r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8118
Expires: Sat, 03 Dec 2022 11:14:00 GMT
Date: Sat, 03 Dec 2022 08:58:42 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5201
Cache-Control: max-age=97154
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 08:58:42 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 11:57:56 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4536
Expires: Sat, 03 Dec 2022 10:14:18 GMT
Date: Sat, 03 Dec 2022 08:58:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 08:18:14 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2428
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: lgrc+Y/fTGyhRaenk6cv9PvUY2vxgufscumQKDzY6mTitHx7srqSjws0QfAsQuuqWDELZeS9r2w=
x-amz-request-id: C094NNJQ5JZ0PZ8X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 08:46:30 GMT
age: 732
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 08:58:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
biosindir.com/
173.232.32.226301 Moved Permanently 178 B IP 173.232.32.226:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Dec 2022 08:58:42 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: http://www.biosindir.com/
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 08:08:58 GMT
cache-control: public,max-age=3600
age: 2984
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.biosindir.com/
173.232.32.226200 OK 6.4 kB IP 173.232.32.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2196), with CRLF, LF line terminators
Hash 1ef6504421ca435ff11815484c25cef9
5092b93af14f64e985cb3d483eaebfccddd44b0d
5d38d6725e3dca88dd9e818566d3822a34dc0deac2829b51d9278c50428a0d68
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:42 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5200
Cache-Control: max-age=92091
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 08:58:43 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:33:34 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.163.49.154101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.49.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 29wXy7c+UgyNBL3zsWDgqQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +bIddE8klaxJGq/8UUEj02qQkJA=
www.biosindir.com/jquery.20.min.js
173.232.32.226200 OK 241 B URL HTTP/1.1 www.biosindir.com/jquery.20.min.js
IP 173.232.32.226:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 8ee22e7b5f638e1c510c03b268ad07c2
0f745dda31bacb16227df9000405e90f50af518a
381d7708f7edb83ad2f1080a2e363c59d3324a86afcc0e51a18e2479532f2342
Analyzer Verdict Alert fortinet Phishing
GET /jquery.20.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: application/javascript
Content-Length: 241
Last-Modified: Fri, 02 Sep 2022 07:43:18 GMT
Connection: keep-alive
ETag: "6311b416-f1"
Expires: Sat, 03 Dec 2022 09:58:43 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
www.biosindir.com/Tpl/Home/default/Public/css/reset.css
173.232.32.226200 OK 498 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/css/reset.css
IP 173.232.32.226:0
Hash a694aef285c05369d403dc49775be077
b6d77805a7ea81543fb408b6e25a0bc961baa444
9627f5db8158529cdf54a6798ab66baea5cb4102f65b3359fc56ada5c01867cf
GET /Tpl/Home/default/Public/css/reset.css HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/Tpl/Home/default/Public/css/webmain.css
173.232.32.226200 OK 4.6 kB URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/css/webmain.css
IP 173.232.32.226:0
Hash 35aa0e4121a8bd3290ad1b0626d71793
3cc788cc0eb850c0bb656df7a3037ad045a03ed7
6cd17d85d6d949113d4b302ff961011505b21281c25f94a61ae7caecc694e5ee
GET /Tpl/Home/default/Public/css/webmain.css HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/Public/js/cookie.js
173.232.32.226200 OK 480 B URL HTTP/1.1 www.biosindir.com/Public/js/cookie.js
IP 173.232.32.226:0
File type ASCII text, with very long lines (989)
Hash ea99888b85d99780ea6ad41707b1ee77
1790e8315a7027f317f5f584c774a8838da0a780
e39835ec32d01a54d5c8173eb5dc2b43c37bf4e9a29dc673147cccb2613d0e35
Analyzer Verdict Alert fortinet Phishing
GET /Public/js/cookie.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/Tpl/Home/default/Public/css/ddsmoothmenu.css
173.232.32.226200 OK 1.8 kB URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/css/ddsmoothmenu.css
IP 173.232.32.226:0
Hash c1f8880ddb0095b377d8c19fea78ab9d
6ad1efe698d02396d01db0ce6566260572512de1
ba092e614bb5b327deb25e14466f91a59b67589b60bdd73a8c977443312d875c
GET /Tpl/Home/default/Public/css/ddsmoothmenu.css HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.4.2.min.js
173.232.32.226200 OK 28 kB URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.4.2.min.js
IP 173.232.32.226:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (820)
Hash 7434c4111a90e0b11034e6529f8afbc0
07aad0196fa92cbc240a5f3e0e9c30b297e4c5c5
f4f94294f5658f44982b9cb2f7d0b63d56763b25a0a44f48c39dcb6da59ddcf2
Analyzer Verdict Alert fortinet Phishing
GET /Tpl/Home/default/Public/js/jquery-1.4.2.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js
173.232.32.226200 OK 3.8 kB URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js
IP 173.232.32.226:0
File type ISO-8859 text, with very long lines (419)
Hash 8cecf3ad205e59c6600ada4e4d3832ee
55fec1ba9385a6eaa7d3ae4b284d3b817c02059c
e92ba472ea8b48a31bffb5abcee2142eed58224d38472d96d70947265b517476
Analyzer Verdict Alert fortinet Phishing
GET /Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/Tpl/Home/default/Public/css/style.css
173.232.32.226200 OK 4.6 kB URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/css/style.css
IP 173.232.32.226:0
Hash 962cd9e3ddf0a148e8ce479baca5d2bb
ea5d2e74e2eb0d94919168fd2b24bc0713966088
ff24cf3755e0bf03be37d9df101e587c1c5c2bce06073bb6ab4dbcad700895b7
GET /Tpl/Home/default/Public/css/style.css HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/Tpl/Home/default/Public/js/ddsmoothmenu.js
173.232.32.226200 OK 3.0 kB URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/js/ddsmoothmenu.js
IP 173.232.32.226:0
File type Unicode text, UTF-8 (with BOM) text
Hash 184a3417199b66749356a97a115292d2
c1201fb7b2725763e435258e721c5ce57a7f43fd
101ba403b716b16b4f400d3f13e5b5753311e0e26ee6bc148f598250d71fbf71
Analyzer Verdict Alert fortinet Phishing
GET /Tpl/Home/default/Public/js/ddsmoothmenu.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/Tpl/Home/default/Public/js/webtry_roll.js
173.232.32.226200 OK 2.1 kB URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/js/webtry_roll.js
IP 173.232.32.226:0
File type Unicode text, UTF-8 text, with very long lines (5966)
Hash 17046f885d5d8ac887b993648c51ac6f
e30e77364234ce991ed099734a6d6c3d065091e5
a5f134ddc4e6787f2d14da2158a2a2173d6aff4faf4d9086a13910368b2963ef
Analyzer Verdict Alert fortinet Phishing
GET /Tpl/Home/default/Public/js/webtry_roll.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/Tpl/Home/default/Public/js/jquery.jslides.js
173.232.32.226200 OK 892 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/js/jquery.jslides.js
IP 173.232.32.226:0
File type HTML document, Unicode text, UTF-8 (with BOM) text
Hash 9cebdf4b68ad6766a3e359836fcff97f
9b40fd36ba3859ee3a89cfa1e2d164150e827c60
bc44a51726135e667f689139c99b646b342d125ab022d607c9983145535983d7
Analyzer Verdict Alert fortinet Phishing
GET /Tpl/Home/default/Public/js/jquery.jslides.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/Tpl/Home/default/Public/js/responsiveslides.min.js
173.232.32.226200 OK 1.8 kB URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/js/responsiveslides.min.js
IP 173.232.32.226:0
File type HTML document, ASCII text
Hash eef7dfa2527d84f517017cc66951036f
a62f63f815f84feba54c186ca8845017ca941386
6dd617814413126e5abf7cd5082ca12baa22b91a9627162e470bb2fb0514b77b
Analyzer Verdict Alert fortinet Phishing
GET /Tpl/Home/default/Public/js/responsiveslides.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8203
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 08:58:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8203
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 08:58:44 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16208
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 08:58:44 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16208
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 08:58:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:02:08 GMT
age: 14196
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 40058
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ffa12df550123f63b20f67437cd8a04
398fd2d837c73f54c4591b69cd683f29bdf9184a
fd9ac4396488098923c27531295e64475047dd008a901e59915109a73a69f305
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6119
x-amzn-requestid: cac5842e-2b57-4eda-9b09-27ec8a0b1bf8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMiE7Hq0oAMFzHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381b085-151f123551f999a918de8a3a;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 06:21:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mrS561ug59NStQyD3cH4ndqGvY3QiLVeMFOoC86ktj52PghNjeYa5w==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 20:55:39 GMT
age: 43385
etag: "398fd2d837c73f54c4591b69cd683f29bdf9184a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 249aec334460c66dc88b9e8def4e48df
f86d1d278ba5b24587b10519b1b30d75044efd97
b083151804ced0533a5b33302ef110b50ddc4bf653de0fb8f6c7711f4bc29fe2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9449
x-amzn-requestid: c21c52f9-d971-46d9-b632-0439a0e23da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZkxHKbIAMFxkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6fb7-2b8cc0982af568626f4a4bbf;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:35:51 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XFIpOllaPcRJOsgZI2EVDyFv-Doz62OcY6gxFlejoXxdeVGya-PNFg==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:53:26 GMT
age: 39918
etag: "f86d1d278ba5b24587b10519b1b30d75044efd97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 436b46a2eea584bd8ec1dba5603c8659
fed437d1919af63f9d58396f318568aadae3d868
fff21dd129f35807bfc29c6582661a79e764238076e540968b57fcad18811566
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8016
x-amzn-requestid: bfb5f288-4467-467a-9b30-1055a4e6bc54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZPeE4nIAMFvnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2f-53a5a66704157f4e003ecfa4;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:35 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lUqXgbpEaZh9DO_rv0K5pzHUAF1DsASkKYNTU6t5AUWZjHNV9LRojA==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:05 GMT
age: 39459
etag: "fed437d1919af63f9d58396f318568aadae3d868"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcdb77a21f91a4a280ac9a8efbc48bbd
74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d
5ee7c45f21b38c653d03a24b10a190a9e9266226d221b006e787cd3719088d7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11233
x-amzn-requestid: 89afb72e-6967-47d0-a0ad-48cad8cd08e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIpgOEi0oAMFstg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638022ce-1e8087e734e71d611df75830;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 02:05:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d9wLy3xAxK6RiYf25v_GFT1gdezT8IzMxaFyGRuGm2nxOBh6uEOg3w==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:29 GMT
age: 39435
etag: "74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.biosindir.com/Tpl/Home/default/Public/js/slide.js
173.232.32.226200 OK 168 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/js/slide.js
IP 173.232.32.226:0
Hash cb90281f76b3d9a2be354a5740946973
2a34a9dd10f6a2c03e16c2cfe4afeb6681c5e0bf
2dbfeec39d9b1646ce9405316c4a36bd0832bd5f06a18c4ddc6ee81eb01c5089
Analyzer Verdict Alert fortinet Phishing
GET /Tpl/Home/default/Public/js/slide.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/jquery.la.min.js
173.232.32.226200 OK 253 B URL HTTP/1.1 www.biosindir.com/jquery.la.min.js
IP 173.232.32.226:0
Hash c8f295b7d168cfcdb83a8a09ce784f2e
6bfd43f1abe424018dff1485abbfa4b410f00eb9
39b35b18ca163afcd31f9b384018853a9e7d40eebf21723cefa161e2453f1eed
Analyzer Verdict Alert fortinet Phishing
GET /jquery.la.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript
Content-Length: 253
Last-Modified: Fri, 02 Sep 2022 07:43:18 GMT
Connection: keep-alive
ETag: "6311b416-fd"
Expires: Sat, 03 Dec 2022 09:58:44 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 8c4b1314ed9800b33cd26a8e243f9c26
2c0ad10528d236eeb50dcfa4448812e2c03941ac
38a9b4741897e13622189cb609bb6b0b1b3b18ca17670240d11e553da01c8f88
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 07 Dec 2022 05:24:24 GMT
ETag: "2c0ad10528d236eeb50dcfa4448812e2c03941ac"
Last-Modified: Sat, 03 Dec 2022 05:24:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2734
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773b1a2ef8ccfac0-OSL
www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.8.0.min.js
173.232.32.226200 OK 37 kB URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.8.0.min.js
IP 173.232.32.226:0
File type Unicode text, UTF-8 text, with very long lines (60944), with CRLF, LF line terminators
Hash e82dabb42c164bb5ce0b664c6b9fd0a1
43a5b0985c42dec0d128b4007beca44d4c12bba8
d37fbda30189c1a13efec0a7daa161c73f05b13220734f26e61a2cb1e31cf55b
Analyzer Verdict Alert fortinet Phishing
GET /Tpl/Home/default/Public/js/jquery-1.8.0.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
p1.qhimg.com/d/_onebox/search.png
54.230.111.108200 OK 2.9 kB URL HTTP/1.1 p1.qhimg.com/d/_onebox/search.png
IP 54.230.111.108:0
File type PNG image data, 260 x 43, 8-bit colormap, non-interlaced\012- data
Hash 996729035d9ea7dbd1dcf49bf99e78d9
aba797d529929ca0c864eaf7d3261aee61f3ad78
f7b46e16e323b71d7e8308e8aa62ab36453dd3b57935424f4b4166947f0e5863
GET /d/_onebox/search.png HTTP/1.1
Host: p1.qhimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2941
Connection: keep-alive
Date: Mon, 21 Nov 2022 18:05:46 GMT
Last-Modified: Tue, 05 Jan 2021 11:28:00 GMT
xzp: zhkbrquvsxaf
Expires: Sun, 19 Feb 2023 18:05:46 GMT
Cache-Control: max-age=7776000
Access-Control-Allow-Origin: *
XCS: HIT
KCS-Via: MISS from w-fc03.lato;MISS from w-sc02.bjyt
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SFen4mmSww5aDdcl8nR90TNLhzJxMhwDrM6anBc5hGqOIsvzSPIdSQ==
Age: 1003978
www.biosindir.com/Tpl/Home/default/Public/js/jquery.min.js
173.232.32.226200 OK 38 kB URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/js/jquery.min.js
IP 173.232.32.226:0
File type ASCII text, with very long lines (32038)
Hash f46c368601c2bcaefe072a412857c9e7
b10cce460872e7a741ff4b6421c3d042d3983958
c47b64ac651dfe7fc0400f1980d363405b6b942c4c8c5f9d17036f4b6a49a757
Analyzer Verdict Alert fortinet Phishing
GET /Tpl/Home/default/Public/js/jquery.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 97061fd267e899efe9d736b0410c689d
b5a39bc7baeb21aabea27b82242eac6f009001e7
2e9b9913d8058385fcb8b682692295e04a84889ab36e9fe43b0a20a3a55853e0
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 03 Dec 2022 08:58:45 GMT
last-modified: Wed, 30 Nov 2022 16:40:30 GMT
expires: Wed, 07 Dec 2022 16:40:29 GMT
etag: "b5a39bc7baeb21aabea27b82242eac6f009001e7"
cache-control: max-age=600238,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
accept-ranges: bytes
cf-ray: 773b1a2e5fc26957-FRA
via: cache8.l2de2[195,0], cache7.se1[216,0], cache1.se1[218,0]
timing-allow-origin: *, *
eagleid: 2ff62c9516700579248207333e, 2ff62c9516700579248207333e
www.biosindir.com/Tpl/Home/default/Public/images/2.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/2.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/2.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/2.jpg
www.biosindir.com/Tpl/Home/default/Public/images/1.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/1.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/1.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/1.jpg
www.biosindir.com/Upload/60ebe39bad724.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Upload/60ebe39bad724.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Upload/60ebe39bad724.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe39bad724.jpg
www.biosindir.com/Upload/60ebe247a2230.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Upload/60ebe247a2230.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Upload/60ebe247a2230.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe247a2230.jpg
www.biosindir.com/Tpl/Home/default/Public/images/cp-tit.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/cp-tit.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/cp-tit.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-tit.jpg
www.myyilufa888.com/ff/pp.js
50.3.187.107200 OK 1.9 kB URL HTTP/1.1 www.myyilufa888.com/ff/pp.js
IP 50.3.187.107:0
File type HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (559), with CRLF line terminators
Hash beecb20cae1291abfba2955779241436
0dc6a362525b453b482751f49b760b2834729e09
8dc965875ffd38f509982bb12a700f245ff348416b4c805ead19250bfb686ef8
GET /ff/pp.js HTTP/1.1
Host: www.myyilufa888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 29 Oct 2022 02:48:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"635c948d-1a24"
Content-Encoding: gzip
www.biosindir.com/Upload/6319a8e2aefc4.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Upload/6319a8e2aefc4.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Upload/6319a8e2aefc4.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/6319a8e2aefc4.jpg
www.biosindir.com/Upload/60ebe4cca49b7.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Upload/60ebe4cca49b7.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Upload/60ebe4cca49b7.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe4cca49b7.jpg
www.biosindir.com/Upload/60ebe45de5ec6.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Upload/60ebe45de5ec6.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Upload/60ebe45de5ec6.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe45de5ec6.jpg
www.biosindir.com/Upload/60ebe5fbd892d.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Upload/60ebe5fbd892d.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Upload/60ebe5fbd892d.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe5fbd892d.jpg
www.biosindir.com/Upload/60ebe5ab8ab5b.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Upload/60ebe5ab8ab5b.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Upload/60ebe5ab8ab5b.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe5ab8ab5b.jpg
www.biosindir.com/Upload/60ebe56c04e5d.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Upload/60ebe56c04e5d.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Upload/60ebe56c04e5d.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe56c04e5d.jpg
www.biosindir.com/Tpl/Home/default/Public/images/xw-img.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/xw-img.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/xw-img.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img.jpg
www.biosindir.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js
173.232.32.226200 OK 3.8 kB URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js
IP 173.232.32.226:0
File type ISO-8859 text, with very long lines (419)
Hash 8cecf3ad205e59c6600ada4e4d3832ee
55fec1ba9385a6eaa7d3ae4b284d3b817c02059c
e92ba472ea8b48a31bffb5abcee2142eed58224d38472d96d70947265b517476
Analyzer Verdict Alert fortinet Phishing
GET /Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.biosindir.com/Tpl/Home/default/Public/images/top-tel.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/top-tel.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/top-tel.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/top-tel.jpg
www.biosindir.com/Tpl/Home/default/Public/images/logo.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/logo.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/logo.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/logo.jpg
www.baidu.com/img/baidu_jgylogo3.gif
104.193.88.123200 OK 705 B URL HTTP/1.1 www.baidu.com/img/baidu_jgylogo3.gif
IP 104.193.88.123:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 117 x 38\012- data
Hash 803bb46a6acef395ed9353de2dcf26f5
684764e45ebb267a15c337a6eb671047c7873ead
dc506b4253e2bb145e5b370f6088842382a8c2bd0632d9b265744f706727f7f5
GET /img/baidu_jgylogo3.gif HTTP/1.1
Host: www.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=315360000
Content-Length: 705
Content-Type: image/gif
Date: Sat, 03 Dec 2022 08:58:45 GMT
Etag: "2c1-4a6473f6030c0"
Expires: Tue, 30 Nov 2032 08:58:45 GMT
Last-Modified: Wed, 22 Jun 2011 06:40:43 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=D83FD8C30E1E682057347197BD897366:FG=1; expires=Sun, 03-Dec-23 08:58:45 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
www.biosindir.com/Tpl/Home/default/Public/images/xw-tit.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/xw-tit.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/xw-tit.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-tit.jpg
www.biosindir.com/Tpl/Home/default/Public/images/about-img.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/about-img.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/about-img.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/about-img.jpg
www.biosindir.com/Tpl/Home/default/Public/images/banquan.png
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/banquan.png
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/banquan.png HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/banquan.png
www.biosindir.com/Tpl/Home/default/Public/images/footer-logo.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/footer-logo.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/footer-logo.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/footer-logo.jpg
www.biosindir.com/Tpl/Home/default/Public/images/xw-img1.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/xw-img1.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/xw-img1.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img1.jpg
www.biosindir.com/Tpl/Home/default/Public/images/4.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/4.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/4.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/4.jpg
www.biosindir.com/Tpl/Home/default/Public/images/cp-bg.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/cp-bg.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/cp-bg.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/Tpl/Home/default/Public/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-bg.jpg
www.biosindir.com/Tpl/Home/default/Public/images/about-bg.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/about-bg.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/about-bg.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/Tpl/Home/default/Public/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/about-bg.jpg
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash a26ecfb026b1d13a10b75a48b2fb76b0
56aa0f2f9096fcffd1c322801c02aa3759b3431e
0690d8a6c505a7a4fcd95d6c276400ae649a49be698312519b0cf6dfc0b12c35
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 07 Dec 2022 05:33:52 GMT
ETag: "56aa0f2f9096fcffd1c322801c02aa3759b3431e"
Last-Modified: Sat, 03 Dec 2022 05:33:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 234
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773b1a341bc6fac0-OSL
www.biosindir.com/Tpl/Home/default/Public/images/themes.gif
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/themes.gif
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/themes.gif HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/Tpl/Home/default/Public/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/themes.gif
www.biosindir.com/Tpl/Home/default/Public/images/ys-bg.jpg
173.232.32.226302 Moved Temporarily 0 B URL HTTP/1.1 www.biosindir.com/Tpl/Home/default/Public/images/ys-bg.jpg
IP 173.232.32.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Tpl/Home/default/Public/images/ys-bg.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/Tpl/Home/default/Public/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/ys-bg.jpg
www.biosindir.com/home/public/getOnline.html
173.232.32.226200 OK 31 B URL HTTP/1.1 www.biosindir.com/home/public/getOnline.html
IP 173.232.32.226:0
File type JSON data\012- , ASCII text, with no line terminators
Hash cf617f528c3c72eb7fc4b080420ab816
8ce4440ce428202102f5d59fa92495fc626835ea
8762ede700f7770f918576b4ab26a348f3620054d0a2b1c5b3c9694e74d122cd
Analyzer Verdict Alert fortinet Phishing
POST /home/public/getOnline.html HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Origin: http://www.biosindir.com
Connection: keep-alive
Referer: http://www.biosindir.com/
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 1c4791fc653dea2a9a8b08f9ba7c33ee
3a927a278e87cd63dd7342ca40b1d06e341d869f
c725a9580407cf98b9e9871bf5a3ebf89e13e35d6673187d44ddd657eef2ca51
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 03 Dec 2022 08:58:46 GMT
last-modified: Thu, 01 Dec 2022 19:27:54 GMT
expires: Thu, 08 Dec 2022 19:27:53 GMT
etag: "3a927a278e87cd63dd7342ca40b1d06e341d869f"
cache-control: max-age=581209,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb5
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
accept-ranges: bytes
cf-ray: 773b1a35ae1b92b3-FRA
via: cache19.l2de2[30,0], cache7.se1[53,0], cache1.se1[55,0]
timing-allow-origin: *, *
eagleid: 2ff62c9516700579259938115e, 2ff62c9516700579259938115e
www.mylf888.com/dan/indexsun.html
50.3.187.42200 OK 1.3 kB URL HTTP/1.1 www.mylf888.com/dan/indexsun.html
IP 50.3.187.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 7b08a56e74a947d1ede46fbf50ba56a4
4767a75baa1b102b91932c060463db94a8fe26b3
8b41247fbbb5dacee0198734bd601e68d0f38c032186be1e95550e99fec6ebb4
GET /dan/indexsun.html HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: text/html
Last-Modified: Sat, 29 Oct 2022 02:39:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"635c9251-1858"
Content-Encoding: gzip
www.mylf888.com/dan/js/zhongguomeng.js
50.3.187.42200 OK 991 B URL HTTP/1.1 www.mylf888.com/dan/js/zhongguomeng.js
IP 50.3.187.42:0
File type ASCII text, with CRLF line terminators
Hash 615baf7c4369cb0704e2c74b4f36e325
3249968cece020ae5c13174724d479a2597acef4
0aa4c844b0eac5bb878dc622ba576ef4d674e875bae9c9560ab03e90c0120e60
GET /dan/js/zhongguomeng.js HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: application/javascript
Content-Length: 991
Last-Modified: Sat, 03 Dec 2022 05:49:09 GMT
Connection: keep-alive
ETag: "638ae355-3df"
Accept-Ranges: bytes
www.sogou.com/web/index/images/logo_440x140.v.4.png
119.28.109.132200 OK 3.0 kB URL HTTP/1.1 www.sogou.com/web/index/images/logo_440x140.v.4.png
IP 119.28.109.132:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 440 x 140, 8-bit colormap, non-interlaced\012- data
Hash 31de1d2fa7d918fab2f59984391db1c8
4f4b78796b3fbf19971f182175bcd92b01ee470f
29f87d6615f36a54e3edc8c7f05eb9b480d1f2989dec8da68e82747d060aea85
GET /web/index/images/logo_440x140.v.4.png HTTP/1.1
Host: www.sogou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/png
Content-Length: 2950
Connection: keep-alive
Last-Modified: Mon, 10 Feb 2020 03:11:55 GMT
Set-Cookie: ABTEST=8|1670057926|v17; expires=Mon, 02-Jan-23 08:58:46 GMT; path=/
IPLOC=NO; expires=Sun, 03-Dec-23 08:58:46 GMT; domain=.sogou.com; path=/
SUID=9A2A5A5B1431A40A00000000638B0FC6; expires=Fri, 28-Nov-2042 08:58:46 GMT; domain=.sogou.com; path=/
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
ETag: "5e40c9fb-b86"
Expires: Thu, 01 Jun 2023 08:58:46 GMT
Cache-Control: max-age=15552000
UUID: c61fb91c-2e81-4737-bb5e-72bc08b9667f
Accept-Ranges: bytes
www.mylf888.com/jquery.la.min.js
50.3.187.42404 Not Found 162 B URL HTTP/1.1 www.mylf888.com/jquery.la.min.js
IP 50.3.187.42:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 70461da8b94c6ca5d2fda3260c5a8c3b
994bc667720c21257500e29038c1a5f61e25da1e
f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
GET /jquery.la.min.js HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
www.mylf888.com/dan/index.css
50.3.187.42200 OK 505 B URL HTTP/1.1 www.mylf888.com/dan/index.css
IP 50.3.187.42:0
Hash 64264c1ffc415ab97cc63ea904ff0304
a5ad17b604051533e9bf9cd0b50e52fba75f943c
d8859eafd3778ea6403a584689b6511243cb0e39b51f182b7d7b09c21ce28e5e
GET /dan/index.css HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: text/css
Last-Modified: Tue, 11 May 2021 11:00:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"609a63c6-453"
Content-Encoding: gzip
www.guangzhuangji.com/Tpl/Home/default/Public/images/themes.gif
58.64.153.48200 OK 338 B URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/themes.gif
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type GIF image data, version 89a, 76 x 61\012- data
Hash d99c9f0ee5a835be0ce3144163c2e180
3394c15ed015edb587790151d0bf9b03790ff9fc
4b7551fd557cbb80e896c3380e39758e382855789bd93025c9da5b7e9159c92d
GET /Tpl/Home/default/Public/images/themes.gif HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:45 GMT
ETag: "167-5a8d266cf1840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 338
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: image/gif
www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-tit.jpg
58.64.153.48200 OK 6.9 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-tit.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 329x25, components 3\012- data
Hash 0b1e079d59c87e6b1f614cbb8005cf8c
7ae69c965a75f1f998bd39b467bfdb0883a0fa64
8348db900a24c090ae2b8efa1a333ca3af869bfd3a45d0f67a4728df205845d3
GET /Tpl/Home/default/Public/images/cp-tit.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:27 GMT
ETag: "1c41-5a8d265bc6fc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6914
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
hm.baidu.com/hm.js?f1398b8b70058bb06149bcd5b7d8f911
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?f1398b8b70058bb06149bcd5b7d8f911
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash 3963f0a5b7f746d284bff9f053337e86
ca485967f7c520b18f81824f7e1825ddc3468906
db575ca7667077c021a17f829a7253e4df14ae10d6c5c6ea368a9cfe5e6c704b
GET /hm.js?f1398b8b70058bb06149bcd5b7d8f911 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Sat, 03 Dec 2022 08:58:46 GMT
Etag: cb4e9b569d4ef31f4725b010d2e9925f
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B801BD6D360D6DB1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
www.mylf888.com/dan/img/bwin1000.gif
50.3.187.42200 OK 57 kB URL HTTP/1.1 www.mylf888.com/dan/img/bwin1000.gif
IP 50.3.187.42:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 2e599e6d4d3d33ff4de9f6729899c960
ba96b8f555d5907c0b67c723aaeba8250098e61c
3bba9661f9ad5b20934c5a85fdb31b01006948f2dcb27ff7f81cbd958b2c4fb5
GET /dan/img/bwin1000.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/gif
Content-Length: 57413
Last-Modified: Mon, 23 May 2022 07:41:45 GMT
Connection: keep-alive
ETag: "628b3ab9-e045"
Accept-Ranges: bytes
www.mylf888.com/dan/img/ld891.jpg
50.3.187.42200 OK 222 kB URL HTTP/1.1 www.mylf888.com/dan/img/ld891.jpg
IP 50.3.187.42:0
File type PNG image data, 2100 x 150, 8-bit colormap, non-interlaced\012- data
Size 222 kB (222004 bytes)
Hash c514cc26a8bbf5cb52abdf9ab9e68980
18199a677d4fbb0cf0a1c7f9af076c2ae76fb4cb
3a39dc076d1c0bfec10debd1c0f54249d89036049dad5f24255eb2e6b610b27d
GET /dan/img/ld891.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/jpeg
Content-Length: 222004
Last-Modified: Tue, 26 Jul 2022 08:11:41 GMT
Connection: keep-alive
ETag: "62dfa1bd-36334"
Accept-Ranges: bytes
www.mylf888.com/dan/img/xintyc.gif
50.3.187.42200 OK 362 kB URL HTTP/1.1 www.mylf888.com/dan/img/xintyc.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 1020 x 85\012- data
Size 362 kB (362518 bytes)
Hash bcbf48cc8ce9f196243aa50fb754f4cd
6a5efd0572153c8721f6a4e0a16db1d167d13592
06f6e6b9728c7d2ad9d0015202ff0d4cab15ec15ac50404964b301cf96fc8f07
GET /dan/img/xintyc.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/gif
Content-Length: 362518
Last-Modified: Wed, 02 Jun 2021 01:49:08 GMT
Connection: keep-alive
ETag: "60b6e394-58816"
Accept-Ranges: bytes
www.mylf888.com/dan/img/kaiyun100.jpg
50.3.187.42200 OK 64 kB URL HTTP/1.1 www.mylf888.com/dan/img/kaiyun100.jpg
IP 50.3.187.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1090x141, components 3\012- data
Hash baba23b989f46d56bf7bccbcb684f8a9
efba0da806c3e339335d1b5716af81df13da42aa
d94177e2f5bb8337e610eb21f1a78380179d5d5e7703d85ae9f15e45f77d46fd
GET /dan/img/kaiyun100.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/jpeg
Content-Length: 63943
Last-Modified: Sat, 29 Oct 2022 03:38:51 GMT
Connection: keep-alive
ETag: "635ca04b-f9c7"
Accept-Ranges: bytes
www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-bg.jpg
58.64.153.48200 OK 15 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-bg.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x892, components 3\012- data
Hash bc25093d53d19e07339cd4df7a443cd8
f55f2cbbbe2e5f65ec41c50a318c53e1cbcd7fc9
00efdc9ff6884728bb30111ad45cfc2480a0d8aee3a31114ed0c020d6c416a0a
GET /Tpl/Home/default/Public/images/cp-bg.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:24 GMT
ETag: "83ab-5a8d2658ea900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14783
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.mylf888.com/jquery.la.min.js
50.3.187.42404 Not Found 162 B URL HTTP/1.1 www.mylf888.com/jquery.la.min.js
IP 50.3.187.42:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 70461da8b94c6ca5d2fda3260c5a8c3b
994bc667720c21257500e29038c1a5f61e25da1e
f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
GET /jquery.la.min.js HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
www.mylf888.com/dan/img/blakimg.jpg
50.3.187.42200 OK 122 kB URL HTTP/1.1 www.mylf888.com/dan/img/blakimg.jpg
IP 50.3.187.42:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x1400, components 3\012- data
Size 122 kB (122095 bytes)
Hash 32a8354488a992361e0a9c29f87f0eeb
585df2d841f06ab2852e7f030b12cc2d40bb5c0e
46d8ee2ab6daa69ec6c8b1b99a6264e4879524cfe9e8b49bb05914d478fa4824
GET /dan/img/blakimg.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/index.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 122095
Last-Modified: Tue, 11 May 2021 10:59:22 GMT
Connection: keep-alive
ETag: "609a638a-1dcef"
Accept-Ranges: bytes
www.mylf888.com/dan/img/tyc999.gif
50.3.187.42200 OK 212 kB URL HTTP/1.1 www.mylf888.com/dan/img/tyc999.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 1000 x 300\012- data
Size 212 kB (211787 bytes)
Hash 2342695d65196553e9e5b823fb0196ec
9c6c31108d5d9ef9ea4887281e5dd2d85df6317f
bf342df8d510eb38463950b34e02cb95ec11dffb688b9382639b883e07daed81
GET /dan/img/tyc999.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 211787
Last-Modified: Mon, 26 Sep 2022 01:55:27 GMT
Connection: keep-alive
ETag: "6331068f-33b4b"
Accept-Ranges: bytes
www.mylf888.com/dan/img/xpj999.gif
50.3.187.42200 OK 649 kB URL HTTP/1.1 www.mylf888.com/dan/img/xpj999.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 1000 x 200\012- data
Size 649 kB (649012 bytes)
Hash 4b2329aee1fcc97910223870de0a7ac3
f7a5bd1bee03223ee41d7a586569337aefb09ea2
ddff3a89b79326f02c8e2ba68f8534df4ad3196134e74ec0accb51800cd4de3d
GET /dan/img/xpj999.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/gif
Content-Length: 649012
Last-Modified: Thu, 08 Sep 2022 06:45:06 GMT
Connection: keep-alive
ETag: "63198f72-9e734"
Accept-Ranges: bytes
www.mylf888.com/dan/img/wns111.gif
50.3.187.42200 OK 177 kB URL HTTP/1.1 www.mylf888.com/dan/img/wns111.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 177 kB (177253 bytes)
Hash 40c5a20c644663ccb411529e39250f18
1543e1b4f210a2f6e56e67d828672e54d4b38a7d
e3461a38cba8e8b063619522d87e8886ac75bec436bc12e0d2f9ca69bb987ff3
GET /dan/img/wns111.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 177253
Last-Modified: Tue, 11 May 2021 11:00:03 GMT
Connection: keep-alive
ETag: "609a63b3-2b465"
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1701265708&si=f1398b8b70058bb06149bcd5b7d8f911&v=1.3.0&lv=1&sn=29520&r=0&ww=1280&u=http%3A%2F%2Fwww.biosindir.com%2F&tt=%E5%A4%A7%E9%98%B3%E5%9F%8E%E9%9B%86%E5%9B%A2%E5%A8%B1%E4%B9%90app%E7%BD%91%E5%9D%80%E4%B8%8B%E8%BD%BD202%7C%E4%B8%BB%E7%AB%99
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1701265708&si=f1398b8b70058bb06149bcd5b7d8f911&v=1.3.0&lv=1&sn=29520&r=0&ww=1280&u=http%3A%2F%2Fwww.biosindir.com%2F&tt=%E5%A4%A7%E9%98%B3%E5%9F%8E%E9%9B%86%E5%9B%A2%E5%A8%B1%E4%B9%90app%E7%BD%91%E5%9D%80%E4%B8%8B%E8%BD%BD202%7C%E4%B8%BB%E7%AB%99
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1701265708&si=f1398b8b70058bb06149bcd5b7d8f911&v=1.3.0&lv=1&sn=29520&r=0&ww=1280&u=http%3A%2F%2Fwww.biosindir.com%2F&tt=%E5%A4%A7%E9%98%B3%E5%9F%8E%E9%9B%86%E5%9B%A2%E5%A8%B1%E4%B9%90app%E7%BD%91%E5%9D%80%E4%B8%8B%E8%BD%BD202%7C%E4%B8%BB%E7%AB%99 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 03 Dec 2022 08:58:47 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=BFF7E8AF8488F3C7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.mylf888.com/dan/img/yaobo09.png
50.3.187.42200 OK 375 kB URL HTTP/1.1 www.mylf888.com/dan/img/yaobo09.png
IP 50.3.187.42:0
File type PNG image data, 1434 x 168, 8-bit/color RGBA, non-interlaced\012- data
Size 375 kB (375070 bytes)
Hash 8246fea5d34a8158b32ca6c245ea16b6
ba9ad21b7780a9ea8a530f363c09d4448cac7b6e
12bb8811bdbadec42e092ff12b79bb52657f2cd971e188052610e6358e3c9813
GET /dan/img/yaobo09.png HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/png
Content-Length: 375070
Last-Modified: Fri, 29 Oct 2021 10:53:53 GMT
Connection: keep-alive
ETag: "617bd2c1-5b91e"
Accept-Ranges: bytes
www.mylf888.com/dan/img/manbetx10.gif
50.3.187.42200 OK 320 kB URL HTTP/1.1 www.mylf888.com/dan/img/manbetx10.gif
IP 50.3.187.42:0
File type PNG image data, 1240 x 151, 8-bit/color RGBA, non-interlaced\012- data
Size 320 kB (319786 bytes)
Hash a5676971e3a14edbb3c97a69ca17b820
a2bfd63cc4227018cb9be5f85ef207f6fbb4e836
fe87f00bd9fc4205dc44dfb35d63b7e8fd6980c8714149d3e0c5a74e8c28ef80
GET /dan/img/manbetx10.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 319786
Last-Modified: Fri, 20 May 2022 07:08:20 GMT
Connection: keep-alive
ETag: "62873e64-4e12a"
Accept-Ranges: bytes
www.mylf888.com/dan/img/bet365365.jpg
50.3.187.42200 OK 118 kB URL HTTP/1.1 www.mylf888.com/dan/img/bet365365.jpg
IP 50.3.187.42:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x100, components 3\012- data
Size 118 kB (118484 bytes)
Hash b601a3aeeb918c401a7e6203a27129f5
314ab685c22cf0f4979e2468ce2de55c74a959de
a86e74c3ec52a8b51388c52bad6b510042b1faf95bf730f20a7d6b899c373969
GET /dan/img/bet365365.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 118484
Last-Modified: Mon, 26 Sep 2022 02:39:22 GMT
Connection: keep-alive
ETag: "633110da-1ced4"
Accept-Ranges: bytes
www.guangzhuangji.com/Upload/6319a8e2aefc4.jpg
58.64.153.48200 OK 48 kB URL HTTP/1.1 www.guangzhuangji.com/Upload/6319a8e2aefc4.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2022:09:08 16:33:28], progressive, precision 8, 511x432, components 3\012- data
Hash b3e853eecf22531cc4ab339ac1154168
f4dd114578d5ddf78d7873c20c48ffed6daa7feb
01c5cb784d1419c0ab045089ae00493a9f9a9f382c6241c1efd1597895f6ede3
GET /Upload/6319a8e2aefc4.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 08 Sep 2022 08:33:38 GMT
ETag: "e1f3-5e82649327c80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 47690
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.mylf888.com/dan/img/amdc1000x100.gif
50.3.187.42200 OK 278 kB URL HTTP/1.1 www.mylf888.com/dan/img/amdc1000x100.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 1000 x 100\012- data
Size 278 kB (278305 bytes)
Hash 71c7927a8115608a38ef646fbe1d245e
62308a2b77fe5db7519349d56e8f9daf1230a5dc
94cf5d84e80dc1006762bb51fe0a2ae9cd9a9a608eb4d60f25bbfb4e9959dbf8
GET /dan/img/amdc1000x100.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 278305
Last-Modified: Fri, 24 Dec 2021 11:28:19 GMT
Connection: keep-alive
ETag: "61c5aed3-43f21"
Accept-Ranges: bytes
www.mylf888.com/dan/img/yl1000x100.gif
50.3.187.42200 OK 591 kB URL HTTP/1.1 www.mylf888.com/dan/img/yl1000x100.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 1000 x 200\012- data
Size 591 kB (590972 bytes)
Hash 60f5165ec126a4b95de17cd8d93df564
9144c7659554767fe1c8c6bc0732fbd190c810fb
e84562dfeb76c6669ed9e07b976e1e2a63925573aa3ca92b44e12942a06f1232
GET /dan/img/yl1000x100.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 590972
Last-Modified: Thu, 08 Sep 2022 07:06:56 GMT
Connection: keep-alive
ETag: "63199490-9047c"
Accept-Ranges: bytes
www.mylf888.com/dan/img/1000x100.js.gif
50.3.187.42200 OK 244 kB URL HTTP/1.1 www.mylf888.com/dan/img/1000x100.js.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 1000 x 100\012- data
Size 244 kB (244005 bytes)
Hash 68fb65625bff58cfbfb43ad584b6b14d
02411259fcdd4faa799d66b3e1d0cb49948bc779
0c8c4923f415217e1b2a3348bcc0eba16466a27fca78181f44c1066377de11eb
GET /dan/img/1000x100.js.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 244005
Last-Modified: Tue, 11 May 2021 10:59:11 GMT
Connection: keep-alive
ETag: "609a637f-3b925"
Accept-Ranges: bytes
www.mylf888.com/dan/img/ftimg.jpg
50.3.187.42200 OK 108 kB URL HTTP/1.1 www.mylf888.com/dan/img/ftimg.jpg
IP 50.3.187.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1917x375, components 3\012- data
Size 108 kB (108444 bytes)
Hash a861842867123d6c63e8f9d383bb5826
329c4ab8ffc0ead46d3000f9a4a18e9794e6f532
d2d8b378f2d93728247e2522f9da94faaea515c5503e1113feb452aa3e610c36
GET /dan/img/ftimg.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 108444
Last-Modified: Mon, 14 Mar 2022 10:33:19 GMT
Connection: keep-alive
ETag: "622f19ef-1a79c"
Accept-Ranges: bytes
www.mylf888.com/dan/img/daohang.gif
50.3.187.42200 OK 3.2 kB URL HTTP/1.1 www.mylf888.com/dan/img/daohang.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 1000 x 50\012- data
Hash acd657d8df9241a153133cdbc926f4b0
3510be93a9e851aa533ad47cc70e6ec91c5c8be0
fcb2f2759f42d40e5176e005f15482e629e97a1ef6117e2bf25959440e3f7b3f
GET /dan/img/daohang.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 3181
Last-Modified: Mon, 14 Mar 2022 06:47:21 GMT
Connection: keep-alive
ETag: "622ee4f9-c6d"
Accept-Ranges: bytes
www.mylf888.com/dan/img/jinsha168.jpg
50.3.187.42200 OK 14 kB URL HTTP/1.1 www.mylf888.com/dan/img/jinsha168.jpg
IP 50.3.187.42:0
File type PNG image data, 333 x 79, 8-bit/color RGBA, non-interlaced\012- data
Hash 73c2658bd87f442dbe3688a4fe48352c
f5a31ed734b80202b74f6d296766ae2e8bbd7874
7156ba4542717f84d7acea3aef40754a8fb5d7ce99452ebf9c3a1d5b5f15e5ea
GET /dan/img/jinsha168.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 14242
Last-Modified: Mon, 14 Mar 2022 06:47:18 GMT
Connection: keep-alive
ETag: "622ee4f6-37a2"
Accept-Ranges: bytes
www.mylf888.com/dan/img/wnsr168.gif
50.3.187.42200 OK 7.9 kB URL HTTP/1.1 www.mylf888.com/dan/img/wnsr168.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 333 x 81\012- data
Hash c5f1db8a552e95f0b0f6b0a9fc59b93e
7ddf31d81e285b78b0a2366546c69c10a66e3131
34684d52b7a18477268cf05f7560f4ba13d6a01b9948bfca2aa7040469f7ca8f
GET /dan/img/wnsr168.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 7889
Last-Modified: Mon, 14 Mar 2022 06:47:19 GMT
Connection: keep-alive
ETag: "622ee4f7-1ed1"
Accept-Ranges: bytes
www.mylf888.com/dan/img/tyc168.jpg
50.3.187.42200 OK 9.9 kB URL HTTP/1.1 www.mylf888.com/dan/img/tyc168.jpg
IP 50.3.187.42:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 333x81, components 3\012- data
Hash 6d9b3cb1918e3cf4c7142f38e1c6302e
3c8bd0b1ce1bb167d9bccadc063039d8530be739
0037804244cfbf6211c14a75c8b023ae900699b2539e2151537331956fe9a291
GET /dan/img/tyc168.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 9866
Last-Modified: Mon, 14 Mar 2022 06:47:19 GMT
Connection: keep-alive
ETag: "622ee4f7-268a"
Accept-Ranges: bytes
www.mylf888.com/dan/img/xyl999.gif
50.3.187.42200 OK 477 kB URL HTTP/1.1 www.mylf888.com/dan/img/xyl999.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 1000 x 100\012- data
Size 477 kB (477348 bytes)
Hash 9e07a5cab4aa0dd2f4812fc347081ac8
b07f49e9cb7a8a678063ebede264aa7a60387348
38be687f0e62fcbf1b13a04003b15a3f9cef34bc2ab4332f33aa29e63e359765
GET /dan/img/xyl999.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 477348
Last-Modified: Wed, 02 Jun 2021 01:49:09 GMT
Connection: keep-alive
ETag: "60b6e395-748a4"
Accept-Ranges: bytes
www.mylf888.com/dan/img/xpj168.gif
50.3.187.42200 OK 6.8 kB URL HTTP/1.1 www.mylf888.com/dan/img/xpj168.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 333 x 81\012- data
Hash efc3d4f0d0c2d35c69557e477b2e4fc6
2e00fe60321983aa9793dfbb747037ac625e15eb
c2ef12c881a522f618cb850034fc17c2f4509ffe6a379247710777f2ada5d47d
GET /dan/img/xpj168.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 6835
Last-Modified: Mon, 14 Mar 2022 06:47:19 GMT
Connection: keep-alive
ETag: "622ee4f7-1ab3"
Accept-Ranges: bytes
www.mylf888.com/dan/img/biwin999.gif
50.3.187.42200 OK 9.2 kB URL HTTP/1.1 www.mylf888.com/dan/img/biwin999.gif
IP 50.3.187.42:0
File type GIF image data, version 89a, 334 x 81\012- data
Hash d05fff7c08e48f787151cd283766a047
108d14a03d85fb2d7ecc7391ab48f71aff83a85f
eba6395900606e52a184b74fdbf2ee8990ca302d8778c02cd3e4921a6a9e411e
GET /dan/img/biwin999.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 9197
Last-Modified: Thu, 24 Mar 2022 01:50:13 GMT
Connection: keep-alive
ETag: "623bce55-23ed"
Accept-Ranges: bytes
www.guangzhuangji.com/Upload/60ebe247a2230.jpg
58.64.153.48200 OK 155 kB URL HTTP/1.1 www.guangzhuangji.com/Upload/60ebe247a2230.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:32:57], progressive, precision 8, 600x497, components 3\012- data
Size 155 kB (155144 bytes)
Hash b92eb59ef20a5b7fc8fd35d30e455f4d
43cd025b4cf758faedccff975ee53cf6f79713a8
9a660308ea5e4f77492c5ea43cccf3280cc055381df26cf51cc94fbc884159bd
GET /Upload/60ebe247a2230.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:33:43 GMT
ETag: "2a479-5c6ee0214ffc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Upload/60ebe39bad724.jpg
58.64.153.48200 OK 148 kB URL HTTP/1.1 www.guangzhuangji.com/Upload/60ebe39bad724.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:37:33], progressive, precision 8, 600x497, components 3\012- data
Size 148 kB (148131 bytes)
Hash 79d0c191452b2f592c1fcd4d4f399fd4
afd8483f4690bfd9985b7ad5e2933065735a9291
103794455c48d7ee6fd1f384eca2979e8b7000f6ecce108fb14c726254416cd6
GET /Upload/60ebe39bad724.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:39:23 GMT
ETag: "28914-5c6ee1658fcc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.mylf888.com/dan/img/aomendc999.jpg
50.3.187.42200 OK 22 kB URL HTTP/1.1 www.mylf888.com/dan/img/aomendc999.jpg
IP 50.3.187.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 333x79, components 3\012- data
Hash 7962dc0719483a5ec18c92b5fa935fca
fa676567caebf334f37b4cc057092d3345129ce8
c25bfbb9468cce8ace9f0f244f9ad809d7e57245fa99df623a4a3911a065875c
GET /dan/img/aomendc999.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 21563
Last-Modified: Mon, 14 Mar 2022 06:47:18 GMT
Connection: keep-alive
ETag: "622ee4f6-543b"
Accept-Ranges: bytes
www.mylf888.com/dan/img/365bet168.jpg
50.3.187.42200 OK 9.9 kB URL HTTP/1.1 www.mylf888.com/dan/img/365bet168.jpg
IP 50.3.187.42:0
File type GIF image data, version 89a, 333 x 82\012- data
Hash 657b00ba324258d9733fb707b7e05e54
938a86193c65ecc9bd2c23bf21abdefe43a829e6
ca81437f9e67704918e9d9e493984c860b0627cc23f62e9dc26020d33b84d470
GET /dan/img/365bet168.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 9891
Last-Modified: Mon, 14 Mar 2022 06:47:20 GMT
Connection: keep-alive
ETag: "622ee4f8-26a3"
Accept-Ranges: bytes
www.mylf888.com/dan/img/yongli168.jpg
50.3.187.42200 OK 10 kB URL HTTP/1.1 www.mylf888.com/dan/img/yongli168.jpg
IP 50.3.187.42:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 333x81, components 3\012- data
Hash ceeeec4a37140a66fe39f401691022fe
121f8658403c8fe024c73083fc49301a726c431c
48cb853f4ffbac3c4c1d743e6dd50e35f488b841a4c63443f498642dd439840a
GET /dan/img/yongli168.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 10033
Last-Modified: Mon, 14 Mar 2022 06:47:20 GMT
Connection: keep-alive
ETag: "622ee4f8-2731"
Accept-Ranges: bytes
www.mylf888.com/dan/img/yabo999.jpg
50.3.187.42200 OK 10 kB URL HTTP/1.1 www.mylf888.com/dan/img/yabo999.jpg
IP 50.3.187.42:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 333x81, components 3\012- data
Hash 4a3ecd592f1716707fa98c9e748b6759
cc6c45369214748243e249096c7c61d02827ca09
9efe73ad6710d9a7d7600cbeeff9ff065953de78a01a833f85f8921b1030b80f
GET /dan/img/yabo999.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 10099
Last-Modified: Mon, 14 Mar 2022 06:47:17 GMT
Connection: keep-alive
ETag: "622ee4f5-2773"
Accept-Ranges: bytes
www.guangzhuangji.com/Upload/60ebe56c04e5d.jpg
58.64.153.48200 OK 98 kB URL HTTP/1.1 www.guangzhuangji.com/Upload/60ebe56c04e5d.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:46:42], progressive, precision 8, 600x497, components 3\012- data
Hash 9b25e93c96f4881f44c6ddd05d96e603
fa4c8c3a376088a3f841a66e8a290dedacc03e48
f813d41320dea5cebcabc7bc02870e84cb326dad915e2a53adde9b4b5a955ae9
GET /Upload/60ebe56c04e5d.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:47:07 GMT
ETag: "1a754-5c6ee320110c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Upload/60ebe4cca49b7.jpg
58.64.153.48200 OK 226 kB URL HTTP/1.1 www.guangzhuangji.com/Upload/60ebe4cca49b7.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:44:19], progressive, precision 8, 600x497, components 3\012- data
Size 226 kB (226090 bytes)
Hash cebe6bd29d9c529b9367b2e961c658e2
502167980347bcb0f45dd9bb00b05b09cd4e34a8
63cc85d9324aa6f2932d8f3359f3fc03a6a6230861bdb65ba7ca93cc90cdb583
GET /Upload/60ebe4cca49b7.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:44:28 GMT
ETag: "39e4e-5c6ee2886eb00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img.jpg
58.64.153.48200 OK 152 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 13:54:07], progressive, precision 8, 670x285, components 3\012- data
Size 152 kB (152375 bytes)
Hash 8440b70cd7979cf33e2071a35af773da
510d6a47ddcbc115b800cf58e36504fdbd1061ec
ca37ce5f73e62400e4348dfa01ede7cf0f1c614cc598eb64053632f3c9b98da7
GET /Tpl/Home/default/Public/images/xw-img.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 05:54:08 GMT
ETag: "274c0-5c6e6bfe84000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Upload/60ebe5fbd892d.jpg
58.64.153.48200 OK 216 kB URL HTTP/1.1 www.guangzhuangji.com/Upload/60ebe5fbd892d.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:48:59], progressive, precision 8, 600x497, components 3\012- data
Size 216 kB (216309 bytes)
Hash 66f7140f1810785715f7a5ae39667cfa
7c09fe6893f774ec9caebc02b151e1446a74835f
eaf22d04db7ec5b9c6bd92a566e15ee3ac2dc4e6982ee5bbeda0bca9a647485a
GET /Upload/60ebe5fbd892d.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:49:31 GMT
ETag: "373f8-5c6ee3a9654c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/top-tel.jpg
58.64.153.48200 OK 3.6 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/top-tel.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 36x34, components 3\012- data
Hash 4cd883846ba6450b8cbd147ae9717004
a524795648112e0a8839ed01d1b30356d2af921f
ad1764210080d63383c75fda788bc45c0494518a71814ceb8a695776e49d4b7d
GET /Tpl/Home/default/Public/images/top-tel.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:45 GMT
ETag: "1011-5a8d266cf1840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3623
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.guangzhuangji.com/Upload/60ebe45de5ec6.jpg
58.64.153.48200 OK 301 kB URL HTTP/1.1 www.guangzhuangji.com/Upload/60ebe45de5ec6.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:42:29], progressive, precision 8, 600x693, components 3\012- data
Size 301 kB (300641 bytes)
Hash 4ee46f54a749dec94f015ff4a9c8fbcc
d4f67b9026a3d7b7ce0bbfac6496864a8758ee94
8feb024e60aa3cda406565485f1fed5369281f5affda967a3ae239a5fc08b65d
GET /Upload/60ebe45de5ec6.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:42:37 GMT
ETag: "4c199-5c6ee21e93140-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Upload/60ebe5ab8ab5b.jpg
58.64.153.48200 OK 358 kB URL HTTP/1.1 www.guangzhuangji.com/Upload/60ebe5ab8ab5b.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=14, height=4000, bps=0, manufacturer=HUAWEI, model=YAL-AL10, orientation=upper-left, xresolution=204, yresolution=212, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:48:04, width=3000], progressive, precision 8, 600x699, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 27764-0, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 17432749610407829700608.000000, slope 75530590359423817384954628669440.000000\012- data
Size 358 kB (358479 bytes)
Hash 7a5d22463dd9094c01dd9d01892bd337
39a7af6c2fe772268fa954251c8d752f925b71f0
6698aec61a223be533eae95a0114adbff6c14c6ac3c7e2989d6ab83b6fa4af77
GET /Upload/60ebe5ab8ab5b.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:48:11 GMT
ETag: "5ac69-5c6ee35d1a0c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/logo.jpg
58.64.153.48200 OK 35 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/logo.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:54:24], progressive, precision 8, 465x63, components 3\012- data
Hash 82a0e0d3753c0921e17defd0577354fe
63e24965e0e654ccd8e46bbadb28a948bd98ab3f
f8da7891d10d1f9a58844d4634c0558d99a10d7e6034791b04e68377126d3604
GET /Tpl/Home/default/Public/images/logo.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 06:54:27 GMT
ETag: "a821-5c6e7979dcec0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 34901
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-tit.jpg
58.64.153.48200 OK 5.9 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-tit.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 262x25, components 3\012- data
Hash 60f9bb430b16db2c4f365c16976bc0d1
2e3fdf8774c67c6e7398deb3f6e3e3338dc42b05
d06c8d902c666a137e7d68c98c6acae2e22f0a97b36851d06e6724c9fea49a5a
GET /Tpl/Home/default/Public/images/xw-tit.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:48 GMT
ETag: "18c8-5a8d266fcdf00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5918
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/about-img.jpg
58.64.153.48200 OK 128 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/about-img.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2021:01:20 08:57:06], progressive, precision 8, 600x484, components 3\012- data
Size 128 kB (128125 bytes)
Hash 471feb4b7472a51c21396f394c9dad28
9773460b207f04ae60ca79e13d92dc9554abd082
078a6d46edb5330106ef1612c3913f017eb0295e7d1e7e49293a665270fa32c7
GET /Tpl/Home/default/Public/images/about-img.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 20 Jan 2021 00:57:08 GMT
ETag: "22135-5b94a6f34c100-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/banquan.png
58.64.153.48200 OK 6.1 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/banquan.png
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type PNG image data, 599 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 40c03483e5cd407b63fe9f79bf55dc61
6018564090f533bcfd3e17f54c2f3709e1455ec4
11b8a7af68854700df2ce2b34cd522959df66a8389aabd3e3a44247a9ca9dd41
GET /Tpl/Home/default/Public/images/banquan.png HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Fri, 11 Jun 2021 08:32:26 GMT
ETag: "18c2-5c47958f39a80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6070
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: image/png
www.guangzhuangji.com/Tpl/Home/default/Public/images/footer-logo.jpg
58.64.153.48200 OK 23 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/footer-logo.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 11:22:44], progressive, precision 8, 421x60, components 3\012- data
Hash 2c265bfe9767f2362466ea1a058c894f
d473dfc673a67e1719ba0b0926c3f9e41dfcfe59
72e3820d4b431704d8829b6d2e5d132cd86813023608579764253c1e3a534c2d
GET /Tpl/Home/default/Public/images/footer-logo.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 03:22:45 GMT
ETag: "786f-5c6e4a284ab40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 23419
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/1.jpg
58.64.153.48200 OK 714 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/1.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 11:33:01], progressive, precision 8, 1920x762, components 3\012- data
Size 714 kB (713762 bytes)
Hash 34e616d8b131649ff9363fb005f5da87
e5caea6e23359f88de6fb46bd52ad0eb6b7d459f
316f11a659c9ad9b093e2c87b9da247f7a756b64cbd99c2a50f0fb0c949575b7
GET /Tpl/Home/default/Public/images/1.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 03:33:02 GMT
ETag: "b162b-5c6e4c74b5780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/about-bg.jpg
58.64.153.48200 OK 144 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/about-bg.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x321, components 3\012- data
Size 144 kB (144186 bytes)
Hash 36e97110ec83e0646daafc629da76595
f87e8ef6e0066a74770ed2dc93d65bf58faea818
5135137aa3b19672170360fbe21983997706a42060b6c23a018b8dbb945c23d7
GET /Tpl/Home/default/Public/images/about-bg.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:20 GMT
ETag: "23e2a-5a8d26551a000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img1.jpg
58.64.153.48200 OK 62 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img1.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 13:56:15], progressive, precision 8, 488x170, components 3\012- data
Hash 743a14fbfe6139ce8c7d0a94c66a5fbc
51781928dae0a6106e0af627f5e0796981cde665
514f747a5f1de67e932d4a691612a38339e3b0b8950f08ecdac2e2dea8f0e14b
GET /Tpl/Home/default/Public/images/xw-img1.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 05:56:16 GMT
ETag: "10f91-5c6e6c7896000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/2.jpg
58.64.153.48200 OK 801 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/2.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 11:43:18], progressive, precision 8, 1920x762, components 3\012- data
Size 801 kB (800925 bytes)
Hash 1ce94585b9e8744e4f9164f7f647fa16
08cfd0119f23bf499bb2a3949461b3b412e583b0
6a225e28d4714ecb464a6b300aaa90e23f8eaa954cbea25c1491972134d9c3dd
GET /Tpl/Home/default/Public/images/2.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 03:43:19 GMT
ETag: "c75b6-5c6e4ec1203c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/ys-bg.jpg
58.64.153.48200 OK 199 kB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/ys-bg.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2022:09:09 08:48:32], progressive, precision 8, 1920x617, components 3\012- data
Size 199 kB (199355 bytes)
Hash 4032f3b463b600ba0616e2e719ed2624
f78bed6fb2e32c45bb6a8f7ca8db713662caf876
492bdfeb134e9174368dbe639c6e42654928947b7ad6d6f4b8a9f80dc31c2061
GET /Tpl/Home/default/Public/images/ys-bg.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Fri, 09 Sep 2022 00:48:34 GMT
ETag: "33232-5e833e7d49c80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.guangzhuangji.com/Tpl/Home/default/Public/images/4.jpg
58.64.153.48200 OK 1.2 MB URL HTTP/1.1 www.guangzhuangji.com/Tpl/Home/default/Public/images/4.jpg
IP 58.64.153.48:0
ASN #17444 HKBN Enterprise Solutions Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 15:09:11], progressive, precision 8, 1920x762, components 3\012- data
Size 1.2 MB (1191057 bytes)
Hash a672030acfd684a59269ee7251f170c9
218d5acbb989ad71d6ed1f4a222105371eba09b2
9e272b95ebff031ae8a48047838405671e58b5ce588c7ea565653e0e7ab3e106
GET /Tpl/Home/default/Public/images/4.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 07:09:13 GMT
ETag: "126aa4-5c6e7cc6d1840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.biosindir.com/shenfu.ico
173.232.32.226200 OK 20 B URL HTTP/1.1 www.biosindir.com/shenfu.ico
IP 173.232.32.226:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert fortinet Phishing
GET /shenfu.ico HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
Cookie: Hm_lvt_f1398b8b70058bb06149bcd5b7d8f911=1670057925; Hm_lpvt_f1398b8b70058bb06149bcd5b7d8f911=1670057925
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:51 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash becc8cdba57494c6fe212eb67634e1eb
c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8
fbb25b88b10a818bb0c6ad385b1e5ba54b87672c73bfa8a9c1ecb17dcc689d5a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11942
x-amzn-requestid: ba8a5d03-7796-4c6d-a6df-3cc71b1c5259
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: chqukGmWoAMFtLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a24c3-609dc90d769060d30a16e3df;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 16:16:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: m6j_3bDGFIAHQYzrZ1zXqUb-HbEJ8XCoGH5mgBFOWRbLzoSiuNBnhg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:59:25 GMT
age: 39566
etag: "c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2