ejrfs.com/
38.35.79.116 15 kB IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type HTML document, ISO-8859 text, with very long lines (557), with CRLF, LF line terminators
Hash d572209a59b5e2979d8dd523e27a33ba
53f37c951b48708b1366d7c75c11c09de082dc01
b7f35395d003453b5cf615167ac0468f4e81099185a0ce97297a73407b362b6a
GET / HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:02 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Mon, 20 Jan 2020 14:39:38 GMT
ETag: "1aff6-59c9342c6be80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14672
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
ejrfs.com/yesads.js
38.35.79.116 411 B IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JavaScript source, ASCII text, with very long lines (859), with no line terminators
Hash d31e95489084a274d0d75dfbf1e9e2e4
adf49c0b747c42f0747ff66f97d89028ad2fefc5
9795f1dd75ccfb5d283f03abc0ba0a8b61b3f2dfad4a028d4bc2ac284e33741c
GET /yesads.js HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:02 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Sun, 24 Sep 2023 04:46:48 GMT
ETag: "35b-606138789759b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 411
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ejrfs.com/images/webpubcss10014css.css
38.35.79.116 1.3 kB URL ejrfs.com/images/webpubcss10014css.css
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 136b31a1952641d0c2683b1a74f1e8a7
f0fd8e93b3e893a55a5ddc428b512c0e47e1207a
49f2ed958fe6e0bb3c702d5aa164b5bf2f1975558e909eaa7ec4969975ffce5d
GET /images/webpubcss10014css.css HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:02 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:22:05 GMT
ETag: "1279-561630c9fa940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1314
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ejrfs.com/images/webpubcss10100css.css
38.35.79.116 509 B URL ejrfs.com/images/webpubcss10100css.css
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type ISO-8859 text, with CRLF line terminators
Hash a7a44023a17b820ca6931c4cfcec96a7
6da84a6153a4f3545fe23d0d6c8456f4cb7c5f76
58b4b39a5205b96edf28387e4c621c3f57b6b10b090f713f3ec6f8406a6d256f
GET /images/webpubcss10100css.css HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:02 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:22:07 GMT
ETag: "4b6-561630cbe2dc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 509
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ejrfs.com/images/webpubresource10000Imageyishenqin.JPG
38.35.79.116 13 kB URL ejrfs.com/images/webpubresource10000Imageyishenqin.JPG
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=45, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=322], baseline, precision 8, 160x45, components 3
Hash 13ac01bac81071ecd2f1c617605df5a0
e6766b0aaa541c6c2c72c12a5c1b3efc0f611670
59e4c9445afc4d24db0f6ad6e09ef8875a903e913ca1c10ba760ed84c029ee08
GET /images/webpubresource10000Imageyishenqin.JPG HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:02 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:17 GMT
ETag: "4fc6-5616309c33d40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12721
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000Imageyijian.JPG
38.35.79.116 14 kB URL ejrfs.com/images/webpubresource10000Imageyijian.JPG
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=45, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=322], baseline, precision 8, 160x45, components 3
Hash fb50c2c5765cfd93f4aa82c9b2f33298
dddc9fe40c720455d508aa85b63d1c54c150c854
d4b2114646b83ae000ee4912e71b40d53a26b2dd6dae6acb8ae5cb58bc4a4b02
GET /images/webpubresource10000Imageyijian.JPG HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:02 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:18 GMT
ETag: "53ec-5616309d27f80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13897
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000Imagezhinan.JPG
38.35.79.116 14 kB URL ejrfs.com/images/webpubresource10000Imagezhinan.JPG
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=47, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=322], baseline, precision 8, 160x47, components 3
Hash 3ec74dd430c1bd5de1b242ca3730a27f
7363d52522328fa6c4fe9dab71b1d67f2fa50854
16969b8ea123c252d0381a2be92f97060bd24c8feb1b49c1ce7bfa05e1b6ad61
GET /images/webpubresource10000Imagezhinan.JPG HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:02 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:16 GMT
ETag: "60ca-5616309b3fb00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13506
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/openpvp.js
38.35.79.116 110 B IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type HTML document, ASCII text, with no line terminators
Hash 8716908f7ccffcef537c343293764bc6
d8dc6b47635b918c66f9fad456bc4927ea91bfe1
2b0996ac4c5cd37cbc0e21c04ec71a95aa303cd4840cc6452f515c4b8dcf205a
GET /openpvp.js HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Sun, 24 Sep 2023 04:46:48 GMT
ETag: "65-606138789759b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 110
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ejrfs.com/images/webpubresource10000zzrsjytld.jpg
38.35.79.116 21 kB URL ejrfs.com/images/webpubresource10000zzrsjytld.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=50, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=159], baseline, precision 8, 159x50, components 3
Hash 812af206ae666b6c0d00de767f4ddea0
cd82a438d56f31c18f646253fa71587c3fcff1f3
619034762bf0e1777f6d5fec205067fc8d23943105c3d4b6702108e70d075dba
GET /images/webpubresource10000zzrsjytld.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:02 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:15 GMT
ETag: "8553-5616309a4b8c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 21196
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000zzrsjytgk.jpg
38.35.79.116 30 kB URL ejrfs.com/images/webpubresource10000zzrsjytgk.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=50, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=160], baseline, precision 8, 160x50, components 3
Hash 6a40683c56091304037c736ce3ddeec7
179d813e59d38a11e7cddc1de384a5cad788f62c
792d33dd825b6f0b60d0af06e508980d67589211a3f958bc38fbbf4c10c0eefd
GET /images/webpubresource10000zzrsjytgk.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:02 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:14 GMT
ETag: "d353-5616309957680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30307
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000Imagexinxi_13.jpg
38.35.79.116 8.3 kB URL ejrfs.com/images/webpubresource10000Imagexinxi_13.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 322x45, components 3
Hash e5cb472d69ae4c156eebc10c71980dce
abf073d9a09c84226b0195c420f9864c723f1293
48c95b399a693a31fd97838d1a7ff9366487530f4c79868ae4979e83065cb632
GET /images/webpubresource10000Imagexinxi_13.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:18 GMT
ETag: "21d6-5616309d27f80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8297
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000Imagexinxi_17.jpg
38.35.79.116 8.7 kB URL ejrfs.com/images/webpubresource10000Imagexinxi_17.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 322x47, components 3
Hash 41f935ab7dde08fb1e4e97533a6df2c3
31f30c41b1ea052bb7dffc2eac3cf00b625606d2
a8b56937cbe30beee64fd167c4b81759223e26868b4b5e1ba3e0a733bc857831
GET /images/webpubresource10000Imagexinxi_17.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:19 GMT
ETag: "237f-5616309e1c1c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8720
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000Imagexinxi_15.jpg
38.35.79.116 8.3 kB URL ejrfs.com/images/webpubresource10000Imagexinxi_15.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 322x47, components 3
Hash 75a1579926c82eaa4393b7f45f734f69
9c9c3af4ac90d5a5b7f699a2e092bc2c999f1d96
e33360c5855939d3c3bc653b547e61fe3cf1c0b4ddc47d9d4a8c7b0097d0f15b
GET /images/webpubresource10000Imagexinxi_15.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:19 GMT
ETag: "21ea-5616309e1c1c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8321
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000Imagesytx32.jpg
38.35.79.116 11 kB URL ejrfs.com/images/webpubresource10000Imagesytx32.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 320x46, components 3
Hash 8c07ecabd34caea5736f54ad7b424343
180c536f8f888ca418ca25a1a430c45f9df861ed
255dcc1cc54ca1d86be3da6281d92f2a2c4f9d8d2f583ba4167f48034d4d788e
GET /images/webpubresource10000Imagesytx32.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:20 GMT
ETag: "2c7d-5616309f10400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11036
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000Imagesytx34.jpg
38.35.79.116 2.9 kB URL ejrfs.com/images/webpubresource10000Imagesytx34.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 134x46, components 3
Hash c848043df2d900c033f2cec6e6fa2bc8
7330ac638a1253a4b2941896de30e96eca883f63
2549d08fd5e5d03b6b68cc0f77dfe315f063325f2a5a50d5c2537f4d766557bc
GET /images/webpubresource10000Imagesytx34.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:20 GMT
ETag: "cd8-5616309f10400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2919
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000Imagesytx35.jpg
38.35.79.116 4.5 kB URL ejrfs.com/images/webpubresource10000Imagesytx35.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 186x47, components 3
Hash a277e97351ca47f5e7f147a981c0b69b
24f43183e238c20c582eff7cbb389edb26ca2daf
89f8214643342c8f3044cacf5681f84861cca0fae4708bc0ad6702607b7c598d
GET /images/webpubresource10000Imagesytx35.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:21 GMT
ETag: "132c-561630a004640-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4488
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000Imagesytx44.jpg
38.35.79.116 5.2 kB URL ejrfs.com/images/webpubresource10000Imagesytx44.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 321x39, components 3
Hash 3c2fc4c9db80af320d0bb79e23df68fc
e7c206ae68eabba1b0eccafcf2b6b2688c76c41d
16fd89851d9f487fbcf47ceec45ee2a1105a955d13d5bd71908e9a082033037b
GET /images/webpubresource10000Imagesytx44.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:21 GMT
ETag: "1786-561630a004640-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5196
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002101.jpg
38.35.79.116 15 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002101.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=168, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=169], baseline, precision 8, 169x168, components 3
Hash 8a8792b8b3e1bda984e945e0fdda9551
facbcaef09391d5785e8bf12da23a966bc18c570
ebfe8844b974a3d4dc0f0da2aafd3e01be179ed0d0118e4efdf9b6aecf68d755
GET /images/www.xjedu.gov.cnwebpubresource1002101.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:24 GMT
ETag: "7ab0-561630a2e0d00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14728
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002102.jpg
38.35.79.116 16 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002102.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=85, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=253], baseline, precision 8, 348x85, components 3
Hash 75a874b12ad3e78f73d2cd8011f903cc
3072e06b4759df0181e82c3f028312c47e9726d0
dc101b66ac588691e26161926df5fa8b63f44e3d8cb11707ef91a93c53ae9e7b
GET /images/www.xjedu.gov.cnwebpubresource1002102.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:25 GMT
ETag: "76fb-561630a3d4f40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16296
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002103.jpg
38.35.79.116 11 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002103.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=74, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=168], baseline, precision 8, 169x73, components 3
Hash d8788f0ea6be05505655acd0e2ad0bad
7593082a934bcf3096409a069ed3b967fbc6caaa
81a99ea3e0a89b4a850c26bf58a7039f6bec33928f23a6ac115508bdb1cf0d42
GET /images/www.xjedu.gov.cnwebpubresource1002103.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:25 GMT
ETag: "67c7-561630a3d4f40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10772
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002104.jpg
38.35.79.116 14 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002104.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=75, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=167], baseline, precision 8, 169x73, components 3
Hash fe1bacffb7e6190ab1ec7154f8526125
7483192e7a01b2e90b88f11652d736067a7448e6
ad95e94fc28a943f26e453819fbbb79741ea9116a313198e03d3d21d589a9cdc
GET /images/www.xjedu.gov.cnwebpubresource1002104.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:26 GMT
ETag: "7794-561630a4c9180-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13853
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002105.jpg
38.35.79.116 13 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002105.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=168, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=121], baseline, precision 8, 121x168, components 3
Hash 14ab49d9fefefc0f20be66f1e81226fe
a414ec4fd6eb464495f052dd6749140d4d8234f8
fa711ffb94a1c8ba64d1df69246064270610096fe3dcd7e6ca8742916c290786
GET /images/www.xjedu.gov.cnwebpubresource1002105.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:27 GMT
ETag: "72cc-561630a5bd3c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13134
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000gupsgs123abcs.jpg
38.35.79.116 51 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000gupsgs123abcs.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=60, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1000], baseline, precision 8, 1000x60, components 3
Hash 03738a85c1b7ccdea2025883141a8c8d
1270441be131cccff610a5e8dc2c3d5e5ea5704d
61e69ca7b7eb997253a3442c1f751732ec0036e178abef6a372018926af505c7
GET /images/www.xjedu.gov.cnwebpubresource10000gupsgs123abcs.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:23 GMT
ETag: "ff98-561630a1ecac0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 51228
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002106.jpg
38.35.79.116 17 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002106.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=75, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=175], baseline, precision 8, 177x73, components 3
Hash 089497b17a95ccb21027ef08b342a6c4
e1703caaa22b8dc6a928d4c004769835e619bc2a
5f784a29abfb63653863fe8281e3727dd0c28b59d22859ab91fd13bc37284574
GET /images/www.xjedu.gov.cnwebpubresource1002106.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:27 GMT
ETag: "8117-561630a5bd3c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16812
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002109.jpg
38.35.79.116 12 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002109.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=85, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=88], baseline, precision 8, 145x73, components 3
Hash e6b3f0b0b159540b0d8c19730a16aa6c
7d00ff486a2596b134e2b03edca162b03327dec2
7dd4d8b0cbbbdc04c21fc492b10cecfebc5df53770cd722625bc8f2b1acf6eef
GET /images/www.xjedu.gov.cnwebpubresource1002109.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:28 GMT
ETag: "597f-561630a6b1600-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11852
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002110.jpg
38.35.79.116 13 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource1002110.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=85, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=230], baseline, precision 8, 332x85, components 3
Hash 4d9240dff02794aa08e455cc76140cee
ce7ddfb4e17d1af55ed838cc10548be6ca00627c
5ef87a260a9775c38fbf213b9d3ef44ca85ccf2066fce072949974dda1b02f65
GET /images/www.xjedu.gov.cnwebpubresource1002110.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:29 GMT
ETag: "636b-561630a7a5840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13375
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000Imagesytximage_102.jpg
38.35.79.116 5.0 kB URL ejrfs.com/images/webpubresource10000Imagesytximage_102.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 385x37, components 3
Hash 32541425ea22db05704e487ece214597
0ab27cc5417e290af1cabf8d8fa6e63060305c80
3a32efb4c6443f939d95c0bf49ea5f1232359a8b7f4ba3be3bea159480c6c61b
GET /images/webpubresource10000Imagesytximage_102.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:30 GMT
ETag: "156b-561630a899a80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5041
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000Imagesytx91.jpg
38.35.79.116 3.8 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000Imagesytx91.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x79, components 3
Hash 7a704223828fa06474747494ce495ae4
148e54ce4b8f49e3acd3f5963b69580bebdb1e9b
50a67de945a7ceee26a5b490dc1106825c4ec4b8b42e52b9435550d6d5a4fad0
GET /images/www.xjedu.gov.cnwebpubresource10000Imagesytx91.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:30 GMT
ETag: "110b-561630a899a80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3845
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000Imagesytx93.jpg
38.35.79.116 3.9 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000Imagesytx93.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x79, components 3
Hash 1e1b79e8963629f7b4e227901b398f58
0f0274dd008cb98c5d40b5660a6a02e5ffb9f768
5823bb36d6380a17560e002df5a126de2cc35e28ea37718e6e046182d2043471
GET /images/www.xjedu.gov.cnwebpubresource10000Imagesytx93.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:31 GMT
ETag: "1187-561630a98dcc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3868
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000Imagesytx89.jpg
38.35.79.116 4.3 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000Imagesytx89.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x79, components 3
Hash fd993dccc7d29b7e52a64f3716cd1e49
ce221a9480563a1c8247e0bd5928803a526e4130
68c43cb2ef3f34323a88d3bde85451f90c6368db16c26b8c7518c87b8c81108e
GET /images/www.xjedu.gov.cnwebpubresource10000Imagesytx89.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:31 GMT
ETag: "12b0-561630a98dcc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4325
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000spsytx9444s.jpg
38.35.79.116 19 kB URL ejrfs.com/images/webpubresource10000spsytx9444s.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=79, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=180], baseline, precision 8, 180x79, components 3
Hash ad959794579f9d7db5c229ccbc876794
84192ea72b197d354685e21a887970e91f79038e
1a120ad75a84c77825c5d729c0b35275f96323628db29e7775643dd7690ea333
GET /images/webpubresource10000spsytx9444s.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:32 GMT
ETag: "7b86-561630aa81f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 18939
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000xinxinxinxinsytx6665.jpg
38.35.79.116 23 kB URL ejrfs.com/images/webpubresource10000xinxinxinxinsytx6665.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=79, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=180], baseline, precision 8, 180x79, components 3
Hash 20e994cb83287476ff82362c5bf6f83d
d675456a9cb0eddde23d103872ab14079cd13a8e
88dc59dd3e4f63738f0a18a6209745cfbeca7f206b5dea25204e0b9d4d8c188a
GET /images/webpubresource10000xinxinxinxinsytx6665.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:33 GMT
ETag: "8da1-561630ab76140-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 22625
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000gupadmin12.jpg
38.35.79.116 17 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000gupadmin12.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:01:05 16:54:36], progressive, precision 8, 180x79, components 3
Hash 933da8ca9d97778b2abe25250b958c2b
25c53b3e5239a201fc227b334440591b4c4c1b24
f4ab402707b1a9926c0efd3f0bb7df425905a1a1cfb67eef0205e6a0bba94d9e
GET /images/www.xjedu.gov.cnwebpubresource10000gupadmin12.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:34 GMT
ETag: "85af-561630ac6a380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16971
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000gupadmin13.jpg
38.35.79.116 13 kB URL ejrfs.com/images/www.xjedu.gov.cnwebpubresource10000gupadmin13.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:01:05 16:56:57], progressive, precision 8, 180x79, components 3
Hash 7c8e8e373a99992cf2d98abd6b692d69
e92607b2514ab80c7fa3c214f4a91861e5810910
3df91230af0abaab054bfca526ec71f88686df9912d37926551e41188d207a25
GET /images/www.xjedu.gov.cnwebpubresource10000gupadmin13.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:34 GMT
ETag: "71cc-561630ac6a380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13191
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10120jjs.png
38.35.79.116 35 kB URL ejrfs.com/images/webpubresource10120jjs.png
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type PNG image data, 320 x 100, 8-bit/color RGB, non-interlaced
Hash 083e8aad57f14ca9712973101b7f7d63
89954745818b92c66d9340b92b456286afc7f401
82d89290c427ad429005ca2871eed6b41e4f51c7527b552aa93d460f36c1dd68
GET /images/webpubresource10120jjs.png HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:35 GMT
ETag: "8a81-561630ad5e5c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 35371
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
ejrfs.com/images/webpubresource10120jj01_05.png
38.35.79.116 12 kB URL ejrfs.com/images/webpubresource10120jj01_05.png
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type PNG image data, 95 x 77, 8-bit/color RGBA, interlaced
Hash 618d303df8069f339e8823b78c87e528
9a1e25c2208cc62bb77e46403b24ba7636630c72
ffd972bf0fa85a3683b8df3615b52599ea4ca3ede0379fc5341905d6a4b161a4
GET /images/webpubresource10120jj01_05.png HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:36 GMT
ETag: "2df4-561630ae52800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11516
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ejrfs.com/images/webpubresource10120jj01_01.png
38.35.79.116 11 kB URL ejrfs.com/images/webpubresource10120jj01_01.png
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type PNG image data, 95 x 77, 8-bit/color RGBA, interlaced
Hash a5e3b349584c86c96823c10ddccd6a13
e1f587482eb8695052cfefbe2882bb4c905302fe
f2d2b311a6df49a32a08f478453083f956ea2e757271114c313aafc1c7596fa9
GET /images/webpubresource10120jj01_01.png HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:37 GMT
ETag: "2c9e-561630af46a40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11175
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ejrfs.com/images/webpubresourceshipinds.png
38.35.79.116 46 kB URL ejrfs.com/images/webpubresourceshipinds.png
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type PNG image data, 360 x 106, 8-bit/color RGBA, non-interlaced
Hash 9c1392697dbdf95fd54bca535f83f727
849083f14847df5bacba833c22b77345d6bf37a2
e573e66ae2420c0b28009b90e48283be9d6b56344292261e173dc48b1ecd0bbe
GET /images/webpubresourceshipinds.png HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:38 GMT
ETag: "b417-561630b03ac80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 45824
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
ejrfs.com/images/webpubresource10000guoguosytx99.jpg
38.35.79.116 21 kB URL ejrfs.com/images/webpubresource10000guoguosytx99.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=77, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=297], baseline, precision 8, 297x77, components 3
Hash d3eee4c22d768f5c666d9ad31e279008
e060add367ef4a31696fac770e49b7044098caf7
538565af2c5fb992058d525f4b4f54971aac21bd6ad99c0516b22400c95866c1
GET /images/webpubresource10000guoguosytx99.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:39 GMT
ETag: "7b1e-561630b12eec0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20657
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000gupkkweixin22123.jpg
38.35.79.116 32 kB URL ejrfs.com/images/webpubresource10000gupkkweixin22123.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:01:22 19:06:52], progressive, precision 8, 498x100, components 3
Hash 7ebc4de3d2df8a1fe01b21228a718c5e
9b6ac0ee9392ebc55f1c4a68dbc5dd50effe107d
4e78a5d236fc24aeac4fef6048df8604dbf5aa1058d1814f4b591ed083deff91
GET /images/webpubresource10000gupkkweixin22123.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:40 GMT
ETag: "b3fc-561630b223100-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 31949
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000gupweixin.png
38.35.79.116 71 kB URL ejrfs.com/images/webpubresource10000gupweixin.png
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type PNG image data, 498 x 100, 8-bit/color RGB, non-interlaced
Hash 30c67413c7a7404101a20d5b599de2c4
55ee4c6ebddb7c4d73095b6ddbcf045d8c0e563f
c6589b03c2eef55c35c67e9b59e8a9e848bbfd47aee542d6a30a5e5dcddecae8
GET /images/webpubresource10000gupweixin.png HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:41 GMT
ETag: "1167c-561630b317340-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png
ejrfs.com/images/webpubresource10021sytx142.png
38.35.79.116 8.7 kB URL ejrfs.com/images/webpubresource10021sytx142.png
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type PNG image data, 301 x 39, 8-bit/color RGB, non-interlaced
Hash 95890e90d4e42dbaf96d1c74a34e8a71
f08c16e6d7cbc94d767cd76abf4c6b716602bfa1
75b718e91683e2e2c34514a78c8478b6e46514d252395cad383f6e869522cf03
GET /images/webpubresource10021sytx142.png HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:42 GMT
ETag: "21c9-561630b40b580-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8672
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
ejrfs.com/images/webpubarticleimgs2017_11460961510732347963.jpg
38.35.79.116 60 kB URL ejrfs.com/images/webpubarticleimgs2017_11460961510732347963.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 600x400, components 3
Hash e5d72cc8afeeca0420ea51efec3a3211
d1c37c05195d01f334b94d36c3fa1516e0107d32
108cd00f70b52891ea37840e43be2d89e59b2a8e992ba662be65a7883e908631
GET /images/webpubarticleimgs2017_11460961510732347963.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:03 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:43 GMT
ETag: "e990-561630b4ff7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 59650
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubarticleimgs2017_11460951510732328007.JPG
38.35.79.116 58 kB URL ejrfs.com/images/webpubarticleimgs2017_11460951510732328007.JPG
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, manufacturer=NIKON CORPORATION, model=NIKON 1 J5, orientation=upper-left, xresolution=176, yresolution=184, resolutionunit=2, software=Ver.1.00 , datetime=2017:11:03 10:48:47, GPS-Data], baseline, precision 8, 600x400, components 3
Hash a4c85962a3e5f00c2148c4184b3a9f48
5de7f055b895708c29f166a7fd489afa100339f9
57d9a0a93fd3494e08ddd67e391a4e3c095f99c3f94e56c4d47291fb92fd548e
GET /images/webpubarticleimgs2017_11460951510732328007.JPG HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:44 GMT
ETag: "116a4-561630b5f3a00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
ejrfs.com/images/webpubarticleimgs2017_11460931510732275054.JPG
38.35.79.116 65 kB URL ejrfs.com/images/webpubarticleimgs2017_11460931510732275054.JPG
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, manufacturer=NIKON CORPORATION, model=NIKON 1 J5, orientation=upper-left, xresolution=176, yresolution=184, resolutionunit=2, software=Ver.1.00 , datetime=2017:10:28 15:42:55, GPS-Data], baseline, precision 8, 600x400, components 3
Hash bd2e286bf0e37bd56f8b773444f5b8fe
3ebac807f75843ab0b54ddcef26ea877a1da0c27
276d0357427fdaeef27c9a1123035d21f0591db9fb35ba43a1b56b759ebc6a9f
GET /images/webpubarticleimgs2017_11460931510732275054.JPG HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:47 GMT
ETag: "13a4a-561630b8d00c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
ejrfs.com/images/webpubarticleimgs2017_11460921510732258525.jpg
38.35.79.116 77 kB URL ejrfs.com/images/webpubarticleimgs2017_11460921510732258525.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=17, manufacturer=Canon, model=Canon EOS 7D Mark II, orientation=upper-left, xresolution=246, yresolution=254, resolutionunit=2, datetime=2017:10:28 11:05:14], baseline, precision 8, 600x366, components 3
Hash 20c58f9e080a1d642faa2d2a2c6e6aa0
1e9fc2ce03039d4aa62899e05dea856405a56f1d
16c7082c111cf0cb99ed38b968e762f7a944dfaddf77b11a75457c1c16f216f9
GET /images/webpubarticleimgs2017_11460921510732258525.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:49 GMT
ETag: "13bc8-561630bab8540-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
ejrfs.com/images/webpubarticleimgs2017_11460911510732230593.jpg
38.35.79.116 45 kB URL ejrfs.com/images/webpubarticleimgs2017_11460911510732230593.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=17, manufacturer=Canon, model=Canon EOS 7D Mark II, orientation=upper-left, xresolution=246, yresolution=254, resolutionunit=2, datetime=2017:10:25 11:59:22], baseline, precision 8, 600x300, components 3
Hash e2cfb5e603eafecf1627040a7ff3cda5
7466320b286a144826ef4e14c701bf76ce032100
cd6bdbecc7e1f94e3fc570a5587cbb347aee83bdd76b0e4d73459cc19ae70261
GET /images/webpubarticleimgs2017_11460911510732230593.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:50 GMT
ETag: "c63a-561630bbac780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 44859
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubarticleimgs2017_11460901510732191655.jpg
38.35.79.116 50 kB URL ejrfs.com/images/webpubarticleimgs2017_11460901510732191655.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3
Hash f067c2bcf71d6af14bdc55f50052f7aa
000529d6a622582c6a64c78004515bdf66242e6b
b080dff9bf52f51ce131b1fd8741b65831957f1bc9a06f5319f41e2165491f45
GET /images/webpubarticleimgs2017_11460901510732191655.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:51 GMT
ETag: "c46f-561630bca09c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 49986
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/webpubarticleimgs2017_11460891510732169556.JPG
38.35.79.116 62 kB URL ejrfs.com/images/webpubarticleimgs2017_11460891510732169556.JPG
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, manufacturer=NIKON CORPORATION, model=NIKON 1 J5, orientation=upper-left, xresolution=176, yresolution=184, resolutionunit=2, software=Ver.1.00 , datetime=2017:10:18 13:11:29, GPS-Data], baseline, precision 8, 600x400, components 3
Hash 0314b343901b9f708e03f850f61c288b
f88d731cdae606bee3994d3ef1f4320d76277a01
e50114e088bfab1e241924a4714ac3e83f8c2270f78b2209e4892705ae0c8b33
GET /images/webpubarticleimgs2017_11460891510732169556.JPG HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:52 GMT
ETag: "12df3-561630bd94c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
ejrfs.com/images/webpubarticleimgs2017_11460941510732294465.JPG
38.35.79.116 112 kB URL ejrfs.com/images/webpubarticleimgs2017_11460941510732294465.JPG
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, manufacturer=Canon, model=Canon EOS 60D, orientation=upper-left, xresolution=166, yresolution=174, resolutionunit=2, datetime=2017:10:24 14:45:45], baseline, precision 8, 600x400, components 3
Size 112 kB (112525 bytes)
Hash d64bd1214b1932d900caa9bb76747c42
54ebc78ab4cd54c34fe43fef39378626679b5c33
8444f0d101d87b38120aa5970b00648be0dae151a74ed6dd96122be2b514cfc9
GET /images/webpubarticleimgs2017_11460941510732294465.JPG HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:46 GMT
ETag: "1d685-561630b7dbe80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
ejrfs.com/images/webpubresource10000Imagesytx003.png
38.35.79.116 38 kB URL ejrfs.com/images/webpubresource10000Imagesytx003.png
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type PNG image data, 626 x 123, 8-bit/color RGBA, non-interlaced
Hash 3817c23badc891e94a5c91da46c7733c
813ba0470db890756dc599f3fd39a52196864434
9c7060d2df8091137501e92b1f83d01e52ad67ff4a28202db1670876cb9e17f3
GET /images/webpubresource10000Imagesytx003.png HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:20:55 GMT
ETag: "961a-5616308738bc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 37938
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
ejrfs.com/images/webpubresource10000Imagexinxi_03.jpg
38.35.79.116 2.9 kB URL ejrfs.com/images/webpubresource10000Imagexinxi_03.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 50x58, components 3
Hash 371bc0ece3cf3a716ebd7d93ab3d82b2
1a83a12bb66b7d83812dfd5615c000bc0df71037
ba075fb8d465ff2cb67b90bc9eb08a58ee3eecc6026ff5622a392b9802236e53
GET /images/webpubresource10000Imagexinxi_03.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:20:56 GMT
ETag: "d08-561630882ce00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2947
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.66705881.com/2.js
216.118.239.166 115 B IP 216.118.239.166:0
File type ASCII text, with CRLF line terminators
Hash 5a8c5ae309fb8d6c39fedab792e688b9
b976a2650925e388ed6e9f44cbb690fa439326d8
5cb63aa62a03ff5d57a8bdb9e54706fe26331b341a22a7e119f5e1f408488d83
GET /2.js HTTP/1.1
Host: www.66705881.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 08:08:13 GMT
Content-Type: application/javascript
Content-Length: 115
Last-Modified: Tue, 26 Mar 2024 14:39:00 GMT
Connection: keep-alive
ETag: "6602de04-73"
Accept-Ranges: bytes
ejrfs.com/images/webpubresource10000gupziti22.png
38.35.79.116 7.4 kB URL ejrfs.com/images/webpubresource10000gupziti22.png
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type PNG image data, 347 x 123, 8-bit/color RGBA, non-interlaced
Hash ca69f4382e58174ae7dd9581877b6cde
62d4a1a3b1337c3bc5ebd0f2bccf7389f26101d0
a0ffc8ee3f7a62def1fabfad185ffc52135425346cd6ce678680c106f9090e70
GET /images/webpubresource10000gupziti22.png HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:20:55 GMT
ETag: "1de2-5616308738bc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7417
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
ejrfs.com/images/webpubresource10000Imagegaixinxi_07.jpg
38.35.79.116 3.2 kB URL ejrfs.com/images/webpubresource10000Imagegaixinxi_07.jpg
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 50x58, components 3
Hash 3e655b7710eb86f9b71ca22fda71e15b
fcde27a1a009db446e8f62f5467944c85bd5dfc7
ebe350f02fc15bf9269ce654a3ff9af025a991b22b95b9a2fd4196403b4330bc
GET /images/webpubresource10000Imagegaixinxi_07.jpg HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:20:57 GMT
ETag: "e2b-5616308921040-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3227
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
ejrfs.com/images/www.beian.gov.cnimgbeianbgs.png
38.35.79.116 192 kB URL ejrfs.com/images/www.beian.gov.cnimgbeianbgs.png
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Size 192 kB (191509 bytes)
Hash a1ba0f22c4d399449e8e76a29f314fa9
370814b83919b3242a202e54ea278d66665f4383
0e7076f1770d66bd16f39795cf6056caa2fe2a74df267ebd95012128cf98c03f
GET /images/www.beian.gov.cnimgbeianbgs.png HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:21:56 GMT
ETag: "321dc-561630c165500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png
ejrfs.com/images/webpubresource10000Imageguohui.png
38.35.79.116 210 kB URL ejrfs.com/images/webpubresource10000Imageguohui.png
IP 38.35.79.116:0
ASN #32708 LoadEdge Limited
File type PNG image data, 366 x 386, 8-bit/color RGBA, non-interlaced
Size 210 kB (210126 bytes)
Hash 57ec24e31fe547e4065b044526398fd9
1e557abfef8c321019d813a09e15699570d2eed3
1e1711a3de6093a183a92b9558f4610200a870b0b5e9e15d7bdc778781d6b1ff
GET /images/webpubresource10000Imageguohui.png HTTP/1.1
Host: ejrfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:04 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 28 Dec 2017 09:20:54 GMT
ETag: "33499-5616308644980-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png
154.197.12.112200 OK 88 kB URL User Request GET HTTP/1.1 IP 154.197.12.112:443
Certificate IssuerLet's Encrypt
Subjectwww.bet83004.com
Fingerprint3B:4A:F2:43:14:9F:07:41:70:0E:8E:A8:09:97:4D:E2:5D:CA:A7:C3
ValidityTue, 19 Mar 2024 03:12:22 GMT - Mon, 17 Jun 2024 03:12:21 GMT
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 26822b1fabbd5bd825d186464a7cff22
9563de39a0eb7ba13514f63c302fe04f0ce1e318
85de63b4583fc3092f0aacf201dbf7d12254e7aa716b02351af624002de3c3b4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: www.bet83004.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ejrfs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImZJOFJxR0pvR2VuSWlTcHRFck1WMkE9PSIsInZhbHVlIjoieE5ibzFyTTZoSFZGYmJcL1hUcUpVM0JcLzlTQjNHZTZ4ZjMzbTNoWnZJXC9tY1l4cVpMeWYyMUkwWGt2bjFaeVdJSHczaFdjTHF4ZnVHVEZySElqY2ZuXC93PT0iLCJtYWMiOiIzODZhMzk5NWRiMWQwYThhMGEwOWIwZjgwYzJhZDlmZGQyNWVkMzVjYmE4MjU1NjIzMjhkYjcyNjI5ZDAxYjA1In0%3D; expires=Thu, 18-Apr-2024 10:08:16 GMT; Max-Age=7200; path=/; secure; samesite=none
vanguard_session=eyJpdiI6Im9MNlwvTmRoMVN4MUw2NlwvTlQ5ZFwvQ1E9PSIsInZhbHVlIjoiSUcreXY4b2Z6c2xNVTlFRk9pc1diZTBvdHlLUTN2MHpwb0JyK2xQK2hiTlA4UVp2dGNlNHcyYnRYd2dVbWc2aU92SDl1U0J3M2ZqalltNDhudnpsMFE9PSIsIm1hYyI6IjllMDkyOTM0MzE5NGVlNjU2NGRmMjA1MzVlNzE3NzdiOWMwZjkwY2JkYTExYjkyMmE1NTEyNjM0YmM2ZmI3MjQifQ%3D%3D; expires=Thu, 18-Apr-2024 10:08:16 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none
x-bos: b83
Content-Encoding: gzip
Server: nginx
www.bet83004.com/plus/js/unite/crypto-js.min.js?v=1713427696
154.197.12.112200 OK 18 kB URL GET HTTP/1.1 www.bet83004.com/plus/js/unite/crypto-js.min.js?v=1713427696
IP 154.197.12.112:443
Requested by https://www.bet83004.com/
Certificate IssuerLet's Encrypt
Subjectwww.bet83004.com
Fingerprint3B:4A:F2:43:14:9F:07:41:70:0E:8E:A8:09:97:4D:E2:5D:CA:A7:C3
ValidityTue, 19 Mar 2024 03:12:22 GMT - Mon, 17 Jun 2024 03:12:21 GMT
File type JavaScript source, ASCII text, with very long lines (47992), with no line terminators
Hash cf3402d7483b127ded4069d651ea4a22
bde186152457cacf9c35477b5bdda5bcb56b1f45
eab5d90a71736f267af39fdf32caa8c71673fd06703279b01e0f92b0d7be0bfc
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /plus/js/unite/crypto-js.min.js?v=1713427696 HTTP/1.1
Host: www.bet83004.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Cookie: XSRF-TOKEN=eyJpdiI6ImZJOFJxR0pvR2VuSWlTcHRFck1WMkE9PSIsInZhbHVlIjoieE5ibzFyTTZoSFZGYmJcL1hUcUpVM0JcLzlTQjNHZTZ4ZjMzbTNoWnZJXC9tY1l4cVpMeWYyMUkwWGt2bjFaeVdJSHczaFdjTHF4ZnVHVEZySElqY2ZuXC93PT0iLCJtYWMiOiIzODZhMzk5NWRiMWQwYThhMGEwOWIwZjgwYzJhZDlmZGQyNWVkMzVjYmE4MjU1NjIzMjhkYjcyNjI5ZDAxYjA1In0%3D; vanguard_session=eyJpdiI6Im9MNlwvTmRoMVN4MUw2NlwvTlQ5ZFwvQ1E9PSIsInZhbHVlIjoiSUcreXY4b2Z6c2xNVTlFRk9pc1diZTBvdHlLUTN2MHpwb0JyK2xQK2hiTlA4UVp2dGNlNHcyYnRYd2dVbWc2aU92SDl1U0J3M2ZqalltNDhudnpsMFE9PSIsIm1hYyI6IjllMDkyOTM0MzE5NGVlNjU2NGRmMjA1MzVlNzE3NzdiOWMwZjkwY2JkYTExYjkyMmE1NTEyNjM0YmM2ZmI3MjQifQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:17 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 13 Jan 2022 09:57:12 GMT
ETag: W/"61dff778-bb78"
x-bos: b83
X-Cache-Status: MISS
Content-Encoding: gzip
Server: nginx
www.bet83004.com/js/www/decrypt.js?v=1713427696
154.197.12.112200 OK 531 B URL GET HTTP/1.1 www.bet83004.com/js/www/decrypt.js?v=1713427696
IP 154.197.12.112:443
Requested by https://www.bet83004.com/
Certificate IssuerLet's Encrypt
Subjectwww.bet83004.com
Fingerprint3B:4A:F2:43:14:9F:07:41:70:0E:8E:A8:09:97:4D:E2:5D:CA:A7:C3
ValidityTue, 19 Mar 2024 03:12:22 GMT - Mon, 17 Jun 2024 03:12:21 GMT
Hash 1d1d23f897c7f9fa4b24eeb8159d7e21
9c6ab5fed65abe81454978f1e844c4f36d61a1c7
8da1db8adc85dc835413880c71cc811c762e48018590f9a991115e83a722c869
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/www/decrypt.js?v=1713427696 HTTP/1.1
Host: www.bet83004.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Cookie: XSRF-TOKEN=eyJpdiI6ImZJOFJxR0pvR2VuSWlTcHRFck1WMkE9PSIsInZhbHVlIjoieE5ibzFyTTZoSFZGYmJcL1hUcUpVM0JcLzlTQjNHZTZ4ZjMzbTNoWnZJXC9tY1l4cVpMeWYyMUkwWGt2bjFaeVdJSHczaFdjTHF4ZnVHVEZySElqY2ZuXC93PT0iLCJtYWMiOiIzODZhMzk5NWRiMWQwYThhMGEwOWIwZjgwYzJhZDlmZGQyNWVkMzVjYmE4MjU1NjIzMjhkYjcyNjI5ZDAxYjA1In0%3D; vanguard_session=eyJpdiI6Im9MNlwvTmRoMVN4MUw2NlwvTlQ5ZFwvQ1E9PSIsInZhbHVlIjoiSUcreXY4b2Z6c2xNVTlFRk9pc1diZTBvdHlLUTN2MHpwb0JyK2xQK2hiTlA4UVp2dGNlNHcyYnRYd2dVbWc2aU92SDl1U0J3M2ZqalltNDhudnpsMFE9PSIsIm1hYyI6IjllMDkyOTM0MzE5NGVlNjU2NGRmMjA1MzVlNzE3NzdiOWMwZjkwY2JkYTExYjkyMmE1NTEyNjM0YmM2ZmI3MjQifQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:18 GMT
Content-Type: application/javascript
Content-Length: 531
Connection: keep-alive
Last-Modified: Fri, 17 Nov 2023 09:01:25 GMT
ETag: "65572be5-213"
x-bos: b83
X-Cache-Status: MISS
Server: nginx
Accept-Ranges: bytes
www.bet83004.com/plus/plugin/js/bootstrap.min.js?ver=1598106537
154.197.12.112200 OK 11 kB URL GET HTTP/1.1 www.bet83004.com/plus/plugin/js/bootstrap.min.js?ver=1598106537
IP 154.197.12.112:443
Requested by https://www.bet83004.com/
Certificate IssuerLet's Encrypt
Subjectwww.bet83004.com
Fingerprint3B:4A:F2:43:14:9F:07:41:70:0E:8E:A8:09:97:4D:E2:5D:CA:A7:C3
ValidityTue, 19 Mar 2024 03:12:22 GMT - Mon, 17 Jun 2024 03:12:21 GMT
File type JavaScript source, ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /plus/plugin/js/bootstrap.min.js?ver=1598106537 HTTP/1.1
Host: www.bet83004.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Cookie: XSRF-TOKEN=eyJpdiI6ImZJOFJxR0pvR2VuSWlTcHRFck1WMkE9PSIsInZhbHVlIjoieE5ibzFyTTZoSFZGYmJcL1hUcUpVM0JcLzlTQjNHZTZ4ZjMzbTNoWnZJXC9tY1l4cVpMeWYyMUkwWGt2bjFaeVdJSHczaFdjTHF4ZnVHVEZySElqY2ZuXC93PT0iLCJtYWMiOiIzODZhMzk5NWRiMWQwYThhMGEwOWIwZjgwYzJhZDlmZGQyNWVkMzVjYmE4MjU1NjIzMjhkYjcyNjI5ZDAxYjA1In0%3D; vanguard_session=eyJpdiI6Im9MNlwvTmRoMVN4MUw2NlwvTlQ5ZFwvQ1E9PSIsInZhbHVlIjoiSUcreXY4b2Z6c2xNVTlFRk9pc1diZTBvdHlLUTN2MHpwb0JyK2xQK2hiTlA4UVp2dGNlNHcyYnRYd2dVbWc2aU92SDl1U0J3M2ZqalltNDhudnpsMFE9PSIsIm1hYyI6IjllMDkyOTM0MzE5NGVlNjU2NGRmMjA1MzVlNzE3NzdiOWMwZjkwY2JkYTExYjkyMmE1NTEyNjM0YmM2ZmI3MjQifQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:19 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-90b5"
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
Content-Encoding: gzip
Server: nginx
www.bet83004.com/plus/plugin/css/to_bootstrap.css?ver=1598106537
154.197.12.112200 OK 30 kB URL GET HTTP/1.1 www.bet83004.com/plus/plugin/css/to_bootstrap.css?ver=1598106537
IP 154.197.12.112:443
Requested by https://www.bet83004.com/
Certificate IssuerLet's Encrypt
Subjectwww.bet83004.com
Fingerprint3B:4A:F2:43:14:9F:07:41:70:0E:8E:A8:09:97:4D:E2:5D:CA:A7:C3
ValidityTue, 19 Mar 2024 03:12:22 GMT - Mon, 17 Jun 2024 03:12:21 GMT
File type ASCII text, with very long lines (386), with CRLF line terminators
Hash 8778d79f7633526cee2d636c518d9d76
b2e715b1c401220e8165353c60d1e3b3815cdb60
de3c1a93b240cc733fec329f2272d3b640ffa5bb736ee5df966745c20aa71d32
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /plus/plugin/css/to_bootstrap.css?ver=1598106537 HTTP/1.1
Host: www.bet83004.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Cookie: XSRF-TOKEN=eyJpdiI6ImZJOFJxR0pvR2VuSWlTcHRFck1WMkE9PSIsInZhbHVlIjoieE5ibzFyTTZoSFZGYmJcL1hUcUpVM0JcLzlTQjNHZTZ4ZjMzbTNoWnZJXC9tY1l4cVpMeWYyMUkwWGt2bjFaeVdJSHczaFdjTHF4ZnVHVEZySElqY2ZuXC93PT0iLCJtYWMiOiIzODZhMzk5NWRiMWQwYThhMGEwOWIwZjgwYzJhZDlmZGQyNWVkMzVjYmE4MjU1NjIzMjhkYjcyNjI5ZDAxYjA1In0%3D; vanguard_session=eyJpdiI6Im9MNlwvTmRoMVN4MUw2NlwvTlQ5ZFwvQ1E9PSIsInZhbHVlIjoiSUcreXY4b2Z6c2xNVTlFRk9pc1diZTBvdHlLUTN2MHpwb0JyK2xQK2hiTlA4UVp2dGNlNHcyYnRYd2dVbWc2aU92SDl1U0J3M2ZqalltNDhudnpsMFE9PSIsIm1hYyI6IjllMDkyOTM0MzE5NGVlNjU2NGRmMjA1MzVlNzE3NzdiOWMwZjkwY2JkYTExYjkyMmE1NTEyNjM0YmM2ZmI3MjQifQ%3D%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:19 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-2dc4a"
x-bos: b83
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
Server: nginx
3f38sfb.yrsm.net/plus/css/unite/prizedraw_pop_unite.css?ver=1688374189
20.24.222.116200 OK 775 B URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/unite/prizedraw_pop_unite.css?ver=1688374189
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type assembler source, Unicode text, UTF-8 text
Hash 75d2f7722481ddf595d13229546865b1
d6d0141eff02b43ad470bbbc2bc5e5d6852a9538
d29035de593c116582b6ebc83026b3a7b9a5bffbf96923edd675dbabe800a14e
GET /plus/css/unite/prizedraw_pop_unite.css?ver=1688374189 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/css
Content-Length: 775
Connection: keep-alive
Cteonnt-Length: 2748
Last-Modified: Mon, 03 Jul 2023 08:49:49 GMT
ETag: "64a28bad-abc"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/css/custom/prizedraw_pop_custom.css?ver=1663905027
20.24.222.116200 OK 38 B URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/custom/prizedraw_pop_custom.css?ver=1663905027
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash 4957b1edbdaab02ae3242ff27d3732b8
0fa68da2f11737fdc4d7961a632581c13f7a8577
1adeb028e615a654ebf218f188ad6bc841ad3851da01b28dc4af82ea77179108
GET /plus/css/custom/prizedraw_pop_custom.css?ver=1663905027 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/css
Content-Length: 38
Connection: keep-alive
Cteonnt-Length: 18
Last-Modified: Fri, 23 Sep 2022 03:50:27 GMT
ETag: "632d2d03-12"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/css/unite/float_unite.css?ver=1598106537
20.24.222.116200 OK 272 B URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/unite/float_unite.css?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash 077a2c1ebe25590b50eae8ce89787e0c
499751737e286bbc93a46a1d2d4aaa3e2163d336
093a799f9422754f7e53dfcc8516d3753616de283a14553f37d58b3822fd1b3a
GET /plus/css/unite/float_unite.css?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/css
Content-Length: 272
Connection: keep-alive
Cteonnt-Length: 725
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: "5f412ba9-2d5"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/css/common/index.css?ver=1685095467
20.24.222.116200 OK 2.4 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/common/index.css?ver=1685095467
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash c572b5475cafa52665867ea34e941107
9e84cb39ea5b4edd820afc675516b2da0afde1c4
22fb660621cf5492145daf4e4c4dcf5671f19105dda41b1df6f5cc695dd906c4
GET /plus/css/common/index.css?ver=1685095467 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/css
Content-Length: 2379
Connection: keep-alive
Cteonnt-Length: 8159
Last-Modified: Fri, 26 May 2023 10:04:27 GMT
ETag: "6470842b-1fdf"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/css/custom/float_customer.css?ver=1607755023
20.24.222.116200 OK 397 B URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/custom/float_customer.css?ver=1607755023
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash 2ddfef0c4056c3d9eb5f3df7fd940bdc
5632067b6e1c0e2db3f7420470f8f5e15a78f2e8
abb89644d467e88130629d409fe0c26f98779a78b539b6ff9996c720dfc8e662
GET /plus/css/custom/float_customer.css?ver=1607755023 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/css
Content-Length: 397
Connection: keep-alive
Cteonnt-Length: 1259
Last-Modified: Sat, 12 Dec 2020 06:37:03 GMT
ETag: "5fd4650f-4eb"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/css/unite/login_modal_unite.css?ver=1698636690
20.24.222.116200 OK 1.2 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/unite/login_modal_unite.css?ver=1698636690
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash 6ac4c7f12718d7f49c56a9bed5484d06
ba24437f63fb4115595c08dd243f1bb730158237
65a68ff6c065b2512eae16a96e8444575ea3aa90d54afbefd58ed2fc5f727bdb
GET /plus/css/unite/login_modal_unite.css?ver=1698636690 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/css
Content-Length: 1246
Connection: keep-alive
Cteonnt-Length: 3824
Last-Modified: Mon, 30 Oct 2023 03:31:30 GMT
ETag: "653f2392-ef0"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/css/custom/login_modal_custom.css?ver=1598008226
20.24.222.116200 OK 622 B URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/custom/login_modal_custom.css?ver=1598008226
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash 6b743cb3d7b311c7c3d8b2cde0182bf0
a5123f94f2fa54ba1295261e7996f3408514fe06
de0659ac6447bdd5f00dd9c475f9bc130c4d86d042075009e5304a19661e509b
GET /plus/css/custom/login_modal_custom.css?ver=1598008226 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/css
Content-Length: 622
Connection: keep-alive
Cteonnt-Length: 2081
Last-Modified: Fri, 21 Aug 2020 11:10:26 GMT
ETag: "5f3faba2-821"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/css/unite/login_unite.css?ver=1614680239
20.24.222.116200 OK 155 B URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/unite/login_unite.css?ver=1614680239
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash 5aa3dbf621e04d73e3a023b18dd141bd
f35345fc401964592d37688e641b86f9eb3931be
dcde9ab25bde6d1827a49457a7ef72e7e177ef141a188e074e23a9136ca2ef66
GET /plus/css/unite/login_unite.css?ver=1614680239 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/css
Content-Length: 155
Connection: keep-alive
Cteonnt-Length: 170
Last-Modified: Tue, 02 Mar 2021 10:17:19 GMT
ETag: "603e10af-aa"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/css/custom/login_custom.css?ver=1663905027
20.24.222.116200 OK 92 B URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/custom/login_custom.css?ver=1663905027
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash d520ae5e8e22ca748c7a9f42456b2999
bc32a4581b85bbba126872bed2d05be6e8db1c96
2ef18a39610b5f98818cd76249061e93a4bc8c01677b51d73ea80fd3b1519865
GET /plus/css/custom/login_custom.css?ver=1663905027 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/css
Content-Length: 92
Connection: keep-alive
Cteonnt-Length: 105
Last-Modified: Fri, 23 Sep 2022 03:50:27 GMT
ETag: "632d2d03-69"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/css/unite/header_unite.css?ver=1618279363
20.24.222.116200 OK 1.7 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/unite/header_unite.css?ver=1618279363
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash 362fe4aa5ed6a2430e7bd741d7cfb328
eb8b081d2740fd06efcaa50f8d74c1fe49dc5788
8d00e3da97fd1b9e1a4a61bed8c996d8241d374ebf4b957c9a68bb9739318abf
GET /plus/css/unite/header_unite.css?ver=1618279363 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/css
Content-Length: 1688
Connection: keep-alive
Cteonnt-Length: 4646
Last-Modified: Tue, 13 Apr 2021 02:02:43 GMT
ETag: "6074fbc3-1226"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/css/custom/header_custom.css?ver=1685507033
20.24.222.116200 OK 2.0 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/custom/header_custom.css?ver=1685507033
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash c791c767e9f9f6533376d09bb4854076
7552998058525f477420f3ff16e5a6d2821c5f9a
7069214340232065c9ac2f7f90c468c8b1e0093f3909d929605c1771538c3b78
GET /plus/css/custom/header_custom.css?ver=1685507033 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/css
Content-Length: 2009
Connection: keep-alive
Cteonnt-Length: 6660
Last-Modified: Wed, 31 May 2023 04:23:53 GMT
ETag: "6476cbd9-1a04"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/web_template3/plus/css/custom/header_custom.css
20.24.222.116404 Not Found 834 B URL GET HTTP/1.1 3f38sfb.yrsm.net/web_template3/plus/css/custom/header_custom.css
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type HTML document, Unicode text, UTF-8 text
Hash 4d664e70286ebed156293f603fc0328f
a33ce63c17c2dcade8057f578820b50234de89ec
e1f53276d353f299d3d8144ae0a45ea02d97287ef846f20cbe2857fa6717d2ae
GET /web_template3/plus/css/custom/header_custom.css HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: MISS
3f38sfb.yrsm.net/plus/js/custom/checkinput.js?ver=1598008226
20.24.222.116200 OK 2.7 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/js/custom/checkinput.js?ver=1598008226
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Hash ddc9cac97e3733c0b8340431bf4e5956
d2101a520d73bd74861323ce59225de62f5bb5f2
0eed38bd8f94bc8791459ca259b1f87f0b4ec0f1e1d8ec4a6d7bd213ed1cec05
GET /plus/js/custom/checkinput.js?ver=1598008226 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 21 Aug 2020 11:10:26 GMT
ETag: W/"5f3faba2-3c14"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/plus/plugin/js/sweetalert.min.js?ver=1598106537
20.24.222.116200 OK 5.8 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/plugin/js/sweetalert.min.js?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (16994), with no line terminators
Hash 2f9966a615f3f46d846807adbe42644f
441544c084828da55ca0bafdc4c3df7dc7020820
be4d1215ef6f2b2915b7f65cd28b9a9f7dcef17e1f0d883edd19400ca0ea795c
GET /plus/plugin/js/sweetalert.min.js?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-4262"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/plus/plugin/js/jquery.min.js?ver=1598106537
20.24.222.116200 OK 32 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/plugin/js/jquery.min.js?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (32025)
Hash f9c7afd05729f10f55b689f36bb20172
43dc554608df885a59ddeece1598c6ace434d747
f16ab224bb962910558715c82f58c10c3ed20f153ddfaa199029f141b5b0255c
GET /plus/plugin/js/jquery.min.js?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-14979"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/plus/plugin/js/jquery-migrate.min.js?ver=1598106537
20.24.222.116200 OK 3.2 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/plugin/js/jquery-migrate.min.js?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (7085)
Hash eb05d8d73b5b13d8d84308a4751ece96
743052320809514fb788fe1d3df37fc87ce90452
1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d
GET /plus/plugin/js/jquery-migrate.min.js?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-1c1f"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/plus/js/unite/share_unite.js?ver=1661222873
20.24.222.116200 OK 943 B URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/js/unite/share_unite.js?ver=1661222873
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text
Hash 8769d3936def17eb1f19180e72bd61a1
094b441638058e7bf0237f4c7821f294a022192e
b51ae264e880267268e3b793a3ab0781adfd638fcb8c173e0ae3e48c9c1be227
GET /plus/js/unite/share_unite.js?ver=1661222873 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: application/javascript
Content-Length: 943
Connection: keep-alive
Last-Modified: Tue, 23 Aug 2022 02:47:53 GMT
ETag: "63043fd9-3af"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/js/custom/main.js?ver=1598008226
20.24.222.116200 OK 942 B URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/js/custom/main.js?ver=1598008226
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text
Hash 6a579f2e4d3b31b3ea017e7b03a475dd
8d9a6430face051ae1365d421f15c60cff36613c
ca0d1288490dab47eb98606d7e519b4be96e1d5f354b8cf4a6ef39dd1846c41c
GET /plus/js/custom/main.js?ver=1598008226 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 21 Aug 2020 11:10:26 GMT
ETag: W/"5f3faba2-78d"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/plus/plugin/js/swiper.min.js?ver=1598106537
20.24.222.116200 OK 34 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/plugin/js/swiper.min.js?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65271)
Hash b8be4ec964b15c656c05a17f822762b3
1afabbf1eeecc4d7ddfbb4c824696ce1aadc8d0f
e32b2b578b1345c05be32292da9016f7ff564bb3f4aeda3c1b6b76869648fcbd
GET /plus/plugin/js/swiper.min.js?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-1bee5"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/plus/js/custom/login.js?ver=1597629260
20.24.222.116200 OK 191 B URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/js/custom/login.js?ver=1597629260
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 24bc8669caf172f2c17a06fcd73ae539
3bad8f340bca43d8fb98c3ca39def12f816769a8
29df48677fd1c2b2a602c35faeadd3693f083b78550b2c0f3108f356c34b74bd
GET /plus/js/custom/login.js?ver=1597629260 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: application/javascript
Content-Length: 191
Connection: keep-alive
Last-Modified: Mon, 17 Aug 2020 01:54:20 GMT
ETag: "5f39e34c-bf"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/plugin/js/jquery-ui.min.js?ver=1598106537
20.24.222.116200 OK 78 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/plugin/js/jquery-ui.min.js?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (32074)
Hash c15b1008dec3c8967ea657a7bb4baaec
78489e580adaef931e6e5b131dab556c397e4a1a
28ce75d953678c4942df47a11707a15e3c756021cf89090e3e6aa7ad6b6971c3
GET /plus/plugin/js/jquery-ui.min.js?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-3dee5"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/assets/js/caller.js?ver=1675418258
20.24.222.116200 OK 1.6 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/assets/js/caller.js?ver=1675418258
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text
Hash 4e7441dc033395b76a96b25b6efef0f0
c833e33f4a95efa559a847dfff036cb904260b48
80caabbe50f5f83254e2545d01bacf299c7f417a103e912bd41d6c330a6e4f86
GET /assets/js/caller.js?ver=1675418258 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 03 Feb 2023 09:57:38 GMT
ETag: W/"63dcda92-1122"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/plus/js/custom/login_custom.js?ver=1598008226
20.24.222.116200 OK 0 B URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/js/custom/login_custom.js?ver=1598008226
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plus/js/custom/login_custom.js?ver=1598008226 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Last-Modified: Fri, 21 Aug 2020 11:10:26 GMT
ETag: "5f3faba2-0"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/js/unite/encforms.js?ver=1699847459
20.24.222.116200 OK 2.9 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/js/unite/encforms.js?ver=1699847459
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, ASCII text
Hash a7422a837b0905ce08a1d9595a51372e
e8838547bf778fda7c69585d0811a8422fbdc435
96892ab19f2567c1109001c79c83be80cea1912442e580542b58f2aba3f4cb07
GET /plus/js/unite/encforms.js?ver=1699847459 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 13 Nov 2023 03:50:59 GMT
ETag: W/"65519d23-2c77"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/plus/js/custom/moment.js?ver=1580697220
20.24.222.116200 OK 34 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/js/custom/moment.js?ver=1580697220
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash e70edb526ff09f426618efade93a4782
840b05449d3851118fc835592bd98af885bdbf1f
ab513aa4626ba224ac61b747674e6aead965f6e2cf87a2e60c7d4645b519817f
GET /plus/js/custom/moment.js?ver=1580697220 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 03 Feb 2020 02:33:40 GMT
ETag: W/"5e378684-1f30d"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/plus/js/unite/jsencrypt.min.js?ver=1598106537
20.24.222.116200 OK 19 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/js/unite/jsencrypt.min.js?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (13814)
Hash 64507221feddff84c80b99c98827d76c
5c7000638c6bae1a1c448367822a8682d59d371f
5a0be406a1bdf94a25a9d142d4124e3dccbdeb5593cd78fb0bd234df89dd7389
GET /plus/js/unite/jsencrypt.min.js?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-db4e"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/plus/js/custom/moment-timezone.js?ver=1580697220
20.24.222.116200 OK 33 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/js/custom/moment-timezone.js?ver=1580697220
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (1434), with CRLF line terminators
Hash bc45c47c99fe4d26b2b24e46cec399ad
221067a4147ece74b03934528ad61bcd4026e477
4a65c2af68e89944c3da128c9b329596d930ce09dc9b8ba726b640d812e1fd88
GET /plus/js/custom/moment-timezone.js?ver=1580697220 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 03 Feb 2020 02:33:40 GMT
ETag: W/"5e378684-2feef"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/plus/plugin/css/sweetalert.css?ver=1598106537
20.24.222.116200 OK 4.6 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/plugin/css/sweetalert.css?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash d8cc26070373f41241f37ce5a9c9d885
3ecb6f91187c0153724c950efcea0b0d944fd5aa
460df149ba9d2eb000637d9bfb2df51c5080a19e9071ff4ed5a4b7e21a0bd2f1
GET /plus/plugin/css/sweetalert.css?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-59ad"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
3f38sfb.yrsm.net/plus/css/common/bet365_style.css?ver=1685497875
20.24.222.116200 OK 4.2 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/css/common/bet365_style.css?ver=1685497875
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
Hash e9a957a394a4a341950b0cbef057bf9d
94788ba0d6558b10b8217fecfb7d32063e8695f1
570eb71cd8b21b132e59b75b30696c247dbb8e7cfc75d250c0af5ed3a156d68c
GET /plus/css/common/bet365_style.css?ver=1685497875 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 31 May 2023 01:51:15 GMT
ETag: W/"6476a813-3db7"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
3f38sfb.yrsm.net/plus/plugin/css/font-awesome.min.css?ver=1598106537
20.24.222.116200 OK 7.5 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/plugin/css/font-awesome.min.css?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type ASCII text, with very long lines (28900)
Hash 4083f5d376eb849a458cc790b53ba080
fb5b49426dee7f1508500e698d1b3c6b04c8fcce
008a1d103902f15fdb1c191fcb1ce8954330e7b8de43d09abb08555ba609f420
GET /plus/plugin/css/font-awesome.min.css?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-7187"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
3f38sfb.yrsm.net/plus/plugin/css/jquery-ui.min.css?ver=1598106537
20.24.222.116200 OK 9.1 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/plugin/css/jquery-ui.min.css?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type ASCII text, with very long lines (29137)
Hash 0b5729a931d113be34b6fac13bcf5b29
88ba90d2d2944315afd28a706ee5715ed980c634
ac1c8f94750b39b12327a5d0c56fdf946dabfb6d91e5d2a202879ff9a5d67e29
GET /plus/plugin/css/jquery-ui.min.css?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-7d4c"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
3f38sfb.yrsm.net/plus/plugin/css/swiper.min.css?ver=1598106537
20.24.222.116200 OK 3.6 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/plugin/css/swiper.min.css?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type ASCII text, with very long lines (19174)
Hash 319f20c8f06461463f24bfc703551a18
f3bc53e03aefc4ee3be3adbcc707f7ed4c1c65a0
67b6584af0fff14908d8f05c0eb9d59cb809da113feffd197f3ddb38a779ea45
GET /plus/plugin/css/swiper.min.css?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-4bef"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: X-101-Server
X-Cache-Status: HIT
3f38sfb.yrsm.net/images_plus/index/g02.png?ver=1598008033
20.24.222.116200 OK 14 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/index/g02.png?ver=1598008033
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 269 x 79, 8-bit colormap, non-interlaced
Hash 90bacbbc6c165d555b528d48bfa616a1
64041e94f44efa1df69c1e1b8086fa4773c06951
39a7b5dc5fdec30c63517f2648bf20050718c6005cf8056b007f0aab103e9846
GET /images_plus/index/g02.png?ver=1598008033 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: image/png
Content-Length: 13819
Connection: keep-alive
Last-Modified: Fri, 21 Aug 2020 11:07:13 GMT
ETag: "5f3faae1-35fb"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/index/en/NCDBC_210x204.png?ver=1700473768
20.24.222.116200 OK 9.2 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/index/en/NCDBC_210x204.png?ver=1700473768
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 210 x 216, 8-bit/color RGBA, non-interlaced
Hash 9bdd6b8d5589d397db7068d3a294de42
98b5bb4cb3d46f59db14ab9f2ebb2b54348202f8
6b53a71f33b8a9b1c81f84e0371a4028a1e7d2f1b6fdda72ad3cbf5cf99194ca
GET /images_plus/index/en/NCDBC_210x204.png?ver=1700473768 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: image/png
Content-Length: 9237
Connection: keep-alive
Last-Modified: Mon, 20 Nov 2023 09:49:28 GMT
ETag: "655b2ba8-2415"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/index/g04.png?ver=1606874474
20.24.222.116200 OK 12 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/index/g04.png?ver=1606874474
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 271x81, components 3
Hash 6274335f5e37fb7e3aa19dba05a07ef3
d54c0b0cccf2158aee56d7f1f465d5bb907edf06
39d9bd9e19956bb52c4c880dc6987383c34dc0873aadaa6b3763e3421e06def7
GET /images_plus/index/g04.png?ver=1606874474 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: image/png
Content-Length: 11478
Connection: keep-alive
Last-Modified: Wed, 02 Dec 2020 02:01:14 GMT
ETag: "5fc6f56a-2cd6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/index/en/204x30-live-streaming-02.gif?ver=1678956392
20.24.222.116200 OK 425 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/index/en/204x30-live-streaming-02.gif?ver=1678956392
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 204 x 30
Hash 63c123f206f80da19ec63d929f8e5f45
41fbde8999e4486fc23779736c4717dff55702b6
7ca0b58a9b93be2acea0a96626d5c6597eefeeee1602330f60e2f5b54dbef61a
GET /images_plus/index/en/204x30-live-streaming-02.gif?ver=1678956392 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: image/gif
Content-Length: 425
Connection: keep-alive
Last-Modified: Thu, 16 Mar 2023 08:46:32 GMT
ETag: "6412d768-1a9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/index/g03.png?ver=1598008033
20.24.222.116200 OK 12 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/index/g03.png?ver=1598008033
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 269 x 79, 8-bit colormap, non-interlaced
Hash d2ba9813a94ef43860a7e436085624f3
ad36dce8e807934af7f49ea1be72955d7238314f
de19c6fe70e572cb530efdc4ffdbd69fec93ceec8e8513cbd488496737ad8130
GET /images_plus/index/g03.png?ver=1598008033 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: image/png
Content-Length: 11946
Connection: keep-alive
Last-Modified: Fri, 21 Aug 2020 11:07:13 GMT
ETag: "5f3faae1-2eaa"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/index/footer_tindex.png?ver=1606876112
20.24.222.116200 OK 31 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/index/footer_tindex.png?ver=1606876112
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 860 x 320, 8-bit colormap, non-interlaced
Hash 4cff4dc9e549d34af27afdf92ca7d2fa
0eb049b2a26b17cbb3f8245ed917d1cde98270b8
0cd23fe23383f6e30f715b9fdbbe23561ad39cedad929a2622464bd6b50f9f29
GET /images_plus/index/footer_tindex.png?ver=1606876112 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: image/png
Content-Length: 30700
Connection: keep-alive
Last-Modified: Wed, 02 Dec 2020 02:28:32 GMT
ETag: "5fc6fbd0-77ec"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/header/common/kefu_icon.png
20.24.222.116200 OK 582 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/header/common/kefu_icon.png
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 15 x 16, 8-bit colormap, non-interlaced
Hash d66100dc3b6143ccaab68587edf59169
aec841ed002d6f0572b1bc380212d38be5858728
cba9dfe544df0c8b71bb9881e1d77b9be08007df320acfb8398c9b636bc1afc5
GET /images_plus/header/common/kefu_icon.png HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3f38sfb.yrsm.net/plus/css/custom/header_custom.css?ver=1685507033
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 582
Connection: keep-alive
Last-Modified: Wed, 02 Dec 2020 01:46:55 GMT
ETag: "5fc6f20f-246"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/index/sec-nav-bg-grad.gif
20.24.222.116200 OK 376 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/index/sec-nav-bg-grad.gif
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 594
Hash 355b2cb853d78ae262c093065eaa6e70
3e8d2a456204e635cfe5bd959cff47faf63023fc
cd58d657e3d79583a5722257d8770e3b5f620f1d58e392f1d9460cc89ac485fa
GET /images_plus/index/sec-nav-bg-grad.gif HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3f38sfb.yrsm.net/plus/css/common/index.css?ver=1685095467
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/gif
Content-Length: 376
Connection: keep-alive
Last-Modified: Fri, 21 Aug 2020 11:07:13 GMT
ETag: "5f3faae1-178"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/common/storage/cms/cms_1050.jpg?ver=1607687349
20.24.222.116200 OK 29 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/common/storage/cms/cms_1050.jpg?ver=1607687349
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 844x214, components 3
Hash 38c80c4e821869df9ae28040c4e2abe4
de9d8a0f1e6628df841ee9d05b0e0ac4678d7188
f6d5607fe56e39eaffeaee05a3e7392bd9adcc9275e7e63f67881db018b68b73
GET /common/storage/cms/cms_1050.jpg?ver=1607687349 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/jpeg
Content-Length: 29389
Connection: keep-alive
Last-Modified: Fri, 11 Dec 2020 11:49:09 GMT
ETag: "5fd35cb5-72cd"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/index/icon_play.png
20.24.222.116200 OK 214 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/index/icon_play.png
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 7 x 11, 8-bit/color RGBA, non-interlaced
Hash 1d3364063dfed42858dddb89b22c4d71
6d66d841a97e61c64dac75e15006bceedd7a0f93
207b4691434677f319a50bd137a579be31f50c6c47ddbc3e2daa6eab7b9b05a0
GET /images_plus/index/icon_play.png HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3f38sfb.yrsm.net/plus/css/common/index.css?ver=1685095467
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 214
Connection: keep-alive
Last-Modified: Mon, 01 May 2023 09:23:26 GMT
ETag: "644f850e-d6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
www.bet83004.com/gdcode_1713427696
154.197.12.112200 OK 1.2 kB URL GET HTTP/1.1 www.bet83004.com/gdcode_1713427696
IP 154.197.12.112:443
Requested by https://www.bet83004.com/
Certificate IssuerLet's Encrypt
Subjectwww.bet83004.com
Fingerprint3B:4A:F2:43:14:9F:07:41:70:0E:8E:A8:09:97:4D:E2:5D:CA:A7:C3
ValidityTue, 19 Mar 2024 03:12:22 GMT - Mon, 17 Jun 2024 03:12:21 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 56x23, components 3
Hash d18f0d90756d635a6aba6a04eb582b39
e2022f82cd1932ec17427926ae9f8e5629a67495
89ec883eb474ff19ae6612767535db4d16c14be689d00f0dcee7628236d7ed51
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /gdcode_1713427696 HTTP/1.1
Host: www.bet83004.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Cookie: XSRF-TOKEN=eyJpdiI6ImZJOFJxR0pvR2VuSWlTcHRFck1WMkE9PSIsInZhbHVlIjoieE5ibzFyTTZoSFZGYmJcL1hUcUpVM0JcLzlTQjNHZTZ4ZjMzbTNoWnZJXC9tY1l4cVpMeWYyMUkwWGt2bjFaeVdJSHczaFdjTHF4ZnVHVEZySElqY2ZuXC93PT0iLCJtYWMiOiIzODZhMzk5NWRiMWQwYThhMGEwOWIwZjgwYzJhZDlmZGQyNWVkMzVjYmE4MjU1NjIzMjhkYjcyNjI5ZDAxYjA1In0%3D; vanguard_session=eyJpdiI6Im9MNlwvTmRoMVN4MUw2NlwvTlQ5ZFwvQ1E9PSIsInZhbHVlIjoiSUcreXY4b2Z6c2xNVTlFRk9pc1diZTBvdHlLUTN2MHpwb0JyK2xQK2hiTlA4UVp2dGNlNHcyYnRYd2dVbWc2aU92SDl1U0J3M2ZqalltNDhudnpsMFE9PSIsIm1hYyI6IjllMDkyOTM0MzE5NGVlNjU2NGRmMjA1MzVlNzE3NzdiOWMwZjkwY2JkYTExYjkyMmE1NTEyNjM0YmM2ZmI3MjQifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=315360000
Pragma: no-cache
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Set-Cookie: XSRF-TOKEN=eyJpdiI6InoweHBDeFwvRWJpS3ptTXRwd0haVUJBPT0iLCJ2YWx1ZSI6IkQxU2oySkpwWmNpeHJ2amF3OWxkVllReGhJdGZacE85SlorSHNrMWtaSWRwS2ZSbVVPRTZsbmZNWmZUK3B6YjRBYWg2R2FKbjV3bmN6Tno0bjg1T1VnPT0iLCJtYWMiOiI1ZTU3OTIxOWEyYjQ0NDgwNWQxYjllMDViNmIyODNhODU5ZGQ4NmJmNmY0YzA5MjFiMjE4ZTM5ZjIwMDBjYjljIn0%3D; expires=Thu, 18-Apr-2024 10:08:22 GMT; Max-Age=7200; path=/; secure; samesite=none
vanguard_session=eyJpdiI6IlVkaEpqM3ljNE9iUGVWajhycFU5K2c9PSIsInZhbHVlIjoiZFM3MzBcL1M3cGU3alFTZkdvOGVOYlkyRUdxdFlUdjZYeGhcL2FEUXZHSUt2aTU5b1ZBQUFRZ2JvYWRtUm1BQ3FIRGtDMk44anlWbkFLNUFhZDNlaUxPQT09IiwibWFjIjoiM2VlYjBmYzdkZTBmNGJlNDg0ODkyZWJjZTcxNmMyMzRkNjQxMTIzNDk4ZTVlNWE5OWQ0YmMyNGZkMGQxN2I2YiJ9; expires=Thu, 18-Apr-2024 10:08:22 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none
Server: nginx
www.bet83004.com/common/storage/cms/cms_1083.png?v=1612880139
154.197.12.112200 OK 27 kB URL GET HTTP/1.1 www.bet83004.com/common/storage/cms/cms_1083.png?v=1612880139
IP 154.197.12.112:443
Requested by https://www.bet83004.com/
Certificate IssuerLet's Encrypt
Subjectwww.bet83004.com
Fingerprint3B:4A:F2:43:14:9F:07:41:70:0E:8E:A8:09:97:4D:E2:5D:CA:A7:C3
ValidityTue, 19 Mar 2024 03:12:22 GMT - Mon, 17 Jun 2024 03:12:21 GMT
File type PNG image data, 280 x 280, 8-bit colormap, non-interlaced
Hash 083dcae037d113283d35610595299275
f225b2b127e8d225a8911426742be25a683e8c11
5f8dfd94e1774c3de80fa4fd84b1ec88aca70b1f0404b901e6937f69e6073a4a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /common/storage/cms/cms_1083.png?v=1612880139 HTTP/1.1
Host: www.bet83004.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Cookie: XSRF-TOKEN=eyJpdiI6ImZJOFJxR0pvR2VuSWlTcHRFck1WMkE9PSIsInZhbHVlIjoieE5ibzFyTTZoSFZGYmJcL1hUcUpVM0JcLzlTQjNHZTZ4ZjMzbTNoWnZJXC9tY1l4cVpMeWYyMUkwWGt2bjFaeVdJSHczaFdjTHF4ZnVHVEZySElqY2ZuXC93PT0iLCJtYWMiOiIzODZhMzk5NWRiMWQwYThhMGEwOWIwZjgwYzJhZDlmZGQyNWVkMzVjYmE4MjU1NjIzMjhkYjcyNjI5ZDAxYjA1In0%3D; vanguard_session=eyJpdiI6Im9MNlwvTmRoMVN4MUw2NlwvTlQ5ZFwvQ1E9PSIsInZhbHVlIjoiSUcreXY4b2Z6c2xNVTlFRk9pc1diZTBvdHlLUTN2MHpwb0JyK2xQK2hiTlA4UVp2dGNlNHcyYnRYd2dVbWc2aU92SDl1U0J3M2ZqalltNDhudnpsMFE9PSIsIm1hYyI6IjllMDkyOTM0MzE5NGVlNjU2NGRmMjA1MzVlNzE3NzdiOWMwZjkwY2JkYTExYjkyMmE1NTEyNjM0YmM2ZmI3MjQifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:21 GMT
Content-Type: image/png
Content-Length: 27231
Connection: keep-alive
Last-Modified: Tue, 09 Feb 2021 14:15:45 GMT
ETag: "60229911-6a5f"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
Server: nginx
Accept-Ranges: bytes
3f38sfb.yrsm.net/plus/plugin/js/jquery-ui.min.js?ver=1598106537
20.24.222.116200 OK 78 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/plugin/js/jquery-ui.min.js?ver=1598106537
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (32074)
Hash c15b1008dec3c8967ea657a7bb4baaec
78489e580adaef931e6e5b131dab556c397e4a1a
28ce75d953678c4942df47a11707a15e3c756021cf89090e3e6aa7ad6b6971c3
GET /plus/plugin/js/jquery-ui.min.js?ver=1598106537 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 22 Aug 2020 14:28:57 GMT
ETag: W/"5f412ba9-3dee5"
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Content-Encoding: gzip
3f38sfb.yrsm.net/common/storage/cms/cms_1081.png?ver=1612879623
20.24.222.116200 OK 2.2 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/common/storage/cms/cms_1081.png?ver=1612879623
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 56 x 254, 8-bit colormap, non-interlaced
Hash 9db7b51805575c39ee9f39665b0f7ab4
f1a2bf9f5d5796a06122c20077563d17c016f626
0c267456e5c0f717c238b3b41418e9745826d8854f9113e2f504ba9a4df28c95
GET /common/storage/cms/cms_1081.png?ver=1612879623 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 2248
Connection: keep-alive
Last-Modified: Tue, 09 Feb 2021 14:07:03 GMT
ETag: "60229707-8c8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/common/storage/cms/cms_1079.png?ver=1612879501
20.24.222.116200 OK 7.2 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/common/storage/cms/cms_1079.png?ver=1612879501
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 129 x 251, 8-bit colormap, non-interlaced
Hash 55573863bf4ded810402032c178c8e18
609490d47a02fd8d334d81f60a425d87541320ef
c9c97016a7a15844a8d8ba4240275ac28ccd0463c70a379fa3f7411ec237186a
GET /common/storage/cms/cms_1079.png?ver=1612879501 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 7227
Connection: keep-alive
Last-Modified: Tue, 09 Feb 2021 14:05:01 GMT
ETag: "6022968d-1c3b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/index/en/liveinplay.gif?ver=1682933216
20.24.222.116200 OK 616 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/index/en/liveinplay.gif?ver=1682933216
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 204 x 30
Hash 712ffb89e85b2e1e254ec1c77b23fc74
7e385f698a88e70953384d4bcd3698993fb6c322
6ac8853ce4ba2bf9bbe37da81b96be06b0463bee89fe6166a02a913ce379307b
GET /images_plus/index/en/liveinplay.gif?ver=1682933216 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/gif
Content-Length: 616
Connection: keep-alive
Last-Modified: Mon, 01 May 2023 09:26:56 GMT
ETag: "644f85e0-268"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/main/logo.gif?ver=1612839866
20.24.222.116200 OK 15 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/main/logo.gif?ver=1612839866
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 224 x 91
Hash 3719047940db89e415097aa46f3bfe51
ffa944db5a95f8771081a2147ef08115095d55b9
819ed93b5f94181c65947ee5e77fedd1237ab03f8c9d2ce75e2811405d0114f7
GET /images_plus/main/logo.gif?ver=1612839866 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/gif
Content-Length: 15313
Connection: keep-alive
Last-Modified: Tue, 09 Feb 2021 03:04:26 GMT
ETag: "6021fbba-3bd1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/index/en/bg-sports-title-white.gif?ver=1678955880
20.24.222.116200 OK 536 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/index/en/bg-sports-title-white.gif?ver=1678955880
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 130 x 38
Hash 3ecfa3bc82874fe5208d9e9924cebd51
e801a0bb64370407da31412e432326e8b9887a73
1e59d016b5ca6a09c1df3fb8c51d3cdd0e2dcadb980aca2f0f5c81a8216e4ec2
GET /images_plus/index/en/bg-sports-title-white.gif?ver=1678955880 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/gif
Content-Length: 536
Connection: keep-alive
Last-Modified: Thu, 16 Mar 2023 08:38:00 GMT
ETag: "6412d568-218"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images/dc_new.gif?ver=1597629314
20.24.222.116200 OK 1.3 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/images/dc_new.gif?ver=1597629314
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 21 x 12
Hash 25f6274aa9e9e073709978b30cf559c4
a7cbd2bfcc634f40df01e0195e2cd666a22a7291
243406dc9776577510746308a2816db585b4abd09a64e1c761654316c0d9038c
GET /images/dc_new.gif?ver=1597629314 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/gif
Content-Length: 1251
Connection: keep-alive
Last-Modified: Mon, 17 Aug 2020 01:55:14 GMT
ETag: "5f39e382-4e3"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images/dc_hot.gif?ver=1597629314
20.24.222.116200 OK 1.4 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/images/dc_hot.gif?ver=1597629314
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type GIF image data, version 89a, 21 x 12
Hash e5f49d4212fec35b11b76cd616e1f8ec
0697a3b11f5d0906b2d1cf59051b46ee3b5dc72a
c34ed994680ca6446b85dd47aa963cd4cfdd07180a9517b4d7d37f3c7a1b94cd
GET /images/dc_hot.gif?ver=1597629314 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/gif
Content-Length: 1388
Connection: keep-alive
Last-Modified: Mon, 17 Aug 2020 01:55:14 GMT
ETag: "5f39e382-56c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/footer/footer-thwate.png?ver=1600719130
20.24.222.116200 OK 809 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/footer/footer-thwate.png?ver=1600719130
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 123 x 32, 4-bit colormap, non-interlaced
Hash 997ba7f2d6da9a90f5517d426b5994e9
61bdecfa266e48f6f0dc9469f598a45c7bff9036
146c3bcd19eef83c9a698efae1d39cdbbf4a948f75b7677931654dffb89ae5f5
GET /images_plus/footer/footer-thwate.png?ver=1600719130 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 809
Connection: keep-alive
Last-Modified: Mon, 21 Sep 2020 20:12:10 GMT
ETag: "5f69091a-329"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/footer/footer-logo.png?ver=1600719130
20.24.222.116200 OK 690 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/footer/footer-logo.png?ver=1600719130
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 80 x 19, 8-bit colormap, non-interlaced
Hash b30ea49a2bcc7479a195bb1fc07bd031
a7bbe06838b85840035172fa9a8ee6bd35c1c636
08f3d508861fbb6e144807af6719ea78cf9c26e3c99a1cbd12f9d83fe9f0758e
GET /images_plus/footer/footer-logo.png?ver=1600719130 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 690
Connection: keep-alive
Last-Modified: Mon, 21 Sep 2020 20:12:10 GMT
ETag: "5f69091a-2b2"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/footer/footer-18plus.png?ver=1600747939
20.24.222.116200 OK 441 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/footer/footer-18plus.png?ver=1600747939
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 32 x 32, 4-bit colormap, non-interlaced
Hash 950ceac8f20ad504e908c855fef89833
694bdd9709a9bb3be26c6f7bb350205eb44ac7b3
e17939202163e612402dbf251414bbb4e5faffdd133fdccd0bf2afd356e0d635
GET /images_plus/footer/footer-18plus.png?ver=1600747939 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 441
Connection: keep-alive
Last-Modified: Tue, 22 Sep 2020 04:12:19 GMT
ETag: "5f6979a3-1b9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/footer/footer-gt.png?ver=1600747940
20.24.222.116200 OK 360 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/footer/footer-gt.png?ver=1600747940
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 37 x 32, 8-bit colormap, non-interlaced
Hash c8b8b09e3d3f8a69599182c5df680895
0522f162609c91017ac5977eebb1ebd207a57525
ac257cdb0555003da4b484189c57e37c9758258b6fc0fa653ce17252c6e54f41
GET /images_plus/footer/footer-gt.png?ver=1600747940 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 360
Connection: keep-alive
Last-Modified: Tue, 22 Sep 2020 04:12:20 GMT
ETag: "5f6979a4-168"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/footer/footer-gibraltar.png?ver=1600747940
20.24.222.116200 OK 616 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/footer/footer-gibraltar.png?ver=1600747940
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 30 x 32, 8-bit colormap, non-interlaced
Hash d78068aa4f691e86a736d5ec0fa45aee
30e0842662a7f97b84289fb093c3755b99503e40
12d00217bbf0ba6959f43b8ad1f5bbd0b9f7b63ecd6be5650bc91aef21716097
GET /images_plus/footer/footer-gibraltar.png?ver=1600747940 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 616
Connection: keep-alive
Last-Modified: Tue, 22 Sep 2020 04:12:20 GMT
ETag: "5f6979a4-268"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/images_plus/footer/footer-gamcare.png?ver=1600719130
20.24.222.116200 OK 379 B URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/footer/footer-gamcare.png?ver=1600719130
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 26 x 29, 4-bit colormap, non-interlaced
Hash fed68f2bda8fcbde677d6243c0da867c
19f6e8a0721b068651f3d893db375a0d2c44646c
f1dd1841440203f7d5894ce378a49f8d33d02f6ba5896de0b885f1b9810d870c
GET /images_plus/footer/footer-gamcare.png?ver=1600719130 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 379
Connection: keep-alive
Last-Modified: Mon, 21 Sep 2020 20:12:10 GMT
ETag: "5f69091a-17b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
3f38sfb.yrsm.net/common/storage/cms/cms_1179.png?ver=1708958713
20.24.222.116200 OK 69 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/common/storage/cms/cms_1179.png?ver=1708958713
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 700 x 460, 8-bit colormap, non-interlaced
Hash 0dee9145ec3db7273d5a223d992afab3
c5fe8ea6bb7e65c961960e48b3a97b368c2e22e2
3a870703a8ed92857fe3201e70ebed8ab458a8b45ae71d6f4b180d5432dfe7e0
GET /common/storage/cms/cms_1179.png?ver=1708958713 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 69232
Connection: keep-alive
Last-Modified: Mon, 26 Feb 2024 14:45:13 GMT
ETag: "65dca3f9-10e70"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
www.bet83004.com/csrf
154.197.12.112200 OK 59 B IP 154.197.12.112:443
Requested by https://www.bet83004.com/
Certificate IssuerLet's Encrypt
Subjectwww.bet83004.com
Fingerprint3B:4A:F2:43:14:9F:07:41:70:0E:8E:A8:09:97:4D:E2:5D:CA:A7:C3
ValidityTue, 19 Mar 2024 03:12:22 GMT - Mon, 17 Jun 2024 03:12:21 GMT
File type ASCII text, with no line terminators
Hash e8a2a0febbcba9ceaf4fc4f0ba6d8c08
1ff290fceb5a0959404f561b255efe2a88d3be6c
3f1ca8cb3c1e9c876c01b90d0e36c61dd65cc2cdaebc1e8945cd3b16d3feb51d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /csrf HTTP/1.1
Host: www.bet83004.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Cookie: XSRF-TOKEN=eyJpdiI6InoweHBDeFwvRWJpS3ptTXRwd0haVUJBPT0iLCJ2YWx1ZSI6IkQxU2oySkpwWmNpeHJ2amF3OWxkVllReGhJdGZacE85SlorSHNrMWtaSWRwS2ZSbVVPRTZsbmZNWmZUK3B6YjRBYWg2R2FKbjV3bmN6Tno0bjg1T1VnPT0iLCJtYWMiOiI1ZTU3OTIxOWEyYjQ0NDgwNWQxYjllMDViNmIyODNhODU5ZGQ4NmJmNmY0YzA5MjFiMjE4ZTM5ZjIwMDBjYjljIn0%3D; vanguard_session=eyJpdiI6IlVkaEpqM3ljNE9iUGVWajhycFU5K2c9PSIsInZhbHVlIjoiZFM3MzBcL1M3cGU3alFTZkdvOGVOYlkyRUdxdFlUdjZYeGhcL2FEUXZHSUt2aTU5b1ZBQUFRZ2JvYWRtUm1BQ3FIRGtDMk44anlWbkFLNUFhZDNlaUxPQT09IiwibWFjIjoiM2VlYjBmYzdkZTBmNGJlNDg0ODkyZWJjZTcxNmMyMzRkNjQxMTIzNDk4ZTVlNWE5OWQ0YmMyNGZkMGQxN2I2YiJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImtUc1dRRVVOb0VhVmdcL1RsRng1bjZRPT0iLCJ2YWx1ZSI6ImZTTWRUR2hEdHBmczdWMUJoQ0JwQm1icDRZODRjdENFMjE0bVVobnczOEFVaHBGSFcxXC9uejdSaWdKNWNPcEo3RFlLNDFBSUdEbTY5bDRwNFwvSUN6R2c9PSIsIm1hYyI6IjYyMGQ4M2YwMWMyZjc0MDAwYWQ3ZWE3M2Y1MDJmMDdmMjVlZDcxMTI0N2U0NWUyNDJiMGE5MGE3MzU5ZDYyZmUifQ%3D%3D; expires=Thu, 18-Apr-2024 10:08:22 GMT; Max-Age=7200; path=/; secure; samesite=none
vanguard_session=eyJpdiI6InJIVEZcLzhoUnNOSnBFcDl4QUwwUFJBPT0iLCJ2YWx1ZSI6IlhoNGlYd0tSVTJRUFR4VHdrZlFNZ0tQNEFGXC9naEJIQjB6N1NGYjRtVHdaVEduK2h4UHFXWmUrYXNOb1wvTkNQMkZLeXd5YWZpNWFRNkY2dWpNa01TUHc9PSIsIm1hYyI6ImVmMTU4NGRhM2Q2NDY3MzRmODVlZWUzZDQyOGEwZmVhNTlkNDEyZDJmMzhhZDAxNGI1NWFiMjU0OTJmMWMxNWMifQ%3D%3D; expires=Thu, 18-Apr-2024 10:08:22 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none
x-bos: b83
Content-Encoding: gzip
Server: nginx
www.bet83004.com/member/call-request?check=1
154.197.12.112200 OK 57 B URL GET HTTP/1.1 www.bet83004.com/member/call-request?check=1
IP 154.197.12.112:443
Requested by https://www.bet83004.com/
Certificate IssuerLet's Encrypt
Subjectwww.bet83004.com
Fingerprint3B:4A:F2:43:14:9F:07:41:70:0E:8E:A8:09:97:4D:E2:5D:CA:A7:C3
ValidityTue, 19 Mar 2024 03:12:22 GMT - Mon, 17 Jun 2024 03:12:21 GMT
Hash 27a5688b27ae3688ca0183ce926be3c8
fa4dec3b6af6674afd7b14710cac41b15ae75b29
4359a477fc8cc8212517f5a190d4aa0a7cd1c85509d56d2a6a8efef408420ad7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /member/call-request?check=1 HTTP/1.1
Host: www.bet83004.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Cookie: XSRF-TOKEN=eyJpdiI6InoweHBDeFwvRWJpS3ptTXRwd0haVUJBPT0iLCJ2YWx1ZSI6IkQxU2oySkpwWmNpeHJ2amF3OWxkVllReGhJdGZacE85SlorSHNrMWtaSWRwS2ZSbVVPRTZsbmZNWmZUK3B6YjRBYWg2R2FKbjV3bmN6Tno0bjg1T1VnPT0iLCJtYWMiOiI1ZTU3OTIxOWEyYjQ0NDgwNWQxYjllMDViNmIyODNhODU5ZGQ4NmJmNmY0YzA5MjFiMjE4ZTM5ZjIwMDBjYjljIn0%3D; vanguard_session=eyJpdiI6IlVkaEpqM3ljNE9iUGVWajhycFU5K2c9PSIsInZhbHVlIjoiZFM3MzBcL1M3cGU3alFTZkdvOGVOYlkyRUdxdFlUdjZYeGhcL2FEUXZHSUt2aTU5b1ZBQUFRZ2JvYWRtUm1BQ3FIRGtDMk44anlWbkFLNUFhZDNlaUxPQT09IiwibWFjIjoiM2VlYjBmYzdkZTBmNGJlNDg0ODkyZWJjZTcxNmMyMzRkNjQxMTIzNDk4ZTVlNWE5OWQ0YmMyNGZkMGQxN2I2YiJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Set-Cookie: vanguard_session=eyJpdiI6InMzcUVrV3dGYVQyNmdORzJSU29Kdnc9PSIsInZhbHVlIjoiTERrT2t3dnFEc0JvQVp5UjRzcUxwNTZpMklSSkM2aHlGakxnbVEyc1A4ZVQrdUJ5N1Y3NlZNM3Npa1BJMW16RkdOMSs5OStMYmtaMGl6ajVwSmdBTFE9PSIsIm1hYyI6IjExMTRlNTdiZDgxZjVhYWJiOWEzN2RmODJiZmFlZWU1OWE3MjFiYTk2MTViMzQ3OGFmY2Y3MzQ3YmE1YTExNjIifQ%3D%3D; expires=Thu, 18-Apr-2024 10:08:22 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none
x-bos: b83
Content-Encoding: gzip
Server: nginx
3f38sfb.yrsm.net/plus/plugin/css/images/ui-icons_777777_256x240.png
20.24.222.116200 OK 7.0 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/plus/plugin/css/images/ui-icons_777777_256x240.png
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type PNG image data, 256 x 240, 8-bit gray+alpha, non-interlaced
Hash 40bf25799e4fec8079c7775083de09df
4fc6b1449c73f5d10489c104225ebe326a4016ba
e75b27211e16fcf94715168001bb7055ca376d46f928110ba3d0825232452e5a
GET /plus/plugin/css/images/ui-icons_777777_256x240.png HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://3f38sfb.yrsm.net/plus/plugin/css/jquery-ui.min.css?ver=1598106537
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:22 GMT
Content-Type: image/png
Content-Length: 7013
Connection: keep-alive
Last-Modified: Tue, 18 Aug 2020 01:14:46 GMT
ETag: "5f3b2b86-1b65"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
hm.baidu.com/hm.js?13d000e86c487ab21ddde56b764037d6
111.45.3.198200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?13d000e86c487ab21ddde56b764037d6
IP 111.45.3.198:443
ASN #56040 China Mobile communications corporation
Requested by https://www.bet83004.com/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (627)
Hash bed1ef785d81abd4ed6a85f810a5defb
b9715570fc3cbc3a32a7ce64a6a126b2df15eb1b
82e41b4b1278dfc93194428dcbd127089785205f4672161ebeb9d7d3b5ee9bc8
GET /hm.js?13d000e86c487ab21ddde56b764037d6 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11265
Content-Type: application/javascript
Date: Thu, 18 Apr 2024 08:08:22 GMT
Etag: bf9f17fb378b58da9749c2f5570ba7c6
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8F0C932564496103; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
3f38sfb.yrsm.net/images_plus/main/favicon.ico?ver=1598008032
20.24.222.116200 OK 1.2 kB URL GET HTTP/1.1 3f38sfb.yrsm.net/images_plus/main/favicon.ico?ver=1598008032
IP 20.24.222.116:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.bet83004.com/
Certificate IssuerSectigo Limited
Subject*.yrsm.net
Fingerprint6A:E0:83:FF:C3:E5:85:B3:D6:E9:DE:06:BF:83:B5:58:E4:2D:6D:43
ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Hash e13f45bbeb4b9056cfa3d6bd2453f70f
dfc879f8f7279ec929478feee93d9b2fdacce0b1
331b713de169d0e56bc71fee2c7df0795b24d5b24c045b3af1a27668783a1d2b
GET /images_plus/main/favicon.ico?ver=1598008032 HTTP/1.1
Host: 3f38sfb.yrsm.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 08:08:23 GMT
Content-Type: image/x-icon
Content-Length: 1150
Connection: keep-alive
Last-Modified: Fri, 21 Aug 2020 11:07:12 GMT
ETag: "5f3faae0-47e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Server: X-101-Server
X-Cache-Status: HIT
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2121058581&si=13d000e86c487ab21ddde56b764037d6&su=http%3A%2F%2Fejrfs.com%2F&v=1.3.0&lv=1&sn=15128&r=0&ww=1280&u=https%3A%2F%2Fwww.bet83004.com%2F%23&tt=365%E8%8B%B1%E5%9B%BD%E4%B8%8A%E5%B8%82%E5%AE%98%E7%BD%91
111.45.3.198200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2121058581&si=13d000e86c487ab21ddde56b764037d6&su=http%3A%2F%2Fejrfs.com%2F&v=1.3.0&lv=1&sn=15128&r=0&ww=1280&u=https%3A%2F%2Fwww.bet83004.com%2F%23&tt=365%E8%8B%B1%E5%9B%BD%E4%B8%8A%E5%B8%82%E5%AE%98%E7%BD%91
IP 111.45.3.198:443
ASN #56040 China Mobile communications corporation
Requested by https://www.bet83004.com/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2121058581&si=13d000e86c487ab21ddde56b764037d6&su=http%3A%2F%2Fejrfs.com%2F&v=1.3.0&lv=1&sn=15128&r=0&ww=1280&u=https%3A%2F%2Fwww.bet83004.com%2F%23&tt=365%E8%8B%B1%E5%9B%BD%E4%B8%8A%E5%B8%82%E5%AE%98%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet83004.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 18 Apr 2024 08:08:23 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=8DA39E7706415528; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff