| | 104.21.12.86 | 200 OK | 6.4 kB |
URL User Request GET HTTP/2IP104.21.12.86:443
CertificateIssuerLet's Encrypt Subjectcldc8d.top FingerprintFF:6B:7C:AC:20:6C:A6:A2:B8:F1:71:8E:91:0D:F2:44:81:07:6C:44 ValidityThu, 02 May 2024 08:12:31 GMT - Wed, 31 Jul 2024 08:12:30 GMT
File typeHTML document, ASCII text, with very long lines (43715) Hash82da8fcc7b110234174b35885ccb9e81 202a4a2143c38b450f2703d8e4e658046cc79702 6f363eee66af6612514f82b17972bc1770dde7b09ec801d2008d9077be0bbca9
GET / HTTP/1.1
Host: cldc8d.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 04:35:28 GMT
content-type: text/html
last-modified: Mon, 01 Apr 2024 13:39:09 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZwyIsXhEmh4029ztYnV1wX3xytxH8JZrcTifMI%2FC7lGSEWTuOaLJcdQG9y57QFMhkVlSt2Qfq07yV7AYKMB%2FfDdD%2FMlFpprt8e%2B25hPKlDqJiS2WQxHq5N3DePkl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8806be411acfb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-KCKJL9NRY7 | 142.250.74.168 | 200 OK | 103 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-KCKJL9NRY7 IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size103 kB (103293 bytes) Hash94e026d7b1f58755f323bb9d4550d03e 35311b3d4deacc2558b529a786707bea81e3c140 6498c3cc729c49cecfe0c0570ea26663649991ce277d16e4400b7461a9f377af
GET /gtag/js?id=G-KCKJL9NRY7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cldc8d.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:35:28 GMT
expires: Wed, 08 May 2024 04:35:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103293
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-3ZHR4YBDVK | 142.250.74.168 | 200 OK | 102 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-3ZHR4YBDVK IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size102 kB (101677 bytes) Hash3b1b0c2bc012842211ca5d9939028589 04fa17f01fbef5e55de545331d3fdfdf0ba3e0f6 33d17d59bce83e00fcab23317012104ab685862f295f5cba67cc83d13bf7f690
GET /gtag/js?id=G-3ZHR4YBDVK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cldc8d.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:35:28 GMT
expires: Wed, 08 May 2024 04:35:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101677
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-255J96M2SG | 142.250.74.168 | 200 OK | 101 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-255J96M2SG IP142.250.74.168:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size101 kB (101190 bytes) Hash922be062021e4d8033ef933c00a4e191 b42980cc84c02468b6257a41104691a1541f9778 4cf9c7181b8eebb95303c3e9dcce2d08fe68e1b97a195b8f776b2400f37a05ce
GET /gtag/js?id=G-255J96M2SG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cldc8d.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:35:28 GMT
expires: Wed, 08 May 2024 04:35:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101190
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/close_icon.png | 143.204.55.75 | 200 OK | 454 B |
URL GET HTTP/2cidxig.claa39.top/images/close_icon.png IP143.204.55.75:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashe1ad5678d5b611bec0bae1f1b5b98b95 764937d601ae257585ccc5f025e9ae8d147ddbc1 4d159ae591e44fd8cafe6f5c4e8c2bd1b1ea9887a524d5aec22b3847444072f2
GET /images/close_icon.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 454
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Tue, 07 May 2024 08:53:50 GMT
etag: "63f0d158-1c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Cp1UJoqjSUzIg9N5KpWZfIMCIBza5hXkx3HmHphB4qrgY3u0cOf4HQ==
age: 70897
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/logo-icon.png | 143.204.55.75 | 200 OK | 7.0 kB |
URL GET HTTP/2cidxig.claa39.top/images/logo-icon.png IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 153 x 36, 8-bit/color RGBA, non-interlaced Hashe9764e66922908f64568ffbc3161b8f4 69dce4ea47ab1e6734930edc44226a03a015fc5c 0f1aee0c6071bb412ee40eee39041712a3bc264d026555fd5cfc1d1756165abb
GET /images/logo-icon.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7041
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 02:14:21 GMT
etag: "63f0d158-1b81"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: n5jc2s2iTPNUNj5gFiyWqpU7cDvcTKbxE2O0ZZ3x9_I-O-Le3MqlKQ==
age: 11692
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/phone2x.png | 143.204.55.75 | 200 OK | 383 B |
URL GET HTTP/2cidxig.claa39.top/images/phone2x.png IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 28 x 40, 8-bit/color RGBA, non-interlaced Hash5083bfd9da170b1691df2bfbbb5d7708 1c4f260bf05379e622708922e31f360ac50edbc9 80d2406c083fda095b337c6673a565fb6ab10969b740f967061d3f6a3b6d61f7
GET /images/phone2x.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 383
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 02:14:21 GMT
etag: "63f0d158-17f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: AnvQscS-Ocnd_WbjFWtYrGoEL9_j5pQNIDN5uFfbr0Fv4efWMvsyng==
age: 10319
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/tanhao.png | 143.204.55.75 | 200 OK | 1.0 kB |
URL GET HTTP/2cidxig.claa39.top/images/tanhao.png IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced Hash657539296e09bf233438245bfa509c19 cf08c2bc8a282e163aa09fdd5d9dbb04e2880292 a54082e742d5af6acf7842753acfa0132b05996f55e61c3e9bd4508cd565b767
GET /images/tanhao.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1035
server: nginx
date: Wed, 08 May 2024 01:20:36 GMT
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
etag: "63f0d158-40b"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 6ssFZ7-Ws8k-Yve-uFId8yZVDoOqGWFllQYtPUMwA8-8YyZRNkvo2w==
age: 11692
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/url-icon.png | 143.204.55.75 | 200 OK | 1.1 kB |
URL GET HTTP/2cidxig.claa39.top/images/url-icon.png IP143.204.55.75:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced Hashaae47bcc1867b91054257c353dddf4ee 8de01e4d6238d66554ead5ae633bbca0b7b1bd14 841065ed4d50bc0bd4aad095b9b6cf0ad8dd62bcc01ae4ab4e326b4d7871b81f
GET /images/url-icon.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1123
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 02:14:21 GMT
etag: "63f0d158-463"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: hiocaUlkmAv0iGKfy9jX-R9God9G2JxPVw-NOSRJVO9IotEbyjp1gQ==
age: 10319
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/email-pc.png | 143.204.55.75 | 200 OK | 20 kB |
URL GET HTTP/2cidxig.claa39.top/images/email-pc.png IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 898 x 36, 8-bit/color RGBA, non-interlaced Hash8b079c55a30e5d87666e705eb97b4d98 a312f44e12b89d87de12d39b3bf444691cc0001a 6e2149400410dd00b830667c242f54c810a608aefad93e04e9c21e14309056bd
GET /images/email-pc.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 20121
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Tue, 07 May 2024 08:53:51 GMT
etag: "63f0d158-4e99"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: r9_Ci9xN7IOaESFGlcrFGCmswqbpV3Qf6srNFUEXClhnO7LAmiVTYw==
age: 70897
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/xinban.png | 143.204.55.75 | 200 OK | 18 kB |
URL GET HTTP/2cidxig.claa39.top/images/xinban.png IP143.204.55.75:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 372 x 220, 8-bit/color RGBA, non-interlaced Hash59c4ee73c0f0b8932b949fd7ac90bbfe 7757a8d45240e8248e2dc3c01dfee9873e55f9d1 d04b3581c098d5419730cd73ac9b936c4d6912fccbf03606fa8bfa28b106f7de
GET /images/xinban.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 17969
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 04:35:28 GMT
etag: "63f0d158-4631"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 4RG0_pzEy4rKAUsIOuJauLbYfY-Ps6vlQ8rAb_RUeNfwADXhlSzaDA==
age: 5
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/haiwai.png | 143.204.55.75 | 200 OK | 1.6 kB |
URL GET HTTP/2cidxig.claa39.top/images/haiwai.png IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced Hashc52e667e5e13fd4602bcf9bdc6441e47 4767b6dba50bfde0d8619a12b8a6d3dcfaa0a264 d842f6dae28313c66d853ebb943e7de7e09404e88a4c7caecb4009f258c9e9a4
GET /images/haiwai.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1620
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 04:35:28 GMT
etag: "63f0d158-654"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: f73_YMPl0KeXqiriOoF_XNXiRyFJIWm0JmrEEiamHI4J6Tgb_cORAQ==
age: 5315
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/jiuban.png | 143.204.55.75 | 200 OK | 19 kB |
URL GET HTTP/2cidxig.claa39.top/images/jiuban.png IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 372 x 220, 8-bit/color RGBA, non-interlaced Hash68321ce32e0c9786b7f3cc1b622adeec a5837702e779fb08505f7691aa5e8f3b004ff26f 5d82696d9752d4ddd2a0defb341453c0006e53a32225a733cac33912a9a5070a
GET /images/jiuban.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 18913
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 04:35:28 GMT
etag: "63f0d158-49e1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: WFxBxGmq3N3W5rRG9whHR3w2mWTELt0yLDhQ0jTBJgITs2LzxRDgTQ==
age: 101
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/phone-bg.png | 143.204.55.75 | 200 OK | 278 kB |
URL GET HTTP/2cidxig.claa39.top/images/phone-bg.png IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 658 x 480, 8-bit/color RGBA, non-interlaced Size278 kB (278169 bytes) Hasha449211692701e81b4cd77c31693a39c 3f564dbeca3eb6100d6d4e5aa54fdeaa53b124fa 3b8698fe8727da2c64634b65dc8f69b5b792ce34bd5485c385ca75ab9380bab0
GET /images/phone-bg.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 278169
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 04:35:28 GMT
etag: "63f0d158-43e99"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: V7AdLJsI03n638ZEGcIDEdvYe2T3l3J2hcGXwYMtBxuVNsqwOxzmaQ==
age: 5206
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/bg3.png | 143.204.55.75 | 200 OK | 1.1 MB |
URL GET HTTP/2cidxig.claa39.top/images/bg3.png IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 1308 x 1636, 8-bit/color RGBA, non-interlaced Size1.1 MB (1070578 bytes) Hash3efa811eb2e1c85b39040313dc563d5f a4f1012d9850d22d7c6078dd0d3fd5ae300afcda 8078f29589f6d516992c9a53666d72eb67f4ffc12f2773c632eac2ca36554208
GET /images/bg3.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1070578
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Tue, 07 May 2024 08:16:23 GMT
etag: "63f0d158-1055f2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: XvctBn4e4OeMjIkpjxlAhXFRbiFnCeWx4X4QrSKwZO2h-hm_lHgAQA==
age: 73145
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/jc.png | 143.204.55.75 | 200 OK | 39 kB |
URL GET HTTP/3cidxig.claa39.top/images/jc.png IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 600 x 204, 8-bit/color RGBA, non-interlaced Hash92e4de4b713a515909f82aae1d9aee74 a2e8f6ece5fd0c5020b6f3cbdaf6a27782cbd89d 322e5ea660b142cc1960047242268fdd125c54fef6af3b9f2f5b714fb5dc7dea
GET /images/jc.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cidxig.claa39.top/images/index.css?v=6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
content-length: 39003
age: 73034
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Tue, 07 May 2024 08:18:15 GMT
etag: "63f0d158-985b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: fb0PLY9x_HsRHwdV6gEpT5vMc7hnGAFBPu08A9ijyrmSZpznh1tEQw==
|
|
| cidxig.claa39.top/images/android-icon-192x192.png | 143.204.55.75 | 200 OK | 10 kB |
URL GET HTTP/3cidxig.claa39.top/images/android-icon-192x192.png IP143.204.55.75:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hashcd33e5637e34a8ec0f0395df8268c6cc 437fb01367a8d342058592f6c1d01cbac1638a3d e3eb5682e083344d17054b4a03856ff43cf3deb0ad8bb46a7c0fb6cff806a214
GET /images/android-icon-192x192.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
content-length: 10111
age: 10322
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 01:43:27 GMT
etag: "63f0d158-277f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: CZj-ZYSpPlbe8LzwHudP7e3-Dt8MR4iiI2cjt9A3KKH-kZMVGQTmfg==
|
|
| cidxig.claa39.top/images/favicon-16x16.png | 143.204.55.75 | 200 OK | 1.4 kB |
URL GET HTTP/3cidxig.claa39.top/images/favicon-16x16.png IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash819e195f79ca58ccfb5487719d0d3bd7 1b6135f01d672fb744898251e6baf4d05e0a4154 c84d01d280559e87f53ba8b601fd059bc437adc17e749e143007fcdc055b3d4e
GET /images/favicon-16x16.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
content-length: 1414
age: 1129
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 04:16:40 GMT
etag: "63f0d158-586"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: hXUNF_TuOeUVRr9ZUsmY9zHquWjwldHW9RKHqOcZg2atvlaVRhr_cQ==
|
|
| www.googletagmanager.com/gtag/js?id=G-QTT9CLMQSW&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 96 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-QTT9CLMQSW&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash1bacd8fab838dfad17070252b933b603 e85d5eefbd2dfc74ffe39bc5606dac3fdf1a6e62 bd4923893de8d8b63952e3c7a5da41eeb2a778270f3e1119266bcd81fb1fb67e
GET /gtag/js?id=G-QTT9CLMQSW&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:35:29 GMT
expires: Wed, 08 May 2024 04:35:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96216
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cidxig.claa39.top/images/close_icon.png | 143.204.55.121 | 200 OK | 454 B |
URL GET HTTP/2cidxig.claa39.top/images/close_icon.png IP143.204.55.121:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashe1ad5678d5b611bec0bae1f1b5b98b95 764937d601ae257585ccc5f025e9ae8d147ddbc1 4d159ae591e44fd8cafe6f5c4e8c2bd1b1ea9887a524d5aec22b3847444072f2
GET /images/close_icon.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 454
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Tue, 07 May 2024 08:53:50 GMT
etag: "63f0d158-1c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 6MHj9meCu_hk5m_0GkDndOW3TS6duEuCeLJ76cGbzwDsDwes2OKLjg==
age: 70899
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/logo-icon.png | 143.204.55.121 | 200 OK | 7.0 kB |
URL GET HTTP/2cidxig.claa39.top/images/logo-icon.png IP143.204.55.121:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 153 x 36, 8-bit/color RGBA, non-interlaced Hashe9764e66922908f64568ffbc3161b8f4 69dce4ea47ab1e6734930edc44226a03a015fc5c 0f1aee0c6071bb412ee40eee39041712a3bc264d026555fd5cfc1d1756165abb
GET /images/logo-icon.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7041
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 02:14:21 GMT
etag: "63f0d158-1b81"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: sNLNujK_22pmjlqC2vnUchAQGeM6DR6agXrLnBkoH2rH81SPhcY6pg==
age: 11694
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/phone2x.png | 143.204.55.121 | 200 OK | 383 B |
URL GET HTTP/2cidxig.claa39.top/images/phone2x.png IP143.204.55.121:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 28 x 40, 8-bit/color RGBA, non-interlaced Hash5083bfd9da170b1691df2bfbbb5d7708 1c4f260bf05379e622708922e31f360ac50edbc9 80d2406c083fda095b337c6673a565fb6ab10969b740f967061d3f6a3b6d61f7
GET /images/phone2x.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 383
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 02:14:21 GMT
etag: "63f0d158-17f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 3CGygakGtf_L2SquRhWjzgehv-KQePUHaXm2lm-_9oJmSN0TRrCuMg==
age: 10321
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/phone-bg.png | 143.204.55.121 | 200 OK | 278 kB |
URL GET HTTP/2cidxig.claa39.top/images/phone-bg.png IP143.204.55.121:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 658 x 480, 8-bit/color RGBA, non-interlaced Size278 kB (278169 bytes) Hasha449211692701e81b4cd77c31693a39c 3f564dbeca3eb6100d6d4e5aa54fdeaa53b124fa 3b8698fe8727da2c64634b65dc8f69b5b792ce34bd5485c385ca75ab9380bab0
GET /images/phone-bg.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 278169
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 04:35:28 GMT
etag: "63f0d158-43e99"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: NDCWpy0CuMOTBtGfLWRjz8KOjzN4w6CzC4HjcoHRLo7RlVGIqeBAIQ==
age: 5208
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/jiuban.png | 143.204.55.121 | 200 OK | 19 kB |
URL GET HTTP/2cidxig.claa39.top/images/jiuban.png IP143.204.55.121:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 372 x 220, 8-bit/color RGBA, non-interlaced Hash68321ce32e0c9786b7f3cc1b622adeec a5837702e779fb08505f7691aa5e8f3b004ff26f 5d82696d9752d4ddd2a0defb341453c0006e53a32225a733cac33912a9a5070a
GET /images/jiuban.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 18913
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 04:35:28 GMT
etag: "63f0d158-49e1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: naU4ZFyZyzBDa8v5CqQKrfOsejKdFGGSrF72qZu8BRLp5vMdqXoVCw==
age: 103
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/xinban.png | 143.204.55.121 | 200 OK | 18 kB |
URL GET HTTP/2cidxig.claa39.top/images/xinban.png IP143.204.55.121:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 372 x 220, 8-bit/color RGBA, non-interlaced Hash59c4ee73c0f0b8932b949fd7ac90bbfe 7757a8d45240e8248e2dc3c01dfee9873e55f9d1 d04b3581c098d5419730cd73ac9b936c4d6912fccbf03606fa8bfa28b106f7de
GET /images/xinban.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 17969
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 04:35:28 GMT
etag: "63f0d158-4631"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: A12Ub7VbgLJW_NCLArsP8_ANzDwPXGyb4DTq2iJIAOxxLvhE7Tpn_Q==
age: 7
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/tanhao.png | 143.204.55.121 | 200 OK | 1.0 kB |
URL GET HTTP/2cidxig.claa39.top/images/tanhao.png IP143.204.55.121:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced Hash657539296e09bf233438245bfa509c19 cf08c2bc8a282e163aa09fdd5d9dbb04e2880292 a54082e742d5af6acf7842753acfa0132b05996f55e61c3e9bd4508cd565b767
GET /images/tanhao.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1035
server: nginx
date: Wed, 08 May 2024 01:20:36 GMT
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
etag: "63f0d158-40b"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: MF03fbptNGwtWWrl_i9vprP4XVFNvQwbJ0sGg0KZKa3AEGRlnQZZlA==
age: 11694
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/haiwai.png | 143.204.55.121 | 200 OK | 1.6 kB |
URL GET HTTP/2cidxig.claa39.top/images/haiwai.png IP143.204.55.121:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced Hashc52e667e5e13fd4602bcf9bdc6441e47 4767b6dba50bfde0d8619a12b8a6d3dcfaa0a264 d842f6dae28313c66d853ebb943e7de7e09404e88a4c7caecb4009f258c9e9a4
GET /images/haiwai.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1620
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 04:35:28 GMT
etag: "63f0d158-654"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: m0Df4mtvRik5zuRPrewbptxzFzlBoUxNTCm-jsLcb8rTiCt_QHSbDA==
age: 5317
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/email-pc.png | 143.204.55.121 | 200 OK | 20 kB |
URL GET HTTP/2cidxig.claa39.top/images/email-pc.png IP143.204.55.121:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 898 x 36, 8-bit/color RGBA, non-interlaced Hash8b079c55a30e5d87666e705eb97b4d98 a312f44e12b89d87de12d39b3bf444691cc0001a 6e2149400410dd00b830667c242f54c810a608aefad93e04e9c21e14309056bd
GET /images/email-pc.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 20121
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Tue, 07 May 2024 08:53:51 GMT
etag: "63f0d158-4e99"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: qwM-cdHUPQxfSECMzsZ1q7RkDVgW8UzmToaA8r6RQ06SjC-S0AClvA==
age: 70899
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/url-icon.png | 143.204.55.121 | 200 OK | 1.1 kB |
URL GET HTTP/2cidxig.claa39.top/images/url-icon.png IP143.204.55.121:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced Hashaae47bcc1867b91054257c353dddf4ee 8de01e4d6238d66554ead5ae633bbca0b7b1bd14 841065ed4d50bc0bd4aad095b9b6cf0ad8dd62bcc01ae4ab4e326b4d7871b81f
GET /images/url-icon.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1123
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 02:14:21 GMT
etag: "63f0d158-463"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: UKJM8aQYaDzi_b8eD0FyDAhOZVvmNkdEgDPGVRuilRjBLbF8s0ZUWw==
age: 10321
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/bg3.png | 143.204.55.121 | 200 OK | 1.1 MB |
URL GET HTTP/2cidxig.claa39.top/images/bg3.png IP143.204.55.121:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 1308 x 1636, 8-bit/color RGBA, non-interlaced Size1.1 MB (1070578 bytes) Hash3efa811eb2e1c85b39040313dc563d5f a4f1012d9850d22d7c6078dd0d3fd5ae300afcda 8078f29589f6d516992c9a53666d72eb67f4ffc12f2773c632eac2ca36554208
GET /images/bg3.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1070578
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Tue, 07 May 2024 08:16:23 GMT
etag: "63f0d158-1055f2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: pfUZMJnPFoFwAP_i3cdQn17idJTZ2K9HRYsLphcjIua3_FQd8eHQWA==
age: 73147
X-Firefox-Spdy: h2
|
|
| | 172.67.142.2 | 200 OK | 109 kB |
URL User Request GET HTTP/2IP172.67.142.2:443
CertificateIssuerGoogle Trust Services LLC Subjectxjhf35705ef4.top FingerprintDD:8A:4B:9E:B8:00:56:C2:DE:31:B9:0D:BE:7C:0A:25:13:B6:06:F1 ValidityFri, 03 May 2024 05:05:55 GMT - Thu, 01 Aug 2024 05:05:54 GMT
File typeHTML document, ASCII text, with very long lines (43715) Size109 kB (109265 bytes) Hash82da8fcc7b110234174b35885ccb9e81 202a4a2143c38b450f2703d8e4e658046cc79702 6f363eee66af6612514f82b17972bc1770dde7b09ec801d2008d9077be0bbca9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: xjhf35705ef4.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 04:35:30 GMT
content-type: text/html
last-modified: Mon, 01 Apr 2024 13:39:09 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3v6Hwm559rTlEiuOV0Lf78BzJ8aarwkf9ADviB3AtxndH2YKX7hRWilKyadcU1aQlFDfr9awH%2Fiq5kMAiGqt0Q2G60QatvXyr9ktrF0MJwPOALjAdT9SLiHpycBeWiyL09LM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8806be502d007128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-3ZHR4YBDVK | 142.250.74.168 | 200 OK | 102 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-3ZHR4YBDVK IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size102 kB (101675 bytes) Hash79d3de7b70e0c37fa3dbbab9b25e3bd6 3ffd8ab201bcc73f5c5430b62e26022dba3e4260 8b809b07d4d764b67610001a0234bdbc550356105823664f939679e1ba1be7d8
GET /gtag/js?id=G-3ZHR4YBDVK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xjhf35705ef4.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:35:30 GMT
expires: Wed, 08 May 2024 04:35:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101675
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-255J96M2SG | 142.250.74.168 | 200 OK | 101 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-255J96M2SG IP142.250.74.168:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size101 kB (101113 bytes) Hashe045fb91ba0441b8ddd09186db146108 96fc32bac3deeacf1d928a0bde10782ee38d6c5d 48678cd37cbf9b6855ce4bdec4078a868b8dcf44332129c97ae602f1e2527ffa
GET /gtag/js?id=G-255J96M2SG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xjhf35705ef4.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:35:30 GMT
expires: Wed, 08 May 2024 04:35:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101113
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/jquery.3.4.1.min.js | 143.204.55.121 | 200 OK | 70 kB |
URL GET HTTP/2cidxig.claa39.top/images/jquery.3.4.1.min.js IP143.204.55.121:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashf6d6f4da51370f70b9ee8f6061f3eaca 5e1c58d85575afaae6691b3c40c1b626b94c645e 22d6ca8506c5e572215236fc80f594d0c655bf3e474d591bfb9195463167e6fa
GET /images/jquery.3.4.1.min.js HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xjhf35705ef4.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
content-encoding: gzip
date: Wed, 08 May 2024 04:35:28 GMT
etag: W/"63f0d158-15851"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: i6u06JuWaH86PV733gqIxJGlZuKreAZusg1azfuKH44qwjQ_I-WPIw==
age: 8378
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/android-icon-192x192.png | 143.204.55.121 | 200 OK | 10 kB |
URL GET HTTP/3cidxig.claa39.top/images/android-icon-192x192.png IP143.204.55.121:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hashcd33e5637e34a8ec0f0395df8268c6cc 437fb01367a8d342058592f6c1d01cbac1638a3d e3eb5682e083344d17054b4a03856ff43cf3deb0ad8bb46a7c0fb6cff806a214
GET /images/android-icon-192x192.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
content-length: 10111
age: 10324
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 01:43:27 GMT
etag: "63f0d158-277f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: C2k9-0LG0RdesEYCKWpI6h8586GR2XW36SIeRqtUM6SC16Nh5DcmfQ==
|
|
| cidxig.claa39.top/images/favicon-16x16.png | 143.204.55.121 | 200 OK | 1.4 kB |
URL GET HTTP/3cidxig.claa39.top/images/favicon-16x16.png IP143.204.55.121:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash819e195f79ca58ccfb5487719d0d3bd7 1b6135f01d672fb744898251e6baf4d05e0a4154 c84d01d280559e87f53ba8b601fd059bc437adc17e749e143007fcdc055b3d4e
GET /images/favicon-16x16.png HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
content-length: 1414
age: 1131
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
accept-ranges: bytes
date: Wed, 08 May 2024 04:16:40 GMT
etag: "63f0d158-586"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: uVhzHofQcB8cTl_mfjpTHnT9a_L3M4Z05n1UWVw6Pmn1g60fOAhrKg==
|
|
| www.googletagmanager.com/gtag/js?id=G-QTT9CLMQSW&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 96 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-QTT9CLMQSW&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash1bacd8fab838dfad17070252b933b603 e85d5eefbd2dfc74ffe39bc5606dac3fdf1a6e62 bd4923893de8d8b63952e3c7a5da41eeb2a778270f3e1119266bcd81fb1fb67e
GET /gtag/js?id=G-QTT9CLMQSW&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:35:31 GMT
expires: Wed, 08 May 2024 04:35:31 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96216
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cldc8d.top/umeng/index.php | 104.21.12.86 | 200 OK | 4.2 kB |
URL GET HTTP/3cldc8d.top/umeng/index.php IP104.21.12.86:443
CertificateIssuerLet's Encrypt Subjectcldc8d.top FingerprintFF:6B:7C:AC:20:6C:A6:A2:B8:F1:71:8E:91:0D:F2:44:81:07:6C:44 ValidityThu, 02 May 2024 08:12:31 GMT - Wed, 31 Jul 2024 08:12:30 GMT
Hash3e4490478f11fade9332c0e797aa10a3 3ca54a55fdb58708da2a4d8a4205636e816d571b 00c07120dcac18bd80075cfe7457b1e14ec94019339a76f9fd8ad06fb65efc85
GET /umeng/index.php HTTP/1.1
Host: cldc8d.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 04:35:29 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
pragma: no-cache
cache-control: public, no-cache, proxy-revalidate
set-cookie: a2640_lastvisit=0%091715142929%09%2Fumeng%2Findex.php%3F; expires=Thu, 08-May-2025 04:35:29 GMT; Max-Age=31536000; path=/; HttpOnly
a2640_lastvisit=0%091715142929%09%2Fumeng%2Findex.php%3F; expires=Thu, 08-May-2025 04:35:29 GMT; Max-Age=31536000; path=/; HttpOnly
access-control-allow-headers: *, DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-origin: *
access-control-allow-methods: GET,POST
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XG0gly%2FW28e8t6WSDNXFS5dI6eNtAf89D%2Bm7nJdgS3%2B2KEyd2yoL%2BgtbCABsjjmwHpO99VhA7isJVoGxa%2BOfri%2FGKnp1gwsrbww4uCOaI8AnV8dHAS0p%2F0e4UqhM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8806be4b2a37b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| xjhf35705ef4.top/umeng/index.php | 172.67.142.2 | 200 OK | 7.6 kB |
URL GET HTTP/3xjhf35705ef4.top/umeng/index.php IP172.67.142.2:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerGoogle Trust Services LLC Subjectxjhf35705ef4.top FingerprintDD:8A:4B:9E:B8:00:56:C2:DE:31:B9:0D:BE:7C:0A:25:13:B6:06:F1 ValidityFri, 03 May 2024 05:05:55 GMT - Thu, 01 Aug 2024 05:05:54 GMT
Hashb93846d6feaf208fe7e9d382e6940bd6 760b7e148207a1097e676716e5dd169314698b89 cf453b735a4795af5bab9ce907e4818fa5f2d28dbe87a153d2ce0e2a2ad528f3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /umeng/index.php HTTP/1.1
Host: xjhf35705ef4.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 04:35:31 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
pragma: no-cache
cache-control: public, no-cache, proxy-revalidate
set-cookie: a2640_lastvisit=0%091715142931%09%2Fumeng%2Findex.php%3F; expires=Thu, 08-May-2025 04:35:31 GMT; Max-Age=31536000; path=/; HttpOnly
a2640_lastvisit=0%091715142931%09%2Fumeng%2Findex.php%3F; expires=Thu, 08-May-2025 04:35:31 GMT; Max-Age=31536000; path=/; HttpOnly
access-control-allow-headers: *, DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-origin: *
access-control-allow-methods: GET,POST
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J206NhuyLo2GlU3xRegw4EBvj3EST6VNQ4KUrC%2BeSo6lbq0GAMks8IBOODgFqUagyAXTP4DCOfqv0l1SiMOHZtrzupiXM2Hz8Cy88aqRQNmMjCP7y2mikRG5rXyBn5jvwYx6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8806be571c1f5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cidxig.claa39.top/images/clipboard-2.0.4.min.js | 143.204.55.75 | 200 OK | 11 kB |
URL GET HTTP/2cidxig.claa39.top/images/clipboard-2.0.4.min.js IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/clipboard-2.0.4.min.js HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
content-encoding: gzip
date: Wed, 08 May 2024 02:14:20 GMT
etag: W/"63f0d158-2a02"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Sh-4fyqoOetusoWtQMk5zfpEX6K-Dd8Tm1gMcY_5e5bFrOmyKcQJ8A==
age: 13031
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/clipboard-2.0.4.min.js | 143.204.55.121 | 200 OK | 11 kB |
URL GET HTTP/2cidxig.claa39.top/images/clipboard-2.0.4.min.js IP143.204.55.121:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/clipboard-2.0.4.min.js HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
content-encoding: gzip
date: Wed, 08 May 2024 02:14:20 GMT
etag: W/"63f0d158-2a02"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: kLYOAzWIf9MqZqA0yyYYGYIykjNJe4XNxL_IQ7REDhMHYGbCFzzvuQ==
age: 13033
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/addtohomescreen.css | 143.204.55.75 | 200 OK | 10 kB |
URL GET HTTP/2cidxig.claa39.top/images/addtohomescreen.css IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (2226) Hash75e99f804bcf40e5a549e3504631e896 6dd7bd2f673f404f3329527ea8089d27f2b38585 2e3744c5a26dd057bbfbbf0d5c999cb01d696ba8aa07d79a81521601d2f357ec
GET /images/addtohomescreen.css HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
content-encoding: gzip
date: Tue, 07 May 2024 05:09:05 GMT
etag: W/"63f0d158-27ac"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: wm-pnmV222TIWzejax1SuILXsU9UNjOvoFoGIPVYbD8bgBpzNbpfEA==
age: 84382
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/index.css?v=6 | 143.204.55.121 | 200 OK | 14 kB |
URL GET HTTP/2cidxig.claa39.top/images/index.css?v=6 IP143.204.55.121:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/index.css?v=6 HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
content-encoding: gzip
date: Wed, 08 May 2024 02:14:20 GMT
etag: W/"63f0d158-38c3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: A6mxQycOkY6W5sJpWGgaxgv-sBm0dl4A6GIGS92qriu8szFE1FdM0Q==
age: 13033
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/addtohomescreen.css | 143.204.55.121 | 200 OK | 10 kB |
URL GET HTTP/2cidxig.claa39.top/images/addtohomescreen.css IP143.204.55.121:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (2226) Hash75e99f804bcf40e5a549e3504631e896 6dd7bd2f673f404f3329527ea8089d27f2b38585 2e3744c5a26dd057bbfbbf0d5c999cb01d696ba8aa07d79a81521601d2f357ec
GET /images/addtohomescreen.css HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
content-encoding: gzip
date: Tue, 07 May 2024 05:09:05 GMT
etag: W/"63f0d158-27ac"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: VzUu5NumEXYZ-JbRJkQhqS1bdejvFM0RLVj2Youp7Ah0zNNg00Ef3w==
age: 84384
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/addtohomescreen.js | 143.204.55.75 | 200 OK | 34 kB |
URL GET HTTP/2cidxig.claa39.top/images/addtohomescreen.js IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/addtohomescreen.js HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cldc8d.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
content-encoding: gzip
date: Wed, 08 May 2024 02:14:20 GMT
etag: W/"63f0d158-840b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: N8r_MzmkL_nsIAbEbHrtcbqyxlTOJauszxKMiTQcjhXAoifjIMy86w==
age: 12471
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/index.js?v=6 | 143.204.55.75 | 200 OK | 5.5 kB |
URL GET HTTP/2cidxig.claa39.top/images/index.js?v=6 IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (5740), with no line terminators Hash9af352edd8310297d8e4b01092c3b7bc 721e7972d2618643643738242ea3e815b776d965 f1ee1dfbf4119b09d88dc0f2608cc3c61729ee2bd36f21d5872f53ac4966b1fc
GET /images/index.js?v=6 HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cldc8d.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Sat, 18 Feb 2023 13:34:57 GMT
content-encoding: gzip
date: Wed, 08 May 2024 04:35:28 GMT
etag: W/"63f0d401-1571"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: AfSNotABLL2QQFlDpgW0DmvEa3xfXpydcGOcfdPa2k4Q0Et_GINZAQ==
age: 5557
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/addtohomescreen.js | 143.204.55.121 | 200 OK | 34 kB |
URL GET HTTP/2cidxig.claa39.top/images/addtohomescreen.js IP143.204.55.121:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/addtohomescreen.js HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xjhf35705ef4.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
content-encoding: gzip
date: Wed, 08 May 2024 02:14:20 GMT
etag: W/"63f0d158-840b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: RMgF5JTxSeAq3-3eCR6EVqMl2XxTcVMyTn7qWCes6FKGA1wu27HByw==
age: 12473
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/index.js?v=6 | 143.204.55.121 | 200 OK | 5.5 kB |
URL GET HTTP/2cidxig.claa39.top/images/index.js?v=6 IP143.204.55.121:443
Requested byhttps://xjhf35705ef4.top/ CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (5740), with no line terminators Hash9af352edd8310297d8e4b01092c3b7bc 721e7972d2618643643738242ea3e815b776d965 f1ee1dfbf4119b09d88dc0f2608cc3c61729ee2bd36f21d5872f53ac4966b1fc
GET /images/index.js?v=6 HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xjhf35705ef4.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Sat, 18 Feb 2023 13:34:57 GMT
content-encoding: gzip
date: Wed, 08 May 2024 04:35:28 GMT
etag: W/"63f0d401-1571"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 7WGK67O0li546np6SYgwIPU6OZ4tp61Gg-GlXSIg8Jmi_ODsCKW4Jg==
age: 5559
X-Firefox-Spdy: h2
|
|
| cidxig.claa39.top/images/index.css?v=6 | 143.204.55.75 | 200 OK | 14 kB |
URL GET HTTP/2cidxig.claa39.top/images/index.css?v=6 IP143.204.55.75:443
CertificateIssuerAmazon Subjectcig.claa39.top FingerprintD8:36:5F:2B:FE:6A:3B:C4:76:D4:12:29:31:64:8D:78:84:74:D2:08 ValidityTue, 24 Oct 2023 00:00:00 GMT - Thu, 21 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/index.css?v=6 HTTP/1.1
Host: cidxig.claa39.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Sat, 18 Feb 2023 13:23:36 GMT
content-encoding: gzip
date: Wed, 08 May 2024 02:14:20 GMT
etag: W/"63f0d158-38c3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: uys3mH4BlYzRiumfjtaQocm9eaxiEPf7H7VX2dVU-7_lVz3-RL-N2Q==
age: 13031
X-Firefox-Spdy: h2
|
|