www.fuso98.com/fsbotbg/updatebg.exe
154.208.249.188 5.8 kB URL www.fuso98.com/fsbotbg/updatebg.exe
IP 154.208.249.188:0
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6253), with CRLF line terminators
Hash 60046fdc230b895d506285f2e46fe7ef
b3ea8559541762893d7f597cb956871aba6cb75d
7bf98acb6085e482318b3040921296b180f484b10854a213c6a71605e17c9b2e
GET /fsbotbg/updatebg.exe HTTP/1.1
Host: www.fuso98.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 06:27:14 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
27.123.235.168200 OK 6.5 kB URL User Request GET HTTP/1.1 IP 27.123.235.168:80
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (311)
Hash eff13ca43bc43ccc8f1894aea8147cc3
dacd5fd5e9448159e57016a9a903d46682e118d2
1caffe0dffd4a9da075cde769bdde87477bdf4673494b59d0966f643475ddd6c
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 27.123.235.168
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fuso98.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 06:27:15 GMT
Content-Type: text/html
Last-Modified: Tue, 07 Mar 2023 13:26:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64073b69-892e"
Content-Encoding: gzip
27.123.235.168/yefeng.js
27.123.235.168200 OK 1.3 kB IP 27.123.235.168:80
ASN #134548 DXTL Tseung Kwan O Service
File type Unicode text, UTF-8 text, with very long lines (589)
Hash 7cbda14ce8c6716eddd1129c3ba87c08
9f0ab68a1f631e82a36451133784bebf6bd6a4e4
b48537ed14a8d56c57efceea17de4c85161e6e44e0934d7897a7f00eca78ef2c
Analyzer Verdict Alert quad9 Sinkholed
GET /yefeng.js HTTP/1.1
Host: 27.123.235.168
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://27.123.235.168/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 06:27:15 GMT
Content-Type: application/javascript
Last-Modified: Fri, 02 Jun 2023 04:34:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6479714d-10d7"
Expires: Sun, 04 Jun 2023 18:27:15 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
27.123.235.168/bg.jpg
27.123.235.168200 OK 157 kB IP 27.123.235.168:80
ASN #134548 DXTL Tseung Kwan O Service
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1273, components 3\012- data
Size 157 kB (156678 bytes)
Hash d0ff3864b59ec3ae11d2abbbfde3c79f
26944b152e0842cb2ab120502012910b5077389f
1c6372867d94aa7e0c895f6c1fafee0e151cc01ddae64307cdb41514db7262cc
Analyzer Verdict Alert quad9 Sinkholed
GET /bg.jpg HTTP/1.1
Host: 27.123.235.168
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://27.123.235.168/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 06:27:16 GMT
Content-Type: image/jpeg
Content-Length: 156678
Last-Modified: Tue, 07 Mar 2023 13:26:01 GMT
Connection: keep-alive
ETag: "64073b69-26406"
Expires: Tue, 04 Jul 2023 06:27:16 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
27.123.235.168/logo.png
27.123.235.168200 OK 284 kB IP 27.123.235.168:80
ASN #134548 DXTL Tseung Kwan O Service
File type PNG image data, 265 x 265, 8-bit/color RGBA, non-interlaced\012- data
Size 284 kB (283987 bytes)
Hash 574b8f943ca20a948f40f56fa0289887
e84ba96e65d24a35b55a56b0ae5bd07fbd633495
08e8c92930d600630ff61ac3558b63290600bce144237ca09a69a2e778bac5ac
Analyzer Verdict Alert quad9 Sinkholed
GET /logo.png HTTP/1.1
Host: 27.123.235.168
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://27.123.235.168/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 06:27:16 GMT
Content-Type: image/png
Content-Length: 283987
Last-Modified: Tue, 07 Mar 2023 13:26:01 GMT
Connection: keep-alive
ETag: "64073b69-45553"
Expires: Tue, 04 Jul 2023 06:27:16 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
27.123.235.168/favicon.ico
27.123.235.168404 Not Found 146 B URL GET HTTP/1.1 27.123.235.168/favicon.ico
IP 27.123.235.168:80
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 27.123.235.168
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://27.123.235.168/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 04 Jun 2023 06:27:16 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
edge-api.meiqia.com/summer/widget/route/match
43.159.118.45204 No Content 0 B URL OPTIONS HTTP/1.1 edge-api.meiqia.com/summer/widget/route/match
IP 43.159.118.45:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /summer/widget/route/match HTTP/1.1
Host: edge-api.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-ent-id
Referer: http://27.123.235.168/
Origin: http://27.123.235.168
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx
Date: Sun, 04 Jun 2023 06:27:17 GMT
Access-Control-Allow-Origin: http://27.123.235.168
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
Access-Control-Allow-Headers: X-Signature,Recaptcha-Token,Captcha-Token,Captcha-Value,X-Run-Env,X-Run-Version,Alpha,Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,Recaptcha-Token,Captcha-Value,X-Mac-Addr,X-App-Key,Captcha-Token,Captcha-Needed,Product,X-Message-Digest,usetemauthorization,x-env-qa,x-ca-key,x-ca-nonce,x-ca-signature-method,x-ca-signature,x-ca-signature-headers,x-ca-timestamp,Content-MD5,X-MQ-ENTERPRISE-TOKEN,X-MQ-PROJECT,X-MQ-VERSION,x-env-qa,x-ent-id,tel-token
Access-Control-Max-Age: 1728000
X-LogId: 0cca647c2ec52757096c
X-Cost: 0.000
Connection: keep-alive
EO-LOG-UUID: 6814595776029382556
EO-Cache-Status: MISS
Content-Length: 0
edge-api.meiqia.com/summer/widget/route/match
43.159.118.45204 No Content 315 B URL OPTIONS HTTP/1.1 edge-api.meiqia.com/summer/widget/route/match
IP 43.159.118.45:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (642), with no line terminators
Hash a306a99ddacaf53dd47ab6de55b9c4b4
aebd49d31d73ba9169aebfdf27b40812266152b4
d4433a459cd447069968bc739b699c39dd3eabbcb1886f4800a2bc3463a01bda
POST /summer/widget/route/match HTTP/1.1
Host: edge-api.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
x-ent-id: f10cfe9a4488adf0d8956074fbacd184
Content-Length: 47
Origin: http://27.123.235.168
DNT: 1
Connection: keep-alive
Referer: http://27.123.235.168/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 06:27:17 GMT
Content-Type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: *
req-cost-time: 1
req-arrive-time: 1685860037315
resp-start-time: 1685860037317
x-envoy-upstream-service-time: 1
access-control-expose-headers: *
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
Access-Control-Allow-Headers: Alpha,Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,usetemauthorization
X-LogId: 0d82647c2ec5734bba00
X-Cost: 0.004
Content-Encoding: gzip
Transfer-Encoding: chunked
Connection: keep-alive
EO-LOG-UUID: 5637237950636765257
EO-Cache-Status: MISS
static.meiqia.com/fe-widget/v1.4.69.prod.20230525_30/entrypoint-v1.4.69.prod.20230525_30.js
163.171.134.109200 OK 597 kB URL GET HTTP/2 static.meiqia.com/fe-widget/v1.4.69.prod.20230525_30/entrypoint-v1.4.69.prod.20230525_30.js
IP 163.171.134.109:443
ASN #54994 QUANTILNETWORKS
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size 597 kB (597034 bytes)
Hash 29b6e2ea53dec00519fdff62de56f9ad
2550c1e3c466bd87d3344648919f9350e44b9b8b
a0132877ac37d02945647893c2af9a42ecdb8d17ee6e9e598b7f138052a63a6a
GET /fe-widget/v1.4.69.prod.20230525_30/entrypoint-v1.4.69.prod.20230525_30.js HTTP/1.1
Host: static.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://27.123.235.168/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 06:27:17 GMT
content-type: text/javascript
server: AliyunOSS
x-oss-request-id: 646EFC3EC0346B4B2CE7B585
accept-ranges: bytes
etag: "29B6E2EA53DEC00519FDFF62DE56F9AD"
last-modified: Thu, 25 May 2023 05:50:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15224995592749048698
x-oss-storage-class: Standard
content-md5: Kbbi6lPewAUZ/f9i3lb5rQ==
x-oss-server-time: 1
content-encoding: br
age: 1
x-via: 1.1 kf160:2 (Cdn Cache Server V2.0), 1.1 PS-ARN-016FX94:1 (Cdn Cache Server V2.0)
x-ws-request-id: 647c2ec5_PSrdsdgemSTO1sw92_40240-57222
access-control-allow-methods: GET
access-control-allow-origin: *
strict-transport-security: max-age=5184000;includeSubdomains
cache-control: max-age= 2592000
X-Firefox-Spdy: h2
new-api.meiqia.com/visit/start?ent_id=f10cfe9a4488adf0d8956074fbacd184&track_id=&title=%E5%8D%8A%E5%B2%9B%26%E5%8D%9A%E9%B1%BC-%E5%AE%98%E6%96%B9%E5%AF%BC%E8%88%AA&referrer_url=http:%2F%2Fwww.fuso98.com%2F&url=http:%2F%2F27.123.235.168%2F&is_standalone=false
43.159.118.45200 OK 1.9 kB URL GET HTTP/1.1 new-api.meiqia.com/visit/start?ent_id=f10cfe9a4488adf0d8956074fbacd184&track_id=&title=%E5%8D%8A%E5%B2%9B%26%E5%8D%9A%E9%B1%BC-%E5%AE%98%E6%96%B9%E5%AF%BC%E8%88%AA&referrer_url=http:%2F%2Fwww.fuso98.com%2F&url=http:%2F%2F27.123.235.168%2F&is_standalone=false
IP 43.159.118.45:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (4049), with no line terminators
Hash 59d31ed268b57b407480553c3b578c83
0c2900c7eef91c68e2ba406ff0e63198fdb1cfff
18dbc28059356a91ecc683e38828c26e18430d82e961ab75d150bd51f82ea4a6
GET /visit/start?ent_id=f10cfe9a4488adf0d8956074fbacd184&track_id=&title=%E5%8D%8A%E5%B2%9B%26%E5%8D%9A%E9%B1%BC-%E5%AE%98%E6%96%B9%E5%AF%BC%E8%88%AA&referrer_url=http:%2F%2Fwww.fuso98.com%2F&url=http:%2F%2F27.123.235.168%2F&is_standalone=false HTTP/1.1
Host: new-api.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://27.123.235.168
DNT: 1
Connection: keep-alive
Referer: http://27.123.235.168/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 06:27:19 GMT
Content-Type: application/json; charset=utf-8
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers:
Access-Control-Max-Age: 300
X-Request-Id: F2Vgxg4WlvdWP-tq1-dI
X-LogId: 0d82647c2ec7734f5efe
X-Cost: 0.055
Content-Encoding: gzip
Cache-Control: private, must-revalidate, max-age=0
Transfer-Encoding: chunked
Connection: keep-alive
EO-LOG-UUID: 16265719507500155121
EO-Cache-Status: MISS
new-api.meiqia.com/unified-api/crm/v1/attr_configs?ent_id=373984
43.159.118.45200 OK 487 B URL GET HTTP/1.1 new-api.meiqia.com/unified-api/crm/v1/attr_configs?ent_id=373984
IP 43.159.118.45:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (3310)
Hash ff3f409179d9f71effe69cba106c6366
ee5c35d2a68a1958ee93f068ea595f75077d43b0
963a7fcb98ad31083e04000fddf508a9c7b3c13c0279d3d1b44689761fe96b72
GET /unified-api/crm/v1/attr_configs?ent_id=373984 HTTP/1.1
Host: new-api.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://27.123.235.168
DNT: 1
Connection: keep-alive
Referer: http://27.123.235.168/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 06:27:20 GMT
Content-Type: application/json; charset=utf-8
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 300
Vary: Accept-Encoding, Origin
X-LogId: 0b80647c2ec850919216
X-Cost: 0.005
Content-Encoding: gzip
Transfer-Encoding: chunked
Accept-Ranges: bytes
Connection: keep-alive
EO-LOG-UUID: 9353474320127127743
EO-Cache-Status: MISS
camorope-client-a.meiqia.com/push/info?browser_id=fffedc3083ddb91bf90e686ed94aad70&ent_id=373984&track_id=2QjHOcTMxScHEidVp0k6IiPjmZf&visit_id=2QjHOfYGbTiTDtpW1GNsi4EKZuD&t=1685860039026
43.159.119.217200 OK 74 B URL GET HTTP/1.1 camorope-client-a.meiqia.com/push/info?browser_id=fffedc3083ddb91bf90e686ed94aad70&ent_id=373984&track_id=2QjHOcTMxScHEidVp0k6IiPjmZf&visit_id=2QjHOfYGbTiTDtpW1GNsi4EKZuD&t=1685860039026
IP 43.159.119.217:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash ed12b7f27a6d5fdc5fea5d70eaf03e27
caf2e994f767a980159c1c1d100701d6002acd0b
c09c80a97d4565bcf8c842cab915685dec6165047d663a356aa350f1b1373c0e
GET /push/info?browser_id=fffedc3083ddb91bf90e686ed94aad70&ent_id=373984&track_id=2QjHOcTMxScHEidVp0k6IiPjmZf&visit_id=2QjHOfYGbTiTDtpW1GNsi4EKZuD&t=1685860039026 HTTP/1.1
Host: camorope-client-a.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://27.123.235.168
DNT: 1
Connection: keep-alive
Referer: http://27.123.235.168/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 06:27:20 GMT
Content-Type: application/json
Vary: Accept-Encoding
Access-Control-Allow-Origin: http://27.123.235.168
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Transfer-Encoding: chunked
Accept-Ranges: bytes
Connection: keep-alive
EO-LOG-UUID: 12662569807283810601
EO-Cache-Status: MISS
camorope-client-a.meiqia.com/push/068/om0latyj/websocket?browser_id=fffedc3083ddb91bf90e686ed94aad70&ent_id=373984&track_id=2QjHOcTMxScHEidVp0k6IiPjmZf&visit_id=2QjHOfYGbTiTDtpW1GNsi4EKZuD
43.159.118.45 0 B URL camorope-client-a.meiqia.com/push/068/om0latyj/websocket?browser_id=fffedc3083ddb91bf90e686ed94aad70&ent_id=373984&track_id=2QjHOcTMxScHEidVp0k6IiPjmZf&visit_id=2QjHOfYGbTiTDtpW1GNsi4EKZuD
IP 43.159.118.45:0
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /push/068/om0latyj/websocket?browser_id=fffedc3083ddb91bf90e686ed94aad70&ent_id=373984&track_id=2QjHOcTMxScHEidVp0k6IiPjmZf&visit_id=2QjHOfYGbTiTDtpW1GNsi4EKZuD HTTP/1.1
Host: camorope-client-a.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://27.123.235.168
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rg4cc8kAUIB2eGFcm1ybGQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sun, 04 Jun 2023 06:27:20 GMT
Connection: upgrade
sec-websocket-accept: ebkUQQrBRFDTCPvWra8rqMUM2TM=
upgrade: websocket
EO-LOG-UUID: 16940946397006545972
EO-Cache-Status: MISS
new-api.meiqia.com/visit/get_base_config?ent_id=f10cfe9a4488adf0d8956074fbacd184
43.159.118.45200 OK 1.1 kB URL GET HTTP/1.1 new-api.meiqia.com/visit/get_base_config?ent_id=f10cfe9a4488adf0d8956074fbacd184
IP 43.159.118.45:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1260), with no line terminators
Hash 4d431ce2373fc44bf5f2a2c7093c2d27
2cecb017baa55358ee1824457981cd628ab04353
2cda16395415d004486e6550af83eeb952f0e66328cb936a1b05580f3e4d5254
GET /visit/get_base_config?ent_id=f10cfe9a4488adf0d8956074fbacd184 HTTP/1.1
Host: new-api.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://27.123.235.168
DNT: 1
Connection: keep-alive
Referer: http://27.123.235.168/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 06:27:18 GMT
Content-Type: application/json; charset=utf-8
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST,PUT,PATCH,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 300
Vary: Accept-Encoding, Origin
Expires: Sun, 04 Jun 2023 06:28:18 GMT
X-LogId: 0d82647c2ec6734e91e7
X-Cost: 0.010
Content-Encoding: gzip
Cache-Control: max-age=60
Transfer-Encoding: chunked
Accept-Ranges: bytes
Connection: keep-alive
EO-LOG-UUID: 1802889260577478517
EO-Cache-Status: MISS
static.meiqia.com/fe-widget/v1.4.69.prod.20230525_30/app-v1.4.69.prod.20230525_30.js
163.171.134.109200 OK 1.1 MB URL GET HTTP/2 static.meiqia.com/fe-widget/v1.4.69.prod.20230525_30/app-v1.4.69.prod.20230525_30.js
IP 163.171.134.109:443
ASN #54994 QUANTILNETWORKS
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
Size 1.1 MB (1147786 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fe-widget/v1.4.69.prod.20230525_30/app-v1.4.69.prod.20230525_30.js HTTP/1.1
Host: static.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 06:27:17 GMT
content-type: text/javascript
server: AliyunOSS
x-oss-request-id: 646EFC3EBFA7DBE2EDE9F22E
accept-ranges: bytes
etag: "62689A3F124E328BD874F0AD1B405244"
last-modified: Thu, 25 May 2023 05:50:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2052840664153689683
x-oss-storage-class: Standard
content-md5: YmiaPxJOMovYdPCtG0BSRA==
x-oss-server-time: 1
content-encoding: br
age: 1
x-via: 1.1 kf148:2 (Cdn Cache Server V2.0), 1.1 PS-ARN-016FX94:19 (Cdn Cache Server V2.0)
x-ws-request-id: 647c2ec5_PSrdsdgemSTO1sw92_40240-57224
access-control-allow-methods: GET
access-control-allow-origin: *
strict-transport-security: max-age=5184000;includeSubdomains
cache-control: max-age= 2592000
X-Firefox-Spdy: h2
static.meiqia.com/fe-widget/v1.4.69.prod.20230525_30/893.js
163.171.134.109200 OK 15 kB URL GET HTTP/2 static.meiqia.com/fe-widget/v1.4.69.prod.20230525_30/893.js
IP 163.171.134.109:443
ASN #54994 QUANTILNETWORKS
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (15371)
Hash e36d7225537f53780b46a844b6cdf708
a2d3c98236547c064af154e4112cddbf75fd4676
21984a702f27b0dbd96f68030cbbe484a346cb0004f45722a56e5934dec430cb
GET /fe-widget/v1.4.69.prod.20230525_30/893.js HTTP/1.1
Host: static.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 06:27:19 GMT
content-type: text/javascript
server: AliyunOSS
x-oss-request-id: 646EFC419FB240CA79D95AEC
accept-ranges: bytes
etag: "E36D7225537F53780B46A844B6CDF708"
last-modified: Thu, 25 May 2023 05:50:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9123151671111614139
x-oss-storage-class: Standard
content-md5: 421yJVN/U3gLRqhEts33CA==
x-oss-server-time: 1
content-encoding: br
age: 1
x-via: 1.1 PS-FRA-01E6z147:3 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:13 (Cdn Cache Server V2.0)
x-ws-request-id: 647c2ec7_PSrdsdgemSTO1sw92_40240-57263
access-control-allow-methods: GET
access-control-allow-origin: *
strict-transport-security: max-age=5184000;includeSubdomains
cache-control: max-age= 2592000
X-Firefox-Spdy: h2
camorope-client-a.meiqia.com/push/068/om0latyj/websocket?browser_id=fffedc3083ddb91bf90e686ed94aad70&ent_id=373984&track_id=2QjHOcTMxScHEidVp0k6IiPjmZf&visit_id=2QjHOfYGbTiTDtpW1GNsi4EKZuD
43.159.118.45101 Switching Protocols 0 B URL GET HTTP/1.1 camorope-client-a.meiqia.com/push/068/om0latyj/websocket?browser_id=fffedc3083ddb91bf90e686ed94aad70&ent_id=373984&track_id=2QjHOcTMxScHEidVp0k6IiPjmZf&visit_id=2QjHOfYGbTiTDtpW1GNsi4EKZuD
IP 43.159.118.45:443
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /push/068/om0latyj/websocket?browser_id=fffedc3083ddb91bf90e686ed94aad70&ent_id=373984&track_id=2QjHOcTMxScHEidVp0k6IiPjmZf&visit_id=2QjHOfYGbTiTDtpW1GNsi4EKZuD HTTP/1.1
Host: camorope-client-a.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://27.123.235.168
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rg4cc8kAUIB2eGFcm1ybGQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sun, 04 Jun 2023 06:27:20 GMT
Connection: upgrade
sec-websocket-accept: ebkUQQrBRFDTCPvWra8rqMUM2TM=
upgrade: websocket
EO-LOG-UUID: 16940946397006545972
EO-Cache-Status: MISS
static.meiqia.com/widget/loader.js
163.171.134.109200 OK 16 kB URL GET HTTP/2 static.meiqia.com/widget/loader.js
IP 163.171.134.109:443
ASN #54994 QUANTILNETWORKS
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/loader.js HTTP/1.1
Host: static.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://27.123.235.168/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 06:27:16 GMT
content-type: application/javascript
server: AliyunOSS
x-oss-request-id: 6437C353C0346BE82CAF5704
accept-ranges: bytes
etag: "5CABE3635BCF0A2DB33B4E924A83F84F"
last-modified: Mon, 03 Apr 2023 08:52:21 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4935971144364316245
x-oss-storage-class: Standard
content-md5: XKvjY1vPCi2zO06SSoP4Tw==
x-oss-server-time: 1
content-encoding: br
age: 1
x-via: 1.1 PSdgflkfFRA1ox201:3 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:1 (Cdn Cache Server V2.0)
x-ws-request-id: 647c2ec4_PSrdsdgemSTO1sw92_40240-57207
cache-control: max-age=600
access-control-allow-methods: GET
access-control-allow-origin: *
strict-transport-security: max-age=5184000;includeSubdomains
X-Firefox-Spdy: h2
static.meiqia.com/fe-widget/v1.4.69.prod.20230525_30/static/icon-mq-round@2x.png
0.0.0.0 0 B URL GET static.meiqia.com/fe-widget/v1.4.69.prod.20230525_30/static/icon-mq-round@2x.png
IP 0.0.0.0:0
Certificate IssuerDigiCert, Inc.
Subject*.meiqia.com
FingerprintB4:AF:54:D5:ED:79:17:7A:1A:10:19:5B:E1:2E:CF:54:C5:CB:39:D8
ValidityMon, 20 Jun 2022 00:00:00 GMT - Fri, 21 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fe-widget/v1.4.69.prod.20230525_30/static/icon-mq-round@2x.png HTTP/1.1
Host: static.meiqia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 06:27:19 GMT
content-type: image/png
server: AliyunOSS
x-oss-request-id: 646EFC46523B0A0793D90DCB
accept-ranges: bytes
etag: "7852530B8CCD6C254E2C727B286BD370"
last-modified: Thu, 25 May 2023 05:50:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 18155014595444198583
x-oss-storage-class: Standard
x-oss-ec: 0048-00000102
content-disposition: inline
x-oss-force-download: true
content-md5: eFJTC4zNbCVOLHJ7KGvTcA==
x-oss-server-time: 2
content-encoding: br
age: 1
x-via: 1.1 PSdgflkfFRA1hb199:0 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:5 (Cdn Cache Server V2.0)
x-ws-request-id: 647c2ec7_PSrdsdgemSTO1sw92_40240-57264
access-control-allow-methods: GET
access-control-allow-origin: *
strict-transport-security: max-age=5184000;includeSubdomains
cache-control: max-age= 2592000
X-Firefox-Spdy: h2