{"report_id":"d1a9b1c5-5fe5-4cca-9d57-9d569ffc455b","version":6,"status":"done","tags":[],"date":"2026-02-09T01:34:05Z","url":{"schema":"http","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":0,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"title":"ADN-100-在老公面前被侵犯的人妻松下纱容子 - AV星球","dom":{"size":109498,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (5922)","md5":"7c9b36cb7bfad515539f74d1918153bf","sha1":"92f1111874371ddac218133ecbe05255dfd4e0ac","sha256":"e05b2179fa1727911279a06211b96ed14cff07652e6133b291c251d489a575f2","sha512":"7674377ae7cefb15771fe9710d4428b2e3ecd4effbb326d9a84a370458b152821a2861a60e6cd6e3cfaa023d10ec923b5ae1ea441ce36da241c3a5b0665ebba2","ssdeep":"1536:6XEHMim8mutxD6LtrPIjRGOhC5qNfvA1u9z:6Upm8FowjRGOhC5qNfvA1u9z","tlshash":"f3b3d7f282dc0f7f025392c2e514b29db09fae35e967c49af2ff215663c6c8129560b5","dom_hash":"domhashc3086350d07b1f114a0a7bdaea436cbf","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":0,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-16T01:34:05Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-09","alert":"Sinkholed","trigger":"www.jprnzn-331139.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null},"summary":[{"fqdn":"tutu1.space","ip":{"addr":"23.224.117.13","port":443,"asn":40065,"as":"CNSERVERS","country":"United States","country_code":"US"},"domain_registered":"2025-06-11","domain_rank":180383,"first_seen":"2025-06-13T07:15:18.090322Z","last_seen":"2026-02-06T07:05:33.501288Z","alert_count":0,"request_count":2,"received_data":33883,"sent_data":864,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"95e744d34d9d2cbewap.jigool.org","ip":{"addr":"155.102.45.13","port":443,"asn":0,"as":"","country":"France","country_code":"FR"},"domain_registered":"2021-10-02","domain_rank":0,"first_seen":"2026-02-09T01:24:18.688193Z","last_seen":"2026-02-09T01:24:18.688193Z","alert_count":0,"request_count":1,"received_data":10470,"sent_data":402,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"t30.cdn2020.com","ip":{"addr":"172.247.52.42","port":443,"asn":40065,"as":"CNSERVERS","country":"United States","country_code":"US"},"domain_registered":"2019-03-27","domain_rank":2885448,"first_seen":"2025-04-02T23:54:51.946696Z","last_seen":"2026-02-01T04:32:23.891387Z","alert_count":0,"request_count":4,"received_data":2451506,"sent_data":1727,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.251.142.232","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-02-08T22:20:44.026892Z","alert_count":0,"request_count":2,"received_data":882662,"sent_data":802,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.plyr.io","ip":{"addr":"104.26.13.19","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2015-02-16","domain_rank":65563,"first_seen":"2015-03-05T06:48:14Z","last_seen":"2026-02-04T23:18:36.22166Z","alert_count":0,"request_count":1,"received_data":6486,"sent_data":403,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"avxq133.cc","ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":30,"received_data":1751077,"sent_data":16555,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"RequireJS","description":"RequireJS is a JavaScript library and file loader which manages the dependencies between JavaScript files and in modular programming.","website":"https://requirejs.org","common_platform_enumeration":"","icon":"RequireJS.svg","categories":["JavaScript frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"allhfpn2026.octopodtech.cn","ip":{"addr":"155.102.45.48","port":443,"asn":0,"as":"","country":"France","country_code":"FR"},"domain_registered":"2023-11-22","domain_rank":0,"first_seen":"2026-01-19T15:39:07.989523Z","last_seen":"2026-02-05T20:42:57.025362Z","alert_count":0,"request_count":6,"received_data":2085286,"sent_data":2535,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.jprnzn-331139.cc","ip":{"addr":"192.99.4.81","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"domain_registered":"2025-10-12","domain_rank":0,"first_seen":"2026-01-10T09:26:50.866592Z","last_seen":"2026-02-08T08:03:32.023731Z","alert_count":1,"request_count":1,"received_data":288137,"sent_data":420,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"7e8a82293842fa8c88a4e088f11edafc","sha1":"3f2bcabfb3af025bf78ce7bc6aa5dc0cc9a10388","sha256":"d46304f4147716a7543637c579d89ee3b632b515d0147d6a78bc46114f776ff2","sha512":"1d6814c80e039ee26ab223411780195beeff77825af11ed3c8a7b073594cc40730e69b6465efe483972da7a334e8bafcfe63e3a8a1fecd66d2668156a9ef87c6","ssdeep":"","tlshash":"e870000c3000003c0c00c0c00ccc0f00003030000cc3300003000030330ccf03c00330","size":18,"data":"","first_seen":"2023-03-07T01:15:08Z","last_seen":"2026-03-23T23:47:14.012436Z","times_seen":138,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/home.js","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fad26c559a87300a19e16a5b845386d","sha1":"b2b47aafafa28979608e2c6f73601ad41881a121","sha256":"991dacc8443acbc21097a8fd198fa7b9ac67d32e04add53df73ab721bb59d42f","sha512":"07d30b14dfe3cd516035d53958d40f3e006d3fb2c60ddc194055a292bdf332f1dd4efab0add8513715ef7cbea8bbf9c92c0e261fea5c9d5b3d624ebe24c94970","ssdeep":"768:xR0cTTu8eMbZLbhpa6a/b7z9SsbhbeA5gr9GiSo5E7Iw4TQvh:xRZXde96oRiGh","tlshash":"cd03a45d7af3142050b3317a4fbf69082276815f190ddd88fe2d11a48fc4a4eba66bbd","size":38310,"data":"","first_seen":"2025-01-18T18:34:29.674603Z","last_seen":"2026-03-28T05:02:38.302065Z","times_seen":67,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/lib/jquery.js","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c9771cc3e90e18f5336eedbd0fffb2cf","sha1":"6ee8aaa3ac1f4e0ae18717a3fd26892e9f0e4cc5","sha256":"3e7501d15c3630e791c8b20392eb9dee31a9f65ce3efdde76cef5c710141ab24","sha512":"c503341fa3a7176fd10bd8cd7a5717c8faf971f87fa0c158f2d94fcd484ae3ed5031f49414dae833fb806b7365b5699c21d2e655376f69adb052b22f6f6982a7","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GK7:sHNwcv9VBQpLl88SMBQ47GK7","tlshash":"8083f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87532,"data":"","first_seen":"2023-10-13T22:05:06Z","last_seen":"2026-04-03T21:43:40.739099Z","times_seen":21247,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/static/player/plyr/hls.min.js","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1e59b3a541bcfa025fdda12cbbaa9f6e","sha1":"b04d134373a70c5c2c536e0246b99dabdde8db9d","sha256":"88fa861d6c2d711a4a0e9c186234ab06f7e0f77b7bda6da22ae50eae6c892570","sha512":"542dfab96d9b4b6f3fe573f83fb46738bef60cc50394276508fdf259685e89cbb5340fc702c8320ef53f7df1f004a82545cb93123dbb07d1f008624e508667e8","ssdeep":"3072:h5lrowpWMeW5wWGoz0YcJQ0UqEUgagmykNjNp4yyUmeRpzxUD4eRBu4k:awp+YRGowYMQ0Uq3gnmsyyzeRp2zu4k","tlshash":"7e743bdd7654606a43c2a1a4903f86076337bd0b7409c1acfa2be9e65cb994db03bf74","size":343826,"data":"","first_seen":"2023-03-11T12:24:59Z","last_seen":"2026-03-14T09:09:09.934421Z","times_seen":654,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-QGG6453XKD","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.142.232","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"bd1263834c3526748358fcce07333834","sha1":"d01b05d7764fa3f89ae747c6766dadeb0955aa1b","sha256":"020a19888c69bd746c5a374d8642c8e84a134d833aec1d8237636ffe31ac2198","sha512":"587a54e06e22524abc7c8d72ce8c6b173477099052299238d7313dfcdd943e5b076d31e0211180c258447855d031751fe81d049d9a63c512e32c81359ba5f9cb","ssdeep":"6144:LoIbh3hDazzfR681qbOqR51/48BjM3cp81Qj3AEFytI10KTB:LPbh3hDgz56nbD/48BzFy4B","tlshash":"6d940ade73c674225396e478503f018ba57b28a2f48cc89af189cce42d74a9a4177f7d","size":440616,"data":"","first_seen":"2026-02-08T08:03:46.296285Z","last_seen":"2026-02-09T01:34:27.660959Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"a61459f8b7f3a9607823751249219933","sha1":"275f5be45112cd8318904aa70d84872477e0ad0e","sha256":"69b1e2c6a9a9096ae4ae4ad0ae35e0b447116936bee8c4238c0e30610d4b6607","sha512":"f6a84e3c3026d5606ed56500c9e594dd3f001b95b956377038427fb2bf159c3294ce45d88fc6679d069c708af67f21fe88a8db01cc8276cc7e5dade2ceab94d5","ssdeep":"","tlshash":"ba60000c3000000c3c03c0c00ccc0f00003030000c030000030000003300c303c0030c","size":13,"data":"","first_seen":"2023-03-07T01:15:08Z","last_seen":"2026-04-03T21:50:50.383768Z","times_seen":6095,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d65438afbac16d7b3d679dabfd84bce1","sha1":"05a27ee7683982884ed8e46068e04e30b63fffa9","sha256":"b6f5410bfb75ebbb90a862ffa125a0bd8077289a9a856f08361aed0b858b95bd","sha512":"68c6a15315e905b709ef14bc7c39c2b6d5e8a05b4c910e48f70871b663e53cb6b9b3bae273746d6558b3105f1ad8caaee110f8e46e167e073ac2c59fd0deabff","ssdeep":"","tlshash":"cdb01230471f70024d4337c12659fa6202fd3750417f4f9405149c04c1ce1c003080c5","size":100,"data":"","first_seen":"2025-11-15T01:38:12.667345Z","last_seen":"2026-03-14T09:09:09.960137Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-4NKKZ50480","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.142.232","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d742212703e8c63036c1fff807aeba60","sha1":"e984ed0714826552ca13f84b246a222f70a57677","sha256":"64d1c4b9e70895a4d96284d88880183108f4cbb2340f53eb46b9f8dc5e971980","sha512":"41404ad1096729bc0657390dad2a9363c1745af057198cd8e0c4f5c83380cb62a4723804bc7ca0c520717a358923c65b5f2b920c117e6314593b2d34b09151f9","ssdeep":"6144:/Ibh3hD8zzfR881qbOqR51/48BjM3cp81Qj3AEFytI10KTB:gbh3hDmz58nbD/48BzFy4B","tlshash":"479409de73c674225396f478502f018ba57b28a2f48cc89af189cce42d74a9a4177f7d","size":440838,"data":"","first_seen":"2026-02-09T01:34:27.660298Z","last_seen":"2026-02-09T01:34:27.660298Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/search_main.js?v=1.0.2","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7e6090284e3813f69834e9237f2f887d","sha1":"c595f3e8443799a51255cddf9c4ac4c922e942dd","sha256":"4535a71230cd87f371641e1addb956d4d869e27601f8a6baed5b460d0050ebfc","sha512":"b06439a483f467dac6badc832d0fa95bcc02eedfcc9eeeae890f6df7e75d9473d82724214c700b5981cc037ac84f876a894b823338cbf537068afe787cb4ceaf","ssdeep":"","tlshash":"ec21e0fe3ca28055a1767f99865b548cf312b007b70bd4583d4d43449f80c69b271aa7","size":1304,"data":"","first_seen":"2026-02-08T08:03:46.305799Z","last_seen":"2026-03-14T20:11:05.193728Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"6f574f3b6b30973950a46833183a32d9","sha1":"66e069638e73686d1089da749f34708976eed3dd","sha256":"5ff159933d6637daccdffd9f5ed26e117c7052f44a7b1acc24f2bf40d3632fef","sha512":"eb133b6d26f00bd9dc660789df19ec216c26eb89e5076375ee3925c4a5ad45fc6c19c8a51738ed1a68b8f7f3df55903ebcc72668c43cf6ceddbad56f379aeac3","ssdeep":"","tlshash":"2870000e3000000a0a00c08008888a00022020082c020000020020002a88ca23c28282","size":19,"data":"","first_seen":"2023-03-07T01:15:08Z","last_seen":"2026-03-23T23:47:14.011229Z","times_seen":138,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"f473da176e00738d69dab8cdf2ea14cf","sha1":"e775da3c2cb11a87d8e9940f1bc4e1f7f1b5babb","sha256":"853ae34946a7f8326913636b840bb6178fd635d1999581d0a08d489d3b7ff5c2","sha512":"3aad273188c64a0101c82ec862715d871eea9576654fc61a263c05ce15c91ed2f1ad88abd93070d696107335aeff0d2ea4470735b477929ffb0dc4761fa3e17f","ssdeep":"","tlshash":"16f0d38d4bd040a9a3fa61935c4ed34a00335087dfd7a4654427c99121bca54506758d","size":635,"data":"","first_seen":"2026-02-07T06:47:38.821969Z","last_seen":"2026-03-05T15:32:54.643282Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/plugins/lazyload.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6ed68703349cec624d2f96c98c230da2","sha1":"4130b8bbe1908ec7d98602bcf2ce89877ec02b07","sha256":"a17c9cc56f934f0666b8b36dbe7e06c56b4243374e022e8bc1febcf2d9ce60d3","sha512":"5f4aa00eefa3b08eb545769c2f0a7ce451960c45b3b67a7752bb56c16f4f3bd1f6b9ab76bf4f9f22ce69461239f5f6fa96e6890137934b9aa32a32ddb66fc811","ssdeep":"","tlshash":"bb51000e25bf13b70c2370b15a1b28627954543f3109ce613f9db3559fa4e3d58b1aea","size":2647,"data":"","first_seen":"2026-02-08T08:03:46.330256Z","last_seen":"2026-03-14T20:11:05.230248Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"594406cb9a674ce5bdc185dfadbe6581","sha1":"b0c8709db924b6113b076f9a967519bf7d1c4da4","sha256":"09eb63dd39895c5691729053922273dcb10ed15cb69389713069061877db7661","sha512":"260f52489280a4c65b01aae521ff1aa130362e9c84f457d17bbccbae7304b514d1b3edd2304182d366d7980bff8b85f8adcb1175e13275d170f7e0396c1614b6","ssdeep":"96:WiT7rvQekT5FC2bm+HJrWhUgDIPB5Xa5CRZ/bHyzVzyzVzyzZpQktxvaVwsto30g:Wi/rYekNFdbm+HJrWhUgaXa5COuktxaS","tlshash":"2e81c7aa35d4785503ab20f3257f905db03e38154aea94f0f11bcc546e285c761adfa9","size":4177,"data":"","first_seen":"2026-02-07T06:47:38.82361Z","last_seen":"2026-03-05T15:32:54.646993Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"90f405a20e1eeafde799729ff2d8855f","sha1":"3bb308d8e41d3dd2ccc38d433b2b091b5c920a09","sha256":"1687d9dc28278e6b345c67d0be2b70e048154b4ad9f674bb80b87c9295b1ed91","sha512":"784cd4554fb034fa17d7aae76aeec5e7ef0028a730c47a38f53c81140678f0f6df4e2f23de4eff621e8181e63ca75be4e91da3e21aa452c94b41061ae0582d9a","ssdeep":"96:RXtbKxXNysSPzbPhzKr3tIgX01elpN5LSaJ/xrC/XYfUZgZgZEzAPvI0r4AMz5Ax:RUCtvR51ev6StCpZgZgZAAPvI0r4Bz5O","tlshash":"c0a1e7d40faf53792e03e552358622c588eeb7746212e4fc1313058a24c2dcce4e7878","size":4866,"data":"","first_seen":"2026-02-07T06:47:38.82442Z","last_seen":"2026-03-05T15:32:54.644629Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"915e0f5dbf093676a148db1ec442cd07","sha1":"694a1aabc4b2a14e0f6c400a4d7a77ee3de05951","sha256":"d76cc19089874e8db9f6eaad3bdf5f960efa8f9a8578283540b448c9d61c239f","sha512":"4d8b65961f26a06fc28fd23fe304adf65076811719b9b515c60e80aa7520ea391aa74d9dc5ee15d8c6a6d0d0b9a7d02a9d2004aee3566e448304a13d7db2ba23","ssdeep":"96:oHkXUHfD6pZHHWBe/noUb+baWFElt5BjlBJIl1GFdOf:ElfGpZn3LF8f","tlshash":"bbc162f3e7dce067557321da4a6d13cd443d4133ce229caffc7a226919c58b9c026a56","size":5981,"data":"","first_seen":"2026-02-09T01:34:27.691224Z","last_seen":"2026-02-09T01:34:27.691224Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/common.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f13cd59e2423df5c8b3d21b184db4558","sha1":"d6072ac5e98a19d943b254751e31e13861a80526","sha256":"616def684ac8b62e04abde29cab4d061b37b74debc52ebeab984abc4f98465ef","sha512":"556f1073c3dd1f96b8306aaa27265e86e276ee45d8a71b446fbcae080de110c759be2b5a3e3f8ed392c39a2d6a553f033d4f80cfdc3c8daced3501b6fefe8d2e","ssdeep":"192:3YjS/7tlIGO3wuU3wVT1yQp4yQRKuvzJWQz:V43HU36RP4bWe","tlshash":"ffe1f01d74f2111151bb707e5abfa504373595036249de09beec8b81af90a2ceaf3a9c","size":6910,"data":"","first_seen":"2026-02-08T08:03:46.320532Z","last_seen":"2026-03-14T20:11:05.197403Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/lib/jquery.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c9771cc3e90e18f5336eedbd0fffb2cf","sha1":"6ee8aaa3ac1f4e0ae18717a3fd26892e9f0e4cc5","sha256":"3e7501d15c3630e791c8b20392eb9dee31a9f65ce3efdde76cef5c710141ab24","sha512":"c503341fa3a7176fd10bd8cd7a5717c8faf971f87fa0c158f2d94fcd484ae3ed5031f49414dae833fb806b7365b5699c21d2e655376f69adb052b22f6f6982a7","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GK7:sHNwcv9VBQpLl88SMBQ47GK7","tlshash":"8083f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87532,"data":"","first_seen":"2023-10-13T22:05:06Z","last_seen":"2026-04-03T21:43:40.739099Z","times_seen":21247,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/video_helper.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"184b925ecad4660729158d7ff6bf478c","sha1":"709869e934efba7d63f751a05a156b1f3e93c236","sha256":"77beb0a327333c73a8c09b8f6d74ead75fca3bf5e1cdcc53d781faf39a5fc62e","sha512":"31f2e7ba182e204e99f58a1edf12eb3849fdb2459c2a457945a5bfd29a099adce4ada2b2448d28aa8b3769edd5f06905ff8f32a540966acbf1e9ce27c6b385fe","ssdeep":"","tlshash":"9d41e02d3af0a0655b53b0767d5f88057234a013110a4e65be8ee7648f72f7885e2fed","size":2323,"data":"","first_seen":"2026-02-08T08:03:46.318397Z","last_seen":"2026-03-14T20:11:05.220237Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/validate.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b5f8bc24210f57855333629f70fb8b47","sha1":"ffdfe3fc4665146d6b4b759a98e52edb21047a42","sha256":"1de756580576d5815fee4facc9addbf92e386fa0adffde408979e2b23d84617c","sha512":"e2608dda150c2dc258305d32f6ab3c42f924f7016dd76aaf4c0e75e9e4fd4a168cc5d3c7e26f8a0da7256d9febb1f7701ef9d0c7cd43958d6392f86a231ef700","ssdeep":"","tlshash":"4201284d5491a8150db7b3fcd59bc05bf05901733010965bbece45902f72be456a0fa4","size":693,"data":"","first_seen":"2026-02-08T08:03:46.321978Z","last_seen":"2026-03-14T20:11:05.182474Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/lib/validator.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"86b6dc8ccf6dffeeb920601dccc7fde3","sha1":"3171e9146d3c0eb1d22b2ee5f0531e064ccde365","sha256":"943d288e5c21c83c26b2a8b0da35339bc849b255870f5d2bbeda6697dd524793","sha512":"02d3c288ad8aa2467a6f1827c1fac67acd3fe3f36e4b54512a95dc2518c796445552fe73c2b8f0c49f7eeb70015555d6751c9560634f33a5a92164bafb7f5a98","ssdeep":"384:zcsgngnF2SE1B3pvYSrLQfqLfuNlMUaeopveoTweouMeo72eoukeou7eou4eoudh:NOzBpvbfuNldaeeveiweJMee2eJkeJ7+","tlshash":"367242c836d9b41d86b321f6202f7057b22ba455042ed841f3bda0f5aff845f5252faa","size":17046,"data":"","first_seen":"2024-11-17T05:55:40.958015Z","last_seen":"2026-04-02T16:45:57.330369Z","times_seen":920,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d781807c4419581d93fcab6592a16a1c","sha1":"c72eef28027ffd6aac45249f6809b825441c55d3","sha256":"bf50d1b67cf223c5f808ba53f68335882a95ee9807eeb6e04e197a8425247bb4","sha512":"d7ecf6121736e936cedbd402504a3667d02ec32b854e942f40911f8045c05e4a54d9f7ef9f14cee7d09b16e196fa1be41f2d74293442eadd8a50ff5abc04710f","ssdeep":"","tlshash":"dac02b8c220a0c7046f737408b3fb740b002321494e06971485e230c4d30f0be744d10","size":153,"data":"","first_seen":"2024-02-23T04:44:39Z","last_seen":"2026-03-14T20:11:05.231258Z","times_seen":97,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/lib/require.js","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a09aad7fd8e9d3243a959fe0939c8e03","sha1":"c833c521341ce46183ad1b132acc73d66ccdcdaf","sha256":"c8a84fc28195df3f6388caf78a0aa32e95788e4898f573f198cd4fdd8e1a9588","sha512":"b542218b267aa37ca97b91cdc84d8af0350cb343d803a9820d084c6afbc8a69dad20c14d6db08177a6b4f8f6e4aa31571f892b67eebc1fa848ab46951d0cad13","ssdeep":"384:Cv6/vGiN5cMU8QatLePlko998VpSAIiQbvPHSEDO11yy1qlMW2IP+VW4Ml:fG7MU8qPlko998PhIhb3HSEDM1yy1qlJ","tlshash":"ae82d7ee37e5f913b22232f490af504a6277e953140cc544f619e8f5acb856876a3e38","size":18194,"data":"","first_seen":"2024-11-17T05:55:40.964969Z","last_seen":"2026-04-02T16:45:57.298537Z","times_seen":1004,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/utils.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"99539701a73d911abfeb88dcc9b13131","sha1":"357fda6a3ebcea407a92c112465ef3b8cc7c84c0","sha256":"7873465e7adc441aa2b6f317eb4eb6f5c5db7113e64428673a8a26d36dbc94c9","sha512":"74f18dba9ac550343dfd0ec29abdcdf764229f862c8732bf983be34d4f07667736b6c59667be9623fd5f040eaa345bc3eeb49cedf96c50b740f97b34bcb9e6f7","ssdeep":"192:8MjnYRs6d8yIqRs1LD2IytlomlMz/BuUJQlztCyOlBd:8wYRs6d8wRsIcJaIDd","tlshash":"5bd1d68878e6db8201a3f099435f6a00f6f415673825d841ba4c67d09f22c6ac7f69cf","size":6325,"data":"","first_seen":"2025-06-14T16:20:55.83278Z","last_seen":"2026-03-14T20:11:05.196223Z","times_seen":83,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"8dd92fc4068a700598042262c43d3d5b","sha1":"4d9d230092dd76736e93de64b6478a197d27df5d","sha256":"c8220d9024416970478c18c8d03e72dd991262dfb06f61a47449e60dba28edec","sha512":"9410911095d6b738332b2ff544c838f4cf816545a2f61658f30e46d01e0a3726d7182a4d7dbd25d216065e94b0715423b85bd038deaff5771f55c3c0861381cd","ssdeep":"","tlshash":"7a6000cc30c0000c0c00c3c00ccf0f00003030000c03000003000000f30ccf03c0330c","size":17,"data":"","first_seen":"2023-03-07T01:15:08Z","last_seen":"2026-03-23T23:47:14.008247Z","times_seen":140,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/zui.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"952da50e249b0a51260506fd8eb75494","sha1":"80fe332bb51e3ed69b81f27f9413dc57aa38b5a1","sha256":"7f199d1966b4488a076646d11a6dd2461da7502c40795fc391615f46cf266df2","sha512":"87460e600fb3e76e378cdb4406e598aaa8459628fbccef4a33d50e4315d36fc279d28433a289b59b25b2b86bdce25e36c279b7bf55d67231cd0d958bc35f9774","ssdeep":"1536:s/hPfSy92XAn5FhUp5H5rMmMtqXm4kSWJ3A:s/hPfS3XstqXm4a+","tlshash":"5d33960538f52155575b71b668ef110c7238d02b490a6d243d9cebd8af90938a3fbfe8","size":51114,"data":"","first_seen":"2025-06-14T16:20:55.866473Z","last_seen":"2026-03-29T21:24:18.782152Z","times_seen":92,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"81d3af977c59d272e8a8944c41bb8b6c","sha1":"3f6c35e60af87711e8effded329951de6b62fbc8","sha256":"ee10ef2d0ad9b330bbd8195a7b8f11ed8ead80b937943157da9d934630aca06e","sha512":"6aa1f0c4f1448c416e5deacdab66439eddcdca0487efedd09c28605c6ffc95f0b6bcd85a93dda709b88427a579973fcaac756c1ebde68c9abecea7a351ffe1e5","ssdeep":"","tlshash":"cac02b8c320a4c7051ff2b00cb3ff600f0063214a4d46d32488933044f70e13d744820","size":153,"data":"","first_seen":"2025-10-12T17:52:22.80401Z","last_seen":"2026-02-24T09:21:59.928981Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/static/player/plyr/plyr.min.js","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b51ba0c331aa677c2ebfbf39679c613a","sha1":"df7fcc8f8c7490020fca08a9527d2b36abd8215e","sha256":"f034c3fb782f8ef29764a041013abbcc04b69c9ca8467706f413c2ba541d7120","sha512":"f13abf48a91e34a7956190a49347ac5a7fabd349cd31c7d986c76cce0f4637b059486815d6ff4027ca870c8fcfa85a9161954e7bc01f6e987b3856fb496c1a3c","ssdeep":"1536:PDssEIlXFswPoxZ2nXKSljq178G7Cep0lm5+7/550O3sJoP+UWkL++bekSDdBW3V:hxoNCTDR8sA8VUocFPcITO","tlshash":"84b3f9c3331af63281a659cee024021675398b9a7405c26cfc3cedde6968d4275b7f7a","size":108544,"data":"","first_seen":"2023-03-10T02:00:58Z","last_seen":"2026-03-31T07:22:53.952729Z","times_seen":308,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9eff177293f40c0f8d0760c198709aef","sha1":"50848bfe813e26b89fca56fa2a856eecc80b9400","sha256":"a03bb8caf496baa4699184fbe102e13f1101a9a0e1bc1760ea967f9a3543d356","sha512":"e54acfb865e8e2baf928f94d4fdfcfbaa444e8a0b98bc9743fe8e034b32d5243e786d65e9e88341092b0d2dd881676b7659f70b699ebe18137726aa56e95e0ba","ssdeep":"","tlshash":"a5118b0c23b71230c323b5c6927ac2857030010ba806c95dfa1e96e54f8287e26c38e0","size":991,"data":"","first_seen":"2026-02-07T19:36:42.769537Z","last_seen":"2026-03-28T08:55:28.887506Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"b9419bad1bf12617ee5ee8006a0c78bb","sha1":"5d7212729f893a8910bda9106bf7942dcd82907f","sha256":"e948b81a01773c5ecc5abb50adac4f6030043d91840e8afb390231930710ef49","sha512":"15b330c9b7d93900e44fd7d3e9dca86d8607047f09bfff28131f819f77eda7e298944e2b257a5b75129eba8d9b77a31f02d20657efd0979f363fe2c140650d97","ssdeep":"","tlshash":"918000cb03c8303830c222c0083200222bafe808000e8b0ce2380880a8e00020baca2e","size":29,"data":"","first_seen":"2026-02-08T08:03:46.336613Z","last_seen":"2026-03-14T20:11:05.233251Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"fb536e535470fe22fc6f3485d74de91e","sha1":"f77f788eb561d6a04b4d8d92003d7ba5f04b81f3","sha256":"15f604c4bb57584da346ddd6592b37f74df6c442c0da2077e7b86049e6aa498a","sha512":"e67667c329c765d3176b820e775c9b9f82a03efbb45dc63e2e8e211142f0d81541b9e881aea2c3a9c34ab165c27a56685e43b8dc623a29515a9d2709c7f561da","ssdeep":"","tlshash":"f180045c151c41313d0415140010504343d433105401c00c051150413350c0dc5d711f","size":34,"data":"","first_seen":"2026-02-08T08:03:46.339304Z","last_seen":"2026-03-14T20:11:05.234204Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"95e744d34d9d2cbewap.jigool.org/sc/3308?n=dgprkdrj","fqdn":"95e744d34d9d2cbewap.jigool.org","domain":"jigool.org","tld":"org"},"ip":{"addr":"155.102.45.13","port":443,"asn":0,"as":"","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"c52ae6019c259923007a1a05add2687d","sha1":"0ebe055f45e5640bfe97a428e04b81c1064c13e6","sha256":"19d225786e4a3a9c36bad4feee2854cf149ff97a13beef4aed2a4d6022571b82","sha512":"0400c125ad6acdf5cbfb0ccdc2689e71b70ac8593576bdf1d952c6b16b0b63f17fbf51fb4c1e96ceae9543437c900c04e5fbbb7dacba04e1c5215b2f07ca0c76","ssdeep":"192:semVVExYpv29C5z4FOdYC8PnLMcJTDU+UNP16McTArHeTEUgRP9YobXW1LYzP8Cr:semoxKSMzJdYC0MQHU+UF3UgRP9zbaYz","tlshash":"0212d828b387b471434ba1e2257f274c753e43345f079428632ab8907d6ce9a256bff9","size":9646,"data":"","first_seen":"2026-02-09T01:34:27.678111Z","last_seen":"2026-02-09T01:34:27.678111Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/lib/validator.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.481Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/lib/validator.js?v=1.2.8 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_4NKKZ50480=GS2.1.s1770600826$o1$g0$t1770600826$j60$l0$h0; _ga=GA1.1.485084106.1770600827; _ga_QGG6453XKD=GS2.1.s1770600827$o1$g0$t1770600827$j60$l0$h0\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\netag: W/\"68229f36-4296\"\r\nexpires: Mon, 09 Feb 2026 13:33:47 GMT\r\nlast-modified: Tue, 13 May 2025 01:24:06 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17046,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (17046), with no line terminators","md5":"86b6dc8ccf6dffeeb920601dccc7fde3","sha1":"3171e9146d3c0eb1d22b2ee5f0531e064ccde365","sha256":"943d288e5c21c83c26b2a8b0da35339bc849b255870f5d2bbeda6697dd524793","sha512":"02d3c288ad8aa2467a6f1827c1fac67acd3fe3f36e4b54512a95dc2518c796445552fe73c2b8f0c49f7eeb70015555d6751c9560634f33a5a92164bafb7f5a98","ssdeep":"384:zcsgngnF2SE1B3pvYSrLQfqLfuNlMUaeopveoTweouMeo72eoukeou7eou4eoudh:NOzBpvbfuNldaeeveiweJMee2eJkeJ7+","tlshash":"367242c836d9b41d86b321f6202f7057b22ba455042ed841f3bda0f5aff845f5252faa","first_seen":"2024-11-17T05:55:40.958015Z","last_seen":"2026-04-02T16:45:57.330369Z","times_seen":920,"resource_available":true,"data":null}},"time_used":154,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/static/player/plyr/plyr.min.css","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.751Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /static/player/plyr/plyr.min.css HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: text/css\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"67802676-86e8\"\r\nexpires: Mon, 09 Feb 2026 13:33:45 GMT\r\nlast-modified: Thu, 09 Jan 2025 19:41:42 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":34536,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (34536), with no line terminators","md5":"6076a0c8f89f56728cc981222d0716dd","sha1":"fe32fd480e28152e203bfefe71e508a49bdd290e","sha256":"31e938a0b167e2127c429de4edee42c16aadbc43c99b5dba15a85e49f4a9d617","sha512":"92e49e58d66c05f5bf7ac9fd322210de1905a8d7472a58f355060139eee03d719434213c2aaadb64b1c3487d34e47ad4c0223c7ab439883ac11e54b34df49b9b","ssdeep":"384:ujpiSN8LOi6cwQ++tW+j+u+e+S0+tuaZi2NK/rFSbIphWpbIn4pdpnxXn:u4SN8LOiwQF0+7fbIphWpbIn4pdH","tlshash":"42f2446079686238b837d56937b0c9cd237cd102fd926ab9f154b7608eceab346b3601","first_seen":"2023-12-01T22:01:18Z","last_seen":"2026-03-27T09:27:57.459882Z","times_seen":29,"resource_available":false,"data":null}},"time_used":300,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":300,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/lib/require.js","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.766Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/lib/require.js HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"68204046-4712\"\r\nexpires: Mon, 09 Feb 2026 13:33:45 GMT\r\nlast-modified: Sun, 11 May 2025 06:14:30 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18194,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (17667)","md5":"a09aad7fd8e9d3243a959fe0939c8e03","sha1":"c833c521341ce46183ad1b132acc73d66ccdcdaf","sha256":"c8a84fc28195df3f6388caf78a0aa32e95788e4898f573f198cd4fdd8e1a9588","sha512":"b542218b267aa37ca97b91cdc84d8af0350cb343d803a9820d084c6afbc8a69dad20c14d6db08177a6b4f8f6e4aa31571f892b67eebc1fa848ab46951d0cad13","ssdeep":"384:Cv6/vGiN5cMU8QatLePlko998VpSAIiQbvPHSEDO11yy1qlMW2IP+VW4Ml:fG7MU8qPlko998PhIhb3HSEDM1yy1qlJ","tlshash":"ae82d7ee37e5f913b22232f490af504a6277e953140cc544f619e8f5acb856876a3e38","first_seen":"2024-11-17T05:55:40.964969Z","last_seen":"2026-04-02T16:45:57.298537Z","times_seen":1004,"resource_available":true,"data":null}},"time_used":718,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":718,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t30.cdn2020.com/video/m3u8/2025/07/07/fb2c19a7/0000.ts","fqdn":"t30.cdn2020.com","domain":"cdn2020.com","tld":"com"},"ip":{"addr":"172.247.52.42","port":443,"asn":40065,"as":"CNSERVERS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.729Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"t30.cdn2020.com","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Thu, 08 Jan 2026 18:02:49 GMT","end":"Sun, 07 Feb 2027 18:02:48 GMT"},"fingerprint":{"sha1":"27:A6:45:AC:D0:81:59:05:A8:0E:88:F5:D3:AB:DB:32:7D:D9:55:A1","sha256":"2A:CD:23:10:1B:85:89:C5:16:2D:A3:02:40:61:8F:7C:BA:7A:1F:FA:F4:93:F6:1F:30:80:32:FE:D9:A3:9F:6E"}}},"request":{"raw":"GET /video/m3u8/2025/07/07/fb2c19a7/0000.ts HTTP/1.1\r\nHost: t30.cdn2020.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://avxq133.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\ncontent-type: video/mp2t\r\ncontent-length: 783584\r\nlast-modified: Mon, 07 Jul 2025 10:10:36 GMT\r\netag: \"686b9d1c-bf4e0\"\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":783584,"size_decoded":0,"mime_type":"video/mp2t","magic":"data","md5":"1263087121d2e433d852c7687a9cdec0","sha1":"5bb5795b974b3eb75102a799445a83e8600cb612","sha256":"b2895714c0010c46130688d3ec445c322db2974062bbd65670cec916921249eb","sha512":"2ce026790bd0ddd36120e2bd5b3633d4e1b70fcf29b85d6ff89a7eae2dfc32754633f7d46a0ab6391f56218df911d0e1ac057e3af0b83efd8ad93c8e296db8f4","ssdeep":"12288:UmVY7/1eAdAeZkRb+QH9wgzBtN9CWzyvRVWQyMTz0bEBxzXoFCATVh0/p9cT9:U0Yj1eAdAkkt5zBtN8WyvHBN5XwCAVyU","tlshash":"ddf41256bb946e7646412df2c75aaff2529a0d511e484fab4e18f39cf8f9bc0cc41072","first_seen":"2026-02-09T01:34:27.649663Z","last_seen":"2026-02-09T01:34:27.649663Z","times_seen":1,"resource_available":false,"data":null}},"time_used":929,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":198,"receive":731,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allhfpn2026.octopodtech.cn/2024/8878/960-120.webp","fqdn":"allhfpn2026.octopodtech.cn","domain":"octopodtech.cn","tld":"cn"},"ip":{"addr":"155.102.45.48","port":443,"asn":0,"as":"","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.761Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allhfpn2026.octopodtech.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Sun, 18 Jan 2026 08:20:57 GMT","end":"Mon, 18 Jan 2027 08:20:56 GMT"},"fingerprint":{"sha1":"7E:DD:67:DC:BE:A8:3B:9A:1E:FC:5B:F6:BC:B2:6F:35:1F:DC:DB:64","sha256":"87:61:0D:E0:88:97:AD:17:F3:D1:E5:EA:FE:01:CA:1A:F3:D1:70:9B:A7:5D:3D:05:10:5E:25:A8:ED:34:E2:DB"}}},"request":{"raw":"GET /2024/8878/960-120.webp HTTP/1.1\r\nHost: allhfpn2026.octopodtech.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ESA\r\ncontent-type: image/webp\r\ncontent-length: 311578\r\nset-cookie: acw_tc=2ff6319b17706008259675682e61c698a632d862a59c31f9571f3f5f12;path=/;HttpOnly;Max-Age=3600\ncdn_sec_tc=2ff6319b17706008259675682e61c698a632d862a59c31f9571f3f5f12;path=/;HttpOnly;Max-Age=3600\r\nstrict-transport-security: max-age=15552000; preload\r\nalt-svc: h3=\":443\"; ma=86400, h2=\":443\"; ma=86400\r\ndate: Mon, 09 Feb 2026 01:24:17 GMT\r\nvia: ens-cache14.l2de3[361,0,DP], ens-cache14.l2de3[0,0,304-0,H], ens-cache22.l2de3[1,0], ens-cache5.fr5[20,0,DP], ens-cache5.fr5[20,20,200-0,H], ens-cache7.fr5[21,0]\r\nx-site-cache-status: HIT\r\naccept-ranges: bytes\r\netag: \"6613e650-4c11a\"\r\nlast-modified: Mon, 08 Apr 2024 12:42:56 GMT\r\nage: 568\r\nali-swift-global-savetime: 1770600257\r\nx-swift-savetime: Mon, 09 Feb 2026 01:33:45 GMT\r\nx-swift-cachetime: 3600\r\ntiming-allow-origin: *\r\neagleid: 2ff6319b17706008259675682e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":311578,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4e5927ed835b806fa5c31debb2cfdf34","sha1":"2c862aa1eb52a11bd1445dedb2530a429ab94dbd","sha256":"0187a8bbe5684d521a68ab0ecabd2c54b6ee7800e0f62da62287275ce8ca28b6","sha512":"a17a81daf084f64fbd59164982fccce032ad5da5eeb9c458b47af1a885ddc6df79f3fe8487f0e37f1d6b87388a0c44d3355d2153f935bf71958789985387b678","ssdeep":"6144:OWn8didfCjST+tvYXto3iblNOSba5U4DSzOpKtmCMVa5D72bd9ap0vbRKa5D72b6:OWnJoWT+tvY9jbnXIDstmKQbdYItQb6","tlshash":"cb64221c68eb4e1cd2a6cab8669c28b326799f4fb141e301c4c2761a76d3552fe35f1c","first_seen":"2024-05-07T16:31:47Z","last_seen":"2026-03-28T08:55:28.863699Z","times_seen":653,"resource_available":false,"data":null}},"time_used":484,"timings":{"blocked":-1,"dns":157,"connect":35,"send":0,"wait":139,"receive":110,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/images/poster_loading.png","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.763Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/images/poster_loading.png HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncontent-type: image/png\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"6822a258-4b4\"\r\nexpires: Wed, 11 Mar 2026 01:33:45 GMT\r\nlast-modified: Tue, 13 May 2025 01:37:28 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-length: 1150\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1204,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 750 x 420, 4-bit colormap, non-interlaced","md5":"41340a3e5ec6e352ed2a785ec3cb8a79","sha1":"1b84812828b6e3adff34d4c8532c1069a5558ac3","sha256":"2174953c737f2c10507322bb6a9851c2d115df1889fdfcde85a1981181662ddf","sha512":"c2c679bebdc8389f0f57226635dfb3b311fe87d764bbb39723fae2b6e431fb2974ff9802d05e2238e3c380727db6de382beba11ef36d979b4768f3c6d34f0726","ssdeep":"","tlshash":"8321b6de25a7e8a8dc8143b219f25855f1ef0d3966782a090f834458323da04e8a4b72","first_seen":"2025-06-14T16:20:55.830811Z","last_seen":"2026-03-29T21:24:18.779945Z","times_seen":83,"resource_available":false,"data":null}},"time_used":719,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":719,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/icons/icons.svg","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:46.565Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/icons/icons.svg HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: image/svg+xml\r\ndate: Mon, 09 Feb 2026 01:33:46 GMT\r\netag: W/\"6822a1e4-391b\"\r\nlast-modified: Tue, 13 May 2025 01:35:32 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14619,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e3467c4907b54334cacceebd2f1851ed","sha1":"1385064135039ab49b82e2089c4c0c4f6e66cee8","sha256":"d1c4cd1c2c1d8ca16aa2c2f5293bcae8fb8220cd2b63ef52ddd9aa1e9df9bcfe","sha512":"6ca19e09e15c41036e6a24cfcef825221463d1bc60bc1ac50f3f4f73ef9642bcb8ea124c5d2efa6c68b4346dc4fc3462d58361c6b21933c2a5e03a2ad7641e63","ssdeep":"384:aoAubxNMwmAlx3NAPOl6C09FLRfUwPQLL:lOA7B89rUwPo","tlshash":"476296bc931c865ca94bc73dfb3a6075532fa0fa30c442aca99f8b7472530d9e617a54","first_seen":"2025-06-14T16:20:55.860121Z","last_seen":"2026-03-29T21:24:18.784592Z","times_seen":92,"resource_available":false,"data":null}},"time_used":151,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":151,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jprnzn-331139.cc/1727xpj/1727xpj960u60.gif","fqdn":"www.jprnzn-331139.cc","domain":"jprnzn-331139.cc","tld":"cc"},"ip":{"addr":"192.99.4.81","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.756Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.jprnzn-331139.cc","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Sun, 21 Dec 2025 00:00:00 GMT","end":"Sat, 21 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"09:3D:64:5D:94:6A:B2:FA:25:70:60:36:65:59:1F:78:59:EA:2E:53","sha256":"81:A8:2A:08:0B:C8:6C:F9:D5:73:34:E4:96:15:F2:25:54:3B:C4:76:CA:15:CD:AB:CB:7B:92:F5:92:3A:88:F0"}}},"request":{"raw":"GET /1727xpj/1727xpj960u60.gif HTTP/1.1\r\nHost: www.jprnzn-331139.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 09 Feb 2026 01:33:46 GMT\r\ncontent-type: image/gif\r\ncontent-length: 287807\r\nlast-modified: Sun, 11 Jan 2026 11:17:12 GMT\r\netag: \"4643f-6481ae6651e00\"\r\ncl-cache-status: HIT\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":287807,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 960 x 60","md5":"65ee1321f57a0e2de44cfefe46965ad5","sha1":"015ab0944e88a43d414f995f8bcd636d8ce83e63","sha256":"026ac1e77e93dcaff2bc77b2a304e568e00c1a4ea9aa7e1a7cf1fcc29f2d8005","sha512":"11f5c5fab6cce8e03cf85136708e16ea17fbf9201f84f0bb5d33e0090db74b8fbbe6c02b3e71e03b586fd6f3ae2d6504cde6754aa07efe36f14977d285f4f994","ssdeep":"6144:J2biIWVPu1E+UMp95QL3Swh5519/TkOIhmU8kbbvaS:JZVW1vt3uXjTrQrR","tlshash":"8254231dddd4bf32171f2834b9fe5a2441607edb8b43ba4a8668735908af2bf40f9548","first_seen":"2026-01-12T16:27:42.135126Z","last_seen":"2026-02-24T09:21:59.902975Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2296,"timings":{"blocked":873,"dns":600,"connect":104,"send":0,"wait":208,"receive":324,"ssl":184},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-09","alert":"Sinkholed","trigger":"www.jprnzn-331139.cc","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-09T01:33:41.891Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /index.php/vod/play/id/186626/sid/1/nid/1.html HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: text/html; charset=utf-8\r\nlocation: /GE/CC/VALIDATOR?key=c6238927ad526ad0e12d1cea7f8be6a9.48fb27fc617b7451aca10d6a56d9fcf3.1770600822\u0026url=https%3A%2F%2Favxq133.cc%2Findex.php%2Fvod%2Fplay%2Fid%2F186626%2Fsid%2F1%2Fnid%2F1.html\r\ncontent-length: 0\r\ndate: Mon, 09 Feb 2026 01:33:42 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":107368,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T22:31:02.952373Z","times_seen":13306102,"resource_available":true,"data":null}},"time_used":768,"timings":{"blocked":309,"dns":4,"connect":150,"send":0,"wait":150,"receive":0,"ssl":153},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/images/logo1.png","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.755Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/images/logo1.png HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncontent-type: image/png\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"6919f678-28c67\"\r\nexpires: Wed, 11 Mar 2026 01:33:45 GMT\r\nlast-modified: Sun, 16 Nov 2025 16:06:16 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":167015,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1280 x 264, 8-bit/color RGBA, non-interlaced","md5":"97e230fbf9fd2341bc2b50ee720484ad","sha1":"9a6e3d6435e543b23e1d8a1e59c3eff94c4c21a6","sha256":"d61e7c75e16aa1e4b940b499f10131d56ecae9ca7e9ede6b49f06062c413a6e3","sha512":"551a15fec5cb4b04dcddca7f4e4e6d204530454fcf9f9f398adecc0f6913abc7396ab3514fed6c23ebc3b589e12a8f9d1b9385ec00a69b3c87edbcdd2c7d08ff","ssdeep":"3072:VrX5LYgDzYqZP/1+cYglXM07ZUyb8eYu64cl/scVWexvVMkQKFZMbO0Q:VN0IZ3kcYglXxeQYZ7F9vqASbw","tlshash":"e1f31262f45f5b0cf141cdd69390299d2851bef6139b62e8838aa75f831e007913af7e","first_seen":"2026-02-08T08:03:46.293938Z","last_seen":"2026-03-14T20:11:05.209236Z","times_seen":17,"resource_available":false,"data":null}},"time_used":318,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":318,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/home.js","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.749Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/home.js HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"6787cec4-95a6\"\r\nexpires: Mon, 09 Feb 2026 13:33:45 GMT\r\nlast-modified: Wed, 15 Jan 2025 15:05:40 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38310,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2677)","md5":"8fad26c559a87300a19e16a5b845386d","sha1":"b2b47aafafa28979608e2c6f73601ad41881a121","sha256":"991dacc8443acbc21097a8fd198fa7b9ac67d32e04add53df73ab721bb59d42f","sha512":"07d30b14dfe3cd516035d53958d40f3e006d3fb2c60ddc194055a292bdf332f1dd4efab0add8513715ef7cbea8bbf9c92c0e261fea5c9d5b3d624ebe24c94970","ssdeep":"768:xR0cTTu8eMbZLbhpa6a/b7z9SsbhbeA5gr9GiSo5E7Iw4TQvh:xRZXde96oRiGh","tlshash":"cd03a45d7af3142050b3317a4fbf69082276815f190ddd88fe2d11a48fc4a4eba66bbd","first_seen":"2025-01-18T18:34:29.674603Z","last_seen":"2026-03-28T05:02:38.302065Z","times_seen":67,"resource_available":true,"data":null}},"time_used":152,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allhfpn2026.octopodtech.cn/2024/955/960X120.webp","fqdn":"allhfpn2026.octopodtech.cn","domain":"octopodtech.cn","tld":"cn"},"ip":{"addr":"155.102.45.48","port":443,"asn":0,"as":"","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.762Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allhfpn2026.octopodtech.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Sun, 18 Jan 2026 08:20:57 GMT","end":"Mon, 18 Jan 2027 08:20:56 GMT"},"fingerprint":{"sha1":"7E:DD:67:DC:BE:A8:3B:9A:1E:FC:5B:F6:BC:B2:6F:35:1F:DC:DB:64","sha256":"87:61:0D:E0:88:97:AD:17:F3:D1:E5:EA:FE:01:CA:1A:F3:D1:70:9B:A7:5D:3D:05:10:5E:25:A8:ED:34:E2:DB"}}},"request":{"raw":"GET /2024/955/960X120.webp HTTP/1.1\r\nHost: allhfpn2026.octopodtech.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ESA\r\ncontent-type: image/webp\r\ncontent-length: 193890\r\nset-cookie: acw_tc=2ff6319b17706008259645679e8c4df4cbe285978437eeab9429e4156f;path=/;HttpOnly;Max-Age=3600\ncdn_sec_tc=2ff6319b17706008259645679e8c4df4cbe285978437eeab9429e4156f;path=/;HttpOnly;Max-Age=3600\r\nstrict-transport-security: max-age=15552000; preload\r\nalt-svc: h3=\":443\"; ma=86400, h2=\":443\"; ma=86400\r\ndate: Mon, 09 Feb 2026 01:24:17 GMT\r\nvia: ens-cache9.l2de3[361,0,DP], ens-cache9.l2de3[0,0,304-0,H], ens-cache2.l2de3[1,0], ens-cache5.fr5[20,0,DP], ens-cache5.fr5[21,21,200-0,H], ens-cache7.fr5[21,0]\r\nx-site-cache-status: HIT\r\naccept-ranges: bytes\r\netag: \"67823240-2f562\"\r\nlast-modified: Sat, 11 Jan 2025 08:56:32 GMT\r\nage: 568\r\nali-swift-global-savetime: 1770600257\r\nx-swift-savetime: Mon, 09 Feb 2026 01:33:45 GMT\r\nx-swift-cachetime: 3600\r\ntiming-allow-origin: *\r\neagleid: 2ff6319b17706008259645679e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":193890,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"bccb8942803f52fd642d99c756645190","sha1":"7c52637769416b421b9e9c02b323b879593f8eb9","sha256":"37356b5c8dee4efbbf8b4d4871b2d97720516a7643b27c4a13b9a9af3b5aabc3","sha512":"fc921de8b96e732696f656e24c599e08c01deefd177619feb5195acf1970d8bcefd66c95db6e893703db1403f58528584e3e6a5ebb4556dcb3d72cb0b758b9f7","ssdeep":"3072:/3dEBm/1sexcYNCLqwiwxcYNCLqwiwxj6/kDs9SjDIz3heESWSjDIz3heESO55CE:omaexRqlxRqlxjYWBDeRe/DeReSPSi0+","tlshash":"16141365423aba66ff7079053efa4bb9436d40c10eca4aac253cb431857b654cfb36c6","first_seen":"2025-01-21T03:42:43.08216Z","last_seen":"2026-03-28T08:55:28.819413Z","times_seen":591,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":211,"dns":0,"connect":0,"send":0,"wait":143,"receive":97,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allhfpn2026.octopodtech.cn/2024/9188/960-120.webp","fqdn":"allhfpn2026.octopodtech.cn","domain":"octopodtech.cn","tld":"cn"},"ip":{"addr":"155.102.45.48","port":443,"asn":0,"as":"","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.759Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allhfpn2026.octopodtech.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Sun, 18 Jan 2026 08:20:57 GMT","end":"Mon, 18 Jan 2027 08:20:56 GMT"},"fingerprint":{"sha1":"7E:DD:67:DC:BE:A8:3B:9A:1E:FC:5B:F6:BC:B2:6F:35:1F:DC:DB:64","sha256":"87:61:0D:E0:88:97:AD:17:F3:D1:E5:EA:FE:01:CA:1A:F3:D1:70:9B:A7:5D:3D:05:10:5E:25:A8:ED:34:E2:DB"}}},"request":{"raw":"GET /2024/9188/960-120.webp HTTP/1.1\r\nHost: allhfpn2026.octopodtech.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ESA\r\ncontent-type: image/webp\r\ncontent-length: 168478\r\nset-cookie: acw_tc=2ff6319b17706008259755688ec3805cdfb509a51a5ae184440de28be2;path=/;HttpOnly;Max-Age=3600\ncdn_sec_tc=2ff6319b17706008259755688ec3805cdfb509a51a5ae184440de28be2;path=/;HttpOnly;Max-Age=3600\r\nstrict-transport-security: max-age=15552000; preload\r\nalt-svc: h3=\":443\"; ma=86400, h2=\":443\"; ma=86400\r\ndate: Mon, 09 Feb 2026 01:24:17 GMT\r\nvia: ens-cache8.l2de3[360,0,DP], ens-cache8.l2de3[0,0,304-0,H], ens-cache19.l2de3[1,0], ens-cache9.fr5[19,0,DP], ens-cache9.fr5[21,21,200-0,H], ens-cache7.fr5[24,0]\r\nx-site-cache-status: HIT\r\naccept-ranges: bytes\r\netag: \"6613e665-2921e\"\r\nlast-modified: Mon, 08 Apr 2024 12:43:17 GMT\r\nage: 569\r\nali-swift-global-savetime: 1770600257\r\nx-swift-savetime: Mon, 09 Feb 2026 01:33:46 GMT\r\nx-swift-cachetime: 3600\r\ntiming-allow-origin: *\r\neagleid: 2ff6319b17706008259755688e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":168478,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4c4714548a713b180d4444a31599f523","sha1":"4781b4a4c2947fd25acae7340aecff49bb51b407","sha256":"d9dee5a0eb72db687d7beb7a6268bff9c3407657bb3d05e499d1c331e72700fa","sha512":"48a70a307f0937bd0d417daa6935551298d563fe519e1ab5496ae15a8916d51b3890a626941e8028ac3135e995f5754c28a80057125d4057a40a932bc62b5227","ssdeep":"3072:xTFdbMLIB91q3oTaToPcmj/NEnSYXafkYXafkYXafJWIdm/9r7OPK0qBexVQ:PdwOM3oTuNmhyyBWIAOPwkY","tlshash":"88f3120c527a4c6fdbdb51339a75cc712a2dce9094088c27fc296f8d61976fa1e10b63","first_seen":"2024-04-24T11:14:32Z","last_seen":"2026-03-28T08:55:28.834481Z","times_seen":646,"resource_available":false,"data":null}},"time_used":703,"timings":{"blocked":226,"dns":159,"connect":35,"send":0,"wait":132,"receive":100,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t30.cdn2020.com/video/m3u8/2025/07/07/fb2c19a7/index.m3u8","fqdn":"t30.cdn2020.com","domain":"cdn2020.com","tld":"com"},"ip":{"addr":"172.247.52.42","port":443,"asn":40065,"as":"CNSERVERS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:46.743Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"t30.cdn2020.com","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Thu, 08 Jan 2026 18:02:49 GMT","end":"Sun, 07 Feb 2027 18:02:48 GMT"},"fingerprint":{"sha1":"27:A6:45:AC:D0:81:59:05:A8:0E:88:F5:D3:AB:DB:32:7D:D9:55:A1","sha256":"2A:CD:23:10:1B:85:89:C5:16:2D:A3:02:40:61:8F:7C:BA:7A:1F:FA:F4:93:F6:1F:30:80:32:FE:D9:A3:9F:6E"}}},"request":{"raw":"GET /video/m3u8/2025/07/07/fb2c19a7/index.m3u8 HTTP/1.1\r\nHost: t30.cdn2020.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://avxq133.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\ncontent-type: application/vnd.apple.mpegurl\r\ncontent-length: 22003\r\nlast-modified: Mon, 07 Jul 2025 10:10:42 GMT\r\netag: \"686b9d22-55f3\"\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":22003,"size_decoded":0,"mime_type":"application/vnd.apple.mpegurl","magic":"M3U playlist, ASCII text","md5":"a0f8725d361aefa7290adb184a352acd","sha1":"c5015ddd7c4eb5d8961ebedb043e3a9ecbf76ebc","sha256":"19b43e33653d35907dd6d51db49e9082deeb2b01eb2b24212f605957e1034c5f","sha512":"d3c6d30b6a551edf662ce0c766bfe70f94aeac764bb91ea3595cfdaa69f20421fff40a24b350fb2132b165f919be52611c11e2921ad13421dd87bf3eff6deb4b","ssdeep":"192:wNLjuWKnJsolGcrEde7u7ev8CubB3RBYh5KCziYTGm1uEnSHLbdizhP0EPNCn3wF:wIkNP0ybh/XVs","tlshash":"d9a2af88ea027294d11c4f75eb47b0d2a50afc3a7ec9bdc299601bc42873bd752c4a77","first_seen":"2026-02-09T01:34:27.656589Z","last_seen":"2026-02-09T01:34:27.656589Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1561,"timings":{"blocked":609,"dns":81,"connect":167,"send":0,"wait":170,"receive":172,"ssl":360},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allhfpn2026.octopodtech.cn/2024/6117/960-120.webp","fqdn":"allhfpn2026.octopodtech.cn","domain":"octopodtech.cn","tld":"cn"},"ip":{"addr":"155.102.45.48","port":443,"asn":0,"as":"","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.759Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allhfpn2026.octopodtech.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Sun, 18 Jan 2026 08:20:57 GMT","end":"Mon, 18 Jan 2027 08:20:56 GMT"},"fingerprint":{"sha1":"7E:DD:67:DC:BE:A8:3B:9A:1E:FC:5B:F6:BC:B2:6F:35:1F:DC:DB:64","sha256":"87:61:0D:E0:88:97:AD:17:F3:D1:E5:EA:FE:01:CA:1A:F3:D1:70:9B:A7:5D:3D:05:10:5E:25:A8:ED:34:E2:DB"}}},"request":{"raw":"GET /2024/6117/960-120.webp HTTP/1.1\r\nHost: allhfpn2026.octopodtech.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ESA\r\ncontent-type: image/webp\r\ncontent-length: 311022\r\nset-cookie: acw_tc=2ff6319b17706008259725685e7a074cc13e4860712816ecd06a623f4a;path=/;HttpOnly;Max-Age=3600\ncdn_sec_tc=2ff6319b17706008259725685e7a074cc13e4860712816ecd06a623f4a;path=/;HttpOnly;Max-Age=3600\r\nstrict-transport-security: max-age=15552000; preload\r\nalt-svc: h3=\":443\"; ma=86400, h2=\":443\"; ma=86400\r\ndate: Mon, 09 Feb 2026 01:24:17 GMT\r\nvia: ens-cache3.l2de3[379,0,DP], ens-cache3.l2de3[0,0,304-0,H], ens-cache23.l2de3[0,0], ens-cache7.fr5[20,0,DP], ens-cache7.fr5[21,21,200-0,H], ens-cache7.fr5[22,0]\r\nx-site-cache-status: HIT\r\naccept-ranges: bytes\r\netag: \"6613e62b-4beee\"\r\nlast-modified: Mon, 08 Apr 2024 12:42:19 GMT\r\nage: 568\r\nali-swift-global-savetime: 1770600257\r\nx-swift-savetime: Mon, 09 Feb 2026 01:33:45 GMT\r\nx-swift-cachetime: 3600\r\ntiming-allow-origin: *\r\neagleid: 2ff6319b17706008259725685e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":311022,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"7f7a16586f254cae9cacdb909f04a356","sha1":"60a2fb5297cb85b5b33db030cbefe44e6cfc9bb5","sha256":"d860295b4550a848afd917d6bfa658013094df9f49837673046045cd74a77bf1","sha512":"8c0da221ba0342d6c18db5b0a0d778cc908db966bd5369dbd4485f75392915236b3ed6555649dbae585b08ed32148e79b3c57f108364172e52e2c5dce96c873f","ssdeep":"6144:iD2xFabG/NY/NYIwpMp0oS4KCxbiRoS4KCxbiRoS4jV60Ygg5gg5gJ:iqxoGaaIw3r4vKr4vKr4jVIgegegJ","tlshash":"a364122e5ab406d9edf763f0bcf3a53443ace9b8942b71250b485270131a775e829fe1","first_seen":"2024-04-24T11:14:32Z","last_seen":"2026-03-28T08:55:28.823957Z","times_seen":664,"resource_available":false,"data":null}},"time_used":714,"timings":{"blocked":223,"dns":158,"connect":35,"send":0,"wait":135,"receive":115,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allhfpn2026.octopodtech.cn/2024/908/960-120.webp","fqdn":"allhfpn2026.octopodtech.cn","domain":"octopodtech.cn","tld":"cn"},"ip":{"addr":"155.102.45.48","port":443,"asn":0,"as":"","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allhfpn2026.octopodtech.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Sun, 18 Jan 2026 08:20:57 GMT","end":"Mon, 18 Jan 2027 08:20:56 GMT"},"fingerprint":{"sha1":"7E:DD:67:DC:BE:A8:3B:9A:1E:FC:5B:F6:BC:B2:6F:35:1F:DC:DB:64","sha256":"87:61:0D:E0:88:97:AD:17:F3:D1:E5:EA:FE:01:CA:1A:F3:D1:70:9B:A7:5D:3D:05:10:5E:25:A8:ED:34:E2:DB"}}},"request":{"raw":"GET /2024/908/960-120.webp HTTP/1.1\r\nHost: allhfpn2026.octopodtech.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ESA\r\ncontent-type: image/webp\r\ncontent-length: 895256\r\nset-cookie: acw_tc=2ff6319b17706008259765689ec25adbcb39386851fc72cb26a45b68b4;path=/;HttpOnly;Max-Age=3600\ncdn_sec_tc=2ff6319b17706008259765689ec25adbcb39386851fc72cb26a45b68b4;path=/;HttpOnly;Max-Age=3600\r\nstrict-transport-security: max-age=15552000; preload\r\nalt-svc: h3=\":443\"; ma=86400, h2=\":443\"; ma=86400\r\ndate: Mon, 09 Feb 2026 01:22:23 GMT\r\nvia: ens-cache7.l2de3[487,0,DP], ens-cache7.l2de3[0,0,304-0,H], ens-cache18.l2de3[0,0], ens-cache2.fr5[19,0,DP], ens-cache2.fr5[0,0,200-0,H], ens-cache7.fr5[1,0]\r\naccept-ranges: bytes\r\netag: \"6782331d-da918\"\r\nlast-modified: Sat, 11 Jan 2025 09:00:13 GMT\r\nage: 682\r\nali-swift-global-savetime: 1770600143\r\nx-site-cache-status: HIT\r\nx-swift-savetime: Mon, 09 Feb 2026 01:22:34 GMT\r\nx-swift-cachetime: 3600\r\ntiming-allow-origin: *\r\neagleid: 2ff6319b17706008259765689e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":895256,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"bf05962a0f2855ad5084723b1219190b","sha1":"5f0c3a4391b6272a89398ba581c4c9b16c903a68","sha256":"59cc8abd0fbbf37aedfdbce372a2b7107121dacc178823127b1ecf167e0cceca","sha512":"cdcbabcd6a336d1fad1b619054d12924444d3f5ee4cc1aed6f617456270b11d4f378384046e9d508dd15721ca7596e8afa439fa6117bd91c122c45f81caa3f7f","ssdeep":"24576:pmCqkYyIOSsWuPB8Lf3ZpalZMepjx6pUZKuavMGw4oZG:UsPPmD2JpKusXwpZG","tlshash":"1915236577e4021cf36da532af10978e30a73e8753e4e773a04573f99c0766292362ab","first_seen":"2025-01-21T03:42:43.086821Z","last_seen":"2026-03-28T08:55:28.869297Z","times_seen":308,"resource_available":false,"data":null}},"time_used":761,"timings":{"blocked":225,"dns":160,"connect":35,"send":0,"wait":131,"receive":158,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/search_main.js?v=1.0.2","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:46.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/search_main.js?v=1.0.2 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\netag: W/\"6822e48a-518\"\r\nexpires: Mon, 09 Feb 2026 13:33:47 GMT\r\nlast-modified: Tue, 13 May 2025 06:19:54 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-length: 642\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1304,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"7e6090284e3813f69834e9237f2f887d","sha1":"c595f3e8443799a51255cddf9c4ac4c922e942dd","sha256":"4535a71230cd87f371641e1addb956d4d869e27601f8a6baed5b460d0050ebfc","sha512":"b06439a483f467dac6badc832d0fa95bcc02eedfcc9eeeae890f6df7e75d9473d82724214c700b5981cc037ac84f876a894b823338cbf537068afe787cb4ceaf","ssdeep":"","tlshash":"ec21e0fe3ca28055a1767f99865b548cf312b007b70bd4583d4d43449f80c69b271aa7","first_seen":"2026-02-08T08:03:46.305799Z","last_seen":"2026-03-14T20:11:05.193728Z","times_seen":15,"resource_available":true,"data":null}},"time_used":152,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/zui.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/zui.js?v=1.2.8 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_4NKKZ50480=GS2.1.s1770600826$o1$g0$t1770600826$j60$l0$h0; _ga=GA1.1.485084106.1770600827; _ga_QGG6453XKD=GS2.1.s1770600827$o1$g0$t1770600827$j60$l0$h0\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\netag: W/\"682dea18-c7aa\"\r\nexpires: Mon, 09 Feb 2026 13:33:47 GMT\r\nlast-modified: Wed, 21 May 2025 14:58:32 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":51114,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (1598)","md5":"952da50e249b0a51260506fd8eb75494","sha1":"80fe332bb51e3ed69b81f27f9413dc57aa38b5a1","sha256":"7f199d1966b4488a076646d11a6dd2461da7502c40795fc391615f46cf266df2","sha512":"87460e600fb3e76e378cdb4406e598aaa8459628fbccef4a33d50e4315d36fc279d28433a289b59b25b2b86bdce25e36c279b7bf55d67231cd0d958bc35f9774","ssdeep":"1536:s/hPfSy92XAn5FhUp5H5rMmMtqXm4kSWJ3A:s/hPfS3XstqXm4a+","tlshash":"5d33960538f52155575b71b668ef110c7238d02b490a6d243d9cebd8af90938a3fbfe8","first_seen":"2025-06-14T16:20:55.866473Z","last_seen":"2026-03-29T21:24:18.782152Z","times_seen":92,"resource_available":true,"data":null}},"time_used":154,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":154,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-4NKKZ50480","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.142.232","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.763Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:36:37 GMT","end":"Mon, 06 Apr 2026 08:36:36 GMT"},"fingerprint":{"sha1":"D1:4E:DB:C9:1C:90:74:26:D2:F3:40:74:02:DB:66:36:23:CB:45:12","sha256":"08:51:D4:42:81:8D:57:AC:83:18:86:85:25:AD:F1:2F:82:17:60:A4:FA:C6:D4:09:86:34:D3:30:65:78:09:B2"}}},"request":{"raw":"GET /gtag/js?id=G-4NKKZ50480 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\nexpires: Mon, 09 Feb 2026 01:33:45 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 146245\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":440838,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6033)","md5":"d742212703e8c63036c1fff807aeba60","sha1":"e984ed0714826552ca13f84b246a222f70a57677","sha256":"64d1c4b9e70895a4d96284d88880183108f4cbb2340f53eb46b9f8dc5e971980","sha512":"41404ad1096729bc0657390dad2a9363c1745af057198cd8e0c4f5c83380cb62a4723804bc7ca0c520717a358923c65b5f2b920c117e6314593b2d34b09151f9","ssdeep":"6144:/Ibh3hD8zzfR881qbOqR51/48BjM3cp81Qj3AEFytI10KTB:gbh3hDmz58nbD/48BzFy4B","tlshash":"479409de73c674225396f478502f018ba57b28a2f48cc89af189cce42d74a9a4177f7d","first_seen":"2026-02-09T01:34:27.660298Z","last_seen":"2026-02-09T01:34:27.660298Z","times_seen":1,"resource_available":true,"data":null}},"time_used":147,"timings":{"blocked":-1,"dns":0,"connect":8,"send":0,"wait":30,"receive":27,"ssl":82},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-QGG6453XKD","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.142.232","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:36:37 GMT","end":"Mon, 06 Apr 2026 08:36:36 GMT"},"fingerprint":{"sha1":"D1:4E:DB:C9:1C:90:74:26:D2:F3:40:74:02:DB:66:36:23:CB:45:12","sha256":"08:51:D4:42:81:8D:57:AC:83:18:86:85:25:AD:F1:2F:82:17:60:A4:FA:C6:D4:09:86:34:D3:30:65:78:09:B2"}}},"request":{"raw":"GET /gtag/js?id=G-QGG6453XKD HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\nexpires: Mon, 09 Feb 2026 01:33:45 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 145920\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":440616,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6033)","md5":"bd1263834c3526748358fcce07333834","sha1":"d01b05d7764fa3f89ae747c6766dadeb0955aa1b","sha256":"020a19888c69bd746c5a374d8642c8e84a134d833aec1d8237636ffe31ac2198","sha512":"587a54e06e22524abc7c8d72ce8c6b173477099052299238d7313dfcdd943e5b076d31e0211180c258447855d031751fe81d049d9a63c512e32c81359ba5f9cb","ssdeep":"6144:LoIbh3hDazzfR681qbOqR51/48BjM3cp81Qj3AEFytI10KTB:LPbh3hDgz56nbD/48BzFy4B","tlshash":"6d940ade73c674225396e478503f018ba57b28a2f48cc89af189cce42d74a9a4177f7d","first_seen":"2026-02-08T08:03:46.296285Z","last_seen":"2026-02-09T01:34:27.660959Z","times_seen":2,"resource_available":true,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":1,"connect":21,"send":0,"wait":55,"receive":26,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.plyr.io/3.6.8/plyr.svg","fqdn":"cdn.plyr.io","domain":"plyr.io","tld":"io"},"ip":{"addr":"104.26.13.19","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:46.712Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.plyr.io","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 08 Jan 2026 23:47:18 GMT","end":"Thu, 09 Apr 2026 00:47:10 GMT"},"fingerprint":{"sha1":"A6:BE:1F:EF:82:9B:A7:5C:A8:25:EC:0C:FB:6B:D1:99:51:A9:03:68","sha256":"8E:7E:59:9C:FC:F5:0E:B2:1B:73:1B:57:A3:52:C4:C5:E1:AF:62:4E:26:AD:76:13:6B:8E:E6:5F:22:7C:27:F2"}}},"request":{"raw":"GET /3.6.8/plyr.svg HTTP/1.1\r\nHost: cdn.plyr.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://avxq133.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 09 Feb 2026 01:33:46 GMT\r\ncontent-type: image/svg+xml\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\nage: 37840\r\nlast-modified: Thu, 20 Apr 2023 10:33:44 GMT\r\nvary: Origin\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qt4bvZizRTSfU4N4fqnXRaCVWH50yorRZLyMssybZVmFXmXwdpFFE8MP7v915abdMRcsVbvHhXkNryUyq1JiKMfvNLqoYxWvWGo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: W/\"3a727a9b7eef825081d78cc6e48aaadf\"\r\ncontent-encoding: br\r\ncf-ray: 9caf9edf2b5b723c-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5785,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3a727a9b7eef825081d78cc6e48aaadf","sha1":"bc98e4a347921594352fbae53aaad185c0c7f6b5","sha256":"4846018760f6e11a8a1dea7639a5c75c712f198d978eccf117840820bb8c37d7","sha512":"a685f2c1a709994fbbf25582ccb4996562973e33b859d58225a3388de22410b5a2e2a52a87bda13d5473c3348f1ab7fb8c01010e6778d52276eb649ba03ba308","ssdeep":"96:ym9IR6RryIR6R2syGo0R1J5a6A3jalbI0NSJVUqSnxKfi5aR:yFR6RrRR6RHf1raYlM00JqAyaR","tlshash":"c7c197ffc72483b95c87993ddf33a090318fa1fab4e541b8a1558bb48b975c5e906e10","first_seen":"2023-05-09T20:31:23Z","last_seen":"2026-04-03T20:50:00.575595Z","times_seen":2923,"resource_available":true,"data":null}},"time_used":71,"timings":{"blocked":33,"dns":5,"connect":1,"send":0,"wait":5,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/images/favicon.ico","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/images/favicon.ico HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_4NKKZ50480=GS2.1.s1770600826$o1$g0$t1770600826$j60$l0$h0; _ga=GA1.1.485084106.1770600827; _ga_QGG6453XKD=GS2.1.s1770600827$o1$g0$t1770600827$j60$l0$h0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-type: image/x-icon\r\ndate: Mon, 09 Feb 2026 01:33:48 GMT\r\netag: \"69820814-2bda8\"\r\nlast-modified: Tue, 03 Feb 2026 14:37:08 GMT\r\nserver: nginx\r\ncontent-length: 179624\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":179624,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 9 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel","md5":"c5bdbc19a6875a99115170463ba673af","sha1":"8073f7e07fa92eaba24d62824c39605505a56ab7","sha256":"b484280591d0893257b1181a355ff95429a5eb53788c7054c22c71743292a667","sha512":"8532a6b9ead767fde94b0bc0a9a22a75e6d2e7454ffac830558bd7129db88800bbab76bd2a23ea277b30bb4fd1857cb4119e27d09fd5525eaecec9b4d4e8b751","ssdeep":"1536:6+6EzQX9O2txFMxXOGTwu9Xnk0uiReaGjVu4kLk998/++xvvfMShGcm2CVXYz:5ikxXOcXnkbVutLk/MM+Gybz","tlshash":"cd04ed5b90f7c300fd61d2f572f7aaf03ba298d94628e441ffe276084866e59d206b47","first_seen":"2026-02-08T08:03:46.285182Z","last_seen":"2026-03-14T20:11:05.219182Z","times_seen":17,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":197,"receive":50,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/images/apple-touch-icon.png","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.984Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/images/apple-touch-icon.png HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_4NKKZ50480=GS2.1.s1770600826$o1$g0$t1770600826$j60$l0$h0; _ga=GA1.1.485084106.1770600827; _ga_QGG6453XKD=GS2.1.s1770600827$o1$g0$t1770600827$j60$l0$h0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncontent-type: image/png\r\ndate: Mon, 09 Feb 2026 01:33:48 GMT\r\netag: W/\"6919f7c0-28c67\"\r\nexpires: Wed, 11 Mar 2026 01:33:48 GMT\r\nlast-modified: Sun, 16 Nov 2025 16:11:44 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":167015,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1280 x 264, 8-bit/color RGBA, non-interlaced","md5":"97e230fbf9fd2341bc2b50ee720484ad","sha1":"9a6e3d6435e543b23e1d8a1e59c3eff94c4c21a6","sha256":"d61e7c75e16aa1e4b940b499f10131d56ecae9ca7e9ede6b49f06062c413a6e3","sha512":"551a15fec5cb4b04dcddca7f4e4e6d204530454fcf9f9f398adecc0f6913abc7396ab3514fed6c23ebc3b589e12a8f9d1b9385ec00a69b3c87edbcdd2c7d08ff","ssdeep":"3072:VrX5LYgDzYqZP/1+cYglXM07ZUyb8eYu64cl/scVWexvVMkQKFZMbO0Q:VN0IZ3kcYglXxeQYZ7F9vqASbw","tlshash":"e1f31262f45f5b0cf141cdd69390299d2851bef6139b62e8838aa75f831e007913af7e","first_seen":"2026-02-08T08:03:46.293938Z","last_seen":"2026-03-14T20:11:05.209236Z","times_seen":17,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":153,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t30.cdn2020.com/video/m3u8/2025/07/07/fb2c19a7/0001.ts","fqdn":"t30.cdn2020.com","domain":"cdn2020.com","tld":"com"},"ip":{"addr":"172.247.52.42","port":443,"asn":40065,"as":"CNSERVERS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:48.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"t30.cdn2020.com","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Thu, 08 Jan 2026 18:02:49 GMT","end":"Sun, 07 Feb 2027 18:02:48 GMT"},"fingerprint":{"sha1":"27:A6:45:AC:D0:81:59:05:A8:0E:88:F5:D3:AB:DB:32:7D:D9:55:A1","sha256":"2A:CD:23:10:1B:85:89:C5:16:2D:A3:02:40:61:8F:7C:BA:7A:1F:FA:F4:93:F6:1F:30:80:32:FE:D9:A3:9F:6E"}}},"request":{"raw":"GET /video/m3u8/2025/07/07/fb2c19a7/0001.ts HTTP/1.1\r\nHost: t30.cdn2020.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://avxq133.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 09 Feb 2026 01:33:48 GMT\r\ncontent-type: video/mp2t\r\ncontent-length: 574152\r\nlast-modified: Mon, 07 Jul 2025 10:10:36 GMT\r\netag: \"686b9d1c-8c2c8\"\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":574152,"size_decoded":0,"mime_type":"video/mp2t","magic":"data","md5":"ee47548c99a678c4ef7f9a81df2addf7","sha1":"37932880d3050a1ce9cb41a1805b6e2575bfe627","sha256":"81cae19bba71bd060987ce5476dc7bc1af53abe8bde73b92b79b969bf6fee110","sha512":"22a67e93442fe077d2d6d0514c71e137845b1a8265a590afcc4f3cdbc31fe35fbd685141e87c6b5a236097eefd308275d2a7adb17a5168c702439f8b14bde5d0","ssdeep":"12288:/XsPU0RNO/zt7FDzXNqMe6kyxxpkM1Nw4ywSUIleY0NlAR:PsPhNO/57d5XzX1C4WpeJXAR","tlshash":"61c412b16b415c7250110ae2c70b6bb3a3b85c418ec14fa71d5ab31efcf97c9ac9647a","first_seen":"2026-02-09T01:34:27.663222Z","last_seen":"2026-02-09T01:34:27.663222Z","times_seen":1,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":168,"receive":101,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/lib/jquery.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.130Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/lib/jquery.js?v=1.2.8 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_4NKKZ50480=GS2.1.s1770600826$o1$g0$t1770600826$j60$l0$h0; _ga=GA1.1.485084106.1770600827; _ga_QGG6453XKD=GS2.1.s1770600827$o1$g0$t1770600827$j60$l0$h0\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\netag: W/\"68229dac-155ec\"\r\nexpires: Mon, 09 Feb 2026 13:33:47 GMT\r\nlast-modified: Tue, 13 May 2025 01:17:32 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":87532,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"c9771cc3e90e18f5336eedbd0fffb2cf","sha1":"6ee8aaa3ac1f4e0ae18717a3fd26892e9f0e4cc5","sha256":"3e7501d15c3630e791c8b20392eb9dee31a9f65ce3efdde76cef5c710141ab24","sha512":"c503341fa3a7176fd10bd8cd7a5717c8faf971f87fa0c158f2d94fcd484ae3ed5031f49414dae833fb806b7365b5699c21d2e655376f69adb052b22f6f6982a7","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GK7:sHNwcv9VBQpLl88SMBQ47GK7","tlshash":"8083f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-10-13T22:05:06Z","last_seen":"2026-04-03T21:43:40.739099Z","times_seen":21247,"resource_available":true,"data":null}},"time_used":155,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/common.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/common.js?v=1.2.8 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_4NKKZ50480=GS2.1.s1770600826$o1$g0$t1770600826$j60$l0$h0; _ga=GA1.1.485084106.1770600827; _ga_QGG6453XKD=GS2.1.s1770600827$o1$g0$t1770600827$j60$l0$h0\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\netag: W/\"6830bc56-1afe\"\r\nexpires: Mon, 09 Feb 2026 13:33:47 GMT\r\nlast-modified: Fri, 23 May 2025 18:20:06 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-length: 2363\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6910,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"f13cd59e2423df5c8b3d21b184db4558","sha1":"d6072ac5e98a19d943b254751e31e13861a80526","sha256":"616def684ac8b62e04abde29cab4d061b37b74debc52ebeab984abc4f98465ef","sha512":"556f1073c3dd1f96b8306aaa27265e86e276ee45d8a71b446fbcae080de110c759be2b5a3e3f8ed392c39a2d6a553f033d4f80cfdc3c8daced3501b6fefe8d2e","ssdeep":"192:3YjS/7tlIGO3wuU3wVT1yQp4yQRKuvzJWQz:V43HU36RP4bWe","tlshash":"ffe1f01d74f2111151bb707e5abfa504373595036249de09beec8b81af90a2ceaf3a9c","first_seen":"2026-02-08T08:03:46.320532Z","last_seen":"2026-03-14T20:11:05.197403Z","times_seen":17,"resource_available":true,"data":null}},"time_used":158,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":157,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/css/index.css?v=v1.0.1","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.747Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/css/index.css?v=v1.0.1 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: text/css\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"68204028-836\"\r\nexpires: Mon, 09 Feb 2026 13:33:45 GMT\r\nlast-modified: Sun, 11 May 2025 06:14:00 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-length: 606\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2102,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a83b773dbb5aac9f40c79394b71cb54a","sha1":"0864fecee53523c6fc86556e55058fbe74f50bda","sha256":"c501d3cd60a9777824861e0f5a7e8f1ebfe8e2d7e6ff23a75de0e8410d8a400f","sha512":"258fb9d467c1f4aa8370daf5c1c697d43d7f34b3916b3467a60ffea37a654286e4c14194024c3452e8881e0e85e0af00f947196ba5d23ec6c4f46c4ad413319f","ssdeep":"","tlshash":"17412512f6df99adb45f9125113cdba8277d0082db258d2c3a46797c3bdb1e36033454","first_seen":"2025-06-14T16:20:55.893705Z","last_seen":"2026-03-29T21:24:18.765674Z","times_seen":92,"resource_available":false,"data":null}},"time_used":493,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":493,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/video_helper.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/video_helper.js?v=1.2.8 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_4NKKZ50480=GS2.1.s1770600826$o1$g0$t1770600826$j60$l0$h0; _ga=GA1.1.485084106.1770600827; _ga_QGG6453XKD=GS2.1.s1770600827$o1$g0$t1770600827$j60$l0$h0\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\netag: W/\"6822f848-913\"\r\nexpires: Mon, 09 Feb 2026 13:33:47 GMT\r\nlast-modified: Tue, 13 May 2025 07:44:08 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-length: 1033\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2323,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"184b925ecad4660729158d7ff6bf478c","sha1":"709869e934efba7d63f751a05a156b1f3e93c236","sha256":"77beb0a327333c73a8c09b8f6d74ead75fca3bf5e1cdcc53d781faf39a5fc62e","sha512":"31f2e7ba182e204e99f58a1edf12eb3849fdb2459c2a457945a5bfd29a099adce4ada2b2448d28aa8b3769edd5f06905ff8f32a540966acbf1e9ce27c6b385fe","ssdeep":"","tlshash":"9d41e02d3af0a0655b53b0767d5f88057234a013110a4e65be8ee7648f72f7885e2fed","first_seen":"2026-02-08T08:03:46.318397Z","last_seen":"2026-03-14T20:11:05.220237Z","times_seen":17,"resource_available":true,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":157,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/static/player/plyr/hls.min.js","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.752Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /static/player/plyr/hls.min.js HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"67802676-53f12\"\r\nexpires: Mon, 09 Feb 2026 13:33:45 GMT\r\nlast-modified: Thu, 09 Jan 2025 19:41:42 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":343826,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"1e59b3a541bcfa025fdda12cbbaa9f6e","sha1":"b04d134373a70c5c2c536e0246b99dabdde8db9d","sha256":"88fa861d6c2d711a4a0e9c186234ab06f7e0f77b7bda6da22ae50eae6c892570","sha512":"542dfab96d9b4b6f3fe573f83fb46738bef60cc50394276508fdf259685e89cbb5340fc702c8320ef53f7df1f004a82545cb93123dbb07d1f008624e508667e8","ssdeep":"3072:h5lrowpWMeW5wWGoz0YcJQ0UqEUgagmykNjNp4yyUmeRpzxUD4eRBu4k:awp+YRGowYMQ0Uq3gnmsyyzeRp2zu4k","tlshash":"7e743bdd7654606a43c2a1a4903f86076337bd0b7409c1acfa2be9e65cb994db03bf74","first_seen":"2023-03-11T12:24:59Z","last_seen":"2026-03-14T09:09:09.934421Z","times_seen":654,"resource_available":true,"data":null}},"time_used":544,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":544,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/plugins/lazyload.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.134Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/plugins/lazyload.js?v=1.2.8 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_4NKKZ50480=GS2.1.s1770600826$o1$g0$t1770600826$j60$l0$h0; _ga=GA1.1.485084106.1770600827; _ga_QGG6453XKD=GS2.1.s1770600827$o1$g0$t1770600827$j60$l0$h0\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\netag: W/\"6856a986-a57\"\r\nexpires: Mon, 09 Feb 2026 13:33:47 GMT\r\nlast-modified: Sat, 21 Jun 2025 12:45:58 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-length: 860\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2647,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"b2e32b2b930f629ac6b86218966b06ee","sha1":"c617302ef188c321500cd23e14b31ec00200b131","sha256":"4be715464623023fcce39fdf0bd0036a9f1df58b6d80000c89f7596b3d121498","sha512":"0d5ac7082268882bff82d6b4e3bff845f0083ca5802933975fddce379fe0d7c8c83bd825f934abca1fb7b2858b223ec813169a94fc50b5bea8353ffc2d6f3b85","ssdeep":"","tlshash":"fb510e0e25bf13b70c2370b16a1b28627954543f3109ce213f9db3559fa4e3e58b1aea","first_seen":"2026-02-08T08:03:46.283097Z","last_seen":"2026-03-14T20:11:05.212458Z","times_seen":17,"resource_available":false,"data":null}},"time_used":161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":160,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/lib/jquery.js","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.748Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/lib/jquery.js HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"68229dac-155ec\"\r\nexpires: Mon, 09 Feb 2026 13:33:45 GMT\r\nlast-modified: Tue, 13 May 2025 01:17:32 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":87532,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"c9771cc3e90e18f5336eedbd0fffb2cf","sha1":"6ee8aaa3ac1f4e0ae18717a3fd26892e9f0e4cc5","sha256":"3e7501d15c3630e791c8b20392eb9dee31a9f65ce3efdde76cef5c710141ab24","sha512":"c503341fa3a7176fd10bd8cd7a5717c8faf971f87fa0c158f2d94fcd484ae3ed5031f49414dae833fb806b7365b5699c21d2e655376f69adb052b22f6f6982a7","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GK7:sHNwcv9VBQpLl88SMBQ47GK7","tlshash":"8083f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-10-13T22:05:06Z","last_seen":"2026-04-03T21:43:40.739099Z","times_seen":21247,"resource_available":true,"data":null}},"time_used":184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tutu1.space/images/2025/07/07/8892380d5f2c7674d8538bd52a6bf598.jpg","fqdn":"tutu1.space","domain":"tutu1.space","tld":"space"},"ip":{"addr":"23.224.117.13","port":443,"asn":40065,"as":"CNSERVERS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:46.961Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"tutu1.space","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 20:56:49 GMT","end":"Sun, 03 May 2026 20:56:48 GMT"},"fingerprint":{"sha1":"37:FC:4B:5A:F3:E5:3D:65:4D:00:0E:EC:23:9E:BF:0E:CE:17:E6:A5","sha256":"0F:8F:4D:6A:04:57:F2:FB:19:BB:C9:DF:78:00:8B:36:11:F6:85:6D:E3:C1:43:2F:92:BD:1C:CA:3C:0D:8B:BA"}}},"request":{"raw":"GET /images/2025/07/07/8892380d5f2c7674d8538bd52a6bf598.jpg HTTP/1.1\r\nHost: tutu1.space\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 21222\r\nlast-modified: Mon, 07 Jul 2025 10:47:39 GMT\r\netag: \"686ba5cb-52e6\"\r\nexpires: Wed, 11 Mar 2026 01:33:47 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21222,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"Generated by Snipaste\", baseline, precision 8, 376x395, components 3","md5":"39bf9ff6348ab368d6a7d662f6c76a2d","sha1":"998c4b03eafc94843ef4d63e63201542330b5158","sha256":"c4f4600881a7d4098c05a6454ab83fb0741e7aa111db62320357e22882964a40","sha512":"ac7317e206d6d6250fd268665936b1dd96986c68b3006bf0ef4f6e23c0284932521bbbab8023a96b509aab4b898c629d146ad8c6b10b328776df28b6921e67d5","ssdeep":"384:af+WvGnHCoX+S2RU1mrpFVxIICy//CwiIymstctuCo7nA5:afBvyn+TRZrrCo/Bint+sL+","tlshash":"dd92e11d0e80c0122db5207bac9ddfcea110de575df637269ac7f266c66a145a3037ab","first_seen":"2025-07-08T19:46:23.536797Z","last_seen":"2026-02-09T01:34:27.669665Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1414,"timings":{"blocked":530,"dns":4,"connect":170,"send":0,"wait":175,"receive":178,"ssl":355},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tutu1.space/video/m3u8/2025/08/05/dad80eac/vod.jpg","fqdn":"tutu1.space","domain":"tutu1.space","tld":"space"},"ip":{"addr":"23.224.117.13","port":443,"asn":40065,"as":"CNSERVERS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"tutu1.space","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 20:56:49 GMT","end":"Sun, 03 May 2026 20:56:48 GMT"},"fingerprint":{"sha1":"37:FC:4B:5A:F3:E5:3D:65:4D:00:0E:EC:23:9E:BF:0E:CE:17:E6:A5","sha256":"0F:8F:4D:6A:04:57:F2:FB:19:BB:C9:DF:78:00:8B:36:11:F6:85:6D:E3:C1:43:2F:92:BD:1C:CA:3C:0D:8B:BA"}}},"request":{"raw":"GET /video/m3u8/2025/08/05/dad80eac/vod.jpg HTTP/1.1\r\nHost: tutu1.space\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 11961\r\nlast-modified: Tue, 05 Aug 2025 08:06:00 GMT\r\netag: \"6891bb68-2eb9\"\r\nexpires: Wed, 11 Mar 2026 01:33:47 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11961,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 44x45, segment length 16, comment: \"Lavc58.20.104\", baseline, precision 8, 400x220, components 3","md5":"985ee0c43ad32388f2571997deb21797","sha1":"3be280d61870151072bce9fd04498083365f6703","sha256":"b2d0fc26b0cdb8168a11197fee952fb1322473c25b962f748d03ab4b7c220710","sha512":"e3bb32b923bba980220fefa306bd96758aac496be10f86003cc4f9a00ffcc215617e3248d722a4e10a8c5f44832e3c945a5978e445841c8ab2a882964cc06d94","ssdeep":"192:HihX3parhZe3z5PvIBxlA2R9YDVcufNNPlXDlbiEHRuKNg:CshZvBxlA2RaDVcWNPZMEy","tlshash":"f532bfd9e2e1adbf8a8351a2c9665023dc74b899c7f63be144dc034814cdb17a8ee086","first_seen":"2026-02-09T01:34:27.67114Z","last_seen":"2026-02-09T01:34:27.67114Z","times_seen":1,"resource_available":false,"data":null}},"time_used":223,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":216,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/GE/CC/VALIDATOR?key=c6238927ad526ad0e12d1cea7f8be6a9.48fb27fc617b7451aca10d6a56d9fcf3.1770600822\u0026url=https%3A%2F%2Favxq133.cc%2Findex.php%2Fvod%2Fplay%2Fid%2F186626%2Fsid%2F1%2Fnid%2F1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-09T01:33:42.353Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /GE/CC/VALIDATOR?key=c6238927ad526ad0e12d1cea7f8be6a9.48fb27fc617b7451aca10d6a56d9fcf3.1770600822\u0026url=https%3A%2F%2Favxq133.cc%2Findex.php%2Fvod%2Fplay%2Fid%2F186626%2Fsid%2F1%2Fnid%2F1.html HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: text/html; charset=utf-8\r\nlocation: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\ncontent-length: 0\r\ndate: Mon, 09 Feb 2026 01:33:42 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":107368,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T22:31:02.952373Z","times_seen":13306102,"resource_available":true,"data":null}},"time_used":150,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":150,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-09T01:33:42.506Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /index.php/vod/play/id/186626/sid/1/nid/1.html HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: text/html; charset=utf-8\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"RequireJS","description":"RequireJS is a JavaScript library and file loader which manages the dependencies between JavaScript files and in modular programming.","website":"https://requirejs.org","common_platform_enumeration":"","icon":"RequireJS.svg","categories":["JavaScript frameworks"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}],"data":{"size":107368,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (5541)","md5":"aa7b2d8a5fbd3dfd75b717a727a6c010","sha1":"3312ccf56c3870283d09b3f4157220a3fedc7db8","sha256":"39ca553f0ce0a19f03f655d9f49083f2d0ebc58d3bb05d6cbb78b0979f8a99ef","sha512":"a8ca8cc577d3d963781303bbad4d0460b439be3809750d9cd8ce98c143871ff7491bfebb250069800e31c6bc8c253face2babf7627a7cfcddbb362fcb40e4222","ssdeep":"1536:MRoogXb5kQ9Mim1lMPmfLaaNOp43Cxt9UMMjF9h:zmQPmoPmzLoO3CxHnMjF9h","tlshash":"76a3a6b2c2ec0e7f011792c2a514b7ade09fee31d527d59af2ff215693c2d4129530aa","first_seen":"2026-02-09T01:34:27.672331Z","last_seen":"2026-02-09T01:34:27.672331Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2998,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2998,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/css/player.css","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.750Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/css/player.css HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: text/css\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"6822f44a-1500\"\r\nexpires: Mon, 09 Feb 2026 13:33:45 GMT\r\nlast-modified: Tue, 13 May 2025 07:27:06 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-length: 1408\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5376,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"2e498cafc2ecd1f14b45788229a426bc","sha1":"5da74749f4cea3ae487a5da6a0531af45f267d23","sha256":"0cccf6340235eaae1c78ad393cdb6482f287eb6be252822d96f61c07f08a3db1","sha512":"095773c306b0a8a339800c689e2998a3859ad92a72bbda730e3706067b00320dab372fa98f1f74f4715e1dc84b72e484917c2263e5217be99f95ac9c67afe359","ssdeep":"96:VCdBRR+mWxMGmKbph0Di0OKPxrBP4ggUWSFfciWO8:odBRR+mWxMGRft0OKPxrBP4ggUW5iZ8","tlshash":"feb123f02ae20cc4b61ad10c5ef986d5b36560839a0bed6df7d520ccafc06f52651bc5","first_seen":"2025-09-28T06:32:03.035175Z","last_seen":"2026-03-14T09:09:09.945044Z","times_seen":7,"resource_available":false,"data":null}},"time_used":592,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":590,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/index.php/ajax/hits?mid=1\u0026id=186626\u0026type=update","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:46.965Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /index.php/ajax/hits?mid=1\u0026id=186626\u0026type=update HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/javascript, */*; q=0.01\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/json; charset=utf-8\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-length: 90\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"41486c32717b33fd6a2d6962289689d0","sha1":"724f5e57cf61fb60dc7e79b4d027b268207195d3","sha256":"3150161faebfcf83b7ea2e4e195fc524f4eacc25ac7a9f8c71c1e0fca75cf095","sha512":"21519cf3f241400333eaec142283d9cfa8abcbdbf2c344bf3b8df3c228d56108de549b5bef73df4b7857b04ac2c09bd777acb4b8288f9ee146504cb572055ae5","ssdeep":"","tlshash":"23a0028768ee05a34d0ba348815c5702967da1585da373714eddeb20c65ccfe382a8fa","first_seen":"2026-02-09T01:34:27.674331Z","last_seen":"2026-02-09T01:34:27.674331Z","times_seen":1,"resource_available":false,"data":null}},"time_used":431,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":430,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/utils.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/utils.js?v=1.2.8 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_4NKKZ50480=GS2.1.s1770600826$o1$g0$t1770600826$j60$l0$h0; _ga=GA1.1.485084106.1770600827; _ga_QGG6453XKD=GS2.1.s1770600827$o1$g0$t1770600827$j60$l0$h0\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\netag: W/\"68229de6-18b5\"\r\nexpires: Mon, 09 Feb 2026 13:33:47 GMT\r\nlast-modified: Tue, 13 May 2025 01:18:30 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-length: 3148\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6325,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (1634)","md5":"99539701a73d911abfeb88dcc9b13131","sha1":"357fda6a3ebcea407a92c112465ef3b8cc7c84c0","sha256":"7873465e7adc441aa2b6f317eb4eb6f5c5db7113e64428673a8a26d36dbc94c9","sha512":"74f18dba9ac550343dfd0ec29abdcdf764229f862c8732bf983be34d4f07667736b6c59667be9623fd5f040eaa345bc3eeb49cedf96c50b740f97b34bcb9e6f7","ssdeep":"192:8MjnYRs6d8yIqRs1LD2IytlomlMz/BuUJQlztCyOlBd:8wYRs6d8wRsIcJaIDd","tlshash":"5bd1d68878e6db8201a3f099435f6a00f6f415673825d841ba4c67d09f22c6ac7f69cf","first_seen":"2025-06-14T16:20:55.83278Z","last_seen":"2026-03-14T20:11:05.196223Z","times_seen":83,"resource_available":true,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/http.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.323Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/http.js?v=1.2.8 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_4NKKZ50480=GS2.1.s1770600826$o1$g0$t1770600826$j60$l0$h0; _ga=GA1.1.485084106.1770600827; _ga_QGG6453XKD=GS2.1.s1770600827$o1$g0$t1770600827$j60$l0$h0\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncache-control: max-age=43200\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\netag: \"6822e40e-0\"\r\nexpires: Mon, 09 Feb 2026 13:33:47 GMT\r\nlast-modified: Tue, 13 May 2025 06:17:50 GMT\r\nserver: nginx\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T22:31:02.952373Z","times_seen":13306102,"resource_available":true,"data":null}},"time_used":150,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":150,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/css/common.css?v=v1.2.0","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.746Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/css/common.css?v=v1.2.0 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: text/css\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"698617d0-b33f\"\r\nexpires: Mon, 09 Feb 2026 13:33:45 GMT\r\nlast-modified: Fri, 06 Feb 2026 16:33:20 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":45887,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, Unicode text, UTF-8 text","md5":"da952fb48f4faea975b830227139fe53","sha1":"01e3d1ed5ca5379c972ad3a97fdc6c5ee0a98109","sha256":"852efb16d3e2bb32c6da7cff01e6ab9ccc1d8f3e476c7197362b998983b01e66","sha512":"0fffc5e9b59c2c9babcbf1d800c960e4337d79c7dc9e51fc798034fda0262409532100bd59a20f3b062de691d2255d640cedf6b2b38e105bfb50e453e4a00158","ssdeep":"384:ouU5fXsPyH9+xocqbUZdaBucXJ5nBGaVWfQFv3xRsFvj/bPV5qCyxUx9psSXGZip:S5f4fQFv3xiFvj/55V5lXGZiwFcd","tlshash":"1c23a78766b30914742bb5bdabaa6749b36d5007d60eed69bedc205ccfc43d0d4a3388","first_seen":"2026-02-08T08:03:46.288666Z","last_seen":"2026-03-14T20:11:05.222077Z","times_seen":17,"resource_available":false,"data":null}},"time_used":486,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":486,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/static/player/plyr/plyr.min.js","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.754Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /static/player/plyr/plyr.min.js HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"67802676-1a800\"\r\nexpires: Mon, 09 Feb 2026 13:33:45 GMT\r\nlast-modified: Thu, 09 Jan 2025 19:41:42 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":108544,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"b51ba0c331aa677c2ebfbf39679c613a","sha1":"df7fcc8f8c7490020fca08a9527d2b36abd8215e","sha256":"f034c3fb782f8ef29764a041013abbcc04b69c9ca8467706f413c2ba541d7120","sha512":"f13abf48a91e34a7956190a49347ac5a7fabd349cd31c7d986c76cce0f4637b059486815d6ff4027ca870c8fcfa85a9161954e7bc01f6e987b3856fb496c1a3c","ssdeep":"1536:PDssEIlXFswPoxZ2nXKSljq178G7Cep0lm5+7/550O3sJoP+UWkL++bekSDdBW3V:hxoNCTDR8sA8VUocFPcITO","tlshash":"84b3f9c3331af63281a659cee024021675398b9a7405c26cfc3cedde6968d4275b7f7a","first_seen":"2023-03-10T02:00:58Z","last_seen":"2026-03-31T07:22:53.952729Z","times_seen":308,"resource_available":true,"data":null}},"time_used":508,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":508,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"95e744d34d9d2cbewap.jigool.org/sc/3308?n=dgprkdrj","fqdn":"95e744d34d9d2cbewap.jigool.org","domain":"jigool.org","tld":"org"},"ip":{"addr":"155.102.45.13","port":443,"asn":0,"as":"","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:46.631Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jigool.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 30 Nov 2025 12:23:00 GMT","end":"Sat, 28 Feb 2026 12:22:59 GMT"},"fingerprint":{"sha1":"B2:CD:08:F9:18:FC:3E:47:43:16:76:B6:0A:B5:83:45:D1:F8:DD:94","sha256":"F5:65:45:22:B7:A5:E2:8C:28:E0:8D:98:88:96:60:C5:7E:C0:A9:24:DC:3B:8A:44:E7:1B:33:E2:3B:CB:3D:B1"}}},"request":{"raw":"GET /sc/3308?n=dgprkdrj HTTP/1.1\r\nHost: 95e744d34d9d2cbewap.jigool.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: ESA\r\nContent-Type: text/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nSet-Cookie: acw_tc=2ff6319b17706008269866003e100e6991839783cf0b42d7ed029ad9ca;path=/;HttpOnly;Max-Age=3600\ncdn_sec_tc=2ff6319b17706008269866003e100e6991839783cf0b42d7ed029ad9ca;path=/;HttpOnly;Max-Age=3600\r\nCache-Control: max-age=1800\r\nDate: Mon, 09 Feb 2026 01:37:26 GMT\r\nvia: ens-cache38.l2hk12[12,0,DP], ens-cache12.l2sg9[44,0,DP], ens-cache4.l2de4[196,0,DP], ens-cache7.fr5[215,0,DP], ens-cache7.fr5[215,0]\r\nx-site-cache-status: DYNAMIC\r\nP3P: CP=\"CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR\"\r\nAccess-Control-Allow-Origin: *\r\nPragma: max-age=1800\r\nStrict-Transport-Security: max-age=31536000\r\nTiming-Allow-Origin: *\r\nEagleId: 2ff6319b17706008269866003e\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9646,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (9604), with CRLF line terminators","md5":"c52ae6019c259923007a1a05add2687d","sha1":"0ebe055f45e5640bfe97a428e04b81c1064c13e6","sha256":"19d225786e4a3a9c36bad4feee2854cf149ff97a13beef4aed2a4d6022571b82","sha512":"0400c125ad6acdf5cbfb0ccdc2689e71b70ac8593576bdf1d952c6b16b0b63f17fbf51fb4c1e96ceae9543437c900c04e5fbbb7dacba04e1c5215b2f07ca0c76","ssdeep":"192:semVVExYpv29C5z4FOdYC8PnLMcJTDU+UNP16McTArHeTEUgRP9YobXW1LYzP8Cr:semoxKSMzJdYC0MQHU+UF3UgRP9zbaYz","tlshash":"0212d828b387b471434ba1e2257f274c753e43345f079428632ab8907d6ce9a256bff9","first_seen":"2026-02-09T01:34:27.678111Z","last_seen":"2026-02-09T01:34:27.678111Z","times_seen":1,"resource_available":true,"data":null}},"time_used":977,"timings":{"blocked":363,"dns":290,"connect":32,"send":0,"wait":249,"receive":1,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t30.cdn2020.com/video/m3u8/2025/07/07/fb2c19a7/0002.ts","fqdn":"t30.cdn2020.com","domain":"cdn2020.com","tld":"com"},"ip":{"addr":"172.247.52.42","port":443,"asn":40065,"as":"CNSERVERS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:49.120Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"t30.cdn2020.com","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Thu, 08 Jan 2026 18:02:49 GMT","end":"Sun, 07 Feb 2027 18:02:48 GMT"},"fingerprint":{"sha1":"27:A6:45:AC:D0:81:59:05:A8:0E:88:F5:D3:AB:DB:32:7D:D9:55:A1","sha256":"2A:CD:23:10:1B:85:89:C5:16:2D:A3:02:40:61:8F:7C:BA:7A:1F:FA:F4:93:F6:1F:30:80:32:FE:D9:A3:9F:6E"}}},"request":{"raw":"GET /video/m3u8/2025/07/07/fb2c19a7/0002.ts HTTP/1.1\r\nHost: t30.cdn2020.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://avxq133.cc\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 09 Feb 2026 01:33:49 GMT\r\ncontent-type: video/mp2t\r\ncontent-length: 1069908\r\nlast-modified: Mon, 07 Jul 2025 10:10:36 GMT\r\netag: \"686b9d1c-105354\"\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1069908,"size_decoded":0,"mime_type":"video/mp2t","magic":"data","md5":"ea483e9acecefbfba5d1088f08b92f9a","sha1":"a3c4d39a89b901a227b57e3058f7d1162070ab82","sha256":"2bbbe0d1eb03b931a304c2be0a83008185b7753eff13b7e2aed1bc2146790a41","sha512":"915a3a04311c571e66d5e006419c365173e6d84e837eaf81c09f9d9f34f0bcb7ba2d8c015d36924ddbc202897cfbf46185df26c075eabf27493cb496022cdea0","ssdeep":"24576:O6NQbP0SY9oZBKXqX91Nt5rv9g4EGMfYv:jIPxYJX4XNTv9gNGMAv","tlshash":"562512a46b402c75560029f2d70b6bf353388da54e818f9b9c65f78df9bdad8dc081a3","first_seen":"2026-02-09T01:34:27.679232Z","last_seen":"2026-02-09T01:34:27.679232Z","times_seen":1,"resource_available":false,"data":null}},"time_used":349,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":168,"receive":181,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/js/validate.js?v=1.2.8","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:47.321Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/js/validate.js?v=1.2.8 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_4NKKZ50480=GS2.1.s1770600826$o1$g0$t1770600826$j60$l0$h0; _ga=GA1.1.485084106.1770600827; _ga_QGG6453XKD=GS2.1.s1770600827$o1$g0$t1770600827$j60$l0$h0\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncache-control: max-age=43200\r\ncontent-type: application/javascript\r\ndate: Mon, 09 Feb 2026 01:33:47 GMT\r\netag: \"682dea18-2b5\"\r\nexpires: Mon, 09 Feb 2026 13:33:47 GMT\r\nlast-modified: Wed, 21 May 2025 14:58:32 GMT\r\nserver: nginx\r\ncontent-length: 693\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":693,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"b5f8bc24210f57855333629f70fb8b47","sha1":"ffdfe3fc4665146d6b4b759a98e52edb21047a42","sha256":"1de756580576d5815fee4facc9addbf92e386fa0adffde408979e2b23d84617c","sha512":"e2608dda150c2dc258305d32f6ab3c42f924f7016dd76aaf4c0e75e9e4fd4a168cc5d3c7e26f8a0da7256d9febb1f7701ef9d0c7cd43958d6392f86a231ef700","ssdeep":"","tlshash":"4201284d5491a8150db7b3fcd59bc05bf05901733010965bbece45902f72be456a0fa4","first_seen":"2026-02-08T08:03:46.321978Z","last_seen":"2026-03-14T20:11:05.182474Z","times_seen":17,"resource_available":true,"data":null}},"time_used":151,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":151,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/css/lib/zui.css?v=v1.0.0","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.744Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/css/lib/zui.css?v=v1.0.0 HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\ncontent-type: text/css\r\ndate: Mon, 09 Feb 2026 01:33:45 GMT\r\netag: W/\"68204020-7179\"\r\nexpires: Mon, 09 Feb 2026 13:33:45 GMT\r\nlast-modified: Sun, 11 May 2025 06:13:52 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29049,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (29049), with no line terminators","md5":"cb5580d4fbfcd5d18d3ed05a2ce98422","sha1":"e20622f13ff4208546b3f47df91db58f8abfff09","sha256":"0187ef666d74bc619f21a09fd8abbcb2fdc12ec8e887b98f13ec608a3d0512ee","sha512":"319dd0500df21149097c323fb5bb663f4e9ea653c37292f0887b8720c35af61c9e46da8ed0d3a2fda74ec35e98f4ee9dfd2e9fdf0b01c3e09a5661601df2790e","ssdeep":"384:v9rqNX1DiSjYXsSMNGTwHrNsdFsQNQJsY/KMR6kuYqI+kqguRg:4cR1HYqI+kqLRg","tlshash":"09d2c729a524212d747fc91db1c0eeca62118423d6621bfbf566693cc7ce9c96733b08","first_seen":"2025-06-14T16:20:55.875178Z","last_seen":"2026-03-29T21:24:18.828319Z","times_seen":93,"resource_available":false,"data":null}},"time_used":436,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":436,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"allhfpn2026.octopodtech.cn/2024/718/960X120.webp","fqdn":"allhfpn2026.octopodtech.cn","domain":"octopodtech.cn","tld":"cn"},"ip":{"addr":"155.102.45.48","port":443,"asn":0,"as":"","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:45.757Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"allhfpn2026.octopodtech.cn","organization":""},"issuer":{"commonName":"Certum DV TLS G2 R39 CA","organization":"Asseco Data Systems S.A."},"validity":{"start":"Sun, 18 Jan 2026 08:20:57 GMT","end":"Mon, 18 Jan 2027 08:20:56 GMT"},"fingerprint":{"sha1":"7E:DD:67:DC:BE:A8:3B:9A:1E:FC:5B:F6:BC:B2:6F:35:1F:DC:DB:64","sha256":"87:61:0D:E0:88:97:AD:17:F3:D1:E5:EA:FE:01:CA:1A:F3:D1:70:9B:A7:5D:3D:05:10:5E:25:A8:ED:34:E2:DB"}}},"request":{"raw":"GET /2024/718/960X120.webp HTTP/1.1\r\nHost: allhfpn2026.octopodtech.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ESA\r\ncontent-type: image/webp\r\ncontent-length: 199562\r\nset-cookie: acw_tc=2ff6319b17706008259635678e26c623a64f6c8656ea63f4f4f1dfdfab;path=/;HttpOnly;Max-Age=3600\ncdn_sec_tc=2ff6319b17706008259635678e26c623a64f6c8656ea63f4f4f1dfdfab;path=/;HttpOnly;Max-Age=3600\r\nstrict-transport-security: max-age=15552000; preload\r\nalt-svc: h3=\":443\"; ma=86400, h2=\":443\"; ma=86400\r\ndate: Mon, 09 Feb 2026 00:57:02 GMT\r\nvia: ens-cache4.l2de3[365,0,DP], ens-cache4.l2de3[0,0,304-0,H], ens-cache17.l2de3[1,0], ens-cache10.fr5[20,0,DP], ens-cache10.fr5[0,1,200-0,H], ens-cache7.fr5[4,0]\r\naccept-ranges: bytes\r\netag: \"678228b6-30b8a\"\r\nlast-modified: Sat, 11 Jan 2025 08:15:50 GMT\r\nage: 2203\r\nali-swift-global-savetime: 1770598622\r\nx-site-cache-status: HIT\r\nx-swift-savetime: Mon, 09 Feb 2026 01:10:11 GMT\r\nx-swift-cachetime: 3600\r\ntiming-allow-origin: *\r\neagleid: 2ff6319b17706008259635678e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":199562,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a506c5f0665b869259b541ad0daa6599","sha1":"3eb5c8266b3a8552f8426e4493a2c9fddb8653df","sha256":"1cfaeda0d591ac5be1567bea2e2638bb72d0505d1632a852aa8f2cb957f428af","sha512":"63086a34e09379b36da4a1b3e5ffd5936aad2d0ca1b7ef5a34c206d5a9fdd553fd5aa0b1f3ada87391a732913b853f6beff9cbe0b85a3420976415f32d999427","ssdeep":"6144:u1n4kMDT4GxEMkk4xcbmXjkk4xcbmoNPTwmFTb0BMb:u1naT4Ipk9bk9ZmFTbLb","tlshash":"bb1412c0d2a704ededc4e709e503f55b876979391327e0e7291f8f92ba798f8e198148","first_seen":"2025-01-21T03:42:43.076909Z","last_seen":"2026-03-28T08:55:28.855424Z","times_seen":597,"resource_available":false,"data":null}},"time_used":561,"timings":{"blocked":216,"dns":158,"connect":32,"send":0,"wait":40,"receive":73,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avxq133.cc/18link/haose/images/bg.gif","fqdn":"avxq133.cc","domain":"avxq133.cc","tld":"cc"},"ip":{"addr":"64.186.247.22","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html","date":"2026-02-09T01:33:46.555Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avxq133.cc","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 08 Feb 2026 14:00:49 GMT","end":"Sat, 09 May 2026 14:00:48 GMT"},"fingerprint":{"sha1":"CC:99:29:7E:84:66:45:ED:84:62:B5:9A:79:B1:42:33:41:D1:11:BF","sha256":"D9:BF:6F:50:0F:02:C4:97:D7:5D:BA:A2:9F:F0:02:51:05:AC:F5:7A:5C:40:DA:92:FB:AA:01:AE:F2:38:19:02"}}},"request":{"raw":"GET /18link/haose/images/bg.gif HTTP/1.1\r\nHost: avxq133.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://avxq133.cc/index.php/vod/play/id/186626/sid/1/nid/1.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\ncontent-type: image/gif\r\ndate: Mon, 09 Feb 2026 01:33:46 GMT\r\netag: W/\"690331d3-474\"\r\nexpires: Wed, 11 Mar 2026 01:33:46 GMT\r\nlast-modified: Thu, 30 Oct 2025 09:37:23 GMT\r\nserver: nginx\r\nvary: Accept-Encoding\r\ncontent-length: 1168\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1140,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 320 x 320","md5":"781b35dfadbad1dd265093aa34d06144","sha1":"e40e8bf0efb7ef4a07f37eba2acb28a320251110","sha256":"f846629d827a836e340dc80034a37fd4a0d35f5bdce5dd1517d16f1ca8bdb5c0","sha512":"5ba01fe1e749f351c53ee0a67d7c63dafbc7e2362ed83183464b67877353ac67646389b6f1947aaef135664d7fa88fb196c04f6e87476a0b2feb45b5a416a59d","ssdeep":"","tlshash":"7c21f923c265f44afd39432036e744483300558aede0597b6180f702e2e19d3ff4a2ad","first_seen":"2026-02-08T08:03:46.299431Z","last_seen":"2026-03-14T20:11:05.213497Z","times_seen":17,"resource_available":false,"data":null}},"time_used":151,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":151,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}