r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12226
Expires: Thu, 06 Oct 2022 16:26:36 GMT
Date: Thu, 06 Oct 2022 13:02:50 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -GT8pqHPvFOnAB6RZZag1hmvMIp0aa828ypbZOOph671_rMf1v5aqQ==
Age: 76532
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ab7d8709d334de0e46dcb86aabfbff1
f221138a8ad9d0bfa3c054370dcdb363a67dc310
b91d37f606eaf448b9c7dfc05566a11de004ce44503409e1a776288ee2622805
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6345
Expires: Thu, 06 Oct 2022 14:48:35 GMT
Date: Thu, 06 Oct 2022 13:02:50 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PF5QnPNoc/qn1bO4EMQMmiUXehV6Gs6qS/uOq660ieb7IFN4AOn8hhIkgz41xixSJdA3xuvjfJQ=
x-amz-request-id: 1ETZ6B6VY442A9NS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 12:58:45 GMT
age: 245
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 13:02:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
szzboy.com/news/changjianwenti/281.html
115.159.227.198200 OK 5.4 kB URL HTTP/1.1 szzboy.com/news/changjianwenti/281.html
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (313), with CRLF line terminators
Hash ee1af8c04d998828761359af1f021d09
be9a678b4f5cdad741f29c191676a2ae67940559
ec9be639f5ac4c78da99cd82d83b3da0f4b25419750f07b5bef116b194d23c3f
Analyzer Verdict Alert fortinet Phishing
GET /news/changjianwenti/281.html HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 16:05:53 GMT
ETag: "9c432058d4d8d81:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 12:29:41 GMT
Expires: Thu, 06 Oct 2022 12:52:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 524ZcSLZQwhWYGuFUoTPQXr5yvicYSgI9RGro7oCw2k6hDvBAM3ytQ==
Age: 1990
szzboy.com/js/web.js
115.159.227.198200 OK 1.6 kB IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash a9fcacdd5ef535fba5e58ab71606d5b8
01963b12c8f6c889b9af0b6bba223d880b1de887
156835d807d5a6f92d31223bcd466cc5ed513ea7c659928c7ae1fd8e64670779
Analyzer Verdict Alert fortinet Phishing
GET /js/web.js HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:51 GMT
Content-Type: application/x-javascript
Content-Length: 1633
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:40 GMT
Accept-Ranges: bytes
ETag: "9699962ef17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6224
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:02:51 GMT
Last-Modified: Thu, 06 Oct 2022 11:19:07 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.242.32.27101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.242.32.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5DTn+a8qvRpad3HqQ9t43Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lQ8KPhs0OdXr2myLHO13G7Oioso=
js.users.51.la/19671291.js
103.143.19.103200 OK 2.5 kB URL HTTP/1.1 js.users.51.la/19671291.js
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
File type HTML document, ASCII text, with very long lines (5207)
Hash 6e7f7fc8529694e7d0d83099a16a2fcb
446084c65f79fd41aca13bb174a0c0803a72898e
6c9747b4a912ae7d86f60bad58ece9b8e324d56418972f1909f5605dab426ed5
GET /19671291.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/
HTTP/1.1 200 OK
Server: CloudWAF
Date: Thu, 06 Oct 2022 13:02:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=33a283619b76c905a78; path=/
HWWAFSESTIME=1665061369809; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
szzboy.com/css/style.css
115.159.227.198200 OK 26 kB IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash ec8a941f12e5ae72d651414075dc5fb9
f8b6114790a4eb655ac47f09303643d0e14f74d9
5e008e3b61d3131d71837910ef7df0b4b63e458e5eb31c95b898a27160e0d7c7
GET /css/style.css HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:51 GMT
Content-Type: text/css
Content-Length: 26327
Connection: keep-alive
Last-Modified: Thu, 20 Sep 2018 11:12:43 GMT
Accept-Ranges: bytes
ETag: "6c68cdad250d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/css/swiper.min.css
115.159.227.198200 OK 21 kB URL HTTP/1.1 szzboy.com/css/swiper.min.css
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type ASCII text, with very long lines (1467)
Hash 976b40d939bdeddbb7323a4750d93919
a313630b82fe14bd4c8a745003f563386eb9140d
35f838db782f50fbc0234b5838027a2411debc77fd14d0b3d563c4fb8c6cff7f
GET /css/swiper.min.css HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:51 GMT
Content-Type: text/css
Content-Length: 20762
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:31 GMT
Accept-Ranges: bytes
ETag: "b43d7fdee17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/css/font-awesome.min.css
115.159.227.198200 OK 31 kB URL HTTP/1.1 szzboy.com/css/font-awesome.min.css
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /css/font-awesome.min.css HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:51 GMT
Content-Type: text/css
Content-Length: 31000
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:31 GMT
Accept-Ranges: bytes
ETag: "eaa2cbfcee17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/js/swiper.animate.min.js
115.159.227.198200 OK 1.7 kB URL HTTP/1.1 szzboy.com/js/swiper.animate.min.js
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1690)
Hash 86acd1cacd0a3fb02cbbafdc408a86a6
9e3203c7caa0c6409ad2ca8c4eec004b9ff37a67
c22403f2fd6f74576085a97f617375fba193b97a49021e12a71064141df409a6
Analyzer Verdict Alert fortinet Phishing
GET /js/swiper.animate.min.js HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:52 GMT
Content-Type: application/x-javascript
Content-Length: 1745
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:40 GMT
Accept-Ranges: bytes
ETag: "49b772ef17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/js/wow.min.js
115.159.227.198200 OK 3.4 kB IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type ASCII text, with very long lines (3389), with CRLF line terminators
Hash 08e00577c856d48d4bf4ed6d9d483925
0d50a3747a3efcae6be2a219562919bce157f151
68e8f71fd1e5d8b30ddc2cf14583f9f9781997de8950e9f5a326d849322a4350
Analyzer Verdict Alert fortinet Phishing
GET /js/wow.min.js HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:52 GMT
Content-Type: application/x-javascript
Content-Length: 3420
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:40 GMT
Accept-Ranges: bytes
ETag: "c4aa72ef17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/news_view.php?id=281
115.159.227.198200 OK 25 B URL HTTP/1.1 szzboy.com/news_view.php?id=281
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type Unicode text, UTF-8 (with BOM) text, with no line terminators
Hash 72a7195fd3f56c6f41c26b6de7e05a0e
67a01ca5d2544fc00fede37931db11e25331b1c0
7c0150f1e943eda78bcc7a99b7a98d06d60b433e6d40c2d35b76f68e660f2f26
Analyzer Verdict Alert fortinet Phishing
GET /news_view.php?id=281 HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 25
Connection: keep-alive
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=jdb93ek420888das0gnbqhpmn1; path=/
X-Powered-By: PHP/5.2.17, ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/css/media.css
115.159.227.198200 OK 6.0 kB IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash b222bf871d42b9612f785a15eba80fe4
c5aec50fc93f008c632499e98a98909f585df9eb
47d627b3c91b196bc197c8c82f0a677a615b39cc9b6033bf7d81005304362a8d
GET /css/media.css HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:53 GMT
Content-Type: text/css
Content-Length: 5978
Connection: keep-alive
Last-Modified: Thu, 19 Jul 2018 10:04:23 GMT
Accept-Ranges: bytes
ETag: "3e18a7de471fd41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/css/reset.css
115.159.227.198200 OK 4.7 kB IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash ef00671f182630a3cb4860fd96d649a4
fb006f1b290d7452df9c9d602b0f89329d4ab88b
4d315f7f1ae61360f4a4304a9e1424a4762301eb08fd2b16d6083176c0250512
GET /css/reset.css HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:53 GMT
Content-Type: text/css
Content-Length: 4694
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:31 GMT
Accept-Ranges: bytes
ETag: "7ca1eafcee17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6019
Expires: Thu, 06 Oct 2022 14:43:12 GMT
Date: Thu, 06 Oct 2022 13:02:53 GMT
Connection: keep-alive
szzboy.com/js/swiper.min.js
115.159.227.198200 OK 112 kB URL HTTP/1.1 szzboy.com/js/swiper.min.js
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type ASCII text, with very long lines (65271)
Size 112 kB (111502 bytes)
Hash 3c6e81325849c77dfa3945f6307e9b83
0279951bcfd392cdfdc2fbcaa478a9c23fdadf5c
71ac9609b38bb7193aa590b72a2e18ecf603226589e02cd157aa312cc0c70bba
Analyzer Verdict Alert fortinet Phishing
GET /js/swiper.min.js HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:51 GMT
Content-Type: application/x-javascript
Content-Length: 111502
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:40 GMT
Accept-Ranges: bytes
ETag: "7a4b882ef17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/css/animate.min.css
115.159.227.198200 OK 61 kB URL HTTP/1.1 szzboy.com/css/animate.min.css
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type ASCII text, with very long lines (61191)
Hash d6dfff213c31504dc0a27d36c8e320bd
8411c1c0418521c96d07bcca0d9dbce7e832ccc9
f89ad2fbc54ddd9e111ed8dc7b6e4d88e6c3463134b5264da879305866e5f458
GET /css/animate.min.css HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:51 GMT
Content-Type: text/css
Content-Length: 61353
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:31 GMT
Accept-Ranges: bytes
ETag: "74f2bafcee17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a508ac9cd743bec987b2a24454418265
8c7ecefe6908387e2128dc849a6ba857991ba0ab
afb2c2b51f2ce445ada599068901551beee594b15c152ed7551ab7a8835dde6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10809
x-amzn-requestid: db4d1d2a-05b8-403e-a7ca-8b8a6a0a4087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQb-HrTIAMFtNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfab2-74f184406a48e42c0ecc4ec9;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: tv80OXQUu13gDuuFESnEnXMuFdNBmGc1y592euL7QnfZW5PwJym9-g==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:53:39 GMT
etag: "8c7ecefe6908387e2128dc849a6ba857991ba0ab"
content-type: image/jpeg
age: 54554
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: e5d0bb7a-b9d5-49b1-b51c-8db019da641f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQOGEQloAMFjgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa5a-519d91fb0b83920960da479d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: l1HGT5ycH36vVojsOPFptRSU1YJFvLbBsgiWJqzRlRIGgm2o5vf6jg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:58:56 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 54237
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5958f828ccc16a41b22d9ae812bccfc
f350f295dd70152712162d4be5b3b5f0d12cde57
230d7d8e570e433d18ec53b6ca114e2a206e8c265c0c66d73388c49db5c91c64
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9338
x-amzn-requestid: 4ca2eb3c-eba4-43a4-b79a-89546da3d660
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQBfG7soAMF9cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa09-1b5bd53052718f620b920a00;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6pHftE0vUMqrH2NR_7DzrWlnD0yal7BkAfee7UeVG7DKZNEAYRa9HQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:03:23 GMT
age: 53970
etag: "f350f295dd70152712162d4be5b3b5f0d12cde57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: LySueW1si-yWLwecUILV1s57IEV2FdcQ9_pH1Aoe4AYISi7QXXfd3A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:39:28 GMT
age: 55405
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70ea26af79226e9ff06d6198e2c019dc
ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57
f9393e7b8cbaedc8e1ef87fd89c617cf102f58813d84d866ff68e3124f94d44c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 127bce04-9f75-4bb1-bbe7-33bf1694d96c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZdZPmHG5oAMFehw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ba263-3896085b3b73ff5403237206;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: E4yZTPRLFdK717YfwjOIFOJDi0wYpyA736dQELeM5iPLvGDXBosEWg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 05:04:17 GMT
age: 28716
etag: "ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5b87135-538c-4c9f-b146-1da5b13ce157.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5b87135-538c-4c9f-b146-1da5b13ce157.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a7bcc50ecfeeca47de68cb437e966f29
e98c870fd29b56fa4c3847008bedc0f01f222744
47a82bb40ead4346323b68c886cb88528cb2162666e9549b2ab215b86a499985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5b87135-538c-4c9f-b146-1da5b13ce157.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8360
x-amzn-requestid: c1f21bfa-3ceb-4661-97b8-0d7475f0e911
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKLlLG0joAMFQqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f2ed-43993b1377e9fbaf4e9443d2;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:08:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: kyp8p-Jm92bA3VDbsKDiD_JnS2eekJFUkMjYXquZ1D15WthqXoSlsA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:57:01 GMT
age: 54352
etag: "e98c870fd29b56fa4c3847008bedc0f01f222744"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
szzboy.com/fbnews.php
115.159.227.198200 OK 3 B IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type Unicode text, UTF-8 text, with no line terminators
Hash ecaa88f7fa0bf610a5a26cf545dcd3aa
57218c316b6921e2cd61027a2387edc31a2d9471
f1945cd6c19e56b3c1c78943ef5ec18116907a4ca1efc40a57d48ab1db7adfc5
Analyzer Verdict Alert fortinet Phishing
GET /fbnews.php HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 3
Connection: keep-alive
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=ouo0ufm7gm5l2q8m03n9g53311; path=/
X-Powered-By: PHP/5.2.17, ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/js/jquery.SuperSlide.2.1.2.js
115.159.227.198200 OK 14 kB URL HTTP/1.1 szzboy.com/js/jquery.SuperSlide.2.1.2.js
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type Unicode text, UTF-8 text, with very long lines (12807), with CRLF line terminators
Hash 749e0c53edf44384b670893c2312fc9a
b548a744cf8ceadf0a152662cd084e53dfac6634
8b0f46ab652325be967956d4793f750cfa76a0a1e0d016222bda1005b1148766
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.SuperSlide.2.1.2.js HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:53 GMT
Content-Type: application/x-javascript
Content-Length: 13529
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:40 GMT
Accept-Ranges: bytes
ETag: "e84c692ef17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/js/jquery.min.js
115.159.227.198200 OK 84 kB URL HTTP/1.1 szzboy.com/js/jquery.min.js
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type ASCII text, with very long lines (32061)
Hash e40ec2161fe7993196f23c8a07346306
afb90752e0a90c24b7f724faca86c5f3d15d1178
874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.min.js HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:51 GMT
Content-Type: application/x-javascript
Content-Length: 84245
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:40 GMT
Accept-Ranges: bytes
ETag: "729c582ef17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/images/icon9.png
115.159.227.198200 OK 1.1 kB URL HTTP/1.1 szzboy.com/images/icon9.png
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c68a03ba4eb3789a3a0a566ececc66a5
bb1126e7962568ef9ffd46644396b00c67180759
d94f2c95bd3d1ef2ea7185a2da9712f725b3762e1d4400bd08be3c38621d5eff
GET /images/icon9.png HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:57 GMT
Content-Type: image/png
Content-Length: 1089
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:34 GMT
Accept-Ranges: bytes
ETag: "2dd8bfeee17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
push.zhanzhang.baidu.com/push.js
182.61.201.94200 OK 227 B URL HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 182.61.201.94:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with no line terminators
Hash e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Thu, 06 Oct 2022 13:02:57 GMT
Etag: "4078521116"
Expires: Fri, 06 Oct 2023 13:02:57 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=1CD4EABC03EAFE01480EC1033149C991:FG=1; max-age=31536000; expires=Fri, 06-Oct-23 13:02:57 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
ia.51.la/go1?id=19671291&rt=1665061377384&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E6%25B7%25B1%25E5%259C%25B3%25E4%25B8%25AD%25E9%2582%25A6%25E6%25AC%25A7%25E9%2598%25B3%25E7%2587%2583%25E6%25B0%2594%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8%25E6%2598%25AF%25E4%25BB%25A5%25E4%25B8%2593%25E4%25B8%259A%25E7%2594%259F%25E4%25BA%25A7LPG%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%25E3%2580%2581%25E6%25B6%25B2%25E5%258C%2596%25E6%25B0%2594&ing=1&ekc=&sid=1665061377384&tt=%25E6%25B1%25BD%25E5%258C%2596%25E5%2599%25A8%25E7%259A%2584%25E5%2588%2586%25E7%25B1%25BB%25E6%259C%2589%25E5%2593%25AA%25E4%25BA%259B%25EF%25BC%259F%25E4%25B8%25AD%25E9%2582%25A6%25E6%25AC%25A7%25E9%2598%25B3%25E7%2587%2583%25E6%25B0%2594%25E6%259D%25A5%25E4%25B8%25BA%25E6%2582%25A8%25E4%25BB%258B%25E7%25BB%258D-%25E4%25B8%25AD%25E9%2582%25A6%25E6%25AC%25A7%25E9%2598%25B3%25E7%2587%2583%25E6%25B0%2594%25E8%25AE%25BE%25E5%25A4%2587&kw=%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%252C%25E4%25B8%25AD%25E9%2582%25A6%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%252CLPG%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%252C%25E6%25B6%25B2%25E5%258C%2596%25E6%25B0%2594%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%252C%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%25E5%258E%2582%25E5%25AE%25B6%252C%25E6%25B7%25B1%25E5%259C%25B3%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%25E5%258E%2582%25E5%25AE%25B6&cu=http%253A%252F%252Fszzboy.com%252Fnews%252Fchangjianwenti%252F281.html&pu=
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=19671291&rt=1665061377384&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E6%25B7%25B1%25E5%259C%25B3%25E4%25B8%25AD%25E9%2582%25A6%25E6%25AC%25A7%25E9%2598%25B3%25E7%2587%2583%25E6%25B0%2594%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8%25E6%2598%25AF%25E4%25BB%25A5%25E4%25B8%2593%25E4%25B8%259A%25E7%2594%259F%25E4%25BA%25A7LPG%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%25E3%2580%2581%25E6%25B6%25B2%25E5%258C%2596%25E6%25B0%2594&ing=1&ekc=&sid=1665061377384&tt=%25E6%25B1%25BD%25E5%258C%2596%25E5%2599%25A8%25E7%259A%2584%25E5%2588%2586%25E7%25B1%25BB%25E6%259C%2589%25E5%2593%25AA%25E4%25BA%259B%25EF%25BC%259F%25E4%25B8%25AD%25E9%2582%25A6%25E6%25AC%25A7%25E9%2598%25B3%25E7%2587%2583%25E6%25B0%2594%25E6%259D%25A5%25E4%25B8%25BA%25E6%2582%25A8%25E4%25BB%258B%25E7%25BB%258D-%25E4%25B8%25AD%25E9%2582%25A6%25E6%25AC%25A7%25E9%2598%25B3%25E7%2587%2583%25E6%25B0%2594%25E8%25AE%25BE%25E5%25A4%2587&kw=%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%252C%25E4%25B8%25AD%25E9%2582%25A6%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%252CLPG%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%252C%25E6%25B6%25B2%25E5%258C%2596%25E6%25B0%2594%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%252C%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%25E5%258E%2582%25E5%25AE%25B6%252C%25E6%25B7%25B1%25E5%259C%25B3%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%25E5%258E%2582%25E5%25AE%25B6&cu=http%253A%252F%252Fszzboy.com%252Fnews%252Fchangjianwenti%252F281.html&pu=
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=19671291&rt=1665061377384&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E6%25B7%25B1%25E5%259C%25B3%25E4%25B8%25AD%25E9%2582%25A6%25E6%25AC%25A7%25E9%2598%25B3%25E7%2587%2583%25E6%25B0%2594%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8%25E6%2598%25AF%25E4%25BB%25A5%25E4%25B8%2593%25E4%25B8%259A%25E7%2594%259F%25E4%25BA%25A7LPG%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%25E3%2580%2581%25E6%25B6%25B2%25E5%258C%2596%25E6%25B0%2594&ing=1&ekc=&sid=1665061377384&tt=%25E6%25B1%25BD%25E5%258C%2596%25E5%2599%25A8%25E7%259A%2584%25E5%2588%2586%25E7%25B1%25BB%25E6%259C%2589%25E5%2593%25AA%25E4%25BA%259B%25EF%25BC%259F%25E4%25B8%25AD%25E9%2582%25A6%25E6%25AC%25A7%25E9%2598%25B3%25E7%2587%2583%25E6%25B0%2594%25E6%259D%25A5%25E4%25B8%25BA%25E6%2582%25A8%25E4%25BB%258B%25E7%25BB%258D-%25E4%25B8%25AD%25E9%2582%25A6%25E6%25AC%25A7%25E9%2598%25B3%25E7%2587%2583%25E6%25B0%2594%25E8%25AE%25BE%25E5%25A4%2587&kw=%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%252C%25E4%25B8%25AD%25E9%2582%25A6%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%252CLPG%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%252C%25E6%25B6%25B2%25E5%258C%2596%25E6%25B0%2594%25E6%25B0%2594%25E5%258C%2596%25E5%2599%25A8%252C%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%25E5%258E%2582%25E5%25AE%25B6%252C%25E6%25B7%25B1%25E5%259C%25B3%25E6%25B0%2594%25E5%258C%2596%25E7%2582%2589%25E5%258E%2582%25E5%25AE%25B6&cu=http%253A%252F%252Fszzboy.com%252Fnews%252Fchangjianwenti%252F281.html&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/
HTTP/1.1 200
Server: CloudWAF
Date: Thu, 06 Oct 2022 13:02:57 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=39e9a80295a4a9d5438; path=/
HWWAFSESTIME=1665061375496; path=/
szzboy.com/uploadfile/1530929368.png
115.159.227.198200 OK 12 kB URL HTTP/1.1 szzboy.com/uploadfile/1530929368.png
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type PNG image data, 233 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 161f104b9fdeb378ae653c8b93123b63
81ac7c1e50d2567b851186cd5a784f12534417c5
811758fb862a52b46f78fde695053589955a1d2d3927da579c7bcd8884cced28
GET /uploadfile/1530929368.png HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:57 GMT
Content-Type: image/png
Content-Length: 12345
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:41:33 GMT
Accept-Ranges: bytes
ETag: "ae382422ef17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
api.share.baidu.com/s.gif?l=http://szzboy.com/news/changjianwenti/281.html
182.61.201.94200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://szzboy.com/news/changjianwenti/281.html
IP 182.61.201.94:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://szzboy.com/news/changjianwenti/281.html HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Thu, 06 Oct 2022 13:02:58 GMT
szzboy.com/images/index_01.png
115.159.227.198200 OK 2.0 kB URL HTTP/1.1 szzboy.com/images/index_01.png
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e5b7dbd4027fc7df859b2039bb51f52
082ce63673fbbe06714be040ce85da430e3cf42d
c89a7756d10eae3ffd93ea5b8985e2f03d06cc05a9295022f79a0cac77676793
GET /images/index_01.png HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/css/style.css
Cookie: PHPSESSID=ouo0ufm7gm5l2q8m03n9g53311; __tins__19671291=%7B%22sid%22%3A%201665061377384%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201665063177384%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:58 GMT
Content-Type: image/png
Content-Length: 1951
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:34 GMT
Accept-Ranges: bytes
ETag: "d2ef9efeee17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/uploadfile/1566284174.jpg
115.159.227.198200 OK 134 kB URL HTTP/1.1 szzboy.com/uploadfile/1566284174.jpg
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size 134 kB (133477 bytes)
Hash cb4cf7f31441a14e296f7323927ffcdb
0c5c6b2c9e4fb5f2044acdd875ab935f3359c49d
ce13c31c513782fb3ad1671e37a3134d9769b2db4d3a15d1c376a4799e2083ac
GET /uploadfile/1566284174.jpg HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:57 GMT
Content-Type: image/jpeg
Content-Length: 133477
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 06:56:14 GMT
Accept-Ranges: bytes
ETag: "e0ebc65b2457d51:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/fonts/fontawesome-webfont.woff2?v=4.7.0
115.159.227.198404 Not Found 7.3 kB URL HTTP/1.1 szzboy.com/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1892)
Hash e348c35ef615c5f002f9db230ef09fdf
1b0d68549e140ff4da28fab2455edfd2651c0862
b8f03e0523a02dadfb0c49fee87e2a9819ec34eb857398cc28be61f696648cc2
Analyzer Verdict Alert fortinet Phishing
GET /fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://szzboy.com/css/font-awesome.min.css
Cookie: PHPSESSID=ouo0ufm7gm5l2q8m03n9g53311; __tins__19671291=%7B%22sid%22%3A%201665061377384%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201665063177384%7D; __51cke__=; __51laig__=1
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 7333
Connection: keep-alive
Cache-Control: private
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/uploadfile/1570676088.jpg
115.159.227.198200 OK 152 kB URL HTTP/1.1 szzboy.com/uploadfile/1570676088.jpg
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size 152 kB (151747 bytes)
Hash 1271cb1d8b1e1954584a946d81f3439b
da961dc833d339701ba82e3ea67f9d339f20be32
bb89a8ccf62c1cf506fb2e787a886886c9b46c8904124ae568e13f37d19b5994
GET /uploadfile/1570676088.jpg HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:57 GMT
Content-Type: image/jpeg
Content-Length: 151747
Connection: keep-alive
Last-Modified: Thu, 10 Oct 2019 02:54:48 GMT
Accept-Ranges: bytes
ETag: "24894f14167fd51:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/uploadfile/1569824985.jpg
115.159.227.198200 OK 138 kB URL HTTP/1.1 szzboy.com/uploadfile/1569824985.jpg
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size 138 kB (137614 bytes)
Hash 1d1b941d35af347783ccfa956bf1b560
1db6469382693b5d436ceba4aee9e59eb6abed41
3500c7d3582f4b348bba8480c08bce6c71065a87ba0f5ae9937823aa70ced424
GET /uploadfile/1569824985.jpg HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:57 GMT
Content-Type: image/jpeg
Content-Length: 137614
Connection: keep-alive
Last-Modified: Mon, 30 Sep 2019 06:29:45 GMT
Accept-Ranges: bytes
ETag: "acbe93735877d51:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/fonts/fontawesome-webfont.woff?v=4.7.0
115.159.227.198404 Not Found 7.3 kB URL HTTP/1.1 szzboy.com/fonts/fontawesome-webfont.woff?v=4.7.0
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1892)
Hash b6b60fcda7a465bbc29d62bce79e1262
4bf97517251cb16a3a21edcce9a9ada363799ef6
84160ddd771a2997d4778b18fa773d4161858c7b20afec9b5794a5fa74cb3c6a
GET /fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://szzboy.com/css/font-awesome.min.css
Cookie: PHPSESSID=ouo0ufm7gm5l2q8m03n9g53311; __tins__19671291=%7B%22sid%22%3A%201665061377384%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201665063177384%7D; __51cke__=; __51laig__=1
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 7331
Connection: keep-alive
Cache-Control: private
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/uploadfile/1531991948.jpg
115.159.227.198200 OK 0 B URL HTTP/1.1 szzboy.com/uploadfile/1531991948.jpg
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
GET /uploadfile/1531991948.jpg HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
Cookie: PHPSESSID=ouo0ufm7gm5l2q8m03n9g53311; __tins__19671291=%7B%22sid%22%3A%201665061377384%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201665063177384%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:58 GMT
Content-Type: image/jpeg
Content-Length: 103591
Connection: keep-alive
Last-Modified: Thu, 19 Jul 2018 09:19:08 GMT
Accept-Ranges: bytes
ETag: "1c9ce48b411fd41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/fonts/fontawesome-webfont.ttf?v=4.7.0
115.159.227.198200 OK 0 B URL HTTP/1.1 szzboy.com/fonts/fontawesome-webfont.ttf?v=4.7.0
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
Analyzer Verdict Alert fortinet Phishing
GET /fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/css/font-awesome.min.css
Cookie: PHPSESSID=ouo0ufm7gm5l2q8m03n9g53311; __tins__19671291=%7B%22sid%22%3A%201665061377384%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201665063177384%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:59 GMT
Content-Type: application/octet-stream
Content-Length: 165548
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 01:40:32 GMT
Accept-Ranges: bytes
ETag: "aa84b0fdee17d41:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
szzboy.com/uploadfile/1565668263.jpg
115.159.227.198200 OK 0 B URL HTTP/1.1 szzboy.com/uploadfile/1565668263.jpg
IP 115.159.227.198:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
GET /uploadfile/1565668263.jpg HTTP/1.1
Host: szzboy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://szzboy.com/news/changjianwenti/281.html
HTTP/1.1 200 OK
Server: nginx/1.2.8
Date: Thu, 06 Oct 2022 13:02:57 GMT
Content-Type: image/jpeg
Content-Length: 109013
Connection: keep-alive
Last-Modified: Tue, 13 Aug 2019 03:51:03 GMT
Accept-Ranges: bytes
ETag: "d64e47548a51d51:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN