Report - 106.12.224.4/static/common/deploy.sh

Report Overview

Submitted URL
106.12.224.4/static/common/deploy.sh
IP
106.12.224.4
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Submitted
2023-02-01 16:20:54
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.161.26.194
w1.dxmstatic.com	unknown	2022-07-05T15:49:43Z	2023-02-25T22:20:45Z	840 B	20 kB	58.254.180.65
hm.baidu.com	8254	2012-05-26T10:38:45Z	2023-03-13T05:32:36Z	1.1 kB	13 kB	103.235.46.191
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.33.119.27
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
ocsp.dcocsp.cn	33518	2018-11-07T14:15:36Z	2023-03-13T06:54:43Z	2.0 kB	6.2 kB	47.246.44.228
www.dxmbaoxian.com	unknown	2022-11-22T17:21:50Z	2023-02-18T17:21:02Z	362 B	33 kB	180.76.64.128
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	64 kB	34.120.237.76
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	359 B	1.9 kB	104.18.21.226
passport.duxiaoman.com	unknown	2019-12-16T04:00:52Z	2023-03-06T08:36:13Z	1.3 kB	3.2 kB	106.12.226.216
106.12.224.4	unknown	2022-11-22T17:21:50Z	2023-02-18T17:21:14Z	3.5 kB	21 kB	106.12.224.4
baoxian.dxmstatic.com	unknown	2022-11-10T17:20:54Z	2023-02-24T17:20:57Z	6.3 kB	458 kB	185.10.104.115

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-01	medium	106.12.224.4	Sinkholed
2023-02-01	medium	106.12.224.4	Sinkholed
2023-02-01	medium	106.12.224.4	Sinkholed
2023-02-01	medium	106.12.224.4	Sinkholed
2023-02-01	medium	106.12.224.4	Sinkholed
2023-02-01	medium	106.12.224.4	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	baoxian.dxmstatic.com/assets/m/js/lodash.d0b18050.chunk.js	71 kB	2023-03-13	2023-03-13
Pretty URL baoxian.dxmstatic.com/assets/m/js/lodash.d0b18050.chunk.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:18:23 Last Seen2023-03-13 14:18:23 Times Seen1 Hash 4f5086c5ddc63b7e3700d666e94b88ae df4cc77392f47379327df199341d24d18699a97f 89fa601d7d79f0086125b42e56214614e9b7566b42475aa3ef622a4ae4faeb5a Loading...

	baoxian.dxmstatic.com/assets/m/js/1.146819cd.chunk.js	136 kB	2023-03-08	2023-03-13
Pretty URL baoxian.dxmstatic.com/assets/m/js/1.146819cd.chunk.js IP 185.10.104.115 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:00:46 Last Seen2023-03-13 14:18:23 Times Seen1 Hash a8a0348bf4b478bcc63cdd4f93bf1f8e 87e07d41fd3f7efa6f963286627c59e341ca6bbb b11ab6d872fb2b2b6a1d1b58d6afeb7b37b5cb45fd56762bd804c6295bc4bd53 Loading...

	106.12.224.4/static/common/deploy.sh	2.2 kB	2023-03-08	2023-03-26
Pretty URL 106.12.224.4/static/common/deploy.sh IP 106.12.224.4 ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:00:46 Last Seen2023-03-26 08:39:53 Times Seen3 Hash 75a1824a800e1d587f3f5bed665b39a8 1261c2f7b9a4890595f14994bacd2ad80f65ed89 2d8406e9d8e741c39d7142336fa21c7a1414e06123e7585f26e70ab6e130f5c0 Loading...

	w1.dxmstatic.com/static/xstatic2/todotask/todotask.1.6.js	46 kB	2023-03-08	2023-04-17
Pretty URL w1.dxmstatic.com/static/xstatic2/todotask/todotask.1.6.js IP 58.254.180.65 ASN #136958 China Unicom Guangdong IP network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:00:46 Last Seen2023-04-17 18:23:03 Times Seen12 Hash fe8f3061fa936e98d539def4a938d366 7fabd5b337d87b58e06ffa5114a50e35147dcd03 4e5cdf8da15f2aa124584d3d3f8b1b63479d75886149ea04c576c51253910e55 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 15:21:13 Times Seen37064775 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	baoxian.dxmstatic.com/assets/s/js/vant.fafa1604.chunk.js	183 kB	2023-03-13	2023-03-13
Pretty URL baoxian.dxmstatic.com/assets/s/js/vant.fafa1604.chunk.js IP 185.10.104.115 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:18:23 Last Seen2023-03-13 14:18:23 Times Seen1 Hash 86f5ec6f819012b2168eb3eaa74edcb3 c9f16cd942500607a6f4d73c74fa4157894a4928 7439b3120107be67a53758762072377c0efe8eb305d5c4e2e2e07981bfc5cd51 Loading...

	baoxian.dxmstatic.com/assets/m/js/jquery.563af771.chunk.js	89 kB	2023-03-13	2023-03-13
Pretty URL baoxian.dxmstatic.com/assets/m/js/jquery.563af771.chunk.js IP 185.10.104.115 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:18:23 Last Seen2023-03-13 14:18:23 Times Seen1 Hash 4d7770921cc12279b0ad47e16ab9c206 2187c02f1ca80ae2e99a5e4bcd31acfce07e6c3c e7b1eeda39d9e6879f4ecdcb8b98295094695bc8d16fba3b6b4b34a5eb660b98 Loading...

	baoxian.dxmstatic.com/assets/monitor/insur-monitor-web.js	47 kB	2023-03-12	2023-03-13
Pretty URL baoxian.dxmstatic.com/assets/monitor/insur-monitor-web.js IP 185.10.104.115 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 12:58:01 Last Seen2023-03-13 18:29:24 Times Seen1 Hash 8a86ca7c65c927262aafa4bcc6951b28 d1602ab8b26da957dffafdc55926858a5936e0cd eb3997c2f048ea22ba0dfe64465e07af9099610648900866f76949abf72760c6 Loading...

	106.12.224.4/m/home?	437 B	2023-03-13	2023-03-13
Pretty URL 106.12.224.4/m/home? IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:18:23 Last Seen2023-03-13 18:29:24 Times Seen1 Hash f6ef9bf4f4f19013978d37b61d9ebea6 23149862d78e7facc3e8c69486169791c586ef61 8be996ca44a49ad8a2952e0e20a174539069ad2494f5f1eec3b895296af3b395 Loading...

	baoxian.dxmstatic.com/assets/m/js/manifest.d0e2ed7e.bundle.js	7.7 kB	2023-03-13	2023-03-13
Pretty URL baoxian.dxmstatic.com/assets/m/js/manifest.d0e2ed7e.bundle.js IP 185.10.104.115 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:18:23 Last Seen2023-03-13 14:18:23 Times Seen1 Hash 4cf3992b72327305ad11c91a1cf15561 c45d95f24d84585985f259c0d2d42407f9d694de 12214e4f763142008e96771dfa8a33736efe876f1db62ed200b324f6af66ea90 Loading...

	106.12.224.4/m/home?	37 B	2023-03-13	2023-03-13
Pretty URL 106.12.224.4/m/home? IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:18:23 Last Seen2023-03-13 14:18:23 Times Seen1 Hash b4a73676ecbca673e2b0f729f2788d9f c0cbe79cf97530cef01426669b0b396cc42bb5c4 9d8c422cb1da3d9285b7945f2e5b699e6ba0f0b3de112c403662de7ef9885dfc Loading...

	hm.baidu.com/hm.js?d5ba068ce0bdbb86e2be209d513162f8	30 kB	2023-03-13	2023-03-13
Pretty URL hm.baidu.com/hm.js?d5ba068ce0bdbb86e2be209d513162f8 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:18:23 Last Seen2023-03-13 14:18:23 Times Seen1 Hash 3ce4233a1f1ec171629789b27729a6e5 feb20d4d002e7e83ae125a11831f28daa7aa1d93 7939ebe0cdba45f00ef7b269dca6aa6d40e6fb31efcd2b47e16d155f79c30736 Loading...

	baoxian.dxmstatic.com/assets/m/js/17.ada1c0aa.chunk.js	54 kB	2023-03-13	2023-03-13
Pretty URL baoxian.dxmstatic.com/assets/m/js/17.ada1c0aa.chunk.js IP 185.10.104.115 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:18:23 Last Seen2023-03-13 14:18:23 Times Seen1 Hash da63a675f9ede7d62618156a1201938a 44ff5cdf5d73159568636ac5c762cfb4eb1cd8f1 c887fbea9c3686a37d6fc791c5f4e636b902752dba61caa821653b7f0d169486 Loading...

	106.12.224.4/static/common/deploy.sh	462 B	2023-03-12	2023-03-13
Pretty URL 106.12.224.4/static/common/deploy.sh IP 106.12.224.4 ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 12:58:02 Last Seen2023-03-13 14:18:23 Times Seen1 Hash e5d4d66945816788b14755666d8d35c0 a9c88b4ca7b094af3cdd2fccb5b6dd4b3cd32857 062b24420895a772363ca0516405300715de7e8ddb81a36ae56263f042f490c5 Loading...

	baoxian.dxmstatic.com/assets/s/js/vendors.ccf91632.chunk.js	286 kB	2023-03-13	2023-03-13
Pretty URL baoxian.dxmstatic.com/assets/s/js/vendors.ccf91632.chunk.js IP 185.10.104.115 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:18:23 Last Seen2023-03-13 14:18:23 Times Seen1 Hash 0f0fe8a51674842fe3279191af00de74 52d6e2aa4b5d2518762353fcdf432e2f1de9f8bc 640c79a55f2d20c756aeda3fc6de7f255683df980174a2101613f95cfaa4c5d2 Loading...

	baoxian.dxmstatic.com/assets/m/js/vue.edf5faa6.chunk.js	153 kB	2023-03-13	2023-03-13
Pretty URL baoxian.dxmstatic.com/assets/m/js/vue.edf5faa6.chunk.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:18:23 Last Seen2023-03-13 14:18:23 Times Seen1 Hash bba5c6a4213e369b591dd44f801f0348 a0a0e2370e260364c2883e1c55d8fd5454079260 f5e0aa855ae7630715c33d6ac3d6cfe943e35eddd1abfc5843cf5eec8e1494be Loading...

HTTP Transactions (54)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5524
Expires: Wed, 01 Feb 2023 17:52:47 GMT
Date: Wed, 01 Feb 2023 16:20:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8715
Expires: Wed, 01 Feb 2023 18:45:58 GMT
Date: Wed, 01 Feb 2023 16:20:43 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 15:43:25 GMT
content-type: application/json
age: 2238
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3032
Expires: Wed, 01 Feb 2023 17:11:15 GMT
Date: Wed, 01 Feb 2023 16:20:43 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 8AK79+vRAAtXvmiVRWgqHvt5EPGfxvhLx2+oSSQwt4rJ8cGgvdprUTuoI4Pw6dHcszqLmOGhLhU=
x-amz-request-id: 7Q43EQMFG9MZAWV2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 15:22:43 GMT
age: 3480
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

106.12.224.4/static/common/deploy.sh

106.12.224.4

200 OK

2.2 kB

URL HTTP/1.1
106.12.224.4/static/common/deploy.sh
IP
106.12.224.4:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3151)
Size
2.2 kB (2153 bytes)
Hash
22b471a95da78a50a0332ddeef694e7c
0d59b9c46d14a6e777675d916e1a5bb513046482
bf0dd7d380632e3c5cb94892502293c9375c0fef09b9cd4c0b17e199fef733b7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /static/common/deploy.sh HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Cache-Control: no-store, private
Connection: keep-alive
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Wed, 01 Feb 2023 16:20:43 GMT
Etag: W/"63da2af5-1232"
Last-Modified: Wed, 01 Feb 2023 09:03:49 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; path=/; expires=Fri, 16-Jan-26 16:20:43 GMT
BAIDUID=B945E7D498249BC58975F859E4989024:FG=1; expires=Thu, 01-Feb-24 16:20:43 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 22435642232182585610020200
Vary: Accept-Encoding
Transfer-Encoding: chunked

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 16:20:43 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 15:49:05 GMT
age: 1899
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4148
Expires: Wed, 01 Feb 2023 17:29:52 GMT
Date: Wed, 01 Feb 2023 16:20:44 GMT
Connection: keep-alive

push.services.mozilla.com/

35.161.26.194

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.26.194:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WWnv1h0YwWjGkt4C+gVoew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l7wN374qxiMJ2eszrvrGJP2B0gQ=

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6884
Expires: Wed, 01 Feb 2023 18:15:29 GMT
Date: Wed, 01 Feb 2023 16:20:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6884
Expires: Wed, 01 Feb 2023 18:15:29 GMT
Date: Wed, 01 Feb 2023 16:20:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6884
Expires: Wed, 01 Feb 2023 18:15:29 GMT
Date: Wed, 01 Feb 2023 16:20:45 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7049 bytes)
Hash
3c83dcdb618756ebbfeb69a8bff6d38c
5f909182ab6847690e7ebd100e3f0d2798e36192
2e29d0747fb973908228501178465ac09f6553ef8e50dd70ee617f3379eb733c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7049
x-amzn-requestid: bc6522f2-eb6b-4e59-9912-0c03d145f021
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk31LGE2IAMF8rw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839ba-67477ed1260c27f67e28043d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Q_aVbWJKMbX1_bjggzbdnWbgmfooGvXj76t55QGGXRr_y6ZgW2gctw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 12:23:45 GMT
age: 14220
etag: "5f909182ab6847690e7ebd100e3f0d2798e36192"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10997 bytes)
Hash
65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _xCzARAxn6PB9wrQAL98hWvnUxQOocZFqMoS2l_CoIzOJC18bXQuSQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:53:32 GMT
age: 66433
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15857 bytes)
Hash
4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:27:41 GMT
age: 31984
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9600 bytes)
Hash
3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 49847
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5736 bytes)
Hash
2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4yxwz2MFTdpb8I56VVbFU2Zz0qG_uHcYc3aDtn6boQPjhw7UFLLnYw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 10:37:09 GMT
age: 20616
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8597 bytes)
Hash
27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 12:57:00 GMT
age: 12225
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.dcocsp.cn/

47.246.44.228

200 OK

471 B

URL HTTP/1.1
ocsp.dcocsp.cn/
IP
47.246.44.228:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
471 B (471 bytes)
Hash
a73964d5c2f71d97c3aa7040416566d8
2c09472570288199b988befef8a5a2f1d640505b
d9c7f52519efae15757c0b46a6ddeb58cf86b1faf9ba2ff5f7a774f195371e56

HTTP Headers

POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:20:46 GMT
Last-Modified: Wed, 01 Feb 2023 10:42:23 GMT
ETag: "63da420f-1d7"
Expires: Fri, 03 Feb 2023 10:42:23 GMT
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675268446
Via: cache21.l2de2[45,27,200-0,C], cache11.l2de2[29,0], cache7.se1[49,49,200-0,M], cache7.se1[68,0]
Age: 0
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:46 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9b16752684468976324e

ocsp.dcocsp.cn/

47.246.44.228

200 OK

471 B

URL HTTP/1.1
ocsp.dcocsp.cn/
IP
47.246.44.228:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
471 B (471 bytes)
Hash
a73964d5c2f71d97c3aa7040416566d8
2c09472570288199b988befef8a5a2f1d640505b
d9c7f52519efae15757c0b46a6ddeb58cf86b1faf9ba2ff5f7a774f195371e56

HTTP Headers

POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:20:46 GMT
Last-Modified: Wed, 01 Feb 2023 10:42:23 GMT
ETag: "63da420f-1d7"
Expires: Fri, 03 Feb 2023 10:42:23 GMT
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675268446
Via: cache21.l2de2[45,45,200-0,M], cache14.l2de2[46,0], cache3.se1[68,67,200-0,M], cache3.se1[70,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:46 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9716752684468957049e

ocsp.dcocsp.cn/

47.246.44.228

200 OK

471 B

URL HTTP/1.1
ocsp.dcocsp.cn/
IP
47.246.44.228:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
471 B (471 bytes)
Hash
cffe4f9f805a917db49755a0f26afbb9
99e83e2268204fe8e205b3a43db33641d1e1e194
393aeb1a9043b7ed71ef09e8d9f614c4053804a7357aa647f152464172018818

HTTP Headers

POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:20:46 GMT
Ali-Swift-Global-Savetime: 1675268446
Via: cache21.l2de2[47,47,200-0,M], cache26.l2de2[48,0], cache8.se1[69,68,200-0,M], cache8.se1[70,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:46 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9c16752684468887141e

ocsp.dcocsp.cn/

47.246.44.228

200 OK

471 B

URL HTTP/1.1
ocsp.dcocsp.cn/
IP
47.246.44.228:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
471 B (471 bytes)
Hash
a73964d5c2f71d97c3aa7040416566d8
2c09472570288199b988befef8a5a2f1d640505b
d9c7f52519efae15757c0b46a6ddeb58cf86b1faf9ba2ff5f7a774f195371e56

HTTP Headers

POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:20:46 GMT
Last-Modified: Wed, 01 Feb 2023 10:42:23 GMT
ETag: "63da420f-1d7"
Expires: Fri, 03 Feb 2023 10:42:23 GMT
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675268446
Via: cache21.l2de2[45,44,200-0,C], cache21.l2de2[45,0], cache5.se1[69,68,200-0,M], cache5.se1[70,0]
Age: 0
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:46 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9916752684468946979e

ocsp.dcocsp.cn/

47.246.44.228

200 OK

471 B

URL HTTP/1.1
ocsp.dcocsp.cn/
IP
47.246.44.228:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
471 B (471 bytes)
Hash
cffe4f9f805a917db49755a0f26afbb9
99e83e2268204fe8e205b3a43db33641d1e1e194
393aeb1a9043b7ed71ef09e8d9f614c4053804a7357aa647f152464172018818

HTTP Headers

POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:20:46 GMT
Ali-Swift-Global-Savetime: 1675268446
Via: cache21.l2de2[47,47,200-0,C], cache11.l2de2[48,0], cache1.se1[70,69,200-0,M], cache1.se1[72,0]
Age: 0
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:46 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9516752684468941265e

baoxian.dxmstatic.com/assets/monitor/insur-monitor-web.js

185.10.104.115

200 OK

18 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/monitor/insur-monitor-web.js
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
Unicode text, UTF-8 text, with very long lines (47119)
Size
18 kB (17646 bytes)
Hash
c23dd8b878a12547b84218bb91ac5715
c91b5975a335c3109a07d5c02b96e298778f8c8d
0e7c74809248ab9fde02c7058f2d65aeacf4ab95ed23f692f0d91da3617db295

HTTP Headers

GET /assets/monitor/insur-monitor-web.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 14 Jan 2023 08:25:04 GMT
Last-Modified: Thu, 15 Dec 2022 06:08:04 GMT
ETag: "639ab9c4-b877"
Cache-Control: max-age=600
Content-Encoding: br
Age: 1523819
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 19032974370313660682011416
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 14 Jan 2023 08:15:03 GMT
Ohc-Cache-HIT: fra01-sys-jomo5.fra01.baidu.com [2], zhuzuncache61 [2], qdix186 [2]
Ohc-File-Size: 17646
X-Cache-Status: HIT

baoxian.dxmstatic.com/assets/s/js/vue.e174a9df.chunk.js

185.10.104.115

200 OK

56 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/s/js/vue.e174a9df.chunk.js
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (28998)
Size
56 kB (56049 bytes)
Hash
d19625b2017832016a2a6c0dd8f9544c
1e36673ae548c95b0cd8f488cd997399308a5496
a6bb44541d06c14488e404c7937853198b99fe6dc171ee4178848bb7f1a1913f

HTTP Headers

GET /assets/s/js/vue.e174a9df.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 09:03:49 GMT
ETag: "63da2af5-255bc"
Content-Encoding: gzip
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 35130265802769722634020117
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-File-Size: 56049
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 09:41:53 GMT
Ohc-Cache-HIT: fra01-sys-jomo4.fra01.baidu.com [1], zhuzuncache62 [2], czix89 [2]
X-Cache-Status: MISS

baoxian.dxmstatic.com/assets/s/js/vendors.ccf91632.chunk.js

185.10.104.115

200 OK

102 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/s/js/vendors.ccf91632.chunk.js
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
Unicode text, UTF-8 text, with very long lines (28970)
Size
102 kB (102470 bytes)
Hash
9a8128457eeb5b2615940237f35b2987
1e368c5ff136acca7a41724f3496efa0baf32c8e
24692dec00dcccd9dd6687fca20eace12caf1f9add1bcc21da57c3b5e2e1f685

HTTP Headers

GET /assets/s/js/vendors.ccf91632.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 09:03:49 GMT
ETag: "63da2af5-45d78"
Content-Encoding: gzip
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 35130339422132122890020117
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-File-Size: 102470
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 09:41:53 GMT
Ohc-Cache-HIT: fra01-sys-jomo7.fra01.baidu.com [1], zhuzuncache51 [2], czix109 [2]
X-Cache-Status: MISS

www.dxmbaoxian.com/track/eye.js

180.76.64.128

200 OK

32 kB

URL HTTP/1.1
www.dxmbaoxian.com/track/eye.js
IP
180.76.64.128:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
32 kB (32107 bytes)
Hash
54037995fbe5bb038f9b1d7cd098db1f
d0284cd4a669204452d1a69c04b804873698a6d3
a557d12ed99819c735b452b458583be3b2a35c929ee6fce899cba941dce00d11

HTTP Headers

GET /track/eye.js HTTP/1.1
Host: www.dxmbaoxian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/javascript; charset=UTF-8
Date: Wed, 01 Feb 2023 16:20:47 GMT
Etag: W/"63623dec-16390"
Last-Modified: Wed, 02 Nov 2022 09:52:44 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=59FE064C6734D7A5712F58DE553971A2:FG=1; expires=Thu, 01-Feb-24 16:20:47 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 22471205281873941770020200
Vary: Accept-Encoding
Transfer-Encoding: chunked

w1.dxmstatic.com/static/xstatic2/todotask/todotask.1.6.js

58.254.180.65

200 OK

19 kB

URL HTTP/2
w1.dxmstatic.com/static/xstatic2/todotask/todotask.1.6.js
IP
58.254.180.65:0
ASN
#136958 China Unicom Guangdong IP network

File type
Unicode text, UTF-8 text, with very long lines (46246), with no line terminators
Size
19 kB (18576 bytes)
Hash
6af5f541977987818f5c80111fab9b53
8322832a176fb8e8d0b2fca801264525af7a88d4
96dcc98b941e6f6cf969d42da4ea7eea1dcb0fcd34fbf48dcc31c33c29604f89

HTTP Headers

GET /static/xstatic2/todotask/todotask.1.6.js HTTP/1.1
Host: w1.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: JSP3/2.0.14
date: Wed, 01 Feb 2023 16:20:47 GMT
content-type: application/x-javascript
expires: Wed, 11 Jan 2023 05:22:11 GMT
last-modified: Thu, 17 Mar 2022 04:51:19 GMT
cache-control: public,max-age=1800
content-encoding: br
age: 1721476
accept-ranges: bytes
access-control-allow-credentials: false
access-control-allow-headers: Content-Type,x-baidu-ie
access-control-allow-methods: POST, GET, OPTIONS
tracecode: 30957225103575029002031712
vary: Accept-Encoding
timing-allow-origin: *
ohc-global-saved-time: Wed, 11 Jan 2023 04:52:11 GMT
ohc-cache-hit: gz3un63 [2], qdix63 [2]
ohc-file-size: 46286
x-cache-status: HIT
X-Firefox-Spdy: h2

baoxian.dxmstatic.com/assets/m/js/manifest.d0e2ed7e.bundle.js

185.10.104.115

200 OK

4.1 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/m/js/manifest.d0e2ed7e.bundle.js
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (7689), with no line terminators
Size
4.1 kB (4089 bytes)
Hash
07b35a1c966c085506411dbc718f4550
29e04c0b7a5a2d99f54e71e433d6de5a569c371a
abd0f656ffbbe58727a958de720cb21300e4be1e8b3a7653c964d78c025bb959

HTTP Headers

GET /assets/m/js/manifest.d0e2ed7e.bundle.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:48 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:50:00 GMT
ETag: "63da0b98-1e09"
Content-Encoding: br
Age: 956
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 14548077752132122890020115
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 07:07:34 GMT
Ohc-Cache-HIT: fra01-sys-jomo6.fra01.baidu.com [4], zhuzuncache59 [4], qdix247 [2]
Ohc-File-Size: 4089
X-Cache-Status: HIT

baoxian.dxmstatic.com/assets/m/js/vant.76903d4e.chunk.js

185.10.104.115

200 OK

41 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/m/js/vant.76903d4e.chunk.js
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
Unicode text, UTF-8 text, with very long lines (65160), with no line terminators
Size
41 kB (40847 bytes)
Hash
960c344a81a43416fa9cf790b0fd3124
d753fd445af63b6409aa8337c76d2b9c79499c59
22fa8b77a285787d323eded526429b71189cfa7b199f23c7ec26536e1d5dddb1

HTTP Headers

GET /assets/m/js/vant.76903d4e.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:48 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:50:00 GMT
ETag: "63da0b98-28e8d"
Content-Encoding: br
Age: 956
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 14424996432182585610020115
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 07:07:22 GMT
Ohc-Cache-HIT: fra01-sys-jomo6.fra01.baidu.com [4], zhuzuncache55 [4], suzix112 [2]
Ohc-File-Size: 40847
X-Cache-Status: HIT

baoxian.dxmstatic.com/assets/m/js/jquery.563af771.chunk.js

185.10.104.115

200 OK

32 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/m/js/jquery.563af771.chunk.js
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
Unicode text, UTF-8 text, with very long lines (61316)
Size
32 kB (31952 bytes)
Hash
d74c55d8bebd957d5690c54d15e6ed4a
571b7bff13fe91a05c80c800a78a9592b901b618
7f95bfdd1a22dcd85c3b53e335a64bb8366c5b0bc9e52d960b03cc3c1b5cc2c6

HTTP Headers

GET /assets/m/js/jquery.563af771.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:48 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:50:00 GMT
ETag: "63da0b98-15a96"
Content-Encoding: br
Age: 956
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 14422596992132122890020115
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 07:07:22 GMT
Ohc-Cache-HIT: fra01-sys-jomo2.fra01.baidu.com [4], zhuzuncache52 [4], czix171 [2]
Ohc-File-Size: 31952
X-Cache-Status: HIT

baoxian.dxmstatic.com/assets/s/js/vant.fafa1604.chunk.js

185.10.104.115

200 OK

0 B

URL HTTP/1.1
baoxian.dxmstatic.com/assets/s/js/vant.fafa1604.chunk.js
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/s/js/vant.fafa1604.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 09:03:49 GMT
ETag: "63da2af5-2c9b5"
Content-Encoding: gzip
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 35176127682769722634020117
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-File-Size: 64993
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 09:41:57 GMT
Ohc-Cache-HIT: fra01-sys-jomo1.fra01.baidu.com [1], zhuzuncache56 [2], xaix103 [2]
X-Cache-Status: MISS

baoxian.dxmstatic.com/assets/m/js/app.24fb8175.chunk.js

185.10.104.115

200 OK

114 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/m/js/app.24fb8175.chunk.js
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
Unicode text, UTF-8 text, with very long lines (53192)
Size
114 kB (114365 bytes)
Hash
25db2e65d7fa1a87e700f7f1a7e30800
39a13879a2a757e673856e88004ebaffc326d1fe
12fc258c9e01ea5748b53ee1b090f6e5821d1c21914889b55c01cf3de83bd358

HTTP Headers

GET /assets/m/js/app.24fb8175.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:48 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:50:00 GMT
ETag: "63da0b98-5fe1e"
Content-Encoding: br
Age: 956
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 14430675512769722634020115
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 07:07:23 GMT
Ohc-Cache-HIT: fra01-sys-jomo5.fra01.baidu.com [3], zhuzuncache55 [4], csix55 [2]
Ohc-File-Size: 114365
X-Cache-Status: HIT

w1.dxmstatic.com/static/xstatic2/todotask/todotask.1.6.js

58.254.180.65

304 Not Modified

0 B

URL HTTP/2
w1.dxmstatic.com/static/xstatic2/todotask/todotask.1.6.js
IP
58.254.180.65:0
ASN
#136958 China Unicom Guangdong IP network

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/xstatic2/todotask/todotask.1.6.js HTTP/1.1
Host: w1.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 17 Mar 2022 04:51:19 GMT
TE: trailers

HTTP/2 304 Not Modified
server: JSP3/2.0.14
date: Wed, 01 Feb 2023 16:20:48 GMT
content-type: application/x-javascript
expires: Wed, 11 Jan 2023 05:22:11 GMT
last-modified: Thu, 17 Mar 2022 04:51:19 GMT
cache-control: public,max-age=1800
age: 1721477
accept-ranges: bytes
access-control-allow-credentials: false
access-control-allow-headers: Content-Type,x-baidu-ie
access-control-allow-methods: POST, GET, OPTIONS
tracecode: 30957225103575029002031712
vary: Accept-Encoding
timing-allow-origin: *
ohc-global-saved-time: Wed, 11 Jan 2023 04:52:11 GMT
ohc-cache-hit: gz3un63 [2], qdix63 [2]
ohc-file-size: 46286
x-cache-status: HIT
X-Firefox-Spdy: h2

106.12.224.4/insurweb/app/h5_app/point

106.12.224.4

301 Moved Permanently

162 B

URL HTTP/1.1
106.12.224.4/insurweb/app/h5_app/point
IP
106.12.224.4:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /insurweb/app/h5_app/point HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json;charset=UTF-8
Content-Length: 593
Origin: http://106.12.224.4
Connection: keep-alive
Referer: http://106.12.224.4/m/home?
Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; LOG_SESSION_ID=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984

HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache, private
Connection: keep-alive
Content-Type: text/html
Date: Wed, 01 Feb 2023 16:20:48 GMT
Location: https://106.12.224.4/p
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=42AADEB8BC7E8777B49FD4897B42A469:FG=1; expires=Thu, 01-Feb-24 16:20:48 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 22486581412769722634020200
Transfer-Encoding: chunked

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
2990101e9b0b8f69e086e0f82f553975
328241a46ca2737935370fc663563ca96b322fb7
6d625dc23ebfb31069fb86354d78174d15c5e8cc89632f84aea61b6deb85887d

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 16:20:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 05 Feb 2023 15:13:58 GMT
ETag: "328241a46ca2737935370fc663563ca96b322fb7"
Last-Modified: Wed, 01 Feb 2023 15:13:59 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1553
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c043ebb88b512-OSL

baoxian.dxmstatic.com/assets/cms/static/img/favicon.ico

185.10.104.115

200 OK

649 B

URL HTTP/1.1
baoxian.dxmstatic.com/assets/cms/static/img/favicon.ico
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
649 B (649 bytes)
Hash
437b9b17ea3dc364b88009dd81f6286b
94ef748dbaef2794d3f0cfd1c40c277ff12ef62c
f92921b83bc3698d2e62de01c3c3302893a1c7ead1ac570904134ab77cdfe261

HTTP Headers

GET /assets/cms/static/img/favicon.ico HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:49 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sun, 08 Jan 2023 04:34:50 GMT
Last-Modified: Wed, 20 May 2020 07:19:06 GMT
ETag: "5ec4d9ea-10be"
Cache-Control: max-age=600
Content-Encoding: gzip
Age: 2048496
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Tracecode: 21737784421873941770090922
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sun, 08 Jan 2023 04:24:50 GMT
Ohc-Cache-HIT: fra01-sys-jomo5.fra01.baidu.com [4], zhuzuncache59 [1], xiangyix59 [2]
Ohc-File-Size: 649
X-Cache-Status: HIT

hm.baidu.com/hm.js?d5ba068ce0bdbb86e2be209d513162f8

103.235.46.191

200 OK

12 kB

URL HTTP/1.1
hm.baidu.com/hm.js?d5ba068ce0bdbb86e2be209d513162f8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (1016)
Size
12 kB (11654 bytes)
Hash
a1072d217d4b76f452c5e03638dac58f
fb0cead94afd4cb1e29a0d3716f72d57730c2e1c
9eec30026c54c5d308e240bc9b021b0e278aa0cf1c0931046cf9751605340081

HTTP Headers

GET /hm.js?d5ba068ce0bdbb86e2be209d513162f8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11654
Content-Type: application/javascript
Date: Wed, 01 Feb 2023 16:20:49 GMT
Etag: d896cbaba7b4141375c51365e45858ea
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=ED6634D119E561B1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=718323202&si=d5ba068ce0bdbb86e2be209d513162f8&su=http%3A%2F%2F106.12.224.4%2Fstatic%2Fcommon%2Fdeploy.sh&v=1.3.0&lv=1&sn=62802&r=0&ww=1280&u=http%3A%2F%2F106.12.224.4%2Fm%2Fhome%3F&tt=%E5%BA%A6%E5%B0%8F%E6%BB%A1%E4%BF%9D%E9%99%A9%E7%BB%8F%E7%BA%AA

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=718323202&si=d5ba068ce0bdbb86e2be209d513162f8&su=http%3A%2F%2F106.12.224.4%2Fstatic%2Fcommon%2Fdeploy.sh&v=1.3.0&lv=1&sn=62802&r=0&ww=1280&u=http%3A%2F%2F106.12.224.4%2Fm%2Fhome%3F&tt=%E5%BA%A6%E5%B0%8F%E6%BB%A1%E4%BF%9D%E9%99%A9%E7%BB%8F%E7%BA%AA
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=718323202&si=d5ba068ce0bdbb86e2be209d513162f8&su=http%3A%2F%2F106.12.224.4%2Fstatic%2Fcommon%2Fdeploy.sh&v=1.3.0&lv=1&sn=62802&r=0&ww=1280&u=http%3A%2F%2F106.12.224.4%2Fm%2Fhome%3F&tt=%E5%BA%A6%E5%B0%8F%E6%BB%A1%E4%BF%9D%E9%99%A9%E7%BB%8F%E7%BA%AA HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 01 Feb 2023 16:20:50 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=33320D48CCD84B7F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

baoxian.dxmstatic.com/assets/m/js/1.146819cd.chunk.js

185.10.104.115

200 OK

37 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/m/js/1.146819cd.chunk.js
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
37 kB (36788 bytes)
Hash
01f9747504297db53b8e4eeb1ccf52a8
5043347d022683cef59196dce733c631a742ee26
5dacbedc386d6cf46b618217d0cbddb1aa7415e4d237dc2f4092d4b41163bf9e

HTTP Headers

GET /assets/m/js/1.146819cd.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:50 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 26 Dec 2022 03:20:01 GMT
ETag: W/"63a912e1-21556"
Content-Encoding: gzip
Age: 2159986
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 17683204664289795338010714
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 07 Jan 2023 06:12:48 GMT
Ohc-Cache-HIT: fra01-sys-jomo1.fra01.baidu.com [4], zhuzuncache64 [1], czix203 [2]
Ohc-File-Size: 36788
X-Cache-Status: HIT

ocsp.dcocsp.cn/

47.246.44.228

200 OK

471 B

URL HTTP/1.1
ocsp.dcocsp.cn/
IP
47.246.44.228:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
471 B (471 bytes)
Hash
dbd0dfac3cedde1e8032d3d6b85b090e
b9b11d9502d2113988cb3f3f1074ce6be763ade2
2ce2932a5ee613e4cd8ddbf92630a16db3a2b3d8216712a2caf63d89eaf971c9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:04:07 GMT
Last-Modified: Wed, 01 Feb 2023 05:55:09 GMT
ETag: "63d9febd-1d7"
Expires: Fri, 03 Feb 2023 05:55:09 GMT
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675267447
Via: cache21.l2de2[0,0,304-0,H], cache6.l2de2[1,0], cache7.se1[22,29,200-0,H], cache7.se1[30,0]
Age: 1003
X-Cache: HIT TCP_REFRESH_HIT dirn:5:253863942
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:50 GMT
X-Swift-CacheTime: 2597
Timing-Allow-Origin: *
EagleId: 2ff62c9b16752684506922550e

baoxian.dxmstatic.com/assets/m/js/17.ada1c0aa.chunk.js

185.10.104.115

200 OK

13 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/m/js/17.ada1c0aa.chunk.js
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
Unicode text, UTF-8 text, with very long lines (47788)
Size
13 kB (12806 bytes)
Hash
0274bc062a5d09e4eac1b32161d47099
ab8e71b09d93d201f1eea0cf87c73d395d0e33af
163adead81e58b307bb7227b24790b9a13b514ac74ebb1ea88fe8f4e00235c41

HTTP Headers

GET /assets/m/js/17.ada1c0aa.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:50 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:50:00 GMT
ETag: "63da0b98-d17d"
Content-Encoding: br
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 16486872650313660682020115
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-File-Size: 12806
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 07:10:48 GMT
Ohc-Cache-HIT: fra01-sys-jomo7.fra01.baidu.com [1], zhuzuncache57 [4], csix67 [2]
X-Cache-Status: MISS

baoxian.dxmstatic.com/assets/cms/static/img/1-0/logo-dxm-2.png?20210429

185.10.104.115

200 OK

22 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/cms/static/img/1-0/logo-dxm-2.png?20210429
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
PNG image data, 670 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22400 bytes)
Hash
55f2683a9fe39fab38d57e9304f55b45
ca2b3d8bb7a1be27c5ad6fa52ff9801a64112ec6
c333cafcf47120cdcbd13cfb749cfb4adaa42040a488326b929923d19ad9d3e9

HTTP Headers

GET /assets/cms/static/img/1-0/logo-dxm-2.png?20210429 HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 25 Jan 2023 07:26:30 GMT
Last-Modified: Thu, 29 Apr 2021 09:57:11 GMT
ETag: "608a82f7-5780"
Cache-Control: max-age=600
Age: 192665
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Tracecode: 39196922262769722634053012
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 25 Jan 2023 07:16:30 GMT
Ohc-Cache-HIT: fra01-sys-jomo4.fra01.baidu.com [4], zhuzuncache55 [4], qdix133 [4]
Ohc-File-Size: 22400
X-Cache-Status: HIT

passport.duxiaoman.com/v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268470705

106.12.226.216

302 Found

353 B

URL HTTP/1.1
passport.duxiaoman.com/v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268470705
IP
106.12.226.216:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
JSON data\012- , ASCII text, with very long lines (353), with no line terminators
Size
353 B (353 bytes)
Hash
8f879f3d5f935926db8c94313671dc33
1ab148624fa9db3070282ebedfe30f7e29bf2104
328c54a559681404011e1e1d2aa7c56ce7bfec074596bedca8252838cfb1c751

HTTP Headers

GET /v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268470705 HTTP/1.1
Host: passport.duxiaoman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: Content-Type,x-baidu-ie,x-pay-fe
Access-Control-Allow-Methods: POST, GET, OPTIONS
Cache-Control: no-cache
Connection: keep-alive
Content-Type: application/json; charset=utf-8
Date: Wed, 01 Feb 2023 16:20:51 GMT
Expires: Fri, 30 Oct 1998 14:19:41 GMT
Location: https://wappass.baidu.com/v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268470705
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: AB_EXPERIMENT=%7B%22PC_SESSION_COOKIE_SWITCH%22%3A%22ON%22%2C%22group_cloud_smallflow%22%3A%22%22%2C%22ORDER_SIX_MONTH_CHECK%22%3A%22ON%22%2C%22group_smallflow%22%3A%22off%22%2C%22CHROME80_SET_COOKIE%22%3A%22ON%22%2C%22group_smallflow_uri%22%3A%22%22%2C%22rccGetChannelInfoSink%22%3A%22ON%22%7D; path=/; httponly; max-age=60
BAIDUID=37E48D4EF00BA45843103F7D9F0973F7:FG=1; expires=Thu, 01-Feb-24 16:20:51 GMT; max-age=31536000; path=/; domain=.dxmpay.com; version=1
Tracecode: 22511197872786368778020200
X-Bfb-Rt: 0.003
Transfer-Encoding: chunked

106.12.224.4/insurweb/app/h5_app/point

106.12.224.4

301 Moved Permanently

162 B

URL HTTP/1.1
106.12.224.4/insurweb/app/h5_app/point
IP
106.12.224.4:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /insurweb/app/h5_app/point HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json;charset=UTF-8
Content-Length: 767
Origin: http://106.12.224.4
Connection: keep-alive
Referer: http://106.12.224.4/m/home?
Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; LOG_SESSION_ID=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984; Hm_lvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472; Hm_lpvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472

HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache, private
Connection: keep-alive
Content-Type: text/html
Date: Wed, 01 Feb 2023 16:20:51 GMT
Location: https://106.12.224.4/p
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=56AD524601F79E9C29D08F5ADC992E15:FG=1; expires=Thu, 01-Feb-24 16:20:51 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 22511573872769722634020200
Transfer-Encoding: chunked

baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-mypolicy.png

185.10.104.115

200 OK

1.4 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-mypolicy.png
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1428 bytes)
Hash
88b9b755ba8942b0e9da4555beb9906e
3cb193d70c7d42d36de024a55523db13576b2c90
6819c1a4bb4e669ea1c535f41a9fdc755c87c76a35fbeda9232ef483b1e533ec

HTTP Headers

GET /assets/cms/static/img/1-0/tab-mypolicy.png HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 20 Jan 2023 12:16:01 GMT
Last-Modified: Mon, 16 Mar 2020 08:00:53 GMT
ETag: "5e6f3235-594"
Cache-Control: max-age=600
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Tracecode: 19267331790313660682052519
Timing-Allow-Origin: *
Ohc-File-Size: 1428
Ohc-Global-Saved-Time: Fri, 20 Jan 2023 12:06:01 GMT
Ohc-Cache-HIT: fra01-sys-jomo2.fra01.baidu.com [1], zhuzuncache60 [4], czix122 [2]
X-Cache-Status: MISS

106.12.226.216

302 Found

353 B

URL HTTP/1.1
passport.duxiaoman.com/v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268473185
IP
106.12.226.216:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
JSON data\012- , ASCII text, with very long lines (353), with no line terminators
Size
353 B (353 bytes)
Hash
9424b9db384f01b6357628843db6dca7
d62831788d09516856dc67576f46cddeb941800c
be09935f7813bd23ed202c4561dfffe46d2d07f966dbdd13d28cb6246c2f0f20

HTTP Headers

GET /v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268473185 HTTP/1.1
Host: passport.duxiaoman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: Content-Type,x-baidu-ie,x-pay-fe
Access-Control-Allow-Methods: POST, GET, OPTIONS
Cache-Control: no-cache
Connection: keep-alive
Content-Type: application/json; charset=utf-8
Date: Wed, 01 Feb 2023 16:20:51 GMT
Expires: Fri, 30 Oct 1998 14:19:41 GMT
Location: https://wappass.baidu.com/v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268473185
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: AB_EXPERIMENT=%7B%22PC_SESSION_COOKIE_SWITCH%22%3A%22ON%22%2C%22group_cloud_smallflow%22%3A%22%22%2C%22ORDER_SIX_MONTH_CHECK%22%3A%22ON%22%2C%22group_smallflow%22%3A%22off%22%2C%22CHROME80_SET_COOKIE%22%3A%22ON%22%2C%22group_smallflow_uri%22%3A%22%22%2C%22rccGetChannelInfoSink%22%3A%22ON%22%7D; path=/; httponly; max-age=60
BAIDUID=FDE964376344A9A514E686FA813CF954:FG=1; expires=Thu, 01-Feb-24 16:20:51 GMT; max-age=31536000; path=/; domain=.dxmpay.com; version=1
Tracecode: 22513625492887032074020200
X-Bfb-Rt: 0.003
Transfer-Encoding: chunked

baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-product.png

185.10.104.115

200 OK

1.8 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-product.png
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1811 bytes)
Hash
920d21a770f3802c8d8aa62437c6fce0
ac3379973b749ed7216f1a83eff6779ef3b1b04c
d826f3ca72978439308bfb4f4a4a8c3ca80df5ece2a31b56adb904d4e798a645

HTTP Headers

GET /assets/cms/static/img/1-0/tab-product.png HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 28 Jan 2023 10:07:46 GMT
Last-Modified: Mon, 16 Mar 2020 08:00:50 GMT
ETag: "5e6f3232-713"
Cache-Control: max-age=600
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Tracecode: 41455181672132122890020216
Timing-Allow-Origin: *
Ohc-File-Size: 1811
Ohc-Global-Saved-Time: Sat, 28 Jan 2023 09:57:46 GMT
Ohc-Cache-HIT: fra01-sys-jomo6.fra01.baidu.com [1], zhuzuncache65 [4], xaix226 [4]
X-Cache-Status: MISS

baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-home-active.png

185.10.104.115

200 OK

4.2 kB

URL HTTP/1.1
baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-home-active.png
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Size
4.2 kB (4247 bytes)
Hash
e8e150de175c06b591b6ddae7872c7db
4118ab1f65c76bb377d7e8d7792e276fcd3ab9bf
cda54809257ec181f6cac8b6ad4fec2d59a903d7d02736fa138499beb4c3f5f8

HTTP Headers

GET /assets/cms/static/img/1-0/tab-home-active.png HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 28 Jan 2023 00:56:12 GMT
Last-Modified: Mon, 16 Mar 2020 08:00:53 GMT
ETag: "5e6f3235-1097"
Cache-Control: max-age=600
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Tracecode: 28465974942132122890020200
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 28 Jan 2023 00:46:12 GMT
Ohc-Cache-HIT: fra01-sys-jomo1.fra01.baidu.com [2], zhuzuncache64 [4], bdix109 [4]
Ohc-File-Size: 4247
X-Cache-Status: MISS

106.12.224.4/juhe/insurface/item/homepage?errTimes=0&from=4&channelId=&sourceChannel=&sessionId=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984&syncStokenTime=0&timestamp=27921141&type=1

106.12.224.4

200 OK

15 kB

URL HTTP/1.1
106.12.224.4/juhe/insurface/item/homepage?errTimes=0&from=4&channelId=&sourceChannel=&sessionId=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984&syncStokenTime=0&timestamp=27921141&type=1
IP
106.12.224.4:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (57488), with no line terminators
Size
15 kB (15022 bytes)
Hash
203a6f00203266e5760d8b88a902fff5
cebe1374f70f63e44b65e473110294a1baac84f5
3f8f998d7f617353a8e83d243a931bf3c5ada855c3c19de594c75610aac5843c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /juhe/insurface/item/homepage?errTimes=0&from=4&channelId=&sourceChannel=&sessionId=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984&syncStokenTime=0&timestamp=27921141&type=1 HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: http://106.12.224.4/m/home?
Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; LOG_SESSION_ID=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984; Hm_lvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472; Hm_lpvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 01 Feb 2023 16:20:51 GMT
Expires: 0
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: Apache
Set-Cookie: BAIDUID=64199561221158FD97B4FB149E07FA2E:FG=1; expires=Thu, 01-Feb-24 16:20:51 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 12514294423456403978020200, 22515670082182585610020200
Vary: Accept-Encoding, Accept-Encoding
X-Application-Context: insuraggre:8680
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Transfer-Encoding: chunked

106.12.224.4/insurweb/app/h5_app/point

106.12.224.4

301 Moved Permanently

162 B

URL HTTP/1.1
106.12.224.4/insurweb/app/h5_app/point
IP
106.12.224.4:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /insurweb/app/h5_app/point HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json;charset=UTF-8
Content-Length: 823
Origin: http://106.12.224.4
Connection: keep-alive
Referer: http://106.12.224.4/m/home?
Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; LOG_SESSION_ID=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984; Hm_lvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472; Hm_lpvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472

HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache, private
Connection: keep-alive
Content-Type: text/html
Date: Wed, 01 Feb 2023 16:20:51 GMT
Location: https://106.12.224.4/p
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=113AA5A4564D5875BE279E4D5A3ED34F:FG=1; expires=Thu, 01-Feb-24 16:20:51 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 22519536072769722634020200
Transfer-Encoding: chunked

106.12.224.4/insurweb/app/h5_app/point

106.12.224.4

301 Moved Permanently

162 B

URL HTTP/1.1
106.12.224.4/insurweb/app/h5_app/point
IP
106.12.224.4:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /insurweb/app/h5_app/point HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json;charset=UTF-8
Content-Length: 866
Origin: http://106.12.224.4
Connection: keep-alive
Referer: http://106.12.224.4/m/home?
Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; LOG_SESSION_ID=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984; Hm_lvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472; Hm_lpvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472

HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache, private
Connection: keep-alive
Content-Type: text/html
Date: Wed, 01 Feb 2023 16:20:52 GMT
Location: https://106.12.224.4/p
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=A113D17716354204218435454F7B798B:FG=1; expires=Thu, 01-Feb-24 16:20:52 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 22521440522769722634020200
Transfer-Encoding: chunked

baoxian.dxmstatic.com/assets/s/js/app.3b8d571a.bundle.js

185.10.104.115

200 OK

0 B

URL HTTP/1.1
baoxian.dxmstatic.com/assets/s/js/app.3b8d571a.bundle.js
IP
185.10.104.115:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/s/js/app.3b8d571a.bundle.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 09:03:49 GMT
ETag: "63da2af5-48252"
Content-Encoding: gzip
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 35130445782132122890020117
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-File-Size: 84414
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 09:41:53 GMT
Ohc-Cache-HIT: fra01-sys-jomo1.fra01.baidu.com [1], zhuzuncache57 [2], xiangyix75 [2]
X-Cache-Status: MISS

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL