r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5524
Expires: Wed, 01 Feb 2023 17:52:47 GMT
Date: Wed, 01 Feb 2023 16:20:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8715
Expires: Wed, 01 Feb 2023 18:45:58 GMT
Date: Wed, 01 Feb 2023 16:20:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 15:43:25 GMT
content-type: application/json
age: 2238
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3032
Expires: Wed, 01 Feb 2023 17:11:15 GMT
Date: Wed, 01 Feb 2023 16:20:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8AK79+vRAAtXvmiVRWgqHvt5EPGfxvhLx2+oSSQwt4rJ8cGgvdprUTuoI4Pw6dHcszqLmOGhLhU=
x-amz-request-id: 7Q43EQMFG9MZAWV2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 15:22:43 GMT
age: 3480
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
106.12.224.4/static/common/deploy.sh
106.12.224.4200 OK 2.2 kB URL HTTP/1.1 106.12.224.4/static/common/deploy.sh
IP 106.12.224.4:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3151)
Hash 22b471a95da78a50a0332ddeef694e7c
0d59b9c46d14a6e777675d916e1a5bb513046482
bf0dd7d380632e3c5cb94892502293c9375c0fef09b9cd4c0b17e199fef733b7
Analyzer Verdict Alert quad9 Sinkholed
GET /static/common/deploy.sh HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: no-store, private
Connection: keep-alive
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Wed, 01 Feb 2023 16:20:43 GMT
Etag: W/"63da2af5-1232"
Last-Modified: Wed, 01 Feb 2023 09:03:49 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; path=/; expires=Fri, 16-Jan-26 16:20:43 GMT
BAIDUID=B945E7D498249BC58975F859E4989024:FG=1; expires=Thu, 01-Feb-24 16:20:43 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 22435642232182585610020200
Vary: Accept-Encoding
Transfer-Encoding: chunked
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 16:20:43 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 15:49:05 GMT
age: 1899
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4148
Expires: Wed, 01 Feb 2023 17:29:52 GMT
Date: Wed, 01 Feb 2023 16:20:44 GMT
Connection: keep-alive
push.services.mozilla.com/
35.161.26.194101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.26.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WWnv1h0YwWjGkt4C+gVoew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l7wN374qxiMJ2eszrvrGJP2B0gQ=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6884
Expires: Wed, 01 Feb 2023 18:15:29 GMT
Date: Wed, 01 Feb 2023 16:20:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6884
Expires: Wed, 01 Feb 2023 18:15:29 GMT
Date: Wed, 01 Feb 2023 16:20:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6884
Expires: Wed, 01 Feb 2023 18:15:29 GMT
Date: Wed, 01 Feb 2023 16:20:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c83dcdb618756ebbfeb69a8bff6d38c
5f909182ab6847690e7ebd100e3f0d2798e36192
2e29d0747fb973908228501178465ac09f6553ef8e50dd70ee617f3379eb733c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7049
x-amzn-requestid: bc6522f2-eb6b-4e59-9912-0c03d145f021
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk31LGE2IAMF8rw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839ba-67477ed1260c27f67e28043d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Q_aVbWJKMbX1_bjggzbdnWbgmfooGvXj76t55QGGXRr_y6ZgW2gctw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 12:23:45 GMT
age: 14220
etag: "5f909182ab6847690e7ebd100e3f0d2798e36192"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _xCzARAxn6PB9wrQAL98hWvnUxQOocZFqMoS2l_CoIzOJC18bXQuSQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:53:32 GMT
age: 66433
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:27:41 GMT
age: 31984
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 49847
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4yxwz2MFTdpb8I56VVbFU2Zz0qG_uHcYc3aDtn6boQPjhw7UFLLnYw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 10:37:09 GMT
age: 20616
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 12:57:00 GMT
age: 12225
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.dcocsp.cn/
47.246.44.228200 OK 471 B IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash a73964d5c2f71d97c3aa7040416566d8
2c09472570288199b988befef8a5a2f1d640505b
d9c7f52519efae15757c0b46a6ddeb58cf86b1faf9ba2ff5f7a774f195371e56
POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:20:46 GMT
Last-Modified: Wed, 01 Feb 2023 10:42:23 GMT
ETag: "63da420f-1d7"
Expires: Fri, 03 Feb 2023 10:42:23 GMT
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675268446
Via: cache21.l2de2[45,27,200-0,C], cache11.l2de2[29,0], cache7.se1[49,49,200-0,M], cache7.se1[68,0]
Age: 0
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:46 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9b16752684468976324e
ocsp.dcocsp.cn/
47.246.44.228200 OK 471 B IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash a73964d5c2f71d97c3aa7040416566d8
2c09472570288199b988befef8a5a2f1d640505b
d9c7f52519efae15757c0b46a6ddeb58cf86b1faf9ba2ff5f7a774f195371e56
POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:20:46 GMT
Last-Modified: Wed, 01 Feb 2023 10:42:23 GMT
ETag: "63da420f-1d7"
Expires: Fri, 03 Feb 2023 10:42:23 GMT
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675268446
Via: cache21.l2de2[45,45,200-0,M], cache14.l2de2[46,0], cache3.se1[68,67,200-0,M], cache3.se1[70,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:46 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9716752684468957049e
ocsp.dcocsp.cn/
47.246.44.228200 OK 471 B IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash cffe4f9f805a917db49755a0f26afbb9
99e83e2268204fe8e205b3a43db33641d1e1e194
393aeb1a9043b7ed71ef09e8d9f614c4053804a7357aa647f152464172018818
POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:20:46 GMT
Ali-Swift-Global-Savetime: 1675268446
Via: cache21.l2de2[47,47,200-0,M], cache26.l2de2[48,0], cache8.se1[69,68,200-0,M], cache8.se1[70,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:46 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9c16752684468887141e
ocsp.dcocsp.cn/
47.246.44.228200 OK 471 B IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash a73964d5c2f71d97c3aa7040416566d8
2c09472570288199b988befef8a5a2f1d640505b
d9c7f52519efae15757c0b46a6ddeb58cf86b1faf9ba2ff5f7a774f195371e56
POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:20:46 GMT
Last-Modified: Wed, 01 Feb 2023 10:42:23 GMT
ETag: "63da420f-1d7"
Expires: Fri, 03 Feb 2023 10:42:23 GMT
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675268446
Via: cache21.l2de2[45,44,200-0,C], cache21.l2de2[45,0], cache5.se1[69,68,200-0,M], cache5.se1[70,0]
Age: 0
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:46 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9916752684468946979e
ocsp.dcocsp.cn/
47.246.44.228200 OK 471 B IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash cffe4f9f805a917db49755a0f26afbb9
99e83e2268204fe8e205b3a43db33641d1e1e194
393aeb1a9043b7ed71ef09e8d9f614c4053804a7357aa647f152464172018818
POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:20:46 GMT
Ali-Swift-Global-Savetime: 1675268446
Via: cache21.l2de2[47,47,200-0,C], cache11.l2de2[48,0], cache1.se1[70,69,200-0,M], cache1.se1[72,0]
Age: 0
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:46 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 2ff62c9516752684468941265e
baoxian.dxmstatic.com/assets/monitor/insur-monitor-web.js
185.10.104.115200 OK 18 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/monitor/insur-monitor-web.js
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (47119)
Hash c23dd8b878a12547b84218bb91ac5715
c91b5975a335c3109a07d5c02b96e298778f8c8d
0e7c74809248ab9fde02c7058f2d65aeacf4ab95ed23f692f0d91da3617db295
GET /assets/monitor/insur-monitor-web.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 14 Jan 2023 08:25:04 GMT
Last-Modified: Thu, 15 Dec 2022 06:08:04 GMT
ETag: "639ab9c4-b877"
Cache-Control: max-age=600
Content-Encoding: br
Age: 1523819
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 19032974370313660682011416
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 14 Jan 2023 08:15:03 GMT
Ohc-Cache-HIT: fra01-sys-jomo5.fra01.baidu.com [2], zhuzuncache61 [2], qdix186 [2]
Ohc-File-Size: 17646
X-Cache-Status: HIT
baoxian.dxmstatic.com/assets/s/js/vue.e174a9df.chunk.js
185.10.104.115200 OK 56 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/s/js/vue.e174a9df.chunk.js
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (28998)
Hash d19625b2017832016a2a6c0dd8f9544c
1e36673ae548c95b0cd8f488cd997399308a5496
a6bb44541d06c14488e404c7937853198b99fe6dc171ee4178848bb7f1a1913f
GET /assets/s/js/vue.e174a9df.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 09:03:49 GMT
ETag: "63da2af5-255bc"
Content-Encoding: gzip
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 35130265802769722634020117
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-File-Size: 56049
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 09:41:53 GMT
Ohc-Cache-HIT: fra01-sys-jomo4.fra01.baidu.com [1], zhuzuncache62 [2], czix89 [2]
X-Cache-Status: MISS
baoxian.dxmstatic.com/assets/s/js/vendors.ccf91632.chunk.js
185.10.104.115200 OK 102 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/s/js/vendors.ccf91632.chunk.js
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (28970)
Size 102 kB (102470 bytes)
Hash 9a8128457eeb5b2615940237f35b2987
1e368c5ff136acca7a41724f3496efa0baf32c8e
24692dec00dcccd9dd6687fca20eace12caf1f9add1bcc21da57c3b5e2e1f685
GET /assets/s/js/vendors.ccf91632.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 09:03:49 GMT
ETag: "63da2af5-45d78"
Content-Encoding: gzip
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 35130339422132122890020117
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-File-Size: 102470
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 09:41:53 GMT
Ohc-Cache-HIT: fra01-sys-jomo7.fra01.baidu.com [1], zhuzuncache51 [2], czix109 [2]
X-Cache-Status: MISS
www.dxmbaoxian.com/track/eye.js
180.76.64.128200 OK 32 kB URL HTTP/1.1 www.dxmbaoxian.com/track/eye.js
IP 180.76.64.128:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 54037995fbe5bb038f9b1d7cd098db1f
d0284cd4a669204452d1a69c04b804873698a6d3
a557d12ed99819c735b452b458583be3b2a35c929ee6fce899cba941dce00d11
GET /track/eye.js HTTP/1.1
Host: www.dxmbaoxian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/javascript; charset=UTF-8
Date: Wed, 01 Feb 2023 16:20:47 GMT
Etag: W/"63623dec-16390"
Last-Modified: Wed, 02 Nov 2022 09:52:44 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=59FE064C6734D7A5712F58DE553971A2:FG=1; expires=Thu, 01-Feb-24 16:20:47 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 22471205281873941770020200
Vary: Accept-Encoding
Transfer-Encoding: chunked
w1.dxmstatic.com/static/xstatic2/todotask/todotask.1.6.js
58.254.180.65200 OK 19 kB URL HTTP/2 w1.dxmstatic.com/static/xstatic2/todotask/todotask.1.6.js
IP 58.254.180.65:0
ASN #136958 China Unicom Guangdong IP network
File type Unicode text, UTF-8 text, with very long lines (46246), with no line terminators
Hash 6af5f541977987818f5c80111fab9b53
8322832a176fb8e8d0b2fca801264525af7a88d4
96dcc98b941e6f6cf969d42da4ea7eea1dcb0fcd34fbf48dcc31c33c29604f89
GET /static/xstatic2/todotask/todotask.1.6.js HTTP/1.1
Host: w1.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Wed, 01 Feb 2023 16:20:47 GMT
content-type: application/x-javascript
expires: Wed, 11 Jan 2023 05:22:11 GMT
last-modified: Thu, 17 Mar 2022 04:51:19 GMT
cache-control: public,max-age=1800
content-encoding: br
age: 1721476
accept-ranges: bytes
access-control-allow-credentials: false
access-control-allow-headers: Content-Type,x-baidu-ie
access-control-allow-methods: POST, GET, OPTIONS
tracecode: 30957225103575029002031712
vary: Accept-Encoding
timing-allow-origin: *
ohc-global-saved-time: Wed, 11 Jan 2023 04:52:11 GMT
ohc-cache-hit: gz3un63 [2], qdix63 [2]
ohc-file-size: 46286
x-cache-status: HIT
X-Firefox-Spdy: h2
baoxian.dxmstatic.com/assets/m/js/manifest.d0e2ed7e.bundle.js
185.10.104.115200 OK 4.1 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/m/js/manifest.d0e2ed7e.bundle.js
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (7689), with no line terminators
Hash 07b35a1c966c085506411dbc718f4550
29e04c0b7a5a2d99f54e71e433d6de5a569c371a
abd0f656ffbbe58727a958de720cb21300e4be1e8b3a7653c964d78c025bb959
GET /assets/m/js/manifest.d0e2ed7e.bundle.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:48 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:50:00 GMT
ETag: "63da0b98-1e09"
Content-Encoding: br
Age: 956
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 14548077752132122890020115
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 07:07:34 GMT
Ohc-Cache-HIT: fra01-sys-jomo6.fra01.baidu.com [4], zhuzuncache59 [4], qdix247 [2]
Ohc-File-Size: 4089
X-Cache-Status: HIT
baoxian.dxmstatic.com/assets/m/js/vant.76903d4e.chunk.js
185.10.104.115200 OK 41 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/m/js/vant.76903d4e.chunk.js
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (65160), with no line terminators
Hash 960c344a81a43416fa9cf790b0fd3124
d753fd445af63b6409aa8337c76d2b9c79499c59
22fa8b77a285787d323eded526429b71189cfa7b199f23c7ec26536e1d5dddb1
GET /assets/m/js/vant.76903d4e.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:48 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:50:00 GMT
ETag: "63da0b98-28e8d"
Content-Encoding: br
Age: 956
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 14424996432182585610020115
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 07:07:22 GMT
Ohc-Cache-HIT: fra01-sys-jomo6.fra01.baidu.com [4], zhuzuncache55 [4], suzix112 [2]
Ohc-File-Size: 40847
X-Cache-Status: HIT
baoxian.dxmstatic.com/assets/m/js/jquery.563af771.chunk.js
185.10.104.115200 OK 32 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/m/js/jquery.563af771.chunk.js
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (61316)
Hash d74c55d8bebd957d5690c54d15e6ed4a
571b7bff13fe91a05c80c800a78a9592b901b618
7f95bfdd1a22dcd85c3b53e335a64bb8366c5b0bc9e52d960b03cc3c1b5cc2c6
GET /assets/m/js/jquery.563af771.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:48 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:50:00 GMT
ETag: "63da0b98-15a96"
Content-Encoding: br
Age: 956
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 14422596992132122890020115
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 07:07:22 GMT
Ohc-Cache-HIT: fra01-sys-jomo2.fra01.baidu.com [4], zhuzuncache52 [4], czix171 [2]
Ohc-File-Size: 31952
X-Cache-Status: HIT
baoxian.dxmstatic.com/assets/s/js/vant.fafa1604.chunk.js
185.10.104.115200 OK 0 B URL HTTP/1.1 baoxian.dxmstatic.com/assets/s/js/vant.fafa1604.chunk.js
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/s/js/vant.fafa1604.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 09:03:49 GMT
ETag: "63da2af5-2c9b5"
Content-Encoding: gzip
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 35176127682769722634020117
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-File-Size: 64993
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 09:41:57 GMT
Ohc-Cache-HIT: fra01-sys-jomo1.fra01.baidu.com [1], zhuzuncache56 [2], xaix103 [2]
X-Cache-Status: MISS
baoxian.dxmstatic.com/assets/m/js/app.24fb8175.chunk.js
185.10.104.115200 OK 114 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/m/js/app.24fb8175.chunk.js
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (53192)
Size 114 kB (114365 bytes)
Hash 25db2e65d7fa1a87e700f7f1a7e30800
39a13879a2a757e673856e88004ebaffc326d1fe
12fc258c9e01ea5748b53ee1b090f6e5821d1c21914889b55c01cf3de83bd358
GET /assets/m/js/app.24fb8175.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:48 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:50:00 GMT
ETag: "63da0b98-5fe1e"
Content-Encoding: br
Age: 956
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 14430675512769722634020115
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 07:07:23 GMT
Ohc-Cache-HIT: fra01-sys-jomo5.fra01.baidu.com [3], zhuzuncache55 [4], csix55 [2]
Ohc-File-Size: 114365
X-Cache-Status: HIT
w1.dxmstatic.com/static/xstatic2/todotask/todotask.1.6.js
58.254.180.65304 Not Modified 0 B URL HTTP/2 w1.dxmstatic.com/static/xstatic2/todotask/todotask.1.6.js
IP 58.254.180.65:0
ASN #136958 China Unicom Guangdong IP network
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/xstatic2/todotask/todotask.1.6.js HTTP/1.1
Host: w1.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 17 Mar 2022 04:51:19 GMT
TE: trailers
HTTP/2 304 Not Modified
server: JSP3/2.0.14
date: Wed, 01 Feb 2023 16:20:48 GMT
content-type: application/x-javascript
expires: Wed, 11 Jan 2023 05:22:11 GMT
last-modified: Thu, 17 Mar 2022 04:51:19 GMT
cache-control: public,max-age=1800
age: 1721477
accept-ranges: bytes
access-control-allow-credentials: false
access-control-allow-headers: Content-Type,x-baidu-ie
access-control-allow-methods: POST, GET, OPTIONS
tracecode: 30957225103575029002031712
vary: Accept-Encoding
timing-allow-origin: *
ohc-global-saved-time: Wed, 11 Jan 2023 04:52:11 GMT
ohc-cache-hit: gz3un63 [2], qdix63 [2]
ohc-file-size: 46286
x-cache-status: HIT
X-Firefox-Spdy: h2
106.12.224.4/insurweb/app/h5_app/point
106.12.224.4301 Moved Permanently 162 B URL HTTP/1.1 106.12.224.4/insurweb/app/h5_app/point
IP 106.12.224.4:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert quad9 Sinkholed
POST /insurweb/app/h5_app/point HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json;charset=UTF-8
Content-Length: 593
Origin: http://106.12.224.4
Connection: keep-alive
Referer: http://106.12.224.4/m/home?
Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; LOG_SESSION_ID=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984
HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache, private
Connection: keep-alive
Content-Type: text/html
Date: Wed, 01 Feb 2023 16:20:48 GMT
Location: https://106.12.224.4/p
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=42AADEB8BC7E8777B49FD4897B42A469:FG=1; expires=Thu, 01-Feb-24 16:20:48 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 22486581412769722634020200
Transfer-Encoding: chunked
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 2990101e9b0b8f69e086e0f82f553975
328241a46ca2737935370fc663563ca96b322fb7
6d625dc23ebfb31069fb86354d78174d15c5e8cc89632f84aea61b6deb85887d
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 16:20:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 05 Feb 2023 15:13:58 GMT
ETag: "328241a46ca2737935370fc663563ca96b322fb7"
Last-Modified: Wed, 01 Feb 2023 15:13:59 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1553
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c043ebb88b512-OSL
baoxian.dxmstatic.com/assets/cms/static/img/favicon.ico
185.10.104.115200 OK 649 B URL HTTP/1.1 baoxian.dxmstatic.com/assets/cms/static/img/favicon.ico
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 437b9b17ea3dc364b88009dd81f6286b
94ef748dbaef2794d3f0cfd1c40c277ff12ef62c
f92921b83bc3698d2e62de01c3c3302893a1c7ead1ac570904134ab77cdfe261
GET /assets/cms/static/img/favicon.ico HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:49 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sun, 08 Jan 2023 04:34:50 GMT
Last-Modified: Wed, 20 May 2020 07:19:06 GMT
ETag: "5ec4d9ea-10be"
Cache-Control: max-age=600
Content-Encoding: gzip
Age: 2048496
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Tracecode: 21737784421873941770090922
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sun, 08 Jan 2023 04:24:50 GMT
Ohc-Cache-HIT: fra01-sys-jomo5.fra01.baidu.com [4], zhuzuncache59 [1], xiangyix59 [2]
Ohc-File-Size: 649
X-Cache-Status: HIT
hm.baidu.com/hm.js?d5ba068ce0bdbb86e2be209d513162f8
103.235.46.191200 OK 12 kB URL HTTP/1.1 hm.baidu.com/hm.js?d5ba068ce0bdbb86e2be209d513162f8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (1016)
Hash a1072d217d4b76f452c5e03638dac58f
fb0cead94afd4cb1e29a0d3716f72d57730c2e1c
9eec30026c54c5d308e240bc9b021b0e278aa0cf1c0931046cf9751605340081
GET /hm.js?d5ba068ce0bdbb86e2be209d513162f8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11654
Content-Type: application/javascript
Date: Wed, 01 Feb 2023 16:20:49 GMT
Etag: d896cbaba7b4141375c51365e45858ea
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=ED6634D119E561B1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=718323202&si=d5ba068ce0bdbb86e2be209d513162f8&su=http%3A%2F%2F106.12.224.4%2Fstatic%2Fcommon%2Fdeploy.sh&v=1.3.0&lv=1&sn=62802&r=0&ww=1280&u=http%3A%2F%2F106.12.224.4%2Fm%2Fhome%3F&tt=%E5%BA%A6%E5%B0%8F%E6%BB%A1%E4%BF%9D%E9%99%A9%E7%BB%8F%E7%BA%AA
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=718323202&si=d5ba068ce0bdbb86e2be209d513162f8&su=http%3A%2F%2F106.12.224.4%2Fstatic%2Fcommon%2Fdeploy.sh&v=1.3.0&lv=1&sn=62802&r=0&ww=1280&u=http%3A%2F%2F106.12.224.4%2Fm%2Fhome%3F&tt=%E5%BA%A6%E5%B0%8F%E6%BB%A1%E4%BF%9D%E9%99%A9%E7%BB%8F%E7%BA%AA
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=718323202&si=d5ba068ce0bdbb86e2be209d513162f8&su=http%3A%2F%2F106.12.224.4%2Fstatic%2Fcommon%2Fdeploy.sh&v=1.3.0&lv=1&sn=62802&r=0&ww=1280&u=http%3A%2F%2F106.12.224.4%2Fm%2Fhome%3F&tt=%E5%BA%A6%E5%B0%8F%E6%BB%A1%E4%BF%9D%E9%99%A9%E7%BB%8F%E7%BA%AA HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 01 Feb 2023 16:20:50 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=33320D48CCD84B7F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
baoxian.dxmstatic.com/assets/m/js/1.146819cd.chunk.js
185.10.104.115200 OK 37 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/m/js/1.146819cd.chunk.js
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 01f9747504297db53b8e4eeb1ccf52a8
5043347d022683cef59196dce733c631a742ee26
5dacbedc386d6cf46b618217d0cbddb1aa7415e4d237dc2f4092d4b41163bf9e
GET /assets/m/js/1.146819cd.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:50 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 26 Dec 2022 03:20:01 GMT
ETag: W/"63a912e1-21556"
Content-Encoding: gzip
Age: 2159986
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 17683204664289795338010714
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 07 Jan 2023 06:12:48 GMT
Ohc-Cache-HIT: fra01-sys-jomo1.fra01.baidu.com [4], zhuzuncache64 [1], czix203 [2]
Ohc-File-Size: 36788
X-Cache-Status: HIT
ocsp.dcocsp.cn/
47.246.44.228200 OK 471 B IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash dbd0dfac3cedde1e8032d3d6b85b090e
b9b11d9502d2113988cb3f3f1074ce6be763ade2
2ce2932a5ee613e4cd8ddbf92630a16db3a2b3d8216712a2caf63d89eaf971c9
POST / HTTP/1.1
Host: ocsp.dcocsp.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Wed, 01 Feb 2023 16:04:07 GMT
Last-Modified: Wed, 01 Feb 2023 05:55:09 GMT
ETag: "63d9febd-1d7"
Expires: Fri, 03 Feb 2023 05:55:09 GMT
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675267447
Via: cache21.l2de2[0,0,304-0,H], cache6.l2de2[1,0], cache7.se1[22,29,200-0,H], cache7.se1[30,0]
Age: 1003
X-Cache: HIT TCP_REFRESH_HIT dirn:5:253863942
X-Swift-SaveTime: Wed, 01 Feb 2023 16:20:50 GMT
X-Swift-CacheTime: 2597
Timing-Allow-Origin: *
EagleId: 2ff62c9b16752684506922550e
baoxian.dxmstatic.com/assets/m/js/17.ada1c0aa.chunk.js
185.10.104.115200 OK 13 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/m/js/17.ada1c0aa.chunk.js
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (47788)
Hash 0274bc062a5d09e4eac1b32161d47099
ab8e71b09d93d201f1eea0cf87c73d395d0e33af
163adead81e58b307bb7227b24790b9a13b514ac74ebb1ea88fe8f4e00235c41
GET /assets/m/js/17.ada1c0aa.chunk.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:50 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:50:00 GMT
ETag: "63da0b98-d17d"
Content-Encoding: br
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 16486872650313660682020115
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-File-Size: 12806
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 07:10:48 GMT
Ohc-Cache-HIT: fra01-sys-jomo7.fra01.baidu.com [1], zhuzuncache57 [4], csix67 [2]
X-Cache-Status: MISS
baoxian.dxmstatic.com/assets/cms/static/img/1-0/logo-dxm-2.png?20210429
185.10.104.115200 OK 22 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/cms/static/img/1-0/logo-dxm-2.png?20210429
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type PNG image data, 670 x 240, 8-bit/color RGBA, non-interlaced\012- data
Hash 55f2683a9fe39fab38d57e9304f55b45
ca2b3d8bb7a1be27c5ad6fa52ff9801a64112ec6
c333cafcf47120cdcbd13cfb749cfb4adaa42040a488326b929923d19ad9d3e9
GET /assets/cms/static/img/1-0/logo-dxm-2.png?20210429 HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 25 Jan 2023 07:26:30 GMT
Last-Modified: Thu, 29 Apr 2021 09:57:11 GMT
ETag: "608a82f7-5780"
Cache-Control: max-age=600
Age: 192665
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Tracecode: 39196922262769722634053012
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 25 Jan 2023 07:16:30 GMT
Ohc-Cache-HIT: fra01-sys-jomo4.fra01.baidu.com [4], zhuzuncache55 [4], qdix133 [4]
Ohc-File-Size: 22400
X-Cache-Status: HIT
passport.duxiaoman.com/v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268470705
106.12.226.216302 Found 353 B URL HTTP/1.1 passport.duxiaoman.com/v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268470705
IP 106.12.226.216:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JSON data\012- , ASCII text, with very long lines (353), with no line terminators
Hash 8f879f3d5f935926db8c94313671dc33
1ab148624fa9db3070282ebedfe30f7e29bf2104
328c54a559681404011e1e1d2aa7c56ce7bfec074596bedca8252838cfb1c751
GET /v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268470705 HTTP/1.1
Host: passport.duxiaoman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: Content-Type,x-baidu-ie,x-pay-fe
Access-Control-Allow-Methods: POST, GET, OPTIONS
Cache-Control: no-cache
Connection: keep-alive
Content-Type: application/json; charset=utf-8
Date: Wed, 01 Feb 2023 16:20:51 GMT
Expires: Fri, 30 Oct 1998 14:19:41 GMT
Location: https://wappass.baidu.com/v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268470705
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: AB_EXPERIMENT=%7B%22PC_SESSION_COOKIE_SWITCH%22%3A%22ON%22%2C%22group_cloud_smallflow%22%3A%22%22%2C%22ORDER_SIX_MONTH_CHECK%22%3A%22ON%22%2C%22group_smallflow%22%3A%22off%22%2C%22CHROME80_SET_COOKIE%22%3A%22ON%22%2C%22group_smallflow_uri%22%3A%22%22%2C%22rccGetChannelInfoSink%22%3A%22ON%22%7D; path=/; httponly; max-age=60
BAIDUID=37E48D4EF00BA45843103F7D9F0973F7:FG=1; expires=Thu, 01-Feb-24 16:20:51 GMT; max-age=31536000; path=/; domain=.dxmpay.com; version=1
Tracecode: 22511197872786368778020200
X-Bfb-Rt: 0.003
Transfer-Encoding: chunked
106.12.224.4/insurweb/app/h5_app/point
106.12.224.4301 Moved Permanently 162 B URL HTTP/1.1 106.12.224.4/insurweb/app/h5_app/point
IP 106.12.224.4:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert quad9 Sinkholed
POST /insurweb/app/h5_app/point HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json;charset=UTF-8
Content-Length: 767
Origin: http://106.12.224.4
Connection: keep-alive
Referer: http://106.12.224.4/m/home?
Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; LOG_SESSION_ID=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984; Hm_lvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472; Hm_lpvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472
HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache, private
Connection: keep-alive
Content-Type: text/html
Date: Wed, 01 Feb 2023 16:20:51 GMT
Location: https://106.12.224.4/p
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=56AD524601F79E9C29D08F5ADC992E15:FG=1; expires=Thu, 01-Feb-24 16:20:51 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 22511573872769722634020200
Transfer-Encoding: chunked
baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-mypolicy.png
185.10.104.115200 OK 1.4 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-mypolicy.png
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 88b9b755ba8942b0e9da4555beb9906e
3cb193d70c7d42d36de024a55523db13576b2c90
6819c1a4bb4e669ea1c535f41a9fdc755c87c76a35fbeda9232ef483b1e533ec
GET /assets/cms/static/img/1-0/tab-mypolicy.png HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 20 Jan 2023 12:16:01 GMT
Last-Modified: Mon, 16 Mar 2020 08:00:53 GMT
ETag: "5e6f3235-594"
Cache-Control: max-age=600
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Tracecode: 19267331790313660682052519
Timing-Allow-Origin: *
Ohc-File-Size: 1428
Ohc-Global-Saved-Time: Fri, 20 Jan 2023 12:06:01 GMT
Ohc-Cache-HIT: fra01-sys-jomo2.fra01.baidu.com [1], zhuzuncache60 [4], czix122 [2]
X-Cache-Status: MISS
passport.duxiaoman.com/v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268473185
106.12.226.216302 Found 353 B URL HTTP/1.1 passport.duxiaoman.com/v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268473185
IP 106.12.226.216:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JSON data\012- , ASCII text, with very long lines (353), with no line terminators
Hash 9424b9db384f01b6357628843db6dca7
d62831788d09516856dc67576f46cddeb941800c
be09935f7813bd23ed202c4561dfffe46d2d07f966dbdd13d28cb6246c2f0f20
GET /v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268473185 HTTP/1.1
Host: passport.duxiaoman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: Content-Type,x-baidu-ie,x-pay-fe
Access-Control-Allow-Methods: POST, GET, OPTIONS
Cache-Control: no-cache
Connection: keep-alive
Content-Type: application/json; charset=utf-8
Date: Wed, 01 Feb 2023 16:20:51 GMT
Expires: Fri, 30 Oct 1998 14:19:41 GMT
Location: https://wappass.baidu.com/v3/login/api/authopenbduss?client_id=fHUnn02XwCrywmmdUtCdK6eC&return_type=3&tpl=licaient&u=http%3A%2F%2F106.12.224.4%2Finsurface%2Fapi%2F0%2Fsync_login%2F0%3Ftimer%3D%26sessionId%3Df2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984%26timestamp%3D1675268473185
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: AB_EXPERIMENT=%7B%22PC_SESSION_COOKIE_SWITCH%22%3A%22ON%22%2C%22group_cloud_smallflow%22%3A%22%22%2C%22ORDER_SIX_MONTH_CHECK%22%3A%22ON%22%2C%22group_smallflow%22%3A%22off%22%2C%22CHROME80_SET_COOKIE%22%3A%22ON%22%2C%22group_smallflow_uri%22%3A%22%22%2C%22rccGetChannelInfoSink%22%3A%22ON%22%7D; path=/; httponly; max-age=60
BAIDUID=FDE964376344A9A514E686FA813CF954:FG=1; expires=Thu, 01-Feb-24 16:20:51 GMT; max-age=31536000; path=/; domain=.dxmpay.com; version=1
Tracecode: 22513625492887032074020200
X-Bfb-Rt: 0.003
Transfer-Encoding: chunked
baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-product.png
185.10.104.115200 OK 1.8 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-product.png
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 920d21a770f3802c8d8aa62437c6fce0
ac3379973b749ed7216f1a83eff6779ef3b1b04c
d826f3ca72978439308bfb4f4a4a8c3ca80df5ece2a31b56adb904d4e798a645
GET /assets/cms/static/img/1-0/tab-product.png HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 28 Jan 2023 10:07:46 GMT
Last-Modified: Mon, 16 Mar 2020 08:00:50 GMT
ETag: "5e6f3232-713"
Cache-Control: max-age=600
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Tracecode: 41455181672132122890020216
Timing-Allow-Origin: *
Ohc-File-Size: 1811
Ohc-Global-Saved-Time: Sat, 28 Jan 2023 09:57:46 GMT
Ohc-Cache-HIT: fra01-sys-jomo6.fra01.baidu.com [1], zhuzuncache65 [4], xaix226 [4]
X-Cache-Status: MISS
baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-home-active.png
185.10.104.115200 OK 4.2 kB URL HTTP/1.1 baoxian.dxmstatic.com/assets/cms/static/img/1-0/tab-home-active.png
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash e8e150de175c06b591b6ddae7872c7db
4118ab1f65c76bb377d7e8d7792e276fcd3ab9bf
cda54809257ec181f6cac8b6ad4fec2d59a903d7d02736fa138499beb4c3f5f8
GET /assets/cms/static/img/1-0/tab-home-active.png HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 28 Jan 2023 00:56:12 GMT
Last-Modified: Mon, 16 Mar 2020 08:00:53 GMT
ETag: "5e6f3235-1097"
Cache-Control: max-age=600
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Tracecode: 28465974942132122890020200
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 28 Jan 2023 00:46:12 GMT
Ohc-Cache-HIT: fra01-sys-jomo1.fra01.baidu.com [2], zhuzuncache64 [4], bdix109 [4]
Ohc-File-Size: 4247
X-Cache-Status: MISS
106.12.224.4/juhe/insurface/item/homepage?errTimes=0&from=4&channelId=&sourceChannel=&sessionId=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984&syncStokenTime=0×tamp=27921141&type=1
106.12.224.4200 OK 15 kB URL HTTP/1.1 106.12.224.4/juhe/insurface/item/homepage?errTimes=0&from=4&channelId=&sourceChannel=&sessionId=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984&syncStokenTime=0×tamp=27921141&type=1
IP 106.12.224.4:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (57488), with no line terminators
Hash 203a6f00203266e5760d8b88a902fff5
cebe1374f70f63e44b65e473110294a1baac84f5
3f8f998d7f617353a8e83d243a931bf3c5ada855c3c19de594c75610aac5843c
Analyzer Verdict Alert quad9 Sinkholed
GET /juhe/insurface/item/homepage?errTimes=0&from=4&channelId=&sourceChannel=&sessionId=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984&syncStokenTime=0×tamp=27921141&type=1 HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: http://106.12.224.4/m/home?
Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; LOG_SESSION_ID=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984; Hm_lvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472; Hm_lpvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 01 Feb 2023 16:20:51 GMT
Expires: 0
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: Apache
Set-Cookie: BAIDUID=64199561221158FD97B4FB149E07FA2E:FG=1; expires=Thu, 01-Feb-24 16:20:51 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 12514294423456403978020200, 22515670082182585610020200
Vary: Accept-Encoding, Accept-Encoding
X-Application-Context: insuraggre:8680
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Transfer-Encoding: chunked
106.12.224.4/insurweb/app/h5_app/point
106.12.224.4301 Moved Permanently 162 B URL HTTP/1.1 106.12.224.4/insurweb/app/h5_app/point
IP 106.12.224.4:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert quad9 Sinkholed
POST /insurweb/app/h5_app/point HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json;charset=UTF-8
Content-Length: 823
Origin: http://106.12.224.4
Connection: keep-alive
Referer: http://106.12.224.4/m/home?
Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; LOG_SESSION_ID=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984; Hm_lvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472; Hm_lpvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472
HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache, private
Connection: keep-alive
Content-Type: text/html
Date: Wed, 01 Feb 2023 16:20:51 GMT
Location: https://106.12.224.4/p
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=113AA5A4564D5875BE279E4D5A3ED34F:FG=1; expires=Thu, 01-Feb-24 16:20:51 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 22519536072769722634020200
Transfer-Encoding: chunked
106.12.224.4/insurweb/app/h5_app/point
106.12.224.4301 Moved Permanently 162 B URL HTTP/1.1 106.12.224.4/insurweb/app/h5_app/point
IP 106.12.224.4:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert quad9 Sinkholed
POST /insurweb/app/h5_app/point HTTP/1.1
Host: 106.12.224.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json;charset=UTF-8
Content-Length: 866
Origin: http://106.12.224.4
Connection: keep-alive
Referer: http://106.12.224.4/m/home?
Cookie: DXMBXID=DXMBXID69d1269f-544b-4e73-b76f-a3320067e821; LOG_SESSION_ID=f2370fcd-fe56-418a-a249-9059ed0e4a11-1675268469984; Hm_lvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472; Hm_lpvt_d5ba068ce0bdbb86e2be209d513162f8=1675268472
HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache, private
Connection: keep-alive
Content-Type: text/html
Date: Wed, 01 Feb 2023 16:20:52 GMT
Location: https://106.12.224.4/p
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=A113D17716354204218435454F7B798B:FG=1; expires=Thu, 01-Feb-24 16:20:52 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Tracecode: 22521440522769722634020200
Transfer-Encoding: chunked
baoxian.dxmstatic.com/assets/s/js/app.3b8d571a.bundle.js
185.10.104.115200 OK 0 B URL HTTP/1.1 baoxian.dxmstatic.com/assets/s/js/app.3b8d571a.bundle.js
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
GET /assets/s/js/app.3b8d571a.bundle.js HTTP/1.1
Host: baoxian.dxmstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://106.12.224.4/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Wed, 01 Feb 2023 16:20:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 09:03:49 GMT
ETag: "63da2af5-48252"
Content-Encoding: gzip
Accept-Ranges: bytes
Strict-Transport-Security: max-age=5400; includeSubDomains
Tracecode: 35130445782132122890020117
Vary: Accept-Encoding
Timing-Allow-Origin: *
Ohc-File-Size: 84414
Ohc-Global-Saved-Time: Wed, 01 Feb 2023 09:41:53 GMT
Ohc-Cache-HIT: fra01-sys-jomo1.fra01.baidu.com [1], zhuzuncache57 [2], xiangyix75 [2]
X-Cache-Status: MISS