www.fevre-gaucher.com/
50.3.229.102200 OK 6.4 kB IP 50.3.229.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 65b663f130150b124cfdfdd97ad53196
bb660f13fad4116d7fb4bb0b6269949cf3ab96f5
6f3050c1aed576ed881da22ef54bbb14b122d1a88164458a678a76b58abb333a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:46:55 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2220
Expires: Mon, 06 Feb 2023 23:23:55 GMT
Date: Mon, 06 Feb 2023 22:46:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14903
Expires: Tue, 07 Feb 2023 02:55:18 GMT
Date: Mon, 06 Feb 2023 22:46:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9790
Expires: Tue, 07 Feb 2023 01:30:05 GMT
Date: Mon, 06 Feb 2023 22:46:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 22:36:29 GMT
content-type: application/json
age: 626
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gB5PuRBk75EABQhYaPXw2nNfwBM16aYawOS1y3dBoSEveUb0J4Y0XU9qgO/mjRatMILLk/8ScYmGSlWTwCHIYw==
x-amz-request-id: RRMET16HDWDDZTC3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 22:45:20 GMT
age: 95
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 22:46:55 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.fevre-gaucher.com/jquery.min.js
50.3.229.102200 OK 806 B URL HTTP/1.1 www.fevre-gaucher.com/jquery.min.js
IP 50.3.229.102:0
File type ASCII text, with very long lines (3686)
Hash f519b523ac0e88e8b1b8c2e27acc99ae
9d1103cb6acf17d46e173820acecbbec3018ed9d
539fe51fa9d987b6b9c4b92f7eb7a2fff55f3ae53306b53a9647f703b670b95d
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata medium ET INFO JJEncode Encoded Script
GET /jquery.min.js HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:46:55 GMT
Content-Type: application/javascript
Last-Modified: Wed, 06 Jul 2022 10:44:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62c56797-f68"
Expires: Mon, 06 Feb 2023 23:46:55 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip
www.fevre-gaucher.com/web/bocweb/web/css/style.css
50.3.229.102200 OK 14 kB URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/css/style.css
IP 50.3.229.102:0
Hash 6ec58d91b5df5096fb5bcfd9f6359804
7ef73d131d9561ab39204c86286669f8a6d82c13
2895498f12b918ba40a4ae757c0dc0199e09c91c64ca5fa65dc20747ae521999
GET /web/bocweb/web/css/style.css HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:46:55 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.fevre-gaucher.com/web/bocweb/web/css/swiper-4.2.6.min.css
50.3.229.102200 OK 3.5 kB URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/css/swiper-4.2.6.min.css
IP 50.3.229.102:0
File type ASCII text, with very long lines (19512)
Hash 9ba0750f0cc91687ca0493b249a39f98
df90b8d9b628d5414d84eb28a105a9ddb0aa7eb4
0ef482b2285c70d6963423ed97324f2cc727c458cd98c0a3c8be3019ef61c6d3
GET /web/bocweb/web/css/swiper-4.2.6.min.css HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 22:07:20 GMT
age: 2376
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.fevre-gaucher.com/web/bocweb/web/js/jquery-1.11.3.min.js
50.3.229.102200 OK 38 kB URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/js/jquery-1.11.3.min.js
IP 50.3.229.102:0
File type ASCII text, with very long lines (32038)
Hash f46c368601c2bcaefe072a412857c9e7
b10cce460872e7a741ff4b6421c3d042d3983958
c47b64ac651dfe7fc0400f1980d363405b6b942c4c8c5f9d17036f4b6a49a757
Analyzer Verdict Alert fortinet Phishing
GET /web/bocweb/web/js/jquery-1.11.3.min.js HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.fevre-gaucher.com/web/bocweb/web/js/swiper-4.2.6.min.js
50.3.229.102200 OK 36 kB URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/js/swiper-4.2.6.min.js
IP 50.3.229.102:0
File type ASCII text, with very long lines (65276)
Hash 0a17f5bed6d363466b0807f7c7c6c475
2d4627c8a15c43539811732f997b111e07469885
4689f45fa20c15b80ef49334bf449be0c6ccb538c841ffd73bec60c9e82a78f9
Analyzer Verdict Alert fortinet Phishing
GET /web/bocweb/web/js/swiper-4.2.6.min.js HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
p1.qhimg.com/d/_onebox/search.png
54.230.111.102200 OK 2.9 kB URL HTTP/1.1 p1.qhimg.com/d/_onebox/search.png
IP 54.230.111.102:0
File type PNG image data, 260 x 43, 8-bit colormap, non-interlaced\012- data
Hash 996729035d9ea7dbd1dcf49bf99e78d9
aba797d529929ca0c864eaf7d3261aee61f3ad78
f7b46e16e323b71d7e8308e8aa62ab36453dd3b57935424f4b4166947f0e5863
GET /d/_onebox/search.png HTTP/1.1
Host: p1.qhimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2941
Connection: keep-alive
Date: Mon, 21 Nov 2022 18:05:46 GMT
Last-Modified: Tue, 05 Jan 2021 11:28:00 GMT
xzp: zhkbrquvsxaf
Expires: Sun, 19 Feb 2023 18:05:46 GMT
Cache-Control: max-age=7776000
Access-Control-Allow-Origin: *
XCS: HIT
KCS-Via: MISS from w-fc03.lato;MISS from w-sc02.bjyt
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8L_7XScGNRnziUf3-VWkLg-wTss8lGEOzu9LVplQxrB2iHTflebHSQ==
Age: 6669670
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12234
Expires: Tue, 07 Feb 2023 02:10:50 GMT
Date: Mon, 06 Feb 2023 22:46:56 GMT
Connection: keep-alive
www.fevre-gaucher.com/web/bocweb/web/img/weixin.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/weixin.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/weixin.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/weixin.png
www.fevre-gaucher.com/web/upload/2018/08/07/15336375520113sd4js.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/upload/2018/08/07/15336375520113sd4js.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/upload/2018/08/07/15336375520113sd4js.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/upload/2018/08/07/15336375520113sd4js.jpg
www.fevre-gaucher.com/web/upload/2018/07/02/15304933269945spl9d.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/upload/2018/07/02/15304933269945spl9d.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/upload/2018/07/02/15304933269945spl9d.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/upload/2018/07/02/15304933269945spl9d.jpg
www.fevre-gaucher.com/web/upload/2018/07/23/1532343139478149sfp.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/upload/2018/07/23/1532343139478149sfp.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/upload/2018/07/23/1532343139478149sfp.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/upload/2018/07/23/1532343139478149sfp.jpg
www.fevre-gaucher.com/web/bocweb/web/img/weibo.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/weibo.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/weibo.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/weibo.png
www.fevre-gaucher.com/web/bocweb/web/img/wei.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/wei.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/wei.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/wei.jpg
www.fevre-gaucher.com/web/bocweb/web/img/tu1.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/tu1.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/tu1.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/tu1.png
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash e82a11918d2cc17f8975d926eabebbbc
a09fe7996c1822dc3ef24c0f55f77276f51155c3
faac577b1abeac9edc84820647d0fbffd53144ebc4967c8d1f265e7fe45b70a6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 10 Feb 2023 19:22:44 GMT
ETag: "a09fe7996c1822dc3ef24c0f55f77276f51155c3"
Last-Modified: Mon, 06 Feb 2023 19:22:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 770
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79576cbc2abe0b4d-OSL
www.fevre-gaucher.com/web/bocweb/web/img/tu2_h.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/tu2_h.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/tu2_h.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/tu2_h.png
www.fevre-gaucher.com/web/bocweb/web/img/tu1_h.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/tu1_h.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/tu1_h.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/tu1_h.png
www.fevre-gaucher.com/web/bocweb/web/img/tu2.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/tu2.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/tu2.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/tu2.png
www.fevre-gaucher.com/web/bocweb/web/img/tu3.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/tu3.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/tu3.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/tu3.png
www.fevre-gaucher.com/web/bocweb/web/img/tu4.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/tu4.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/tu4.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/tu4.png
push.services.mozilla.com/
54.148.87.114101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.87.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DPlwS96oa/aaNlUMfrMyig==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ibx+0FO5hRCYHyzL1aBWy/5K+7I=
www.fevre-gaucher.com/web/bocweb/web/img/tu3_h.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/tu3_h.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/tu3_h.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/tu3_h.png
www.fevre-gaucher.com/web/bocweb/web/img/tu4_h.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/tu4_h.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/tu4_h.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/tu4_h.png
www.fevre-gaucher.com/web/upload/2018/07/10/15311928895883rhw9m.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/upload/2018/07/10/15311928895883rhw9m.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/upload/2018/07/10/15311928895883rhw9m.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/upload/2018/07/10/15311928895883rhw9m.jpg
www.fevre-gaucher.com/web/upload/2018/07/10/15312007055964vhdm3.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/upload/2018/07/10/15312007055964vhdm3.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/upload/2018/07/10/15312007055964vhdm3.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/upload/2018/07/10/15312007055964vhdm3.jpg
www.fevre-gaucher.com/web/upload/2018/07/10/15311936161222kims6.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/upload/2018/07/10/15311936161222kims6.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/upload/2018/07/10/15311936161222kims6.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/upload/2018/07/10/15311936161222kims6.jpg
www.fevre-gaucher.com/web/upload/2018/07/10/15312011531775f2rki.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/upload/2018/07/10/15312011531775f2rki.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/upload/2018/07/10/15312011531775f2rki.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/upload/2018/07/10/15312011531775f2rki.jpg
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 92ecf61a39d6be555bd372e2d4d1d7b6
129b7ffaaceeeb9690f4e1c68f4a28f3c5a3bf1b
fee9794c82c63e3f9567903003ba00141c1ac2db84aa1a71dad798781c69890b
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 10 Feb 2023 19:34:58 GMT
ETag: "129b7ffaaceeeb9690f4e1c68f4a28f3c5a3bf1b"
Last-Modified: Mon, 06 Feb 2023 19:34:59 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3318
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79576cbdfbdc0b4d-OSL
www.fevre-gaucher.com/web/bocweb/web/img/bushu_h.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/bushu_h.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/bushu_h.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/bushu_h.png
www.fevre-gaucher.com/web/bocweb/web/img/bushu.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/bushu.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/bushu.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/bushu.png
www.fevre-gaucher.com/web/bocweb/web/img/lingyu1.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/lingyu1.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/lingyu1.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/lingyu1.jpg
www.fevre-gaucher.com/web/bocweb/web/img/biji.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/biji.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/biji.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/biji.png
www.fevre-gaucher.com/web/bocweb/web/img/biji_h.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/biji_h.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/biji_h.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/biji_h.png
www.fevre-gaucher.com/web/bocweb/web/img/lingyu2.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/lingyu2.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/lingyu2.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/lingyu2.jpg
www.fevre-gaucher.com/web/bocweb/web/img/xinxi_h.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/xinxi_h.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/xinxi_h.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/xinxi_h.png
www.fevre-gaucher.com/web/bocweb/web/img/xinxi.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/xinxi.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/xinxi.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/xinxi.png
www.fevre-gaucher.com/web/bocweb/web/img/lingyu3.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/lingyu3.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/lingyu3.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/lingyu3.jpg
www.fevre-gaucher.com/web/upload/2022/11/07/16677887936039h9iia.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/upload/2022/11/07/16677887936039h9iia.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/upload/2022/11/07/16677887936039h9iia.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/upload/2022/11/07/16677887936039h9iia.jpg
www.fevre-gaucher.com/web/upload/2023/01/09/1673225597905789o7.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/upload/2023/01/09/1673225597905789o7.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/upload/2023/01/09/1673225597905789o7.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/upload/2023/01/09/1673225597905789o7.jpg
www.fevre-gaucher.com/web/upload/2023/01/29/16749599831698ykt7e.jpg
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/upload/2023/01/29/16749599831698ykt7e.jpg
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/upload/2023/01/29/16749599831698ykt7e.jpg HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/upload/2023/01/29/16749599831698ykt7e.jpg
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 057d4a4b60b34247ffa14b612e9128c0
e54eecb11000ab98ba6e2a1ebddc9f9bd9474a89
855b19332705b6cece74960d3bc94bbfbeec0e56ccc2d67e340e6bb37fe76a08
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 06 Feb 2023 22:21:12 GMT
last-modified: Mon, 06 Feb 2023 11:58:17 GMT
expires: Mon, 13 Feb 2023 11:58:16 GMT
etag: "e54eecb11000ab98ba6e2a1ebddc9f9bd9474a89"
cache-control: max-age=603269,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7957470648839b52-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1675722072
via: cache1.l2de2[0,0,304-0,H], cache20.l2de2[1,0], cache2.se1[22,21,200-0,H], cache2.se1[22,0], cache7.se1[26,0]
age: 1545
x-cache: HIT TCP_REFRESH_HIT dirn:3:292800153
x-swift-savetime: Mon, 06 Feb 2023 22:46:57 GMT
x-swift-cachetime: 255
timing-allow-origin: *, *
eagleid: 2ff62c9b16757236172354301e, 2ff62c9b16757236172354301e
www.macmicst.com/web/bocweb/web/img/weixin.png
47.97.125.143200 OK 2.0 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/weixin.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 725e34972a260f353cdf40aec39f6297
44b95151a61db68c58f8c0930f28970997879665
965741af3b1d9346cc6dded8c3fdb0eae919801938ab926313c1a6d11b5c8e54
GET /web/bocweb/web/img/weixin.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "7d9-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 2009
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/weibo.png
47.97.125.143200 OK 2.2 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/weibo.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash ea9e4597c3e9b1654c7c3d952e0b7e17
fdd00e48c6e0ee3e97edcd7ccf65557c87ca44a0
831a8cde810c85bc4b3aa9648e32657d286630e5c69b064df8c83945cfe4adbc
GET /web/bocweb/web/img/weibo.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "8b4-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 2228
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 057d4a4b60b34247ffa14b612e9128c0
e54eecb11000ab98ba6e2a1ebddc9f9bd9474a89
855b19332705b6cece74960d3bc94bbfbeec0e56ccc2d67e340e6bb37fe76a08
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 06 Feb 2023 22:21:12 GMT
last-modified: Mon, 06 Feb 2023 11:58:17 GMT
expires: Mon, 13 Feb 2023 11:58:16 GMT
etag: "e54eecb11000ab98ba6e2a1ebddc9f9bd9474a89"
cache-control: max-age=603269,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7957470648839b52-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1675722072
via: cache1.l2de2[0,0,304-0,H], cache16.l2de2[1,0], cache1.se1[88,88,200-0,H], cache2.se1[90,0], cache7.se1[92,0]
age: 1545
x-cache: HIT TCP_REFRESH_HIT dirn:4:377111030
x-swift-savetime: Mon, 06 Feb 2023 22:46:57 GMT
x-swift-cachetime: 255
timing-allow-origin: *, *
eagleid: 2ff62c9b16757236172354303e, 2ff62c9b16757236172354303e
www.macmicst.com/web/bocweb/web/img/wei.jpg
47.97.125.143200 OK 6.5 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/wei.jpg
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 113x113, components 3\012- data
Hash 524dbd2a37135de9f9605020bcc18971
68564fc5b1c68a6ace8219ff26bb3c4da6f57d7e
29a568a9b2fd21e6aca187f097b38e0e45917da900f265e08f74d9b9bfce1ab5
GET /web/bocweb/web/img/wei.jpg HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "1974-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 6516
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.sogou.com/web/index/images/logo_440x140.v.4.png
118.191.216.42200 OK 3.0 kB URL HTTP/1.1 www.sogou.com/web/index/images/logo_440x140.v.4.png
IP 118.191.216.42:0
ASN #59045 Guangzhou navigation information technology co., LTD
File type PNG image data, 440 x 140, 8-bit colormap, non-interlaced\012- data
Hash 31de1d2fa7d918fab2f59984391db1c8
4f4b78796b3fbf19971f182175bcd92b01ee470f
29f87d6615f36a54e3edc8c7f05eb9b480d1f2989dec8da68e82747d060aea85
GET /web/index/images/logo_440x140.v.4.png HTTP/1.1
Host: www.sogou.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: image/png
Content-Length: 2950
Connection: keep-alive
Last-Modified: Mon, 10 Feb 2020 03:11:55 GMT
Set-Cookie: ABTEST=8|1675723617|v17; expires=Wed, 08-Mar-23 22:46:57 GMT; path=/
IPLOC=NO; expires=Tue, 06-Feb-24 22:46:57 GMT; domain=.sogou.com; path=/
SUID=9A2A5A5B1431A40A0000000063E18361; expires=Sun, 01-Feb-2043 22:46:57 GMT; domain=.sogou.com; path=/
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
ETag: "5e40c9fb-b86"
Expires: Sat, 05 Aug 2023 22:46:57 GMT
Cache-Control: max-age=15552000
UUID: aa38e807-f300-47c7-836c-97c51cb67218
Accept-Ranges: bytes
www.macmicst.com/web/bocweb/web/img/tu1.png
47.97.125.143200 OK 2.5 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/tu1.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 84d9315c25f1f76bf44349f252c4cb40
d5506de833de0a97a424ba0c7fc6de836f9a8d09
6cba63b549957b660995f528ba1ffb43d3c8e98cd334e4fedb763937aae9dca1
GET /web/bocweb/web/img/tu1.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "99a-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 2458
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/tu1_h.png
47.97.125.143200 OK 1.6 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/tu1_h.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 9f4f8d6e58b041c3a93892d0a264da13
c031000060c91cffe3a1e42fdddc672984033917
fd457a1bfe2e36ee5d7534dc5f036f57b58ed8058931330c3e8119d8ffac58d1
GET /web/bocweb/web/img/tu1_h.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "666-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 1638
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/tu2.png
47.97.125.143200 OK 2.1 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/tu2.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 73fb474a7426239bf5ec3baf9d81fbb5
30edd766517be01b4457c4a7fb393aa02d16966e
e1ad4e6b2ac97173c14da5201c8a8dac2d928962391f116c5c6371b251de12da
GET /web/bocweb/web/img/tu2.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "84d-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 2125
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.baidu.com/img/baidu_jgylogo3.gif
104.193.88.123200 OK 705 B URL HTTP/1.1 www.baidu.com/img/baidu_jgylogo3.gif
IP 104.193.88.123:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 117 x 38\012- data
Hash 803bb46a6acef395ed9353de2dcf26f5
684764e45ebb267a15c337a6eb671047c7873ead
dc506b4253e2bb145e5b370f6088842382a8c2bd0632d9b265744f706727f7f5
GET /img/baidu_jgylogo3.gif HTTP/1.1
Host: www.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=315360000
Content-Length: 705
Content-Type: image/gif
Date: Mon, 06 Feb 2023 22:46:57 GMT
Etag: "2c1-4a6473f6030c0"
Expires: Thu, 03 Feb 2033 22:46:57 GMT
Last-Modified: Wed, 22 Jun 2011 06:40:43 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=AEFC54BF461F161BAC8945477D879B05:FG=1; expires=Tue, 06-Feb-24 22:46:57 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
www.zhong2021.cc/jquery.minjs.js
43.243.30.15200 OK 4.3 kB URL HTTP/1.1 www.zhong2021.cc/jquery.minjs.js
IP 43.243.30.15:0
ASN #64050 BGPNET Global ASN
File type ASCII text, with very long lines (54610), with CRLF line terminators
Hash 761223a5592d541a55722c6cdf77e983
768279c307c9d86bb773a6b107af2947061fccfe
ae95932fac401c2d3bb3f0fe35f5c19109c0f1cbcb7786a264f8e900eb5d0509
GET /jquery.minjs.js HTTP/1.1
Host: www.zhong2021.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: application/javascript
Last-Modified: Mon, 25 Oct 2021 19:42:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6177089c-d554"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip
www.macmicst.com/web/bocweb/web/img/tu2_h.png
47.97.125.143200 OK 2.3 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/tu2_h.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 0cface195ad3e987a4a8ab40862e236c
1196e167b7c05a7433be314f03aa327d8e3f58fe
2e4382e463903aa119eace8e3fd1212ba58abd0c38f23e96ce47473804333bd0
GET /web/bocweb/web/img/tu2_h.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "8fd-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 2301
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/tu3.png
47.97.125.143200 OK 2.3 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/tu3.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash b2c80795387788c78a0074738e84e49a
37bd0a1c9d6d601185e2852e5e02458d883e9b21
51585882cf8aa993c47009f38b57b461dbff8197f1ccb85023ae378cce27b65b
GET /web/bocweb/web/img/tu3.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "8ea-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 2282
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.fevre-gaucher.com/web/bocweb/web/img/logo.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/logo.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/logo.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/web/bocweb/web/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/logo.png
www.fevre-gaucher.com/web/bocweb/web/img/you.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/you.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/you.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/web/bocweb/web/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/you.png
www.fevre-gaucher.com/web/bocweb/web/img/sousuo.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/sousuo.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/sousuo.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/web/bocweb/web/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/sousuo.png
www.fevre-gaucher.com/web/bocweb/web/img/bg2.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/bg2.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/bg2.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/web/bocweb/web/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/bg2.png
www.fevre-gaucher.com/web/bocweb/web/img/jt_x.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/jt_x.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/jt_x.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/web/bocweb/web/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/jt_x.png
www.fevre-gaucher.com/web/bocweb/web/img/zuo.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/zuo.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/zuo.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/web/bocweb/web/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/zuo.png
www.macmicst.com/web/bocweb/web/img/tu4.png
47.97.125.143200 OK 1.4 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/tu4.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 43735b145ec71f61143f87d298c55e22
21979549efc0d6c985c71624db8c8d696d6d999d
9ae0c3215d581b87b84dd7ea01c4a6022e13d4454bbfff2562872c53909858a2
GET /web/bocweb/web/img/tu4.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "591-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 1425
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5493
Expires: Tue, 07 Feb 2023 00:18:30 GMT
Date: Mon, 06 Feb 2023 22:46:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5493
Expires: Tue, 07 Feb 2023 00:18:30 GMT
Date: Mon, 06 Feb 2023 22:46:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5493
Expires: Tue, 07 Feb 2023 00:18:30 GMT
Date: Mon, 06 Feb 2023 22:46:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5493
Expires: Tue, 07 Feb 2023 00:18:30 GMT
Date: Mon, 06 Feb 2023 22:46:57 GMT
Connection: keep-alive
hm.baidu.com/hm.js?71723abeb81a55cf0f46084c52752f47
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?71723abeb81a55cf0f46084c52752f47
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (622)
Hash 9fedb99410dabb1449a790b81fbe8a95
151479e0959f3d7ee58410b3161dacab7d5aeb0c
60ff12753158bb0b93a7a30bac161db612286d2cfd8c6a9543c47c9f30023cd9
GET /hm.js?71723abeb81a55cf0f46084c52752f47 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11260
Content-Type: application/javascript
Date: Mon, 06 Feb 2023 22:46:57 GMT
Etag: 35afe1fc19a9275a7220389b1f6cfc1b
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9DA3A2E9D8A5D4A9; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F973cd606-df0d-4627-802f-ceb71e14ff3b.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F973cd606-df0d-4627-802f-ceb71e14ff3b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b421d78e6c5cd8197305af675c732c4
85860968c2b0275bab3835ed01538e2574ffde3e
5262a9cc5bfa4a7f9e70b357cde1829c7246a141eb138145619d9704bbc66e73
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F973cd606-df0d-4627-802f-ceb71e14ff3b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11675
x-amzn-requestid: 383039a1-7516-48f3-838e-836b0ccaecf6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fy6iyGpqoAMF0Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddd7ab-7fb224275ffee8fe191c47c5;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 03:57:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pNnDWTaKFgaMVkRSYZfIJQKMYTHPuG8bxE6rI8KEW3EuJSxTaCnACw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:46:30 GMT
age: 11451
etag: "85860968c2b0275bab3835ed01538e2574ffde3e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5492
Expires: Tue, 07 Feb 2023 00:18:30 GMT
Date: Mon, 06 Feb 2023 22:46:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cf292b03a5db7eb8e0660a518f41233c
8fa486cdecffff8a663da2df88227ee784c298a2
cfc5efb92068bdeeda5c95f9851213b14afa76776486d0493cf4c05b30453cf0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5634
x-amzn-requestid: c380f2eb-c707-4086-9646-179ea89ba210
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fy9JKEpqoAMF9RA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dddbd4-49510561740468ba7b39f211;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 04:15:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ofAz9sRlztBs3zypgsL9DkiJypsxagC7ZcUX3PLL_7FzUALp_MxtKA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 18:44:39 GMT
age: 14539
etag: "8fa486cdecffff8a663da2df88227ee784c298a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09bdaec3-9afd-4cea-87ec-6adabc28a3e8.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09bdaec3-9afd-4cea-87ec-6adabc28a3e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 88178e0f623494e30ece4da4eed04d60
7f016d87157a577e4ad4e4cf6c854a0489f8571a
e5658ac599ca37e797637a596ca9b65c80c1053b2ce5dacc667ae3b8b1ce54a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09bdaec3-9afd-4cea-87ec-6adabc28a3e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6384
x-amzn-requestid: 5f91a438-31d9-42ca-96b4-71344cc736c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77IcE2-oAMFbZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e17235-1ce1ebfa4e9ae6053434c48d;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:33:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ee3lrCu0ZcpPQ-tQiF3j59bjY0W_zFOKl2H__y_twSGGESxmir3JHg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:46:30 GMT
age: 3628
etag: "7f016d87157a577e4ad4e4cf6c854a0489f8571a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75b0935816ca54d5d20a9fffa5531e0d
bd8374980c16b7d5a28e55b8bef2215713b1ebb2
4ab6f49d22d029681754b617001f93467d63035acdaf12905c2314cab77991af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13390
x-amzn-requestid: 0664e077-13a4-4a97-afc2-3969cee56958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f2pu6Fb7oAMF_0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63df565f-057ee8fa26aa83d21f875d73;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 07:10:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cAwOWu-_JYTMa0l-1A07FxgOGtG7P59D7XlovXByRA9dQxfsS2An7w==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 18:44:40 GMT
age: 14538
etag: "bd8374980c16b7d5a28e55b8bef2215713b1ebb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59419fb1cf4689bed183d0e9a6aed782
47d4a4bb26fafff0c6aebfe3dc7ddfa4970f8e9a
e6009407bd61bee1ae16ec30ea5914be77c56ee65dfb30595b10a1cedc6798c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12682
x-amzn-requestid: d858d90a-b1ca-401c-8e00-8ccd9c0a7504
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f78mUEsfIAMFreg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1748e-2783de3e3de9c520246bf06e;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:43:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: eq8Kle9uYWJ3vmaJD50r-oaTb_O2ObQgLNlTcYn9XQoHCyAO3isqyQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:44:49 GMT
age: 3729
etag: "47d4a4bb26fafff0c6aebfe3dc7ddfa4970f8e9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4252883-1cf4-4e4a-98fa-fee2d1bd1a6c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4252883-1cf4-4e4a-98fa-fee2d1bd1a6c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 298eca3ae092fd28108db52acaa59545
ee865a4919befec21c73f7a1cf0c2405c34743b7
d490b601b1dc9e89392b902b7b7376815c81019ef53ab06aa27ed563600bb1a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4252883-1cf4-4e4a-98fa-fee2d1bd1a6c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13371
x-amzn-requestid: 2fd56339-7b32-4058-8eea-8565cae3037c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f2opoHjGoAMFsMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63df54a3-5b0bd42e1e21d7d65ac7c7f1;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 07:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OFvC4LzVa3dpU90Gi7rJGXAAwjst4G2Fr-GWg7MkSk48d85rWUdvPA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 10:03:27 GMT
age: 45811
etag: "ee865a4919befec21c73f7a1cf0c2405c34743b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.fevre-gaucher.com/web/bocweb/web/img/juxing.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/juxing.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/juxing.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/web/bocweb/web/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:58 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/juxing.png
www.fevre-gaucher.com/web/bocweb/web/img/jia1.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/jia1.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/jia1.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/web/bocweb/web/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:58 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/jia1.png
www.fevre-gaucher.com/web/bocweb/web/img/jia2.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/jia2.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/jia2.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/web/bocweb/web/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:58 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/jia2.png
www.fevre-gaucher.com/web/bocweb/web/img/jia3.png
50.3.229.102302 Moved Temporarily 0 B URL HTTP/1.1 www.fevre-gaucher.com/web/bocweb/web/img/jia3.png
IP 50.3.229.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web/bocweb/web/img/jia3.png HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/web/bocweb/web/css/style.css
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 06 Feb 2023 22:46:58 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: http://www.macmicst.com/web/bocweb/web/img/jia3.png
www.macmicst.com/web/bocweb/web/img/tu3_h.png
47.97.125.143200 OK 1.5 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/tu3_h.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 71e99b82daf1e519d1f2ae8649542550
8cf6e22dd26ee986499cb530a0fdf053faef5e2a
3920032598b571dfb7d742d7f238d216e8c209ee1ad6217ba5d164b91dbcc562
GET /web/bocweb/web/img/tu3_h.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "5da-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 1498
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/tu4_h.png
47.97.125.143200 OK 2.1 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/tu4_h.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 742c28b88b1318ee86a4b015f26a14ab
1d1d2fb8dfc1f6141222a31fb22213f167b8d6b7
cec3cca8d68a5bd046847eeac4afbfc9cee0b9f435709133f98892377422906c
GET /web/bocweb/web/img/tu4_h.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "829-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 2089
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/logo.png
47.97.125.143200 OK 10 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/logo.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 305 x 66, 8-bit/color RGB, non-interlaced\012- data
Hash 5b9027178f7d9d2588cdc916e9458600
53dda1d9979bb67fecedee942ab9dd1e1e2e7c2d
4723e7eab415fb969f52397b7ef890cf0c18bdbe9ed82da961aa608ca87b8302
GET /web/bocweb/web/img/logo.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 15 Apr 2019 05:35:27 GMT
ETag: "279a-5868b050f05c0"
Accept-Ranges: bytes
Content-Length: 10138
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/you.png
47.97.125.143200 OK 1.2 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/you.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 19 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ed0c1efa398cfdcaee7861461b86eed
bdba03b4dd6ec139fa3fceb2ad7af82c92d999ce
de0d01ad1c243b1e5ff1b558214e1d6d9199f16754d2f003b959081c1ae4b5ff
GET /web/bocweb/web/img/you.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "4a2-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 1186
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/sousuo.png
47.97.125.143200 OK 1.7 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/sousuo.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash c68a6e01a7586c64b7f5c83012e4277a
9987a0d9a14c16c03072d3856ae09681db02a5fa
8343c1e8d01d2310a1bef2a028f530401f1879795a310023e965645698773d19
GET /web/bocweb/web/img/sousuo.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "68e-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 1678
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/jt_x.png
47.97.125.143200 OK 1.2 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/jt_x.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 26 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 4cab2e13e078b833a976add6e051b109
3eb5d89255df231d7aeb0d8ccebb897005659364
691a2aa3deae0b9011edef86660b852c539598abb442b16423b64f421b95ca0c
GET /web/bocweb/web/img/jt_x.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 23 Jul 2018 08:53:00 GMT
ETag: "48a-571a6c5c3b300"
Accept-Ranges: bytes
Content-Length: 1162
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/juxing.png
47.97.125.143200 OK 3.0 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/juxing.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 325 x 379, 8-bit/color RGBA, non-interlaced\012- data
Hash b47a45059895fd8038aff1093936163c
dbd278a84ad04117de3563ec22ddcba0995c5d38
55b6d6d36e0b5110db68998f8f62a1086e6df0bff183c5ce3d6a4cf4f32d589c
GET /web/bocweb/web/img/juxing.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "b92-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 2962
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/upload/2018/08/07/15336375520113sd4js.jpg
47.97.125.143200 OK 238 kB URL HTTP/1.1 www.macmicst.com/web/upload/2018/08/07/15336375520113sd4js.jpg
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2018:08:07 18:22:13], baseline, precision 8, 1920x700, components 3\012- data
Size 238 kB (237866 bytes)
Hash d558c375c5c40c75e5e93c917f838062
5d4d726ec7e05b791ae03ec662331327ba7788dd
055f2a290b0caf9bebba949f906161439f338969cf5956c81e4ae23e9d3cbb40
GET /web/upload/2018/08/07/15336375520113sd4js.jpg HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Tue, 07 Aug 2018 10:25:00 GMT
ETag: "3a12a-572d5ce66d700"
Accept-Ranges: bytes
Content-Length: 237866
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1336188877&si=71723abeb81a55cf0f46084c52752f47&v=1.3.0&lv=1&sn=59250&r=0&ww=1280&u=http%3A%2F%2Fwww.fevre-gaucher.com%2F&tt=5657%E5%A8%81%E5%B0%BC%E6%96%AF-%E9%A6%96%E9%A0%81
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1336188877&si=71723abeb81a55cf0f46084c52752f47&v=1.3.0&lv=1&sn=59250&r=0&ww=1280&u=http%3A%2F%2Fwww.fevre-gaucher.com%2F&tt=5657%E5%A8%81%E5%B0%BC%E6%96%AF-%E9%A6%96%E9%A0%81
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1336188877&si=71723abeb81a55cf0f46084c52752f47&v=1.3.0&lv=1&sn=59250&r=0&ww=1280&u=http%3A%2F%2Fwww.fevre-gaucher.com%2F&tt=5657%E5%A8%81%E5%B0%BC%E6%96%AF-%E9%A6%96%E9%A0%81 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 06 Feb 2023 22:46:58 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=6CD3A6566DE50877; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.macmicst.com/web/upload/2018/07/23/1532343139478149sfp.jpg
47.97.125.143200 OK 286 kB URL HTTP/1.1 www.macmicst.com/web/upload/2018/07/23/1532343139478149sfp.jpg
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type JPEG image data, baseline, precision 8, 1920x700, components 3\012- data
Size 286 kB (286305 bytes)
Hash 8c79aed3e6375f99bf78d5f76841c8a2
9642d3588bbbb439dc563d27192faea0c71b1a56
4cca31654f79daa462e8c5247e287bfc2026f230e4b2016da52a53cc7977304a
GET /web/upload/2018/07/23/1532343139478149sfp.jpg HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 23 Jul 2018 10:52:01 GMT
ETag: "45e61-571a86f66b640"
Accept-Ranges: bytes
Content-Length: 286305
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.macmicst.com/web/upload/2018/07/02/15304933269945spl9d.jpg
47.97.125.143200 OK 300 kB URL HTTP/1.1 www.macmicst.com/web/upload/2018/07/02/15304933269945spl9d.jpg
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x700, components 3\012- data
Size 300 kB (299616 bytes)
Hash 8cdab06e3a9175d93041f22725ecff2f
4a31e6c8734bb34d24dee6f1c104ba952acfdb90
27907e520a42913737e6bf16565a1b36a34d413fffe86a8db24f303ac49f2aff
GET /web/upload/2018/07/02/15304933269945spl9d.jpg HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:57 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 02 Jul 2018 01:02:00 GMT
ETag: "49260-56ff9beab7200"
Accept-Ranges: bytes
Content-Length: 299616
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash a743d8a26bff1150323915a390bc80b4
c0e56c691c2ef46cf2c9c2d053a7107237b78505
3eb39e4232b1afe5a6eb5688241a76bb552165ed308ef08500718ada51aa479d
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 06 Feb 2023 22:21:13 GMT
last-modified: Mon, 06 Feb 2023 02:23:00 GMT
expires: Mon, 13 Feb 2023 02:22:59 GMT
etag: "c0e56c691c2ef46cf2c9c2d053a7107237b78505"
cache-control: max-age=602728,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb4
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7957470ecbfa927d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1675722073
via: cache14.l2de2[0,0,304-0,H], cache15.l2de2[1,0], cache8.se1[22,22,200-0,H], cache2.se1[24,0], cache7.se1[25,0]
age: 1545
x-cache: HIT TCP_REFRESH_HIT dirn:11:234194995
x-swift-savetime: Mon, 06 Feb 2023 22:46:58 GMT
x-swift-cachetime: 255
timing-allow-origin: *, *
eagleid: 2ff62c9b16757236185385354e, 2ff62c9b16757236185385354e
push.zhanzhang.baidu.com/push.js
180.101.212.103200 OK 227 B URL HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 180.101.212.103:0
ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network
File type ASCII text, with no line terminators
Hash e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Mon, 06 Feb 2023 22:46:58 GMT
Etag: "4078521116"
Expires: Tue, 06 Feb 2024 22:46:58 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=6C1024FB3E6C86563AD946D2629F07ED:FG=1; max-age=31536000; expires=Tue, 06-Feb-24 22:46:58 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
www.macmicst.com/web/bocweb/web/img/bushu.png
47.97.125.143200 OK 3.2 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/bushu.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 49 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 1f428fac935f43b2e03ac541e78132f5
34d01d47646b37055756fdfbbcd74dbc31b82fd3
04114ffdf581699e556fa62ed6246dd27331becf3a7e81551a631e92665690c9
GET /web/bocweb/web/img/bushu.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "c95-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 3221
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/bushu_h.png
47.97.125.143200 OK 3.2 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/bushu_h.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 49 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash aaded627b7ad6832ed0f3a19ada54ae5
dd8c7588335cfb870839621d24f12bd1670fad20
82b8c7087058775cc80a094ab95f91a41364f1d9e5998c01f19868e5fa56a081
GET /web/bocweb/web/img/bushu_h.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "c71-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 3185
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/lingyu2.jpg
47.97.125.143200 OK 13 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/lingyu2.jpg
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 355x252, components 3\012- data
Hash 650cfd2bcbf481a99871e5401976ef88
38c844078dff2707b94a5975a5474774f7c8a27e
87654a6bcbfb50157dddd373bfe582e0d1ef7e044161ab19890c7585fe23da2e
GET /web/bocweb/web/img/lingyu2.jpg HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "3120-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 12576
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.macmicst.com/web/bocweb/web/img/biji.png
47.97.125.143200 OK 3.5 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/biji.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 49 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 12240dbcb1f8bf3f7d74f33bab635b2b
481c73f360148b9680a3f2e5e2019715a09f69b4
edcaf387b45051fe7d0dbbc2d5d12027e10da99192777cdde96abd186f54cde2
GET /web/bocweb/web/img/biji.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "d9f-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 3487
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/bg2.png
47.97.125.143200 OK 53 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/bg2.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 553 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash db832ed677c38ddf024253e996094912
ea99bb02be6f8964ac55b2134ab94697a1cb9ff3
656144ec8200a4442daceec0ed915eb97122fe8b2752c9db390ba9ae4c815d7a
GET /web/bocweb/web/img/bg2.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "cdf1-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 52721
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/biji_h.png
47.97.125.143200 OK 3.2 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/biji_h.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 49 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 48350a41de28da61d7fdd165335e6096
090ab790c5eb2e5244d7411666c01da969c4474b
eccb2ebeab41d4c32ef21f0147f610e8cc9e29e4334216e95c71e5a138900970
GET /web/bocweb/web/img/biji_h.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "c61-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 3169
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/lingyu3.jpg
47.97.125.143200 OK 16 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/lingyu3.jpg
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 355x252, components 3\012- data
Hash a8bada58d5da39804120927779b3e8fc
a68015f2cf92dfb1608c119294fe9e2d8a75ea02
2ab8e45c123854e62976180bdc2e468b6fa7e4aa4a23999e0afa363131489f34
GET /web/bocweb/web/img/lingyu3.jpg HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "3d24-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 15652
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.macmicst.com/web/bocweb/web/img/xinxi.png
47.97.125.143200 OK 2.8 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/xinxi.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 49 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d2a98ac33b7f0ef24e07768c25f5777
fb61fecbd588164d4dbcf729c8098099a631cbde
2ef5f724ee324846d3db92890d3ef4f6368b4662d826261b1036cb66120add8e
GET /web/bocweb/web/img/xinxi.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "aeb-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 2795
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/lingyu1.jpg
47.97.125.143200 OK 113 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/lingyu1.jpg
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 714x506, components 3\012- data
Size 113 kB (112799 bytes)
Hash 2c24d843a94c710f310d085ab7efa0f6
e7a17971f6a90cded1a959438a0ad878b5753b02
b048e254682dfc95249df37336c05e03347c70c4b8cd4126d4057392a2d6f5f3
GET /web/bocweb/web/img/lingyu1.jpg HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "1b89f-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 112799
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.macmicst.com/web/bocweb/web/img/xinxi_h.png
47.97.125.143200 OK 2.4 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/xinxi_h.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 49 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 5753493aa858ce0738ac89f5c16549b1
497105548476919b16eb5319dfcf33c0b8461d2c
170171aadd96aaa129c8d0e8c70a300ddc6e23be9f8937af31c20de940f97560
GET /web/bocweb/web/img/xinxi_h.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "95f-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 2399
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.zhu2021.cc/hbt/index.php?keyword=5657%E5%A8%81%E5%B0%BC%E6%96%AF-%E9%A6%96%E9%A0%81&from=pc&originurl=http%3A%2F%2Fwww.fevre-gaucher.com%2F&referer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&v=571
43.243.30.13200 OK 892 B URL HTTP/1.1 www.zhu2021.cc/hbt/index.php?keyword=5657%E5%A8%81%E5%B0%BC%E6%96%AF-%E9%A6%96%E9%A0%81&from=pc&originurl=http%3A%2F%2Fwww.fevre-gaucher.com%2F&referer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&v=571
IP 43.243.30.13:0
ASN #64050 BGPNET Global ASN
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2930), with no line terminators
Hash c82e0b3bc3bcaa1fc2fd538022f42ef9
8ddebff3e6351692fb38dda37b3985ccf17282fa
ec8a60766edebc442f7cddaaab82586de4fcc2afdbab4cd7c3139b22f62ffe36
GET /hbt/index.php?keyword=5657%E5%A8%81%E5%B0%BC%E6%96%AF-%E9%A6%96%E9%A0%81&from=pc&originurl=http%3A%2F%2Fwww.fevre-gaucher.com%2F&referer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&v=571 HTTP/1.1
Host: www.zhu2021.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.fevre-gaucher.com
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:46:59 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip
www.macmicst.com/web/bocweb/web/img/jia1.png
47.97.125.143200 OK 954 B URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/jia1.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 6514c9d75d227280c2af17f34af4a34e
1a887618e80130c77f914fba3351f62aa028224a
b660303d68864e160ab09d098d37f00dbc6b68c1db644c8013b3c53d263c91d9
GET /web/bocweb/web/img/jia1.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:59 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "3ba-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 954
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.macmicst.com/web/bocweb/web/img/zuo.png
47.97.125.143200 OK 1.2 kB URL HTTP/1.1 www.macmicst.com/web/bocweb/web/img/zuo.png
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type PNG image data, 19 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash 5bb6f9a2118a8715ae45ba241184af9c
5f6e630e1ef941dc4a0e8e7ac32c2b144f20f966
693b9edee8bcfd2aca9b35c131c2c08a2bed1c5dcf9eb38cf01891ca33a1f6c8
GET /web/bocweb/web/img/zuo.png HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:59 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 25 Jun 2018 06:35:00 GMT
ETag: "4ab-56f7194ae6d00"
Accept-Ranges: bytes
Content-Length: 1195
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
www.fevre-gaucher.com/tj.js
50.3.229.102200 OK 257 B URL HTTP/1.1 www.fevre-gaucher.com/tj.js
IP 50.3.229.102:0
File type ASCII text, with CRLF line terminators
Hash 5540969fb37bc7685400426af8b82c5f
92a3a9750b3221ab967700d7e19d19487e452800
d2198988c35775f459802b3638b3e1de606b9a57cfe40547a9757431bc860531
Analyzer Verdict Alert fortinet Phishing
GET /tj.js HTTP/1.1
Host: www.fevre-gaucher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Cookie: Hm_lvt_71723abeb81a55cf0f46084c52752f47=1675723665; Hm_lpvt_71723abeb81a55cf0f46084c52752f47=1675723665
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:46:59 GMT
Content-Type: application/javascript
Content-Length: 257
Last-Modified: Wed, 06 Jul 2022 10:44:39 GMT
Connection: keep-alive
ETag: "62c56797-101"
Expires: Mon, 06 Feb 2023 23:46:59 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 20b0a2df27198ed89926ef2ad4624374
f5855927606fb6fc5e02fcf7885c2a923ffe9dce
ff9d392c1c3dd6c69422342d6a59d004e20933591e4cc584ee9c2e5be936ca8c
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 06 Feb 2023 22:21:14 GMT
last-modified: Mon, 06 Feb 2023 19:58:19 GMT
expires: Mon, 13 Feb 2023 19:58:18 GMT
etag: "f5855927606fb6fc5e02fcf7885c2a923ffe9dce"
cache-control: max-age=595623,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: EXPIRED
cf-ray: 795747167c6635f4-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1675722074
via: cache26.l2de2[0,0,304-0,H], cache1.l2de2[0,0], cache4.se1[22,22,200-0,H], cache2.se1[24,0], cache7.se1[25,0]
age: 1546
x-cache: HIT TCP_REFRESH_HIT dirn:4:361108294
x-swift-savetime: Mon, 06 Feb 2023 22:47:00 GMT
x-swift-cachetime: 254
timing-allow-origin: *, *
eagleid: 2ff62c9b16757236201666547e, 2ff62c9b16757236201666547e
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 20b0a2df27198ed89926ef2ad4624374
f5855927606fb6fc5e02fcf7885c2a923ffe9dce
ff9d392c1c3dd6c69422342d6a59d004e20933591e4cc584ee9c2e5be936ca8c
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 06 Feb 2023 22:21:14 GMT
last-modified: Mon, 06 Feb 2023 19:58:19 GMT
expires: Mon, 13 Feb 2023 19:58:18 GMT
etag: "f5855927606fb6fc5e02fcf7885c2a923ffe9dce"
cache-control: max-age=595623,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: EXPIRED
cf-ray: 795747167c6635f4-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1675722074
via: cache26.l2de2[0,0,304-0,H], cache20.l2de2[0,0], cache2.se1[22,22,200-0,H], cache2.se1[23,0], cache7.se1[24,0]
age: 1546
x-cache: HIT TCP_REFRESH_HIT dirn:11:326147049
x-swift-savetime: Mon, 06 Feb 2023 22:47:00 GMT
x-swift-cachetime: 254
timing-allow-origin: *, *
eagleid: 2ff62c9b16757236201706552e, 2ff62c9b16757236201706552e
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 20b0a2df27198ed89926ef2ad4624374
f5855927606fb6fc5e02fcf7885c2a923ffe9dce
ff9d392c1c3dd6c69422342d6a59d004e20933591e4cc584ee9c2e5be936ca8c
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 06 Feb 2023 22:21:14 GMT
last-modified: Mon, 06 Feb 2023 19:58:19 GMT
expires: Mon, 13 Feb 2023 19:58:18 GMT
etag: "f5855927606fb6fc5e02fcf7885c2a923ffe9dce"
cache-control: max-age=595623,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: EXPIRED
cf-ray: 795747167c6635f4-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1675722074
via: cache26.l2de2[0,0,304-0,H], cache1.l2de2[0,0], cache4.se1[0,0,200-0,H], cache2.se1[1,0], cache1.se1[3,0]
age: 1546
x-cache: HIT TCP_MEM_HIT dirn:4:361108294
x-swift-savetime: Mon, 06 Feb 2023 22:47:00 GMT
x-swift-cachetime: 254
timing-allow-origin: *, *
eagleid: 2ff62c9516757236201943372e, 2ff62c9516757236201943372e
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 20b0a2df27198ed89926ef2ad4624374
f5855927606fb6fc5e02fcf7885c2a923ffe9dce
ff9d392c1c3dd6c69422342d6a59d004e20933591e4cc584ee9c2e5be936ca8c
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 06 Feb 2023 22:21:14 GMT
last-modified: Mon, 06 Feb 2023 19:58:19 GMT
expires: Mon, 13 Feb 2023 19:58:18 GMT
etag: "f5855927606fb6fc5e02fcf7885c2a923ffe9dce"
cache-control: max-age=595623,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: EXPIRED
cf-ray: 795747167c6635f4-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1675722074
via: cache26.l2de2[0,0,304-0,H], cache20.l2de2[0,0], cache2.se1[0,0,200-0,H], cache2.se1[1,0], cache7.se1[2,0]
age: 1546
x-cache: HIT TCP_MEM_HIT dirn:11:326147049
x-swift-savetime: Mon, 06 Feb 2023 22:47:00 GMT
x-swift-cachetime: 254
timing-allow-origin: *, *
eagleid: 2ff62c9b16757236201966579e, 2ff62c9b16757236201966579e
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 20b0a2df27198ed89926ef2ad4624374
f5855927606fb6fc5e02fcf7885c2a923ffe9dce
ff9d392c1c3dd6c69422342d6a59d004e20933591e4cc584ee9c2e5be936ca8c
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 06 Feb 2023 22:21:14 GMT
last-modified: Mon, 06 Feb 2023 19:58:19 GMT
expires: Mon, 13 Feb 2023 19:58:18 GMT
etag: "f5855927606fb6fc5e02fcf7885c2a923ffe9dce"
cache-control: max-age=595623,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: EXPIRED
cf-ray: 795747167c6635f4-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1675722074
via: cache26.l2de2[0,0,304-0,H], cache20.l2de2[0,0], cache2.se1[0,0,200-0,H], cache2.se1[0,0], cache2.se1[3,0]
age: 1546
x-cache: HIT TCP_MEM_HIT dirn:11:326147049
x-swift-savetime: Mon, 06 Feb 2023 22:47:00 GMT
x-swift-cachetime: 254
timing-allow-origin: *, *
eagleid: 2ff62c9616757236201936693e, 2ff62c9616757236201936693e
hm.baidu.com/hm.js?cc8812fc03948cb6bff879d4f5d1fb12
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?cc8812fc03948cb6bff879d4f5d1fb12
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (618)
Hash 7875112651547bc2bdf9588ef40e8450
46791930625d9aee4b5eb31baecfbce4c4c5174f
ecee851803bbd70de93f5fc7b61c02e1cedee68afa0724055357a054d84c3eac
GET /hm.js?cc8812fc03948cb6bff879d4f5d1fb12 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11256
Content-Type: application/javascript
Date: Mon, 06 Feb 2023 22:46:59 GMT
Etag: c00a10b3bd7bbbc38351385939b7485c
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=38F4AC8772DD5823; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1629214517&si=cc8812fc03948cb6bff879d4f5d1fb12&v=1.3.0&lv=1&sn=59252&r=0&ww=1280&u=http%3A%2F%2Fwww.fevre-gaucher.com%2F&tt=5657%E5%A8%81%E5%B0%BC%E6%96%AF-%E9%A6%96%E9%A0%81
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1629214517&si=cc8812fc03948cb6bff879d4f5d1fb12&v=1.3.0&lv=1&sn=59252&r=0&ww=1280&u=http%3A%2F%2Fwww.fevre-gaucher.com%2F&tt=5657%E5%A8%81%E5%B0%BC%E6%96%AF-%E9%A6%96%E9%A0%81
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1629214517&si=cc8812fc03948cb6bff879d4f5d1fb12&v=1.3.0&lv=1&sn=59252&r=0&ww=1280&u=http%3A%2F%2Fwww.fevre-gaucher.com%2F&tt=5657%E5%A8%81%E5%B0%BC%E6%96%AF-%E9%A6%96%E9%A0%81 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 06 Feb 2023 22:47:00 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=20797F09302009B2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.tu2021.cc/uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg
43.243.30.14200 OK 56 kB URL HTTP/1.1 www.tu2021.cc/uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg
IP 43.243.30.14:0
ASN #64050 BGPNET Global ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 87a9d827f6fd871223024b40b2646b9c
43bcec1633466893da0118ff81ebc1d875392f66
0c4a77dab5f3db9cc2269f073c9d8b182029128598d56c90a7d14b43f9f62947
GET /uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:47:00 GMT
Content-Type: image/jpeg
Content-Length: 56006
Last-Modified: Sun, 28 Mar 2021 16:11:41 GMT
Connection: keep-alive
ETag: "6060aabd-dac6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/al0nbzn1nlqurn8s0wg4mo0slkm6vai2k5j.jpg
43.243.30.14200 OK 56 kB URL HTTP/1.1 www.tu2021.cc/uploads/al0nbzn1nlqurn8s0wg4mo0slkm6vai2k5j.jpg
IP 43.243.30.14:0
ASN #64050 BGPNET Global ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash a0bea1017e6fdccc6c25770044de313d
f28b8fe62c3e34f0ead9593e2d79fb84970eeb74
504e2c1189351e9cb8888002a79923f22aee6f22c19baf03f1155df62f1bef33
GET /uploads/al0nbzn1nlqurn8s0wg4mo0slkm6vai2k5j.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:47:00 GMT
Content-Type: image/jpeg
Content-Length: 56253
Last-Modified: Sun, 28 Mar 2021 16:11:40 GMT
Connection: keep-alive
ETag: "6060aabc-dbbd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg
43.243.30.14200 OK 50 kB URL HTTP/1.1 www.tu2021.cc/uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg
IP 43.243.30.14:0
ASN #64050 BGPNET Global ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 7925f7dd6392dcb4f188398fa87e8c0c
030ad16e6e28d2b8520427bf57d48e7fa38a65a4
552c475fe29e8eabac0760a6d4e5f74a0165ca447e269614a01bdbc7b60a7353
GET /uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:47:00 GMT
Content-Type: image/jpeg
Content-Length: 50516
Last-Modified: Sun, 28 Mar 2021 16:11:40 GMT
Connection: keep-alive
ETag: "6060aabc-c554"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/ia9tlmh0slr9hixl54zahxst5ukrtqar6eu.jpg
43.243.30.14200 OK 129 kB URL HTTP/1.1 www.tu2021.cc/uploads/ia9tlmh0slr9hixl54zahxst5ukrtqar6eu.jpg
IP 43.243.30.14:0
ASN #64050 BGPNET Global ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x300, components 3\012- data
Size 129 kB (129049 bytes)
Hash d5510959113699a79a1364bc74c3f01e
0dfb34adc81cb965abe0b093f741a21d5825083e
b6f0f22ce1b95eded63a26cf1357ce5203f5c0b9dd8e59175b1bb656d95d0192
GET /uploads/ia9tlmh0slr9hixl54zahxst5ukrtqar6eu.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:47:00 GMT
Content-Type: image/jpeg
Content-Length: 129049
Last-Modified: Sun, 28 Mar 2021 16:11:42 GMT
Connection: keep-alive
ETag: "6060aabe-1f819"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg
43.243.30.14200 OK 57 kB URL HTTP/1.1 www.tu2021.cc/uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg
IP 43.243.30.14:0
ASN #64050 BGPNET Global ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 2e599e6d4d3d33ff4de9f6729899c960
ba96b8f555d5907c0b67c723aaeba8250098e61c
3bba9661f9ad5b20934c5a85fdb31b01006948f2dcb27ff7f81cbd958b2c4fb5
GET /uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:47:01 GMT
Content-Type: image/jpeg
Content-Length: 57413
Last-Modified: Sun, 28 Mar 2021 16:11:36 GMT
Connection: keep-alive
ETag: "6060aab8-e045"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg
43.243.30.14200 OK 62 kB URL HTTP/1.1 www.tu2021.cc/uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg
IP 43.243.30.14:0
ASN #64050 BGPNET Global ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash c8e43ccc9c88624a86c0c190719d55ba
c273eba44ea68dbccaf44c36ef5d4c24cfdaee26
c34da23b1f8b51d2f0799b39e06ea1342347e7d4b32f39bbd94fa4cfb0cc1cfb
GET /uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:47:01 GMT
Content-Type: image/jpeg
Content-Length: 62211
Last-Modified: Sun, 28 Mar 2021 16:11:39 GMT
Connection: keep-alive
ETag: "6060aabb-f303"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg
43.243.30.14200 OK 57 kB URL HTTP/1.1 www.tu2021.cc/uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg
IP 43.243.30.14:0
ASN #64050 BGPNET Global ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 795fdd629261bbfff623483c6cb6f160
deca291d31bff5e123c3e192d7404976b2192ec5
8e948fa556ac4998fe70fd5eb00c0c14988c884e83d204f711bb5f59c444fdff
GET /uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:47:01 GMT
Content-Type: image/jpeg
Content-Length: 56884
Last-Modified: Sun, 28 Mar 2021 16:11:46 GMT
Connection: keep-alive
ETag: "6060aac2-de34"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/fzo19d83tvcadjbhcsz7.png
43.243.30.14200 OK 255 kB URL HTTP/1.1 www.tu2021.cc/uploads/fzo19d83tvcadjbhcsz7.png
IP 43.243.30.14:0
ASN #64050 BGPNET Global ASN
File type PNG image data, 1000 x 200, 8-bit/color RGB, non-interlaced\012- data
Size 255 kB (255290 bytes)
Hash 9b7839cc32f8daa06bb7d870900882a0
23b0c93464743e63954eafed8057ca0ec3d4effb
baaa64f64b837b8ad5e3c1e6e4c9aa4b4f7b0a96d179049f1e26ad66a290eaf8
GET /uploads/fzo19d83tvcadjbhcsz7.png HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fevre-gaucher.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 22:47:00 GMT
Content-Type: image/png
Content-Length: 255290
Last-Modified: Fri, 28 Oct 2022 04:40:50 GMT
Connection: keep-alive
ETag: "635b5d52-3e53a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.macmicst.com/web/upload/2023/01/09/1673225597905789o7.jpg
47.97.125.143200 OK 309 kB URL HTTP/1.1 www.macmicst.com/web/upload/2023/01/09/1673225597905789o7.jpg
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=3648, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=5472]\012- data
Size 309 kB (309024 bytes)
Hash fbf57daf9af7821332a87b2f3ed93644
13971980dcbf71f2c71f47479e627df56a6fccb8
002dd2ce6943cd140ba87ffb86bdad5f973941e2e71ddda7999102f9f027a988
GET /web/upload/2023/01/09/1673225597905789o7.jpg HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:59 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 09 Jan 2023 00:53:17 GMT
ETag: "86df7-5f1ca3163e701"
Accept-Ranges: bytes
Content-Length: 552439
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.macmicst.com/web/upload/2023/01/29/16749599831698ykt7e.jpg
47.97.125.143200 OK 0 B URL HTTP/1.1 www.macmicst.com/web/upload/2023/01/29/16749599831698ykt7e.jpg
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
GET /web/upload/2023/01/29/16749599831698ykt7e.jpg HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:58 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Sun, 29 Jan 2023 02:39:43 GMT
ETag: "19725e-5f35e02cece27"
Accept-Ranges: bytes
Content-Length: 1667678
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.macmicst.com/web/upload/2022/11/07/16677887936039h9iia.jpg
47.97.125.143200 OK 0 B URL HTTP/1.1 www.macmicst.com/web/upload/2022/11/07/16677887936039h9iia.jpg
IP 47.97.125.143:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
GET /web/upload/2022/11/07/16677887936039h9iia.jpg HTTP/1.1
Host: www.macmicst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fevre-gaucher.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 22:46:59 GMT
Server: Apache/2.4.7 (Unix) PHP/5.3.27
Last-Modified: Mon, 07 Nov 2022 02:39:53 GMT
ETag: "42d77-5ecd85699e296"
Accept-Ranges: bytes
Content-Length: 273783
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg