www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
160.124.111.91200 OK 91 B URL User Request GET HTTP/1.1 www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
IP 160.124.111.91:80
ASN #132839 POWER LINE DATACENTER
File type HTML document, ASCII text, with no line terminators
Hash 49af584cf8d2f0aa7b348f2ee5f192a8
895581158b20e7c1b0836d5a895b7c67cefc772b
94c0a23d7fed2a6ec71befdaaa16d01d9ea40fc038171e10cc12ed947181714a
GET /wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/ HTTP/1.1
Host: www.bestsacramentoappraiser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 May 2024 22:29:24 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
160.124.116.162/bandao.js
160.124.116.162200 OK 1.7 kB URL GET HTTP/1.1 160.124.116.162/bandao.js
IP 160.124.116.162:80
ASN #132839 POWER LINE DATACENTER
Requested by http://www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (589)
Hash 8028a838b49b78dd85855f625c711786
8af8d2c0e5c2159035f32bfe031134f941cde137
83d8310e98fa32c9fbd595ab74c1b48ff805088b5aa304597aefec3e8d7e52c3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /bandao.js HTTP/1.1
Host: 160.124.116.162
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bestsacramentoappraiser.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 May 2024 22:29:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Mon, 06 May 2024 10:29:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
sdk.51.la/js-sdk-pro.min.js
47.246.44.241200 OK 13 kB URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP 47.246.44.241:80
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by http://www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (34110)
Hash 24bb520e9517f2ed3ed987b46aeaf723
846723563d7dd2bff3954f93633b11af0103adc8
d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bestsacramentoappraiser.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript
Content-Length: 12846
Connection: keep-alive
Date: Sun, 21 Apr 2024 10:11:16 GMT
x-oss-request-id: 6624E644CC8CEC34394ACD92
x-oss-cdn-auth: success
x-oss-object-type: Normal
x-oss-storage-class: Standard
Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw==
x-oss-server-time: 3
Ali-Swift-Global-Savetime: 1713694276
Via: cache15.l2de2[0,0,304-0,H], cache4.l2de2[1,0], ens-cache18.se2[0,0,200-0,H], ens-cache6.se2[1,0]
Accept-Ranges: bytes
Vary: Accept-Encoding
Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT
x-oss-hash-crc64ecma: 5143829838470429443
Content-Encoding: gzip
Age: 1253889
X-Cache: HIT TCP_MEM_HIT dirn:11:314957921
X-Swift-SaveTime: Thu, 02 May 2024 02:56:26 GMT
X-Swift-CacheTime: 371690
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
EagleId: 2ff62c9a17149481656884592e
sdk.51.la/js-sdk-pro.min.js
47.246.44.241200 OK 13 kB URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP 47.246.44.241:80
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by http://www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (34110)
Hash 24bb520e9517f2ed3ed987b46aeaf723
846723563d7dd2bff3954f93633b11af0103adc8
d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bestsacramentoappraiser.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript
Content-Length: 12846
Connection: keep-alive
Date: Sun, 21 Apr 2024 10:11:16 GMT
x-oss-request-id: 6624E644CC8CEC34394ACD92
x-oss-cdn-auth: success
x-oss-object-type: Normal
x-oss-storage-class: Standard
Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw==
x-oss-server-time: 3
Ali-Swift-Global-Savetime: 1713694276
Via: cache15.l2de2[0,0,304-0,H], cache4.l2de2[1,0], ens-cache18.se2[0,0,200-0,H], ens-cache5.se2[1,0]
Accept-Ranges: bytes
Vary: Accept-Encoding
Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT
x-oss-hash-crc64ecma: 5143829838470429443
Content-Encoding: gzip
Age: 1253889
X-Cache: HIT TCP_MEM_HIT dirn:11:314957921
X-Swift-SaveTime: Thu, 02 May 2024 02:56:26 GMT
X-Swift-CacheTime: 371690
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
EagleId: 2ff62c9917149481656896370e
www.bestsacramentoappraiser.com/favicon.ico
160.124.111.91200 OK 91 B URL GET HTTP/1.1 www.bestsacramentoappraiser.com/favicon.ico
IP 160.124.111.91:80
ASN #132839 POWER LINE DATACENTER
Requested by http://www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
File type HTML document, ASCII text, with no line terminators
Hash 49af584cf8d2f0aa7b348f2ee5f192a8
895581158b20e7c1b0836d5a895b7c67cefc772b
94c0a23d7fed2a6ec71befdaaa16d01d9ea40fc038171e10cc12ed947181714a
GET /favicon.ico HTTP/1.1
Host: www.bestsacramentoappraiser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 May 2024 22:29:25 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
hm.baidu.com/hm.js?3e61df578541764bf6e86444ad21a41e
111.45.3.198200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?3e61df578541764bf6e86444ad21a41e
IP 111.45.3.198:443
ASN #56040 China Mobile communications corporation
Requested by http://www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (619)
Hash 053be21f96ba0a54ba69eb90d1666283
ec5ec5feb5666de617f1a5a2fe1be1563bbaf8a1
50475b0f6a2de9b92826fdae286a12292b11d84c62c6e8b63e3fb1c210bf0c6a
GET /hm.js?3e61df578541764bf6e86444ad21a41e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bestsacramentoappraiser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Sun, 05 May 2024 22:29:26 GMT
Etag: 87f4d5db1c7f74f8b96d92466722382f
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=809FFFEFCCFA0CE8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?646f5d67e438879eebb37975b9b36b2e
111.45.3.198200 OK 0 B URL GET HTTP/1.1 hm.baidu.com/hm.js?646f5d67e438879eebb37975b9b36b2e
IP 111.45.3.198:443
ASN #56040 China Mobile communications corporation
Requested by http://www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hm.js?646f5d67e438879eebb37975b9b36b2e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bestsacramentoappraiser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Date: Sun, 05 May 2024 22:29:26 GMT
Server: apache
Strict-Transport-Security: max-age=172800
Content-Type: text/plain; charset=utf-8
collect-v6.51.la/v6/collect?dt=4
203.107.86.226405 0 B URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP 203.107.86.226:80
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by http://www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 296
Origin: http://www.bestsacramentoappraiser.com
DNT: 1
Connection: keep-alive
Referer: http://www.bestsacramentoappraiser.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403
Date: Sun, 05 May 2024 22:29:26 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: aliyungf_tc=b24ef0a368c239b3817b3192f0dc6ffd2068c659daf84b7f86fccb2e8924d5ec; Path=/; HttpOnly
acw_tc=ac11000117149481663707784e9ce2659311cba826be4684a6002bc117eb16;path=/;HttpOnly;Max-Age=1800
Server: nginx
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://www.bestsacramentoappraiser.com
Access-Control-Allow-Credentials: true
collect-v6.51.la/v6/collect?dt=4
203.107.86.226405 0 B URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP 203.107.86.226:80
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by http://www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 297
Origin: http://www.bestsacramentoappraiser.com
DNT: 1
Connection: keep-alive
Referer: http://www.bestsacramentoappraiser.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 405
Date: Sun, 05 May 2024 22:29:26 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: aliyungf_tc=c15f19f025a8e104892033c6ffd1bd3a5b70ef902448927e497b8ffb40d18a62; Path=/; HttpOnly
acw_tc=ac11000117149481663807952ea433af8e157a95d9d4294374e572d2c8ac97;path=/;HttpOnly;Max-Age=1800
Server: nginx
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://www.bestsacramentoappraiser.com
Access-Control-Allow-Credentials: true
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=599353012&si=3e61df578541764bf6e86444ad21a41e&v=1.3.0&lv=1&sn=28287&r=0&ww=1280&u=http%3A%2F%2Fwww.bestsacramentoappraiser.com%2Fwp-admin%2Fincludes%2Fhousedatax%2F989a4bc14349811343cb85b556cafb32%2F
111.45.3.198200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=599353012&si=3e61df578541764bf6e86444ad21a41e&v=1.3.0&lv=1&sn=28287&r=0&ww=1280&u=http%3A%2F%2Fwww.bestsacramentoappraiser.com%2Fwp-admin%2Fincludes%2Fhousedatax%2F989a4bc14349811343cb85b556cafb32%2F
IP 111.45.3.198:443
ASN #56040 China Mobile communications corporation
Requested by http://www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=599353012&si=3e61df578541764bf6e86444ad21a41e&v=1.3.0&lv=1&sn=28287&r=0&ww=1280&u=http%3A%2F%2Fwww.bestsacramentoappraiser.com%2Fwp-admin%2Fincludes%2Fhousedatax%2F989a4bc14349811343cb85b556cafb32%2F HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bestsacramentoappraiser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 05 May 2024 22:29:26 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=A9FC97A622CEF02C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
gx.bdm8.cc/xk/statics/picture/rbsmgwmig0oaqpqmaabq2kzlptk31.webp
162.209.240.101200 OK 19 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/picture/rbsmgwmig0oaqpqmaabq2kzlptk31.webp
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type RIFF (little-endian) data, Web/P image
Hash cdb0153d8cc3dbec5e43d569a03ab2c4
0a7c9c3952a48a331a76089f57db3e1b618b0821
11d707bf46d3e44e7057580208377df9b8839b00403b94495d3a9f85db23842c
GET /xk/statics/picture/rbsmgwmig0oaqpqmaabq2kzlptk31.webp HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:26 GMT
content-type: image/webp
content-length: 18810
last-modified: Sat, 06 Apr 2024 13:22:51 GMT
etag: "66114cab-497a"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
gx.bdm8.cc/xk/statics/picture/rbsmgwmigyqad1n-aaa_2muwpem57.webp
162.209.240.101200 OK 16 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/picture/rbsmgwmigyqad1n-aaa_2muwpem57.webp
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type RIFF (little-endian) data, Web/P image
Hash 08cd6d95c1b9dd5ddd5b88210990bb1e
2efd19c9af93721539334da7f985a93c08d87429
d21e7979c7530e83d7f7f91cd530baba0f7ee359e0aa19587f7f6971fbde35f8
GET /xk/statics/picture/rbsmgwmigyqad1n-aaa_2muwpem57.webp HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:26 GMT
content-type: image/webp
content-length: 15892
last-modified: Sat, 06 Apr 2024 13:22:51 GMT
etag: "66114cab-3e14"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
gx.bdm8.cc/
162.209.240.101200 OK 216 kB IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Requested by http://www.bestsacramentoappraiser.com/wp-admin/includes/housedatax/989a4bc14349811343cb85b556cafb32/
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type gzip compressed data, from Unix
Size 216 kB (215644 bytes)
Hash f98743089f709bbfe77b755164f3c733
baefa39ca4883962450e4f28c8aac6ac5893a6e2
de0f1d3295a5a04293977c00f400f44e305826a5615375b031efc7707f10e54c
GET / HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bestsacramentoappraiser.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:26 GMT
content-type: text/html
last-modified: Wed, 01 May 2024 05:57:38 GMT
vary: Accept-Encoding
etag: W/"6631d9d2-43b8"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
gx.bdm8.cc/jyou/2.gif
162.209.240.101200 OK 702 kB IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type GIF image data, version 89a, 220 x 220
Size 702 kB (702321 bytes)
Hash 4ef1a1a13899db779e404ff8b6f6a02d
0c6b9a62b1191eedcd2f2413087f09ed52e22a1c
de8fd637805a53e272546f93fe0351197f5394c8d214503ce8645e158df3cb27
GET /jyou/2.gif HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:26 GMT
content-type: image/gif
content-length: 702321
last-modified: Sat, 06 Apr 2024 13:22:51 GMT
etag: "66114cab-ab771"
expires: Tue, 04 Jun 2024 22:29:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
gx.bdm8.cc/xk/statics/picture/zhenren6.png
162.209.240.101200 OK 376 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/picture/zhenren6.png
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type PNG image data, 700 x 480, 8-bit/color RGBA, non-interlaced
Size 376 kB (375671 bytes)
Hash 16b85bfb3c5900c9a2ae11265b83c9f3
7e3fbaddfd99d9f0da4dec4054aeeb9bce19cea4
23f2fee730f4a41090ee7fb54df6cd6535458f25c97a53d2d5297b2076d2256e
GET /xk/statics/picture/zhenren6.png HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:26 GMT
content-type: image/png
content-length: 375671
last-modified: Sat, 06 Apr 2024 13:22:51 GMT
etag: "66114cab-5bb77"
expires: Tue, 04 Jun 2024 22:29:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
gx.bdm8.cc/jyou/1.gif
162.209.240.101200 OK 1.0 MB IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type GIF image data, version 89a, 220 x 220
Size 1.0 MB (1015471 bytes)
Hash 9de5d97b112ff8b88a57b3f114b2d180
faecad92ad22d1d56594d994eec40c20a45ef57d
a315d90ee877ec77adf4dcb151307f4c2ed3be5e623302b6c2030322bfada036
GET /jyou/1.gif HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:26 GMT
content-type: image/gif
content-length: 1015471
last-modified: Sat, 06 Apr 2024 13:22:51 GMT
etag: "66114cab-f7eaf"
expires: Tue, 04 Jun 2024 22:29:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
gx.bdm8.cc/xk/statics/css/xk.css
162.209.240.101200 OK 236 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/css/xk.css
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type gzip compressed data, from Unix
Size 236 kB (236273 bytes)
Hash 6d5509a31fd8d522b2d44f014d5a91a6
fa25afb568e3a3f82fe0a15999ffc52033b790f8
508db684b0596e4d2f77e12bf6d6c6a656eb7022c87e28a4c466beaec6484ce7
GET /xk/statics/css/xk.css HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:26 GMT
content-type: text/css
last-modified: Wed, 01 May 2024 06:12:19 GMT
vary: Accept-Encoding
etag: W/"6631dd43-19d48"
expires: Mon, 06 May 2024 10:29:26 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
gx.bdm8.cc/xk/statics/images/jiuyou.png
162.209.240.101200 OK 4.6 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/images/jiuyou.png
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type PNG image data, 328 x 120, 8-bit colormap, non-interlaced
Hash 129d6108fb3bf9396ef94af43f2393d3
e75287453006290a78cf7116b05ddf916aaca662
edab20f2a0efa92ff464c34233fe023f3fdd348dafe33b5d735aa9cc6aa2a2a8
GET /xk/statics/images/jiuyou.png HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/xk/statics/css/xk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:28 GMT
content-type: image/png
content-length: 4559
last-modified: Sat, 06 Apr 2024 13:22:52 GMT
etag: "66114cac-11cf"
expires: Tue, 04 Jun 2024 22:29:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
gx.bdm8.cc/xk/statics/images/lejingLogo.png
162.209.240.101200 OK 25 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/images/lejingLogo.png
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type PNG image data, 380 x 114, 8-bit/color RGBA, non-interlaced
Hash 4dd1f9e8b92b3b04ad564597680e0233
da6505f5043f0929061bd8c0e367433e079c8122
b38b5fd9d38afaf50c6d3235f80b411cbfe8e060e6d96f8887bbc587fb6fcdd5
GET /xk/statics/images/lejingLogo.png HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/xk/statics/css/xk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:28 GMT
content-type: image/png
content-length: 25164
last-modified: Wed, 01 May 2024 06:09:48 GMT
etag: "6631dcac-624c"
expires: Tue, 04 Jun 2024 22:29:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
gx.bdm8.cc/xk/statics/images/sport-item-bg.png
162.209.240.101200 OK 12 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/images/sport-item-bg.png
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type PNG image data, 624 x 400, 2-bit colormap, non-interlaced
Hash ac76c6c7dd993b8bba750449be70d3ea
2c1111bcdfa2b3549c8e440c472b866553a270d8
b909239d687e0c2dea7608a984bd4a8ad8fe589ec72079a9305f836971c9667c
GET /xk/statics/images/sport-item-bg.png HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/xk/statics/css/xk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:28 GMT
content-type: image/png
content-length: 12434
last-modified: Sat, 06 Apr 2024 13:22:52 GMT
etag: "66114cac-3092"
expires: Tue, 04 Jun 2024 22:29:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
gx.bdm8.cc/xk/statics/js/jquery.min.js
162.209.240.101200 OK 258 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/js/jquery.min.js
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type gzip compressed data, from Unix
Size 258 kB (258224 bytes)
Hash dca2d0d51d8d692200d108a690dbb83c
b7d2283406334a44defc2a262eb2ebd01e6b27f3
aaabaf4a369546b436fb848a172bb558707b66b124e4d1134ebf7ca4d48e5ba2
GET /xk/statics/js/jquery.min.js HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:26 GMT
content-type: application/javascript
last-modified: Sat, 06 Apr 2024 13:22:52 GMT
vary: Accept-Encoding
etag: W/"66114cac-230e9"
expires: Mon, 06 May 2024 10:29:26 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
gx.bdm8.cc/code.js?0.3440414334091735
162.209.240.101200 OK 66 kB URL GET HTTP/2 gx.bdm8.cc/code.js?0.3440414334091735
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type gzip compressed data, from Unix
Hash ad77c9869a79f7883e1a23517379f0fc
62ff8ee911ccd75cf005f5addb2e61189519be4e
ff1c5d3c49a389d8cf64870bb4b6fa6718ddf05e7aa7910c249820a0bb31cb50
GET /code.js?0.3440414334091735 HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:27 GMT
content-type: application/javascript
last-modified: Wed, 01 May 2024 05:56:33 GMT
vary: Accept-Encoding
etag: W/"6631d991-744"
expires: Mon, 06 May 2024 10:29:27 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
edge-api.meiqia.com/summer/widget/route/match
43.159.109.18200 OK 0 B URL POST HTTP/1.1 edge-api.meiqia.com/summer/widget/route/match
IP 43.159.109.18:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintE0:BB:8D:17:2B:EA:94:A9:E4:5F:C7:DC:B4:70:30:6A:14:FA:E3:9F
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sun, 21 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /summer/widget/route/match HTTP/1.1
Host: edge-api.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-ent-id
Referer: https://gx.bdm8.cc/
Origin: https://gx.bdm8.cc
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
access-control-allow-origin: https://gx.bdm8.cc
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,PUT,DELETE,HEAD,OPTIONS,PATCH
access-control-allow-headers: content-type,x-ent-id
access-control-max-age: 86400
access-control-expose-headers: *
Content-Length: 0
Connection: keep-alive
Date: Sun, 05 May 2024 22:29:29 GMT
EO-LOG-UUID: 14204201824005695423
EO-Cache-Status: MISS
edge-api.meiqia.com/summer/widget/route/match
43.159.109.18200 OK 316 B URL POST HTTP/1.1 edge-api.meiqia.com/summer/widget/route/match
IP 43.159.109.18:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintE0:BB:8D:17:2B:EA:94:A9:E4:5F:C7:DC:B4:70:30:6A:14:FA:E3:9F
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sun, 21 Jul 2024 23:59:59 GMT
Hash babe42f3811188218a447d10d2e19c4d
8899a40322e2ba11c46cdd85fcddc64d189e1ffe
59393fc841757eb1c4a082b53f24f8cc8bfaf5a6c965329a41a763e374880800
POST /summer/widget/route/match HTTP/1.1
Host: edge-api.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
x-ent-id: 18c8a82ac2ea59b9aa0a2af63d0dcc58
Content-Length: 47
Origin: https://gx.bdm8.cc
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://gx.bdm8.cc
access-control-allow-credentials: true
req-cost-time: 2
req-arrive-time: 1714948169961
resp-start-time: 1714948169963
x-envoy-upstream-service-time: 1
access-control-expose-headers: *
Content-Encoding: gzip
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 05 May 2024 22:29:29 GMT
EO-LOG-UUID: 1932425430836833550
EO-Cache-Status: MISS
new-api.meiqia.com/visit/get_base_config?ent_id=18c8a82ac2ea59b9aa0a2af63d0dcc58
43.159.109.18200 OK 545 B URL GET HTTP/1.1 new-api.meiqia.com/visit/get_base_config?ent_id=18c8a82ac2ea59b9aa0a2af63d0dcc58
IP 43.159.109.18:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintE0:BB:8D:17:2B:EA:94:A9:E4:5F:C7:DC:B4:70:30:6A:14:FA:E3:9F
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sun, 21 Jul 2024 23:59:59 GMT
Hash f3c19c676f481a613446814fc7016b6c
09876e3fb66a855592679f2c1e8c1305a72bc432
094d7f6bd5ce90f7e89e9606dff054634cec29f88994ce8f2aff94926f18b0b3
GET /visit/get_base_config?ent_id=18c8a82ac2ea59b9aa0a2af63d0dcc58 HTTP/1.1
Host: new-api.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gx.bdm8.cc
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-origin: https://gx.bdm8.cc
access-control-max-age: 300
vary: Origin
req-cost-time: 9
req-arrive-time: 1714948171298
resp-start-time: 1714948171307
x-envoy-upstream-service-time: 8
access-control-expose-headers: *
Accept-Ranges: bytes
Content-Encoding: br
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 05 May 2024 22:29:31 GMT
EO-LOG-UUID: 5535228277506162648
EO-Cache-Status: MISS
new-api.meiqia.com/visit/start?ent_id=18c8a82ac2ea59b9aa0a2af63d0dcc58&track_id=&title=%E9%BE%8D%E5%B9%B4%E8%A1%8C%E5%A4%A7%E8%BF%90%EF%BC%8C%E9%A1%BA%E9%A3%8E%EF%BC%81%E9%A1%BA%E6%B0%B4%EF%BC%81%E9%A1%BA%E8%B4%A2%E7%A5%9E%EF%BC%81&referrer_url=http:%2F%2Fwww.bestsacramentoappraiser.com%2F&url=https:%2F%2Fgx.bdm8.cc%2F&is_standalone=false
43.159.109.18200 OK 0 B URL OPTIONS HTTP/1.1 new-api.meiqia.com/visit/start?ent_id=18c8a82ac2ea59b9aa0a2af63d0dcc58&track_id=&title=%E9%BE%8D%E5%B9%B4%E8%A1%8C%E5%A4%A7%E8%BF%90%EF%BC%8C%E9%A1%BA%E9%A3%8E%EF%BC%81%E9%A1%BA%E6%B0%B4%EF%BC%81%E9%A1%BA%E8%B4%A2%E7%A5%9E%EF%BC%81&referrer_url=http:%2F%2Fwww.bestsacramentoappraiser.com%2F&url=https:%2F%2Fgx.bdm8.cc%2F&is_standalone=false
IP 43.159.109.18:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintE0:BB:8D:17:2B:EA:94:A9:E4:5F:C7:DC:B4:70:30:6A:14:FA:E3:9F
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sun, 21 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /visit/start?ent_id=18c8a82ac2ea59b9aa0a2af63d0dcc58&track_id=&title=%E9%BE%8D%E5%B9%B4%E8%A1%8C%E5%A4%A7%E8%BF%90%EF%BC%8C%E9%A1%BA%E9%A3%8E%EF%BC%81%E9%A1%BA%E6%B0%B4%EF%BC%81%E9%A1%BA%E8%B4%A2%E7%A5%9E%EF%BC%81&referrer_url=http:%2F%2Fwww.bestsacramentoappraiser.com%2F&url=https:%2F%2Fgx.bdm8.cc%2F&is_standalone=false HTTP/1.1
Host: new-api.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-is-meiqia-domain,x-is-standalone
Referer: https://gx.bdm8.cc/
Origin: https://gx.bdm8.cc
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
access-control-allow-origin: https://gx.bdm8.cc
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,PUT,DELETE,HEAD,OPTIONS,PATCH
access-control-allow-headers: x-is-meiqia-domain,x-is-standalone
access-control-max-age: 86400
access-control-expose-headers: *
Content-Length: 0
Connection: keep-alive
Date: Sun, 05 May 2024 22:29:31 GMT
EO-LOG-UUID: 3737892625778882028
EO-Cache-Status: MISS
static.meiqia.com/fe-widget/v1.4.146.prod.20240426_102/entrypoint-v1.4.146.prod.20240426_102.js
157.185.129.27200 OK 88 kB URL GET HTTP/2 static.meiqia.com/fe-widget/v1.4.146.prod.20240426_102/entrypoint-v1.4.146.prod.20240426_102.js
IP 157.185.129.27:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintE0:BB:8D:17:2B:EA:94:A9:E4:5F:C7:DC:B4:70:30:6A:14:FA:E3:9F
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sun, 21 Jul 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash a2c52259e5f7e748de96909e8a4ea08d
4f9578df73f65a3b074a4f6d699e2fa9d3522b9a
6a959d0f6152cb8c4ccfdd92dc434792093973aabac648579d404a4684abeaf2
GET /fe-widget/v1.4.146.prod.20240426_102/entrypoint-v1.4.146.prod.20240426_102.js HTTP/1.1
Host: static.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 05 May 2024 22:29:30 GMT
content-type: text/javascript
server: waf/4.37.0-0.el7
x-oss-request-id: 66306BE2BFA7DB1BF27B752C
accept-ranges: bytes
etag: "A2C52259E5F7E748DE96909E8A4EA08D"
last-modified: Fri, 26 Apr 2024 02:48:56 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5193996851648598360
x-oss-storage-class: Standard
content-md5: osUiWeX350jelpCeik6gjQ==
x-oss-server-time: 53
content-encoding: br
age: 1
x-via: 1.1 kf28:0 (Cdn Cache Server V2.0), 1.1 PSdgflkfFRA1hb199:4 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2dz77:17 (Cdn Cache Server V2.0)
x-ws-request-id: 6638084a_PS-CDG-01orF60_3932-55022
access-control-allow-methods: GET
access-control-allow-origin: *
strict-transport-security: max-age=5184000;includeSubdomains
cache-control: max-age= 2592000
X-Firefox-Spdy: h2
static.meiqia.com/fe-widget/v1.4.146.prod.20240426_102/893.js
157.185.129.27200 OK 7.1 kB URL GET HTTP/2 static.meiqia.com/fe-widget/v1.4.146.prod.20240426_102/893.js
IP 157.185.129.27:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintE0:BB:8D:17:2B:EA:94:A9:E4:5F:C7:DC:B4:70:30:6A:14:FA:E3:9F
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sun, 21 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (15338), with no line terminators
Hash 5123f44bda0e0284f120655bdb07ca33
47deca7e1406d15d760ebeb10b543c681df5e8b4
cde8ef89dc264a4a42b487f9a467c5ec8154c110b69eee9d16ff74351dcf3d89
GET /fe-widget/v1.4.146.prod.20240426_102/893.js HTTP/1.1
Host: static.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 05 May 2024 22:29:32 GMT
content-type: text/javascript
server: waf/4.37.0-0.el7
x-oss-request-id: 662B17EAC0346BE9A2E7D8A9
accept-ranges: bytes
etag: "5123F44BDA0E0284F120655BDB07CA33"
last-modified: Fri, 26 Apr 2024 02:48:56 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5133440776430502014
x-oss-storage-class: Standard
content-md5: USP0S9oOAoTxIGVb2wfKMw==
x-oss-server-time: 1
content-encoding: br
age: 1
x-via: 1.1 kf29:8 (Cdn Cache Server V2.0), 1.1 PSdgflkfFRA1ox201:6 (Cdn Cache Server V2.0), 1.1 PS-CDG-01tVU61:12 (Cdn Cache Server V2.0)
x-ws-request-id: 6638084c_PS-CDG-01orF60_3932-55096
access-control-allow-methods: GET
access-control-allow-origin: *
strict-transport-security: max-age=5184000;includeSubdomains
cache-control: max-age= 2592000
X-Firefox-Spdy: h2
camorope-client-a.meiqia.com/push/745/mzo53mxh/websocket?browser_id=96786520c12eb04bd713a006248ea040&ent_id=425602&track_id=2g4Dtk89Bss0FeNcrwGyB9kuGpP&visit_id=2g4Dtil3xiM79IAqWYZfhEVWgHj
43.159.109.18 0 B URL camorope-client-a.meiqia.com/push/745/mzo53mxh/websocket?browser_id=96786520c12eb04bd713a006248ea040&ent_id=425602&track_id=2g4Dtk89Bss0FeNcrwGyB9kuGpP&visit_id=2g4Dtil3xiM79IAqWYZfhEVWgHj
IP 43.159.109.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /push/745/mzo53mxh/websocket?browser_id=96786520c12eb04bd713a006248ea040&ent_id=425602&track_id=2g4Dtk89Bss0FeNcrwGyB9kuGpP&visit_id=2g4Dtil3xiM79IAqWYZfhEVWgHj HTTP/1.1
Host: camorope-client-a.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://gx.bdm8.cc
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: snOcwlX+8gqDRMt2MgSRFg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Connection: upgrade
sec-websocket-accept: j9WJOSGUaGfo1uVxJWCVAQCCoAc=
upgrade: websocket
access-control-allow-origin: https://gx.bdm8.cc
access-control-allow-credentials: true
access-control-expose-headers: *
Date: Sun, 05 May 2024 22:29:33 GMT
EO-LOG-UUID: 18178890200745929803
EO-Cache-Status: MISS
static.meiqia.com/widget/loader.js
157.185.129.27200 OK 16 kB URL GET HTTP/2 static.meiqia.com/widget/loader.js
IP 157.185.129.27:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintE0:BB:8D:17:2B:EA:94:A9:E4:5F:C7:DC:B4:70:30:6A:14:FA:E3:9F
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sun, 21 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/loader.js HTTP/1.1
Host: static.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 May 2024 22:29:28 GMT
content-type: application/javascript
server: waf/4.35.0-0.el7
x-oss-request-id: 658284E4485C4FA0F906E0FA
accept-ranges: bytes
etag: "3985719F955DBF7D1F273DCC04ADC1EE"
last-modified: Wed, 20 Sep 2023 08:20:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11254042694427723818
x-oss-storage-class: Standard
content-md5: OYVxn5Vdv30fJz3MBK3B7g==
x-oss-server-time: 1
content-encoding: br
age: 1
x-via: 1.1 kf28:1 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2gc184:0 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2dz77:7 (Cdn Cache Server V2.0)
x-ws-request-id: 66380848_PS-CDG-01orF60_3932-54972
cache-control: max-age=600
access-control-allow-methods: GET
access-control-allow-origin: *
strict-transport-security: max-age=5184000;includeSubdomains
X-Firefox-Spdy: h2
camorope-client-a.meiqia.com/push/info?browser_id=96786520c12eb04bd713a006248ea040&ent_id=425602&track_id=2g4Dtk89Bss0FeNcrwGyB9kuGpP&visit_id=2g4Dtil3xiM79IAqWYZfhEVWgHj&t=1714948172441
43.159.108.19200 OK 78 B URL GET HTTP/1.1 camorope-client-a.meiqia.com/push/info?browser_id=96786520c12eb04bd713a006248ea040&ent_id=425602&track_id=2g4Dtk89Bss0FeNcrwGyB9kuGpP&visit_id=2g4Dtil3xiM79IAqWYZfhEVWgHj&t=1714948172441
IP 43.159.108.19:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintE0:BB:8D:17:2B:EA:94:A9:E4:5F:C7:DC:B4:70:30:6A:14:FA:E3:9F
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sun, 21 Jul 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 7a402a22287fafd98fe6104003fb9937
5abc41d710b902714367baeb90ba771ad2a6f98f
1c2bad4e13495a444fdb81858485a00f7a9920efa483089c835283eca61f308e
GET /push/info?browser_id=96786520c12eb04bd713a006248ea040&ent_id=425602&track_id=2g4Dtk89Bss0FeNcrwGyB9kuGpP&visit_id=2g4Dtil3xiM79IAqWYZfhEVWgHj&t=1714948172441 HTTP/1.1
Host: camorope-client-a.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gx.bdm8.cc
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json; charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: https://gx.bdm8.cc
req-cost-time: 2
req-arrive-time: 1714948172964
resp-start-time: 1714948172966
x-envoy-upstream-service-time: 1
access-control-expose-headers: *
Cache-Control: must-revalidate, no-transform, no-cache, no-store, max-age=0
Content-Length: 78
Connection: keep-alive
Date: Sun, 05 May 2024 22:29:32 GMT
EO-LOG-UUID: 14415909778461140761
EO-Cache-Status: MISS
gx.bdm8.cc/link.js?0.9593371801103866
162.209.240.101200 OK 1.4 kB URL GET HTTP/2 gx.bdm8.cc/link.js?0.9593371801103866
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type Unicode text, UTF-8 text, with very long lines (1340), with no line terminators
Hash 533896dd85e6f6af5228af30154cb33a
005fbcd2d6907ee114388c8b001447618c6b821b
683a676452e7e3e43861f0f8055def7c5a567ced5f10f7b6dc6c7997cffdb7ed
GET /link.js?0.9593371801103866 HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:27 GMT
content-type: application/javascript
last-modified: Sun, 05 May 2024 09:18:37 GMT
vary: Accept-Encoding
etag: W/"66374eed-5a8"
expires: Mon, 06 May 2024 10:29:27 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
camorope-client-a.meiqia.com/push/745/mzo53mxh/websocket?browser_id=96786520c12eb04bd713a006248ea040&ent_id=425602&track_id=2g4Dtk89Bss0FeNcrwGyB9kuGpP&visit_id=2g4Dtil3xiM79IAqWYZfhEVWgHj
43.159.109.18101 Switching Protocols 0 B URL GET HTTP/1.1 camorope-client-a.meiqia.com/push/745/mzo53mxh/websocket?browser_id=96786520c12eb04bd713a006248ea040&ent_id=425602&track_id=2g4Dtk89Bss0FeNcrwGyB9kuGpP&visit_id=2g4Dtil3xiM79IAqWYZfhEVWgHj
IP 43.159.109.18:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintE0:BB:8D:17:2B:EA:94:A9:E4:5F:C7:DC:B4:70:30:6A:14:FA:E3:9F
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sun, 21 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /push/745/mzo53mxh/websocket?browser_id=96786520c12eb04bd713a006248ea040&ent_id=425602&track_id=2g4Dtk89Bss0FeNcrwGyB9kuGpP&visit_id=2g4Dtil3xiM79IAqWYZfhEVWgHj HTTP/1.1
Host: camorope-client-a.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://gx.bdm8.cc
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: snOcwlX+8gqDRMt2MgSRFg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Connection: upgrade
sec-websocket-accept: j9WJOSGUaGfo1uVxJWCVAQCCoAc=
upgrade: websocket
access-control-allow-origin: https://gx.bdm8.cc
access-control-allow-credentials: true
access-control-expose-headers: *
Date: Sun, 05 May 2024 22:29:33 GMT
EO-LOG-UUID: 18178890200745929803
EO-Cache-Status: MISS
static.meiqia.com/fe-widget/v1.4.146.prod.20240426_102/app-v1.4.146.prod.20240426_102.js
157.185.129.27200 OK 1.2 MB URL GET HTTP/2 static.meiqia.com/fe-widget/v1.4.146.prod.20240426_102/app-v1.4.146.prod.20240426_102.js
IP 157.185.129.27:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintE0:BB:8D:17:2B:EA:94:A9:E4:5F:C7:DC:B4:70:30:6A:14:FA:E3:9F
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sun, 21 Jul 2024 23:59:59 GMT
Size 1.2 MB (1213294 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fe-widget/v1.4.146.prod.20240426_102/app-v1.4.146.prod.20240426_102.js HTTP/1.1
Host: static.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 May 2024 22:29:30 GMT
content-type: text/javascript
server: waf/4.37.0-0.el7
x-oss-request-id: 662B17E6485C4FED07CF1883
accept-ranges: bytes
etag: "7C36482D152D5465D21BD16F03508281"
last-modified: Fri, 26 Apr 2024 02:48:56 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3951379185953594018
x-oss-storage-class: Standard
content-md5: fDZILRUtVGXSG9FvA1CCgQ==
x-oss-server-time: 2
content-encoding: br
age: 1
x-via: 1.1 kf29:9 (Cdn Cache Server V2.0), 1.1 PSdgflkfFRA1bc200:7 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2dz77:17 (Cdn Cache Server V2.0)
x-ws-request-id: 6638084a_PS-CDG-01orF60_3932-55027
access-control-allow-methods: GET
access-control-allow-origin: *
strict-transport-security: max-age=5184000;includeSubdomains
cache-control: max-age= 2592000
X-Firefox-Spdy: h2
static.meiqia.com/fe-widget/v1.4.146.prod.20240426_102/static/icon-mq-round@2x.png
0.0.0.0 0 B URL GET static.meiqia.com/fe-widget/v1.4.146.prod.20240426_102/static/icon-mq-round@2x.png
IP 0.0.0.0:0
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintE0:BB:8D:17:2B:EA:94:A9:E4:5F:C7:DC:B4:70:30:6A:14:FA:E3:9F
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sun, 21 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fe-widget/v1.4.146.prod.20240426_102/static/icon-mq-round@2x.png HTTP/1.1
Host: static.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 May 2024 22:29:32 GMT
content-type: image/png
server: waf/4.37.0-0.el7
x-oss-request-id: 662B180D523B0A745ADBB29A
accept-ranges: bytes
etag: "7852530B8CCD6C254E2C727B286BD370"
last-modified: Fri, 26 Apr 2024 02:48:57 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 18155014595444198583
x-oss-storage-class: Standard
x-oss-ec: 0048-00000102
content-disposition: inline
x-oss-force-download: true
content-md5: eFJTC4zNbCVOLHJ7KGvTcA==
x-oss-server-time: 1
content-encoding: br
age: 1
x-via: 1.1 kf28:2 (Cdn Cache Server V2.0), 1.1 PSdgflkfFRA1ox201:11 (Cdn Cache Server V2.0), 1.1 PS-CDG-01tVU61:10 (Cdn Cache Server V2.0)
x-ws-request-id: 6638084c_PS-CDG-01orF60_3932-55103
access-control-allow-methods: GET
access-control-allow-origin: *
strict-transport-security: max-age=5184000;includeSubdomains
cache-control: max-age= 2592000
X-Firefox-Spdy: h2
gx.bdm8.cc/xk/statics/images/ag-66.png
162.209.240.101200 OK 217 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/images/ag-66.png
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type PNG image data, 590 x 564, 8-bit/color RGBA, non-interlaced
Size 217 kB (216638 bytes)
Hash ccac73c61548278834287a1456474a87
b37119912693160e6afb68aaf30f355a15f1bc99
f19fe2c491dfcc9eef6aad394eea674b3f51041e12c956d1df8b6aa1e5fa5187
GET /xk/statics/images/ag-66.png HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/xk/statics/css/xk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:28 GMT
content-type: image/png
content-length: 216638
last-modified: Sat, 06 Apr 2024 13:22:52 GMT
etag: "66114cac-34e3e"
expires: Tue, 04 Jun 2024 22:29:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
gx.bdm8.cc/xk/statics/images/xklogo.png
162.209.240.101200 OK 66 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/images/xklogo.png
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type PNG image data, 814 x 200, 8-bit/color RGBA, non-interlaced
Hash 6100a2ef018856c1676b2315dd362594
0babb7e6b4d38ca582ca7c3f1bc45d652cd9c56e
91f1a0a1a6aef8b57257e96924d6376bd724e14f420d3dd24c027ae0af47075c
GET /xk/statics/images/xklogo.png HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/xk/statics/css/xk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:28 GMT
content-type: image/png
content-length: 65972
last-modified: Sat, 06 Apr 2024 13:22:52 GMT
etag: "66114cac-101b4"
expires: Tue, 04 Jun 2024 22:29:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
gx.bdm8.cc/xk/statics/picture/zhenren.png
162.209.240.101200 OK 211 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/picture/zhenren.png
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type PNG image data, 420 x 420, 8-bit/color RGBA, non-interlaced
Size 211 kB (211250 bytes)
Hash f624301e2f31f855941e52b286f19ca8
ef2516ba7f3bd1d3f408fa6ccb3cbe4f56b7f571
41e012947207454ac6557a00da1aa27f24bed2aef927a4357e4ca177cbfe9417
GET /xk/statics/picture/zhenren.png HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:26 GMT
content-type: image/png
content-length: 211250
last-modified: Sat, 06 Apr 2024 13:22:51 GMT
etag: "66114cab-33932"
expires: Tue, 04 Jun 2024 22:29:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
gx.bdm8.cc/xk/statics/images/background.png
162.209.240.101200 OK 182 kB URL GET HTTP/2 gx.bdm8.cc/xk/statics/images/background.png
IP 162.209.240.101:443
ASN #132839 POWER LINE DATACENTER
Certificate IssuerLet's Encrypt
Subjectdh.bdm8.cc
Fingerprint97:0A:E8:08:90:CE:6C:BE:CA:30:65:59:9A:AB:D0:58:17:48:6A:30
ValiditySun, 24 Mar 2024 08:34:45 GMT - Sat, 22 Jun 2024 08:34:44 GMT
File type PNG image data, 1920 x 1030, 8-bit colormap, non-interlaced
Size 182 kB (181983 bytes)
Hash 05bf65d40291d266c59f26f96e67cc72
a82f0c303aa0db6e99b37cd73853d7a6810c3e47
1a977499b07e4c440c3b1c4284f83140194739f0308cd5090f5f7157a1cd34f3
GET /xk/statics/images/background.png HTTP/1.1
Host: gx.bdm8.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gx.bdm8.cc/xk/statics/css/xk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 22:29:28 GMT
content-type: image/png
content-length: 181983
last-modified: Sat, 06 Apr 2024 13:22:52 GMT
etag: "66114cac-2c6df"
expires: Tue, 04 Jun 2024 22:29:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2