r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15275
Expires: Tue, 06 Dec 2022 13:49:30 GMT
Date: Tue, 06 Dec 2022 09:34:55 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2574
Cache-Control: max-age=92358
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 09:34:55 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:14:13 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 09:20:23 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 872
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15344
Expires: Tue, 06 Dec 2022 13:50:39 GMT
Date: Tue, 06 Dec 2022 09:34:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: J1cv45bp32SDoQ+c/vv6UbtzWt2dQU4/yJpps69gPHwVV2CofjCk2e0ayfnHXGzLi0tUSE8Nm0A=
x-amz-request-id: 47A45EG3922NGT6C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 08:47:02 GMT
age: 2873
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 09:34:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 09:08:58 GMT
cache-control: public,max-age=3600
age: 1557
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2562
Cache-Control: max-age=87278
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 09:34:56 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:49:34 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
fwbsie.com/
154.85.194.181200 OK 13 kB IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15012), with CRLF, LF line terminators
Hash 1038e44b0451b1b9214e1e777763c5a5
4e837450b6ace3367a6e4bce0279643b2ae8dc41
7d40275af1fbfa67457ff22884e315aa5ec5f281905dbb70e38af1f1c56658a0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:55 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.40
Content-Encoding: gzip
push.services.mozilla.com/
34.212.166.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.212.166.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: az+uy15SUvaaiTFF0LwxZg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0OY6JRIsZWzz/8Tp9U5Zab83lyM=
fwbsie.com/css/index.css
154.85.194.181200 OK 2.7 kB IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type ISO-8859 text, with CRLF line terminators
Hash f7e31309062b37a31a648ffcca3b40da
9157f05d0650a3cdb37bf030401db1247f53cfc3
f9c9ac99937e595d9be84f36704fe9fedeb70e432e1f322c79cbc072cb8f0cde
GET /css/index.css HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:56 GMT
Content-Type: text/css;charset=from
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.40
Content-Encoding: gzip
fwbsie.com/css/font-awesome.min.css
154.85.194.181200 OK 5.1 kB URL HTTP/1.1 fwbsie.com/css/font-awesome.min.css
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type ASCII text, with very long lines (21778)
Hash a7984ed3a0a1e9feb93a01d374e2006b
6670ca5492fa68240c402c7505b412087b936450
da83e7a690941da3f4205bf72b2af923daf0c7d30d2efc4d05711e5ab17d5a4b
GET /css/font-awesome.min.css HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:56 GMT
Content-Type: text/css;charset=from
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.40
Content-Encoding: gzip
fwbsie.com/css/style.css
154.85.194.181200 OK 3.4 kB IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type ISO-8859 text, with very long lines (349), with CRLF line terminators
Hash 42fa6f36441e9d7ae88d4926c831e039
2c98ba5987b66a298ff9f29c1c829ecce13c1a99
409aa621bd6a05f5f6437ddf5af7426260e214ee061a3c06d159355f0bfbb99e
GET /css/style.css HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:56 GMT
Content-Type: text/css;charset=from
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.40
Content-Encoding: gzip
www.fwbsie.com/js.js
154.85.194.181200 OK 2.9 kB IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type ASCII text, with very long lines (2121), with CRLF line terminators
Hash d9e03fff59d08378e325d8c6c823e2e3
810b5b77cf7b4f2dea2cd85265972dfea1b86152
8f1bd4c14b9ca2c86b82eb2b5458485e4d40e06b1f98415bf94fc9a59cd170e5
Analyzer Verdict Alert fortinet Phishing
GET /js.js HTTP/1.1
Host: www.fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:56 GMT
Content-Type: application/javascript
Content-Length: 2921
Last-Modified: Mon, 11 Jul 2022 11:28:29 GMT
Connection: keep-alive
ETag: "62cc095d-b69"
Expires: Tue, 06 Dec 2022 21:34:56 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash b43c11b073fafef82ce2b346ca2070c5
12efce29dee0c0dba2e970c621e67bbb68a370e6
d575f3361c04cf6935d0ee457ecd0d8d7116fed2b3b333238f54792791ecc4b7
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 06 Dec 2022 09:34:57 GMT
Ali-Swift-Global-Savetime: 1670319297
Via: cache6.l2de2[51,51,200-0,M], cache6.l2de2[53,0], cache3.se1[76,76,200-0,M], cache3.se1[77,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Tue, 06 Dec 2022 09:34:57 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9716703192973518353e
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12546
Expires: Tue, 06 Dec 2022 13:04:03 GMT
Date: Tue, 06 Dec 2022 09:34:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12546
Expires: Tue, 06 Dec 2022 13:04:03 GMT
Date: Tue, 06 Dec 2022 09:34:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12546
Expires: Tue, 06 Dec 2022 13:04:03 GMT
Date: Tue, 06 Dec 2022 09:34:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12546
Expires: Tue, 06 Dec 2022 13:04:03 GMT
Date: Tue, 06 Dec 2022 09:34:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcfc1e29-0017-4346-aacf-66d3875076ce.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcfc1e29-0017-4346-aacf-66d3875076ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 18bbcbf84b00d3bc602830478ff1bd7f
1f25392db4cf3693259202b24e898f21093b8bf9
cb2b44e1f74a9bb43fab48536f6146e273c728b34e4889ff3f18a411d14d2282
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcfc1e29-0017-4346-aacf-66d3875076ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5790
x-amzn-requestid: 2e409a5f-ce04-4b9b-b3a2-74e5bbd256d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSvoEoUoAMFsxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64ca-72e1bb13187b18aa26c8566f;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WBNaNTgYQaDVlJqu2u341xYy_6zmr5LqmCD2BPjGPGgmAG20WNHyKw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:46:52 GMT
age: 42485
etag: "1f25392db4cf3693259202b24e898f21093b8bf9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ba08976-65c4-4b8b-9ef1-92055a7b5235.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ba08976-65c4-4b8b-9ef1-92055a7b5235.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 53afd826523f4c18bf968764818d7ca7
9a26884875abb0652c568c50438b65f801779f9a
4f9dfeda67a040fef9c6987a7c334a91c993c84f694fa91771fcf7fd1d2e4937
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ba08976-65c4-4b8b-9ef1-92055a7b5235.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12293
x-amzn-requestid: 49891ceb-3f74-4e83-8064-f54fc8b30961
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSyGHPOIAMFYqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64da-651e4e0c55257bcc553cd176;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4f0QQ4-21m-DiP4oUtIG75_vremc835laqhfDerlqCuW-WyKClvc9Q==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:29:38 GMT
age: 39919
etag: "9a26884875abb0652c568c50438b65f801779f9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99d1ff8fa2e095dcf2bda3d1e1af1221
f914f04a0e1fb45a221d31d2105bfc73015b03e6
90325d4299a44dbd213857ada6f6880db8c33ad61685cfcb60c4a2455a84cf87
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10183
x-amzn-requestid: 557e6b38-7be9-4953-968b-2e5bd3491ef4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUDYEQbIAMFwRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e2-1fcd8fc4719bc0bc7d11abd2;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z1_zJTJMuk724WMOmIc660b54AyZK8ffNVF5N7ehZ00W2kaL3Lcd1A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:47:14 GMT
age: 42463
etag: "f914f04a0e1fb45a221d31d2105bfc73015b03e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:23:09 GMT
age: 40308
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ca09fa3-9c1c-4e27-b763-2de04564da9d.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ca09fa3-9c1c-4e27-b763-2de04564da9d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73b9f329cd3a39d0756de62dd5f190b7
0f1c7567b89cc3de60196e47e37879296359bc78
e15711efe27a3d302a9869cf01d27fd65bd0beca9d03a19d93bbf11e28f3e1d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ca09fa3-9c1c-4e27-b763-2de04564da9d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4827
x-amzn-requestid: 9091cc45-8fb1-4b07-8ef9-3f42b85fb81e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSuYH_KIAMFpMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c2-6bf3bf8659ef3feb27c1803f;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fxdYE-ftBwC_0KcBJBQqvUbVXM54TmsKR8QXIfLIhdLYsqtaxdx9tg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:26 GMT
age: 40351
etag: "0f1c7567b89cc3de60196e47e37879296359bc78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e1b54923ba506fde6b21c5bfb51ccc8
366aa3ab0790c496ea51bc08d1f2ff3358530d9e
a993ca6dc9a1f854f4542f9221e4f90060825ea863974b5163a9d3e284dc4663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10594
x-amzn-requestid: eee9f193-eef5-44bf-997a-877fa206749e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSyIHpGoAMF1fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64da-0a9190f7698dbf2f73bb1575;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f-KQCOuDl461V8MBPsSOj1ILCU91Q0pCSENaldkMHR2oZdrEUnHeaA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:03:16 GMT
age: 41501
etag: "366aa3ab0790c496ea51bc08d1f2ff3358530d9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cmlr.pku.edu.cn/gpcss/Gpowergrey.css
115.27.240.197200 OK 321 B URL HTTP/1.1 cmlr.pku.edu.cn/gpcss/Gpowergrey.css
IP 115.27.240.197:0
ASN #4538 China Education and Research Network Center
Hash 39009db0f6d2a076c0207137e86354ac
c297550f8f58f24fc723e5379695bd3c000c2419
4b9c2b2741f59716ac589baa4d96d28c895641caab00a85b691d44db5f4a5120
GET /gpcss/Gpowergrey.css HTTP/1.1
Host: cmlr.pku.edu.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 09:34:56 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Fri, 02 Dec 2022 07:29:40 GMT
ETag: "141-5eed34cf22100"
Accept-Ranges: bytes
Content-Length: 321
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
fwbsie.com/images/content/2022-10/20221017164642651356.jpg
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/content/2022-10/20221017164642651356.jpg
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/content/2022-10/20221017164642651356.jpg HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/content/2022-10/20221017164642651356.jpg
fwbsie.com/images/logo_02.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/logo_02.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/logo_02.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/logo_02.png
fwbsie.com/images/content/2022-10/20221010094717826583.jpg
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/content/2022-10/20221010094717826583.jpg
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/content/2022-10/20221010094717826583.jpg HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/content/2022-10/20221010094717826583.jpg
fwbsie.com/images/content/2019-11/20191115161750821766.jpg
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/content/2019-11/20191115161750821766.jpg
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/content/2019-11/20191115161750821766.jpg HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/content/2019-11/20191115161750821766.jpg
fwbsie.com/images/icon1.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/icon1.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/icon1.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/icon1.png
fwbsie.com/images/icon3.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/icon3.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/icon3.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/icon3.png
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash f7544839e10b8df7c47c82b86087b75c
83cceabc77162f3aa023734c9f760722e3487283
4c635ff3c4339a5d798fb8366bdee4d6e25998b0e1d5de12f72510a2e2d28f0e
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 10 Dec 2022 07:14:48 GMT
ETag: "83cceabc77162f3aa023734c9f760722e3487283"
Last-Modified: Tue, 06 Dec 2022 07:14:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 464
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7754075fcd351c02-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash f7544839e10b8df7c47c82b86087b75c
83cceabc77162f3aa023734c9f760722e3487283
4c635ff3c4339a5d798fb8366bdee4d6e25998b0e1d5de12f72510a2e2d28f0e
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 10 Dec 2022 07:14:48 GMT
ETag: "83cceabc77162f3aa023734c9f760722e3487283"
Last-Modified: Tue, 06 Dec 2022 07:14:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 464
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7754075fcb8c1c06-OSL
fwbsie.com/images/search.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/search.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/search.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/search.png
fwbsie.com/images/arrow_left.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/arrow_left.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/arrow_left.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/css/index.css
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/arrow_left.png
fwbsie.com/images/arrow_right.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/arrow_right.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/arrow_right.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/css/index.css
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/arrow_right.png
fwbsie.com/images/top_nav_li.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/top_nav_li.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/top_nav_li.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/top_nav_li.png
fwbsie.com/images/content_bg.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/content_bg.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/content_bg.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/css/index.css
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/content_bg.png
fwbsie.com/images/time.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/time.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/time.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/css/index.css
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/time.png
fwbsie.com/images/person.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/person.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/person.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/css/index.css
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/person.png
fwbsie.com/images/re_bg.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/re_bg.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/re_bg.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/css/index.css
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/re_bg.png
fwbsie.com/images/logo_01.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/logo_01.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/logo_01.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/logo_01.png
fwbsie.com/images/content/2022-09/20220915171332105460.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/content/2022-09/20220915171332105460.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/content/2022-09/20220915171332105460.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/content/2022-09/20220915171332105460.png
fwbsie.com/images/content/2022-09/20220915170555362768.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/content/2022-09/20220915170555362768.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/content/2022-09/20220915170555362768.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/content/2022-09/20220915170555362768.png
fwbsie.com/images/icon2.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/icon2.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/icon2.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/icon2.png
fwbsie.com/images/code.jpg
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/code.jpg
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/code.jpg HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/code.jpg
fwbsie.com/images/footer_bg.png
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/images/footer_bg.png
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/footer_bg.png HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/images/footer_bg.png
fwbsie.com/fonts/fontawesome-webfont.woff?v=4.2.0
154.85.194.181200 OK 66 kB URL HTTP/1.1 fwbsie.com/fonts/fontawesome-webfont.woff?v=4.2.0
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type Web Open Font Format, TrueType, length 65452, version 1.0\012- data
Hash aa38091fbe875c7127baad0e37a343db
54fef5a49a95b232fb90f7e3097acc0910009683
c33028209dab6ccd19500cf8d0113ca75a804d16b073569e9d46252cad6b27fe
GET /fonts/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://fwbsie.com/css/font-awesome.min.css
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:58 GMT
Content-Type: application/font-woff2;q=1.0;charset=from
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
push.zhanzhang.baidu.com/push.js
182.61.201.93200 OK 227 B URL HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 182.61.201.93:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with no line terminators
Hash e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Tue, 06 Dec 2022 09:34:58 GMT
Etag: "4078521116"
Expires: Wed, 06 Dec 2023 09:34:58 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=E8BB8975DAE949830A296F7AF2D11D92:FG=1; max-age=31536000; expires=Wed, 06-Dec-23 09:34:58 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
api.share.baidu.com/s.gif?l=http://www.fwbsie.com/
182.61.201.94200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.fwbsie.com/
IP 182.61.201.94:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.fwbsie.com/ HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Tue, 06 Dec 2022 09:34:59 GMT
fwbsie.com/fonts/fontawesome-webfont.ttf?v=4.2.0
154.85.194.181302 Moved Temporarily 0 B URL HTTP/1.1 fwbsie.com/fonts/fontawesome-webfont.ttf?v=4.2.0
IP 154.85.194.181:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /fonts/fontawesome-webfont.ttf?v=4.2.0 HTTP/1.1
Host: fwbsie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/css/font-awesome.min.css
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 09:34:59 GMT
Content-Type: image/jpeg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Location: https://www.math.pku.edu.cn/fonts/fontawesome-webfont.ttf?v=4.2.0
api.share.baidu.com/s.gif?l=http://fwbsie.com/
182.61.201.94200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://fwbsie.com/
IP 182.61.201.94:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://fwbsie.com/ HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Tue, 06 Dec 2022 09:34:59 GMT
hm.baidu.com/hm.js?4b3510a7a6338e4f3d397120dcb23b10
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?4b3510a7a6338e4f3d397120dcb23b10
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (618)
Hash c3e660904d3b27e7aab7c4725e625727
29444598b9c10826f19fca100583cfdc5812b6ac
bf242e78505f2f943b44065e80f5eaa611dc7a95a03b1b6c18154e5efdf6a33f
GET /hm.js?4b3510a7a6338e4f3d397120dcb23b10 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11256
Content-Type: application/javascript
Date: Tue, 06 Dec 2022 09:34:58 GMT
Etag: 319c3ff228f575272d90c291388cbda1
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8E019DDB0614273F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?83029b7e07f3e569d3ee5eba9d711ecc
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?83029b7e07f3e569d3ee5eba9d711ecc
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash aee74883f80f0ceb2bfc1c69d5b01d5a
0ea7d20f3e07def9e9b18004944012c6afce0199
0eeb74a50743cb1e0fb87ee7983823433bded5750238bba8aec664f9fbf62c8f
GET /hm.js?83029b7e07f3e569d3ee5eba9d711ecc HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Tue, 06 Dec 2022 09:34:58 GMT
Etag: 29cc59cb996ebc1697a2c0cc4f1fa85b
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8ADA8871215F48BB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?49ee159c6ee2a04b9ae62f88dbee46bf
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?49ee159c6ee2a04b9ae62f88dbee46bf
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (624)
Hash 8ef607971c2ccd7c3774bc6a478c0ce4
4db07728e109abbd3c4247494b2fe4cd83149a6b
1af81d1ed6a190345647a878f916a8a60729833d6232b48c931e58fee0b4a2cc
GET /hm.js?49ee159c6ee2a04b9ae62f88dbee46bf HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11262
Content-Type: application/javascript
Date: Tue, 06 Dec 2022 09:34:59 GMT
Etag: 1b6320cbfefb4d5f8a31627d55909f97
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B4A34F26A02E1CC0; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash e239bfdee461f72736c9d6790d8fda36
f7a7400b42d445513c2042d3302c2cc64d343a30
3d8e0c7acd30a7cf0dd4f19badf2e79cd98a7c1ff09efe5f4ca0ac99c3cc37f9
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Tue, 06 Dec 2022 09:34:59 GMT
last-modified: Mon, 05 Dec 2022 03:29:15 GMT
expires: Mon, 12 Dec 2022 03:29:14 GMT
etag: "f7a7400b42d445513c2042d3302c2cc64d343a30"
cache-control: max-age=589958,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
accept-ranges: bytes
cf-ray: 775407662f1e925b-FRA
via: cache21.l2de2[182,0], cache2.se1[204,0], cache4.se1[205,0]
timing-allow-origin: *, *
eagleid: 2ff62c9816703192995175627e, 2ff62c9816703192995175627e
www.jkzgd.com/pdy/index.php?keyword=%E8%8B%B1%E8%B6%85app%E5%AE%98%E7%BD%91(%E5%A4%AA%E5%B9%B3%E6%B4%8B)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8&from=pc&originUrl=http%3A%2F%2Ffwbsie.com%2F&referer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&v=7772
194.146.87.186200 OK 1.3 kB URL HTTP/1.1 www.jkzgd.com/pdy/index.php?keyword=%E8%8B%B1%E8%B6%85app%E5%AE%98%E7%BD%91(%E5%A4%AA%E5%B9%B3%E6%B4%8B)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8&from=pc&originUrl=http%3A%2F%2Ffwbsie.com%2F&referer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&v=7772
IP 194.146.87.186:0
ASN #132839 POWER LINE DATACENTER
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2075), with CRLF line terminators
Hash e9db005159587d22a1bd617f56108812
23eb49003923c1374fcaa104ed91ed925bd9e404
fdc76cd1702751006c95ac0dcb84d233762438d36ecc1762c65ab9a89baede05
GET /pdy/index.php?keyword=%E8%8B%B1%E8%B6%85app%E5%AE%98%E7%BD%91(%E5%A4%AA%E5%B9%B3%E6%B4%8B)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8&from=pc&originUrl=http%3A%2F%2Ffwbsie.com%2F&referer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&v=7772 HTTP/1.1
Host: www.jkzgd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://fwbsie.com
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.40
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Content-Encoding: gzip
sdk.51.la/js-sdk-pro.min.js
47.253.50.2200 OK 13 kB URL HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP 47.253.50.2:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (34110)
Hash 29243483fe441404931c046d27be80a6
92a0c68b0169eff0addb8cc05a53f6e009d41d47
4865f22b0a68c6a0a6c2d3cbedb9a190ffbea105c4f1e2a5806172919456f3b1
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 06 Dec 2022 09:35:00 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 15 Jul 2022 04:05:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"62d0e7a4-861a"
Cache-Control: max-age=1296000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 97510d016c2503c5df93bcf5c64bf31d
1d6f29fc2214d438a018cdd11dbdc16d08506d6c
e5ce1d17bc3f51bffea10d5add4178ed158a790fdc50aa2224d96e415f0c2190
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Tue, 06 Dec 2022 09:35:00 GMT
last-modified: Sun, 04 Dec 2022 11:43:38 GMT
expires: Sun, 11 Dec 2022 11:43:37 GMT
etag: "1d6f29fc2214d438a018cdd11dbdc16d08506d6c"
cache-control: max-age=595833,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
accept-ranges: bytes
cf-ray: 7754076d7da3bbe9-FRA
via: cache1.l2de2[194,0], cache2.se1[219,0], cache4.se1[221,0]
timing-allow-origin: *, *
eagleid: 2ff62c9816703193006846611e, 2ff62c9816703193006846611e
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e7dbb9ee91fcb3e140535016d08dd733
f3a57e36870439ee94bddc279a9e98bb78c201b9
b1d13cc1a255e7c88ca79f507073d9127c23bfb446b1750fb090753a197aca34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B1D13CC1A255E7C88CA79F507073D9127C23BFB446B1750FB090753A197ACA34"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8095
Expires: Tue, 06 Dec 2022 11:49:55 GMT
Date: Tue, 06 Dec 2022 09:35:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 63df08d7f7ca10d37a7ce2f583d906fc
72ae1cd3c9a34055779840aa6460538e541876bc
0045599191d01e8ffd39ac800175d0a367a5e46fd62f5b0cbecd22afa1fe62fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0045599191D01E8FFD39AC800175D0A367A5E46FD62F5B0CBECD22AFA1FE62FD"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19749
Expires: Tue, 06 Dec 2022 15:04:09 GMT
Date: Tue, 06 Dec 2022 09:35:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e7dbb9ee91fcb3e140535016d08dd733
f3a57e36870439ee94bddc279a9e98bb78c201b9
b1d13cc1a255e7c88ca79f507073d9127c23bfb446b1750fb090753a197aca34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B1D13CC1A255E7C88CA79F507073D9127C23BFB446B1750FB090753A197ACA34"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8184
Expires: Tue, 06 Dec 2022 11:51:24 GMT
Date: Tue, 06 Dec 2022 09:35:00 GMT
Connection: keep-alive
www.ahjlighting.com/nlg/js/21265329.js
194.146.87.188200 OK 4.9 kB URL HTTP/1.1 www.ahjlighting.com/nlg/js/21265329.js
IP 194.146.87.188:0
ASN #132839 POWER LINE DATACENTER
File type ASCII text, with very long lines (4898), with no line terminators
Hash 1ef90132f3f2031ff24f3bc3dbd6fe40
db7aaa54c9dbcdaeb041d8b09014e61f9d3f2b83
5ce3f353f6172c9ad84ecc9692907c5f6f4dd6db501d1925e215f164fd2e84b9
GET /nlg/js/21265329.js HTTP/1.1
Host: www.ahjlighting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:42 GMT
Content-Type: application/javascript
Content-Length: 4898
Last-Modified: Fri, 25 Feb 2022 03:28:24 GMT
Connection: keep-alive
ETag: "62184cd8-1322"
Expires: Tue, 06 Dec 2022 21:17:42 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
www.ahjlighting.com/nlg/js/21107619.js
194.146.87.188200 OK 4.9 kB URL HTTP/1.1 www.ahjlighting.com/nlg/js/21107619.js
IP 194.146.87.188:0
ASN #132839 POWER LINE DATACENTER
File type ASCII text, with very long lines (4898), with no line terminators
Hash 8755ec29d85382ce17bcd6af0d1f351a
6a73c728f22f8293e1a8e5b0eedd5825145da3d5
b5945e041ecd1b689b15e2196b8bece036fbf66755cfc17538f7fe19647a3622
GET /nlg/js/21107619.js HTTP/1.1
Host: www.ahjlighting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:42 GMT
Content-Type: application/javascript
Content-Length: 4898
Last-Modified: Fri, 25 Feb 2022 03:28:24 GMT
Connection: keep-alive
ETag: "62184cd8-1322"
Expires: Tue, 06 Dec 2022 21:17:42 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
collect-v6.51.la/v6/collect?dt=4
103.143.19.103200 0 B URL HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 297
Origin: http://fwbsie.com
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200
Server: CloudWAF
Date: Tue, 06 Dec 2022 09:35:01 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=db4a89e24bea9e4d561; path=/
HWWAFSESTIME=1670319298868; path=/
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://fwbsie.com
Access-Control-Allow-Credentials: true
www.jkzgd.com/uploads/huohu-1000x200-xin-b.gif
194.146.87.186200 OK 110 kB URL HTTP/1.1 www.jkzgd.com/uploads/huohu-1000x200-xin-b.gif
IP 194.146.87.186:0
ASN #132839 POWER LINE DATACENTER
File type GIF image data, version 89a, 1000 x 200\012- data
Size 110 kB (110424 bytes)
Hash 7b6686175a6b70745d110908b92f6c99
f6460fb80558758db23c15767a98110b10523681
1ef07e58a52a7028ab1323f2367e7789fa8d51670b40e60f74c2864e6c9a1d74
GET /uploads/huohu-1000x200-xin-b.gif HTTP/1.1
Host: www.jkzgd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:42 GMT
Content-Type: image/gif
Content-Length: 110424
Last-Modified: Mon, 11 Jul 2022 10:51:53 GMT
Connection: keep-alive
ETag: "62cc00c9-1af58"
Expires: Thu, 05 Jan 2023 09:17:42 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
www.ahjlighting.com/nlg/js/20348599.js
194.146.87.188200 OK 4.9 kB URL HTTP/1.1 www.ahjlighting.com/nlg/js/20348599.js
IP 194.146.87.188:0
ASN #132839 POWER LINE DATACENTER
File type ASCII text, with very long lines (4898), with no line terminators
Hash 6bb1262ea2bfa1fc9ff45538fb7ed338
437581bd6d4954b6ea8cd8892aec0628848de384
ccaac3f4c202a8ae619daaaa62945e7d8b7982a0ca103ca8737aad707cd4d5da
GET /nlg/js/20348599.js HTTP/1.1
Host: www.ahjlighting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:43 GMT
Content-Type: application/javascript
Content-Length: 4898
Last-Modified: Sun, 27 Feb 2022 09:03:40 GMT
Connection: keep-alive
ETag: "621b3e6c-1322"
Expires: Tue, 06 Dec 2022 21:17:43 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
www.mdnjz.com/images/picture_bigbanner001.jpg
194.146.87.188200 OK 25 kB URL HTTP/1.1 www.mdnjz.com/images/picture_bigbanner001.jpg
IP 194.146.87.188:0
ASN #132839 POWER LINE DATACENTER
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x550, components 3\012- data
Hash 3cd9784d84a43ac2e5ad309f78c13104
6876e4dce27564b1b0f0ef1149c367c7355d4eec
25d013d744a37460a295b2b4361f3420c78621f1d9f7636df5feebc5d46c26b1
GET /images/picture_bigbanner001.jpg HTTP/1.1
Host: www.mdnjz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:42 GMT
Content-Type: image/jpeg
Content-Length: 25368
Last-Modified: Thu, 16 Jun 2022 07:20:15 GMT
Connection: keep-alive
ETag: "62aad9af-6318"
Expires: Thu, 05 Jan 2023 09:17:42 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
ia.51.la/go1?id=21107619&rt=1670319301313&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1670319301313&tt=%25E8%258B%25B1%25E8%25B6%2585app%25E5%25AE%2598%25E7%25BD%2591(%25E5%25A4%25AA%25E5%25B9%25B3%25E6%25B4%258B)%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=&cu=http%253A%252F%252Ffwbsie.com%252F&pu=
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=21107619&rt=1670319301313&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1670319301313&tt=%25E8%258B%25B1%25E8%25B6%2585app%25E5%25AE%2598%25E7%25BD%2591(%25E5%25A4%25AA%25E5%25B9%25B3%25E6%25B4%258B)%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=&cu=http%253A%252F%252Ffwbsie.com%252F&pu=
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21107619&rt=1670319301313&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1670319301313&tt=%25E8%258B%25B1%25E8%25B6%2585app%25E5%25AE%2598%25E7%25BD%2591(%25E5%25A4%25AA%25E5%25B9%25B3%25E6%25B4%258B)%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=&cu=http%253A%252F%252Ffwbsie.com%252F&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200
Server: CloudWAF
Date: Tue, 06 Dec 2022 09:35:02 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=f296e18d14b61c48dbf; path=/
HWWAFSESTIME=1670319301927; path=/
ia.51.la/go1?id=21265329&rt=1670319301318&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=2&ekc=&sid=1670319301318&tt=%25E8%258B%25B1%25E8%25B6%2585app%25E5%25AE%2598%25E7%25BD%2591(%25E5%25A4%25AA%25E5%25B9%25B3%25E6%25B4%258B)%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=&cu=http%253A%252F%252Ffwbsie.com%252F&pu=
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=21265329&rt=1670319301318&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=2&ekc=&sid=1670319301318&tt=%25E8%258B%25B1%25E8%25B6%2585app%25E5%25AE%2598%25E7%25BD%2591(%25E5%25A4%25AA%25E5%25B9%25B3%25E6%25B4%258B)%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=&cu=http%253A%252F%252Ffwbsie.com%252F&pu=
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21265329&rt=1670319301318&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=2&ekc=&sid=1670319301318&tt=%25E8%258B%25B1%25E8%25B6%2585app%25E5%25AE%2598%25E7%25BD%2591(%25E5%25A4%25AA%25E5%25B9%25B3%25E6%25B4%258B)%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=&cu=http%253A%252F%252Ffwbsie.com%252F&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200
Server: CloudWAF
Date: Tue, 06 Dec 2022 09:35:02 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=dae14532e5a3ecee87c; path=/
HWWAFSESTIME=1670319300293; path=/
ia.51.la/go1?id=20348599&rt=1670319302154&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=3&ekc=&sid=1670319302154&tt=%25E8%258B%25B1%25E8%25B6%2585app%25E5%25AE%2598%25E7%25BD%2591(%25E5%25A4%25AA%25E5%25B9%25B3%25E6%25B4%258B)%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=&cu=http%253A%252F%252Ffwbsie.com%252F&pu=
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=20348599&rt=1670319302154&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=3&ekc=&sid=1670319302154&tt=%25E8%258B%25B1%25E8%25B6%2585app%25E5%25AE%2598%25E7%25BD%2591(%25E5%25A4%25AA%25E5%25B9%25B3%25E6%25B4%258B)%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=&cu=http%253A%252F%252Ffwbsie.com%252F&pu=
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=20348599&rt=1670319302154&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=3&ekc=&sid=1670319302154&tt=%25E8%258B%25B1%25E8%25B6%2585app%25E5%25AE%2598%25E7%25BD%2591(%25E5%25A4%25AA%25E5%25B9%25B3%25E6%25B4%258B)%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=&cu=http%253A%252F%252Ffwbsie.com%252F&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fwbsie.com/
HTTP/1.1 200
Server: CloudWAF
Date: Tue, 06 Dec 2022 09:35:02 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=7d26c4338d5b2b4c582; path=/
HWWAFSESTIME=1670319301088; path=/
hm.baidu.com/hm.js?5905525d995414d185f5c0c5b8d703ea
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?5905525d995414d185f5c0c5b8d703ea
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (625)
Hash ddb0316b99bc4a2f99fb04f78e80f671
ab4db85ba05a3c55b0132f2045a8d30e01ebb9f3
382f01d5b52e2ac29fd121abffe205c869bf8653d15b59a1fb6559c4735b359a
GET /hm.js?5905525d995414d185f5c0c5b8d703ea HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11263
Content-Type: application/javascript
Date: Tue, 06 Dec 2022 09:35:02 GMT
Etag: 145fbf0795a8bfa5505a2fe102fca2b9
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8AC34E7896C13054; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?540dc9578d7543b70981adeafc55a7e0
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?540dc9578d7543b70981adeafc55a7e0
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 146ad4e446810faded2181b894b03a5d
ef14d0657bd95dc1f87c49718b56722d1714a132
6661ea5614fd11fe57cd6a3aaa6b5b2fe69390b0b814248f4043ee89c432622d
GET /hm.js?540dc9578d7543b70981adeafc55a7e0 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Tue, 06 Dec 2022 09:35:02 GMT
Etag: 48bb876954cd7c862ebb24f8447d6dea
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=81FB1AEA20D68D79; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
www.jkzgd.com/uploads/BVA-446_EO_1000x200.gif
194.146.87.186200 OK 214 kB URL HTTP/1.1 www.jkzgd.com/uploads/BVA-446_EO_1000x200.gif
IP 194.146.87.186:0
ASN #132839 POWER LINE DATACENTER
File type GIF image data, version 89a, 1000 x 200\012- data
Size 214 kB (214229 bytes)
Hash 2135a3c8a3e8fa90daf38918ec2ec0a4
1348144492501b16595d784c36982b9de4e62a6f
e6537b6bc23702b5368961e10f8375a183b851ddc4db0d42eab25c3bbc23e7e0
GET /uploads/BVA-446_EO_1000x200.gif HTTP/1.1
Host: www.jkzgd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:42 GMT
Content-Type: image/gif
Content-Length: 214229
Last-Modified: Mon, 11 Jul 2022 10:50:08 GMT
Connection: keep-alive
ETag: "62cc0060-344d5"
Expires: Thu, 05 Jan 2023 09:17:42 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=836&et=0&ja=0&ln=en-us&lo=0&rnd=1723079494&si=5905525d995414d185f5c0c5b8d703ea&v=1.3.0&lv=1&sn=28758&r=0&ww=1152&u=http%3A%2F%2Ffwbsie.com%2F&tt=%E8%8B%B1%E8%B6%85app%E5%AE%98%E7%BD%91(%E5%A4%AA%E5%B9%B3%E6%B4%8B)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=836&et=0&ja=0&ln=en-us&lo=0&rnd=1723079494&si=5905525d995414d185f5c0c5b8d703ea&v=1.3.0&lv=1&sn=28758&r=0&ww=1152&u=http%3A%2F%2Ffwbsie.com%2F&tt=%E8%8B%B1%E8%B6%85app%E5%AE%98%E7%BD%91(%E5%A4%AA%E5%B9%B3%E6%B4%8B)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=836&et=0&ja=0&ln=en-us&lo=0&rnd=1723079494&si=5905525d995414d185f5c0c5b8d703ea&v=1.3.0&lv=1&sn=28758&r=0&ww=1152&u=http%3A%2F%2Ffwbsie.com%2F&tt=%E8%8B%B1%E8%B6%85app%E5%AE%98%E7%BD%91(%E5%A4%AA%E5%B9%B3%E6%B4%8B)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 06 Dec 2022 09:35:03 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=A61AD561D893637D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=836&et=0&ja=0&ln=en-us&lo=0&rnd=1345977781&si=540dc9578d7543b70981adeafc55a7e0&v=1.3.0&lv=1&sn=28758&r=0&ww=1152&u=http%3A%2F%2Ffwbsie.com%2F&tt=%E8%8B%B1%E8%B6%85app%E5%AE%98%E7%BD%91(%E5%A4%AA%E5%B9%B3%E6%B4%8B)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=836&et=0&ja=0&ln=en-us&lo=0&rnd=1345977781&si=540dc9578d7543b70981adeafc55a7e0&v=1.3.0&lv=1&sn=28758&r=0&ww=1152&u=http%3A%2F%2Ffwbsie.com%2F&tt=%E8%8B%B1%E8%B6%85app%E5%AE%98%E7%BD%91(%E5%A4%AA%E5%B9%B3%E6%B4%8B)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=836&et=0&ja=0&ln=en-us&lo=0&rnd=1345977781&si=540dc9578d7543b70981adeafc55a7e0&v=1.3.0&lv=1&sn=28758&r=0&ww=1152&u=http%3A%2F%2Ffwbsie.com%2F&tt=%E8%8B%B1%E8%B6%85app%E5%AE%98%E7%BD%91(%E5%A4%AA%E5%B9%B3%E6%B4%8B)%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 06 Dec 2022 09:35:03 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=018344BC5E28317B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.jkzgd.com/uploads/211229-NewPlayerAF-1000x100.gif
194.146.87.186200 OK 173 kB URL HTTP/1.1 www.jkzgd.com/uploads/211229-NewPlayerAF-1000x100.gif
IP 194.146.87.186:0
ASN #132839 POWER LINE DATACENTER
File type GIF image data, version 89a, 1000 x 100\012- data
Size 173 kB (172643 bytes)
Hash 344efa503a2e3a77ccd77982cb79880a
a8d9b97f59e823c8a75d7989a6f638d678dbed20
dc79596042a63e607a7221da7b745c864900d9a05ccfd621dd20934cfb254e9e
GET /uploads/211229-NewPlayerAF-1000x100.gif HTTP/1.1
Host: www.jkzgd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:42 GMT
Content-Type: image/gif
Content-Length: 172643
Last-Modified: Mon, 11 Jul 2022 10:48:13 GMT
Connection: keep-alive
ETag: "62cbffed-2a263"
Expires: Thu, 05 Jan 2023 09:17:42 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
www.jkzgd.com/uploads/chsbng_1000x100.gif
194.146.87.186200 OK 481 kB URL HTTP/1.1 www.jkzgd.com/uploads/chsbng_1000x100.gif
IP 194.146.87.186:0
ASN #132839 POWER LINE DATACENTER
File type GIF image data, version 89a, 1000 x 100\012- data
Size 481 kB (481225 bytes)
Hash 115fe458e44c24e81cbee78ef8086978
d625a7f5a129acc8fb9c4ebe9270ee7db15f5929
14fc37cb9e98b4a35586c89f3ca65a3494953360b4b9e3459e6b2894a87eca6b
GET /uploads/chsbng_1000x100.gif HTTP/1.1
Host: www.jkzgd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:43 GMT
Content-Type: image/gif
Content-Length: 481225
Last-Modified: Wed, 27 Jul 2022 17:12:05 GMT
Connection: keep-alive
ETag: "62e171e5-757c9"
Expires: Thu, 05 Jan 2023 09:17:43 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
www.jkzgd.com/uploads/bob-a-1000x124-1.gif
194.146.87.186200 OK 956 kB URL HTTP/1.1 www.jkzgd.com/uploads/bob-a-1000x124-1.gif
IP 194.146.87.186:0
ASN #132839 POWER LINE DATACENTER
File type GIF image data, version 89a, 1000 x 100\012- data
Size 956 kB (955983 bytes)
Hash b5a9d09eae8c7e80590670dc8ea558fa
e5a28168aeca78de7ceafea961c0acb2a0a52901
1b0cfae5ade48b80da5d6242d394b1d24f154206912c6dc0bc7fe687d1b44ad0
GET /uploads/bob-a-1000x124-1.gif HTTP/1.1
Host: www.jkzgd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:42 GMT
Content-Type: image/gif
Content-Length: 955983
Last-Modified: Tue, 22 Nov 2022 14:07:43 GMT
Connection: keep-alive
ETag: "637cd7af-e964f"
Expires: Thu, 05 Jan 2023 09:17:42 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
www.jkzgd.com/uploads/WHC-347_1000x200.gif
194.146.87.186200 OK 0 B URL HTTP/1.1 www.jkzgd.com/uploads/WHC-347_1000x200.gif
IP 194.146.87.186:0
ASN #132839 POWER LINE DATACENTER
GET /uploads/WHC-347_1000x200.gif HTTP/1.1
Host: www.jkzgd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:45 GMT
Content-Type: image/gif
Content-Length: 195642
Last-Modified: Mon, 11 Jul 2022 10:53:16 GMT
Connection: keep-alive
ETag: "62cc011c-2fc3a"
Expires: Thu, 05 Jan 2023 09:17:45 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
www.jkzgd.com/uploads/wanbo-1000X200-xin-b.gif
194.146.87.186200 OK 0 B URL HTTP/1.1 www.jkzgd.com/uploads/wanbo-1000X200-xin-b.gif
IP 194.146.87.186:0
ASN #132839 POWER LINE DATACENTER
GET /uploads/wanbo-1000X200-xin-b.gif HTTP/1.1
Host: www.jkzgd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:45 GMT
Content-Type: image/gif
Content-Length: 7474576
Last-Modified: Mon, 11 Jul 2022 10:53:12 GMT
Connection: keep-alive
ETag: "62cc0118-720d90"
Expires: Thu, 05 Jan 2023 09:17:45 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
www.jkzgd.com/uploads/1000x100-yabo.gif
194.146.87.186200 OK 0 B URL HTTP/1.1 www.jkzgd.com/uploads/1000x100-yabo.gif
IP 194.146.87.186:0
ASN #132839 POWER LINE DATACENTER
GET /uploads/1000x100-yabo.gif HTTP/1.1
Host: www.jkzgd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:42 GMT
Content-Type: image/gif
Content-Length: 5973478
Last-Modified: Mon, 11 Jul 2022 10:48:11 GMT
Connection: keep-alive
ETag: "62cbffeb-5b25e6"
Expires: Thu, 05 Jan 2023 09:17:42 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
www.jkzgd.com/uploads/bying-1000x200.gif
194.146.87.186200 OK 0 B URL HTTP/1.1 www.jkzgd.com/uploads/bying-1000x200.gif
IP 194.146.87.186:0
ASN #132839 POWER LINE DATACENTER
GET /uploads/bying-1000x200.gif HTTP/1.1
Host: www.jkzgd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:45 GMT
Content-Type: image/gif
Content-Length: 13232234
Last-Modified: Mon, 11 Jul 2022 10:51:20 GMT
Connection: keep-alive
ETag: "62cc00a8-c9e86a"
Expires: Thu, 05 Jan 2023 09:17:45 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
www.jkzgd.com/uploads/b2a10bed01c45a7b28deb5b6a08af035.gif
194.146.87.186200 OK 0 B URL HTTP/1.1 www.jkzgd.com/uploads/b2a10bed01c45a7b28deb5b6a08af035.gif
IP 194.146.87.186:0
ASN #132839 POWER LINE DATACENTER
GET /uploads/b2a10bed01c45a7b28deb5b6a08af035.gif HTTP/1.1
Host: www.jkzgd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fwbsie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 06 Dec 2022 09:17:42 GMT
Content-Type: image/gif
Content-Length: 2207197
Last-Modified: Mon, 11 Jul 2022 10:49:52 GMT
Connection: keep-alive
ETag: "62cc0050-21addd"
Expires: Thu, 05 Jan 2023 09:17:42 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes