.1 www.velotextiles.com/system/resource/js/ajax.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 25b2a01ed85995681fafbed1726bedf8
2c86695f5b317cf1bebc03038b416c070ae96fe7
154e7823aa31f7d7bc368f69c88ab8a798df9252a0aa7f0c9d48b8ea997404b4
Analyzer Verdict Alert fortinet Malware
GET /system/resource/js/ajax.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb9-1a6f"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/@public/js.js
107.178.189.102200 OK 253 B URL HTTP/1.1 www.velotextiles.com/@public/js.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
Hash 6d75e4d8e503dc25cb1eabf8fa4d02cd
1b8bee97dbfda855652eebdd05ade95270f260cf
338c13da1ab6dee95d315fc19dc6cb12e63da0d0589dd160dee0423e4c4aa12b
Analyzer Verdict Alert fortinet Malware
GET /@public/js.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 253
Last-Modified: Sat, 01 Oct 2022 09:55:05 GMT
Connection: keep-alive
ETag: "63380e79-fd"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/system/resource/js/vsbpreloadimg.js
107.178.189.102200 OK 1.7 kB URL HTTP/1.1 www.velotextiles.com/system/resource/js/vsbpreloadimg.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 9aa6784c4c7f401a7a63d2ee9cc3efa7
2b438d56505dc9919917f4e190110b54de4c478f
546a934ec9ee44837f7d35af37b836ebdec099ae4fab40188d60c6ec4b3fd8b7
Analyzer Verdict Alert fortinet Malware
GET /system/resource/js/vsbpreloadimg.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdb9-14e2"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/sitegray/sitegray_d.css
107.178.189.102200 OK 20 B URL HTTP/1.1 www.velotextiles.com/sitegray/sitegray_d.css
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with no line terminators
Hash 311749c1d5f9bcf240ca9c25eae61f47
29703f0938cab5945db52e553f3f22cbd7f0b478
183f83b69b6f7ced023f06bc9b98b2d00c9e08b5c627c1f6e9002f48f0bbfb5c
GET /sitegray/sitegray_d.css HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: text/css
Content-Length: 20
Last-Modified: Wed, 02 Nov 2022 05:18:45 GMT
Connection: keep-alive
ETag: "6361fdb5-14"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/sitegray/sitegray.js
107.178.189.102200 OK 95 B URL HTTP/1.1 www.velotextiles.com/sitegray/sitegray.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with CRLF line terminators
Hash cb16b8b2fae1a2cb3ddba43817fdc763
c1bb1153a3ebb528f86fa5cc57ddd4bfbe9bd4af
66897f9cf68b725abd635d7dc7c1f4e91c80a41779c91bd25cf3a504d8f07407
Analyzer Verdict Alert fortinet Malware
GET /sitegray/sitegray.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 95
Last-Modified: Wed, 02 Nov 2022 05:18:45 GMT
Connection: keep-alive
ETag: "6361fdb5-5f"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/system/resource/vue/static/element/index.js
107.178.189.102200 OK 165 kB URL HTTP/1.1 www.velotextiles.com/system/resource/vue/static/element/index.js
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type Unicode text, UTF-8 text, with very long lines (65121), with no line terminators
Size 165 kB (164804 bytes)
Hash e18bd254a7c9c37adbd01c94e83ab091
76a547ec5974edb2eaabbabc1cb6d9ffc1587374
bba135ab4939d067875420838e14a6863a39835475ecb74f5c846fe4e292dc77
Analyzer Verdict Alert fortinet Malware
GET /system/resource/vue/static/element/index.js HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:44 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 02 Nov 2022 05:18:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6361fdbb-86ab1"
Expires: Thu, 29 Dec 2022 06:25:44 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
www.velotextiles.com/dfiles/7152/wxy/images/10.jpg
107.178.189.102200 OK 15 kB URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/10.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 28x25, components 3\012- data
Hash e1ee31f57d6cf1ad053fa460522fcdd2
3cb6fd1bce3ecffbdfbb8d68d44d480222073ca7
aab7a79219bface63c92a1c2180e08d126df92c770d4fa5b13ed0ec24f4c70ad
GET /dfiles/7152/wxy/images/10.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/jpeg
Content-Length: 14701
Last-Modified: Wed, 02 Nov 2022 05:18:49 GMT
Connection: keep-alive
ETag: "6361fdb9-396d"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/dfiles/7152/wxy/images/15.jpg
107.178.189.102200 OK 3.2 kB URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/15.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 70 x 77, 8-bit/color RGBA, non-interlaced\012- data
Hash 98df8f345ba345a80ef69ed05ba267d1
9eab8508dd0dac2085d1aa60068f98ac7108ae43
c0ff1a44b3f3c6e2bd434cbd795e9691faf2c8d096d86837900661dbfe04b79c
GET /dfiles/7152/wxy/images/15.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/jpeg
Content-Length: 3232
Last-Modified: Wed, 02 Nov 2022 05:18:50 GMT
Connection: keep-alive
ETag: "6361fdba-ca0"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/dfiles/7152/wxy/images/17.jpg
107.178.189.102200 OK 8.0 kB URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/17.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 58 x 241, 8-bit/color RGBA, non-interlaced\012- data
Hash ffefa5c231f18d2aa467af35ef1033a3
7439000d6c4124485b6d636bf2331db4e6a92805
3c08f50954724dadcb9c07aa81572cf13ca80fbd57cee2ff5c1ce751f42fb5f2
GET /dfiles/7152/wxy/images/17.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/jpeg
Content-Length: 7958
Last-Modified: Wed, 02 Nov 2022 05:18:54 GMT
Connection: keep-alive
ETag: "6361fdbe-1f16"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/dfiles/7152/wxy/images/16.jpg
107.178.189.102200 OK 219 B URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/16.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 400 x 3, 8-bit/color RGBA, non-interlaced\012- data
Hash 12dd35b5d45be0430bb4e2e4f2449ddd
1244444f5e40e40aba3fa2507fe0e4ba94dfa2d5
2875034e7c7a68b22614f538b5a9cb45727a4dd7ad2b37edb9b10e6b9d64c122
GET /dfiles/7152/wxy/images/16.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/jpeg
Content-Length: 219
Last-Modified: Wed, 02 Nov 2022 05:18:50 GMT
Connection: keep-alive
ETag: "6361fdba-db"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/system/resource/images/space.gif
107.178.189.102200 OK 802 B URL HTTP/1.1 www.velotextiles.com/system/resource/images/space.gif
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type GIF image data, version 87a, 3 x 3\012- data
Hash 9be61bf1d1e6ff9b25ac2f7a804951d8
8990f83e1a63964e39dfa25b9e436005c93fda19
b2133465df5a0567fcf78a33e610cd5e0040fc70f22e065094ba80964f5060fd
GET /system/resource/images/space.gif HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/gif
Content-Length: 802
Last-Modified: Wed, 02 Nov 2022 05:18:49 GMT
Connection: keep-alive
ETag: "6361fdb9-322"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/dfiles/7152/wxy/images/20.jpg
107.178.189.102200 OK 628 B URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/20.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 31 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 005abdc4f326260faadd899b35b95982
d2022cf0f61ed2ec391f94a3306fde0d63a5b3af
d86a58faff4c34d2db5b69f811aadc5d605db270546b7eb18c2316151b896963
GET /dfiles/7152/wxy/images/20.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/jpeg
Content-Length: 628
Last-Modified: Wed, 02 Nov 2022 05:18:52 GMT
Connection: keep-alive
ETag: "6361fdbc-274"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/dfiles/7152/wxy/images/19.jpg
107.178.189.102200 OK 10 kB URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/19.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 93 x 93, 8-bit/color RGBA, non-interlaced\012- data
Hash 425006431f790d4b23f616b736a2d4cc
068f232ee273e1f74a8584e19c02430cbc23a967
2216dbcccd4dc3e298a691847ef86ddd5fa71409ed8718d94ebba646c492ae06
GET /dfiles/7152/wxy/images/19.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/jpeg
Content-Length: 10448
Last-Modified: Wed, 02 Nov 2022 05:18:54 GMT
Connection: keep-alive
ETag: "6361fdbe-28d0"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/system/resource/images/loading.gif
107.178.189.102200 OK 4.3 kB URL HTTP/1.1 www.velotextiles.com/system/resource/images/loading.gif
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type GIF image data, version 89a, 16 x 16\012- data
Hash 325ec06a64ff169daf8c71b38a415022
8a7588850ebd7c0a4c183aa06904de1236284508
67f89d2ade63e332acfc944711a5ee17243cf23972b229aea422b23af16656b7
GET /system/resource/images/loading.gif HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/gif
Content-Length: 4254
Last-Modified: Wed, 02 Nov 2022 05:18:51 GMT
Connection: keep-alive
ETag: "6361fdbb-109e"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/dfiles/7152/wxy/images/4.jpg
107.178.189.102200 OK 22 kB URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/4.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 308x142, components 3\012- data
Hash d5794ae659e589d3f3dc66e9a81327fb
b485c240332371972edfac0c8f7eac76a04a60f6
907799922a6f5ef1808304b5d753c220817e0ae8f9f16f4e5e1f588c578d1d49
GET /dfiles/7152/wxy/images/4.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/jpeg
Content-Length: 22445
Last-Modified: Wed, 02 Nov 2022 05:18:49 GMT
Connection: keep-alive
ETag: "6361fdb9-57ad"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/dfiles/7152/wxy/images/11.jpg
107.178.189.102200 OK 14 kB URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/11.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 24x24, components 3\012- data
Hash 213eee495027dff3df696d6bca2fe91c
656859cc49bc0cd60dd5b6c298ead9cbda829ca1
fd4973e83d3cac682d4bc6fde2475117663649142a638c0c04211cfc5c6c904e
GET /dfiles/7152/wxy/images/11.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/jpeg
Content-Length: 14182
Last-Modified: Wed, 02 Nov 2022 05:18:51 GMT
Connection: keep-alive
ETag: "6361fdbb-3766"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/system/component/jsq/counter_wbtreeid_1001_owner_1596579000_len_6_style_10_basenum_56800_countertype_TOTAL_COUNTER.jpg
107.178.189.102200 OK 1.4 kB URL HTTP/1.1 www.velotextiles.com/system/component/jsq/counter_wbtreeid_1001_owner_1596579000_len_6_style_10_basenum_56800_countertype_TOTAL_COUNTER.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 84x15, components 3\012- data
Hash 43dbce909c8246937f05d161c8eb3795
c03b8181f21f549823850f41656b5ac70efd1524
8355bdb77758e9517356bede3e2b6ef9c47d16f93e7aceb14b0fd3efbf96b277
GET /system/component/jsq/counter_wbtreeid_1001_owner_1596579000_len_6_style_10_basenum_56800_countertype_TOTAL_COUNTER.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/jpeg
Content-Length: 1356
Last-Modified: Wed, 02 Nov 2022 05:18:52 GMT
Connection: keep-alive
ETag: "6361fdbc-54c"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/dfiles/7152/wxy/images/3.jpg
107.178.189.102200 OK 144 kB URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/3.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 650 x 65, 8-bit/color RGBA, non-interlaced\012- data
Size 144 kB (143906 bytes)
Hash 334a4edbbd013f9ebd95ea9086f5a72a
47c7dfe3edb21718b9945f81268221fbbf27808e
eb04f820b79feda1d4b64ada2741e93efe6603cdbcd812bfd1ce9b72c26887eb
GET /dfiles/7152/wxy/images/3.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:45 GMT
Content-Type: image/jpeg
Content-Length: 143906
Last-Modified: Wed, 02 Nov 2022 05:18:50 GMT
Connection: keep-alive
ETag: "6361fdba-23222"
Expires: Thu, 29 Dec 2022 06:25:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10054
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 06:25:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10054
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 06:25:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10054
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 06:25:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10054
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 06:25:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06723cdab42df9b5334f540a8c7ebc60
3bbc44cb84a37ce6a067db4301dd81647a77c29f
9f6f064b16044c510650635690c61003fb2f6439021a2e681431136f5e7a08b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3905
x-amzn-requestid: bf50db76-dd95-44fc-abbe-1a26a5559ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMFcYHE6IAMFmpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638182b5-50b6d010058c6cb75c05c6de;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 03:06:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 73Fr-7-mRcw9_OVt8Wdi4pjFBHkqi_vBa-zgLtbHKEx1ay9s8wDSgQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 06:26:11 GMT
age: 86374
etag: "3bbc44cb84a37ce6a067db4301dd81647a77c29f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:40:08 GMT
age: 81937
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5e2bc1651b37b8e0467c2a6cb860fb3
3348f081a3357490a704592d105d02e81886df89
751c601e075c9338335c05b0f430ba8065b4e97440e6630993afd943f302b253
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6037
x-amzn-requestid: eb17903e-1fd3-4a41-a6d1-8b671d890400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPAJjFa3oAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382ad70-3db95fcd1aeb9c411c55d173;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 00:21:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mFiEmh1axlMNuIBb1YSzcciCdHzHGG7q0f3lQOuHJmjugWgdZKKiSg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 11:27:11 GMT
age: 68314
etag: "3348f081a3357490a704592d105d02e81886df89"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 22:43:20 GMT
age: 27745
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b7d3821d0bd11c196724846a7b9fe22
5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c
b4f820555c4daf6e112c1a395bc57e22f0ef8e2e4299a0ffbb54e0bf18c87f47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8578
x-amzn-requestid: 4f948bb9-74db-4a5d-927d-a6b893735531
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFxnWHq-IAMF4LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efc95-2f9e98ca2dad65a80e2195c2;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X2x9_hXC0JvEktFODEMuasu3QDg4ChtTLKJOmDVasT7IIsKlxkwXCQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:24:31 GMT
age: 7274
etag: "5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 516776052e5e906ea9f42d25bae5cc85
be4c4d01fc67218e26a3e9d27a2f708e639c9d4b
28e70e38cfad65ad8a7a68ab1dc78747c7013a87b854fc35b163cc5765cd0570
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8460
x-amzn-requestid: 51416479-3854-4f1a-9d86-35e104c57f6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnkHuZIAMF-_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852963-180b323d4a45fa2f29f9b1fc;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3MKambAjrBl64HI6hBuOtNJi3Tj6gxtwH_lOfk0WNX15UnCrAJbNig==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:48:54 GMT
age: 31011
etag: "be4c4d01fc67218e26a3e9d27a2f708e639c9d4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9c40d51052ccf1146708dc17238d8a66
7314055290629428c5b8ca259decd2e0c2b7ef85
a8c840bccff44e8ef700602d9a0c6a6bd5d9fa232dd24e4d022338b4cc21d163
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8C840BCCFF44E8EF700602D9A0C6A6BD5D9FA232DD24E4D022338B4CC21D163"
Last-Modified: Mon, 28 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 29 Nov 2022 12:25:46 GMT
Date: Tue, 29 Nov 2022 06:25:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9c40d51052ccf1146708dc17238d8a66
7314055290629428c5b8ca259decd2e0c2b7ef85
a8c840bccff44e8ef700602d9a0c6a6bd5d9fa232dd24e4d022338b4cc21d163
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8C840BCCFF44E8EF700602D9A0C6A6BD5D9FA232DD24E4D022338B4CC21D163"
Last-Modified: Mon, 28 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21583
Expires: Tue, 29 Nov 2022 12:25:29 GMT
Date: Tue, 29 Nov 2022 06:25:46 GMT
Connection: keep-alive
www.velotextiles.com/system/resource/code/datainput.jsp?owner=1596579000&e=1&w=1280&h=1024&treeid=1001&refer=&pagename=L2luZGV4LmpzcA%3D%3D&newsid=-1
107.178.189.102200 OK 0 B URL HTTP/1.1 www.velotextiles.com/system/resource/code/datainput.jsp?owner=1596579000&e=1&w=1280&h=1024&treeid=1001&refer=&pagename=L2luZGV4LmpzcA%3D%3D&newsid=-1
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /system/resource/code/datainput.jsp?owner=1596579000&e=1&w=1280&h=1024&treeid=1001&refer=&pagename=L2luZGV4LmpzcA%3D%3D&newsid=-1 HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:25:46 GMT
Content-Type: image/gif; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cfrom: index
x-powered-by: java
Server: index
Set-Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l; path=/
Last-Modified: Tue, 29 Nov 2022 06:25:46 GMT
Pragma: cache
Expires: Thu, 01 Dec 2022 06:25:46 GMT
Cache-Control: max-age=172800
www.velotextiles.com/system/resource/getToken.jsp?mode=10
107.178.189.102200 OK 20 B URL HTTP/1.1 www.velotextiles.com/system/resource/getToken.jsp?mode=10
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert fortinet Malware
GET /system/resource/getToken.jsp?mode=10 HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Authorization: preview
owner: 1581564523
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:25:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
cfrom: index
x-powered-by: java
Server: index
Last-Modified: Tue, 29 Nov 2022 06:25:47 GMT
Pragma: cache
Expires: Thu, 01 Dec 2022 06:25:47 GMT
Cache-Control: max-age=172800
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 1ce77e692a326c53b37f25f07995fd13
f80cd2dd03bc25b2816c698952f1139948d7cf2d
c59c1af574a4ff10296d5886d33b3077fa49a4c5f2de143c606420c8cf0d3752
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:25:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 03 Dec 2022 02:52:49 GMT
ETag: "f80cd2dd03bc25b2816c698952f1139948d7cf2d"
Last-Modified: Tue, 29 Nov 2022 02:52:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2388
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771944a33cdafac0-OSL
hyqy888.com/img/bet400-200.gif
122.10.26.207200 OK 54 kB URL HTTP/2 hyqy888.com/img/bet400-200.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 400 x 200\012- data
Hash 052b8c5091c8fb57b11798d4040c5bae
a3cc6b15beb61ffda8d7aaf016e90ab9c1e320ec
a2af6b664bf4e392bbc3252b3f93de16a920e1c5fbdafced652ae02e5694c4f5
GET /img/bet400-200.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:46 GMT
content-type: image/gif
content-length: 53939
last-modified: Fri, 18 Nov 2022 19:33:21 GMT
etag: "6377de01-d2b3"
expires: Thu, 29 Dec 2022 06:25:46 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/vns400-200.gif
122.10.26.207200 OK 50 kB URL HTTP/2 hyqy888.com/img/vns400-200.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 400 x 200\012- data
Hash 0f33e17161aee95f372dc22dfebf43a6
310e9b2aa6ce1cd9ff63c55c702d959089603690
8f57a4c4d114d3b87cb8ef3b9ebf228e1444afd4af257b2fe3732a28b33c82be
GET /img/vns400-200.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:46 GMT
content-type: image/gif
content-length: 50307
last-modified: Fri, 18 Nov 2022 19:33:23 GMT
etag: "6377de03-c483"
expires: Thu, 29 Dec 2022 06:25:46 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/xjs400-200.gif
122.10.26.207200 OK 45 kB URL HTTP/2 hyqy888.com/img/xjs400-200.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 400 x 200\012- data
Hash c0a55936976ed8690aca73cbc447279f
e141728ed93d3bd062eb946cd8822e846bb5e14a
4dd94b19e89987babe9c602e088c0253400b74f68dcd5a3573d0b1006360df8a
GET /img/xjs400-200.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:46 GMT
content-type: image/gif
content-length: 45270
last-modified: Fri, 18 Nov 2022 19:33:22 GMT
etag: "6377de02-b0d6"
expires: Thu, 29 Dec 2022 06:25:46 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.velotextiles.com/__local/2/3A/E0/5DC26BF947D6CCB4154F6E08B68_75C342FB_5AA7F.png
107.178.189.102200 OK 371 kB URL HTTP/1.1 www.velotextiles.com/__local/2/3A/E0/5DC26BF947D6CCB4154F6E08B68_75C342FB_5AA7F.png
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 440 x 330, 8-bit/color RGBA, non-interlaced\012- data
Size 371 kB (371327 bytes)
Hash 23ae05dc26bf947d6ccb4154f6e08b68
9ab1b83009d88288fcbe3b58d4bc2bdc00e91cc6
428f945d8e7ba3fa94ca6cdd17def55a4c6c2da690427c9dd5ba83e60ceb2910
GET /__local/2/3A/E0/5DC26BF947D6CCB4154F6E08B68_75C342FB_5AA7F.png HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:47 GMT
Content-Type: image/png
Content-Length: 371327
Last-Modified: Sun, 13 Nov 2022 06:50:11 GMT
Connection: keep-alive
ETag: "637093a3-5aa7f"
Expires: Thu, 29 Dec 2022 06:25:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/__local/9/70/23/60F2F3C76B644B02476BD2E37B1_E18E1D9E_643BC.png
107.178.189.102200 OK 411 kB URL HTTP/1.1 www.velotextiles.com/__local/9/70/23/60F2F3C76B644B02476BD2E37B1_E18E1D9E_643BC.png
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 668 x 508, 8-bit/color RGB, non-interlaced\012- data
Size 411 kB (410556 bytes)
Hash 9702360f2f3c76b644b02476bd2e37b1
f7c7cd023cc0b1638e9a7a20b37944d7b1cf84ce
71b5528164588e727c2e8b5601d8f532e891a29a141c32c480f64f908a44b4af
GET /__local/9/70/23/60F2F3C76B644B02476BD2E37B1_E18E1D9E_643BC.png HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:47 GMT
Content-Type: image/png
Content-Length: 410556
Last-Modified: Sun, 13 Nov 2022 06:50:17 GMT
Connection: keep-alive
ETag: "637093a9-643bc"
Expires: Thu, 29 Dec 2022 06:25:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/dfiles/7152/wxy/images/5.jpg
107.178.189.102200 OK 805 B URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/5.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 164x55, components 3\012- data
Hash 15eb101ca364340a13663eb27243c7fa
fdf19938627d23952a47f672f4987d901e50e020
993d1ad80511ca754e76edf6e2f88f7160e141cd541a87c1cdcbb105be0aa440
GET /dfiles/7152/wxy/images/5.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:48 GMT
Content-Type: image/jpeg
Content-Length: 805
Last-Modified: Wed, 02 Nov 2022 05:18:53 GMT
Connection: keep-alive
ETag: "6361fdbd-325"
Expires: Thu, 29 Dec 2022 06:25:48 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/__local/B/73/3A/BB98F2635E2A0802B3EE62C47CE_0B7E5628_6C772.jpg
107.178.189.102200 OK 444 kB URL HTTP/1.1 www.velotextiles.com/__local/B/73/3A/BB98F2635E2A0802B3EE62C47CE_0B7E5628_6C772.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 2048x1536, components 3\012- data
Size 444 kB (444274 bytes)
Hash b733abb98f2635e2a0802b3ee62c47ce
2c1ee2ba5e784c3e44cc1da348e6d3db6b6caf8f
c3d82b95cf553fecb5091eb962a742aad85e40e1549ae275e61333a5009d714b
GET /__local/B/73/3A/BB98F2635E2A0802B3EE62C47CE_0B7E5628_6C772.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:47 GMT
Content-Type: image/jpeg
Content-Length: 444274
Last-Modified: Sun, 13 Nov 2022 06:50:10 GMT
Connection: keep-alive
ETag: "637093a2-6c772"
Expires: Thu, 29 Dec 2022 06:25:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hyqy888.com/img/amsjb400-200.gif
122.10.26.207200 OK 53 kB URL HTTP/2 hyqy888.com/img/amsjb400-200.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 400 x 200\012- data
Hash 37884786e723cc6029045dd6017e0f27
786d46abb16be124cbd31ea14476e920cb10e2bd
bb10ed3c79cce537ec230df6f7fb0dc1f636f9e79192e82189fcd7c15722c541
GET /img/amsjb400-200.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 52988
last-modified: Mon, 28 Nov 2022 09:37:05 GMT
etag: "63848141-cefc"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/desc.png
122.10.26.207200 OK 3.4 kB IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 117929ba2add8ce9e7a9d8941ec4f3ae
5dcefdebde5ef40f7c5d7871966f253edffa4f5d
ee80f0631c2fd4977be651285cc30abaf0b0dfe2d63ce01bdc50e0774af324fa
GET /img/desc.png HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/css/pc.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:48 GMT
content-type: image/png
content-length: 3358
last-modified: Fri, 23 Apr 2021 08:09:14 GMT
etag: "608280aa-d1e"
expires: Thu, 29 Dec 2022 06:25:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/bt.png
122.10.26.207200 OK 9.0 kB IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type PNG image data, 442 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash 0041fd15fa2c2fbe46e35ba6e21d6af3
63b1ab4125572690429260a6d891c77aad3d5eb1
2c0696c3d2939a87ddf3718ea3618f7da24164c4094d284b741157eb5465d1ff
GET /img/bt.png HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/css/pc.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:48 GMT
content-type: image/png
content-length: 9049
last-modified: Fri, 23 Apr 2021 08:09:14 GMT
etag: "608280aa-2359"
expires: Thu, 29 Dec 2022 06:25:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/footer_bg.png
122.10.26.207200 OK 13 kB URL HTTP/2 hyqy888.com/img/footer_bg.png
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type PNG image data, 1920 x 50, 8-bit/color RGB, non-interlaced\012- data
Hash f91050a67008bf4e42e210ea1ecd190c
5ef31efff217391c2be4a22f0c5a2067035d3c2f
ef763a6f98a1e932bf21fe9caec33b678fdf86065caa9d86b32e1fbdbe0628b6
GET /img/footer_bg.png HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/css/pc.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:48 GMT
content-type: image/png
content-length: 12666
last-modified: Fri, 23 Apr 2021 08:09:14 GMT
etag: "608280aa-317a"
expires: Thu, 29 Dec 2022 06:25:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/365huangguan.gif
122.10.26.207200 OK 42 kB URL HTTP/2 hyqy888.com/img/365huangguan.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 1100 x 150\012- data
Hash 5820266867823260542afbaa3ad67ee0
7ece77a15c789215c0f3e05014b14dcacc7031da
b4175dc7085af1523f1adf5eb976dd295d44b4f86a355d72ac241cda18cd04f8
GET /img/365huangguan.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 41923
last-modified: Fri, 23 Apr 2021 08:09:14 GMT
etag: "608280aa-a3c3"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/new.gif
122.10.26.207200 OK 1.1 kB IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 24 x 17\012- data
Hash 5b36bcd8829ff4b6b0956afeb4d38d71
0c6fa047cb5d24c38f1fce6c311037d143d39201
ed5624778fdf3dc135f405982d480a6fa60b80475402c8a48bb59a616306f32f
GET /img/new.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 1057
last-modified: Sat, 09 Nov 2019 09:11:58 GMT
etag: "5dc682de-421"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/tj.png
122.10.26.207200 OK 6.2 kB IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type PNG image data, 60 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 79af7f47f8e045a26f4214da22c0cffa
7cd55d6971cee6db9bf725f5539f6d9224894a8b
ada0e1f894824910fff33f91882fd33da4d932ef96433bbb4f5eea410cdb847c
GET /img/tj.png HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/png
content-length: 6212
last-modified: Sat, 09 Nov 2019 09:11:58 GMT
etag: "5dc682de-1844"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/hot.gif
122.10.26.207200 OK 296 B IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 28 x 11\012- data
Hash dbc13a5363dc43d5591a526debf5289b
02791324741f225fc48b451f33396203aec861cb
c6c0853d115feb9ed8f5f41a7e5d86eb041852498edf245f6d83a4136323393e
GET /img/hot.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 296
last-modified: Fri, 23 Apr 2021 08:09:14 GMT
etag: "608280aa-128"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/bet1000-300.gif
122.10.26.207200 OK 114 kB URL HTTP/2 hyqy888.com/img/bet1000-300.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 1000 x 300\012- data
Size 114 kB (113867 bytes)
Hash 11a8c91efdd3fb8624a97636047b957b
85542408219ebd02b249ae9d468f28ea29742156
baa1dab1e289dc6e144f6eefc1da54f46da84af3b2324be17fbb6b0abb21a572
GET /img/bet1000-300.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:46 GMT
content-type: image/gif
content-length: 113867
last-modified: Fri, 18 Nov 2022 19:33:22 GMT
etag: "6377de02-1bccb"
expires: Thu, 29 Dec 2022 06:25:46 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/xpj400-200.gif
122.10.26.207200 OK 83 kB URL HTTP/2 hyqy888.com/img/xpj400-200.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 400 x 200\012- data
Hash ee0e067a00c30ab97decaa0e9dd52e45
eec1860f1c336e3477be21a610133e6f1a8e2635
9708193fb57117be88961946513e24dfb00a94ecc7ae5c50dca962d6ef3d8b6f
GET /img/xpj400-200.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:46 GMT
content-type: image/gif
content-length: 82932
last-modified: Fri, 18 Nov 2022 19:33:24 GMT
etag: "6377de04-143f4"
expires: Thu, 29 Dec 2022 06:25:46 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/WHC400x200.gif
122.10.26.207200 OK 71 kB URL HTTP/2 hyqy888.com/img/WHC400x200.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 400 x 200\012- data
Hash 0620a3384e1d066d2398ba93b0e867cc
017297e61417aae417139aca593d453c1db83946
09f3401e0b770f5a10a36e95dc7ffcaa64b3f2ca13215f03f14be5e26ef72a69
GET /img/WHC400x200.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 71420
last-modified: Fri, 24 Sep 2021 08:52:16 GMT
etag: "614d91c0-116fc"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/315wnswap.gif
122.10.26.207200 OK 84 kB URL HTTP/2 hyqy888.com/img/315wnswap.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 400 x 196\012- data
Hash 7fba987faf8e24192c1dc2f4fcca7a0e
b28005e9823868ea3db639f865c8ed1600a67dc3
009afb5fe18464aef36dc0408ed79e05bf15f76a779469d4d94e62be9cec6c37
GET /img/315wnswap.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 84284
last-modified: Fri, 23 Apr 2021 08:09:14 GMT
etag: "608280aa-1493c"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/js/toMobile.js
122.10.26.207200 OK 1.1 MB URL HTTP/2 hyqy888.com/js/toMobile.js
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
Size 1.1 MB (1147336 bytes)
Hash 9c3888b3163cf3020f75b1ffcce4b50c
e22c9f054c25c176de1fe425b438405deb9bacbb
e2f812c57464bcc9bacfc359d5bf1e8ffcb94acf8393b7b4ad0d25dd5839f8dd
GET /js/toMobile.js HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:46 GMT
content-type: application/javascript
last-modified: Sat, 09 Nov 2019 09:11:58 GMT
vary: Accept-Encoding
etag: W/"5dc682de-9bc"
expires: Tue, 29 Nov 2022 18:25:46 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.velotextiles.com/__local/5/18/1F/3F149583FFE14C701ADF8A2BB96_F371E09E_1A9C9D.png
107.178.189.102200 OK 1.7 MB URL HTTP/1.1 www.velotextiles.com/__local/5/18/1F/3F149583FFE14C701ADF8A2BB96_F371E09E_1A9C9D.png
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 1084 x 724, 8-bit/color RGBA, non-interlaced\012- data
Size 1.7 MB (1744029 bytes)
Hash 5181f3f149583ffe14c701adf8a2bb96
57cbba6b2fb5a684da0d0c8d7c5e6b670f6b415f
2748bb0578634c975231838d32fa99d8b54c229fba9f3ed53c74fdbc4f11caf1
GET /__local/5/18/1F/3F149583FFE14C701ADF8A2BB96_F371E09E_1A9C9D.png HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:47 GMT
Content-Type: image/png
Content-Length: 1744029
Last-Modified: Sun, 13 Nov 2022 06:50:16 GMT
Connection: keep-alive
ETag: "637093a8-1a9c9d"
Expires: Thu, 29 Dec 2022 06:25:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/images/6-24-1.jpg
107.178.189.102200 OK 911 kB URL HTTP/1.1 www.velotextiles.com/images/6-24-1.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x500, components 3\012- data
Size 911 kB (910659 bytes)
Hash af3794aa7d7ed89cf71db4dcce2550b3
8938450abfb843bb6116f187ebdbc467dacdcced
7c7447c85f58f4326c3480d32f1c40fe4e9e5f4452d0fd51ed5144e48bf54bde
GET /images/6-24-1.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:48 GMT
Content-Type: image/jpeg
Content-Length: 910659
Last-Modified: Wed, 02 Nov 2022 05:18:57 GMT
Connection: keep-alive
ETag: "6361fdc1-de543"
Expires: Thu, 29 Dec 2022 06:25:48 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hyqy888.com/css/pc.css
122.10.26.207200 OK 2.1 kB IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash b79f0af891b3660f623f73ff4fdc69d2
8672a0873375463cf86e35665557957d3bad2ed3
1e18e722a4f9ca7a95c264646b1984086c8283d1fe3149117dc2a2ac92d0b140
GET /css/pc.css HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:46 GMT
content-type: text/css
last-modified: Sat, 01 May 2021 05:32:26 GMT
vary: Accept-Encoding
etag: W/"608ce7ea-1c92"
expires: Tue, 29 Nov 2022 18:25:46 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?0bc0c9a92d65983b91077aebea980bd5
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?0bc0c9a92d65983b91077aebea980bd5
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash e0f0ca5970d95d4dc70586946f46ceb0
e8b718e94a36da5c24b5134cec89128b9202185a
753ff0702964458bda4101e9e23760c9e485586c62eeec380e64d698be0529e9
GET /hm.js?0bc0c9a92d65983b91077aebea980bd5 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.velotextiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Tue, 29 Nov 2022 06:25:48 GMT
Etag: d569fb4ab25fbdbc3f12d5edd87acc41
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=90FE65D071E9CEB8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
push.zhanzhang.baidu.com/push.js
180.101.212.103200 OK 227 B URL HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 180.101.212.103:0
ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network
File type ASCII text, with no line terminators
Hash e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Tue, 29 Nov 2022 06:25:48 GMT
Etag: "4078521116"
Expires: Wed, 29 Nov 2023 06:25:48 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=1988B80D626B8510B6542550AC790147:FG=1; max-age=31536000; expires=Wed, 29-Nov-23 06:25:48 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
www.velotextiles.com/__local/1/47/91/74CCA8C29FD48969BA8437B3498_32D2EF10_9854B.png
107.178.189.102200 OK 624 kB URL HTTP/1.1 www.velotextiles.com/__local/1/47/91/74CCA8C29FD48969BA8437B3498_32D2EF10_9854B.png
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 848 x 480, 8-bit/color RGBA, non-interlaced\012- data
Size 624 kB (623947 bytes)
Hash 1479174cca8c29fd48969ba8437b3498
bbf147b885f0e3090499861a3a3ab9426dd4fa52
0ccbd86214aaebc577d615fe4ed4300aef252df3ead5080450834b7c37405ecd
GET /__local/1/47/91/74CCA8C29FD48969BA8437B3498_32D2EF10_9854B.png HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:47 GMT
Content-Type: image/png
Content-Length: 623947
Last-Modified: Sun, 13 Nov 2022 06:50:15 GMT
Connection: keep-alive
ETag: "637093a7-9854b"
Expires: Thu, 29 Dec 2022 06:25:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/dfiles/7152/wxy/images/18.png
107.178.189.102200 OK 1.1 kB URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/18.png
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 200 x 304, 8-bit/color RGBA, non-interlaced\012- data
Hash a72ec6c91a8e68fbd36a0c813ce99758
6417f97b51e67158f40b369916888dd37eb210ff
e29bf18ae43e9af6a8489ad735c09c4d6a25ffd3b46dd2f4081a392e803637c9
GET /dfiles/7152/wxy/images/18.png HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:49 GMT
Content-Type: image/png
Content-Length: 1092
Last-Modified: Wed, 02 Nov 2022 05:19:02 GMT
Connection: keep-alive
ETag: "6361fdc6-444"
Expires: Thu, 29 Dec 2022 06:25:49 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hm.baidu.com/hm.js?c09621da62472c4b0293dab6de24a071
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?c09621da62472c4b0293dab6de24a071
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash 957e20cc74ffbce7d2b073929751dc28
6559c18172fc982d460dc3a31bcd801938e07f24
d65d1be493ed2ef8ef7145f151a48b6a5be137497b0f1a6ccf7b3d0283a3a1c8
GET /hm.js?c09621da62472c4b0293dab6de24a071 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11254
Content-Type: application/javascript
Date: Tue, 29 Nov 2022 06:25:48 GMT
Etag: 8c01e2de3cef8a0e3a6f54495bbfb1e4
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D7DB94F851285A48; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hyqy888.com/css/swiper-4.1.6.min.css
122.10.26.207200 OK 270 kB URL HTTP/2 hyqy888.com/css/swiper-4.1.6.min.css
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
Size 270 kB (269794 bytes)
Hash 7c1b8c14d552c0a775239e31a22dad24
5cdbc3d87c416fccaaa871261ac76c0a94e20d40
937f28bb50eda6a9c0797a41de39b70a42b4c3b8b78d3643c327a8df7d7f38b1
GET /css/swiper-4.1.6.min.css HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:46 GMT
content-type: text/css
last-modified: Sat, 09 Nov 2019 09:11:58 GMT
vary: Accept-Encoding
etag: W/"5dc682de-4caf"
expires: Tue, 29 Nov 2022 18:25:46 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1758466549&si=0bc0c9a92d65983b91077aebea980bd5&v=1.3.0&lv=1&sn=2418&r=0&ww=1280&u=http%3A%2F%2Fwww.velotextiles.com%2F&tt=%E6%AD%A3%E8%A7%84%E4%B9%B0%E7%90%83%E7%9A%84%E7%BD%91%E7%AB%99(%E4%B8%AD%E5%9B%BD)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1758466549&si=0bc0c9a92d65983b91077aebea980bd5&v=1.3.0&lv=1&sn=2418&r=0&ww=1280&u=http%3A%2F%2Fwww.velotextiles.com%2F&tt=%E6%AD%A3%E8%A7%84%E4%B9%B0%E7%90%83%E7%9A%84%E7%BD%91%E7%AB%99(%E4%B8%AD%E5%9B%BD)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1758466549&si=0bc0c9a92d65983b91077aebea980bd5&v=1.3.0&lv=1&sn=2418&r=0&ww=1280&u=http%3A%2F%2Fwww.velotextiles.com%2F&tt=%E6%AD%A3%E8%A7%84%E4%B9%B0%E7%90%83%E7%9A%84%E7%BD%91%E7%AB%99(%E4%B8%AD%E5%9B%BD)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.velotextiles.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 29 Nov 2022 06:25:49 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=4094697DBF14D26F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.velotextiles.com/__local/5/A8/99/B18A85912599352F6730B775128_0A7DA5AB_7E2B.jpg
107.178.189.102200 OK 32 kB URL HTTP/1.1 www.velotextiles.com/__local/5/A8/99/B18A85912599352F6730B775128_0A7DA5AB_7E2B.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 313x214, components 3\012- data
Hash 5a899b18a85912599352f6730b775128
99092f6586d3c622e8e67f45027eb693e27b58e2
e24dc60401cb7c875f72e31528cee75c6af12b0c0646f7773d8a7d0b908801ed
GET /__local/5/A8/99/B18A85912599352F6730B775128_0A7DA5AB_7E2B.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:49 GMT
Content-Type: image/jpeg
Content-Length: 32299
Last-Modified: Wed, 02 Nov 2022 05:18:59 GMT
Connection: keep-alive
ETag: "6361fdc3-7e2b"
Expires: Thu, 29 Dec 2022 06:25:49 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/__local/3/26/95/5E0E56F73A06947C2FF206DE557_0BD920CB_9B2B.jpg
107.178.189.102200 OK 40 kB URL HTTP/1.1 www.velotextiles.com/__local/3/26/95/5E0E56F73A06947C2FF206DE557_0BD920CB_9B2B.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 476x329, components 3\012- data
Hash 326955e0e56f73a06947c2ff206de557
ff80de2e1e6a8a2f7db7027000bd5c93f70c6b72
d2f6bb4d14869c052ea8ddf601f84418ee98fbb72dbe116cc040672864664b63
GET /__local/3/26/95/5E0E56F73A06947C2FF206DE557_0BD920CB_9B2B.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:49 GMT
Content-Type: image/jpeg
Content-Length: 39723
Last-Modified: Wed, 02 Nov 2022 05:18:59 GMT
Connection: keep-alive
ETag: "6361fdc3-9b2b"
Expires: Thu, 29 Dec 2022 06:25:49 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1805877640&si=c09621da62472c4b0293dab6de24a071&su=http%3A%2F%2Fwww.velotextiles.com%2F&v=1.3.0&lv=1&sn=2419&r=0&ww=1280&u=https%3A%2F%2Fhyqy888.com%2F%3Fid%3D2&tt=%E8%AF%84_%E5%8D%9A--%E6%AC%A2%E8%BF%8E%E6%82%A8--
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1805877640&si=c09621da62472c4b0293dab6de24a071&su=http%3A%2F%2Fwww.velotextiles.com%2F&v=1.3.0&lv=1&sn=2419&r=0&ww=1280&u=https%3A%2F%2Fhyqy888.com%2F%3Fid%3D2&tt=%E8%AF%84_%E5%8D%9A--%E6%AC%A2%E8%BF%8E%E6%82%A8--
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1805877640&si=c09621da62472c4b0293dab6de24a071&su=http%3A%2F%2Fwww.velotextiles.com%2F&v=1.3.0&lv=1&sn=2419&r=0&ww=1280&u=https%3A%2F%2Fhyqy888.com%2F%3Fid%3D2&tt=%E8%AF%84_%E5%8D%9A--%E6%AC%A2%E8%BF%8E%E6%82%A8-- HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 29 Nov 2022 06:25:49 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=0F36594776028264; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.velotextiles.com/dfiles/7152/wxy/images/45.png
107.178.189.102200 OK 0 B URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/45.png
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dfiles/7152/wxy/images/45.png HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/dfiles/7152/wxy/js/lanrenzhijia.css
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:25:49 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
cfrom: img
x-powered-by: java
Server: img
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
www.velotextiles.com/__local/8/82/F0/5C7754AD3660D067C891A7BFA35_0F21471A_506D3C.png
107.178.189.102200 OK 5.3 MB URL HTTP/1.1 www.velotextiles.com/__local/8/82/F0/5C7754AD3660D067C891A7BFA35_0F21471A_506D3C.png
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type PNG image data, 2048 x 1365, 8-bit/color RGBA, non-interlaced\012- data
Size 5.3 MB (5270844 bytes)
Hash 882f05c7754ad3660d067c891a7bfa35
0c5196f32ff787b669046b2853fcaf596e718efc
3b84402eae6157ecbd7a01994f01e8eadd4ac788be072f51ae7b8a7180176251
GET /__local/8/82/F0/5C7754AD3660D067C891A7BFA35_0F21471A_506D3C.png HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:47 GMT
Content-Type: image/png
Content-Length: 5270844
Last-Modified: Wed, 02 Nov 2022 05:26:35 GMT
Connection: keep-alive
ETag: "6361ff8b-506d3c"
Expires: Thu, 29 Dec 2022 06:25:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/__local/2/9C/7B/A02356EF139AB0A6D7D733D11AB_9696DFF0_3DF93.jpg?e=.jpg
107.178.189.102200 OK 254 kB URL HTTP/1.1 www.velotextiles.com/__local/2/9C/7B/A02356EF139AB0A6D7D733D11AB_9696DFF0_3DF93.jpg?e=.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, model=OPPO R15, height=3456, manufacturer=OPPO, orientation=[*0*], datetime=2019:11:16 16:46:47, width=4608], progressive, precision 8, 1920x1440, components 3\012- data
Size 254 kB (253843 bytes)
Hash 29c7ba02356ef139ab0a6d7d733d11ab
7f6707d77d4b63f364ba3ba7c4785294ba288c2f
2d1c68972d9d510ce9412425a8ac6e4c2cb17484f60d872a0b28529152efc2f3
GET /__local/2/9C/7B/A02356EF139AB0A6D7D733D11AB_9696DFF0_3DF93.jpg?e=.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:49 GMT
Content-Type: image/jpeg
Content-Length: 253843
Last-Modified: Wed, 02 Nov 2022 05:19:01 GMT
Connection: keep-alive
ETag: "6361fdc5-3df93"
Expires: Thu, 29 Dec 2022 06:25:49 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/__local/F/75/88/15C1D10E725C584F5E48718A67A_BF9E1225_6F38.jpg
107.178.189.102200 OK 28 kB URL HTTP/1.1 www.velotextiles.com/__local/F/75/88/15C1D10E725C584F5E48718A67A_BF9E1225_6F38.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 311x214, components 3\012- data
Hash f758815c1d10e725c584f5e48718a67a
344df34ea27c6a46faf71fe532b5d38b37689bb2
be9ba6c11cae63f08b4299cb2e1d1735b4aa94ad2d105471ba6be9b92cafe0d4
GET /__local/F/75/88/15C1D10E725C584F5E48718A67A_BF9E1225_6F38.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:49 GMT
Content-Type: image/jpeg
Content-Length: 28472
Last-Modified: Wed, 02 Nov 2022 05:18:58 GMT
Connection: keep-alive
ETag: "6361fdc2-6f38"
Expires: Thu, 29 Dec 2022 06:25:49 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/dfiles/7152/wxy/images/dot.png
107.178.189.102200 OK 0 B URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/dot.png
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dfiles/7152/wxy/images/dot.png HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/dfiles/7152/wxy/js/lanrenzhijia.css
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:25:49 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
cfrom: img
x-powered-by: java
Server: img
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
www.velotextiles.com/dfiles/7152/wxy/images/44.png
107.178.189.102200 OK 0 B URL HTTP/1.1 www.velotextiles.com/dfiles/7152/wxy/images/44.png
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dfiles/7152/wxy/images/44.png HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/dfiles/7152/wxy/js/lanrenzhijia.css
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:25:50 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
cfrom: img
x-powered-by: java
Server: img
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
www.velotextiles.com/__local/B/A3/09/B589CB532BB0CB1477160695B2E_452BC241_E89C7.jpg?e=.jpg
107.178.189.102200 OK 953 kB URL HTTP/1.1 www.velotextiles.com/__local/B/A3/09/B589CB532BB0CB1477160695B2E_452BC241_E89C7.jpg?e=.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 3968x2976, components 3\012- data
Size 953 kB (952775 bytes)
Hash ba309b589cb532bb0cb1477160695b2e
237bbeadecc34f0b63955f77e6bb7a53e3b37ed3
f12b1e012bfec9a819cfdd4143351cd8f4adcc22561b4509a6900d85ca4edd10
GET /__local/B/A3/09/B589CB532BB0CB1477160695B2E_452BC241_E89C7.jpg?e=.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:50 GMT
Content-Type: image/jpeg
Content-Length: 952775
Last-Modified: Wed, 02 Nov 2022 05:19:05 GMT
Connection: keep-alive
ETag: "6361fdc9-e89c7"
Expires: Thu, 29 Dec 2022 06:25:50 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hyqy888.com/img/nbwnsr.gif
122.10.26.207200 OK 96 kB URL HTTP/2 hyqy888.com/img/nbwnsr.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 400 x 200\012- data
Hash 1a397d438f927ab1f118e7c9c55816e6
402ce2a771d8b12db59002e21d24e1442a948682
5ff0b66f505fbaba68cae6e50180d4aeed5e0e7ed508704cddbdeee1680ba372
GET /img/nbwnsr.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 95785
last-modified: Sat, 09 Nov 2019 09:11:58 GMT
etag: "5dc682de-17629"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/fangkuaiydyb.gif
122.10.26.207200 OK 172 kB URL HTTP/2 hyqy888.com/img/fangkuaiydyb.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 400 x 200\012- data
Size 172 kB (171718 bytes)
Hash e7a72684b72adf1d3dd42438ffd9a897
e64f28843ac057daa2acb5bb8d0b4760cf5ae311
df020e4b2670d1989cc8d9485945033025ac48e31b2aabfd888b831fac263347
GET /img/fangkuaiydyb.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 171718
last-modified: Mon, 17 Jan 2022 04:26:04 GMT
etag: "61e4efdc-29ec6"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
api.share.baidu.com/s.gif?l=http://www.velotextiles.com/
182.61.201.94200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.velotextiles.com/
IP 182.61.201.94:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.velotextiles.com/ HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Tue, 29 Nov 2022 06:25:50 GMT
www.velotextiles.com/favicon.ico
107.178.189.102200 OK 1.2 kB URL HTTP/1.1 www.velotextiles.com/favicon.ico
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash c4d7185c0efc7f5db01d4965319f4211
9367081a06df8bbb23391db248f028b8156c7243
b7e419594a9ebbf81b3841f5e9a5ce1a622df7533d64716bf07a2436ed9887d4
GET /favicon.ico HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l; Hm_lvt_0bc0c9a92d65983b91077aebea980bd5=1669703148; Hm_lpvt_0bc0c9a92d65983b91077aebea980bd5=1669703148
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:51 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Wed, 02 Nov 2022 05:15:00 GMT
Connection: keep-alive
ETag: "6361fcd4-47e"
Expires: Thu, 29 Dec 2022 06:25:51 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/__local/7/E8/00/D0D00FB8C839C176CF253E5E64B_184A578D_26F7F8.jpg?e=.jpg
107.178.189.102200 OK 2.6 MB URL HTTP/1.1 www.velotextiles.com/__local/7/E8/00/D0D00FB8C839C176CF253E5E64B_184A578D_26F7F8.jpg?e=.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=13, manufacturer=vivo, height=3456, orientation=upper-left, datetime=2019:11:16 14:31:44, yresolution=222, xresolution=230, model=vivo Y7s, software=MediaTek Camera Application, description=, resolutionunit=2, width=4608], baseline, precision 8, 4608x3456, components 3\012- data
Size 2.6 MB (2553848 bytes)
Hash 7e800d0d00fb8c839c176cf253e5e64b
33437aaef9c536204b1be518056d0f6c713b67a0
68d78070b8f5a227d1c0d10990ccd1eab222fac96f9832cae2a54fbe45ebd0be
GET /__local/7/E8/00/D0D00FB8C839C176CF253E5E64B_184A578D_26F7F8.jpg?e=.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:50 GMT
Content-Type: image/jpeg
Content-Length: 2553848
Last-Modified: Wed, 02 Nov 2022 05:19:08 GMT
Connection: keep-alive
ETag: "6361fdcc-26f7f8"
Expires: Thu, 29 Dec 2022 06:25:50 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.velotextiles.com/__local/7/B0/24/0AB851F225E684E734079BA9432_F79DE223_2A588B.jpg?e=.jpg
107.178.189.102200 OK 2.8 MB URL HTTP/1.1 www.velotextiles.com/__local/7/B0/24/0AB851F225E684E734079BA9432_F79DE223_2A588B.jpg?e=.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=2976, bps=0, manufacturer=HUAWEI, model=BLA-AL00, orientation=[*0*], xresolution=212, yresolution=220, resolutionunit=2, software=BLA-AL00 9.1.0.329(C00E320R1P1), datetime=2019:11:15 18:59:56, GPS-Data, width=3968], baseline, precision 8, 3968x2976, components 3\012- data
Size 2.8 MB (2775179 bytes)
Hash 7b0240ab851f225e684e734079ba9432
20d031aa92495475b4f2a4d04ee53f4d68dd77de
20aa093c0254ad3081f298cd606d14604972f9519186298c4596bb98c22de597
GET /__local/7/B0/24/0AB851F225E684E734079BA9432_F79DE223_2A588B.jpg?e=.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:49 GMT
Content-Type: image/jpeg
Content-Length: 2775179
Last-Modified: Wed, 02 Nov 2022 05:19:06 GMT
Connection: keep-alive
ETag: "6361fdca-2a588b"
Expires: Thu, 29 Dec 2022 06:25:49 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hyqy888.com/js/jsonPC.js
122.10.26.207200 OK 0 B IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /js/jsonPC.js HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:46 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 10:03:58 GMT
vary: Accept-Encoding
etag: W/"6384878e-b68"
expires: Tue, 29 Nov 2022 18:25:46 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hyqy888.com/img/hg400-200.gif
122.10.26.207200 OK 0 B URL HTTP/2 hyqy888.com/img/hg400-200.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /img/hg400-200.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 240745
last-modified: Sat, 18 Jun 2022 10:04:17 GMT
etag: "62ada321-3ac69"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/js/swiper-4.1.6.min.js
122.10.26.207200 OK 0 B URL HTTP/2 hyqy888.com/js/swiper-4.1.6.min.js
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /js/swiper-4.1.6.min.js HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: application/javascript
last-modified: Sat, 09 Nov 2019 09:11:58 GMT
vary: Accept-Encoding
etag: W/"5dc682de-1cdc2"
expires: Tue, 29 Nov 2022 18:25:47 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hyqy888.com/thlm_fun.js
122.10.26.207200 OK 0 B IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /thlm_fun.js HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.velotextiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:46 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 07:09:47 GMT
vary: Accept-Encoding
etag: W/"637c75bb-e5f"
expires: Tue, 29 Nov 2022 18:25:46 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hyqy888.com/img/tycBanner.gif
122.10.26.207200 OK 0 B URL HTTP/2 hyqy888.com/img/tycBanner.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /img/tycBanner.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 494695
last-modified: Fri, 23 Apr 2021 09:50:20 GMT
etag: "6082985c-78c67"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.velotextiles.com/__local/7/D7/94/20E19621148BAAC40DFBE727157_632A4D1C_15E009.jpg?e=.jpg
107.178.189.102200 OK 0 B URL HTTP/1.1 www.velotextiles.com/__local/7/D7/94/20E19621148BAAC40DFBE727157_632A4D1C_15E009.jpg?e=.jpg
IP 107.178.189.102:0
ASN #26658 HENGTONG-IDC-LLC
GET /__local/7/D7/94/20E19621148BAAC40DFBE727157_632A4D1C_15E009.jpg?e=.jpg HTTP/1.1
Host: www.velotextiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.velotextiles.com/
Cookie: PHPSESSID=rpoj41or6j7fhlnnk36utn9t4l
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 06:25:50 GMT
Content-Type: image/jpeg
Content-Length: 1433609
Last-Modified: Wed, 02 Nov 2022 05:19:05 GMT
Connection: keep-alive
ETag: "6361fdc9-15e009"
Expires: Thu, 29 Dec 2022 06:25:50 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hyqy888.com/img/6B.png
122.10.26.207200 OK 0 B IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /img/6B.png HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/css/pc.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:48 GMT
content-type: image/png
content-length: 344509
last-modified: Fri, 23 Apr 2021 08:09:14 GMT
etag: "608280aa-541bd"
expires: Thu, 29 Dec 2022 06:25:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/ty400x200.gif
122.10.26.207200 OK 0 B URL HTTP/2 hyqy888.com/img/ty400x200.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /img/ty400x200.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 222765
last-modified: Sun, 20 Nov 2022 14:19:23 GMT
etag: "637a376b-3662d"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/yldc.gif
122.10.26.207200 OK 0 B IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /img/yldc.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 405201
last-modified: Tue, 14 Sep 2021 07:34:10 GMT
etag: "61405072-62ed1"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/js/jquery-1.11.0.js
122.10.26.207200 OK 0 B URL HTTP/2 hyqy888.com/js/jquery-1.11.0.js
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /js/jquery-1.11.0.js HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:46 GMT
content-type: application/javascript
last-modified: Sat, 09 Nov 2019 09:11:58 GMT
vary: Accept-Encoding
etag: W/"5dc682de-45140"
expires: Tue, 29 Nov 2022 18:25:46 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hyqy888.com/img/bwinpc335x185.gif
122.10.26.207200 OK 0 B URL HTTP/2 hyqy888.com/img/bwinpc335x185.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /img/bwinpc335x185.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 248521
last-modified: Sat, 12 Jun 2021 10:48:31 GMT
etag: "60c490ff-3cac9"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/bw500x200.gif
122.10.26.207200 OK 0 B URL HTTP/2 hyqy888.com/img/bw500x200.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /img/bw500x200.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 367827
last-modified: Mon, 16 May 2022 05:13:44 GMT
etag: "6281dd88-59cd3"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/wnsr1000x150.gif
122.10.26.207200 OK 0 B URL HTTP/2 hyqy888.com/img/wnsr1000x150.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /img/wnsr1000x150.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 244562
last-modified: Sat, 09 Nov 2019 09:11:58 GMT
etag: "5dc682de-3bb52"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hyqy888.com/img/jsyb1000x150.gif
122.10.26.207200 OK 0 B URL HTTP/2 hyqy888.com/img/jsyb1000x150.gif
IP 122.10.26.207:0
ASN #134548 DXTL Tseung Kwan O Service
GET /img/jsyb1000x150.gif HTTP/1.1
Host: hyqy888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hyqy888.com/?id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:25:47 GMT
content-type: image/gif
content-length: 183104
last-modified: Sat, 09 Nov 2019 09:11:58 GMT
etag: "5dc682de-2cb40"
expires: Thu, 29 Dec 2022 06:25:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2