r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2947
Expires: Sat, 14 Jan 2023 10:26:19 GMT
Date: Sat, 14 Jan 2023 09:37:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0643dc6b6fed33b3537160b6bb77bcbf
aa43bd1fbb30d2219f3285c1ee4991ffb33562c5
f137438e30e0d69cba77ca2eb736687873e4a9c06cf88d23c6d55ea930fde09f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F137438E30E0D69CBA77CA2EB736687873E4A9C06CF88D23C6D55EA930FDE09F"
Last-Modified: Sat, 14 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3076
Expires: Sat, 14 Jan 2023 10:28:28 GMT
Date: Sat, 14 Jan 2023 09:37:12 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 14 Jan 2023 08:48:53 GMT
content-type: application/json
age: 2899
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 64765d3d978fd74d7bc47d55d4f097cf
92eb3f0d55ba99be28105c0b28ef7dd456817f1f
761aab02513e7a0ec55ea59109e88b39cbd4e17df0cd2035aa37a4693f22d1f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "761AAB02513E7A0EC55EA59109E88B39CBD4E17DF0CD2035AA37A4693F22D1F3"
Last-Modified: Thu, 12 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11758
Expires: Sat, 14 Jan 2023 12:53:10 GMT
Date: Sat, 14 Jan 2023 09:37:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TbtfDBWvOE+zFwiNGf2wKvBTT9EqgHcpXgq7fRzqDOEcEC8//n9IcEJzooSgg2Vf1mgSmRELauQ=
x-amz-request-id: 47XT6PK0PP6ANNV1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 14 Jan 2023 08:43:40 GMT
age: 3212
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 09:37:12 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 14 Jan 2023 09:33:45 GMT
age: 207
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b1e3535cab3c1ac295b1412126a9325c
d1bdf1b8663817ae34b6182db29d6b20666779e7
90c4ecd4b0782647fd78110b5bacfb73d2b05aae4de789a90318574407dfb565
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6172
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 09:37:12 GMT
Last-Modified: Sat, 14 Jan 2023 07:54:20 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: z6v8UXePiReAi5PVbZIZlA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RF5rYADhZsy34l9noHP+l3B1diY=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15801
Expires: Sat, 14 Jan 2023 14:00:35 GMT
Date: Sat, 14 Jan 2023 09:37:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15801
Expires: Sat, 14 Jan 2023 14:00:35 GMT
Date: Sat, 14 Jan 2023 09:37:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15801
Expires: Sat, 14 Jan 2023 14:00:35 GMT
Date: Sat, 14 Jan 2023 09:37:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15801
Expires: Sat, 14 Jan 2023 14:00:35 GMT
Date: Sat, 14 Jan 2023 09:37:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15801
Expires: Sat, 14 Jan 2023 14:00:35 GMT
Date: Sat, 14 Jan 2023 09:37:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1378f107c1996ade14a8fe7fd728072
f52d98d9a0d1d343a539689ea14acf99e148cf8c
4be994757ec7ec42929590169de199e927889261334e258903a0929a1055047d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9154
x-amzn-requestid: fbb1140d-7ec2-4f86-8761-5d04601af70e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAkCEN2IAMFuMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7ae6-4baebf1104f9cf2a0ee8a538;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:13:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jlRcVyQppaQaPPMKaqadtaEHfdOYXXXbnfrr44l_2E2qaOoh_O0Mog==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 04:10:18 GMT
age: 19616
etag: "f52d98d9a0d1d343a539689ea14acf99e148cf8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eac26ee-70ec-4eca-8e10-c7a79b5575b3.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eac26ee-70ec-4eca-8e10-c7a79b5575b3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4f04f55a9d261ddda8128b0bb721446
5e8df480a1650606937ee493660177bf09c49c14
3a357fbbd9f41d384a06e151a0daff50b345520d4816e70cc1b2c694949ce79f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eac26ee-70ec-4eca-8e10-c7a79b5575b3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4936
x-amzn-requestid: f1808de3-5712-4a65-8394-c1624668cdb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0pZFbIIAMFnvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce3b-48c4b0cd36319a2634c0c5f0;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rudCuuUXfxE8aRq8-FFIwHE4tqeSWxYrd8uilWI-8DZSY9A-8EiLQQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:49:06 GMT
age: 42488
etag: "5e8df480a1650606937ee493660177bf09c49c14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2ecf6b3-8443-4b47-96b6-2695fa885f0d.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2ecf6b3-8443-4b47-96b6-2695fa885f0d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3c35722c1c8a0b7a17b5a48a352aa64
4a939794eb33d9fb1b2cc56ca92f683a7d28e407
073d355bfc201c7feb4af2d1fac623fe7803f081c28467fa72b363074b0446a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2ecf6b3-8443-4b47-96b6-2695fa885f0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7437
x-amzn-requestid: 0efc1457-5919-4244-9837-6e75d03ef1d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAd0F0poAMF6PA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7abe-24df70ad7e1811a744a7c9de;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:13:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezdnQ-2RPpSESm42QCywHIZf4AmanMmy2f19NcUhzQ-PRjsFQfLNkg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 03:43:58 GMT
age: 21196
etag: "4a939794eb33d9fb1b2cc56ca92f683a7d28e407"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 4769eaeb-0c78-4054-ad47-eefdd6ab2d03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWHMZErbIAMF6sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8b8b5-4c7bacfe060899044e361f70;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 00:11:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uJjDFuqKCZyyAorUVUq9PyCb_8fWukPf6YE3LwqK2FrwMFzDNkftFQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 11:16:26 GMT
age: 80448
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d24ea1f095f492934a1f1c63f5d8590c
dade37148c9b9a941f93a8535d8ddc5de3952623
2d8e3f90eb347eb3479a6c5d20a1c2ca6a0560f335a6c6800948db2640e4c878
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8181
x-amzn-requestid: 7ada8fbd-58e6-4433-a532-b4a4ef93ac9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0paH-OIAMFg5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce3c-582529522dbb67ee728484f8;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UiHY2x0SqutHc34ld1De85inybQN432MAN-a8di_58lHW7DPtqRTXA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 09:29:44 GMT
age: 450
etag: "dade37148c9b9a941f93a8535d8ddc5de3952623"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64ba27a2f0a3bc61bd325f1fb317b755
c65c58476b66cbb6269ba1d8412d270a0a003ae3
5f7f03752f8a7c8c08d92512ae93b193ea37f59354503c3129d33fd2910f87e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9135
x-amzn-requestid: 2c5e9de0-9244-43ac-b7c4-712cbcf7038c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAnoG6roAMFzgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7afd-7fb640b30bab63bc1979a173;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:14:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SUGIIWi8jWe9RoRu-3dQXvLAddjwjH05V1ubKzEOEQrFonzVjQdbtw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 03:33:07 GMT
age: 21847
etag: "c65c58476b66cbb6269ba1d8412d270a0a003ae3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bxktv.com/MP3/2930.html
200 OK 14 kB IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 21d234f615e55762e2ae1d9fc4f5e796
d0d57deca47fa4ccf10974668babc06cc72a80e3
8e37917d5e0650a57d31ab90b33a9e19a1c193f2452f1701e3f95e68848e10d2
Analyzer Verdict Alert fortinet Malware
GET /MP3/2930.html HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:14 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
X-Aspnet-Version: 0
Set-Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg; path=/; HttpOnly
X-Powered-By: WAF/2.0
Cache-Control: private
X-Request-Id: 46a0d92aae733ce5e021d828314565f7
Via: S.pcw-cn-hkg-164, T.164.D, V.pcw-cn-hkg-165, T.133.D, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/images/mp3/style.css
200 OK 2.6 kB URL HTTP/1.1 bxktv.com/images/mp3/style.css
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type ASCII text, with CRLF line terminators
Hash e40d432210337beb5092da4f142a441e
f74b1e8da5746d73a3ef5aa5352f805e059dd003
2317b0323ff34868f5058b44056de7a636d41522c94300cc61c8fe635c02c400
GET /images/mp3/style.css HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:14 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"50ab72c69e1cf1:0"
Last-Modified: Mon, 06 Oct 2014 13:25:51 GMT
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:17:07 GMT
Cache-Control: max-age=691200
Age: 102007
X-Request-Id: 63cf23ec083e93c72ae6bc769bb5cb17; 4361503af410655a62dfe3c66ddd8520
Via: S.pcw-cn-hkg-167, T.167.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/images/style.css
200 OK 5.6 kB URL HTTP/1.1 bxktv.com/images/style.css
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 780ac6e900bd358121f8a4efae779f24
3b3c10881c1a87ff5c3a79540b3fa3db243ce5dd
ddb181ac9c0d23e3dc8c698b18a7d5ae364748716b087153778b13dc31b16f1f
GET /images/style.css HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:14 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"a145fc9734b0d11:0"
Last-Modified: Tue, 17 May 2016 12:06:50 GMT
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:09 GMT
Cache-Control: max-age=691200
Age: 100685
X-Request-Id: d6ccff6f02198cc4ee74fed967bbbcc3; 6558955c79ef0881e2885c6ba61f56e2
Via: S.pcw-cn-hkg-164, T.164.H, V.pcw-cn-hkg-167, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/images/mp3/function.js
200 OK 3.3 kB URL HTTP/1.1 bxktv.com/images/mp3/function.js
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 58a78117e79e768441ef1fca35cb6015
e229b67bbe1f0793cb1bdfebd6a1ee7efaa0ab42
6a04878a5c07d0c99741d02392c52192f5bef5e25fe5b09dfe801d85e6dc9696
Analyzer Verdict Alert fortinet Malware
GET /images/mp3/function.js HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"34b7626bb594d11:0"
Last-Modified: Tue, 12 Apr 2016 12:18:28 GMT
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 04:14:42 GMT
Cache-Control: max-age=691200
Age: 105753
X-Request-Id: c0ec5f4586aed7fae06eda83ea4d61e4; 761b7b8b020266c880efd37b4bcb3336
Via: S.pcw-cn-hkg-163, T.163.H, V.pcw-cn-hkg-167, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/images/mp3/player.js
200 OK 2.8 kB URL HTTP/1.1 bxktv.com/images/mp3/player.js
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 3992623f5254121b1ec73da9424342e9
554712126c9f79d5832e328eaf90a7f3e33fa614
ca556c3c27bdde59b8a3f3c79797887806feb7e792c24eae415a114e7abf3cb9
Analyzer Verdict Alert fortinet Malware
GET /images/mp3/player.js HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"0d0ad824b86cc1:0"
Last-Modified: Sun, 09 Oct 2011 06:20:16 GMT
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:06 GMT
Cache-Control: max-age=691200
Age: 100029
X-Request-Id: 1ca17ef933d62dac3940360d1f8a64bb; a1abc01a39f21f93172261615048d170
Via: S.pcw-cn-hkg-166, T.166.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/bfq/wmp.js
200 OK 2.5 kB IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 6140df4ebef6ca6a7b3e73053004afcc
539dfc1004d93d20fd9ff1f2f9a5663b2d4c9da2
6f28fc2d3108ced315261e8c6d68ebc9de570e7d9de839f5298bf566ed1da828
Analyzer Verdict Alert fortinet Malware
GET /bfq/wmp.js HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"033cc98abd3cd1:0"
Last-Modified: Thu, 06 Dec 2012 12:17:02 GMT
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:08 GMT
Cache-Control: max-age=691200
Age: 100027
X-Request-Id: ab88a41f39cc5fdda143954f59daba89; f36c478309e7c5a8e6fb766cd4c192c4
Via: S.pcw-cn-hkg-167, T.167.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/Control/neisf.js
200 OK 297 B URL HTTP/1.1 bxktv.com/Control/neisf.js
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 751893afdbe7e1c6bd5937aa1d79969f
287a3afc63facfa030ae1005b88a4858e8fdc36b
813c9e3cd9f641fc3267c26435e218ed2fdcce2b1fc4a5d50aa3bd43759bd117
Analyzer Verdict Alert fortinet Malware
GET /Control/neisf.js HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"82e22e54c5d0d81:0"
Last-Modified: Sun, 25 Sep 2022 09:58:14 GMT
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:11 GMT
Cache-Control: max-age=691200
Age: 100684
X-Request-Id: 473fa8b207cc72025bc8d3ed71087ae0; 5d2ba4247551fa14c69c75b60132faa5
Via: S.pcw-cn-hkg-164, T.164.H, V.pcw-cn-hkg-167, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/Control/sjsf.js
200 OK 335 B URL HTTP/1.1 bxktv.com/Control/sjsf.js
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 63056d643f990cceebf193ceeb62a644
c9c9f894ca547b8fb4a61420123e49452c57fcce
e1c45702acb0caad6a15abfb61ddb3087e21d84290e2c97fc9da1303f512846a
Analyzer Verdict Alert fortinet Malware
GET /Control/sjsf.js HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"65d7d43a3ead81:0"
Last-Modified: Fri, 28 Oct 2022 07:59:54 GMT
X-Powered-By: WAF/2.0
Expires: Sun, 15 Jan 2023 23:55:51 GMT
Cache-Control: max-age=691200
Age: 553284
X-Request-Id: 4c76e6ea4fdbc8c0f2e23661540f3a39; 56a20d7d31dc847965c60eaafc68ec97
Via: S.pcw-cn-hkg-167, T.167.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/bfq/cmp.js
200 OK 1.2 kB IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1762), with CRLF line terminators
Hash 7e3426d3ce434207386e20e6ad60a307
d839da6890692ef95a9a816b99d1aee878d2a21f
024af927cd721363427cce83f31d5d4f21c575c01a615759db04d4ebe9c8458d
Analyzer Verdict Alert fortinet Malware
GET /bfq/cmp.js HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"f513f7c85b2ed11:0"
Last-Modified: Fri, 04 Dec 2015 06:19:51 GMT
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:08 GMT
Cache-Control: max-age=691200
Age: 100027
X-Request-Id: fbaf24f93ae4b3e5efbaa33decb8fbda; 6cd7f026f5402712a36a813484386fc0
Via: S.pcw-cn-hkg-166, T.166.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/images/mp3/jquery.js
200 OK 12 kB URL HTTP/1.1 bxktv.com/images/mp3/jquery.js
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type ASCII text, with very long lines (21297), with no line terminators
Hash e4ea19d145e928e35a08245dde51f006
17f1c53c13b57d98549e6fca02187b8a3f313bb8
47855086f11393cf433255da87082d0978bfd9e9c3a98b91ebea203bfc4c721a
Analyzer Verdict Alert fortinet Malware
GET /images/mp3/jquery.js HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"0b28c91688cc1:0"
Last-Modified: Tue, 11 Oct 2011 11:11:48 GMT
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:06 GMT
Cache-Control: max-age=691200
Age: 100029
X-Request-Id: bbda7df0c396daf9e495b46b23250fe1; 4b8b79454a1d58ba988fa4a70799907e
Via: S.pcw-cn-hkg-163, T.163.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/MP3/images/cpublic_d.js
200 OK 784 B URL HTTP/1.1 bxktv.com/MP3/images/cpublic_d.js
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type Unicode text, UTF-8 (with BOM) text, with very long lines (800), with CRLF line terminators
Hash 0b2897bf7ea89d3bb36f2be454a8e71c
8653161814e550767959185a3e13459af0214a47
6931013288929fb3b8f8188c1c1764e79fa080034bd0a5cf3b6f78a9594457d3
Analyzer Verdict Alert fortinet Malware
GET /MP3/images/cpublic_d.js HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"5f6e2fb07dadd71:0"
Last-Modified: Sun, 19 Sep 2021 17:42:16 GMT
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:58 GMT
Cache-Control: max-age=691200
X-Request-Id: 62ddd1094a667e17c2d59bd3db027a8e; ce256fafa8756ba31dcca636ef7338d1
Age: 99497
Via: T.163.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/MP3/images/TopRight1.gif
200 OK 11 kB URL HTTP/1.1 bxktv.com/MP3/images/TopRight1.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 104 x 112\012- data
Hash dfbc934f6420a4759d33714cb1144be2
253a906463e1b40d4305e33487cc44e6a6bd2896
d4bc776a69ddf08d96bf685bb0856214b6e2337f5094c7e52d121e48453cbf89
GET /MP3/images/TopRight1.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 10750
Connection: keep-alive
X-Source: C/200
ETag: "082a0502680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:56 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:51:47 GMT
Cache-Control: max-age=691200
Age: 99928
X-Request-Id: 979e91f8584a9fadc42ef0f00a41fd52; f1b68740f48b1a10fb1d50093c07ad85
Via: S.pcw-cn-hkg-167, T.167.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/TopLogo.gif
200 OK 13 kB URL HTTP/1.1 bxktv.com/MP3/images/TopLogo.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 297 x 73\012- data
Hash cc77126cef8451788f8378aa10b0c33b
b3c49880338915481b3f208b96024aead590a155
c7744b79ab55c34a83241976a7193502734464ca2c4b069f7e459bb66893144c
GET /MP3/images/TopLogo.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 13210
Connection: keep-alive
X-Source: C/200
ETag: "024f03285b9cd1:0"
Last-Modified: Sat, 03 Nov 2012 05:36:40 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:51:47 GMT
Cache-Control: max-age=691200
Age: 99928
X-Request-Id: e175e1f8226236bd7fa7a9f77e822bc4; b359516dfe62e42c5e5035f4291a6e90
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/guanggao.gif
200 OK 16 kB URL HTTP/1.1 bxktv.com/images/guanggao.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 216 x 38\012- data
Hash 46738da3eff5d7f937ef8d3015618bb7
f91e0296dee014d54420f68f0b152b988d93ad79
4c384db2f7d5733ce7eeaf89c3f1994447dd0733b0082a429f1c2b8cc93c2c1d
GET /images/guanggao.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 16134
Connection: keep-alive
X-Source: C/200
ETag: "80728e83564dce1:0"
Last-Modified: Fri, 10 May 2013 08:15:21 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:41 GMT
Cache-Control: max-age=691200
Age: 99514
X-Request-Id: a547ac3d0044ad4fa300a0aa6953f2dd; 0110a1f6409c1383390f943d3f15a924
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/TopLeft2.gif
200 OK 791 B URL HTTP/1.1 bxktv.com/images/TopLeft2.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 50 x 22\012- data
Hash 7d8ed1d912b7e3254d8b40d6576afaf4
ba886950bb928773b36ccb7fab631b22b3dfac4e
86d79ebab86b3509b7dc619a9e5c29b5dbd09e2688f1206cbcbf43cd3786a45c
GET /images/TopLeft2.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 791
Connection: keep-alive
X-Source: C/200
ETag: "0283e4e2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:52 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:12 GMT
Cache-Control: max-age=691200
Age: 100683
X-Request-Id: 7c919a3f7d775ab067564b3e59295331; 8884b29a89e43de44edfae5c5c8bfd53
Via: S.pcw-cn-hkg-163, T.163.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/MenuRight.gif
200 OK 784 B URL HTTP/1.1 bxktv.com/MP3/images/MenuRight.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 8 x 73\012- data
Hash e27272efdd81d6efe25ac53eb2fc1179
6f6f770d7d4c812b11f7344a09a6df32b2689518
dd3f00b9dc5dda5a4ba99bad5342376ad432abe5d4fbd3e4b67a69dc97da04b4
GET /MP3/images/MenuRight.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 784
Connection: keep-alive
X-Source: C/200
ETag: "0ede5452680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:38 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:54 GMT
Cache-Control: max-age=691200
X-Request-Id: ce8e0cc30a9f86e73c3727ebfac1f986; 5afde9a6a75606a334a1c8fc23bec213
Age: 99501
Via: T.166.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/Space.gif
200 OK 49 B URL HTTP/1.1 bxktv.com/images/Space.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 1 x 1\012- data
Hash dbeae61e150fd2364e26325388512456
2d288f6e23d7b0725835c282022fa83357deb573
3b4d105f4c019be45f65fccb0965fec3cfada672667a5eae3504f5e3c31974ce
GET /images/Space.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 49
Connection: keep-alive
X-Source: C/200
ETag: "04748482680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:42 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:12 GMT
Cache-Control: max-age=691200
Age: 100683
X-Request-Id: a00e8e705d5ce9f14e3c17819b22d67e; 23e1bbcbbad9bbec44e70ff882e4435d
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-167, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/TopRight2.gif
200 OK 793 B URL HTTP/1.1 bxktv.com/images/TopRight2.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 50 x 22\012- data
Hash 671bbb638c5b462dac506547166c0d3e
9da6c36133e4949339e7564cae8fd7a6d5a6aa22
8219508760da323affbd0fe729925343b6ab525e97e17d8a9aa8b7cc59240ad1
GET /images/TopRight2.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 793
Connection: keep-alive
X-Source: C/200
ETag: "082a0502680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:56 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:14 GMT
Cache-Control: max-age=691200
Age: 100681
X-Request-Id: 038e43242aa565bf6d235825a30f56b5; 020f659b9328f1fed0c8f82dd72d4162
Via: S.pcw-cn-hkg-163, T.163.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/TopLeft3.gif
200 OK 5.6 kB URL HTTP/1.1 bxktv.com/images/TopLeft3.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 128 x 57\012- data
Hash 0e012d7957676a34cd5547ca7136840c
4f955109a5552bb6107bb6cccb6bb8a54bba5324
aec0481a90a5cc97c276ee6268c935d5d318ceea835ee9991657d68415c8d8cb
GET /images/TopLeft3.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 5553
Connection: keep-alive
X-Source: C/200
ETag: "0283e4e2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:52 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:13 GMT
Cache-Control: max-age=691200
Age: 100682
X-Request-Id: 0bb93440935d3ef82e83ed84f377475e; e2b3e688099549ea7c792512bff45319
Via: S.pcw-cn-hkg-163, T.163.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/DateCenter.gif
200 OK 435 B URL HTTP/1.1 bxktv.com/images/DateCenter.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 13 x 35\012- data
Hash d55f8ed8fd887074c4d6aa1f599d5511
933ea3c11ac7d9ddc7c4efc27f2638a8e8f93923
820a6b60360834dd81cd2480e394025d56856f5f0bcc2acdf85cc9b23dd9f947
GET /images/DateCenter.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 435
Connection: keep-alive
X-Source: C/200
ETag: "0cf03f2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:28 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:12 GMT
Cache-Control: max-age=691200
Age: 100683
X-Request-Id: 957a927c79b99f603c4d84cf8e4a5f72; 36a9dd2bdc6d610ee4ef96389a4856b0
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/DateLeft.gif
200 OK 989 B URL HTTP/1.1 bxktv.com/images/DateLeft.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 25 x 35\012- data
Hash 70e90e1c17004c8011e23af8e2658679
dcc078df3097aa26fa0d67bc0361270079f2a100
b9258e9412879beb5f4d500b100a10aa35cc56ac7295dd5f347e28228aa0f43a
GET /images/DateLeft.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 989
Connection: keep-alive
X-Source: C/200
ETag: "0cf03f2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:28 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:14 GMT
Cache-Control: max-age=691200
Age: 100681
X-Request-Id: 38911cc63d3aba404ca8163fe54f945d; a6a9d183e5182bea305b9b16732960af
Via: S.pcw-cn-hkg-166, T.166.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/DateRight.gif
200 OK 987 B URL HTTP/1.1 bxktv.com/images/DateRight.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 25 x 35\012- data
Hash c66b2f6277c66cb31ea952e44f8bf110
9e1493678e4d46342f2dc9bf681e1e1c2655f4a9
02c82c681b608b76078a0e3b0cb36998a34aad25c8dfaf811e5d26a727db79f6
GET /images/DateRight.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 987
Connection: keep-alive
X-Source: C/200
ETag: "0cf03f2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:28 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:13 GMT
Cache-Control: max-age=691200
Age: 100682
X-Request-Id: cbf769c1400015e49bd21c4c59ce7861; 55eaf52fc67bb5e9736dab034ef3105b
Via: S.pcw-cn-hkg-167, T.167.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/TopRight3.gif
200 OK 5.6 kB URL HTTP/1.1 bxktv.com/images/TopRight3.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 128 x 57\012- data
Hash ca587ca7554acefd0c96b68ed71cf412
231d946bfb171dfa682a1251996d0bc69c476bad
8edd94dddd1e0bd6e5b0174b76a475bb051fc91a6dece007d5082e0674d01373
GET /images/TopRight3.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 5572
Connection: keep-alive
X-Source: C/200
ETag: "082a0502680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:56 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:13 GMT
Cache-Control: max-age=691200
Age: 100682
X-Request-Id: af82ddb885a82c9c6fb0fe8bd3274d87; 21f2b8b26dec01807d5a7f263c48624f
Via: S.pcw-cn-hkg-163, T.163.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/LeftAll.gif
200 OK 5.0 kB URL HTTP/1.1 bxktv.com/images/LeftAll.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 80 x 189\012- data
Hash 777d1168a99cf665f214c570260dac25
e5082606bf9b4ba430445c65c49be85d2dcbfd11
fc8ae6e2a61ec6a84ace7387ff5a7308e27b57c08237cc541e4c4547d7dfd1d6
GET /images/LeftAll.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 4975
Connection: keep-alive
X-Source: C/200
ETag: "09383432680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:34 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:13 GMT
Cache-Control: max-age=691200
Age: 100682
X-Request-Id: 3e4e2d838d38ac9b7f5170cd35da1804; 97791c135b1e2bd1d3281ff7b8cb3ded
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-167, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/TitleLeft.gif
200 OK 1.5 kB URL HTTP/1.1 bxktv.com/images/TitleLeft.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 17 x 36\012- data
Hash ff291d9f0782fdb88120b546bd9edd0d
ed076ef7a0269ecc06499e6a08eaa8048e82c3c3
5d3fac26c6617c2064cdf4b5bc4fd4b654bb51aa0a6bc72a08a387267de8858f
GET /images/TitleLeft.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 1485
Connection: keep-alive
X-Source: C/200
ETag: "0cedb4b2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:48 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:13 GMT
Cache-Control: max-age=691200
Age: 100682
X-Request-Id: d9c9cdaa1a635977b6f0d849e290a855; 818ea8a14db83843dbc4ccbe493b52cf
Via: S.pcw-cn-hkg-164, T.164.H, V.pcw-cn-hkg-167, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/space.gif
200 OK 49 B URL HTTP/1.1 bxktv.com/images/space.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 1 x 1\012- data
Hash dbeae61e150fd2364e26325388512456
2d288f6e23d7b0725835c282022fa83357deb573
3b4d105f4c019be45f65fccb0965fec3cfada672667a5eae3504f5e3c31974ce
GET /images/space.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 49
Connection: keep-alive
X-Source: C/200
ETag: "04748482680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:42 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:13 GMT
Cache-Control: max-age=691200
Age: 100682
X-Request-Id: b63aa2d641776d343af493ed4ee6564c; a680959e70f08b71163b2767e4c8c895
Via: S.pcw-cn-hkg-163, T.163.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/TitleRight.gif
200 OK 2.3 kB URL HTTP/1.1 bxktv.com/images/TitleRight.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 113 x 36\012- data
Hash 13fa084774067316312963f522f13695
46c23669d1348d379a6bac6d60b0c9b5b73b3885
04ecdae7b6f92ccd2b481f33a8a8b63158e53904b026086a003dcc9958fd5195
GET /images/TitleRight.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 2273
Connection: keep-alive
X-Source: C/200
ETag: "0fbc4d2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:50 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:13 GMT
Cache-Control: max-age=691200
Age: 100682
X-Request-Id: e320389a0114a42dbce7c33d59479102; 47d584f08321feae85e1386b80d02c38
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/ListBG1.gif
200 OK 169 B URL HTTP/1.1 bxktv.com/images/ListBG1.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 7 x 8\012- data
Hash 01ffcd922236c8bf03c11811853fd14d
35d43f0464386c3d01c72bf4c7cec08265d21453
0e7b0096fcbd76612a93b415b0e0dd9eb3d2d980a5682acdd33fb4a13f12b66b
GET /images/ListBG1.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 169
Connection: keep-alive
X-Source: C/200
ETag: "0c0b4442680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:36 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:14 GMT
Cache-Control: max-age=691200
Age: 100681
X-Request-Id: 50eb397c23bbd1cc07d8da5bdb3fcd21; 9eb222f4bf252862081c3ee3b4d1202c
Via: S.pcw-cn-hkg-167, T.167.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/ListBG3.gif
200 OK 183 B URL HTTP/1.1 bxktv.com/images/ListBG3.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 11 x 8\012- data
Hash 64dbeba02e9b34cdb78a23813d3f52d8
eb0ffac089022a07ab7d3c787339904063f2e40e
5991781f31d62c40c942968807f38c7ed8d107996160cbe08168e07ff0eeb44a
GET /images/ListBG3.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 183
Connection: keep-alive
X-Source: C/200
ETag: "0c0b4442680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:36 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:14 GMT
Cache-Control: max-age=691200
Age: 100681
X-Request-Id: 8dcff2c1c14dcbe46f081f347a06eed0; 8a446d1a9cda92576533058a484b4dda
Via: S.pcw-cn-hkg-167, T.167.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/mp3/0046.gif
200 OK 621 B URL HTTP/1.1 bxktv.com/images/mp3/0046.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 16 x 15\012- data
Hash bc2e90d66ebc158b8a7d38b126f65828
315a032c6c071ad329b7c82debef3949a1c9f785
e6aa3373c439fe8e20482e7f167a1b8d3314b04005099bb08a98e0694a25ce18
GET /images/mp3/0046.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 621
Connection: keep-alive
X-Source: C/200
ETag: "0bf372e5f6ccc1:0"
Last-Modified: Tue, 06 Sep 2011 06:35:34 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:16 GMT
Cache-Control: max-age=691200
Age: 100019
X-Request-Id: 2cb820c316b4a233403eec5b88edb918; 6cbbce054e02981046d95bd4f226ddac
Via: S.pcw-cn-hkg-166, T.166.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
bxktv.com/uploads/touxiang/susan.jpg
200 OK 20 kB URL HTTP/1.1 bxktv.com/uploads/touxiang/susan.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3\012- data
Hash 1e729bac79cb8eef687d99e75c5ec580
67d649fb5f028a99cb0bd6fd362eb75dd192609a
070d9b09c15cf89937ae9ad7da61d57a615d0912637160945c32cf74783a9922
GET /uploads/touxiang/susan.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/jpeg
Content-Length: 19589
Connection: keep-alive
X-Source: C/200
ETag: "74d1691666b5d01:0"
Last-Modified: Fri, 03 Jul 2015 07:58:46 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sun, 22 Jan 2023 02:52:18 GMT
Cache-Control: max-age=691200
X-Request-Id: 5fd20a8d38f7c5909eacd7331947b290; 50085e4965581521683f87768c6c2b75
Age: 24297
Via: T.167.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/mp3/mtag.gif
200 OK 377 B URL HTTP/1.1 bxktv.com/images/mp3/mtag.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 16 x 16\012- data
Hash a04815952fd715a47481177792595395
b1b5724936d5c3bfc42151ca2d08a98a6429cfdc
07bd167641af9d533cd70d376c11e231ca79d01751e2922b4499fa3dd5e456db
GET /images/mp3/mtag.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 377
Connection: keep-alive
X-Source: C/200
ETag: "02a10854b86cc1:0"
Last-Modified: Sun, 09 Oct 2011 06:20:20 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:16 GMT
Cache-Control: max-age=691200
Age: 100019
X-Request-Id: c2d55cf98611a2ab254d16e839f0567b; 6987d2b89b4a42b16f421ce765faae66
Via: S.pcw-cn-hkg-166, T.166.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/mp3/Mood11.gif
200 OK 147 B URL HTTP/1.1 bxktv.com/images/mp3/Mood11.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 15 x 15\012- data
Hash 8db8e1cb524ddeeb8d80debef05c6f95
9bcc09265d256f5ec6d9f42066715cfd59ed0089
7195acb8dcbd53f24f6b912cc6c1f371b7167f59d76e947af4cb6098834a8355
GET /images/mp3/Mood11.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 147
Connection: keep-alive
X-Source: C/200
ETag: "02a10854b86cc1:0"
Last-Modified: Sun, 09 Oct 2011 06:20:20 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:16 GMT
Cache-Control: max-age=691200
Age: 100019
X-Request-Id: fefa2ef4ef0e9b8ecdaa97c69b35ba7a; 9332c89eb7220ac189dc8531535f29bc
Via: S.pcw-cn-hkg-164, T.164.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/mp3/tu_newgroup.gif
200 OK 161 B URL HTTP/1.1 bxktv.com/images/mp3/tu_newgroup.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 15 x 12\012- data
Hash c650075b4a6b35d2134475f26d109eec
45b3cca17d4396762eb299f41b898638aa8c44d1
0287003fd76a4874be1b35fd826ed40f61fd5676e12a7f6523e8553c529dad1e
GET /images/mp3/tu_newgroup.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 161
Connection: keep-alive
X-Source: C/200
ETag: "02a10854b86cc1:0"
Last-Modified: Sun, 09 Oct 2011 06:20:20 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:16 GMT
Cache-Control: max-age=691200
Age: 100019
X-Request-Id: 33595b1617b92a6ff1326522e7e7007e; e19da2d73107cc1dea3d7cbffaeea1d3
Via: S.pcw-cn-hkg-164, T.164.H, V.pcw-cn-hkg-167, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/mp3/trace.gif
200 OK 323 B URL HTTP/1.1 bxktv.com/images/mp3/trace.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 16 x 16\012- data
Hash c9bf294714dd05da5389c602956f8915
bea99655c847d5e9264fdd3263581218dabb8e8f
cbc7d5903b09e3c7f9761f0742902d7ac43c75325e04c4d02d08afb7123d71be
GET /images/mp3/trace.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 323
Connection: keep-alive
X-Source: C/200
ETag: "02a10854b86cc1:0"
Last-Modified: Sun, 09 Oct 2011 06:20:20 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:16 GMT
Cache-Control: max-age=691200
Age: 100019
X-Request-Id: 8edd08986d7263e0aaff741f6df26722; 51a4d96867d42fb47dae4240e91f8e42
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/mp3/share.gif
200 OK 120 B URL HTTP/1.1 bxktv.com/images/mp3/share.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 16 x 16\012- data
Hash f5d6d3bd2c476789bdb35ca3425f4345
41c3de1b439eb171a820b33bd489a217efd7f848
6501b9baa5a7364f54a2005e0288b84569235a342a932e07b745c96df7e22c51
GET /images/mp3/share.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 120
Connection: keep-alive
X-Source: C/200
ETag: "02a10854b86cc1:0"
Last-Modified: Sun, 09 Oct 2011 06:20:20 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:16 GMT
Cache-Control: max-age=691200
Age: 100019
X-Request-Id: 2809a31abfec8b13af1860d47ab85ca9; 9b8e76386c1737a2ffb1f70131294814
Via: S.pcw-cn-hkg-164, T.164.H, V.pcw-cn-hkg-167, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/mp3/music1.gif
200 OK 595 B URL HTTP/1.1 bxktv.com/images/mp3/music1.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 14 x 14\012- data
Hash 6cdecf29705a9e4c70fdfd2414112f98
9db11f48ab92c79d3615cef3d6ba6f60cfec9e43
78ba1f08f84429f135aca50f4569ce26ccc343dd32a40c6ec77bff6b03c19abd
GET /images/mp3/music1.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 595
Connection: keep-alive
X-Source: C/200
ETag: "02a10854b86cc1:0"
Last-Modified: Sun, 09 Oct 2011 06:20:20 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:16 GMT
Cache-Control: max-age=691200
Age: 100019
X-Request-Id: 21e75794a20896e7d9ceca9a4b6bf899; dd1429788aab8d6d38adfa1b6b8d660c
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/RightAll.gif
200 OK 5.0 kB URL HTTP/1.1 bxktv.com/images/RightAll.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 80 x 189\012- data
Hash b2b0c254fb3e941b63d4e52e4b675027
3d65f14098da121948241541cd6f6fe546f7e961
5a02b96c99fb08759d66c6ace576d925158302fbc4590debe9e5056018981475
GET /images/RightAll.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 4954
Connection: keep-alive
X-Source: C/200
ETag: "01a17472680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:40 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:14 GMT
Cache-Control: max-age=691200
Age: 100681
X-Request-Id: c3463794d4dd4f67423ff91a3e802663; a0e27af78e1ae790c8d230cd6f8b88c5
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/BottomRight.gif
200 OK 5.4 kB URL HTTP/1.1 bxktv.com/MP3/images/BottomRight.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 95 x 87\012- data
Hash f1fd6d281fc9cd51574d8325c6983ac0
81dbf023f51f9f420109349053995e1e5e9026c1
38348f37fe3a5cce08aff57f51dc5b8dd15f4fd6665a37d0c03dd9a9a0f4ebf7
GET /MP3/images/BottomRight.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 5405
Connection: keep-alive
X-Source: C/200
ETag: "0dfbe3e2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:26 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:51:47 GMT
Cache-Control: max-age=691200
Age: 99928
X-Request-Id: 634f376aa5f4dd6345ebd4c437b17e8b; eca944384b70d8c7ce31e009c4ca9c18
Via: S.pcw-cn-hkg-164, T.164.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/BottomLeft.gif
200 OK 6.1 kB URL HTTP/1.1 bxktv.com/MP3/images/BottomLeft.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 108 x 87\012- data
Hash f92fdbfcc8757af4595a4dc7c4de415c
b3e7ecab4d0b07beba6c7f6947829200b0a03e4e
1a8cf4085845ccac3e8ba4e69b95374094aafa32662a18c7cc5949443e6106a8
GET /MP3/images/BottomLeft.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 6110
Connection: keep-alive
X-Source: C/200
ETag: "0dfbe3e2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:26 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:51:47 GMT
Cache-Control: max-age=691200
Age: 99928
X-Request-Id: 7b7a4fb1294b4949b1ee9cea3e60ce44; cf07b25bdb679f63b289d535d2a0f733
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/TopLeft1.gif
200 OK 11 kB URL HTTP/1.1 bxktv.com/MP3/images/TopLeft1.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 104 x 112\012- data
Hash 3727269daa01ce5946705c0c33114d04
2f779f96b8c409532ffc92fd3b73b5fd35a05c5d
786491059fb3ab43708f9d7058544f3215a2de5fc454ddbe37b682f7493e0b2f
GET /MP3/images/TopLeft1.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 10698
Connection: keep-alive
X-Source: C/200
ETag: "0283e4e2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:52 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:51:47 GMT
Cache-Control: max-age=691200
Age: 99928
X-Request-Id: 5accf8128240fa84c732abc51442d552; c1c2bab218b5d3d8bf0cb861558e4ac7
Via: S.pcw-cn-hkg-164, T.164.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/TopUserLeft.gif
200 OK 1.3 kB URL HTTP/1.1 bxktv.com/MP3/images/TopUserLeft.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 24 x 39\012- data
Hash d686e6f35ecdb3b5716b3f1f80a8070d
e9e7fc654c684470a598c5342a5b94bfcef93949
23dbb31ce7c31c9554330bb8d902b97bd1a9852a75118decc4b82c3d47bcf465
GET /MP3/images/TopUserLeft.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 1337
Connection: keep-alive
X-Source: C/200
ETag: "0afd1512680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:58 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:53 GMT
Cache-Control: max-age=691200
X-Request-Id: 0b95131e9ef280cd26204da019ea76b1; 753660bf2ded6b4ecc181a4e80123671
Age: 99502
Via: T.163.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/TopUserRight.gif
200 OK 1.3 kB URL HTTP/1.1 bxktv.com/MP3/images/TopUserRight.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 24 x 39\012- data
Hash b9f5f916ecf1292359a00fb2cf303b9e
ca0edff06a83b9b47358bad1cc89eb7ed0cd2a21
adfcead992866f5730097be69d8ab34f40009c80cf37a84deda4b79e7104402e
GET /MP3/images/TopUserRight.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 1341
Connection: keep-alive
X-Source: C/200
ETag: "0afd1512680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:58 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:54 GMT
Cache-Control: max-age=691200
X-Request-Id: bf8a8f2a02051cc93238f8f1d810469c; b7bafc383209df16834e9d9969f15018
Age: 99501
Via: T.166.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/MenuLeft.gif
200 OK 1.6 kB URL HTTP/1.1 bxktv.com/MP3/images/MenuLeft.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 24 x 73\012- data
Hash 24a71c25db1280343d05a7dc167f947c
402fb9ce9846d7898d5eb24a2b73f4eb0903cf4f
d67867cdbf65e2c4ca2e07ad1fbfb55f8e6619f1060f42875073870f9fbe8f4f
GET /MP3/images/MenuLeft.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: image/gif
Content-Length: 1562
Connection: keep-alive
X-Source: C/200
ETag: "0ede5452680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:38 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:54 GMT
Cache-Control: max-age=691200
X-Request-Id: 2f471156c408b2107f0dd4aefe0f6152; 180b0322ea0c76c9666b11c1674d9abb
Age: 99501
Via: T.165.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/mp3/jia.js
404 Not Found 66 kB URL HTTP/1.1 bxktv.com/images/mp3/jia.js
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with very long lines (64422), with CRLF line terminators
Hash b7dbd40a14bf2b71213a3e629b874aee
3bfd71b001f9fadcd66abc3f52f4771a61bbed14
0582ef97e644b91985f005bc15c1a21a1fb5d0340d2f317798916dc90e8e48dd
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata high ET WEB_CLIENT DRIVEBY EXE Embeded in Page Likely Evil M1
suricata high ET MALWARE PE EXE or DLL Windows file download Text
suricata high ET WEB_CLIENT Generic Attempted Executable Drop via VBScript
suricata high ET WEB_CLIENT DRIVEBY EXE Embeded in Page Likely Evil M1
suricata high ET MALWARE PE EXE or DLL Windows file download Text
suricata high ET WEB_CLIENT Generic Attempted Executable Drop via VBScript
GET /images/mp3/jia.js HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 404 Not Found
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/404
X-Powered-By: WAF/2.0
X-Request-Id: e4b8132928d8c76d1cf3e8e652ef1142
Via: S.pcw-cn-hkg-164, T.164.D, V.pcw-cn-hkg-167, T.133.D, M.gtt-de-fra3-133
Content-Encoding: gzip
s14.cnzz.com/stat.php?id=4712312&web_id=4712312&show=pic
200 OK 20 B URL HTTP/1.1 s14.cnzz.com/stat.php?id=4712312&web_id=4712312&show=pic
IP
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /stat.php?id=4712312&web_id=4712312&show=pic HTTP/1.1
Host: s14.cnzz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript
Content-Length: 20
Connection: keep-alive
Date: Sat, 14 Jan 2023 08:40:20 GMT
Vary: Accept-Encoding
X-Powered-By: PHP/5.5.25
Last-Modified: Sat, 14 Jan 2023 08:40:20 GMT
Cache-Control: max-age=1800,s-maxage=3600
Content-Encoding: gzip
Ali-Swift-Global-Savetime: 1673685620
Via: cache17.l2cn1807[0,0,200-0,H], cache13.l2cn1807[1,0], ens-cache43.cn4461[0,0,200-0,H], ens-cache25.cn4461[1,0]
Age: 3415
X-Cache: HIT TCP_MEM_HIT dirn:11:331516953
X-Swift-SaveTime: Sat, 14 Jan 2023 08:40:56 GMT
X-Swift-CacheTime: 3564
Timing-Allow-Origin: *
EagleId: 968a62ad16736890359445234e
ocsp.digicert.cn/
200 OK 471 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 3145ce97feed8a4efe0eb0da177a024c
d0c2e6944ff2f7c32911ec67dcab1b815999e3b7
2c59d6462dd7088839581d52fc71ddf5efe5786c31396016cbdc59f30a127369
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 14 Jan 2023 09:37:16 GMT
Ali-Swift-Global-Savetime: 1673689036
Via: cache26.l2de2[48,48,200-0,M], cache26.l2de2[50,0], cache4.se1[71,70,200-0,M], cache4.se1[74,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 14 Jan 2023 09:37:16 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9816736890361585976e
pv.sohu.com/cityjson?ie=utf-8
200 OK 72 B URL HTTP/1.1 pv.sohu.com/cityjson?ie=utf-8
IP
File type Unicode text, UTF-8 text, with no line terminators
Hash a602ac9d03cffedc03fa841c9a12df5a
e42f39093e29f5c6c7aad8a973d69035e860659e
f5d09365810dd11ef1204b35bfede3158a07d5592a9c9cfa449dd534f9964aa9
GET /cityjson?ie=utf-8 HTTP/1.1
Host: pv.sohu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bxktv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: text/plain;charset=utf-8
Server: nginx/1.0.15
X-Cache-Lookup: Cache Miss, Cache Miss, Cache Miss, Cache Miss
Content-Length: 72
Accept-Ranges: bytes
X-NWS-LOG-UUID: 2608861165446728703
Connection: keep-alive
bxktv.com/MP3/images/TopUserBG.gif
200 OK 263 B URL HTTP/1.1 bxktv.com/MP3/images/TopUserBG.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 1 x 39\012- data
Hash 53a7437eba007990bb1005a6affaf56e
d6aedd8032cebf7f5513600c411e854442c8831e
8f37eb47bc41703a05c5d91dbcdfda033b266a94aee895082bb8fb266ebf88fa
GET /MP3/images/TopUserBG.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 263
Connection: keep-alive
X-Source: C/200
ETag: "082a0502680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:56 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:54 GMT
Cache-Control: max-age=691200
X-Request-Id: 6c5e5ecf2a122a8ccfc830046ae3b799; 831d841e44d7ae4f8a89fa344f3435d3
Age: 99502
Via: T.163.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/cmp.swf
200 OK 148 kB IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type Macromedia Flash data (compressed), version 12\012- data
Size 148 kB (148514 bytes)
Hash 1e5a191a04c970c5425c8eb8ec8fb420
6bad2e2c1ade70161666c8891649d1cb713ac16e
4b7ddd47c6ce9a59b96acfb811702da8753738b275030bd3b5c8dd59c4f5d318
Analyzer Verdict Alert fortinet Malware
GET /MP3/cmp.swf HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: application/x-shockwave-flash
Content-Length: 148514
Connection: keep-alive
X-Source: C/200
ETag: "a2fd881717bdd01:0"
Last-Modified: Mon, 13 Jul 2015 02:53:27 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 14 Jan 2023 12:42:06 GMT
Cache-Control: max-age=691200
X-Request-Id: 309d97459873e916b570f48bc558efb2; 9837019bf7163826e044797dfe30a4cb
Age: 680110
Via: T.163.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/TopLogoBG.gif
200 OK 857 B URL HTTP/1.1 bxktv.com/MP3/images/TopLogoBG.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 1 x 73\012- data
Hash 370d881e4aabf52cdf3192bb3814758e
8e4e3cdddaa7fce8d8c27a3244b3a98f9a6f3462
413240456bfa8f28ddf39678672e42bac7062cb26f2ed72ae2a88191d5408faf
GET /MP3/images/TopLogoBG.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 857
Connection: keep-alive
X-Source: C/200
ETag: "0283e4e2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:52 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:54 GMT
Cache-Control: max-age=691200
X-Request-Id: 9f9846bc555c0eb1cf96a79ecb05d9ba; 3b8dc4f7edd9312583866ae723b7d377
Age: 99502
Via: T.163.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/MenuBG.gif
200 OK 277 B URL HTTP/1.1 bxktv.com/MP3/images/MenuBG.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 1 x 73\012- data
Hash a067d61b3268d1c3c3868f3a950604e9
c6fd19475a92e97d47af6d59c9d3847d8a727e22
58fb8590725f50d2a766063c4d677c36cc083a0523c5b46e29798e84617c34cd
GET /MP3/images/MenuBG.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 277
Connection: keep-alive
X-Source: C/200
ETag: "0ede5452680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:38 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:54 GMT
Cache-Control: max-age=691200
X-Request-Id: ef201a845173bd19c415472555d5b1a8; 909ecf0dbd78011c588d7523db0aa9c8
Age: 99502
Via: T.165.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/DateBG.gif
200 OK 157 B URL HTTP/1.1 bxktv.com/images/DateBG.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 1 x 35\012- data
Hash 45f240389206bdbb5629af9e5c664c8d
72fdb5020dd0f3b65c8d7290ee6c29c33c5c07b6
4fa82821983a8d9b99aca9d5b299be2e80319b8e1d0a18b6ce26a9299305bf5a
GET /images/DateBG.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 157
Connection: keep-alive
X-Source: C/200
ETag: "0cf03f2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:28 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:13 GMT
Cache-Control: max-age=691200
Age: 100683
X-Request-Id: 287a8c8d01cdebf45c8510e046a16c73; 252c0c08667878949831e8e4966f8538
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/LeftBG.gif
200 OK 380 B URL HTTP/1.1 bxktv.com/images/LeftBG.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 80 x 26\012- data
Hash f729e4b28b9d9c4562213f6d06c0fdc4
154011f7fab90a0441356f03bdaf85b54138fd81
2a435fdc32815f0113ec9c785ff588de3083883b89eade002b9d46385ad9c6e4
GET /images/LeftBG.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 380
Connection: keep-alive
X-Source: C/200
ETag: "09383432680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:34 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:13 GMT
Cache-Control: max-age=691200
Age: 100683
X-Request-Id: 7d0a8671a8acc67efb1efacfa195a92e; f301d4a64e3bcce3e78e978b9ae7642c
Via: S.pcw-cn-hkg-165, T.165.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/TitleBG.gif
200 OK 338 B URL HTTP/1.1 bxktv.com/images/TitleBG.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 5 x 36\012- data
Hash a4d34999e7e5a057c6d66efd5a7606af
70fec10c8ba54e9e3170c4efff781a07c6780d75
323f61a21505023b73f717ce8a7ed5c91a77f3e18f3fdb5a6e331b2ef386e61a
GET /images/TitleBG.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 338
Connection: keep-alive
X-Source: C/200
ETag: "0cedb4b2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:48 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:14 GMT
Cache-Control: max-age=691200
Age: 100682
X-Request-Id: f9a880178cd246386992fb3f22d4c86a; 2476b0136112645e09f4540f9ac4ba45
Via: S.pcw-cn-hkg-167, T.167.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/ListLeft.gif
200 OK 89 B URL HTTP/1.1 bxktv.com/MP3/images/ListLeft.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 7 x 1\012- data
Hash 00b54446c7da60660852f32c6e99340f
a952acb2107508edc6d34a4e5430d7cb1b2c63d8
a6cba412e81b4c324414428cd21696eac6c99f028cea9823c0d598e2a0d7d538
GET /MP3/images/ListLeft.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 89
Connection: keep-alive
X-Source: C/200
ETag: "0c0b4442680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:36 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:54 GMT
Cache-Control: max-age=691200
X-Request-Id: 3038909e366831fbaebfadeba29e197f; 01490f4e54311ecaab331d4f08a219c0
Age: 99502
Via: T.165.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/ListRight.gif
200 OK 91 B URL HTTP/1.1 bxktv.com/MP3/images/ListRight.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 11 x 1\012- data
Hash 993c1872a1c7165d501ea3923be713b4
97695ae0d0651cb0ec912c2a8d8f5ca1a5617819
c61705f83a6bbd0848bb171b4ca87757ecdbaae72632839a51145f691ca6f705
GET /MP3/images/ListRight.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 91
Connection: keep-alive
X-Source: C/200
ETag: "0c0b4442680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:36 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:55 GMT
Cache-Control: max-age=691200
X-Request-Id: ed63427c4e0503b916c0b66dbc3269b1; 2b554b2612a1cf9a52c8fe3249202e41
Age: 99501
Via: T.164.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/ListRight.gif
200 OK 91 B URL HTTP/1.1 bxktv.com/images/ListRight.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 11 x 1\012- data
Hash 993c1872a1c7165d501ea3923be713b4
97695ae0d0651cb0ec912c2a8d8f5ca1a5617819
c61705f83a6bbd0848bb171b4ca87757ecdbaae72632839a51145f691ca6f705
GET /images/ListRight.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 91
Connection: keep-alive
X-Source: C/200
ETag: "0c0b4442680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:36 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:12 GMT
Cache-Control: max-age=691200
Age: 100684
X-Request-Id: 121efe2ffe4fa02e4627ca72e20ae55a; 9a1d18d580ef456673fa702c747b0b54
Via: S.pcw-cn-hkg-164, T.164.M, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/ListLeft.gif
200 OK 89 B URL HTTP/1.1 bxktv.com/images/ListLeft.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 7 x 1\012- data
Hash 00b54446c7da60660852f32c6e99340f
a952acb2107508edc6d34a4e5430d7cb1b2c63d8
a6cba412e81b4c324414428cd21696eac6c99f028cea9823c0d598e2a0d7d538
GET /images/ListLeft.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 89
Connection: keep-alive
X-Source: C/200
ETag: "0c0b4442680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:36 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:13 GMT
Cache-Control: max-age=691200
Age: 100683
X-Request-Id: 8c8e9e2c04caa27750cde81a24ffef2e; 06341b58f324a00914931dabc4df4617
Via: S.pcw-cn-hkg-164, T.164.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/mp3/0030.gif
200 OK 157 B URL HTTP/1.1 bxktv.com/images/mp3/0030.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 1 x 32\012- data
Hash f21487be5decf56bb1a392b49b0f6add
b7623a1ad10e66a3500a5657152962f1ca476c03
da1ca3c66296dfc817465358c99dd72c9296c8333d2a5ca2698bf2c2074098cc
GET /images/mp3/0030.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 157
Connection: keep-alive
X-Source: C/200
ETag: "0f194724986cc1:0"
Last-Modified: Sun, 09 Oct 2011 06:05:30 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:50:13 GMT
Cache-Control: max-age=691200
Age: 100023
X-Request-Id: 179aa9adfacde92c768bf0e1ccf7a713; 2cbcd518963dd09d114ef9d01a74578c
Via: S.pcw-cn-hkg-166, T.166.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/ListBG2.gif
200 OK 90 B URL HTTP/1.1 bxktv.com/images/ListBG2.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 1 x 8\012- data
Hash c5413325ba58cbf1599dcd60208d458b
e7d41b23d81313df71342972bcaef74b77ff0f41
138ec15669fab48a4130f15cee5bce7965ea93103504e46074e08044353911c8
GET /images/ListBG2.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:16 GMT
Content-Type: image/gif
Content-Length: 90
Connection: keep-alive
X-Source: C/200
ETag: "0c0b4442680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:36 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:14 GMT
Cache-Control: max-age=691200
Age: 100682
X-Request-Id: d06b20af31e34a96fa12f5c9d989ea9c; 1816ff9b510fbdeab03ad17ee05d297e
Via: S.pcw-cn-hkg-167, T.167.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/images/mp3/jia.js
404 Not Found 66 kB URL HTTP/1.1 bxktv.com/images/mp3/jia.js
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with very long lines (64422), with CRLF line terminators
Hash b7dbd40a14bf2b71213a3e629b874aee
3bfd71b001f9fadcd66abc3f52f4771a61bbed14
0582ef97e644b91985f005bc15c1a21a1fb5d0340d2f317798916dc90e8e48dd
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata high ET WEB_CLIENT DRIVEBY EXE Embeded in Page Likely Evil M1
suricata high ET MALWARE PE EXE or DLL Windows file download Text
suricata high ET WEB_CLIENT Generic Attempted Executable Drop via VBScript
suricata high ET WEB_CLIENT DRIVEBY EXE Embeded in Page Likely Evil M1
suricata high ET MALWARE PE EXE or DLL Windows file download Text
suricata high ET WEB_CLIENT Generic Attempted Executable Drop via VBScript
GET /images/mp3/jia.js HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 404 Not Found
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/404
X-Powered-By: WAF/2.0
X-Request-Id: 057515cdf65ebe74adb98fc019de9df4
Via: S.pcw-cn-hkg-164, T.164.D, V.pcw-cn-hkg-167, T.133.D, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/images/RightBG.gif
200 OK 384 B URL HTTP/1.1 bxktv.com/images/RightBG.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 80 x 26\012- data
Hash a53a21451a4445b647a4f055e09cc9fa
58298ebf7dbd00b63ff951590fcb72c5bffcd8ac
5d05137ed5e9f843ecba3e501bd96cbdb995cf6ce7ff6ff4149a8a1d283c2e83
GET /images/RightBG.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/gif
Content-Length: 384
Connection: keep-alive
X-Source: C/200
ETag: "01a17472680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:40 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:39:14 GMT
Cache-Control: max-age=691200
Age: 100683
X-Request-Id: 38466c8c7726e2d9582b8c37de0b2a27; bd7c23a6791aca64a5ba59d342e794f4
Via: S.pcw-cn-hkg-167, T.167.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/images/BottomBG.gif
200 OK 278 B URL HTTP/1.1 bxktv.com/MP3/images/BottomBG.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 1 x 87\012- data
Hash c025282e0275fe7b2bdb55a36768dce7
f31c94527495a21b818f9d78c2e52173e2d6a96b
8ddba836e2bdf9d4c9acbf4b81a57eb25a9462abde735df52cae9421392de7dd
GET /MP3/images/BottomBG.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/gif
Content-Length: 278
Connection: keep-alive
X-Source: C/200
ETag: "0b28d3d2680cb1:0"
Last-Modified: Tue, 09 Nov 2010 15:53:24 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 05:58:54 GMT
Cache-Control: max-age=691200
X-Request-Id: 57d17ce3ef91ab4d659ef800dd9db665; bf52a185b2663ec8ccc3860f149eee0b
Age: 99503
Via: T.165.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bdimg.share.baidu.com/static/js/shell_v2.js?cdnversion=9
200 OK 571 B URL HTTP/1.1 bdimg.share.baidu.com/static/js/shell_v2.js?cdnversion=9
IP
ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network
File type ASCII text, with very long lines (1135), with no line terminators
Hash 00557ef156b68551fac985596b5095e9
56287832fbec3545fbfd175ffe9e39d965341f27
10cf659ebdde336a7bfa71ca25af87f67d153def839e001ac9714873b5b70f39
GET /static/js/shell_v2.js?cdnversion=9 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 571
Content-Type: text/javascript
Date: Sat, 14 Jan 2023 09:37:17 GMT
Etag: "2176374695"
Expires: Sat, 14 Jan 2023 10:07:17 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:12 GMT
Server: BWS/1.0
Vary: Accept-Encoding
bxktv.com/MP3/message.html
200 OK 2.5 kB URL HTTP/1.1 bxktv.com/MP3/message.html
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 947db4ea605986bbce6062c5d95efbee
0f54eb5e2aed4f3ff1f72f854a28fe816ee09401
eaf194a26a2286c2f67fb8ac45e489aa9a4dc33c640ac06dc91ec6b95c8ddd7b
Analyzer Verdict Alert fortinet Malware
GET /MP3/message.html HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
Cache-Control: private
X-Aspnet-Version: 0
X-Powered-By: WAF/2.0
X-Request-Id: 2734f4ac3040498ea06f23c2b4234a1f
Via: S.pcw-cn-hkg-166, T.166.D, V.pcw-cn-hkg-165, T.133.D, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/MP3/touxiang/song_comment.css
200 OK 235 B URL HTTP/1.1 bxktv.com/MP3/touxiang/song_comment.css
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type ASCII text, with CRLF line terminators
Hash f13c93181b5953d30dff41a31309ba91
514907f7cd29b5645f51c227d2db83ec27dd938e
fa87b3943f3a8c7e4ba17a896bf22e2bb9b4938e3a15e6d9e26e3c102b537f95
GET /MP3/touxiang/song_comment.css HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"c4c1e034c99d01:0"
Last-Modified: Thu, 28 May 2015 13:41:35 GMT
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:00 GMT
Cache-Control: max-age=691200
X-Request-Id: a5a8ca762766f08e380ea2456dfa95a5; c650a76267a8f6d45f6b348bfdd360a2
Age: 94937
Via: T.163.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bdimg.share.baidu.com/static/js/logger.js?cdnversion=464914
200 OK 2.4 kB URL HTTP/1.1 bdimg.share.baidu.com/static/js/logger.js?cdnversion=464914
IP
ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network
File type ASCII text, with very long lines (5881), with no line terminators
Hash 8d97ba4654dcd20da83631b6f298e30a
4ef15efe157573e2d46ec6eacf7e41160b01a4fa
6a43a65e541c0f46d9c542ca83bc4585998c58c0f902b872955852d943279f32
GET /static/js/logger.js?cdnversion=464914 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2404
Content-Type: text/javascript
Date: Sat, 14 Jan 2023 09:37:17 GMT
Etag: "867751605"
Expires: Sat, 14 Jan 2023 10:07:17 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:12 GMT
Server: BWS/1.0
Vary: Accept-Encoding
bdimg.share.baidu.com/static/js/bds_s_v2.js?cdnversion=464914
200 OK 10 kB URL HTTP/1.1 bdimg.share.baidu.com/static/js/bds_s_v2.js?cdnversion=464914
IP
ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network
File type Unicode text, UTF-8 text, with very long lines (26168), with no line terminators
Hash 666a677963a48538c3c7839cd2e6ff58
b6f5b5f721c6a399b69730ea265077304de99e01
dfe19948df1360a5a80fa4d63773ef15d1ce728bf918cb4f0d70897817154261
GET /static/js/bds_s_v2.js?cdnversion=464914 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 9992
Content-Type: text/javascript
Date: Sat, 14 Jan 2023 09:37:17 GMT
Etag: "859391591"
Expires: Sat, 14 Jan 2023 10:07:17 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:12 GMT
Server: BWS/1.0
Vary: Accept-Encoding
bxktv.com/MP3/touxiang/_147430899726503911681767909045051601310.jpg
200 OK 4.2 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/_147430899726503911681767909045051601310.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 90x90, components 3\012- data
Hash 9115d76fbf4a7e790f6d5d833a7fce62
0c083f528d0fdf8ee39d9351c92a243b385386ec
c7255f60def28f27f263aeda12f878f6e7f38fe3a81b70e556ac4b7ddbfd8a58
GET /MP3/touxiang/_147430899726503911681767909045051601310.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 4218
Connection: keep-alive
X-Source: C/200
ETag: "0533e18b1cbcd1:0"
Last-Modified: Mon, 26 Nov 2012 08:36:14 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: 02b9c8c0eab20ac32b2d370b5866da2a; 4ec75d371ab852c3576c38c2cf52b7b3
Age: 94936
Via: T.163.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/mmer.jpg
200 OK 2.7 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/mmer.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 1\012- data
Hash 04e9135828c106287c11fd1510885b98
1cf1e422162c8b7f65fb551a57f39eab7d9fa678
77e882279b442917df2b45476ddd695ccb8c6d8ab1af1c3cdb2478520e85b53f
GET /MP3/touxiang/mmer.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 2680
Connection: keep-alive
X-Source: C/200
ETag: "0cc92fb0cbcd1:0"
Last-Modified: Mon, 26 Nov 2012 08:29:44 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: 6d9029b8516207fb7f90ad0c843bb049; 38117199c187235261830c7c3d14aff8
Age: 94936
Via: T.167.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/U-07.gif
200 OK 3.0 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/U-07.gif
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type GIF image data, version 89a, 100 x 100\012- data
Hash 62bd89601fea4f7170e3eebf2b3a6788
a224cfee7d6670fe07aa992c940bfae7a94635e6
92d3b4a506847ea3ffe69a8360b9953653bea37c307388aac5cf019c6affe7ce
GET /MP3/touxiang/U-07.gif HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/gif
Content-Length: 3016
Connection: keep-alive
X-Source: C/200
ETag: "0ddf84ca6cbcd1:0"
Last-Modified: Mon, 26 Nov 2012 07:18:58 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 06:09:34 GMT
Cache-Control: max-age=691200
X-Request-Id: 3da5e028680cbe7a4bbd3d8532384699; 1eb5678bf05bbbe3d8806bdab25a52f9
Age: 98863
Via: T.163.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/0.jpg
200 OK 3.2 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/0.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash b1dda99bd9d5939e448a5abe838c3a5b
1fac34ce4a27f576e7ed54d77c67c750f8d52b0b
d121a657b7d59c8ca613adc0f0871145542b5efdd2e5aeef910c2ec68ec9f1ef
GET /MP3/touxiang/0.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 3183
Connection: keep-alive
X-Source: C/200
ETag: "059b6efb0cbcd1:0"
Last-Modified: Mon, 26 Nov 2012 08:35:06 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: 55a9ed5c36ada5748332c350ea8d774e; d790e848e8ff3c05ec5978e5b4e662e6
Age: 94936
Via: T.163.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/untitled.bmp
200 OK 24 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/untitled.bmp
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type PC bitmap, Windows 3.x format, 90 x 90 x 24, resolution 3780 x 3780 px/m, cbSize 24534, bits offset 54\012- data
Hash 6f56754c7157bfe277551641ebe42b2e
8a6f88ed6e55d0201e03c3d7751ec97c73fcbc02
d006d8a1cded1cda0838eef237a6fe8de7cc765e812d047876892dba50e82a97
Analyzer Verdict Alert fortinet Malware
GET /MP3/touxiang/untitled.bmp HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/bmp
Content-Length: 24534
Connection: keep-alive
X-Source: C/200
ETag: "0567370adcbcd1:0"
Last-Modified: Mon, 26 Nov 2012 08:10:04 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:00 GMT
Cache-Control: max-age=691200
X-Request-Id: 67e64cdccd0397fceaa48c08fb2b4950; b9dfb0fceaf3d75ddfb04082ece520e5
Age: 94937
Via: T.164.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/favicon.ico
200 OK 923 B IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 4a032d98f5a37269ef1a2c0d317a6fb1
176270597d7baadd6fda8d732f974528c4739ea1
677cc2ed8383dd0fd0ea94935f5bd664c5126017f4bdeada85e10c47e22986e8
GET /favicon.ico HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/2930.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Source: C/200
ETag: W/"2e9d9437f29cd01:0"
Last-Modified: Tue, 02 Jun 2015 05:08:52 GMT
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 04:35:33 GMT
Cache-Control: max-age=691200
Age: 104504
X-Request-Id: ebf241aba5d49420ff33c07c30b9af43; c2234b879b3f132196745b6b64a48b47
Via: S.pcw-cn-hkg-166, T.166.H, V.pcw-cn-hkg-163, T.133.H, M.gtt-de-fra3-133
Content-Encoding: gzip
bxktv.com/MP3/touxiang/0CA5VPT7I.jpg
200 OK 2.6 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/0CA5VPT7I.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash b724183b7b7dfdf5d1b451fd491abc99
a55a791340cafbf6606ff5b5766159057fed0371
db4ea80f65b6caba116b69bae121d5823e9282385b076d895678da59064f9a2a
GET /MP3/touxiang/0CA5VPT7I.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 2575
Connection: keep-alive
X-Source: C/200
ETag: "0126e38b1cbcd1:0"
Last-Modified: Mon, 26 Nov 2012 08:37:08 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: 2604dd01de519d5f5cf3c309e30f4eab; d32e5ff1abfcc4a51f12002d048abeb0
Age: 94936
Via: T.167.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/0CAZ2GQ6N.jpg
200 OK 2.9 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/0CAZ2GQ6N.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash f0a825e2d6e01e98841d333cd84ff93d
b9665ebd34734c69e3bf9630f956842511868258
f2677c4a460272d4d6a745aa668ac5416f916947f3e553b80edc084f9abc8b7b
GET /MP3/touxiang/0CAZ2GQ6N.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 2907
Connection: keep-alive
X-Source: C/200
ETag: "0533e18b1cbcd1:0"
Last-Modified: Mon, 26 Nov 2012 08:36:14 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: ba08b5b041b2f47564e27a4e53ce2bf5; a47a6a3a89f7ab53634899d16da026bb
Age: 94936
Via: T.167.H, V.pcw-cn-hkg-165, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/small_311098.jpg
200 OK 1.6 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/small_311098.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 537c66926a35c38a54faad9825f4365e
ed8d523f011b5b08ad9e03b9142c30fb227ba3f5
26139b2f43ff2fe375df0be40d17198fece3651f34387dfaa4e0d0c89a50e3ef
GET /MP3/touxiang/small_311098.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 1620
Connection: keep-alive
X-Source: C/200
ETag: "528fa6ef5e99d01:0"
Last-Modified: Thu, 28 May 2015 15:57:02 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: 7e508e02c7d71ec06ce580d5dc11c294; e1ed33899d69b819022730b5ecbc1459
Age: 94936
Via: T.163.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/small_4125266.jpg
200 OK 1.5 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/small_4125266.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 53b456d5a5e2c2a06d9bcc2c217058ce
9f427d97e1e144c28283289d8d417f664cfb221f
9515d97ba73d380033715874bef1238ea6605e87b75c8834d6ead34b479d6f61
GET /MP3/touxiang/small_4125266.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 1520
Connection: keep-alive
X-Source: C/200
ETag: "65be2d705e99d01:0"
Last-Modified: Thu, 28 May 2015 15:53:28 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: 3a166e15985e52eac9d37d11aa533654; 471b657a54a8e6382394c6f8a9ab0a2d
Age: 94936
Via: T.163.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/small_4132580.jpg
200 OK 1.4 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/small_4132580.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 2b2a092b9842cf87c2b19577723047e2
582f799afaae8755b86c5c2b8e4a6d44cb87ad01
b59c68aed0c508151a7527d48e2399400fa79e4fb26287f42dfb984a0a2d927a
GET /MP3/touxiang/small_4132580.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 1360
Connection: keep-alive
X-Source: C/200
ETag: "4afa38d55e99d01:0"
Last-Modified: Thu, 28 May 2015 15:56:17 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: f7b1a3934c98ecd754b4525601f766dd; d5d6424f134b1f11cc6f7127a17f1e84
Age: 94936
Via: T.165.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/small_4145596.jpg
200 OK 1.4 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/small_4145596.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash f8131571496428e01150e4877991105d
7fd06b21d8d1a837249fe8bdea5c5b925e5d50db
addbbf35e1998dbf38db861a434311c9622ef29a184eacb9e527543ad20267ab
GET /MP3/touxiang/small_4145596.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 1446
Connection: keep-alive
X-Source: C/200
ETag: "df7e88135f99d01:0"
Last-Modified: Thu, 28 May 2015 15:58:02 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: c401e4fb502a7d961914ae329028afa5; e0a7c00051223f3c48dfaf10d3fc8ddc
Age: 94936
Via: T.163.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
hm.baidu.com/hm.js?7273da0e53cbbcb320961b5f26ff5b4b
301 Moved Permanently 94 B URL HTTP/1.1 hm.baidu.com/hm.js?7273da0e53cbbcb320961b5f26ff5b4b
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type HTML document, ASCII text
Hash 40b75822fdd479c1ac18914bc303dbd4
fc3964b28bdc1db61cd982018949a099f42fab91
3ba55d1f19ca601dafbaf9c037dc15234d99560ee5c8b2e2412c1c5906ab8e5c
GET /hm.js?7273da0e53cbbcb320961b5f26ff5b4b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/
HTTP/1.1 301 Moved Permanently
Location: https://hm.baidu.com/hm.js?7273da0e53cbbcb320961b5f26ff5b4b
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Length: 94
Content-Type: text/html; charset=utf-8
bxktv.com/MP3/touxiang/small_4176002.jpg
200 OK 1.3 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/small_4176002.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 1df3cb92cc51734ada5e4bded64fa2bd
8efefd4add1d94d4db3d819efa381ecf2c160145
da5ca807353166a00def82691ccf3a9fcda2e499e1788ab893c7e3825f69cf5f
GET /MP3/touxiang/small_4176002.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 1271
Connection: keep-alive
X-Source: C/200
ETag: "391f30b35e99d01:0"
Last-Modified: Thu, 28 May 2015 15:55:20 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: 2dbd142518d3eec695be6c5411776a13; c143008bfb524dd13f35031b27aba6dd
Age: 94936
Via: T.166.H, V.pcw-cn-hkg-166, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/small_4179018.jpg
200 OK 1.6 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/small_4179018.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash a3928e0c852a2f96bb7ac5581fcffa29
d44ae991e7376ebd5ab0467b4ebe9e765274e5c6
029ea1ae25fc6ac162186960763803bfebc8989acd3abac19d78abc64404a651
GET /MP3/touxiang/small_4179018.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 1637
Connection: keep-alive
X-Source: C/200
ETag: "5771f2a5e99d01:0"
Last-Modified: Thu, 28 May 2015 15:51:30 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: ac16dd0e5a32f25067d4c4a28be7bdea; 9557c65e22fa661902f5c9babd77dabe
Age: 94936
Via: T.167.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/small_4081681.jpg
200 OK 1.5 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/small_4081681.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 5573733d39f6bf79fb5d4b20488048cf
50fc1f214b4b8c51bcd9af79631c0395a9a73024
4e2e1b5e92ed004c3825df16482f789afe390798ed93a2923215b537d10ead5f
GET /MP3/touxiang/small_4081681.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 1454
Connection: keep-alive
X-Source: C/200
ETag: "a11cfd155f99d01:0"
Last-Modified: Thu, 28 May 2015 15:58:06 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:02 GMT
Cache-Control: max-age=691200
X-Request-Id: 4cbe95a1682f16cd74177648e28b3fb1; b747d36811938a8c266448763f8e7ece
Age: 94935
Via: T.167.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/small_4187664.jpg
200 OK 1.7 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/small_4187664.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 62affec224bebd36223523fdabf51b2c
128d771005b3cf136c8694304e9416482b8761c8
5912fb4f8882f36ac5f13f47635e597de97299b37a419141dcaab2c3295d3219
GET /MP3/touxiang/small_4187664.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 1677
Connection: keep-alive
X-Source: C/200
ETag: "d23ba0105f99d01:0"
Last-Modified: Thu, 28 May 2015 15:57:57 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:01 GMT
Cache-Control: max-age=691200
X-Request-Id: a2353f7cfaac73d8f9e5d63e231f9e3e; 52d8b85f1f0f33ec3b20c486180b3ff8
Age: 94936
Via: T.167.H, V.pcw-cn-hkg-164, T.133.H, M.gtt-de-fra3-133
bxktv.com/MP3/touxiang/1.jpg
200 OK 3.3 kB URL HTTP/1.1 bxktv.com/MP3/touxiang/1.jpg
IP
ASN #135391 AOFEI DATA INTERNATIONAL COMPANY LIMITED
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 697a3e72f8523df0ff80b64802aa01bd
6c8c904228b0fa3256b0fec6478073316a539447
74a1eb58f30ed955b4beb7abd8aecba05e6b45f131fd67e4780705a19c0df92c
GET /MP3/touxiang/1.jpg HTTP/1.1
Host: bxktv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/MP3/message.html
Cookie: ASP.NET_SessionId=fj1fqezdjpn4bxtd4erjnzyg
HTTP/1.1 200 OK
Server: marco/2.19
Date: Sat, 14 Jan 2023 09:37:17 GMT
Content-Type: image/jpeg
Content-Length: 3309
Connection: keep-alive
X-Source: C/200
ETag: "0d5ded7b0cbcd1:0"
Last-Modified: Mon, 26 Nov 2012 08:34:26 GMT
Accept-Ranges: bytes
X-Powered-By: WAF/2.0
Expires: Sat, 21 Jan 2023 07:15:02 GMT
Cache-Control: max-age=691200
X-Request-Id: 8ab432ab862deb951820933a104c1670; d7e6594a4f4cf2659944ff13f07090c0
Age: 94935
Via: T.167.H, V.pcw-cn-hkg-167, T.133.H, M.gtt-de-fra3-133
haorx.95wyx.com/
200 OK 542 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 5f273a51777875802ca868697d3d0fbf
80f441fcb388afe410d51d4c969eacb38610a156
aa33d29993f485c5f94b5fd0cb2d06431ed185ad20241adab47b49272f7f6a33
GET / HTTP/1.1
Host: haorx.95wyx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 14 Jan 2023 02:11:18 GMT
Content-Type: text/html
Content-Length: 542
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Sun, 01 Jan 2023 07:25:31 GMT
ETag: "30ddd23ab21dd91:0"
X-Powered-By: ASP.NET
Expires: Sat, 14 Jan 2023 02:12:18 GMT
Cache-Control: max-age=60
Server_IP: 170.178.172.86
Accept-Ranges: bytes
bdimg.share.baidu.com/static/css/bdsstyle.css?cdnversion=20131219
200 OK 2.0 kB URL HTTP/1.1 bdimg.share.baidu.com/static/css/bdsstyle.css?cdnversion=20131219
IP
ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network
File type Unicode text, UTF-8 text, with very long lines (9747), with no line terminators
Hash 6173f7b3e49c84be234ef0bf8bd51cac
1cfb38a64ebc61e184f0eb23f4d33ab7cde46dec
034ed2dda6d5a1e42fc58e2cac588815f8dbff7e2f9d56cf6eab6e1a77f490a2
GET /static/css/bdsstyle.css?cdnversion=20131219 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bxktv.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2021
Content-Type: text/css
Date: Sat, 14 Jan 2023 09:37:17 GMT
Etag: "3350779264"
Expires: Sat, 14 Jan 2023 10:07:17 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0
Vary: Accept-Encoding
haorx.95wyx.com/2022ok.html
200 OK 768 B URL HTTP/1.1 haorx.95wyx.com/2022ok.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 79892d791d7b5ce21fc9b984ed21fd8e
154d8078d357cfc952c7a9a3ed2a78265e32c211
2352fd7210d6ecc5c5369abd8fe8f7c4c9839b2e9cc03578559d97ce4aca05a9
GET /2022ok.html HTTP/1.1
Host: haorx.95wyx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haorx.95wyx.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 14 Jan 2023 02:11:18 GMT
Content-Type: text/html
Content-Length: 768
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Sat, 26 Mar 2022 06:27:59 GMT
ETag: "535543a3da40d81:0"
X-Powered-By: ASP.NET
Expires: Sat, 14 Jan 2023 02:12:18 GMT
Cache-Control: max-age=60
Server_IP: 170.178.172.86
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 3be3fd650eec5276c12a8e3805057ce9
b24af3a6232c42a116c9e8cf84b0b4bbc3749dd6
c29f5b6a286a53b6f0befdb01b247e2821bbdb0582043b29c00e534ad785d54c
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 09:37:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 18 Jan 2023 07:52:31 GMT
ETag: "b24af3a6232c42a116c9e8cf84b0b4bbc3749dd6"
Last-Modified: Sat, 14 Jan 2023 07:52:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 854
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78956468eba8b523-OSL
bdimg.share.baidu.com/static/images/is.png?cdnversion=20131219
200 OK 12 kB URL HTTP/1.1 bdimg.share.baidu.com/static/images/is.png?cdnversion=20131219
IP
ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network
File type PNG image data, 20 x 2620, 8-bit colormap, non-interlaced\012- data
Hash fee619fb8de49c08487681bd0119fa5c
9c7231237e5e5f4e8408623b401dece33f6563ce
dc274420601f10bec22ea0dc7e9a1a1425ba67d4a40153d30c864752c09901d2
GET /static/images/is.png?cdnversion=20131219 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdimg.share.baidu.com/static/css/bdsstyle.css?cdnversion=20131219
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 12294
Content-Type: image/png
Date: Sat, 14 Jan 2023 09:37:18 GMT
Etag: "557408074"
Expires: Sat, 21 Jan 2023 09:37:18 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0
s4.cnzz.com/z_stat.php?id=1261024588&web_id=1261024588
200 OK 20 B URL HTTP/1.1 s4.cnzz.com/z_stat.php?id=1261024588&web_id=1261024588
IP
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /z_stat.php?id=1261024588&web_id=1261024588 HTTP/1.1
Host: s4.cnzz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haorx.95wyx.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript
Content-Length: 20
Connection: keep-alive
Date: Sat, 14 Jan 2023 09:04:10 GMT
Vary: Accept-Encoding
X-Powered-By: PHP/5.5.25
Last-Modified: Sat, 14 Jan 2023 09:04:10 GMT
Cache-Control: max-age=1800,s-maxage=3600
Content-Encoding: gzip
Ali-Swift-Global-Savetime: 1673687050
Via: cache32.l2cn1807[0,0,200-0,H], cache34.l2cn1807[1,0], ens-cache2.cn4461[0,0,200-0,H], ens-cache5.cn4461[0,0]
Age: 1988
X-Cache: HIT TCP_MEM_HIT dirn:9:47420352
X-Swift-SaveTime: Sat, 14 Jan 2023 09:04:22 GMT
X-Swift-CacheTime: 3588
Timing-Allow-Origin: *
EagleId: 968a629916736890382388191e
hm.baidu.com/hm.js?7273da0e53cbbcb320961b5f26ff5b4b
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?7273da0e53cbbcb320961b5f26ff5b4b
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash 068f39bc98e25bb419908f607b48ba36
c63d6df0a6dd80b9e4fe95ba176b547aeaaf28c0
44e4672f1abb84c2ed264c9c0d9e6b0393da53f64b316d9124d4216229bb607b
GET /hm.js?7273da0e53cbbcb320961b5f26ff5b4b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bxktv.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Sat, 14 Jan 2023 09:37:18 GMT
Etag: 40e586ca6123a24ab805f6b2cbc9c269
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=3CF7F0E165C2779A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1355900422&si=7273da0e53cbbcb320961b5f26ff5b4b&v=1.3.0&lv=1&sn=56193&r=0&ww=1280&u=http%3A%2F%2Fbxktv.com%2FMP3%2F2930.html&tt=%E8%8B%8F%E4%BB%A8%20-%20%E7%8E%9B%E5%88%A9%E4%BA%9A%E8%AF%95%E5%90%AC%2Cmp3%E4%B8%8B%E8%BD%BD_%E5%86%B0%E9%9B%AA%E5%A8%B1%E4%B9%90%E7%BD%91
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1355900422&si=7273da0e53cbbcb320961b5f26ff5b4b&v=1.3.0&lv=1&sn=56193&r=0&ww=1280&u=http%3A%2F%2Fbxktv.com%2FMP3%2F2930.html&tt=%E8%8B%8F%E4%BB%A8%20-%20%E7%8E%9B%E5%88%A9%E4%BA%9A%E8%AF%95%E5%90%AC%2Cmp3%E4%B8%8B%E8%BD%BD_%E5%86%B0%E9%9B%AA%E5%A8%B1%E4%B9%90%E7%BD%91
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1355900422&si=7273da0e53cbbcb320961b5f26ff5b4b&v=1.3.0&lv=1&sn=56193&r=0&ww=1280&u=http%3A%2F%2Fbxktv.com%2FMP3%2F2930.html&tt=%E8%8B%8F%E4%BB%A8%20-%20%E7%8E%9B%E5%88%A9%E4%BA%9A%E8%AF%95%E5%90%AC%2Cmp3%E4%B8%8B%E8%BD%BD_%E5%86%B0%E9%9B%AA%E5%A8%B1%E4%B9%90%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bxktv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 14 Jan 2023 09:37:19 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=5E59E025D04781FD; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
185.232.59.133
35.82.144.234
103.235.46.191
150.138.98.224
104.18.21.226
47.246.44.205
23.36.76.226
93.184.220.29