Report - biosindir.com/

Report Overview

Submitted URL
biosindir.com/
IP
173.232.32.226
ASN
#62904 AS62904
Submitted
2022-12-03 08:58:57
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
34

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
p1.qhimg.com	250383	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	310 B	3.5 kB	54.230.111.108
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
www.biosindir.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	15 kB	148 kB	173.232.32.226
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.163.49.154
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	67 kB	34.120.237.76
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	718 B	3.8 kB	104.18.20.226
ocsp.trust-provider.cn	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	692 B	2.6 kB	47.246.44.205
www.myyilufa888.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	364 B	2.2 kB	50.3.187.107
www.baidu.com	3121	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	1.2 kB	104.193.88.123
biosindir.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	345 B	369 B	173.232.32.226
www.sogou.com	39670	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	408 B	3.8 kB	119.28.109.132
hm.baidu.com	8254	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	12 kB	103.235.46.191
www.mylf888.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	4.5 MB	50.3.187.42
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
www.guangzhuangji.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.0 kB	5.0 MB	58.64.153.48
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-03	medium	biosindir.com/	Phishing
2022-12-03	medium	www.biosindir.com/	Phishing
2022-12-03	medium	www.biosindir.com/jquery.20.min.js	Phishing
2022-12-03	medium	www.biosindir.com/Public/js/cookie.js	Phishing
2022-12-03	medium	www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.4.2.min.js	Phishing
2022-12-03	medium	www.biosindir.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js	Phishing
2022-12-03	medium	www.biosindir.com/Tpl/Home/default/Public/js/ddsmoothmenu.js	Phishing
2022-12-03	medium	www.biosindir.com/Tpl/Home/default/Public/js/webtry_roll.js	Phishing
2022-12-03	medium	www.biosindir.com/Tpl/Home/default/Public/js/jquery.jslides.js	Phishing
2022-12-03	medium	www.biosindir.com/Tpl/Home/default/Public/js/responsiveslides.min.js	Phishing
2022-12-03	medium	www.biosindir.com/Tpl/Home/default/Public/js/slide.js	Phishing
2022-12-03	medium	www.biosindir.com/jquery.la.min.js	Phishing
2022-12-03	medium	www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.8.0.min.js	Phishing
2022-12-03	medium	www.biosindir.com/Tpl/Home/default/Public/js/jquery.min.js	Phishing
2022-12-03	medium	www.biosindir.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js	Phishing
2022-12-03	medium	www.biosindir.com/home/public/getOnline.html	Phishing
2022-12-03	medium	www.biosindir.com/shenfu.ico	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	www.biosindir.com/jquery.20.min.js	241 B	2023-03-07	2024-02-05
Pretty URL www.biosindir.com/jquery.20.min.js IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:42 Last Seen2024-02-05 10:00:49 Times Seen41 Hash 8ee22e7b5f638e1c510c03b268ad07c2 0f745dda31bacb16227df9000405e90f50af518a 381d7708f7edb83ad2f1080a2e363c59d3324a86afcc0e51a18e2479532f2342 Loading...

	www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.4.2.min.js	72 kB	2023-03-07	2024-04-26
Pretty URL www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.4.2.min.js IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:10 Last Seen2024-04-26 05:27:47 Times Seen7166 Hash 10092eee563dec2dca82b77d2cf5a1ae 65cbff4e9d95d47a6f31d96ab4ea361c1f538a7b e23a2a4e2d7c2b41ebcdd8ffc0679df7140eb7f52e1eebabf827a88182643c59 Loading...

	www.biosindir.com/Public/js/cookie.js	1.0 kB	2023-03-07	2024-01-16
Pretty URL www.biosindir.com/Public/js/cookie.js IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19:42 Last Seen2024-01-16 06:59:27 Times Seen43 Hash 402d06a7d3c578d299d4d6364e9c90bc c8b84ce6da18f702b063414972929cd5cacd868a 192d3e9ef117624d393deb3cd8d7ea5c2c9e10a8eb3bb7ab7159856d0ba4cde5 Loading...

	www.biosindir.com/Tpl/Home/default/Public/js/slide.js	190 B	2023-03-08	2023-11-10
Pretty URL www.biosindir.com/Tpl/Home/default/Public/js/slide.js IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:12:52 Last Seen2023-11-10 09:51:18 Times Seen22 Hash db9a85690035fdf3d62b5d9527a47585 b55a0d3e76a752a9b625d927eda00bd3c4ef6450 b1e8ff6ab38439367fc9af51734271babaa5cad1b992a0d8f559a329b522b9f6 Loading...

	www.biosindir.com/	175 B	2023-03-08	2023-03-13
Pretty URL www.biosindir.com/ IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:12:52 Last Seen2023-03-13 21:12:11 Times Seen1 Hash a06430c402eb664a92424c2bce6f21c1 2e5e38f7d266ffcd98998142454af06f3f7ebf7c 601a94b4c5dfd27ee0c9f6dcf47606e28918a777db89cb61e5bf30777ea43135 Loading...

	www.biosindir.com/Tpl/Home/default/Public/js/ddsmoothmenu.js	7.7 kB	2023-03-07	2024-02-16
Pretty URL www.biosindir.com/Tpl/Home/default/Public/js/ddsmoothmenu.js IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:39 Last Seen2024-02-16 00:49:34 Times Seen29 Hash 5405be4d7eebf6d362d853d41915d363 76c99f4532fb29b3627fa6265e86a098456e6ddb 6178e8147cde77ff9b3552c391a57effea99e1a63bdb2615bd8f272196d2de02 Loading...

	www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.8.0.min.js	93 kB	2023-03-08	2023-03-08
Pretty URL www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.8.0.min.js IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:12:52 Last Seen2023-03-08 15:12:52 Times Seen1 Hash 61feb3b7ab41ed34c3868133eb71734f 62420b88864d3f0f29580bedf420ce01d7c074b4 a3106d806f453d38c4a5ac9347556c9feae9183f882bfd3b8b85d1c0a4245ac0 Loading...

	www.myyilufa888.com/ff/pp.js	6.7 kB	2023-03-08	2023-03-14
Pretty URL www.myyilufa888.com/ff/pp.js IP 50.3.187.107 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:12:52 Last Seen2023-03-14 15:08:36 Times Seen1 Hash 755956a0e6d946872e0791a05dcc18e3 c088aae533bffd447cceca9406e5f199a47fdc41 b92eb9f4d6e6c1386ec74f42b20f82de819fedb109ecb014f0ac262b40e14e92 Loading...

	www.biosindir.com/	29 B	2023-03-08	2023-03-08
Pretty URL www.biosindir.com/ IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:12:52 Last Seen2023-03-08 15:12:52 Times Seen1 Hash f3274a49ba79474e238daaebfa74b5ce 232b48e2a5c2f3b53e7f0fa6ea56649ba6d460ef c962336be4ac9d79e26c918ca916641d220fe57ab3ff6760d3795568fffc841c Loading...

	www.biosindir.com/Tpl/Home/default/Public/js/webtry_roll.js	7.1 kB	2023-03-07	2024-02-16
Pretty URL www.biosindir.com/Tpl/Home/default/Public/js/webtry_roll.js IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:39 Last Seen2024-02-16 00:49:34 Times Seen56 Hash 66cd03b1f2c8269b65daaee2be330e8e 98869defe372282d9a0b7b600db1a77203c1bff0 c471ebb642b2792ba3a76f99fe13637518e53a62c9856879a5a0b7fb1abd029b Loading...

	www.biosindir.com/Tpl/Home/default/Public/js/jquery.jslides.js	2.3 kB	2023-03-07	2023-11-28
Pretty URL www.biosindir.com/Tpl/Home/default/Public/js/jquery.jslides.js IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:45 Last Seen2023-11-28 20:47:56 Times Seen30 Hash 104dcc3ab6d7f027effe9c812993792b 80b65d6d6bba20030c80d5a94ad2279a3784fce2 4fb0e1e22916550d41a98bc0a449f6c9ae0e612322b5c8ee1024b7ab93155e90 Loading...

	www.biosindir.com/Tpl/Home/default/Public/js/responsiveslides.min.js	4.7 kB	2023-03-08	2023-11-10
Pretty URL www.biosindir.com/Tpl/Home/default/Public/js/responsiveslides.min.js IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:12:52 Last Seen2023-11-10 09:51:18 Times Seen17 Hash 8b8433098edbcad6ed8262c4b0fb9ed3 ce3145036d22d74a98c5ddd04f89138e119199ea 47ba98ed59730abffeda7b5ebfab03b6581f4dee72f4b25b2b756f78e7f09ec7 Loading...

	www.biosindir.com/jquery.la.min.js	253 B	2023-03-07	2023-04-02
Pretty URL www.biosindir.com/jquery.la.min.js IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19:42 Last Seen2023-04-02 21:34:23 Times Seen5 Hash c8f295b7d168cfcdb83a8a09ce784f2e 6bfd43f1abe424018dff1485abbfa4b410f00eb9 39b35b18ca163afcd31f9b384018853a9e7d40eebf21723cefa161e2453f1eed Loading...

	www.mylf888.com/dan/indexsun.html	240 B	2023-03-07	2023-04-02
Pretty URL www.mylf888.com/dan/indexsun.html IP 50.3.187.42 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:42 Last Seen2023-04-02 21:34:23 Times Seen11 Hash 5ad9566e8ed8a45824b7b6b1d5ef259a f62830d9284a6d9f3b7286ceaec42c5308ddab25 fab108217f8addb0a734beadffb5959473d79247041566ff3e069f32f97407e2 Loading...

	hm.baidu.com/hm.js?f1398b8b70058bb06149bcd5b7d8f911	30 kB	2023-03-08	2023-03-08
Pretty URL hm.baidu.com/hm.js?f1398b8b70058bb06149bcd5b7d8f911 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:12:52 Last Seen2023-03-08 15:12:52 Times Seen1 Hash d269438a798c72f2e600d4e68ee776da a32073f7e8d0a41670f09fbbae18f13e68e7effe 7630f5c91d60774c463529946262c0de7dbded1ca57c6f65c8de6369862f7b27 Loading...

	www.biosindir.com/Tpl/Home/default/Public/js/jquery.min.js	96 kB	2023-03-08	2024-02-26
Pretty URL www.biosindir.com/Tpl/Home/default/Public/js/jquery.min.js IP 173.232.32.226 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:12:52 Last Seen2024-02-26 22:56:11 Times Seen129 Hash 4313f20053472a2521c8bfd23705a505 b7c5967bd93834a5e0bb2db3ee9cd01f4cec7fe1 515be88f39ef8ae09ddf9198196a24973eb0a4620496688b3b02e121a7908875 Loading...

	www.mylf888.com/dan/js/zhongguomeng.js	991 B	2023-03-08	2023-03-08
Pretty URL www.mylf888.com/dan/js/zhongguomeng.js IP 50.3.187.42 ASN #62904 AS62904 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:12:52 Last Seen2023-03-08 16:27:59 Times Seen1 Hash 615baf7c4369cb0704e2c74b4f36e325 3249968cece020ae5c13174724d479a2597acef4 0aa4c844b0eac5bb878dc622ba576ef4d674e875bae9c9560ab03e90c0120e60 Loading...

		Size	First Seen	Last Seen
	#1 Write - 0be3b24a88d297fc6fc773a7accd46c5	121 B	2023-03-07	2024-02-05
Pretty Observations First Seen2023-03-07 12:22:42 Last Seen2024-02-05 10:00:49 Times Seen25 Hash 0be3b24a88d297fc6fc773a7accd46c5 cd76e97d5c0b45a5438f16041d210c94e16942a0 fdd91cd47d074453621f764034d8e6710df3411637b2abcac83dda84fd7f3966 Loading...

	#2 Write - c8a1c60a17a59165ae1fde336f13042b	185 B	2023-03-07	2024-04-21
Pretty Observations First Seen2023-03-07 01:19:11 Last Seen2024-04-21 11:46:22 Times Seen1071 Hash c8a1c60a17a59165ae1fde336f13042b b03c5e90dcd61e05fd5416417edfc76b49b42875 f57ad520d4c886dd0d5c383359823ae450923fd3e35085ca618b89143e0f0086 Loading...

HTTP Transactions (130)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8118
Expires: Sat, 03 Dec 2022 11:14:00 GMT
Date: Sat, 03 Dec 2022 08:58:42 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5201
Cache-Control: max-age=97154
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 08:58:42 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 11:57:56 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4536
Expires: Sat, 03 Dec 2022 10:14:18 GMT
Date: Sat, 03 Dec 2022 08:58:42 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 08:18:14 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2428
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: lgrc+Y/fTGyhRaenk6cv9PvUY2vxgufscumQKDzY6mTitHx7srqSjws0QfAsQuuqWDELZeS9r2w=
x-amz-request-id: C094NNJQ5JZ0PZ8X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 08:46:30 GMT
age: 732
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 08:58:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

biosindir.com/

173.232.32.226

301 Moved Permanently

178 B

URL HTTP/1.1
biosindir.com/
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Dec 2022 08:58:42 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: http://www.biosindir.com/

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 08:08:58 GMT
cache-control: public,max-age=3600
age: 2984
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

www.biosindir.com/

173.232.32.226

200 OK

6.4 kB

URL HTTP/1.1
www.biosindir.com/
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2196), with CRLF, LF line terminators
Size
6.4 kB (6366 bytes)
Hash
1ef6504421ca435ff11815484c25cef9
5092b93af14f64e985cb3d483eaebfccddd44b0d
5d38d6725e3dca88dd9e818566d3822a34dc0deac2829b51d9278c50428a0d68

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:42 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5200
Cache-Control: max-age=92091
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 08:58:43 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:33:34 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.163.49.154

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.163.49.154:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 29wXy7c+UgyNBL3zsWDgqQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +bIddE8klaxJGq/8UUEj02qQkJA=

www.biosindir.com/jquery.20.min.js

173.232.32.226

200 OK

241 B

URL HTTP/1.1
www.biosindir.com/jquery.20.min.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
HTML document, ASCII text, with CRLF line terminators
Size
241 B (241 bytes)
Hash
8ee22e7b5f638e1c510c03b268ad07c2
0f745dda31bacb16227df9000405e90f50af518a
381d7708f7edb83ad2f1080a2e363c59d3324a86afcc0e51a18e2479532f2342

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jquery.20.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: application/javascript
Content-Length: 241
Last-Modified: Fri, 02 Sep 2022 07:43:18 GMT
Connection: keep-alive
ETag: "6311b416-f1"
Expires: Sat, 03 Dec 2022 09:58:43 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes

www.biosindir.com/Tpl/Home/default/Public/css/reset.css

173.232.32.226

200 OK

498 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/css/reset.css
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
ASCII text
Size
498 B (498 bytes)
Hash
a694aef285c05369d403dc49775be077
b6d77805a7ea81543fb408b6e25a0bc961baa444
9627f5db8158529cdf54a6798ab66baea5cb4102f65b3359fc56ada5c01867cf

HTTP Headers

GET /Tpl/Home/default/Public/css/reset.css HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/Tpl/Home/default/Public/css/webmain.css

173.232.32.226

200 OK

4.6 kB

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/css/webmain.css
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
Unicode text, UTF-8 text
Size
4.6 kB (4621 bytes)
Hash
35aa0e4121a8bd3290ad1b0626d71793
3cc788cc0eb850c0bb656df7a3037ad045a03ed7
6cd17d85d6d949113d4b302ff961011505b21281c25f94a61ae7caecc694e5ee

HTTP Headers

GET /Tpl/Home/default/Public/css/webmain.css HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/Public/js/cookie.js

173.232.32.226

200 OK

480 B

URL HTTP/1.1
www.biosindir.com/Public/js/cookie.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
ASCII text, with very long lines (989)
Size
480 B (480 bytes)
Hash
ea99888b85d99780ea6ad41707b1ee77
1790e8315a7027f317f5f584c774a8838da0a780
e39835ec32d01a54d5c8173eb5dc2b43c37bf4e9a29dc673147cccb2613d0e35

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Public/js/cookie.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/Tpl/Home/default/Public/css/ddsmoothmenu.css

173.232.32.226

200 OK

1.8 kB

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/css/ddsmoothmenu.css
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
Unicode text, UTF-8 text
Size
1.8 kB (1767 bytes)
Hash
c1f8880ddb0095b377d8c19fea78ab9d
6ad1efe698d02396d01db0ce6566260572512de1
ba092e614bb5b327deb25e14466f91a59b67589b60bdd73a8c977443312d875c

HTTP Headers

GET /Tpl/Home/default/Public/css/ddsmoothmenu.css HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.4.2.min.js

173.232.32.226

200 OK

28 kB

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.4.2.min.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (820)
Size
28 kB (27676 bytes)
Hash
7434c4111a90e0b11034e6529f8afbc0
07aad0196fa92cbc240a5f3e0e9c30b297e4c5c5
f4f94294f5658f44982b9cb2f7d0b63d56763b25a0a44f48c39dcb6da59ddcf2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Tpl/Home/default/Public/js/jquery-1.4.2.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js

173.232.32.226

200 OK

3.8 kB

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
ISO-8859 text, with very long lines (419)
Size
3.8 kB (3754 bytes)
Hash
8cecf3ad205e59c6600ada4e4d3832ee
55fec1ba9385a6eaa7d3ae4b284d3b817c02059c
e92ba472ea8b48a31bffb5abcee2142eed58224d38472d96d70947265b517476

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/Tpl/Home/default/Public/css/style.css

173.232.32.226

200 OK

4.6 kB

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/css/style.css
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
Unicode text, UTF-8 text
Size
4.6 kB (4640 bytes)
Hash
962cd9e3ddf0a148e8ce479baca5d2bb
ea5d2e74e2eb0d94919168fd2b24bc0713966088
ff24cf3755e0bf03be37d9df101e587c1c5c2bce06073bb6ab4dbcad700895b7

HTTP Headers

GET /Tpl/Home/default/Public/css/style.css HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/Tpl/Home/default/Public/js/ddsmoothmenu.js

173.232.32.226

200 OK

3.0 kB

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/js/ddsmoothmenu.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
Unicode text, UTF-8 (with BOM) text
Size
3.0 kB (3030 bytes)
Hash
184a3417199b66749356a97a115292d2
c1201fb7b2725763e435258e721c5ce57a7f43fd
101ba403b716b16b4f400d3f13e5b5753311e0e26ee6bc148f598250d71fbf71

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Tpl/Home/default/Public/js/ddsmoothmenu.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/Tpl/Home/default/Public/js/webtry_roll.js

173.232.32.226

200 OK

2.1 kB

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/js/webtry_roll.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
Unicode text, UTF-8 text, with very long lines (5966)
Size
2.1 kB (2083 bytes)
Hash
17046f885d5d8ac887b993648c51ac6f
e30e77364234ce991ed099734a6d6c3d065091e5
a5f134ddc4e6787f2d14da2158a2a2173d6aff4faf4d9086a13910368b2963ef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Tpl/Home/default/Public/js/webtry_roll.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/Tpl/Home/default/Public/js/jquery.jslides.js

173.232.32.226

200 OK

892 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/js/jquery.jslides.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
HTML document, Unicode text, UTF-8 (with BOM) text
Size
892 B (892 bytes)
Hash
9cebdf4b68ad6766a3e359836fcff97f
9b40fd36ba3859ee3a89cfa1e2d164150e827c60
bc44a51726135e667f689139c99b646b342d125ab022d607c9983145535983d7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Tpl/Home/default/Public/js/jquery.jslides.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/Tpl/Home/default/Public/js/responsiveslides.min.js

173.232.32.226

200 OK

1.8 kB

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/js/responsiveslides.min.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
HTML document, ASCII text
Size
1.8 kB (1805 bytes)
Hash
eef7dfa2527d84f517017cc66951036f
a62f63f815f84feba54c186ca8845017ca941386
6dd617814413126e5abf7cd5082ca12baa22b91a9627162e470bb2fb0514b77b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Tpl/Home/default/Public/js/responsiveslides.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8203
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 08:58:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8203
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 08:58:44 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16208
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 08:58:44 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16208
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 08:58:44 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg

34.120.237.76

200 OK

2.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.9 kB (2942 bytes)
Hash
b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:02:08 GMT
age: 14196
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9715 bytes)
Hash
45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 40058
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6119 bytes)
Hash
7ffa12df550123f63b20f67437cd8a04
398fd2d837c73f54c4591b69cd683f29bdf9184a
fd9ac4396488098923c27531295e64475047dd008a901e59915109a73a69f305

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6119
x-amzn-requestid: cac5842e-2b57-4eda-9b09-27ec8a0b1bf8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMiE7Hq0oAMFzHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381b085-151f123551f999a918de8a3a;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 06:21:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mrS561ug59NStQyD3cH4ndqGvY3QiLVeMFOoC86ktj52PghNjeYa5w==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 20:55:39 GMT
age: 43385
etag: "398fd2d837c73f54c4591b69cd683f29bdf9184a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9449 bytes)
Hash
249aec334460c66dc88b9e8def4e48df
f86d1d278ba5b24587b10519b1b30d75044efd97
b083151804ced0533a5b33302ef110b50ddc4bf653de0fb8f6c7711f4bc29fe2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9449
x-amzn-requestid: c21c52f9-d971-46d9-b632-0439a0e23da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZkxHKbIAMFxkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6fb7-2b8cc0982af568626f4a4bbf;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:35:51 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XFIpOllaPcRJOsgZI2EVDyFv-Doz62OcY6gxFlejoXxdeVGya-PNFg==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:53:26 GMT
age: 39918
etag: "f86d1d278ba5b24587b10519b1b30d75044efd97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8016 bytes)
Hash
436b46a2eea584bd8ec1dba5603c8659
fed437d1919af63f9d58396f318568aadae3d868
fff21dd129f35807bfc29c6582661a79e764238076e540968b57fcad18811566

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8016
x-amzn-requestid: bfb5f288-4467-467a-9b30-1055a4e6bc54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZPeE4nIAMFvnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2f-53a5a66704157f4e003ecfa4;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:35 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lUqXgbpEaZh9DO_rv0K5pzHUAF1DsASkKYNTU6t5AUWZjHNV9LRojA==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:05 GMT
age: 39459
etag: "fed437d1919af63f9d58396f318568aadae3d868"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11233 bytes)
Hash
dcdb77a21f91a4a280ac9a8efbc48bbd
74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d
5ee7c45f21b38c653d03a24b10a190a9e9266226d221b006e787cd3719088d7f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11233
x-amzn-requestid: 89afb72e-6967-47d0-a0ad-48cad8cd08e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIpgOEi0oAMFstg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638022ce-1e8087e734e71d611df75830;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 02:05:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d9wLy3xAxK6RiYf25v_GFT1gdezT8IzMxaFyGRuGm2nxOBh6uEOg3w==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:29 GMT
age: 39435
etag: "74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.biosindir.com/Tpl/Home/default/Public/js/slide.js

173.232.32.226

200 OK

168 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/js/slide.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
Unicode text, UTF-8 text
Size
168 B (168 bytes)
Hash
cb90281f76b3d9a2be354a5740946973
2a34a9dd10f6a2c03e16c2cfe4afeb6681c5e0bf
2dbfeec39d9b1646ce9405316c4a36bd0832bd5f06a18c4ddc6ee81eb01c5089

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Tpl/Home/default/Public/js/slide.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/jquery.la.min.js

173.232.32.226

200 OK

253 B

URL HTTP/1.1
www.biosindir.com/jquery.la.min.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
ASCII text
Size
253 B (253 bytes)
Hash
c8f295b7d168cfcdb83a8a09ce784f2e
6bfd43f1abe424018dff1485abbfa4b410f00eb9
39b35b18ca163afcd31f9b384018853a9e7d40eebf21723cefa161e2453f1eed

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jquery.la.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript
Content-Length: 253
Last-Modified: Fri, 02 Sep 2022 07:43:18 GMT
Connection: keep-alive
ETag: "6311b416-fd"
Expires: Sat, 03 Dec 2022 09:58:44 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
8c4b1314ed9800b33cd26a8e243f9c26
2c0ad10528d236eeb50dcfa4448812e2c03941ac
38a9b4741897e13622189cb609bb6b0b1b3b18ca17670240d11e553da01c8f88

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 07 Dec 2022 05:24:24 GMT
ETag: "2c0ad10528d236eeb50dcfa4448812e2c03941ac"
Last-Modified: Sat, 03 Dec 2022 05:24:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2734
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773b1a2ef8ccfac0-OSL

www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.8.0.min.js

173.232.32.226

200 OK

37 kB

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/js/jquery-1.8.0.min.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
Unicode text, UTF-8 text, with very long lines (60944), with CRLF, LF line terminators
Size
37 kB (37381 bytes)
Hash
e82dabb42c164bb5ce0b664c6b9fd0a1
43a5b0985c42dec0d128b4007beca44d4c12bba8
d37fbda30189c1a13efec0a7daa161c73f05b13220734f26e61a2cb1e31cf55b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Tpl/Home/default/Public/js/jquery-1.8.0.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

p1.qhimg.com/d/_onebox/search.png

54.230.111.108

200 OK

2.9 kB

URL HTTP/1.1
p1.qhimg.com/d/_onebox/search.png
IP
54.230.111.108:0
ASN
#16509 AMAZON-02

File type
PNG image data, 260 x 43, 8-bit colormap, non-interlaced\012- data
Size
2.9 kB (2941 bytes)
Hash
996729035d9ea7dbd1dcf49bf99e78d9
aba797d529929ca0c864eaf7d3261aee61f3ad78
f7b46e16e323b71d7e8308e8aa62ab36453dd3b57935424f4b4166947f0e5863

HTTP Headers

GET /d/_onebox/search.png HTTP/1.1
Host: p1.qhimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2941
Connection: keep-alive
Date: Mon, 21 Nov 2022 18:05:46 GMT
Last-Modified: Tue, 05 Jan 2021 11:28:00 GMT
xzp: zhkbrquvsxaf
Expires: Sun, 19 Feb 2023 18:05:46 GMT
Cache-Control: max-age=7776000
Access-Control-Allow-Origin: *
XCS: HIT
KCS-Via: MISS from w-fc03.lato;MISS from w-sc02.bjyt
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SFen4mmSww5aDdcl8nR90TNLhzJxMhwDrM6anBc5hGqOIsvzSPIdSQ==
Age: 1003978

www.biosindir.com/Tpl/Home/default/Public/js/jquery.min.js

173.232.32.226

200 OK

38 kB

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/js/jquery.min.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
ASCII text, with very long lines (32038)
Size
38 kB (37501 bytes)
Hash
f46c368601c2bcaefe072a412857c9e7
b10cce460872e7a741ff4b6421c3d042d3983958
c47b64ac651dfe7fc0400f1980d363405b6b942c4c8c5f9d17036f4b6a49a757

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Tpl/Home/default/Public/js/jquery.min.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:44 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

ocsp.trust-provider.cn/

47.246.44.205

200 OK

600 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
600 B (600 bytes)
Hash
97061fd267e899efe9d736b0410c689d
b5a39bc7baeb21aabea27b82242eac6f009001e7
2e9b9913d8058385fcb8b682692295e04a84889ab36e9fe43b0a20a3a55853e0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 03 Dec 2022 08:58:45 GMT
last-modified: Wed, 30 Nov 2022 16:40:30 GMT
expires: Wed, 07 Dec 2022 16:40:29 GMT
etag: "b5a39bc7baeb21aabea27b82242eac6f009001e7"
cache-control: max-age=600238,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
accept-ranges: bytes
cf-ray: 773b1a2e5fc26957-FRA
via: cache8.l2de2[195,0], cache7.se1[216,0], cache1.se1[218,0]
timing-allow-origin: *, *
eagleid: 2ff62c9516700579248207333e, 2ff62c9516700579248207333e

www.biosindir.com/Tpl/Home/default/Public/images/2.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/2.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/2.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/2.jpg

www.biosindir.com/Tpl/Home/default/Public/images/1.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/1.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/1.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/1.jpg

www.biosindir.com/Upload/60ebe39bad724.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Upload/60ebe39bad724.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Upload/60ebe39bad724.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe39bad724.jpg

www.biosindir.com/Upload/60ebe247a2230.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Upload/60ebe247a2230.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Upload/60ebe247a2230.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe247a2230.jpg

www.biosindir.com/Tpl/Home/default/Public/images/cp-tit.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/cp-tit.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/cp-tit.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-tit.jpg

www.myyilufa888.com/ff/pp.js

50.3.187.107

200 OK

1.9 kB

URL HTTP/1.1
www.myyilufa888.com/ff/pp.js
IP
50.3.187.107:0
ASN
#62904 AS62904

File type
HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (559), with CRLF line terminators
Size
1.9 kB (1910 bytes)
Hash
beecb20cae1291abfba2955779241436
0dc6a362525b453b482751f49b760b2834729e09
8dc965875ffd38f509982bb12a700f245ff348416b4c805ead19250bfb686ef8

HTTP Headers

GET /ff/pp.js HTTP/1.1
Host: www.myyilufa888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 29 Oct 2022 02:48:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"635c948d-1a24"
Content-Encoding: gzip

www.biosindir.com/Upload/6319a8e2aefc4.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Upload/6319a8e2aefc4.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Upload/6319a8e2aefc4.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/6319a8e2aefc4.jpg

www.biosindir.com/Upload/60ebe4cca49b7.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Upload/60ebe4cca49b7.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Upload/60ebe4cca49b7.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe4cca49b7.jpg

www.biosindir.com/Upload/60ebe45de5ec6.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Upload/60ebe45de5ec6.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Upload/60ebe45de5ec6.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe45de5ec6.jpg

www.biosindir.com/Upload/60ebe5fbd892d.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Upload/60ebe5fbd892d.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Upload/60ebe5fbd892d.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe5fbd892d.jpg

www.biosindir.com/Upload/60ebe5ab8ab5b.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Upload/60ebe5ab8ab5b.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Upload/60ebe5ab8ab5b.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe5ab8ab5b.jpg

www.biosindir.com/Upload/60ebe56c04e5d.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Upload/60ebe56c04e5d.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Upload/60ebe56c04e5d.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Upload/60ebe56c04e5d.jpg

www.biosindir.com/Tpl/Home/default/Public/images/xw-img.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/xw-img.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/xw-img.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img.jpg

www.biosindir.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js

173.232.32.226

200 OK

3.8 kB

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
ISO-8859 text, with very long lines (419)
Size
3.8 kB (3754 bytes)
Hash
8cecf3ad205e59c6600ada4e4d3832ee
55fec1ba9385a6eaa7d3ae4b284d3b817c02059c
e92ba472ea8b48a31bffb5abcee2142eed58224d38472d96d70947265b517476

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.biosindir.com/Tpl/Home/default/Public/images/top-tel.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/top-tel.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/top-tel.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/top-tel.jpg

www.biosindir.com/Tpl/Home/default/Public/images/logo.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/logo.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/logo.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/logo.jpg

www.baidu.com/img/baidu_jgylogo3.gif

104.193.88.123

200 OK

705 B

URL HTTP/1.1
www.baidu.com/img/baidu_jgylogo3.gif
IP
104.193.88.123:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 117 x 38\012- data
Size
705 B (705 bytes)
Hash
803bb46a6acef395ed9353de2dcf26f5
684764e45ebb267a15c337a6eb671047c7873ead
dc506b4253e2bb145e5b370f6088842382a8c2bd0632d9b265744f706727f7f5

HTTP Headers

GET /img/baidu_jgylogo3.gif HTTP/1.1
Host: www.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=315360000
Content-Length: 705
Content-Type: image/gif
Date: Sat, 03 Dec 2022 08:58:45 GMT
Etag: "2c1-4a6473f6030c0"
Expires: Tue, 30 Nov 2032 08:58:45 GMT
Last-Modified: Wed, 22 Jun 2011 06:40:43 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=D83FD8C30E1E682057347197BD897366:FG=1; expires=Sun, 03-Dec-23 08:58:45 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1

www.biosindir.com/Tpl/Home/default/Public/images/xw-tit.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/xw-tit.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/xw-tit.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-tit.jpg

www.biosindir.com/Tpl/Home/default/Public/images/about-img.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/about-img.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/about-img.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/about-img.jpg

www.biosindir.com/Tpl/Home/default/Public/images/banquan.png

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/banquan.png
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/banquan.png HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/banquan.png

www.biosindir.com/Tpl/Home/default/Public/images/footer-logo.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/footer-logo.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/footer-logo.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/footer-logo.jpg

www.biosindir.com/Tpl/Home/default/Public/images/xw-img1.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/xw-img1.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/xw-img1.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img1.jpg

www.biosindir.com/Tpl/Home/default/Public/images/4.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/4.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/4.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/4.jpg

www.biosindir.com/Tpl/Home/default/Public/images/cp-bg.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/cp-bg.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/cp-bg.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/Tpl/Home/default/Public/css/style.css

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-bg.jpg

www.biosindir.com/Tpl/Home/default/Public/images/about-bg.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/about-bg.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/about-bg.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/Tpl/Home/default/Public/css/style.css

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/about-bg.jpg

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
a26ecfb026b1d13a10b75a48b2fb76b0
56aa0f2f9096fcffd1c322801c02aa3759b3431e
0690d8a6c505a7a4fcd95d6c276400ae649a49be698312519b0cf6dfc0b12c35

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 07 Dec 2022 05:33:52 GMT
ETag: "56aa0f2f9096fcffd1c322801c02aa3759b3431e"
Last-Modified: Sat, 03 Dec 2022 05:33:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 234
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773b1a341bc6fac0-OSL

www.biosindir.com/Tpl/Home/default/Public/images/themes.gif

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/themes.gif
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/themes.gif HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/Tpl/Home/default/Public/css/style.css

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/themes.gif

www.biosindir.com/Tpl/Home/default/Public/images/ys-bg.jpg

173.232.32.226

302 Moved Temporarily

0 B

URL HTTP/1.1
www.biosindir.com/Tpl/Home/default/Public/images/ys-bg.jpg
IP
173.232.32.226:0
ASN
#62904 AS62904

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Tpl/Home/default/Public/images/ys-bg.jpg HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/Tpl/Home/default/Public/css/style.css

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.guangzhuangji.com/Tpl/Home/default/Public/images/ys-bg.jpg

www.biosindir.com/home/public/getOnline.html

173.232.32.226

200 OK

31 B

URL HTTP/1.1
www.biosindir.com/home/public/getOnline.html
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
JSON data\012- , ASCII text, with no line terminators
Size
31 B (31 bytes)
Hash
cf617f528c3c72eb7fc4b080420ab816
8ce4440ce428202102f5d59fa92495fc626835ea
8762ede700f7770f918576b4ab26a348f3620054d0a2b1c5b3c9694e74d122cd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

POST /home/public/getOnline.html HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Origin: http://www.biosindir.com
Connection: keep-alive
Referer: http://www.biosindir.com/
Content-Length: 0

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:45 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

ocsp.trust-provider.cn/

47.246.44.205

200 OK

600 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
600 B (600 bytes)
Hash
1c4791fc653dea2a9a8b08f9ba7c33ee
3a927a278e87cd63dd7342ca40b1d06e341d869f
c725a9580407cf98b9e9871bf5a3ebf89e13e35d6673187d44ddd657eef2ca51

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 03 Dec 2022 08:58:46 GMT
last-modified: Thu, 01 Dec 2022 19:27:54 GMT
expires: Thu, 08 Dec 2022 19:27:53 GMT
etag: "3a927a278e87cd63dd7342ca40b1d06e341d869f"
cache-control: max-age=581209,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb5
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
accept-ranges: bytes
cf-ray: 773b1a35ae1b92b3-FRA
via: cache19.l2de2[30,0], cache7.se1[53,0], cache1.se1[55,0]
timing-allow-origin: *, *
eagleid: 2ff62c9516700579259938115e, 2ff62c9516700579259938115e

www.mylf888.com/dan/indexsun.html

50.3.187.42

200 OK

1.3 kB

URL HTTP/1.1
www.mylf888.com/dan/indexsun.html
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.3 kB (1333 bytes)
Hash
7b08a56e74a947d1ede46fbf50ba56a4
4767a75baa1b102b91932c060463db94a8fe26b3
8b41247fbbb5dacee0198734bd601e68d0f38c032186be1e95550e99fec6ebb4

HTTP Headers

GET /dan/indexsun.html HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: text/html
Last-Modified: Sat, 29 Oct 2022 02:39:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"635c9251-1858"
Content-Encoding: gzip

www.mylf888.com/dan/js/zhongguomeng.js

50.3.187.42

200 OK

991 B

URL HTTP/1.1
www.mylf888.com/dan/js/zhongguomeng.js
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
ASCII text, with CRLF line terminators
Size
991 B (991 bytes)
Hash
615baf7c4369cb0704e2c74b4f36e325
3249968cece020ae5c13174724d479a2597acef4
0aa4c844b0eac5bb878dc622ba576ef4d674e875bae9c9560ab03e90c0120e60

HTTP Headers

GET /dan/js/zhongguomeng.js HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: application/javascript
Content-Length: 991
Last-Modified: Sat, 03 Dec 2022 05:49:09 GMT
Connection: keep-alive
ETag: "638ae355-3df"
Accept-Ranges: bytes

www.sogou.com/web/index/images/logo_440x140.v.4.png

119.28.109.132

200 OK

3.0 kB

URL HTTP/1.1
www.sogou.com/web/index/images/logo_440x140.v.4.png
IP
119.28.109.132:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type
PNG image data, 440 x 140, 8-bit colormap, non-interlaced\012- data
Size
3.0 kB (2950 bytes)
Hash
31de1d2fa7d918fab2f59984391db1c8
4f4b78796b3fbf19971f182175bcd92b01ee470f
29f87d6615f36a54e3edc8c7f05eb9b480d1f2989dec8da68e82747d060aea85

HTTP Headers

GET /web/index/images/logo_440x140.v.4.png HTTP/1.1
Host: www.sogou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/png
Content-Length: 2950
Connection: keep-alive
Last-Modified: Mon, 10 Feb 2020 03:11:55 GMT
Set-Cookie: ABTEST=8|1670057926|v17; expires=Mon, 02-Jan-23 08:58:46 GMT; path=/
IPLOC=NO; expires=Sun, 03-Dec-23 08:58:46 GMT; domain=.sogou.com; path=/
SUID=9A2A5A5B1431A40A00000000638B0FC6; expires=Fri, 28-Nov-2042 08:58:46 GMT; domain=.sogou.com; path=/
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
ETag: "5e40c9fb-b86"
Expires: Thu, 01 Jun 2023 08:58:46 GMT
Cache-Control: max-age=15552000
UUID: c61fb91c-2e81-4737-bb5e-72bc08b9667f
Accept-Ranges: bytes

www.mylf888.com/jquery.la.min.js

50.3.187.42

404 Not Found

162 B

URL HTTP/1.1
www.mylf888.com/jquery.la.min.js
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
70461da8b94c6ca5d2fda3260c5a8c3b
994bc667720c21257500e29038c1a5f61e25da1e
f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee

HTTP Headers

GET /jquery.la.min.js HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive

www.mylf888.com/dan/index.css

50.3.187.42

200 OK

505 B

URL HTTP/1.1
www.mylf888.com/dan/index.css
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
ASCII text
Size
505 B (505 bytes)
Hash
64264c1ffc415ab97cc63ea904ff0304
a5ad17b604051533e9bf9cd0b50e52fba75f943c
d8859eafd3778ea6403a584689b6511243cb0e39b51f182b7d7b09c21ce28e5e

HTTP Headers

GET /dan/index.css HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: text/css
Last-Modified: Tue, 11 May 2021 11:00:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"609a63c6-453"
Content-Encoding: gzip

www.guangzhuangji.com/Tpl/Home/default/Public/images/themes.gif

58.64.153.48

200 OK

338 B

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/themes.gif
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
GIF image data, version 89a, 76 x 61\012- data
Size
338 B (338 bytes)
Hash
d99c9f0ee5a835be0ce3144163c2e180
3394c15ed015edb587790151d0bf9b03790ff9fc
4b7551fd557cbb80e896c3380e39758e382855789bd93025c9da5b7e9159c92d

HTTP Headers

GET /Tpl/Home/default/Public/images/themes.gif HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:45 GMT
ETag: "167-5a8d266cf1840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 338
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: image/gif

www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-tit.jpg

58.64.153.48

200 OK

6.9 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-tit.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 329x25, components 3\012- data
Size
6.9 kB (6914 bytes)
Hash
0b1e079d59c87e6b1f614cbb8005cf8c
7ae69c965a75f1f998bd39b467bfdb0883a0fa64
8348db900a24c090ae2b8efa1a333ca3af869bfd3a45d0f67a4728df205845d3

HTTP Headers

GET /Tpl/Home/default/Public/images/cp-tit.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:27 GMT
ETag: "1c41-5a8d265bc6fc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6914
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

hm.baidu.com/hm.js?f1398b8b70058bb06149bcd5b7d8f911

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?f1398b8b70058bb06149bcd5b7d8f911
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (619)
Size
11 kB (11257 bytes)
Hash
3963f0a5b7f746d284bff9f053337e86
ca485967f7c520b18f81824f7e1825ddc3468906
db575ca7667077c021a17f829a7253e4df14ae10d6c5c6ea368a9cfe5e6c704b

HTTP Headers

GET /hm.js?f1398b8b70058bb06149bcd5b7d8f911 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Sat, 03 Dec 2022 08:58:46 GMT
Etag: cb4e9b569d4ef31f4725b010d2e9925f
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B801BD6D360D6DB1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

www.mylf888.com/dan/img/bwin1000.gif

50.3.187.42

200 OK

57 kB

URL HTTP/1.1
www.mylf888.com/dan/img/bwin1000.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
57 kB (57413 bytes)
Hash
2e599e6d4d3d33ff4de9f6729899c960
ba96b8f555d5907c0b67c723aaeba8250098e61c
3bba9661f9ad5b20934c5a85fdb31b01006948f2dcb27ff7f81cbd958b2c4fb5

HTTP Headers

GET /dan/img/bwin1000.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/gif
Content-Length: 57413
Last-Modified: Mon, 23 May 2022 07:41:45 GMT
Connection: keep-alive
ETag: "628b3ab9-e045"
Accept-Ranges: bytes

www.mylf888.com/dan/img/ld891.jpg

50.3.187.42

200 OK

222 kB

URL HTTP/1.1
www.mylf888.com/dan/img/ld891.jpg
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
PNG image data, 2100 x 150, 8-bit colormap, non-interlaced\012- data
Size
222 kB (222004 bytes)
Hash
c514cc26a8bbf5cb52abdf9ab9e68980
18199a677d4fbb0cf0a1c7f9af076c2ae76fb4cb
3a39dc076d1c0bfec10debd1c0f54249d89036049dad5f24255eb2e6b610b27d

HTTP Headers

GET /dan/img/ld891.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/jpeg
Content-Length: 222004
Last-Modified: Tue, 26 Jul 2022 08:11:41 GMT
Connection: keep-alive
ETag: "62dfa1bd-36334"
Accept-Ranges: bytes

www.mylf888.com/dan/img/xintyc.gif

50.3.187.42

200 OK

362 kB

URL HTTP/1.1
www.mylf888.com/dan/img/xintyc.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 1020 x 85\012- data
Size
362 kB (362518 bytes)
Hash
bcbf48cc8ce9f196243aa50fb754f4cd
6a5efd0572153c8721f6a4e0a16db1d167d13592
06f6e6b9728c7d2ad9d0015202ff0d4cab15ec15ac50404964b301cf96fc8f07

HTTP Headers

GET /dan/img/xintyc.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/gif
Content-Length: 362518
Last-Modified: Wed, 02 Jun 2021 01:49:08 GMT
Connection: keep-alive
ETag: "60b6e394-58816"
Accept-Ranges: bytes

www.mylf888.com/dan/img/kaiyun100.jpg

50.3.187.42

200 OK

64 kB

URL HTTP/1.1
www.mylf888.com/dan/img/kaiyun100.jpg
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1090x141, components 3\012- data
Size
64 kB (63943 bytes)
Hash
baba23b989f46d56bf7bccbcb684f8a9
efba0da806c3e339335d1b5716af81df13da42aa
d94177e2f5bb8337e610eb21f1a78380179d5d5e7703d85ae9f15e45f77d46fd

HTTP Headers

GET /dan/img/kaiyun100.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/jpeg
Content-Length: 63943
Last-Modified: Sat, 29 Oct 2022 03:38:51 GMT
Connection: keep-alive
ETag: "635ca04b-f9c7"
Accept-Ranges: bytes

www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-bg.jpg

58.64.153.48

200 OK

15 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/cp-bg.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x892, components 3\012- data
Size
15 kB (14783 bytes)
Hash
bc25093d53d19e07339cd4df7a443cd8
f55f2cbbbe2e5f65ec41c50a318c53e1cbcd7fc9
00efdc9ff6884728bb30111ad45cfc2480a0d8aee3a31114ed0c020d6c416a0a

HTTP Headers

GET /Tpl/Home/default/Public/images/cp-bg.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:24 GMT
ETag: "83ab-5a8d2658ea900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14783
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

www.mylf888.com/jquery.la.min.js

50.3.187.42

404 Not Found

162 B

URL HTTP/1.1
www.mylf888.com/jquery.la.min.js
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
70461da8b94c6ca5d2fda3260c5a8c3b
994bc667720c21257500e29038c1a5f61e25da1e
f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee

HTTP Headers

GET /jquery.la.min.js HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive

www.mylf888.com/dan/img/blakimg.jpg

50.3.187.42

200 OK

122 kB

URL HTTP/1.1
www.mylf888.com/dan/img/blakimg.jpg
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x1400, components 3\012- data
Size
122 kB (122095 bytes)
Hash
32a8354488a992361e0a9c29f87f0eeb
585df2d841f06ab2852e7f030b12cc2d40bb5c0e
46d8ee2ab6daa69ec6c8b1b99a6264e4879524cfe9e8b49bb05914d478fa4824

HTTP Headers

GET /dan/img/blakimg.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/index.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 122095
Last-Modified: Tue, 11 May 2021 10:59:22 GMT
Connection: keep-alive
ETag: "609a638a-1dcef"
Accept-Ranges: bytes

www.mylf888.com/dan/img/tyc999.gif

50.3.187.42

200 OK

212 kB

URL HTTP/1.1
www.mylf888.com/dan/img/tyc999.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 1000 x 300\012- data
Size
212 kB (211787 bytes)
Hash
2342695d65196553e9e5b823fb0196ec
9c6c31108d5d9ef9ea4887281e5dd2d85df6317f
bf342df8d510eb38463950b34e02cb95ec11dffb688b9382639b883e07daed81

HTTP Headers

GET /dan/img/tyc999.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 211787
Last-Modified: Mon, 26 Sep 2022 01:55:27 GMT
Connection: keep-alive
ETag: "6331068f-33b4b"
Accept-Ranges: bytes

www.mylf888.com/dan/img/xpj999.gif

50.3.187.42

200 OK

649 kB

URL HTTP/1.1
www.mylf888.com/dan/img/xpj999.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 1000 x 200\012- data
Size
649 kB (649012 bytes)
Hash
4b2329aee1fcc97910223870de0a7ac3
f7a5bd1bee03223ee41d7a586569337aefb09ea2
ddff3a89b79326f02c8e2ba68f8534df4ad3196134e74ec0accb51800cd4de3d

HTTP Headers

GET /dan/img/xpj999.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/gif
Content-Length: 649012
Last-Modified: Thu, 08 Sep 2022 06:45:06 GMT
Connection: keep-alive
ETag: "63198f72-9e734"
Accept-Ranges: bytes

www.mylf888.com/dan/img/wns111.gif

50.3.187.42

200 OK

177 kB

URL HTTP/1.1
www.mylf888.com/dan/img/wns111.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 960 x 80\012- data
Size
177 kB (177253 bytes)
Hash
40c5a20c644663ccb411529e39250f18
1543e1b4f210a2f6e56e67d828672e54d4b38a7d
e3461a38cba8e8b063619522d87e8886ac75bec436bc12e0d2f9ca69bb987ff3

HTTP Headers

GET /dan/img/wns111.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 177253
Last-Modified: Tue, 11 May 2021 11:00:03 GMT
Connection: keep-alive
ETag: "609a63b3-2b465"
Accept-Ranges: bytes

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1701265708&si=f1398b8b70058bb06149bcd5b7d8f911&v=1.3.0&lv=1&sn=29520&r=0&ww=1280&u=http%3A%2F%2Fwww.biosindir.com%2F&tt=%E5%A4%A7%E9%98%B3%E5%9F%8E%E9%9B%86%E5%9B%A2%E5%A8%B1%E4%B9%90app%E7%BD%91%E5%9D%80%E4%B8%8B%E8%BD%BD202%7C%E4%B8%BB%E7%AB%99

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1701265708&si=f1398b8b70058bb06149bcd5b7d8f911&v=1.3.0&lv=1&sn=29520&r=0&ww=1280&u=http%3A%2F%2Fwww.biosindir.com%2F&tt=%E5%A4%A7%E9%98%B3%E5%9F%8E%E9%9B%86%E5%9B%A2%E5%A8%B1%E4%B9%90app%E7%BD%91%E5%9D%80%E4%B8%8B%E8%BD%BD202%7C%E4%B8%BB%E7%AB%99
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1701265708&si=f1398b8b70058bb06149bcd5b7d8f911&v=1.3.0&lv=1&sn=29520&r=0&ww=1280&u=http%3A%2F%2Fwww.biosindir.com%2F&tt=%E5%A4%A7%E9%98%B3%E5%9F%8E%E9%9B%86%E5%9B%A2%E5%A8%B1%E4%B9%90app%E7%BD%91%E5%9D%80%E4%B8%8B%E8%BD%BD202%7C%E4%B8%BB%E7%AB%99 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.biosindir.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 03 Dec 2022 08:58:47 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=BFF7E8AF8488F3C7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

www.mylf888.com/dan/img/yaobo09.png

50.3.187.42

200 OK

375 kB

URL HTTP/1.1
www.mylf888.com/dan/img/yaobo09.png
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
PNG image data, 1434 x 168, 8-bit/color RGBA, non-interlaced\012- data
Size
375 kB (375070 bytes)
Hash
8246fea5d34a8158b32ca6c245ea16b6
ba9ad21b7780a9ea8a530f363c09d4448cac7b6e
12bb8811bdbadec42e092ff12b79bb52657f2cd971e188052610e6358e3c9813

HTTP Headers

GET /dan/img/yaobo09.png HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:46 GMT
Content-Type: image/png
Content-Length: 375070
Last-Modified: Fri, 29 Oct 2021 10:53:53 GMT
Connection: keep-alive
ETag: "617bd2c1-5b91e"
Accept-Ranges: bytes

www.mylf888.com/dan/img/manbetx10.gif

50.3.187.42

200 OK

320 kB

URL HTTP/1.1
www.mylf888.com/dan/img/manbetx10.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
PNG image data, 1240 x 151, 8-bit/color RGBA, non-interlaced\012- data
Size
320 kB (319786 bytes)
Hash
a5676971e3a14edbb3c97a69ca17b820
a2bfd63cc4227018cb9be5f85ef207f6fbb4e836
fe87f00bd9fc4205dc44dfb35d63b7e8fd6980c8714149d3e0c5a74e8c28ef80

HTTP Headers

GET /dan/img/manbetx10.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 319786
Last-Modified: Fri, 20 May 2022 07:08:20 GMT
Connection: keep-alive
ETag: "62873e64-4e12a"
Accept-Ranges: bytes

www.mylf888.com/dan/img/bet365365.jpg

50.3.187.42

200 OK

118 kB

URL HTTP/1.1
www.mylf888.com/dan/img/bet365365.jpg
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x100, components 3\012- data
Size
118 kB (118484 bytes)
Hash
b601a3aeeb918c401a7e6203a27129f5
314ab685c22cf0f4979e2468ce2de55c74a959de
a86e74c3ec52a8b51388c52bad6b510042b1faf95bf730f20a7d6b899c373969

HTTP Headers

GET /dan/img/bet365365.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 118484
Last-Modified: Mon, 26 Sep 2022 02:39:22 GMT
Connection: keep-alive
ETag: "633110da-1ced4"
Accept-Ranges: bytes

www.guangzhuangji.com/Upload/6319a8e2aefc4.jpg

58.64.153.48

200 OK

48 kB

URL HTTP/1.1
www.guangzhuangji.com/Upload/6319a8e2aefc4.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2022:09:08 16:33:28], progressive, precision 8, 511x432, components 3\012- data
Size
48 kB (47690 bytes)
Hash
b3e853eecf22531cc4ab339ac1154168
f4dd114578d5ddf78d7873c20c48ffed6daa7feb
01c5cb784d1419c0ab045089ae00493a9f9a9f382c6241c1efd1597895f6ede3

HTTP Headers

GET /Upload/6319a8e2aefc4.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 08 Sep 2022 08:33:38 GMT
ETag: "e1f3-5e82649327c80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 47690
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

www.mylf888.com/dan/img/amdc1000x100.gif

50.3.187.42

200 OK

278 kB

URL HTTP/1.1
www.mylf888.com/dan/img/amdc1000x100.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 1000 x 100\012- data
Size
278 kB (278305 bytes)
Hash
71c7927a8115608a38ef646fbe1d245e
62308a2b77fe5db7519349d56e8f9daf1230a5dc
94cf5d84e80dc1006762bb51fe0a2ae9cd9a9a608eb4d60f25bbfb4e9959dbf8

HTTP Headers

GET /dan/img/amdc1000x100.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 278305
Last-Modified: Fri, 24 Dec 2021 11:28:19 GMT
Connection: keep-alive
ETag: "61c5aed3-43f21"
Accept-Ranges: bytes

www.mylf888.com/dan/img/yl1000x100.gif

50.3.187.42

200 OK

591 kB

URL HTTP/1.1
www.mylf888.com/dan/img/yl1000x100.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 1000 x 200\012- data
Size
591 kB (590972 bytes)
Hash
60f5165ec126a4b95de17cd8d93df564
9144c7659554767fe1c8c6bc0732fbd190c810fb
e84562dfeb76c6669ed9e07b976e1e2a63925573aa3ca92b44e12942a06f1232

HTTP Headers

GET /dan/img/yl1000x100.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 590972
Last-Modified: Thu, 08 Sep 2022 07:06:56 GMT
Connection: keep-alive
ETag: "63199490-9047c"
Accept-Ranges: bytes

www.mylf888.com/dan/img/1000x100.js.gif

50.3.187.42

200 OK

244 kB

URL HTTP/1.1
www.mylf888.com/dan/img/1000x100.js.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 1000 x 100\012- data
Size
244 kB (244005 bytes)
Hash
68fb65625bff58cfbfb43ad584b6b14d
02411259fcdd4faa799d66b3e1d0cb49948bc779
0c8c4923f415217e1b2a3348bcc0eba16466a27fca78181f44c1066377de11eb

HTTP Headers

GET /dan/img/1000x100.js.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 244005
Last-Modified: Tue, 11 May 2021 10:59:11 GMT
Connection: keep-alive
ETag: "609a637f-3b925"
Accept-Ranges: bytes

www.mylf888.com/dan/img/ftimg.jpg

50.3.187.42

200 OK

108 kB

URL HTTP/1.1
www.mylf888.com/dan/img/ftimg.jpg
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1917x375, components 3\012- data
Size
108 kB (108444 bytes)
Hash
a861842867123d6c63e8f9d383bb5826
329c4ab8ffc0ead46d3000f9a4a18e9794e6f532
d2d8b378f2d93728247e2522f9da94faaea515c5503e1113feb452aa3e610c36

HTTP Headers

GET /dan/img/ftimg.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 108444
Last-Modified: Mon, 14 Mar 2022 10:33:19 GMT
Connection: keep-alive
ETag: "622f19ef-1a79c"
Accept-Ranges: bytes

www.mylf888.com/dan/img/daohang.gif

50.3.187.42

200 OK

3.2 kB

URL HTTP/1.1
www.mylf888.com/dan/img/daohang.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 1000 x 50\012- data
Size
3.2 kB (3181 bytes)
Hash
acd657d8df9241a153133cdbc926f4b0
3510be93a9e851aa533ad47cc70e6ec91c5c8be0
fcb2f2759f42d40e5176e005f15482e629e97a1ef6117e2bf25959440e3f7b3f

HTTP Headers

GET /dan/img/daohang.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 3181
Last-Modified: Mon, 14 Mar 2022 06:47:21 GMT
Connection: keep-alive
ETag: "622ee4f9-c6d"
Accept-Ranges: bytes

www.mylf888.com/dan/img/jinsha168.jpg

50.3.187.42

200 OK

14 kB

URL HTTP/1.1
www.mylf888.com/dan/img/jinsha168.jpg
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
PNG image data, 333 x 79, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14242 bytes)
Hash
73c2658bd87f442dbe3688a4fe48352c
f5a31ed734b80202b74f6d296766ae2e8bbd7874
7156ba4542717f84d7acea3aef40754a8fb5d7ce99452ebf9c3a1d5b5f15e5ea

HTTP Headers

GET /dan/img/jinsha168.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 14242
Last-Modified: Mon, 14 Mar 2022 06:47:18 GMT
Connection: keep-alive
ETag: "622ee4f6-37a2"
Accept-Ranges: bytes

www.mylf888.com/dan/img/wnsr168.gif

50.3.187.42

200 OK

7.9 kB

URL HTTP/1.1
www.mylf888.com/dan/img/wnsr168.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 333 x 81\012- data
Size
7.9 kB (7889 bytes)
Hash
c5f1db8a552e95f0b0f6b0a9fc59b93e
7ddf31d81e285b78b0a2366546c69c10a66e3131
34684d52b7a18477268cf05f7560f4ba13d6a01b9948bfca2aa7040469f7ca8f

HTTP Headers

GET /dan/img/wnsr168.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 7889
Last-Modified: Mon, 14 Mar 2022 06:47:19 GMT
Connection: keep-alive
ETag: "622ee4f7-1ed1"
Accept-Ranges: bytes

www.mylf888.com/dan/img/tyc168.jpg

50.3.187.42

200 OK

9.9 kB

URL HTTP/1.1
www.mylf888.com/dan/img/tyc168.jpg
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 333x81, components 3\012- data
Size
9.9 kB (9866 bytes)
Hash
6d9b3cb1918e3cf4c7142f38e1c6302e
3c8bd0b1ce1bb167d9bccadc063039d8530be739
0037804244cfbf6211c14a75c8b023ae900699b2539e2151537331956fe9a291

HTTP Headers

GET /dan/img/tyc168.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 9866
Last-Modified: Mon, 14 Mar 2022 06:47:19 GMT
Connection: keep-alive
ETag: "622ee4f7-268a"
Accept-Ranges: bytes

www.mylf888.com/dan/img/xyl999.gif

50.3.187.42

200 OK

477 kB

URL HTTP/1.1
www.mylf888.com/dan/img/xyl999.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 1000 x 100\012- data
Size
477 kB (477348 bytes)
Hash
9e07a5cab4aa0dd2f4812fc347081ac8
b07f49e9cb7a8a678063ebede264aa7a60387348
38be687f0e62fcbf1b13a04003b15a3f9cef34bc2ab4332f33aa29e63e359765

HTTP Headers

GET /dan/img/xyl999.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 477348
Last-Modified: Wed, 02 Jun 2021 01:49:09 GMT
Connection: keep-alive
ETag: "60b6e395-748a4"
Accept-Ranges: bytes

www.mylf888.com/dan/img/xpj168.gif

50.3.187.42

200 OK

6.8 kB

URL HTTP/1.1
www.mylf888.com/dan/img/xpj168.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 333 x 81\012- data
Size
6.8 kB (6835 bytes)
Hash
efc3d4f0d0c2d35c69557e477b2e4fc6
2e00fe60321983aa9793dfbb747037ac625e15eb
c2ef12c881a522f618cb850034fc17c2f4509ffe6a379247710777f2ada5d47d

HTTP Headers

GET /dan/img/xpj168.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 6835
Last-Modified: Mon, 14 Mar 2022 06:47:19 GMT
Connection: keep-alive
ETag: "622ee4f7-1ab3"
Accept-Ranges: bytes

www.mylf888.com/dan/img/biwin999.gif

50.3.187.42

200 OK

9.2 kB

URL HTTP/1.1
www.mylf888.com/dan/img/biwin999.gif
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 334 x 81\012- data
Size
9.2 kB (9197 bytes)
Hash
d05fff7c08e48f787151cd283766a047
108d14a03d85fb2d7ecc7391ab48f71aff83a85f
eba6395900606e52a184b74fdbf2ee8990ca302d8778c02cd3e4921a6a9e411e

HTTP Headers

GET /dan/img/biwin999.gif HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/gif
Content-Length: 9197
Last-Modified: Thu, 24 Mar 2022 01:50:13 GMT
Connection: keep-alive
ETag: "623bce55-23ed"
Accept-Ranges: bytes

www.guangzhuangji.com/Upload/60ebe247a2230.jpg

58.64.153.48

200 OK

155 kB

URL HTTP/1.1
www.guangzhuangji.com/Upload/60ebe247a2230.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:32:57], progressive, precision 8, 600x497, components 3\012- data
Size
155 kB (155144 bytes)
Hash
b92eb59ef20a5b7fc8fd35d30e455f4d
43cd025b4cf758faedccff975ee53cf6f79713a8
9a660308ea5e4f77492c5ea43cccf3280cc055381df26cf51cc94fbc884159bd

HTTP Headers

GET /Upload/60ebe247a2230.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:33:43 GMT
ETag: "2a479-5c6ee0214ffc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Upload/60ebe39bad724.jpg

58.64.153.48

200 OK

148 kB

URL HTTP/1.1
www.guangzhuangji.com/Upload/60ebe39bad724.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:37:33], progressive, precision 8, 600x497, components 3\012- data
Size
148 kB (148131 bytes)
Hash
79d0c191452b2f592c1fcd4d4f399fd4
afd8483f4690bfd9985b7ad5e2933065735a9291
103794455c48d7ee6fd1f384eca2979e8b7000f6ecce108fb14c726254416cd6

HTTP Headers

GET /Upload/60ebe39bad724.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:46 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:39:23 GMT
ETag: "28914-5c6ee1658fcc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.mylf888.com/dan/img/aomendc999.jpg

50.3.187.42

200 OK

22 kB

URL HTTP/1.1
www.mylf888.com/dan/img/aomendc999.jpg
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 333x79, components 3\012- data
Size
22 kB (21563 bytes)
Hash
7962dc0719483a5ec18c92b5fa935fca
fa676567caebf334f37b4cc057092d3345129ce8
c25bfbb9468cce8ace9f0f244f9ad809d7e57245fa99df623a4a3911a065875c

HTTP Headers

GET /dan/img/aomendc999.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 21563
Last-Modified: Mon, 14 Mar 2022 06:47:18 GMT
Connection: keep-alive
ETag: "622ee4f6-543b"
Accept-Ranges: bytes

www.mylf888.com/dan/img/365bet168.jpg

50.3.187.42

200 OK

9.9 kB

URL HTTP/1.1
www.mylf888.com/dan/img/365bet168.jpg
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
GIF image data, version 89a, 333 x 82\012- data
Size
9.9 kB (9891 bytes)
Hash
657b00ba324258d9733fb707b7e05e54
938a86193c65ecc9bd2c23bf21abdefe43a829e6
ca81437f9e67704918e9d9e493984c860b0627cc23f62e9dc26020d33b84d470

HTTP Headers

GET /dan/img/365bet168.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 9891
Last-Modified: Mon, 14 Mar 2022 06:47:20 GMT
Connection: keep-alive
ETag: "622ee4f8-26a3"
Accept-Ranges: bytes

www.mylf888.com/dan/img/yongli168.jpg

50.3.187.42

200 OK

10 kB

URL HTTP/1.1
www.mylf888.com/dan/img/yongli168.jpg
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 333x81, components 3\012- data
Size
10 kB (10033 bytes)
Hash
ceeeec4a37140a66fe39f401691022fe
121f8658403c8fe024c73083fc49301a726c431c
48cb853f4ffbac3c4c1d743e6dd50e35f488b841a4c63443f498642dd439840a

HTTP Headers

GET /dan/img/yongli168.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 10033
Last-Modified: Mon, 14 Mar 2022 06:47:20 GMT
Connection: keep-alive
ETag: "622ee4f8-2731"
Accept-Ranges: bytes

www.mylf888.com/dan/img/yabo999.jpg

50.3.187.42

200 OK

10 kB

URL HTTP/1.1
www.mylf888.com/dan/img/yabo999.jpg
IP
50.3.187.42:0
ASN
#62904 AS62904

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 333x81, components 3\012- data
Size
10 kB (10099 bytes)
Hash
4a3ecd592f1716707fa98c9e748b6759
cc6c45369214748243e249096c7c61d02827ca09
9efe73ad6710d9a7d7600cbeeff9ff065953de78a01a833f85f8921b1030b80f

HTTP Headers

GET /dan/img/yabo999.jpg HTTP/1.1
Host: www.mylf888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mylf888.com/dan/indexsun.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:47 GMT
Content-Type: image/jpeg
Content-Length: 10099
Last-Modified: Mon, 14 Mar 2022 06:47:17 GMT
Connection: keep-alive
ETag: "622ee4f5-2773"
Accept-Ranges: bytes

www.guangzhuangji.com/Upload/60ebe56c04e5d.jpg

58.64.153.48

200 OK

98 kB

URL HTTP/1.1
www.guangzhuangji.com/Upload/60ebe56c04e5d.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:46:42], progressive, precision 8, 600x497, components 3\012- data
Size
98 kB (98270 bytes)
Hash
9b25e93c96f4881f44c6ddd05d96e603
fa4c8c3a376088a3f841a66e8a290dedacc03e48
f813d41320dea5cebcabc7bc02870e84cb326dad915e2a53adde9b4b5a955ae9

HTTP Headers

GET /Upload/60ebe56c04e5d.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:47:07 GMT
ETag: "1a754-5c6ee320110c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Upload/60ebe4cca49b7.jpg

58.64.153.48

200 OK

226 kB

URL HTTP/1.1
www.guangzhuangji.com/Upload/60ebe4cca49b7.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:44:19], progressive, precision 8, 600x497, components 3\012- data
Size
226 kB (226090 bytes)
Hash
cebe6bd29d9c529b9367b2e961c658e2
502167980347bcb0f45dd9bb00b05b09cd4e34a8
63cc85d9324aa6f2932d8f3359f3fc03a6a6230861bdb65ba7ca93cc90cdb583

HTTP Headers

GET /Upload/60ebe4cca49b7.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:44:28 GMT
ETag: "39e4e-5c6ee2886eb00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img.jpg

58.64.153.48

200 OK

152 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 13:54:07], progressive, precision 8, 670x285, components 3\012- data
Size
152 kB (152375 bytes)
Hash
8440b70cd7979cf33e2071a35af773da
510d6a47ddcbc115b800cf58e36504fdbd1061ec
ca37ce5f73e62400e4348dfa01ede7cf0f1c614cc598eb64053632f3c9b98da7

HTTP Headers

GET /Tpl/Home/default/Public/images/xw-img.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 05:54:08 GMT
ETag: "274c0-5c6e6bfe84000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Upload/60ebe5fbd892d.jpg

58.64.153.48

200 OK

216 kB

URL HTTP/1.1
www.guangzhuangji.com/Upload/60ebe5fbd892d.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:48:59], progressive, precision 8, 600x497, components 3\012- data
Size
216 kB (216309 bytes)
Hash
66f7140f1810785715f7a5ae39667cfa
7c09fe6893f774ec9caebc02b151e1446a74835f
eaf22d04db7ec5b9c6bd92a566e15ee3ac2dc4e6982ee5bbeda0bca9a647485a

HTTP Headers

GET /Upload/60ebe5fbd892d.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:49:31 GMT
ETag: "373f8-5c6ee3a9654c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/top-tel.jpg

58.64.153.48

200 OK

3.6 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/top-tel.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 36x34, components 3\012- data
Size
3.6 kB (3623 bytes)
Hash
4cd883846ba6450b8cbd147ae9717004
a524795648112e0a8839ed01d1b30356d2af921f
ad1764210080d63383c75fda788bc45c0494518a71814ceb8a695776e49d4b7d

HTTP Headers

GET /Tpl/Home/default/Public/images/top-tel.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:45 GMT
ETag: "1011-5a8d266cf1840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3623
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

www.guangzhuangji.com/Upload/60ebe45de5ec6.jpg

58.64.153.48

200 OK

301 kB

URL HTTP/1.1
www.guangzhuangji.com/Upload/60ebe45de5ec6.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:42:29], progressive, precision 8, 600x693, components 3\012- data
Size
301 kB (300641 bytes)
Hash
4ee46f54a749dec94f015ff4a9c8fbcc
d4f67b9026a3d7b7ce0bbfac6496864a8758ee94
8feb024e60aa3cda406565485f1fed5369281f5affda967a3ae239a5fc08b65d

HTTP Headers

GET /Upload/60ebe45de5ec6.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:42:37 GMT
ETag: "4c199-5c6ee21e93140-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Upload/60ebe5ab8ab5b.jpg

58.64.153.48

200 OK

358 kB

URL HTTP/1.1
www.guangzhuangji.com/Upload/60ebe5ab8ab5b.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=14, height=4000, bps=0, manufacturer=HUAWEI, model=YAL-AL10, orientation=upper-left, xresolution=204, yresolution=212, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:48:04, width=3000], progressive, precision 8, 600x699, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 27764-0, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 17432749610407829700608.000000, slope 75530590359423817384954628669440.000000\012- data
Size
358 kB (358479 bytes)
Hash
7a5d22463dd9094c01dd9d01892bd337
39a7af6c2fe772268fa954251c8d752f925b71f0
6698aec61a223be533eae95a0114adbff6c14c6ac3c7e2989d6ab83b6fa4af77

HTTP Headers

GET /Upload/60ebe5ab8ab5b.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:47 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 14:48:11 GMT
ETag: "5ac69-5c6ee35d1a0c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/logo.jpg

58.64.153.48

200 OK

35 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/logo.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 14:54:24], progressive, precision 8, 465x63, components 3\012- data
Size
35 kB (34901 bytes)
Hash
82a0e0d3753c0921e17defd0577354fe
63e24965e0e654ccd8e46bbadb28a948bd98ab3f
f8da7891d10d1f9a58844d4634c0558d99a10d7e6034791b04e68377126d3604

HTTP Headers

GET /Tpl/Home/default/Public/images/logo.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 06:54:27 GMT
ETag: "a821-5c6e7979dcec0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 34901
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-tit.jpg

58.64.153.48

200 OK

5.9 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-tit.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 262x25, components 3\012- data
Size
5.9 kB (5918 bytes)
Hash
60f9bb430b16db2c4f365c16976bc0d1
2e3fdf8774c67c6e7398deb3f6e3e3338dc42b05
d06c8d902c666a137e7d68c98c6acae2e22f0a97b36851d06e6724c9fea49a5a

HTTP Headers

GET /Tpl/Home/default/Public/images/xw-tit.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:48 GMT
ETag: "18c8-5a8d266fcdf00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5918
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/about-img.jpg

58.64.153.48

200 OK

128 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/about-img.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2021:01:20 08:57:06], progressive, precision 8, 600x484, components 3\012- data
Size
128 kB (128125 bytes)
Hash
471feb4b7472a51c21396f394c9dad28
9773460b207f04ae60ca79e13d92dc9554abd082
078a6d46edb5330106ef1612c3913f017eb0295e7d1e7e49293a665270fa32c7

HTTP Headers

GET /Tpl/Home/default/Public/images/about-img.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 20 Jan 2021 00:57:08 GMT
ETag: "22135-5b94a6f34c100-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/banquan.png

58.64.153.48

200 OK

6.1 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/banquan.png
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
PNG image data, 599 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
6.1 kB (6070 bytes)
Hash
40c03483e5cd407b63fe9f79bf55dc61
6018564090f533bcfd3e17f54c2f3709e1455ec4
11b8a7af68854700df2ce2b34cd522959df66a8389aabd3e3a44247a9ca9dd41

HTTP Headers

GET /Tpl/Home/default/Public/images/banquan.png HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Fri, 11 Jun 2021 08:32:26 GMT
ETag: "18c2-5c47958f39a80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6070
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: image/png

www.guangzhuangji.com/Tpl/Home/default/Public/images/footer-logo.jpg

58.64.153.48

200 OK

23 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/footer-logo.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 11:22:44], progressive, precision 8, 421x60, components 3\012- data
Size
23 kB (23419 bytes)
Hash
2c265bfe9767f2362466ea1a058c894f
d473dfc673a67e1719ba0b0926c3f9e41dfcfe59
72e3820d4b431704d8829b6d2e5d132cd86813023608579764253c1e3a534c2d

HTTP Headers

GET /Tpl/Home/default/Public/images/footer-logo.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 03:22:45 GMT
ETag: "786f-5c6e4a284ab40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 23419
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/1.jpg

58.64.153.48

200 OK

714 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/1.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 11:33:01], progressive, precision 8, 1920x762, components 3\012- data
Size
714 kB (713762 bytes)
Hash
34e616d8b131649ff9363fb005f5da87
e5caea6e23359f88de6fb46bd52ad0eb6b7d459f
316f11a659c9ad9b093e2c87b9da247f7a756b64cbd99c2a50f0fb0c949575b7

HTTP Headers

GET /Tpl/Home/default/Public/images/1.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 03:33:02 GMT
ETag: "b162b-5c6e4c74b5780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/about-bg.jpg

58.64.153.48

200 OK

144 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/about-bg.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x321, components 3\012- data
Size
144 kB (144186 bytes)
Hash
36e97110ec83e0646daafc629da76595
f87e8ef6e0066a74770ed2dc93d65bf58faea818
5135137aa3b19672170360fbe21983997706a42060b6c23a018b8dbb945c23d7

HTTP Headers

GET /Tpl/Home/default/Public/images/about-bg.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Jun 2020 11:01:20 GMT
ETag: "23e2a-5a8d26551a000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img1.jpg

58.64.153.48

200 OK

62 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/xw-img1.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 13:56:15], progressive, precision 8, 488x170, components 3\012- data
Size
62 kB (62156 bytes)
Hash
743a14fbfe6139ce8c7d0a94c66a5fbc
51781928dae0a6106e0af627f5e0796981cde665
514f747a5f1de67e932d4a691612a38339e3b0b8950f08ecdac2e2dea8f0e14b

HTTP Headers

GET /Tpl/Home/default/Public/images/xw-img1.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 05:56:16 GMT
ETag: "10f91-5c6e6c7896000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/2.jpg

58.64.153.48

200 OK

801 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/2.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 11:43:18], progressive, precision 8, 1920x762, components 3\012- data
Size
801 kB (800925 bytes)
Hash
1ce94585b9e8744e4f9164f7f647fa16
08cfd0119f23bf499bb2a3949461b3b412e583b0
6a225e28d4714ecb464a6b300aaa90e23f8eaa954cbea25c1491972134d9c3dd

HTTP Headers

GET /Tpl/Home/default/Public/images/2.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 03:43:19 GMT
ETag: "c75b6-5c6e4ec1203c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/ys-bg.jpg

58.64.153.48

200 OK

199 kB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/ys-bg.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2022:09:09 08:48:32], progressive, precision 8, 1920x617, components 3\012- data
Size
199 kB (199355 bytes)
Hash
4032f3b463b600ba0616e2e719ed2624
f78bed6fb2e32c45bb6a8f7ca8db713662caf876
492bdfeb134e9174368dbe639c6e42654928947b7ad6d6f4b8a9f80dc31c2061

HTTP Headers

GET /Tpl/Home/default/Public/images/ys-bg.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Fri, 09 Sep 2022 00:48:34 GMT
ETag: "33232-5e833e7d49c80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.guangzhuangji.com/Tpl/Home/default/Public/images/4.jpg

58.64.153.48

200 OK

1.2 MB

URL HTTP/1.1
www.guangzhuangji.com/Tpl/Home/default/Public/images/4.jpg
IP
58.64.153.48:0
ASN
#17444 HKBN Enterprise Solutions Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:12 15:09:11], progressive, precision 8, 1920x762, components 3\012- data
Size
1.2 MB (1191057 bytes)
Hash
a672030acfd684a59269ee7251f170c9
218d5acbb989ad71d6ed1f4a222105371eba09b2
9e272b95ebff031ae8a48047838405671e58b5ce588c7ea565653e0e7ab3e106

HTTP Headers

GET /Tpl/Home/default/Public/images/4.jpg HTTP/1.1
Host: www.guangzhuangji.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.biosindir.com/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 08:58:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Jul 2021 07:09:13 GMT
ETag: "126aa4-5c6e7cc6d1840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.biosindir.com/shenfu.ico

173.232.32.226

200 OK

20 B

URL HTTP/1.1
www.biosindir.com/shenfu.ico
IP
173.232.32.226:0
ASN
#62904 AS62904

File type
data
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /shenfu.ico HTTP/1.1
Host: www.biosindir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.biosindir.com/
Cookie: Hm_lvt_f1398b8b70058bb06149bcd5b7d8f911=1670057925; Hm_lpvt_f1398b8b70058bb06149bcd5b7d8f911=1670057925

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 08:58:51 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11942 bytes)
Hash
becc8cdba57494c6fe212eb67634e1eb
c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8
fbb25b88b10a818bb0c6ad385b1e5ba54b87672c73bfa8a9c1ecb17dcc689d5a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 11942
x-amzn-requestid: ba8a5d03-7796-4c6d-a6df-3cc71b1c5259
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: chqukGmWoAMFtLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a24c3-609dc90d769060d30a16e3df;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 16:16:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: m6j_3bDGFIAHQYzrZ1zXqUb-HbEJ8XCoGH5mgBFOWRbLzoSiuNBnhg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:59:25 GMT
age: 39566
etag: "c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations